last executing test programs:

1.263289682s ago: executing program 4 (id=1524):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
mknod$loop(0x0, 0x100000000000600d, 0x0)
pipe2$9p(0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="1b00"/11], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000040000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000030000008500000086000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x21004a, &(0x7f0000000400))
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r0}, 0x38)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x9, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

1.134611234s ago: executing program 4 (id=1528):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
read$msr(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @x25={0x1, 0x4, 0x0, "936b5d9dd3aeba626df8e6f711fb2eb63be93e27886df2b8bea12b28ac37604ab05480ecf3dc"}}, 0x29)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r5)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000340)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000740)}, 0x20)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000800)=@o_path={&(0x7f00000007c0)='./file0\x00'}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0f00000000000000001000000800000088040000", @ANYRES32, @ANYBLOB="ff7f00000000fa00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000000000000100"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x7, 0x8, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}, [@generic={0x49, 0x5, 0x1, 0x9, 0x4}, @ringbuf_query]}, &(0x7f00000003c0)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000008c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, r5, r2, r7, r8, r9], &(0x7f0000000900)=[{0x3, 0x4, 0xe, 0x4}, {0x2, 0x3, 0x7, 0xa}, {0x1, 0x3, 0xc, 0xc}, {0x2, 0x4, 0x9, 0x3}, {0x1, 0x2, 0x10, 0x4}, {0x1, 0x5, 0xb, 0xc}, {0x5, 0x4, 0x0, 0x9}, {0x1, 0x4, 0x5, 0x6}], 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x15, &(0x7f0000000400)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x3}, @map_fd={0x18, 0x2, 0x0}, @map_fd={0x18, 0x8}, @initr0, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfff}, @printk={@li, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)

1.012092366s ago: executing program 0 (id=1534):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWRULE={0xac, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_USERDATA={0x75, 0x7, 0x1, 0x0, "8a3b5784195b331ffdbe72da5c87b85c98005464d5c9d344bbd8e2d4a585b6dcd9382ab49814d71db90d0e91cd4e1a50da06ecbde8b5377ba6148c5cc88be11ab967fb26208194f3ebbdf918a105f2f6410059e7d43708a49c10e7cb13e9deeaf8c70f3e76892d67a60c0a0f488f67e25a"}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, '\f'}]}], {0x14}}, 0xd4}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x3e}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000380), &(0x7f00000003c0)=r4}, 0x20)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='qdisc_create\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r6}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000800000000000070000000900010073797a30000000007c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d38001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c00028008000140000000080800034000000110"], 0xc4}}, 0x20050800)

978.595677ms ago: executing program 3 (id=1535):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0x40)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

868.027108ms ago: executing program 0 (id=1536):
epoll_create1(0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffffffffffffd}}, './bus\x00'})
sendmsg$802154_dgram(r1, 0x0, 0x460000c0)
socket$igmp(0x2, 0x3, 0x2)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', &(0x7f0000000340), 0x2000)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xf, &(0x7f00000002c0), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

867.531958ms ago: executing program 3 (id=1537):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
times(&(0x7f0000000800))

848.774648ms ago: executing program 0 (id=1538):
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000340)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x4000}, 0x18)
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000840), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x0, 0x0, &(0x7f00000006c0)='syzkaller\x00', 0x9, 0x72, &(0x7f0000000700)=""/114, 0x40f00, 0x60, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000880)={0x5, 0x5}, 0x8, 0x10, &(0x7f00000008c0)={0x1, 0x5, 0x32, 0x8}, 0x10, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x10, 0x6, @void, @value}, 0x94)
syz_usbip_server_init(0x3)

837.107518ms ago: executing program 3 (id=1539):
r0 = syz_open_dev$evdev(&(0x7f0000000300), 0x2, 0x40000)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=ANY=[], 0x10}], 0x1}, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, 0x0)

804.527279ms ago: executing program 3 (id=1540):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x50, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}]}]}, 0x50}}, 0x0)

