last executing test programs:

7.860938521s ago: executing program 2 (id=2082):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x18, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x178}, 0x18)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x3fffff)

7.756391972s ago: executing program 2 (id=2085):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYRES16=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f00000000c0))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xf, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x18)
r5 = open(&(0x7f0000000080)='./file0\x00', 0x145342, 0x0)
ftruncate(r5, 0x2007ffc)
sendfile(r5, r5, 0x0, 0x800000009)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x1000}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

6.798601462s ago: executing program 2 (id=2100):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$eJzs3c1rHOUfAPDvbJK+/35NoRQVkUAPVmo3TeJLBQ/1KFos6L0uyTSUbLoluylNLNge7MWLFEHEgnjXu8fiP+BfUdBCkRL04CUym9k0L7vJNt2ajfP5wITn2Znd5/nuzPfJMzuzbACFNZL9KUW8GBFfJRFHIyLJ1w1GvnJkZbulxzcnsyWJ5eWP/0ia22X11mu1nnc4r7wQEb98EXG6tLnd+sLiTKVaTefy+mhj9tpofWHxzJXZynQ6nV4dn5g49+bE+Dtvv9WzWF+7+Ne3H91//9yXJ5e++enhsbtJnI8j+bq1cTyDW2srIzGSvydDcX7DhmM9aKyfJLvdAXZkIM/zocjGgKMxkGc98N/3eUQsAwWVyH8oqNY8oHVu36Pz4D3j0XsrJ0Cb4x9c+WwkDjTPjQ4tJevOjLLz3eEetJ+18fPv9+5mS2z4HOJAD14foJNbtyPi7ODg5vEvyce/nTvbxTYb2yja/x/YTfez+c/r7eY/pdX5T7SZ/xxuk7s7sX3+lx72oJmOsvnfu23nv6sXrYYH8tr/mnO+oeTylWqajW3/j4hTMbQ/q291Pefc0oPlTuvWzv+yJWu/NRfM+/FwcP/650xVGpVniXmtR7cjXmo7/01W93/SZv9n78fFLts4kd57pdO67eN/vpZ/iHi17f5/ckUr2fr65GjzeBhtHRWb/XnnxK+d2t/t+LP9f2jr+IeTtddr60/fxvcH/k47rVsXf3R//O9LPmmW9+WP3ag0GnNjEfuSDzc/Pv7kua16a/ss/lMntx7/2h3/ByPi0y7jv3P8x5e7in+X9v/UU+3/py88+OCz7zq1393490azdCp/pJvxr9sOPst7BwAAAAAAAP2mFBFHIimVV8ulUrm8cn/H8ThUqtbqjdOXa/NXp6L5XdnhGCq1rnQfXXM/xFh+P2yrPr6hPhERxyLi64GDzXp5slad2u3gAQAAAAAAAAAAAAAAAAAAoE8c7vD9/8xvA7vdO+C585PfUFzb5n8vfukJ6Ev+/0NxyX8oLvkPxSX/objkPxSX/Ifikv9QXPIfAAAAAAAAAAAAAAAAAAAAAAAAAAAAeurihQvZsrz0+OZkVp+6vjA/U7t+Ziqtz5Rn5yfLk7W5a+XpWm26mpYna7PbvV61Vrs2Nh7zN0Ybab0xWl9YvDRbm7/auHRltjKdXkqH/pWoAAAAAAAAAAAAAAAAAAAAYG+pLyzOVKrVdE5BYUeFwf7oxp4vZNnYB91Y1x8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6A//BAAA//8iuzYD")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783", 0xc1}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a", 0xc8}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae", 0xcb}], 0x8, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
rt_sigpending(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

5.625191303s ago: executing program 2 (id=2116):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a500000005000000"], &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

5.586126524s ago: executing program 2 (id=2118):
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
capset(0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x20, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

2.851889072s ago: executing program 4 (id=2183):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x100}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)

2.676694303s ago: executing program 0 (id=2187):
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xd5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1f, 0x1}, 0x108000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x54}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.601436084s ago: executing program 0 (id=2189):
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})
sigaltstack(0x0, &(0x7f0000000100)={0x0})
r0 = socket(0x18, 0x0, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x4, @random="45e3f364e554", 'sit0\x00'}}, 0x1e)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c0001"], 0x118}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000680)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000001400)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)

2.587283734s ago: executing program 4 (id=2190):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==")

2.385148506s ago: executing program 3 (id=2195):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a40), 0x1, 0x55e, &(0x7f0000000a80)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f", 0xdc}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a54539", 0xbc}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae", 0xcb}], 0x8, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

2.320486207s ago: executing program 4 (id=2196):
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB], 0x20}], 0x1, 0x0, 0x0, 0x4000}, 0x4005890)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000004900010026bd7000fddbdf250a", @ANYBLOB="98a7c958a0"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x4c0e0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xf, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000380)='GPL\x00', 0x80000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000600), &(0x7f00000005c0)="e6408f51c31317c798767173224c0a10cdd52cbbd8827b71e8300ebebf385f67b8b84831f62e223a68047f8b1209e9a39248d2b923f003b4", 0x5}, 0x38)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x300, 0x0, 0x8, 0x300}})
r3 = syz_io_uring_setup(0x63d, &(0x7f0000000640)={0x0, 0x8826, 0x80, 0x0, 0x2d}, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000400)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000600), 0xeb2bc003b4c7f3c8, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r8, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
close(r8)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)={{0x14}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x8031}, 0x4002)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)

2.192985758s ago: executing program 0 (id=2198):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f0000000740)="ccf0", 0x2)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0xb9ee693b3aa81b1e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(&(0x7f0000000400)='./file0\x00', 0x101)
pipe2$9p(&(0x7f0000001900)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r6}, 0x10)
r8 = dup(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@loose}], [], 0x6b}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r3}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x101, 0x0)
sendfile(r1, r0, 0x0, 0x7ffff000)

1.361612886s ago: executing program 3 (id=2206):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x1c)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=<r4=>r3], 0x90}}, 0x0)
r5 = syz_clone(0xa00200, 0x0, 0xfffffffffffffef2, 0x0, 0x0, 0x0)
bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x25dfdbfc, 0x10000000}, 0xc)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r6 = syz_open_procfs(0x0, &(0x7f0000000100)='environ\x00')
preadv(r6, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="3ea24b70f4904f7413e95829513c0049efd535e25e98cd78570f63b8f550dd01f78a265c2726aaeccaa5b82de9f73c9961d186a4e9693494ca3455695e8da7c26aaa6f88e0bc9af8c75b1c3bafafb93758befad3199ae0a892b42520ea1ca93e3c57c4b3664f5a", @ANYBLOB="09761d4f6e37fe45c59ed865db142c6b46db27999c38083458ad4b0db3892f4ddfd44c4c0ebec216272da41aaef1eb14f16c14a6db6a2e4585e899989b6ba502c0dd979ac7469c3f5ff59145dbc3c5a4a8be42470e27436e374968ee9551fbf21ffe0da24494ec6c3be0a800cb2b62a51d6d0410c0bc814006caf606ac1acb824932cd867df00754ceb7e8c3670d09de4c6528a5cd65fba99703352ed5f273fa14ed2c1d23db8315a28c92f4d303ed96c61776dce9567a9504d4a11e1301066c72ddea846626f5a5c89daea82a35ae53bca481073a47ceb094361c4fc9a381fd6973340e7d1bd58d398053", @ANYBLOB="000014fa0000b7030000000008008500000083060000bf0900000000000055090100000000009500000000c6c5d1949c3ac98890a9b6e74fac000000bf91000000000000b7020000000000008500007df4927b59a1e45786dbe3d553ded3cd5500"/106, @ANYRES64=r4, @ANYRESOCT=r5, @ANYRESHEX=0x0, @ANYRESHEX=r5], &(0x7f0000000200)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x41100, 0x66, '\x00', r2, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x18)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r8, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r8, 0x84, 0x15, &(0x7f0000000040)={0x3}, 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r8, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

1.251671748s ago: executing program 0 (id=2207):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1efedf05c33332b6be6f318631d4b74b000000ff", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000000000000400"/28], 0x50) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) (async, rerun: 64)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (async)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>r1, {0x2}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sched_process_exec\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00') (async)
acct(&(0x7f00000001c0)='./file0\x00') (async)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000000), 0x10) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x3, &(0x7f0000000540)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x8a07, &(0x7f0000000480)={[{@bh}, {@grpquota}, {@nouid32}, {@nodelalloc}, {@abort}, {@noblock_validity}, {@barrier}, {@noquota}]}, 0x1, 0x643, &(0x7f0000000b40)="$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")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000680)={@mcast1, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5, 0x3ff, 0xfffe, 0x300, 0x7, 0x200000})
r3 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x4, 0x0, @mcast2}}, 0x5c) (async)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd4, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0) (async)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xb, &(0x7f0000000480)=[@ioring_restriction_sqe_op={0x1, 0x1c}], 0x1)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)

1.251317718s ago: executing program 4 (id=2208):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)

1.01320348s ago: executing program 3 (id=2210):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x2e3, &(0x7f0000000280)="$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")
r0 = open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r3, 0x1276, 0x0)

974.4926ms ago: executing program 1 (id=2211):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8}]}, {0x2}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

974.081771ms ago: executing program 4 (id=2212):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x4, 0x0)

901.368411ms ago: executing program 4 (id=2213):
sync()
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x4005890)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000004900010026bd7000fddbdf250a", @ANYBLOB="98a7c958a0"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x4c0e0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xf, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b7030000070000"], &(0x7f0000000380)='GPL\x00', 0x80000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000600), &(0x7f00000005c0)="e6408f51c31317c798767173224c0a10cdd52cbbd8827b71e8300ebebf385f67b8b84831f62e223a68047f8b1209e9a39248d2b923f003b4", 0x5}, 0x38)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x300, 0x0, 0x8, 0x300}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x100000004, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(0xffffffffffffffff, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)

900.925021ms ago: executing program 3 (id=2214):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x22, 0x2)

842.258172ms ago: executing program 3 (id=2215):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYRES16=r0], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f00000000c0))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xf, 0x0, 0x4, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[], 0xf, 0x2ab, &(0x7f0000000540)="$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")
r4 = open(&(0x7f0000000080)='./file0\x00', 0x145342, 0x0)
ftruncate(r4, 0x2007ffc)
sendfile(r4, r4, 0x0, 0x800000009)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x1000}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

802.414842ms ago: executing program 1 (id=2216):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x2e3, &(0x7f0000000280)="$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")
r0 = open(&(0x7f0000000340)='./file1\x00', 0x4000, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)
unshare(0x6a040000)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4004410)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})
ioctl$SG_BLKTRACETEARDOWN(r3, 0x1276, 0x0)

669.111394ms ago: executing program 3 (id=2217):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)

441.010096ms ago: executing program 0 (id=2218):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000001c0)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000400)={'erspan0\x00', &(0x7f00000003c0)={'gre0\x00', 0x0, 0x7800, 0x40, 0x3, 0x0, {{0x6, 0x4, 0x2, 0x8, 0x18, 0x67, 0xfffd, 0xb, 0x29, 0x0, @rand_addr=0x64010102, @empty, {[@noop, @noop]}}}}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wg0\x00'})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000500)={'ip6tnl0\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x2f, 0x1, 0x4, 0xfffff558, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @loopback, 0x7800, 0x10, 0xfffffffd, 0x7f}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x3}, {0xffff, 0xffff}, {0xa, 0x8}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x0, 0xb, 0x5}}}}]}, 0x40}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'hsr0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

368.482297ms ago: executing program 1 (id=2219):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x18d6}, 0x1c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x2)

349.258337ms ago: executing program 0 (id=2220):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000200)='.\x00', 0x82000714)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r2 = socket$inet6(0xa, 0x1, 0x0)
accept4$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x1c, 0x800)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000e86000)="002204", 0x7f8)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
clock_gettime(0x0, &(0x7f0000001b80))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3}, 0x10}, 0x94)
syz_usbip_server_init(0x5)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000406, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000000), 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

220.514818ms ago: executing program 1 (id=2221):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=0x0, @ANYBLOB="fc0000000000000000000000000000000000000033"], 0x254}}, 0x0)

101.088259ms ago: executing program 1 (id=2222):
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x4000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300), &(0x7f00000004c0), 0x3, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_misc(r2, &(0x7f0000000300), 0xfdef)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'macvtap0\x00'})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'rr\x00', 0x19, 0x80001088, 0x73}, 0x2c)

81.539229ms ago: executing program 2 (id=2223):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)

0s ago: executing program 1 (id=2224):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x4, 0x0)

kernel console output (not intermixed with test programs):

ple_read_from_buffer+0xb5/0x130
[  142.531456][ T7998]  proc_fail_nth_read+0x100/0x140
[  142.531491][ T7998]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  142.531555][ T7998]  vfs_read+0x1a0/0x6f0
[  142.531584][ T7998]  ? __rcu_read_unlock+0x4f/0x70
[  142.531606][ T7998]  ? __rcu_read_unlock+0x4f/0x70
[  142.531654][ T7998]  ? __fget_files+0x184/0x1c0
[  142.531675][ T7998]  ksys_read+0xda/0x1a0
[  142.531753][ T7998]  __x64_sys_read+0x40/0x50
[  142.531827][ T7998]  x64_sys_call+0x2d77/0x2fb0
[  142.531906][ T7998]  do_syscall_64+0xd2/0x200
[  142.531927][ T7998]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.531954][ T7998]  ? clear_bhb_loop+0x40/0x90
[  142.531976][ T7998]  ? clear_bhb_loop+0x40/0x90
[  142.532042][ T7998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.532064][ T7998] RIP: 0033:0x7f0b1984d33c
[  142.532082][ T7998] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  142.532101][ T7998] RSP: 002b:00007f0b17eb7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  142.532121][ T7998] RAX: ffffffffffffffda RBX: 00007f0b19a75fa0 RCX: 00007f0b1984d33c
[  142.532150][ T7998] RDX: 000000000000000f RSI: 00007f0b17eb70a0 RDI: 0000000000000006
[  142.532230][ T7998] RBP: 00007f0b17eb7090 R08: 0000000000000000 R09: 0000000000000000
[  142.532243][ T7998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.532255][ T7998] R13: 0000000000000000 R14: 00007f0b19a75fa0 R15: 00007ffd6adab9f8
[  142.532322][ T7998]  </TASK>
[  142.799386][ T8003] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1453'.
[  142.808470][ T8003] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1453'.
[  142.909377][ T8010] wireguard0: entered promiscuous mode
[  142.914966][ T8010] wireguard0: entered allmulticast mode
[  143.116587][ T8025] vlan0: entered allmulticast mode
[  143.160474][ T8027] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  143.178254][ T8027] syzkaller0: entered promiscuous mode
[  143.183822][ T8027] syzkaller0: entered allmulticast mode
[  143.200853][ T8026] tipc: Resetting bearer <eth:syzkaller0>
[  143.220411][ T8026] tipc: Disabling bearer <eth:syzkaller0>
[  143.229903][ T8029] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  143.267781][ T8031] vlan2: entered allmulticast mode
[  143.310608][ T8035] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1465'.
[  143.319700][ T8035] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1465'.
[  144.488033][ T8069] lo speed is unknown, defaulting to 1000
[  144.886077][ T8084] loop0: detected capacity change from 0 to 1024
[  144.919530][ T8084] EXT4-fs: inline encryption not supported
[  144.956074][ T8084] EXT4-fs: Ignoring removed bh option
[  145.012953][ T8084] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.208988][ T8084] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.1481: Allocating blocks 497-513 which overlap fs metadata
[  145.283717][ T8084] EXT4-fs (loop0): Remounting filesystem read-only
[  145.305839][ T8079] loop4: detected capacity change from 0 to 1024
[  145.327613][ T8079] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.363912][   T10] usb 10-1: device descriptor read/8, error -110
[  145.417018][ T8083] EXT4-fs (loop0): pa ffff8881069ff9a0: logic 256, phys. 369, len 9
[  145.479013][   T10] usb 10-1: new SuperSpeed USB device number 12 using vhci_hcd
[  145.526726][   T10] usb 10-1: enqueue for inactive port 0
[  145.547002][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.554569][   T10] usb 10-1: enqueue for inactive port 0
[  145.603577][   T10] usb 10-1: enqueue for inactive port 0
[  145.652556][ T8105] __nla_validate_parse: 4 callbacks suppressed
[  145.652573][ T8105] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1484'.
[  145.667881][ T8105] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1484'.
[  145.770774][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.974324][ T8115] loop1: detected capacity change from 0 to 1024
[  146.017336][ T8115] EXT4-fs: dax option not supported
[  146.030891][ T8117] loop0: detected capacity change from 0 to 1024
[  146.059470][ T8119] loop4: detected capacity change from 0 to 512
[  146.066214][ T8117] EXT4-fs: dax option not supported
[  146.085744][ T8115] loop1: detected capacity change from 0 to 512
[  146.115545][ T8117] loop0: detected capacity change from 0 to 512
[  146.129510][ T8115] ext4: Unknown parameter 'nouser_xattr'
[  146.146183][ T8117] ext4: Unknown parameter 'nouser_xattr'
[  146.159575][ T8119] loop4: detected capacity change from 0 to 2048
[  146.238781][ T8119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.445481][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.647262][   T10] usb usb10-port1: attempt power cycle
[  146.713506][ T8134] loop0: detected capacity change from 0 to 1024
[  146.760826][ T8134] EXT4-fs: dax option not supported
[  146.798990][ T8139] netlink: 'syz.2.1494': attribute type 3 has an invalid length.
[  146.824871][ T8137] vlan0: entered allmulticast mode
[  147.020526][   T29] kauditd_printk_skb: 81 callbacks suppressed
[  147.020544][   T29] audit: type=1400 audit(2000000001.000:4179): avc:  denied  { bind } for  pid=8149 comm="syz.2.1501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.059841][ T8153] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1502'.
[  147.096954][   T29] audit: type=1400 audit(2000000001.030:4180): avc:  denied  { listen } for  pid=8149 comm="syz.2.1501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.116941][   T29] audit: type=1400 audit(2000000001.050:4181): avc:  denied  { accept } for  pid=8149 comm="syz.2.1501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.136637][   T29] audit: type=1400 audit(2000000001.050:4182): avc:  denied  { read } for  pid=8149 comm="syz.2.1501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.160626][   T29] audit: type=1400 audit(2000000001.110:4183): avc:  denied  { setopt } for  pid=8149 comm="syz.2.1501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.241421][ T8161] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1504'.
[  147.653274][ T1034] IPVS: starting estimator thread 0...
[  147.660005][ T8172] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  147.747084][ T8175] IPVS: using max 2400 ests per chain, 120000 per kthread
[  147.763827][ T8180] tipc: Started in network mode
[  147.768862][ T8180] tipc: Node identity e22d219d1bce, cluster identity 4711
[  147.776283][ T8180] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  147.792656][ T8182] loop1: detected capacity change from 0 to 1024
[  147.801596][ T8182] EXT4-fs: dax option not supported
[  147.822373][ T8182] loop1: detected capacity change from 0 to 512
[  147.824512][ T8180] tipc: Resetting bearer <eth:syzkaller0>
[  147.841557][ T8182] ext4: Unknown parameter 'nouser_xattr'
[  147.856747][ T8179] tipc: Disabling bearer <eth:syzkaller0>
[  147.914963][ T8184] loop3: detected capacity change from 0 to 8192
[  147.942203][ T8184] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  147.961126][ T8188] loop4: detected capacity change from 0 to 512
[  148.000102][ T8188] EXT4-fs: quotafile must be on filesystem root
[  148.020453][ T8186] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1511'.
[  148.073793][ T8193] loop0: detected capacity change from 0 to 1024
[  148.109969][ T8193] EXT4-fs: dax option not supported
[  148.129665][ T8193] loop0: detected capacity change from 0 to 512
[  148.139331][ T8193] ext4: Unknown parameter 'nouser_xattr'
[  148.192499][ T8203] vlan2: entered allmulticast mode
[  148.277880][ T8208] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1518'.
[  148.348627][ T8213] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1520'.
[  148.378312][ T8215] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1521'.
[  148.392772][ T8208] loop0: detected capacity change from 0 to 8192
[  148.402133][ T8208] vfat: Unknown parameter 'À'
[  148.471153][ T8219] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  148.482933][ T8220] loop4: detected capacity change from 0 to 1024
[  148.487022][   T10] usb usb10-port1: unable to enumerate USB device
[  148.494180][ T8220] EXT4-fs: Ignoring removed orlov option
[  148.514939][ T8220] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  148.517496][ T8219] tipc: Resetting bearer <eth:syzkaller0>
[  148.539543][ T8218] tipc: Disabling bearer <eth:syzkaller0>
[  148.546163][ T8220] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.706263][ T8230] loop1: detected capacity change from 0 to 8192
[  148.715316][ T8230] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  148.747942][ T8233] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1525'.
[  148.788674][ T8236] loop0: detected capacity change from 0 to 512
[  148.801158][ T8236] EXT4-fs: quotafile must be on filesystem root
[  148.888496][ T8240] lo speed is unknown, defaulting to 1000
[  149.076708][ T8250] wireguard0: entered promiscuous mode
[  149.082320][ T8250] wireguard0: entered allmulticast mode
[  149.114152][ T8251] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  149.114203][ T1034] IPVS: starting estimator thread 0...
[  149.192244][ T8258] loop3: detected capacity change from 0 to 1024
[  149.216886][ T8254] IPVS: using max 2400 ests per chain, 120000 per kthread
[  149.237180][ T8258] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.285095][   T29] audit: type=1326 audit(2000000003.260:4184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8265 comm="syz.2.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  149.327689][   T29] audit: type=1326 audit(2000000003.260:4185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8265 comm="syz.2.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  149.351315][   T29] audit: type=1326 audit(2000000003.260:4186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8265 comm="syz.2.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  149.375134][   T29] audit: type=1326 audit(2000000003.260:4187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8265 comm="syz.2.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  149.398807][   T29] audit: type=1326 audit(2000000003.260:4188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8265 comm="syz.2.1535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  149.502754][ T8269] loop0: detected capacity change from 0 to 8192
[  149.523288][ T8269] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  149.716792][ T8275] vlan0: entered allmulticast mode
[  149.762978][ T8277] lo speed is unknown, defaulting to 1000
[  149.875767][ T8284] loop1: detected capacity change from 0 to 1024
[  149.897977][ T8284] EXT4-fs: dax option not supported
[  149.968240][ T8289] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  150.054618][ T8291] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  150.061305][ T8291] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  150.069202][ T8291] vhci_hcd vhci_hcd.0: Device attached
[  150.091596][ T8291] loop0: detected capacity change from 0 to 512
[  150.126773][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.159242][ T8291] EXT4-fs (loop0): 1 orphan inode deleted
[  150.180867][ T3325] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  150.214850][ T8291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.264413][ T8303] loop1: detected capacity change from 0 to 512
[  150.289155][ T8291] ext4 filesystem being mounted at /338/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.339852][ T8303] loop1: detected capacity change from 0 to 2048
[  150.357379][ T8307] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1549'.
[  150.369452][ T1034] usb 2-1: SetAddress Request (7) to port 0
[  150.375516][ T1034] usb 2-1: new SuperSpeed USB device number 7 using vhci_hcd
[  150.384027][ T8292] vhci_hcd: connection closed
[  150.384257][   T12] vhci_hcd: stop threads
[  150.393278][   T12] vhci_hcd: release socket
[  150.397755][   T12] vhci_hcd: disconnect device
[  150.412778][ T1034] usb 2-1: enqueue for inactive port 0
[  150.420761][ T8303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.433815][ T1034] usb 2-1: enqueue for inactive port 0
[  150.442482][ T1034] usb 2-1: enqueue for inactive port 0
[  150.464104][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.502572][ T8313] loop1: detected capacity change from 0 to 1024
[  150.523152][ T8313] EXT4-fs: inline encryption not supported
[  150.530869][ T8313] EXT4-fs: Ignoring removed bh option
[  150.549329][ T8313] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.569155][ T1034] usb 2-1: new SuperSpeed USB device number 7 using vhci_hcd
[  150.598971][ T1034] usb 2-1: enqueue for inactive port 0
[  150.617752][ T1034] usb 2-1: enqueue for inactive port 0
[  150.634203][ T1034] usb 2-1: enqueue for inactive port 0
[  150.666125][ T8313] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1550: Allocating blocks 497-513 which overlap fs metadata
[  150.683023][ T8313] EXT4-fs (loop1): Remounting filesystem read-only
[  150.788905][ T8286] syz.2.1542 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  150.800135][ T8286] CPU: 1 UID: 0 PID: 8286 Comm: syz.2.1542 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  150.800170][ T8286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.800187][ T8286] Call Trace:
[  150.800195][ T8286]  <TASK>
[  150.800260][ T8286]  __dump_stack+0x1d/0x30
[  150.800293][ T8286]  dump_stack_lvl+0xe8/0x140
[  150.800319][ T8286]  dump_stack+0x15/0x1b
[  150.800359][ T8286]  dump_header+0x81/0x220
[  150.800400][ T8286]  oom_kill_process+0x334/0x3f0
[  150.800522][ T8286]  out_of_memory+0x979/0xb80
[  150.800561][ T8286]  try_charge_memcg+0x5e6/0x9e0
[  150.800735][ T8286]  charge_memcg+0x51/0xc0
[  150.800842][ T8286]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  150.800886][ T8286]  __read_swap_cache_async+0x1df/0x350
[  150.800930][ T8286]  swap_cluster_readahead+0x376/0x3e0
[  150.800993][ T8286]  swapin_readahead+0xde/0x6f0
[  150.801028][ T8286]  ? __filemap_get_folio+0x4f7/0x6b0
[  150.801067][ T8286]  ? __rcu_read_unlock+0x34/0x70
[  150.801136][ T8286]  ? swap_cache_get_folio+0x77/0x200
[  150.801170][ T8286]  do_swap_page+0x301/0x2430
[  150.801195][ T8286]  ? css_rstat_updated+0xcd/0x5b0
[  150.801257][ T8286]  ? __pfx_default_wake_function+0x10/0x10
[  150.801284][ T8286]  handle_mm_fault+0x9a5/0x2be0
[  150.801315][ T8286]  ? mas_walk+0xf2/0x120
[  150.801357][ T8286]  do_user_addr_fault+0x636/0x1090
[  150.801415][ T8286]  exc_page_fault+0x62/0xa0
[  150.801449][ T8286]  asm_exc_page_fault+0x26/0x30
[  150.801469][ T8286] RIP: 0033:0x7fd96611d9bf
[  150.801484][ T8286] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 fb 44 8d 56 04 4c 8d 0d 52 46 35 00 89 f0 4c 8d 05 49 26 35 00 89 c2 81 e2 ff 1f 00 00 <49> 8b 0c d1 48 39 f1 74 28 48 85 c9 74 29 45 38 1c 10 75 23 83 c0
[  150.801506][ T8286] RSP: 002b:00007ffe2cfd6788 EFLAGS: 00010202
[  150.801526][ T8286] RAX: 0000000084442898 RBX: 00007fd966fb5720 RCX: 0000000000000015
[  150.801588][ T8286] RDX: 0000000000000898 RSI: ffffffff84442898 RDI: 000000000000000a
[  150.801633][ T8286] RBP: ffffffff84442898 R08: 00007fd966470000 R09: 00007fd966472000
[  150.801721][ T8286] R10: 000000008444289c R11: 000000000000000a R12: 000000000000000a
[  150.801732][ T8286] R13: 0000000000000015 R14: ffffffff84442c91 R15: 0000000000000015
[  150.801746][ T8286]  ? ____sys_sendmsg+0x31/0x4e0
[  150.801787][ T8286]  ? __ia32_sys_shutdown+0xd8/0x130
[  150.801825][ T8286]  ? __ia32_sys_shutdown+0xd8/0x130
[  150.801890][ T8286]  </TASK>
[  150.801898][ T8286] memory: usage 307200kB, limit 307200kB, failcnt 232