804.178639ms ago: executing program 3 (id=1541):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x4400, &(0x7f0000000640), 0x1, 0x75e, &(0x7f0000001100)="$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")
memfd_secret(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
timer_settime(0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000040), 0x1, 0x7ad, &(0x7f0000001740)="$eJzs3c9rG1ceAPDvyD/jZNdeWNjNngwLu4YQeZ31JruwsFn2sBQaCLTnJEZWTGrZCpYcYmNIQin00kNLD4XmknPTprdc++PaXvo39FAS0tYJTemhuIw0SmRbcpzEklL8+cBY782M9N533sybZ82gCWDfGk//5CIORwykydFsfhLZjOiPOFlf7+H6WiGdktjYeOW7pLbOg/W1QjS9J3Uwy/wxIj57I+JIbnu5lZXV+ZlSqbiU5SerCxcnKyurRy8szMwV54qLx6emp4+d+MeJ43sX6w9frh66+/b///rRyZ9e/8Ottz5P4mQcypY1x7FXxmM82yYD6Sbc5H97XViPJb2uAM8kPTT76kd5HI7R6NuhJf/T1ZoBAJ1yJSI2AIB9JnH+B4B9pvE9wIP1tUJjivr1nKs9/WKiS+79NyKG6/E3rm/Wl/TXr9l9NVy7DjryIKldI2lIImJsD8ofj4jrt8/cTKfo0HVIgFauXouIc2PjW/v/tIfbes/C0/rbLtYZ35LX/0H3fJKOf/65ffwXkcuO/+Ha363jn6EWx+6zePLxn7uzKTuwB4U2Scd//266t+1hU/yZsb4s95vamG8gOX+hVEz7tt9GxEQMDKX5qR3KmLj/8/12y5rHf9+/89oHafnp6+M1cnf6hza/Z3amOvM8MTe7dy3iT/2t4k8etX/SZvx7epdlvPSvN99vtyyNP423MW2Pv7M2bkT8pWX7P74PKtnx/sTJ2u4w2dgpWvj46/dG2pXf3P7Xb6clrRUa/wt0Q9r+IzvHP5Y0369Zefoyvrgx+mm7ZZvjP3MzLX9z/K33/8Hk1Vp6MJt3eaZaXZqKGExe3j7/2OP3NvKN9dP4J/7c+vjfaf9Pu6FzWXrjCTc/9t/99sNnj7+z0vhn0/ZPsiCe2P5Pn7j1cL6vXfm7a//pWmoim7O9/+vf9rm7reBzbTwAAAAAAAAAAAAAAAAAAAAAAAAA2KVcRByKJJd/lM7l8vn6M7x/HyO5UrlSPXK+vLw4G7VnZY/FQK7xU5ejTb+HOpX9Hn4jf2xL/u8R8buIeHfoQC2fL5RLs70OHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyB9s8/z/1zVCvawcAdMxwrysAAHSd8z8A7D9tzv+DrWcf6GhdAIDuqJ3/k/5eVwMA6CLf/wPA/uP8DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQIedPnUqnTZ+XF8rpPnZSyvL8+VLR2eLlfn8wnIhXygvXczPlctzpWK+UF5o+0FX6y+lcvnidCwuX56sFivVycrK6tmF8vJi9eyFhZm54tniQNciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDdq6yszs+USsUliZ0TV16IalzLmq3XW0PihUgMRUSnimjuJQ70pnMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+BX4JQAA//9qsh/Y")
unlinkat(0xffffffffffffff9c, &(0x7f0000000140)='./file2\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioperm(0x0, 0xd, 0x4000000000000020)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010067656e657665300000000000000000001400010076657468315f746f5f7465616d"], 0x110}}, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x22)

728.89978ms ago: executing program 3 (id=1542):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{0x0}], 0x1}, 0x0)
recvfrom(r2, &(0x7f0000004000)=""/4112, 0xfffffffffffffedc, 0x2080, 0x0, 0x0)

435.074844ms ago: executing program 1 (id=1543):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r1], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
bind$unix(r0, &(0x7f0000000240)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)