[  150.837231][ T8312] EXT4-fs (loop1): pa ffff888106a932a0: logic 256, phys. 369, len 9
[  150.839920][ T8286] memory+swap: usage 311900kB, limit 9007199254740988kB, failcnt 0
[  151.060151][ T8286] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  151.067492][ T8286] Memory cgroup stats for /syz2:
[  151.068059][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.070778][ T8286] cache 4096
[  151.085359][ T8286] rss 0
[  151.088180][ T8286] shmem 0
[  151.091241][ T8286] mapped_file 0
[  151.094771][ T8286] dirty 0
[  151.097756][ T8286] writeback 0
[  151.101103][ T8286] workingset_refault_anon 1112
[  151.105901][ T8286] workingset_refault_file 162
[  151.110710][ T8286] swap 4812800
[  151.114161][ T8286] swapcached 0
[  151.117619][ T8286] pgpgin 218667
[  151.121144][ T8286] pgpgout 218665
[  151.124750][ T8286] pgfault 189882
[  151.128393][ T8286] pgmajfault 212
[  151.132000][ T8286] inactive_anon 0
[  151.135658][ T8286] active_anon 0
[  151.139203][ T8286] inactive_file 8192
[  151.143115][ T8286] active_file 0
[  151.146599][ T8286] unevictable 0
[  151.150121][ T8286] hierarchical_memory_limit 314572800
[  151.155612][ T8286] hierarchical_memsw_limit 9223372036854771712
[  151.161837][ T8286] total_cache 4096
[  151.165610][ T8286] total_rss 0
[  151.168962][ T8286] total_shmem 0
[  151.172443][ T8286] total_mapped_file 0
[  151.176533][ T8286] total_dirty 0
[  151.180060][ T8286] total_writeback 0
[  151.183890][ T8286] total_workingset_refault_anon 1112
[  151.189238][ T8286] total_workingset_refault_file 162
[  151.194494][ T8286] total_swap 4812800
[  151.198425][ T8286] total_swapcached 0
[  151.202395][ T8286] total_pgpgin 218667
[  151.206465][ T8286] total_pgpgout 218665
[  151.210597][ T8286] total_pgfault 189882
[  151.214768][ T8286] total_pgmajfault 212
[  151.218884][ T8286] total_inactive_anon 0
[  151.223117][ T8286] total_active_anon 0
[  151.227231][ T8286] total_inactive_file 8192
[  151.231761][ T8286] total_active_file 0
[  151.235769][ T8286] total_unevictable 0
[  151.239814][ T8286] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1542,pid=8286,uid=0
[  151.254600][ T8286] Memory cgroup out of memory: Killed process 8286 (syz.2.1542) total-vm:93624kB, anon-rss:920kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  151.279816][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.373103][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.485577][ T8332] loop3: detected capacity change from 0 to 1024
[  151.498037][ T8330] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1553'.
[  151.519414][ T8332] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.544355][ T8334] tipc: Started in network mode
[  151.549361][ T8334] tipc: Node identity 5e43a79ee0a1, cluster identity 4711
[  151.556665][ T8334] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  151.578574][ T8333] tipc: Disabling bearer <eth:syzkaller0>
[  151.722029][ T8344] syzkaller0: entered promiscuous mode
[  151.727631][ T8344] syzkaller0: entered allmulticast mode
[  151.738373][ T8346] batadv_slave_0: entered promiscuous mode
[  151.763143][ T8346] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1558'.
[  151.796727][ T8346] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.827612][ T8346] batadv_slave_0 (unregistering): left promiscuous mode
[  151.834652][ T8346] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.850101][ T8349] FAULT_INJECTION: forcing a failure.
[  151.850101][ T8349] name failslab, interval 1, probability 0, space 0, times 0
[  151.862861][ T8349] CPU: 0 UID: 0 PID: 8349 Comm: syz.1.1560 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  151.862892][ T8349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  151.862975][ T8349] Call Trace:
[  151.862984][ T8349]  <TASK>
[  151.862993][ T8349]  __dump_stack+0x1d/0x30
[  151.863061][ T8349]  dump_stack_lvl+0xe8/0x140
[  151.863081][ T8349]  dump_stack+0x15/0x1b
[  151.863101][ T8349]  should_fail_ex+0x265/0x280
[  151.863172][ T8349]  should_failslab+0x8c/0xb0
[  151.863201][ T8349]  kmem_cache_alloc_noprof+0x50/0x310
[  151.863233][ T8349]  ? security_file_alloc+0x32/0x100
[  151.863329][ T8349]  security_file_alloc+0x32/0x100
[  151.863483][ T8349]  init_file+0x5c/0x1d0
[  151.863507][ T8349]  alloc_empty_file+0x8b/0x200
[  151.863536][ T8349]  alloc_file_pseudo+0xc6/0x160
[  151.863570][ T8349]  __shmem_file_setup+0x1de/0x210
[  151.863686][ T8349]  shmem_file_setup+0x3b/0x50
[  151.863721][ T8349]  __se_sys_memfd_create+0x2c3/0x590
[  151.863753][ T8349]  __x64_sys_memfd_create+0x31/0x40
[  151.863815][ T8349]  x64_sys_call+0x122f/0x2fb0
[  151.863912][ T8349]  do_syscall_64+0xd2/0x200
[  151.863932][ T8349]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  151.864032][ T8349]  ? clear_bhb_loop+0x40/0x90
[  151.864053][ T8349]  ? clear_bhb_loop+0x40/0x90
[  151.864124][ T8349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.864157][ T8349] RIP: 0033:0x7f953ae6e929
[  151.864172][ T8349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.864190][ T8349] RSP: 002b:00007f95394d6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  151.864208][ T8349] RAX: ffffffffffffffda RBX: 000000000000050a RCX: 00007f953ae6e929
[  151.864259][ T8349] RDX: 00007f95394d6ef0 RSI: 0000000000000000 RDI: 00007f953aef14cc
[  151.864285][ T8349] RBP: 0000200000000200 R08: 00007f95394d6bb7 R09: 00007f95394d6e40
[  151.864300][ T8349] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[  151.864316][ T8349] R13: 00007f95394d6ef0 R14: 00007f95394d6eb0 R15: 0000200000000080
[  151.864341][ T8349]  </TASK>
[  152.096072][ T1034] usb usb2-port1: attempt power cycle
[  152.169713][ T8355] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1562'.
[  152.245133][ T8358] lo speed is unknown, defaulting to 1000
[  152.420571][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.429961][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  152.429977][   T29] audit: type=1400 audit(2000000002.170:4286): avc:  denied  { bind } for  pid=8362 comm="syz.4.1564" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  152.488388][   T29] audit: type=1326 audit(2000000002.240:4287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.511927][   T29] audit: type=1326 audit(2000000002.240:4288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.574023][   T29] audit: type=1326 audit(2000000002.290:4289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.597609][   T29] audit: type=1326 audit(2000000002.290:4290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.621160][   T29] audit: type=1326 audit(2000000002.290:4291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.644624][   T29] audit: type=1326 audit(2000000002.290:4292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.668081][   T29] audit: type=1326 audit(2000000002.290:4293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.674809][ T8376] syzkaller0: entered promiscuous mode
[  152.692025][   T29] audit: type=1326 audit(2000000002.290:4294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.697338][ T8376] syzkaller0: entered allmulticast mode
[  152.720872][   T29] audit: type=1326 audit(2000000002.290:4295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8367 comm="syz.4.1567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7bbf7ce929 code=0x7ffc0000
[  152.782104][ T8380] lo speed is unknown, defaulting to 1000
[  152.934115][ T8392] netlink: 596 bytes leftover after parsing attributes in process `+}[@'.
[  152.955967][ T8395] vlan2: entered allmulticast mode
[  153.061762][ T8400] loop4: detected capacity change from 0 to 1024
[  153.077372][ T8400] EXT4-fs: dax option not supported
[  153.285156][ T8412] loop0: detected capacity change from 0 to 512
[  153.300903][ T8415] syzkaller0: entered promiscuous mode
[  153.306169][ T8412] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  153.306551][ T8415] syzkaller0: entered allmulticast mode
[  153.329660][ T8412] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  153.338949][ T8412] EXT4-fs (loop0): orphan cleanup on readonly fs
[  153.345833][ T8412] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1583: invalid indirect mapped block 2185560079 (level 1)
[  153.360511][ T8412] EXT4-fs (loop0): Remounting filesystem read-only
[  153.367516][ T8412] EXT4-fs (loop0): 1 truncate cleaned up
[  153.374192][ T8412] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  153.409493][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  153.490728][ T8421] loop4: detected capacity change from 0 to 8192
[  153.500866][ T8421] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  153.630341][ T8437] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  153.703073][ T8440] loop1: detected capacity change from 0 to 128
[  153.763784][ T8440] lo speed is unknown, defaulting to 1000
[  153.824330][ T8444] serio: Serial port ptm0
[  153.927582][ T8447] loop1: detected capacity change from 0 to 1024
[  153.941826][ T8447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.956995][ T1034] usb usb2-port1: unable to enumerate USB device
[  154.119732][ T8461] syzkaller0: entered promiscuous mode
[  154.125308][ T8461] syzkaller0: entered allmulticast mode
[  154.146385][ T8464] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1593'.
[  154.221352][ T8464] loop4: detected capacity change from 0 to 8192
[  154.232749][ T8464] vfat: Unknown parameter 'À'
[  154.292797][ T8472] loop4: detected capacity change from 0 to 1024
[  154.300567][ T8469] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  154.310406][ T5976] IPVS: starting estimator thread 0...
[  154.310700][ T8472] EXT4-fs: inline encryption not supported
[  154.329961][ T8472] EXT4-fs: Ignoring removed bh option
[  154.371324][ T8472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.407085][ T8476] IPVS: using max 2256 ests per chain, 112800 per kthread
[  154.426598][ T8484] loop3: detected capacity change from 0 to 1024
[  154.439078][ T8484] EXT4-fs: inline encryption not supported
[  154.465220][ T8484] EXT4-fs: Ignoring removed bh option
[  154.499895][ T8484] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.534148][ T8472] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.1601: Allocating blocks 497-513 which overlap fs metadata
[  154.573658][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.581488][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.589198][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.597013][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.599687][ T8472] EXT4-fs (loop4): Remounting filesystem read-only
[  154.604673][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.619037][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.626859][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.634548][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.642244][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.649971][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.657721][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.661267][ T8499] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1602: Allocating blocks 497-513 which overlap fs metadata
[  154.665419][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.665450][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.694704][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.702412][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.710115][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.717819][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.725095][ T8499] EXT4-fs (loop3): Remounting filesystem read-only
[  154.725521][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.739798][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.747562][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.755269][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.763094][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.770867][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.778583][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.786287][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.794071][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.801784][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.809490][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.817209][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.824937][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.832641][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.840389][ T1034] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0
[  154.849320][ T1034] hid-generic 0000:3000000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  154.910733][ T8482] EXT4-fs (loop3): pa ffff8881069ffa80: logic 256, phys. 369, len 9
[  154.957041][ T8471] EXT4-fs (loop4): pa ffff8881069ffa10: logic 256, phys. 369, len 9
[  154.992323][ T8506] loop3: detected capacity change from 0 to 128
[  155.000379][ T8503] FAULT_INJECTION: forcing a failure.
[  155.000379][ T8503] name failslab, interval 1, probability 0, space 0, times 0
[  155.005487][ T8504] fido_id[8504]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  155.013177][ T8503] CPU: 0 UID: 0 PID: 8503 Comm: syz.2.1606 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  155.013212][ T8503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.013228][ T8503] Call Trace:
[  155.013236][ T8503]  <TASK>
[  155.013250][ T8503]  __dump_stack+0x1d/0x30
[  155.013273][ T8503]  dump_stack_lvl+0xe8/0x140
[  155.013310][ T8503]  dump_stack+0x15/0x1b
[  155.013327][ T8503]  should_fail_ex+0x265/0x280
[  155.013451][ T8503]  should_failslab+0x8c/0xb0
[  155.013483][ T8503]  kmem_cache_alloc_noprof+0x50/0x310
[  155.013519][ T8503]  ? getname_flags+0x80/0x3b0
[  155.013596][ T8503]  getname_flags+0x80/0x3b0
[  155.013627][ T8503]  do_sys_openat2+0x60/0x110
[  155.013663][ T8503]  __x64_sys_openat+0xf2/0x120
[  155.013740][ T8503]  x64_sys_call+0x1af/0x2fb0
[  155.013769][ T8503]  do_syscall_64+0xd2/0x200
[  155.013795][ T8503]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.013871][ T8503]  ? clear_bhb_loop+0x40/0x90
[  155.013908][ T8503]  ? clear_bhb_loop+0x40/0x90
[  155.014009][ T8503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.014038][ T8503] RIP: 0033:0x7fd96625e929
[  155.014059][ T8503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.014084][ T8503] RSP: 002b:00007fd9648a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  155.014108][ T8503] RAX: ffffffffffffffda RBX: 00007fd966486080 RCX: 00007fd96625e929
[  155.014126][ T8503] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c
[  155.014213][ T8503] RBP: 00007fd9648a6090 R08: 0000000000000000 R09: 0000000000000000
[  155.014229][ T8503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.014246][ T8503] R13: 0000000000000000 R14: 00007fd966486080 R15: 00007ffe2cfd6708
[  155.014273][ T8503]  </TASK>
[  155.083488][ T8506] bio_check_eod: 4 callbacks suppressed
[  155.083508][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.083508][ T8506] loop3: rw=2049, sector=132, nr_sectors = 8 limit=128
[  155.183908][ T8511] loop4: detected capacity change from 0 to 1024
[  155.235498][ T8509] loop1: detected capacity change from 0 to 8192
[  155.245322][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.245322][ T8506] loop3: rw=2049, sector=148, nr_sectors = 8 limit=128
[  155.279668][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.279668][ T8506] loop3: rw=2049, sector=142, nr_sectors = 1 limit=128
[  155.293260][ T8506] buffer_io_error: 2 callbacks suppressed
[  155.293276][ T8506] Buffer I/O error on dev loop3, logical block 142, lost async page write
[  155.310239][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.310239][ T8506] loop3: rw=2049, sector=143, nr_sectors = 1 limit=128
[  155.323844][ T8506] Buffer I/O error on dev loop3, logical block 143, lost async page write
[  155.334464][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.334464][ T8506] loop3: rw=2049, sector=144, nr_sectors = 1 limit=128
[  155.348079][ T8506] Buffer I/O error on dev loop3, logical block 144, lost async page write
[  155.365139][ T8511] EXT4-fs: dax option not supported
[  155.375165][ T8511] loop4: detected capacity change from 0 to 512
[  155.385525][ T8511] ext4: Unknown parameter 'nouser_xattr'
[  155.391711][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.391711][ T8506] loop3: rw=2049, sector=145, nr_sectors = 1 limit=128
[  155.405262][ T8506] Buffer I/O error on dev loop3, logical block 145, lost async page write
[  155.476694][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.476694][ T8506] loop3: rw=2049, sector=146, nr_sectors = 1 limit=128
[  155.490441][ T8506] Buffer I/O error on dev loop3, logical block 146, lost async page write
[  155.500159][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.500159][ T8506] loop3: rw=2049, sector=147, nr_sectors = 1 limit=128
[  155.513744][ T8506] Buffer I/O error on dev loop3, logical block 147, lost async page write
[  155.522638][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.522638][ T8506] loop3: rw=2049, sector=156, nr_sectors = 1 limit=128
[  155.536187][ T8506] Buffer I/O error on dev loop3, logical block 156, lost async page write
[  155.575730][ T8506] syz.3.1607: attempt to access beyond end of device
[  155.575730][ T8506] loop3: rw=2049, sector=157, nr_sectors = 1 limit=128
[  155.589419][ T8506] Buffer I/O error on dev loop3, logical block 157, lost async page write
[  155.601260][ T8516] loop0: detected capacity change from 0 to 128
[  155.607798][ T8506] Buffer I/O error on dev loop3, logical block 160, lost async page write
[  155.654240][ T8506] Buffer I/O error on dev loop3, logical block 161, lost async page write
[  155.661068][ T8516] lo speed is unknown, defaulting to 1000
[  155.663805][ T8518] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  155.720346][ T8523] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  155.745502][ T8522] tipc: Disabling bearer <eth:syzkaller0>
[  155.863553][ T8535] loop3: detected capacity change from 0 to 1024
[  156.204171][ T8549] loop0: detected capacity change from 0 to 1024
[  156.232339][ T8549] EXT4-fs: dax option not supported
[  156.270330][ T8549] loop0: detected capacity change from 0 to 512
[  156.287926][ T8549] ext4: Unknown parameter 'nouser_xattr'
[  156.294898][ T8552] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1624'.
[  156.810764][ T8572] loop0: detected capacity change from 0 to 512
[  156.829205][ T8572] EXT4-fs: Ignoring removed mblk_io_submit option
[  156.842054][ T8572] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  156.868590][ T8572] EXT4-fs (loop0): 1 truncate cleaned up
[  156.979494][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x4
[  156.987359][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x2
[  156.995063][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.002829][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.010608][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.018401][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.026148][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.033925][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.041651][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.049358][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.057088][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.064794][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.072573][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.080277][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.087995][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.095699][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.103415][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.111226][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.118941][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.126707][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.134391][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.142176][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.149981][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.158107][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.165787][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.173611][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.181417][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.189123][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.196870][   T36] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x0
[  157.207383][   T36] hid-generic 0000:3000000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  157.234853][ T8592] loop0: detected capacity change from 0 to 128
[  157.267304][ T8592] lo speed is unknown, defaulting to 1000
[  157.311516][ T8587] loop4: detected capacity change from 0 to 8192
[  157.642324][ T8604] loop0: detected capacity change from 0 to 1764
[  157.759657][ T8614] loop1: detected capacity change from 0 to 1024
[  158.177230][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.184958][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185029][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185055][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185118][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185139][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185236][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185264][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185305][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185328][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185443][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185473][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185523][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185618][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185686][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185708][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185728][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185751][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185807][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185832][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185866][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185888][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185908][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185929][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185961][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.185987][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186054][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186131][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186152][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186172][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186192][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.186219][   T10] hid-generic 0000:3000000:0000.0010: unknown main item tag 0x0
[  158.221500][   T10] hid-generic 0000:3000000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  158.241363][ T8632] fido_id[8632]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  158.496848][ T8637] loop3: detected capacity change from 0 to 1024
[  158.551843][ T8637] EXT4-fs: dax option not supported
[  158.564649][ T8637] loop3: detected capacity change from 0 to 512
[  158.597014][ T8637] ext4: Unknown parameter 'nouser_xattr'
[  158.730005][   T10] IPVS: starting estimator thread 0...
[  158.735745][ T8646] loop1: detected capacity change from 0 to 2048
[  158.767905][ T8644] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  158.800825][ T8646] EXT4-fs error (device loop1): ext4_read_inline_dir:1502: inode #12: block 9: comm syz.1.1654: path /332/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0
[  158.816789][ T8649] IPVS: using max 2064 ests per chain, 103200 per kthread
[  158.844129][ T8646] EXT4-fs (loop1): Remounting filesystem read-only
[  158.910113][   T29] kauditd_printk_skb: 91 callbacks suppressed
[  158.910132][   T29] audit: type=1326 audit(2000000008.660:4387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  158.917705][ T8653] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[  158.946362][ T8653] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  158.946465][ T8653] vhci_hcd vhci_hcd.0: Device attached
[  158.951906][ T8661] loop0: detected capacity change from 0 to 1764
[  158.988107][   T29] audit: type=1326 audit(2000000008.660:4388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  159.011728][   T29] audit: type=1326 audit(2000000008.660:4389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  159.035305][   T29] audit: type=1326 audit(2000000008.660:4390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  159.058777][   T29] audit: type=1326 audit(2000000008.660:4391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  159.082348][   T29] audit: type=1326 audit(2000000008.660:4392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fd96626087a code=0x7ffc0000
[  159.105716][   T29] audit: type=1326 audit(2000000008.660:4393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd96625d290 code=0x7ffc0000
[  159.129259][   T29] audit: type=1326 audit(2000000008.660:4394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd96625d3df code=0x7ffc0000
[  159.129357][ T8663] vhci_hcd: connection closed
[  159.152525][   T29] audit: type=1326 audit(2000000008.740:4395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd96625d58a code=0x7ffc0000
[  159.163851][ T8670] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  159.180475][   T29] audit: type=1326 audit(2000000008.740:4396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8652 comm="syz.2.1655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  159.206872][   T51] vhci_hcd: stop threads
[  159.217090][   T51] vhci_hcd: release socket
[  159.221556][   T51] vhci_hcd: disconnect device
[  159.636131][ T8686] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  159.693770][ T8689] loop1: detected capacity change from 0 to 8192
[  159.704930][ T8689] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  159.801019][ T8693] loop1: detected capacity change from 0 to 1024
[  159.873404][ T8695] loop4: detected capacity change from 0 to 1024
[  159.899317][ T8695] EXT4-fs: dax option not supported
[  159.942033][ T8695] loop4: detected capacity change from 0 to 512
[  159.967930][ T8695] ext4: Unknown parameter 'nouser_xattr'
[  160.088370][ T8704] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1669'.
[  160.214881][ T8708] loop4: detected capacity change from 0 to 8192
[  160.234779][ T8708] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  160.351286][ T8711] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  160.387703][ T5976] page_pool_release_retry() stalled pool shutdown: id 23, 1 inflight 60 sec
[  160.461370][ T8720] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1674'.
[  160.534994][ T8725] netlink: 'syz.4.1676': attribute type 3 has an invalid length.
[  160.621102][ T8730] loop4: detected capacity change from 0 to 1764
[  161.045870][ T8738] loop1: detected capacity change from 0 to 1024
[  161.066079][ T8738] EXT4-fs: dax option not supported
[  161.120523][ T8740] wireguard1: entered promiscuous mode
[  161.126146][ T8740] wireguard1: entered allmulticast mode
[  161.218854][ T8747] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  161.336314][ T8761] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1687'.
[  161.454462][ T8760] loop1: detected capacity change from 0 to 8192
[  161.685352][ T8773] netlink: 'syz.4.1692': attribute type 3 has an invalid length.
[  161.710498][ T8776] loop0: detected capacity change from 0 to 1024
[  161.738163][ T8776] EXT4-fs: dax option not supported
[  161.791425][ T8779] loop3: detected capacity change from 0 to 256
[  161.923718][ T8788] vlan2: entered allmulticast mode
[  161.928989][ T8788] macvtap0: entered allmulticast mode
[  161.934397][ T8788] veth0_macvtap: entered allmulticast mode
[  162.134768][ T8792] loop1: detected capacity change from 0 to 8192
[  162.150036][ T8796] wireguard1: entered promiscuous mode
[  162.155565][ T8796] wireguard1: entered allmulticast mode
[  162.165241][ T8799] loop3: detected capacity change from 0 to 1764
[  162.592999][ T8824] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  162.913102][ T8833] SELinux: failed to load policy
[  163.008541][ T8833] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1716'.
[  163.039817][ T8843] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.121289][ T8833] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.128572][ T8833] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.233574][ T8853] FAULT_INJECTION: forcing a failure.
[  163.233574][ T8853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.246820][ T8853] CPU: 1 UID: 0 PID: 8853 Comm: syz.4.1725 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  163.246869][ T8853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.246885][ T8853] Call Trace:
[  163.246893][ T8853]  <TASK>
[  163.246914][ T8853]  __dump_stack+0x1d/0x30
[  163.247003][ T8853]  dump_stack_lvl+0xe8/0x140
[  163.247027][ T8853]  dump_stack+0x15/0x1b
[  163.247048][ T8853]  should_fail_ex+0x265/0x280
[  163.247085][ T8853]  should_fail+0xb/0x20
[  163.247165][ T8853]  should_fail_usercopy+0x1a/0x20
[  163.247224][ T8853]  _copy_to_user+0x20/0xa0
[  163.247249][ T8853]  copy_siginfo_to_user+0x22/0xb0
[  163.247276][ T8853]  x64_setup_rt_frame+0x2b5/0x580
[  163.247301][ T8853]  arch_do_signal_or_restart+0x27c/0x480
[  163.247354][ T8853]  exit_to_user_mode_loop+0x7a/0x100
[  163.247385][ T8853]  do_syscall_64+0x1d6/0x200
[  163.247405][ T8853]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  163.247434][ T8853]  ? clear_bhb_loop+0x40/0x90
[  163.247492][ T8853]  ? clear_bhb_loop+0x40/0x90
[  163.247514][ T8853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.247541][ T8853] RIP: 0033:0x7f7bbf7ce927
[  163.247560][ T8853] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  163.247583][ T8853] RSP: 002b:00007f7bbde37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  163.247610][ T8853] RAX: 00000000000000ca RBX: 00007f7bbf9f5fa0 RCX: 00007f7bbf7ce929
[  163.247623][ T8853] RDX: 0000000000000000 RSI: 000080000000000b RDI: 000020000000cffc
[  163.247639][ T8853] RBP: 00007f7bbde37090 R08: 0000200000048000 R09: 0000000000000000
[  163.247654][ T8853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.247670][ T8853] R13: 0000000000000000 R14: 00007f7bbf9f5fa0 R15: 00007fff66cc11c8
[  163.247691][ T8853]  </TASK>
[  163.524736][ T8833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  163.650674][ T8833] veth0_macvtap: left allmulticast mode
[  163.681301][ T8833] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  163.689914][ T8833] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  163.698365][ T8833] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  163.706822][ T8833] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  163.730568][ T8863] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  163.799562][ T8855] tipc: Resetting bearer <eth:syzkaller0>
[  163.833651][ T8842] tipc: Disabling bearer <eth:syzkaller0>
[  164.171084][ T8873] lo speed is unknown, defaulting to 1000
[  164.190292][ T8875] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1732'.
[  164.418679][   T10] hid-generic 0004:0006:020A.0011: unknown main item tag 0x4
[  164.426236][   T10] hid-generic 0004:0006:020A.0011: item fetching failed at offset 5/6
[  164.466833][   T10] hid-generic 0004:0006:020A.0011: probe with driver hid-generic failed with error -22