419.655064ms ago: executing program 1 (id=1544):
epoll_create1(0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000004c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffffffffffffffd}}, './bus\x00'})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f0000000200)={'erspan0\x00', <r0=>0x0, 0x80, 0x7, 0xd45, 0x1000, {{0x3c, 0x4, 0x2, 0x0, 0xf0, 0x64, 0x0, 0xc, 0x4, 0x0, @loopback, @empty, {[@rr={0x7, 0x27, 0x87, [@loopback, @rand_addr=0x64010100, @broadcast, @empty, @private=0xa010102, @local, @multicast2, @multicast1, @dev={0xac, 0x14, 0x14, 0x28}]}, @ra={0x94, 0x4}, @timestamp_prespec={0x44, 0x44, 0xb4, 0x3, 0x8, [{@multicast1, 0xfffffff9}, {@broadcast, 0xaf}, {@multicast1, 0x43}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x1}, {@empty, 0xfff}, {@broadcast, 0x5}, {@dev={0xac, 0x14, 0x14, 0x12}, 0x1}, {@multicast2, 0x80000001}]}, @cipso={0x86, 0x38, 0x0, [{0x7, 0x3, '3'}, {0x0, 0xc, "0c477d74df1b9a40b495"}, {0x0, 0x8, "43b8b5c351fc"}, {0x7, 0x4, "29be"}, {0x1, 0x5, "3effdb"}, {0x2, 0xa, "b02846aa443373f2"}, {0x2, 0x8, "5d897691a274"}]}, @ssrr={0x89, 0x1b, 0xef, [@remote, @multicast1, @broadcast, @multicast2, @multicast1, @multicast2]}, @generic={0x94, 0x12, "864c0dbce4f10c4d26c3450114965575"}, @generic={0x89, 0x7, "c8db113c8d"}]}}}}})
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0xf, &(0x7f00000002c0), 0x4)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@multicast2, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e24, 0x81, 0x4e23, 0x3, 0x8, 0xa0, 0x20, 0x8, r0}, {0x6, 0x1, 0xb, 0x7ff, 0x5, 0x8, 0x4, 0x2}, {0x5, 0x3, 0x1, 0x8}, 0x8, 0x0, 0x1, 0x0, 0x1, 0x1}, {{@in6=@dev={0xfe, 0x80, '\x00', 0xc}, 0x4d6, 0x2b}, 0xa, @in6=@remote, 0x3505, 0x3, 0x2, 0x0, 0x8000, 0x5, 0x3}}, 0xe8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8840)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="50000000100003eeffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="0001000020010000300012800b0001006d61637365630000200002800c0004000400000100c28000050003"], 0x50}}, 0x0)
close(0xffffffffffffffff)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000001c00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000001e20000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000700)='hrtimer_init\x00', r4, 0x0, 0xfffffffffffffffd}, 0x18)