[  164.700275][ T8885] netlink: 348 bytes leftover after parsing attributes in process `syz.4.1736'.
[  164.868271][ T8901] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1741'.
[  164.906713][ T8903] loop1: detected capacity change from 0 to 1764
[  164.944676][ T8905] loop4: detected capacity change from 0 to 1024
[  164.952326][ T8905] EXT4-fs: Ignoring removed orlov option
[  164.967303][ T8905] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  164.980720][   T29] kauditd_printk_skb: 151 callbacks suppressed
[  164.980736][   T29] audit: type=1326 audit(2000000014.730:4548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.015300][   T29] audit: type=1326 audit(2000000014.760:4549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.038888][   T29] audit: type=1326 audit(2000000014.760:4550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.062620][   T29] audit: type=1326 audit(2000000014.760:4551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.086096][   T29] audit: type=1326 audit(2000000014.760:4552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.109708][   T29] audit: type=1326 audit(2000000014.760:4553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.120285][ T8914] loop0: detected capacity change from 0 to 1024
[  165.133565][   T29] audit: type=1326 audit(2000000014.760:4554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.141184][ T8914] EXT4-fs: dax option not supported
[  165.163497][   T29] audit: type=1326 audit(2000000014.760:4555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.192300][   T29] audit: type=1326 audit(2000000014.760:4556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.215925][   T29] audit: type=1326 audit(2000000014.760:4557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8906 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1984e929 code=0x7ffc0000
[  165.272448][ T8905] EXT4-fs mount: 13 callbacks suppressed
[  165.272467][ T8905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.389524][ T8917] loop0: detected capacity change from 0 to 8192
[  165.500004][ T3305] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  165.507963][ T3305] FAT-fs (loop0): Filesystem has been set read-only
[  165.551979][ T8925] serio: Serial port ptm0
[  165.574082][ T8929] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1748'.
[  165.786757][ T8929] loop0: detected capacity change from 0 to 8192
[  165.807065][ T8929] vfat: Unknown parameter 'À'
[  165.921098][ T8936] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  165.927753][ T8936] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  165.935457][ T8936] vhci_hcd vhci_hcd.0: Device attached
[  165.975733][ T8939] loop0: detected capacity change from 0 to 512
[  166.014150][ T8939] EXT4-fs (loop0): 1 orphan inode deleted
[  166.020756][ T8939] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.043894][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[  166.061568][ T8939] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.091560][ T8947] loop3: detected capacity change from 0 to 512
[  166.107400][ T8937] vhci_hcd: connection closed
[  166.107795][   T51] vhci_hcd: stop threads
[  166.116899][   T51] vhci_hcd: release socket
[  166.121355][   T51] vhci_hcd: disconnect device
[  166.143163][ T8947] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.1755: casefold flag without casefold feature
[  166.180805][ T8947] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.1755: couldn't read orphan inode 15 (err -117)
[  166.219772][ T8947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.238898][ T8950] loop1: detected capacity change from 0 to 1024
[  166.247746][ T8950] EXT4-fs: inline encryption not supported
[  166.264665][ T8950] EXT4-fs: Ignoring removed bh option
[  166.279781][ T8950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.340671][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x4
[  166.348517][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x2
[  166.356210][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.363959][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.371652][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.379404][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.387337][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.395021][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.402725][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.410439][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.418213][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.425949][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.433685][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.437080][ T3315] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  166.441400][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.452916][ T3315] CPU: 0 UID: 0 PID: 3315 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  166.453027][ T3315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.453044][ T3315] Call Trace:
[  166.453055][ T3315]  <TASK>
[  166.453066][ T3315]  __dump_stack+0x1d/0x30
[  166.453160][ T3315]  dump_stack_lvl+0xe8/0x140
[  166.453188][ T3315]  dump_stack+0x15/0x1b
[  166.453210][ T3315]  dump_header+0x81/0x220
[  166.453255][ T3315]  oom_kill_process+0x334/0x3f0
[  166.453320][ T3315]  out_of_memory+0x979/0xb80
[  166.453405][ T3315]  try_charge_memcg+0x5e6/0x9e0
[  166.453465][ T3315]  charge_memcg+0x51/0xc0
[  166.453607][ T3315]  __mem_cgroup_charge+0x28/0xb0
[  166.453691][ T3315]  filemap_add_folio+0x4e/0x1b0
[  166.453803][ T3315]  __filemap_get_folio+0x31e/0x6b0
[  166.453848][ T3315]  filemap_fault+0x41d/0xb40
[  166.454046][ T3315]  __do_fault+0xb9/0x200
[  166.454075][ T3315]  handle_mm_fault+0xf78/0x2be0
[  166.454106][ T3315]  ? mas_walk+0xf2/0x120
[  166.454154][ T3315]  do_user_addr_fault+0x636/0x1090
[  166.454230][ T3315]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  166.454266][ T3315]  exc_page_fault+0x62/0xa0
[  166.454355][ T3315]  asm_exc_page_fault+0x26/0x30
[  166.454383][ T3315] RIP: 0033:0x7fd966135974
[  166.454406][ T3315] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 28 fe e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d 39 fd e7 00 48 01 d1
[  166.454488][ T3315] RSP: 002b:00007ffe2cfd6a90 EFLAGS: 00010202
[  166.454511][ T3315] RAX: 0000001b32220000 RBX: 0000000000000382 RCX: 0000000000028870
[  166.454529][ T3315] RDX: 00000000061ff32b RSI: 00007ffe2cfd6b20 RDI: 0000000000000001
[  166.454545][ T3315] RBP: 00007ffe2cfd6acc R08: 00000000175d410d R09: 7fffffffffffffff
[  166.454562][ T3315] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  166.454593][ T3315] R13: 00000000000927c0 R14: 00000000000286d3 R15: 00007ffe2cfd6b20
[  166.454619][ T3315]  </TASK>
[  166.454628][ T3315] memory: usage 307200kB, limit 307200kB, failcnt 367
[  166.460550][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.460578][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.473216][ T3315] memory+swap: usage 311864kB, limit 9007199254740988kB, failcnt 0
[  166.483279][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.486555][ T3315] kmem: usage 306968kB, limit 9007199254740988kB, failcnt 0
[  166.489580][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.493974][ T3315] Memory cgroup stats for 
[  166.498469][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.502596][ T3315] /syz2:
[  166.527346][ T3315] cache 4096
[  166.530722][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.535526][ T3315] rss 28672
[  166.535536][ T3315] shmem 0
[  166.540663][   T36] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[  166.549594][   T36] hid-generic 0000:3000000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  166.554469][ T3315] mapped_file 0
[  166.564029][ T8950] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1756: Allocating blocks 497-513 which overlap fs metadata
[  166.569964][ T3315] dirty 0
[  166.575417][ T8950] EXT4-fs (loop1): Remounting filesystem read-only
[  166.579323][ T3315] writeback 0
[  166.579333][ T3315] workingset_refault_anon 1235
[  166.623287][ T8955] fido_id[8955]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  166.625627][ T3315] workingset_refault_file 725
[  166.625638][ T3315] swap 4775936
[  166.625647][ T3315] swapcached 32768
[  166.625660][ T3315] pgpgin 255406
[  166.625667][ T3315] pgpgout 255396
[  166.625674][ T3315] pgfault 220094
[  166.625680][ T3315] pgmajfault 302
[  166.625686][ T3315] inactive_anon 32768
[  166.707318][ T8949] EXT4-fs (loop1): pa ffff888106a93310: logic 256, phys. 369, len 9
[  166.710079][ T3315] active_anon 0
[  166.845739][ T3315] inactive_file 8192
[  166.849688][ T3315] active_file 0
[  166.853339][ T3315] unevictable 0
[  166.856845][ T3315] hierarchical_memory_limit 314572800
[  166.862267][ T3315] hierarchical_memsw_limit 9223372036854771712
[  166.868503][ T3315] total_cache 4096
[  166.872349][ T3315] total_rss 28672
[  166.875998][ T3315] total_shmem 0
[  166.879507][ T3315] total_mapped_file 0
[  166.883563][ T3315] total_dirty 0
[  166.887073][ T3315] total_writeback 0
[  166.890890][ T3315] total_workingset_refault_anon 1235
[  166.896230][ T3315] total_workingset_refault_file 725
[  166.901524][ T3315] total_swap 4775936
[  166.905455][ T3315] total_swapcached 32768
[  166.909805][ T3315] total_pgpgin 255406
[  166.913797][ T3315] total_pgpgout 255396
[  166.917886][ T3315] total_pgfault 220094
[  166.921965][ T3315] total_pgmajfault 302
[  166.926028][ T3315] total_inactive_anon 32768
[  166.930753][ T3315] total_active_anon 0
[  166.934833][ T3315] total_inactive_file 8192
[  166.939325][ T3315] total_active_file 0
[  166.943388][ T3315] total_unevictable 0
[  166.947589][ T3315] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1751,pid=8930,uid=0
[  166.962235][ T3315] Memory cgroup out of memory: Killed process 8930 (syz.2.1751) total-vm:93624kB, anon-rss:960kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  166.989937][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.999971][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.013545][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.053783][ T8963] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  167.060432][ T8963] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  167.068270][ T8963] vhci_hcd vhci_hcd.0: Device attached
[  167.106881][ T8963] loop0: detected capacity change from 0 to 512
[  167.142163][ T8963] EXT4-fs (loop0): 1 orphan inode deleted
[  167.159239][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[  167.171664][ T8963] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.198424][ T8960] loop3: detected capacity change from 0 to 8192
[  167.208543][ T8963] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.233480][ T8965] vhci_hcd: connection closed
[  167.233697][   T51] vhci_hcd: stop threads
[  167.242809][   T51] vhci_hcd: release socket
[  167.247381][   T51] vhci_hcd: disconnect device
[  167.256037][ T8973] loop1: detected capacity change from 0 to 1024
[  167.285022][ T8973] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.301431][ T3311] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  167.309447][ T3311] FAT-fs (loop3): Filesystem has been set read-only
[  167.398638][ T8983] netlink: 'syz.3.1765': attribute type 3 has an invalid length.
[  167.468730][ T8986] loop3: detected capacity change from 0 to 1764
[  167.506153][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.849052][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.951045][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.011513][ T9008] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  168.065129][ T9015] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1775'.
[  168.075294][ T9017] netlink: 'syz.4.1776': attribute type 3 has an invalid length.
[  168.148620][ T9028] loop4: detected capacity change from 0 to 512
[  168.157614][ T9028] EXT4-fs: quotafile must be on filesystem root
[  168.215508][ T9031] vlan2: entered allmulticast mode
[  168.302315][ T9037] loop4: detected capacity change from 0 to 128
[  168.319598][ T9035] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  168.326304][ T9035] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  168.334108][ T9035] vhci_hcd vhci_hcd.0: Device attached
[  168.351938][ T9037] lo speed is unknown, defaulting to 1000
[  168.370100][ T9035] loop0: detected capacity change from 0 to 512
[  168.413541][ T9044] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1785'.
[  168.439616][ T9035] EXT4-fs (loop0): 1 orphan inode deleted
[  168.446123][ T9035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.461525][ T3325] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  168.487543][ T9035] ext4 filesystem being mounted at /385/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.510556][ T9038] vhci_hcd: connection closed
[  168.511070][ T3325] vhci_hcd: stop threads
[  168.520102][ T3325] vhci_hcd: release socket
[  168.524554][ T3325] vhci_hcd: disconnect device
[  168.618336][ T9055] netlink: 'syz.1.1788': attribute type 3 has an invalid length.
[  168.668632][ T9058] loop4: detected capacity change from 0 to 128
[  168.687854][ T9060] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  168.707644][ T9058] lo speed is unknown, defaulting to 1000
[  168.806143][ T9069] loop1: detected capacity change from 0 to 512
[  168.813310][ T9069] EXT4-fs: quotafile must be on filesystem root
[  168.950494][ T9079] SELinux: failed to load policy
[  168.993576][ T9079] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1792'.
[  169.033401][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.053558][ T9081] vlan0: entered allmulticast mode
[  169.078035][ T9086] syz.0.1797 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  169.098628][ T9086] loop0: detected capacity change from 0 to 512
[  169.132276][ T9086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.167936][ T9086] ext4 filesystem being mounted at /386/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.204191][ T9091] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  169.232098][ T9090] tipc: Disabling bearer <eth:syzkaller0>
[  169.259934][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.323666][ T9093] loop0: detected capacity change from 0 to 1024
[  169.362578][ T9095] netlink: 'syz.1.1800': attribute type 3 has an invalid length.
[  169.367296][ T9093] EXT4-fs: dax option not supported
[  169.401647][ T9093] loop0: detected capacity change from 0 to 512
[  169.433478][ T9093] ext4: Unknown parameter 'nouser_xattr'
[  169.439473][ T9099] netlink: 304 bytes leftover after parsing attributes in process `syz.1.1802'.
[  169.473984][ T9097] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1801'.
[  169.507814][ T9101] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1803'.
[  169.517056][ T9097] hsr_slave_0: left promiscuous mode
[  169.529040][ T9097] hsr_slave_1: left promiscuous mode
[  169.621021][ T9106] loop3: detected capacity change from 0 to 512
[  169.687548][ T9106] loop3: detected capacity change from 0 to 2048
[  169.715054][ T9106] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.761659][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.818826][ T9114] loop3: detected capacity change from 0 to 128
[  169.846853][ T9114] lo speed is unknown, defaulting to 1000
[  169.996588][ T9118] loop3: detected capacity change from 0 to 1024
[  170.034371][ T9118] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.285579][ T9127] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1810'.
[  170.369687][ T9130] netlink: 348 bytes leftover after parsing attributes in process `syz.1.1811'.
[  170.449035][ T9132] vlan0: entered allmulticast mode
[  170.559277][ T9134] netlink: 304 bytes leftover after parsing attributes in process `syz.1.1813'.
[  170.640623][ T9136] wireguard0: entered promiscuous mode
[  170.646233][ T9136] wireguard0: entered allmulticast mode
[  170.820534][   T29] kauditd_printk_skb: 329 callbacks suppressed
[  170.820553][   T29] audit: type=1400 audit(2000000001.200:4884): avc:  denied  { bind } for  pid=9138 comm="syz.1.1815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  170.936394][ T9145] loop1: detected capacity change from 0 to 1024
[  170.943357][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.967068][ T9145] EXT4-fs: dax option not supported
[  170.990453][ T9145] loop1: detected capacity change from 0 to 512
[  171.017167][ T9145] ext4: Unknown parameter 'nouser_xattr'
[  171.039435][ T9147] loop3: detected capacity change from 0 to 512
[  171.090080][ T9149] loop4: detected capacity change from 0 to 512
[  171.106693][ T9147] loop3: detected capacity change from 0 to 2048
[  171.123011][ T9149] EXT4-fs: quotafile must be on filesystem root
[  171.168297][ T9151] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  171.187031][ T9147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.292267][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.364368][ T9166] netlink: 348 bytes leftover after parsing attributes in process `syz.1.1822'.
[  171.456406][ T9176] serio: Serial port ptm0
[  171.534471][ T9175] loop3: detected capacity change from 0 to 8192
[  171.554684][ T9181] vlan0: entered allmulticast mode
[  171.570642][ T9175] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  171.590754][ T9175] 9pnet_fd: Insufficient options for proto=fd
[  171.646311][ T9183] loop3: detected capacity change from 0 to 1024
[  171.681081][ T9183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.707183][   T29] audit: type=1326 audit(2000000000.670:4885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.730823][   T29] audit: type=1326 audit(2000000000.670:4886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.754414][   T29] audit: type=1326 audit(2000000000.670:4887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.777951][   T29] audit: type=1326 audit(2000000000.670:4888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.801394][   T29] audit: type=1326 audit(2000000000.670:4889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.824875][   T29] audit: type=1326 audit(2000000000.670:4890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.848366][   T29] audit: type=1326 audit(2000000000.670:4891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.871824][   T29] audit: type=1326 audit(2000000000.670:4892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  171.895321][   T29] audit: type=1326 audit(2000000000.670:4893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9184 comm="syz.1.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f953ae6e929 code=0x7ffc0000
[  172.124402][ T9202] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  172.190759][ T9209] loop4: detected capacity change from 0 to 128
[  172.199756][ T9204] netlink: 'syz.1.1833': attribute type 10 has an invalid length.
[  172.207680][ T9204] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1833'.
[  172.246660][ T9204] dummy0: entered promiscuous mode
[  172.256531][ T9204] bond0: (slave dummy0): Releasing backup interface
[  172.273345][ T9204] bridge0: port 3(dummy0) entered blocking state
[  172.279885][ T9204] bridge0: port 3(dummy0) entered disabled state
[  172.287848][ T9204] dummy0: entered allmulticast mode
[  172.338497][ T9209] lo speed is unknown, defaulting to 1000
[  172.378546][ T9217] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  172.413728][ T9217] hsr_slave_0: left promiscuous mode
[  172.426509][ T9217] hsr_slave_1: left promiscuous mode
[  172.461903][ T9219] FAULT_INJECTION: forcing a failure.
[  172.461903][ T9219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.475055][ T9219] CPU: 1 UID: 0 PID: 9219 Comm: syz.2.1838 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  172.475091][ T9219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.475105][ T9219] Call Trace:
[  172.475111][ T9219]  <TASK>
[  172.475141][ T9219]  __dump_stack+0x1d/0x30
[  172.475168][ T9219]  dump_stack_lvl+0xe8/0x140
[  172.475193][ T9219]  dump_stack+0x15/0x1b
[  172.475213][ T9219]  should_fail_ex+0x265/0x280
[  172.475304][ T9219]  should_fail+0xb/0x20
[  172.475370][ T9219]  should_fail_usercopy+0x1a/0x20
[  172.475406][ T9219]  _copy_from_user+0x1c/0xb0
[  172.475431][ T9219]  ___sys_sendmsg+0xc1/0x1d0
[  172.475538][ T9219]  __x64_sys_sendmsg+0xd4/0x160
[  172.475644][ T9219]  x64_sys_call+0x2999/0x2fb0
[  172.475670][ T9219]  do_syscall_64+0xd2/0x200
[  172.475691][ T9219]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.475728][ T9219]  ? clear_bhb_loop+0x40/0x90
[  172.475747][ T9219]  ? clear_bhb_loop+0x40/0x90
[  172.475794][ T9219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.475813][ T9219] RIP: 0033:0x7fd96625e929
[  172.475827][ T9219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.475844][ T9219] RSP: 002b:00007fd9648c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.475862][ T9219] RAX: ffffffffffffffda RBX: 00007fd966485fa0 RCX: 00007fd96625e929
[  172.475876][ T9219] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  172.475898][ T9219] RBP: 00007fd9648c7090 R08: 0000000000000000 R09: 0000000000000000
[  172.475912][ T9219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.475926][ T9219] R13: 0000000000000000 R14: 00007fd966485fa0 R15: 00007ffe2cfd6708
[  172.475950][ T9219]  </TASK>
[  172.655656][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.711724][ T9224] serio: Serial port ptm0
[  172.801912][ T9232] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1839'.
[  172.971727][ T9234] loop4: detected capacity change from 0 to 8192
[  173.037483][ T3309] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[  173.045381][ T3309] FAT-fs (loop4): Filesystem has been set read-only
[  173.104728][ T9247] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1851'.
[  173.142426][ T9250] loop4: detected capacity change from 0 to 128
[  173.197250][ T9250] lo speed is unknown, defaulting to 1000
[  173.231086][ T9247] loop1: detected capacity change from 0 to 8192
[  173.256980][ T9247] vfat: Unknown parameter 'À'
[  173.327986][ T9253] wireguard0: entered promiscuous mode
[  173.333573][ T9253] wireguard0: entered allmulticast mode
[  173.424715][ T9260] FAULT_INJECTION: forcing a failure.
[  173.424715][ T9260] name failslab, interval 1, probability 0, space 0, times 0
[  173.437473][ T9260] CPU: 0 UID: 0 PID: 9260 Comm: syz.4.1855 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  173.437564][ T9260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.437640][ T9260] Call Trace:
[  173.437647][ T9260]  <TASK>
[  173.437656][ T9260]  __dump_stack+0x1d/0x30
[  173.437693][ T9260]  dump_stack_lvl+0xe8/0x140
[  173.437736][ T9260]  dump_stack+0x15/0x1b
[  173.437758][ T9260]  should_fail_ex+0x265/0x280
[  173.437789][ T9260]  should_failslab+0x8c/0xb0
[  173.437817][ T9260]  kmem_cache_alloc_noprof+0x50/0x310
[  173.437848][ T9260]  ? audit_log_start+0x365/0x6c0
[  173.437909][ T9260]  audit_log_start+0x365/0x6c0
[  173.437952][ T9260]  audit_seccomp+0x48/0x100
[  173.437985][ T9260]  ? __seccomp_filter+0x68c/0x10d0
[  173.438047][ T9260]  __seccomp_filter+0x69d/0x10d0
[  173.438079][ T9260]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  173.438193][ T9260]  ? vfs_write+0x75e/0x8e0
[  173.438225][ T9260]  ? __rcu_read_unlock+0x4f/0x70
[  173.438279][ T9260]  ? __fget_files+0x184/0x1c0
[  173.438306][ T9260]  __secure_computing+0x82/0x150
[  173.438329][ T9260]  syscall_trace_enter+0xcf/0x1e0
[  173.438353][ T9260]  do_syscall_64+0xac/0x200
[  173.438392][ T9260]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  173.438421][ T9260]  ? clear_bhb_loop+0x40/0x90
[  173.438441][ T9260]  ? clear_bhb_loop+0x40/0x90
[  173.438461][ T9260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.438514][ T9260] RIP: 0033:0x7f7bbf7ce929
[  173.438533][ T9260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.438555][ T9260] RSP: 002b:00007f7bbde37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ea
[  173.438641][ T9260] RAX: ffffffffffffffda RBX: 00007f7bbf9f5fa0 RCX: 00007f7bbf7ce929
[  173.438653][ T9260] RDX: 000000000000002b RSI: 000000000000041d RDI: 000000000000041d
[  173.438664][ T9260] RBP: 00007f7bbde37090 R08: 0000000000000000 R09: 0000000000000000
[  173.438675][ T9260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.438728][ T9260] R13: 0000000000000000 R14: 00007f7bbf9f5fa0 R15: 00007fff66cc11c8
[  173.438752][ T9260]  </TASK>
[  173.849489][ T9274] netlink: 'syz.1.1861': attribute type 3 has an invalid length.
[  173.869892][ T9271] loop3: detected capacity change from 0 to 8192
[  173.872936][ T9269] ieee802154 phy0 wpan0: encryption failed: -22
[  173.968514][ T9277] loop1: detected capacity change from 0 to 1024
[  173.975111][ T3311] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  173.975386][ T9277] EXT4-fs: dax option not supported
[  173.983212][ T3311] FAT-fs (loop3): Filesystem has been set read-only
[  174.001121][ T9277] loop1: detected capacity change from 0 to 512
[  174.019151][ T9281] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1863'.
[  174.030112][ T9277] ext4: Unknown parameter 'nouser_xattr'
[  174.132085][ T9287] loop3: detected capacity change from 0 to 128
[  174.182969][ T9289] netlink: 'syz.2.1867': attribute type 13 has an invalid length.
[  174.188666][ T9287] lo speed is unknown, defaulting to 1000
[  174.274757][ T9289] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  174.748824][ T9309] netlink: 'syz.3.1872': attribute type 3 has an invalid length.
[  174.955764][ T9315] serio: Serial port ptm0
[  174.998491][ T9297] syz.0.1869 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  175.012789][ T9297] CPU: 0 UID: 0 PID: 9297 Comm: syz.0.1869 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  175.012819][ T9297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.012831][ T9297] Call Trace:
[  175.012837][ T9297]  <TASK>
[  175.012854][ T9297]  __dump_stack+0x1d/0x30
[  175.012875][ T9297]  dump_stack_lvl+0xe8/0x140
[  175.012895][ T9297]  dump_stack+0x15/0x1b
[  175.012925][ T9297]  dump_header+0x81/0x220
[  175.012957][ T9297]  oom_kill_process+0x334/0x3f0
[  175.012993][ T9297]  out_of_memory+0x979/0xb80
[  175.013069][ T9297]  try_charge_memcg+0x5e6/0x9e0
[  175.013144][ T9297]  obj_cgroup_charge_pages+0xa6/0x150
[  175.013180][ T9297]  __memcg_kmem_charge_page+0x9f/0x170
[  175.013226][ T9297]  __alloc_frozen_pages_noprof+0x188/0x360
[  175.013316][ T9297]  alloc_pages_mpol+0xb3/0x250
[  175.013355][ T9297]  alloc_pages_noprof+0x90/0x130
[  175.013446][ T9297]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  175.013552][ T9297]  __kvmalloc_node_noprof+0x30f/0x4e0
[  175.013588][ T9297]  ? ip_set_alloc+0x1f/0x30
[  175.013701][ T9297]  ? ip_set_alloc+0x1f/0x30
[  175.013783][ T9297]  ? __kmalloc_cache_noprof+0x189/0x320
[  175.013887][ T9297]  ip_set_alloc+0x1f/0x30
[  175.013920][ T9297]  hash_netiface_create+0x282/0x740
[  175.013954][ T9297]  ? __pfx_hash_netiface_create+0x10/0x10
[  175.014036][ T9297]  ip_set_create+0x3cc/0x960
[  175.014081][ T9297]  ? nfnetlink_rcv_msg+0x4a7/0x590
[  175.014107][ T9297]  nfnetlink_rcv_msg+0x4c3/0x590
[  175.014154][ T9297]  ? selinux_capable+0x1f9/0x270
[  175.014244][ T9297]  netlink_rcv_skb+0x123/0x220
[  175.014305][ T9297]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  175.014344][ T9297]  nfnetlink_rcv+0x16b/0x1690
[  175.014377][ T9297]  ? __folio_put+0x11e/0x150
[  175.014453][ T9297]  ? bpf_check+0xbe55/0xced0
[  175.014523][ T9297]  ? do_jit+0x1041/0x7f70
[  175.014557][ T9297]  ? emit_mov_imm64+0x2ca/0x2e0
[  175.014576][ T9297]  ? do_jit+0x7d43/0x7f70
[  175.014626][ T9297]  ? xas_load+0x413/0x430
[  175.014667][ T9297]  ? __rcu_read_unlock+0x4f/0x70
[  175.014739][ T9297]  ? xa_load+0xb1/0xe0
[  175.014761][ T9297]  ? should_fail_ex+0x30/0x280
[  175.014802][ T9297]  ? selinux_nlmsg_lookup+0x99/0x890
[  175.014846][ T9297]  ? selinux_netlink_send+0x59f/0x5f0
[  175.014902][ T9297]  ? __rcu_read_unlock+0x34/0x70
[  175.014925][ T9297]  ? __netlink_lookup+0x266/0x2a0
[  175.014954][ T9297]  netlink_unicast+0x5a5/0x680
[  175.014995][ T9297]  netlink_sendmsg+0x58b/0x6b0
[  175.015025][ T9297]  ? __pfx_netlink_sendmsg+0x10/0x10
[  175.015090][ T9297]  __sock_sendmsg+0x142/0x180
[  175.015123][ T9297]  ____sys_sendmsg+0x31e/0x4e0
[  175.015204][ T9297]  ___sys_sendmsg+0x17b/0x1d0
[  175.015274][ T9297]  __x64_sys_sendmsg+0xd4/0x160
[  175.015362][ T9297]  x64_sys_call+0x2999/0x2fb0
[  175.015388][ T9297]  do_syscall_64+0xd2/0x200
[  175.015404][ T9297]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  175.015434][ T9297]  ? clear_bhb_loop+0x40/0x90
[  175.015504][ T9297]  ? clear_bhb_loop+0x40/0x90
[  175.015534][ T9297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.015556][ T9297] RIP: 0033:0x7f0b1984e929
[  175.015608][ T9297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.015643][ T9297] RSP: 002b:00007f0b17eb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  175.015677][ T9297] RAX: ffffffffffffffda RBX: 00007f0b19a75fa0 RCX: 00007f0b1984e929
[  175.015693][ T9297] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000007
[  175.015706][ T9297] RBP: 00007f0b198d0b39 R08: 0000000000000000 R09: 0000000000000000
[  175.015717][ T9297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.015728][ T9297] R13: 0000000000000000 R14: 00007f0b19a75fa0 R15: 00007ffd6adab9f8
[  175.015762][ T9297]  </TASK>
[  175.015771][ T9297] memory: usage 307200kB, limit 307200kB, failcnt 216
[  175.054655][ T9318] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  175.057902][ T9297] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[  175.406260][ T9297] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  175.406279][ T9297] Memory cgroup stats for /syz0:
[  175.414389][ T9297] cache 20480
[  175.422723][ T9297] rss 4096
[  175.425765][ T9297] shmem 0
[  175.428842][ T9297] mapped_file 20480
[  175.432689][ T9297] dirty 0
[  175.435656][ T9297] writeback 0
[  175.438985][ T9297] workingset_refault_anon 43
[  175.443682][ T9297] workingset_refault_file 2228
[  175.448522][ T9297] swap 200704
[  175.451863][ T9297] swapcached 4096
[  175.455583][ T9297] pgpgin 396118
[  175.459100][ T9297] pgpgout 396111
[  175.462720][ T9297] pgfault 258890
[  175.466276][ T9297] pgmajfault 31
[  175.469781][ T9297] inactive_anon 0
[  175.473429][ T9297] active_anon 4096
[  175.477312][ T9297] inactive_file 24576
[  175.481319][ T9297] active_file 0
[  175.484793][ T9297] unevictable 0
[  175.488344][ T9297] hierarchical_memory_limit 314572800
[  175.493734][ T9297] hierarchical_memsw_limit 9223372036854771712
[  175.499975][ T9297] total_cache 20480
[  175.503986][ T9297] total_rss 4096
[  175.507599][ T9297] total_shmem 0
[  175.511088][ T9297] total_mapped_file 20480
[  175.515435][ T9297] total_dirty 0
[  175.518977][ T9297] total_writeback 0
[  175.522796][ T9297] total_workingset_refault_anon 43
[  175.528011][ T9297] total_workingset_refault_file 2228
[  175.533319][ T9297] total_swap 200704
[  175.537161][ T9297] total_swapcached 4096
[  175.541344][ T9297] total_pgpgin 396118
[  175.545325][ T9297] total_pgpgout 396111
[  175.549519][ T9297] total_pgfault 258890
[  175.553675][ T9297] total_pgmajfault 31
[  175.557730][ T9297] total_inactive_anon 0
[  175.561952][ T9297] total_active_anon 4096
[  175.566315][ T9297] total_inactive_file 24576
[  175.570883][ T9297] total_active_file 0
[  175.575006][ T9297] total_unevictable 0
[  175.579015][ T9297] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1869,pid=9296,uid=0
[  175.593658][ T9297] Memory cgroup out of memory: Killed process 9296 (syz.0.1869) total-vm:93624kB, anon-rss:944kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  175.701380][ T9339] loop4: detected capacity change from 0 to 128
[  175.731485][ T9339] lo speed is unknown, defaulting to 1000
[  175.830778][   T29] kauditd_printk_skb: 169 callbacks suppressed
[  175.830793][   T29] audit: type=1326 audit(2000000004.800:5061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.833294][ T9346] loop0: detected capacity change from 0 to 1024
[  175.844698][   T29] audit: type=1326 audit(2000000004.800:5062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.890834][   T29] audit: type=1326 audit(2000000004.800:5063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.914300][   T29] audit: type=1326 audit(2000000004.800:5064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.938188][   T29] audit: type=1326 audit(2000000004.800:5065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.961640][   T29] audit: type=1326 audit(2000000004.800:5066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  175.985098][   T29] audit: type=1326 audit(2000000004.800:5067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  176.012451][   T29] audit: type=1326 audit(2000000004.830:5068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  176.036071][   T29] audit: type=1326 audit(2000000004.830:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  176.059831][   T29] audit: type=1326 audit(2000000004.830:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9341 comm="syz.3.1882" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7c29e929 code=0x7ffc0000
[  176.128328][ T9346] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.138205][ T9357] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  176.188423][ T9361] serio: Serial port ptm0
[  176.262749][ T9358] loop4: detected capacity change from 0 to 8192
[  176.285689][ T9358] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  176.309649][ T9358] 9pnet_fd: Insufficient options for proto=fd
[  176.356269][ T9374] loop1: detected capacity change from 0 to 512
[  176.376954][ T9374] EXT4-fs: quotafile must be on filesystem root
[  176.440979][ T9381] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1893'.
[  176.477361][ T9383] loop1: detected capacity change from 0 to 512
[  176.503271][ T9385] loop4: detected capacity change from 0 to 128
[  176.544998][ T9383] loop1: detected capacity change from 0 to 2048
[  176.558772][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.572625][ T9385] lo speed is unknown, defaulting to 1000
[  176.611262][ T9383] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.682574][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.764313][ T9397] netlink: 'syz.1.1897': attribute type 3 has an invalid length.
[  176.921090][ T9402] loop4: detected capacity change from 0 to 8192
[  176.934242][ T9402] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  176.955536][ T9402] 9pnet_fd: Insufficient options for proto=fd
[  177.021664][ T9410] loop0: detected capacity change from 0 to 512
[  177.030038][ T9410] EXT4-fs: quotafile must be on filesystem root
[  177.153315][ T9420] loop1: detected capacity change from 0 to 1024
[  177.162072][ T9420] EXT4-fs: dax option not supported
[  177.356003][ T9431] loop1: detected capacity change from 0 to 128
[  177.397388][ T9429] loop0: detected capacity change from 0 to 8192
[  177.416319][ T9431] lo speed is unknown, defaulting to 1000
[  177.449092][ T9435] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  177.467192][ T3305] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  177.475101][ T3305] FAT-fs (loop0): Filesystem has been set read-only
[  177.508492][ T9433] 9pnet_fd: Insufficient options for proto=fd
[  177.584056][ T9445] capability: warning: `syz.3.1918' uses deprecated v2 capabilities in a way that may be insecure
[  177.622473][ T9445] loop3: detected capacity change from 0 to 2048
[  177.676127][ T9451] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1919'.
[  177.795985][ T9458] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1921'.
[  177.877351][ T9464] loop4: detected capacity change from 0 to 1024
[  177.884094][ T9464] EXT4-fs: dax option not supported
[  177.980498][ T9466] loop4: detected capacity change from 0 to 512
[  177.987532][ T9466] EXT4-fs: quotafile must be on filesystem root
[  178.035221][ T9470] FAULT_INJECTION: forcing a failure.
[  178.035221][ T9470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.048476][ T9470] CPU: 0 UID: 0 PID: 9470 Comm: syz.4.1925 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  178.048504][ T9470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.048559][ T9470] Call Trace:
[  178.048568][ T9470]  <TASK>
[  178.048577][ T9470]  __dump_stack+0x1d/0x30
[  178.048764][ T9470]  dump_stack_lvl+0xe8/0x140
[  178.048791][ T9470]  dump_stack+0x15/0x1b
[  178.048805][ T9470]  should_fail_ex+0x265/0x280
[  178.048833][ T9470]  should_fail+0xb/0x20
[  178.048857][ T9470]  should_fail_usercopy+0x1a/0x20
[  178.048950][ T9470]  _copy_from_user+0x1c/0xb0
[  178.049030][ T9470]  ___sys_sendmsg+0xc1/0x1d0
[  178.049073][ T9470]  __x64_sys_sendmsg+0xd4/0x160
[  178.049107][ T9470]  x64_sys_call+0x2999/0x2fb0
[  178.049170][ T9470]  do_syscall_64+0xd2/0x200
[  178.049239][ T9470]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  178.049263][ T9470]  ? clear_bhb_loop+0x40/0x90
[  178.049281][ T9470]  ? clear_bhb_loop+0x40/0x90
[  178.049300][ T9470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.049375][ T9470] RIP: 0033:0x7f7bbf7ce929
[  178.049389][ T9470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.049443][ T9470] RSP: 002b:00007f7bbde37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  178.049459][ T9470] RAX: ffffffffffffffda RBX: 00007f7bbf9f5fa0 RCX: 00007f7bbf7ce929
[  178.049507][ T9470] RDX: 0000000000008000 RSI: 0000200000000240 RDI: 0000000000000003
[  178.049517][ T9470] RBP: 00007f7bbde37090 R08: 0000000000000000 R09: 0000000000000000
[  178.049528][ T9470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.049538][ T9470] R13: 0000000000000000 R14: 00007f7bbf9f5fa0 R15: 00007fff66cc11c8
[  178.049589][ T9470]  </TASK>
[  178.300778][ T9472] lo speed is unknown, defaulting to 1000
[  178.349895][ T9473] loop4: detected capacity change from 0 to 1024
[  178.357146][ T9473] EXT4-fs: Ignoring removed orlov option
[  178.362900][ T9473] ext4: Unknown parameter 'nouser_xattr'
[  178.379446][ T9472] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  178.507672][ T9480] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1929'.
[  178.544345][ T9484] loop3: detected capacity change from 0 to 128
[  178.583649][ T9476] loop4: detected capacity change from 0 to 8192
[  178.605531][ T9476] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.619999][ T9484] lo speed is unknown, defaulting to 1000
[  178.632803][ T9476] 9pnet_fd: Insufficient options for proto=fd
[  178.691926][ T9493] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1934'.
[  178.722631][ T9495] loop4: detected capacity change from 0 to 1024
[  178.750076][ T9495] EXT4-fs: dax option not supported
[  178.806135][ T9498] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1935'.
[  178.941834][ T9507] netlink: 'syz.4.1938': attribute type 3 has an invalid length.
[  178.970756][ T9505] netlink: 'syz.3.1937': attribute type 3 has an invalid length.
[  179.028498][ T9515] loop0: detected capacity change from 0 to 1024
[  179.036280][ T9515] EXT4-fs: inline encryption not supported
[  179.042718][ T9515] EXT4-fs: Ignoring removed bh option
[  179.061200][ T9515] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.111892][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x4
[  179.119736][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x2
[  179.129575][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.137332][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.145081][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.152875][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.160569][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.168246][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.176033][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.183837][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.191558][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.199324][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.207081][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.214768][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.222534][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.230240][ T3414] hid-generic 0000:3000000:0000.0013: unknown main item tag 0x0
[  179.240383][ T9527] loop4: detected capacity change from 0 to 8192
[  179.242879][ T3414] hid-generic 0000:3000000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  179.249553][ T9528] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.1941: Allocating blocks 497-513 which overlap fs metadata
[  179.260865][ T9527] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  179.291713][ T9528] EXT4-fs (loop0): Remounting filesystem read-only
[  179.300393][ T9529] fido_id[9529]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  179.315187][ T9527] 9pnet_fd: Insufficient options for proto=fd
[  179.369167][ T9531] serio: Serial port ptm0
[  179.396805][ T9514] EXT4-fs (loop0): pa ffff8881069ffaf0: logic 256, phys. 369, len 9
[  179.413912][ T9535] wireguard0: entered promiscuous mode
[  179.419479][ T9535] wireguard0: entered allmulticast mode
[  179.425900][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.467546][ T9540] loop0: detected capacity change from 0 to 128
[  179.484445][ T9542] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1949'.
[  179.501781][ T9540] lo speed is unknown, defaulting to 1000
[  179.582108][ T9545] netlink: 'syz.4.1950': attribute type 3 has an invalid length.
[  179.653949][ T9553] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1954'.
[  179.663165][ T9553] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1954'.
[  179.794744][ T9563] loop4: detected capacity change from 0 to 1024
[  179.817866][ T9563] EXT4-fs: inline encryption not supported
[  179.828913][ T9566] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1958'.
[  179.842602][ T9563] EXT4-fs: Ignoring removed bh option
[  179.868619][ T9570] loop1: detected capacity change from 0 to 1024
[  179.882243][ T9563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.908047][ T9570] EXT4-fs: Ignoring removed nobh option
[  179.913703][ T9570] EXT4-fs: Ignoring removed bh option
[  180.004560][ T9570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.049337][ T9584] netlink: 'syz.3.1964': attribute type 3 has an invalid length.
[  180.062683][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x4
[  180.070569][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x2
[  180.126475][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.148388][ T9585] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.1957: Allocating blocks 497-513 which overlap fs metadata
[  180.173459][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.181216][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.189012][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.196797][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.204526][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.212266][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.219981][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.227798][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.235485][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.243465][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.251260][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.259076][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.266778][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.274483][ T5976] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x0
[  180.306108][ T9585] EXT4-fs (loop4): Remounting filesystem read-only
[  180.345376][ T5976] hid-generic 0000:3000000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  180.368166][ T9596] loop1: detected capacity change from 0 to 128
[  180.445737][ T9562] EXT4-fs (loop4): pa ffff8881069ffb60: logic 256, phys. 369, len 9
[  180.457358][ T9596] lo speed is unknown, defaulting to 1000
[  180.458685][ T9598] fido_id[9598]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  180.493958][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.576567][ T9607] GUP no longer grows the stack in syz.2.1971 (9607): 200000004000-20000000a000 (200000002000)
[  180.587167][ T9607] CPU: 0 UID: 0 PID: 9607 Comm: syz.2.1971 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  180.587202][ T9607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  180.587218][ T9607] Call Trace:
[  180.587227][ T9607]  <TASK>
[  180.587236][ T9607]  __dump_stack+0x1d/0x30
[  180.587291][ T9607]  dump_stack_lvl+0xe8/0x140
[  180.587310][ T9607]  dump_stack+0x15/0x1b
[  180.587327][ T9607]  __get_user_pages+0x199d/0x1fb0
[  180.587357][ T9607]  ? __rcu_read_unlock+0x4f/0x70
[  180.587387][ T9607]  get_user_pages_remote+0x1dc/0x7a0
[  180.587453][ T9607]  __access_remote_vm+0x156/0x560
[  180.587487][ T9607]  access_remote_vm+0x32/0x40
[  180.587522][ T9607]  proc_pid_cmdline_read+0x30f/0x6a0
[  180.587561][ T9607]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  180.587648][ T9607]  vfs_readv+0x3fb/0x690
[  180.587690][ T9607]  __x64_sys_preadv+0xfd/0x1c0
[  180.587739][ T9607]  x64_sys_call+0x1503/0x2fb0
[  180.587761][ T9607]  do_syscall_64+0xd2/0x200
[  180.587783][ T9607]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  180.587817][ T9607]  ? clear_bhb_loop+0x40/0x90
[  180.587845][ T9607]  ? clear_bhb_loop+0x40/0x90
[  180.587866][ T9607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.587888][ T9607] RIP: 0033:0x7fd96625e929
[  180.587905][ T9607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.587954][ T9607] RSP: 002b:00007fd9648c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  180.587978][ T9607] RAX: ffffffffffffffda RBX: 00007fd966485fa0 RCX: 00007fd96625e929
[  180.587994][ T9607] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000005
[  180.588007][ T9607] RBP: 00007fd9662e0b39 R08: 0000000000000000 R09: 0000000000000000
[  180.588019][ T9607] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  180.588033][ T9607] R13: 0000000000000000 R14: 00007fd966485fa0 R15: 00007ffe2cfd6708
[  180.588055][ T9607]  </TASK>
[  180.950481][ T9616] wireguard0: entered promiscuous mode
[  180.956037][ T9616] wireguard0: entered allmulticast mode
[  180.997691][ T9623] loop0: detected capacity change from 0 to 1024
[  181.005048][ T9623] EXT4-fs: Ignoring removed nobh option
[  181.010844][ T9623] EXT4-fs: Ignoring removed bh option
[  181.049553][ T9623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.065418][   T29] kauditd_printk_skb: 117 callbacks suppressed
[  181.065506][   T29] audit: type=1326 audit(2000000004.590:5188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.129217][   T29] audit: type=1326 audit(2000000004.630:5189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.152880][   T29] audit: type=1326 audit(2000000004.630:5190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.176415][   T29] audit: type=1326 audit(2000000004.630:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.199926][   T29] audit: type=1326 audit(2000000004.630:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.223432][   T29] audit: type=1326 audit(2000000004.630:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.247006][   T29] audit: type=1326 audit(2000000004.630:5194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.270759][   T29] audit: type=1326 audit(2000000004.630:5195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.294192][   T29] audit: type=1326 audit(2000000004.630:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.317795][   T29] audit: type=1326 audit(2000000004.630:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz.2.1977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96625e929 code=0x7ffc0000
[  181.343523][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.434124][ T9641] loop1: detected capacity change from 0 to 1024
[  181.444823][ T9641] EXT4-fs: inline encryption not supported
[  181.444957][ T9641] EXT4-fs: Ignoring removed bh option
[  181.498509][ T9641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.533661][ T9641] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.789116][ T9673] wireguard0: entered promiscuous mode
[  181.794713][ T9673] wireguard0: entered allmulticast mode
[  182.176104][ T9698] __nla_validate_parse: 5 callbacks suppressed
[  182.176125][ T9698] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2002'.
[  182.357981][ T9713] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2005'.
[  182.705789][ T9720] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  182.751856][ T9724] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  182.855895][ T9734] lo speed is unknown, defaulting to 1000
[  182.862755][ T9735] lo speed is unknown, defaulting to 1000
[  183.511729][ T9776] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2032'.
[  183.520794][ T9776] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2032'.
[  183.624826][ T9778] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2033'.
[  183.648640][ T9780] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2035'.
[  183.657739][ T9780] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2035'.
[  183.797600][ T9786] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  183.874925][ T9790] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2034'.
[  183.929277][ T9792] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2039'.
[  184.212216][ T9805] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2044'.
[  184.588032][ T9816] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  184.839273][ T9827] hsr_slave_0: left promiscuous mode
[  184.863263][ T9827] hsr_slave_1: left promiscuous mode
[  184.941229][ T9831] Cannot find add_set index 0 as target
[  184.974337][ T9833] lo speed is unknown, defaulting to 1000
[  185.005952][ T9834] lo speed is unknown, defaulting to 1000
[  185.509321][ T9848] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  185.515991][ T9848] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  185.523775][ T9848] vhci_hcd vhci_hcd.0: Device attached
[  185.610446][ T9852] vhci_hcd: connection closed
[  185.610700][   T51] vhci_hcd: stop threads
[  185.619903][   T51] vhci_hcd: release socket
[  185.624342][   T51] vhci_hcd: disconnect device
[  185.758160][ T9866] lo speed is unknown, defaulting to 1000
[  185.882705][ T9875] lo speed is unknown, defaulting to 1000
[  186.041180][ T9879] netlink: 'syz.4.2073': attribute type 3 has an invalid length.
[  186.068126][   T29] kauditd_printk_skb: 18067 callbacks suppressed
[  186.068146][   T29] audit: type=1400 audit(2000000009.590:22794): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.095770][   T29] audit: type=1400 audit(2000000009.590:22795): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.103496][ T3034] audit: audit_backlog=65 > audit_backlog_limit=64
[  186.117002][   T29] audit: type=1400 audit(2000000009.590:22796): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.123520][ T3034] audit: audit_lost=162 audit_rate_limit=0 audit_backlog_limit=64
[  186.123537][ T3034] audit: backlog limit exceeded
[  186.157474][   T29] audit: type=1400 audit(2000000009.590:22797): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.178672][   T29] audit: type=1400 audit(2000000009.590:22798): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.199992][   T29] audit: type=1400 audit(2000000009.590:22799): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.221190][   T29] audit: type=1400 audit(2000000009.590:22800): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  186.531380][ T9889] serio: Serial port ptm0
[  187.086509][ T9917] lo speed is unknown, defaulting to 1000
[  187.271749][ T9924] serio: Serial port ptm0
[  187.526908][ T9934] __nla_validate_parse: 16 callbacks suppressed
[  187.526925][ T9934] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2095'.
[  187.563033][ T9936] serio: Serial port ptm0
[  187.921219][ T9951] serio: Serial port ptm0
[  187.928600][ T9950] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2101'.
[  188.161363][ T9964] wireguard1: entered promiscuous mode
[  188.166992][ T9964] wireguard1: entered allmulticast mode
[  188.235182][ T9968] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2108'.
[  188.387257][ T9971] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2109'.
[  188.714148][ T9978] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  188.748147][ T9980] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2113'.
[  189.031010][ T9988] serio: Serial port ptm0
[  189.185202][T10000] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  189.245357][T10003] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2122'.
[  189.404400][T10012] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2128'.
[  189.709774][T10021] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2131'.
[  189.719020][T10021] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2131'.
[  189.873787][T10032] serio: Serial port ptm0
[  190.166472][T10050] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2144'.
[  190.369002][T10068] netlink: 'syz.3.2152': attribute type 3 has an invalid length.
[  190.593365][T10080] serio: Serial port ptm0
[  190.722415][T10096] netlink: 'syz.0.2165': attribute type 3 has an invalid length.
[  190.902045][T10106] dummy0: left allmulticast mode
[  190.920402][T10106] bridge0: port 3(dummy0) entered disabled state
[  190.957118][T10109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10109 comm=syz.1.2169
[  190.971249][T10106] bridge_slave_0: left allmulticast mode
[  190.977168][T10106] bridge_slave_0: left promiscuous mode
[  190.982922][T10106] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.037072][T10106] bridge_slave_1: left allmulticast mode
[  191.042819][T10106] bridge_slave_1: left promiscuous mode
[  191.048554][T10106] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.073173][T10106] bond0: (slave bond_slave_0): Releasing backup interface
[  191.080697][   T29] kauditd_printk_skb: 15685 callbacks suppressed
[  191.080714][   T29] audit: type=1400 audit(2000000014.610:34031): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  191.112444][T10106] bond0: (slave bond_slave_1): Releasing backup interface
[  191.131383][ T3034] audit: audit_backlog=65 > audit_backlog_limit=64
[  191.134435][T10106] team0: Port device team_slave_0 removed
[  191.137990][ T3034] audit: audit_lost=1648 audit_rate_limit=0 audit_backlog_limit=64
[  191.138009][ T3034] audit: backlog limit exceeded
[  191.173317][   T29] audit: type=1400 audit(2000000014.640:34032): avc:  denied  { bpf } for  pid=10115 comm="syz.4.2174" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[  191.194239][   T29] audit: type=1400 audit(2000000014.640:34033): avc:  denied  { create } for  pid=10115 comm="syz.4.2174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=0
[  191.213941][   T29] audit: type=1400 audit(2000000014.640:34034): avc:  denied  { create } for  pid=10115 comm="syz.4.2174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=0
[  191.233847][   T29] audit: type=1400 audit(2000000014.640:34035): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  191.255111][   T29] audit: type=1400 audit(2000000014.640:34036): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  191.276354][   T29] audit: type=1400 audit(2000000014.640:34037): avc:  denied  { read } for  pid=3034 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=0
[  191.300194][T10106] team0: Port device team_slave_1 removed
[  191.316392][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.324050][T10106] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.373319][T10106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.380949][T10106] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.480792][T10114] wireguard1: entered promiscuous mode
[  191.486469][T10114] wireguard1: entered allmulticast mode
[  191.737168][T10133] serio: Serial port ptm0
[  191.766142][T10139] serio: Serial port ptm1
[  191.821124][T10142] serio: Serial port ptm2
[  192.025217][T10154] loop4: detected capacity change from 0 to 1024
[  192.055901][T10154] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  192.066892][T10154] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  192.100938][T10162] loop0: detected capacity change from 0 to 512
[  192.125979][T10162] EXT4-fs: Ignoring removed oldalloc option
[  192.136429][T10154] JBD2: no valid journal superblock found
[  192.142280][T10154] EXT4-fs (loop4): Could not load journal inode
[  192.170406][T10162] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  192.215687][T10162] EXT4-fs (loop0): 1 truncate cleaned up
[  192.235870][T10162] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.256042][T10170] loop3: detected capacity change from 0 to 1024
[  192.327621][T10170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.344496][T10176] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  192.353424][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.600630][T10189] __nla_validate_parse: 24 callbacks suppressed
[  192.600648][T10189] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2200'.
[  192.615943][T10189] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2200'.
[  193.081716][T10202] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2205'.
[  193.225058][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.342135][T10202] loop1: detected capacity change from 0 to 8192
[  193.373430][T10208] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2206'.
[  193.376995][T10202] vfat: Unknown parameter 'À'
[  193.382647][T10208] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2206'.
[  193.406573][T10207] serio: Serial port ptm0
[  193.505889][T10216] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  193.584011][T10218] loop3: detected capacity change from 0 to 128
[  193.649566][T10221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2211'.
[  193.658802][T10221] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2211'.
[  193.748198][T10224] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2213'.
[  193.790747][T10231] loop1: detected capacity change from 0 to 128
[  193.822705][T10229] loop3: detected capacity change from 0 to 256
[  193.906444][T10231] lo speed is unknown, defaulting to 1000
[  194.196998][T10240] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2218'.
[  194.289489][T10244] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  194.296161][T10244] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  194.304020][T10244] vhci_hcd vhci_hcd.0: Device attached
[  194.359531][T10248] loop0: detected capacity change from 0 to 512
[  194.393009][T10250] netlink: 348 bytes leftover after parsing attributes in process `syz.1.2221'.
[  194.418378][T10248] EXT4-fs (loop0): 1 orphan inode deleted
[  194.430774][T10248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.443540][   T37] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[  194.474508][T10248] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.512422][T10245] vhci_hcd: connection closed
[  194.512680][   T37] vhci_hcd: stop threads
[  194.515009][T10254] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  194.517598][   T37] vhci_hcd: release socket
[  194.534208][   T37] vhci_hcd: disconnect device
[  194.550842][T10233] ==================================================================
[  194.550885][T10233] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[  194.550925][T10233] 
[  194.550931][T10233] write to 0xffffea00048232d8 of 8 bytes by task 10123 on cpu 0:
[  194.550948][T10233]  __filemap_remove_folio+0x1a5/0x2a0
[  194.550987][T10233]  filemap_remove_folio+0x6d/0x1d0
[  194.551012][T10233]  truncate_inode_folio+0x42/0x50
[  194.551046][T10233]  shmem_undo_range+0x244/0xa80
[  194.551075][T10233]  shmem_evict_inode+0x134/0x520
[  194.551105][T10233]  evict+0x2e0/0x550
[  194.551129][T10233]  iput+0x447/0x5b0
[  194.551145][T10233]  dentry_unlink_inode+0x24f/0x260
[  194.551171][T10233]  __dentry_kill+0x18d/0x4b0
[  194.551190][T10233]  dput+0x5e/0xd0
[  194.551206][T10233]  __fput+0x444/0x650
[  194.551229][T10233]  ____fput+0x1c/0x30
[  194.551252][T10233]  task_work_run+0x131/0x1a0
[  194.551279][T10233]  do_exit+0x483/0x1590
[  194.551307][T10233]  do_group_exit+0xff/0x140
[  194.551336][T10233]  get_signal+0xe59/0xf70
[  194.551377][T10233]  arch_do_signal_or_restart+0x96/0x480
[  194.551397][T10233]  irqentry_exit_to_user_mode+0x5e/0xa0
[  194.551429][T10233]  irqentry_exit+0x12/0x50
[  194.551456][T10233]  asm_exc_page_fault+0x26/0x30
[  194.551475][T10233] 
[  194.551480][T10233] read to 0xffffea00048232d8 of 8 bytes by task 10233 on cpu 1:
[  194.551496][T10233]  folio_mapping+0xa1/0x120
[  194.551520][T10233]  evict_folios+0xdb9/0x33d0
[  194.551542][T10233]  try_to_shrink_lruvec+0x45a/0x7e0
[  194.551567][T10233]  shrink_lruvec+0x22e/0x1b40
[  194.551584][T10233]  shrink_node+0x686/0x2120
[  194.551607][T10233]  do_try_to_free_pages+0x3f6/0xcd0
[  194.551626][T10233]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  194.551644][T10233]  try_charge_memcg+0x358/0x9e0
[  194.551679][T10233]  obj_cgroup_charge_pages+0xa6/0x150
[  194.551709][T10233]  __memcg_kmem_charge_page+0x9f/0x170
[  194.551738][T10233]  __alloc_frozen_pages_noprof+0x188/0x360
[  194.551772][T10233]  alloc_pages_mpol+0xb3/0x250
[  194.551801][T10233]  alloc_pages_noprof+0x90/0x130
[  194.551831][T10233]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  194.551863][T10233]  __kvmalloc_node_noprof+0x30f/0x4e0
[  194.551890][T10233]  ip_set_alloc+0x1f/0x30
[  194.551919][T10233]  hash_netiface_create+0x282/0x740
[  194.551950][T10233]  ip_set_create+0x3cc/0x960
[  194.551981][T10233]  nfnetlink_rcv_msg+0x4c3/0x590
[  194.552006][T10233]  netlink_rcv_skb+0x123/0x220
[  194.552039][T10233]  nfnetlink_rcv+0x16b/0x1690
[  194.552062][T10233]  netlink_unicast+0x5a5/0x680
[  194.552091][T10233]  netlink_sendmsg+0x58b/0x6b0
[  194.552108][T10233]  __sock_sendmsg+0x142/0x180
[  194.552130][T10233]  ____sys_sendmsg+0x31e/0x4e0
[  194.552163][T10233]  ___sys_sendmsg+0x17b/0x1d0
[  194.552195][T10233]  __x64_sys_sendmsg+0xd4/0x160
[  194.552228][T10233]  x64_sys_call+0x2999/0x2fb0
[  194.552250][T10233]  do_syscall_64+0xd2/0x200
[  194.552266][T10233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.552285][T10233] 
[  194.552289][T10233] value changed: 0xffff888119b39078 -> 0x0000000000000000
[  194.552301][T10233] 
[  194.552306][T10233] Reported by Kernel Concurrency Sanitizer on:
[  194.552317][T10233] CPU: 1 UID: 0 PID: 10233 Comm: syz.3.2217 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  194.552347][T10233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  194.552366][T10233] ==================================================================
[  194.656136][T10260] loop1: detected capacity change from 0 to 1024
[  194.664952][T10260] EXT4-fs: dax option not supported
[  194.678203][T10260] loop1: detected capacity change from 0 to 512
[  194.682129][T10260] ext4: Unknown parameter 'nouser_xattr'
[  195.046849][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.595185][T10233] syz.3.2217 (10233) used greatest stack depth: 6456 bytes left