404.160804ms ago: executing program 1 (id=1545):
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f00000015c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x0, &(0x7f0000001c00)})
pipe2$watch_queue(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
sendmmsg$inet6(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0xa3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1000}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000440)="50f661ef291fe6210da7268fefd431d47084d0f49c01f205ea522c9dfe0c80d520c1172f2fb863ec5269a6bec64a479a83f743e9fd50ae5c779cc824638e503da784ee974ae6528f8d38eeac309331686827304c0b3bf2ac4d11a855ad87c24678670fee76e1b0f1ae679ca94d3389d7f2b5916ca6edc0ff88d62ed97e1139bb939d7fad096055abcb21605e693d7e78ceeea48c635a8404daf97f3e3501dbd0e0ed1dc8c9ba34a98bc86681cc0ddb241afd343a67d87e9ade15e3de4010763e8bf2482a12dafba173db14adb3d79018dc212603c1a973629ed34182fde5cf7b", 0xe0}, {&(0x7f0000000340)="877013f9709cdd22154b147c35d774c6f77a1ee1e393804590213c42e1b04c25acec31761f947f05a67c2006fe214a31740e40316891df89103f89f9436a915b51e9869d66857ec8e7f77edd73a829fbed9640f3eaa8aea6a9ae89ac7b9f2e707b79336cdc5f0030a9acb4e9ba79fa327392", 0x72}, {&(0x7f0000000540)="cfaea9f745299a02f3ec52a62b81ee337c79a90e18e7ad99e77adb98590ec7f5d7e2694eb79bec957a4ddfa500511c3c71400716ea3ee3094d7a640d50d11ab72f3a5a13a144cdb5fa0211f310a730326c8e636141096d96ed39e9e8e360359a63cde88db57cafbae6d2d72ae81ffe1d7f90fd27d626ce3a0d4f4a9a8b087ea342efa799d074759610755d009712e308bee112e21b8ec80505069208458bcafb801b7dd50ea2a655c28e90f3d63b40fcd2b2", 0xb2}, {&(0x7f0000001d40)="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", 0x1000}, {&(0x7f0000000680)="11ab43c966f0e3a917cdfb1c00cc1453351991ea990cce02e98d1422e9f87bb439a0cdc8a045c02942977c78d78d66a4311313948151a55baa16767c1af45d55937466fbc702c7c6c483235c96882affd2355b18ddb6838f", 0x58}, {&(0x7f0000000700)="de9ecedc4f92d64d44b3f697d9e11d3fd1f48b45f041cc78a23afc4824a42bb25e755a5df377a2abb468b2a38acdfb5e29824eee67f10e39b431332d98cb1fe73c8cb59e49aa", 0x46}, {&(0x7f0000000880)="dffb67af2434842a517f4d4cc007f4c9c3896aafb67142b81c4c7a14bad91f6bd5d9c5b0c6476ed95d2d6a4a2c3a5c85cc5986d45e4bc73b24d3ebcf4886d3dffd6ee711", 0x44}], 0x7, &(0x7f0000001c00)=ANY=[@ANYBLOB="1400000000000000290000000b0000000000000000000000140000000000000029000000f3000000000000030000000097abb7f01560dc5bd841ce29ec91661e3fc2b56a02a84155062d62a3453e77c1f94771051614ed9c4516e9fdfc926f0eb414539777cf5260f94f81f2710e7377c320d0ba94e170bfecf089fa8956069f1341cefcc11f4c27eac96863ffe87cc3c8096f1639c4ba85b0d036fdc81e55ac915ff4f1fb02cb893971ba17469a5cc2eaf0801b01b90351bf206b4b5ff234c4be9528f1e289ca09ef7bf499795d46e4757a561a85a331f2e074944970c6954e9404b1d584f44fe8"], 0x30}}, {{&(0x7f0000000780)={0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000980)="c4806c9aab6085655ea55dfd34f5f5fbbbc3ebc47a90b6b8b3c42523e2f1d0717becac5e91d2ae1ab8fa92e9bbb48bc5b05ff15e630182e4900a50b4860b78a1c362e3260ad6b3f46a04b558bd8cbcb6b50aa6739f2da1b697d643e763dc6c7b111adc9e3280b3021c90d68ce69086627e7a2d32ae7602eb9012c2b7e43abfb8bd5afa048e9c9bc1e8", 0x89}, {&(0x7f0000000a40)="2a1cb940ff1ccea0f9e8aed4ea36e966237f92fe03f975d601e477ccfffbf411d434d3a3a2051b4712177a0ed971738b9782d95a294db3", 0x37}, {&(0x7f0000000ac0)="9b4edadb521562cf4155eb0697765df0c887f8d57aa3f9f33b346804d24b1bffe5428b449fc96c8d918d0d770b2ed22220080028f66fe6895153e1885c33df39203f5e6a51", 0x45}], 0x3, &(0x7f0000000bc0)=ANY=[@ANYBLOB="e00000000000000029000000040000006c18000000000000c9100000000000000000000000000000000001060000000000000401070001000401090738050000000c06100007000000000000000300000000000000030000000000000005000000000000000d080000000000000900000000000000000100c910fc0000000000000000000000000000000748000000011007ffff010000000000000006000000000000000700000000000000030f49f9780000000000000000008000000000050000000000000003000000000000005000000000000000c20400000001000000"], 0xe0}}], 0x2, 0x4004000)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r3=>0x0)
io_submit(r3, 0x209e, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x3, 0x0, r2, 0x0}])
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
pipe2$9p(&(0x7f0000000240), 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x8404a0, &(0x7f0000002e40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRES32=r1, @ANYBLOB="2c776664666f3dd539991c4e5a6485f54ff6bbe89c1b1dac9e4d4c800b694ddcfad0e3301fae81a6133d68c01992bda3a8c9d729ddc78683f65bff0a8e0759e2f6d2d500465816bd41084922b95dba25ae65e92ad6aa4990debfe55500b3a1252b0a60ad3c49ac8782cb95e7c516838b069a5913505d1b165b87fd581918826a07282724daa052c7195e1f9afde642fef354abcf866362ceb900c8f788c5e86066882d4e0a319f4a76106179018b4e5dd113cae3965554200d03dbe07e5cd4aa", @ANYRESOCT=r2, @ANYRESOCT])
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
unshare(0x2c060000)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002f80)=@newqdisc={0x24c, 0x24, 0x5820a61ca228651, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r7, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x2, 0x1}}}}, @TCA_STAB={0x160, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0xd, 0x9, 0x3, 0x0, 0x8000, 0xffffff81, 0x1}}, {0x6, 0x2, [0x8]}}, {{0x1c, 0x1, {0x7f, 0x9, 0x9, 0x2a4, 0x1, 0x40, 0x2, 0x1}}, {0x6, 0x2, [0x71b]}}, {{0x1c, 0x1, {0x5, 0x9, 0x2, 0xbeb, 0x1, 0xa, 0x8, 0x1}}, {0x6, 0x2, [0x1]}}, {{0x1c, 0x1, {0x90, 0x7, 0x9, 0x6, 0x2, 0x7, 0x6c, 0x1}}, {0x6, 0x2, [0x1]}}, {{0x1c, 0x1, {0x7, 0x0, 0x9, 0x8001, 0x0, 0x7, 0xd, 0x8}}, {0x14, 0x2, [0x5, 0x7, 0x3, 0x8, 0x7, 0x7, 0x2, 0x4]}}, {{0x1c, 0x1, {0x34, 0x4, 0x8, 0x9, 0x2, 0x3, 0xf06, 0x5}}, {0xe, 0x2, [0xf, 0x410a, 0x5, 0x69d, 0x8]}}, {{0x1c, 0x1, {0xce, 0xf, 0x8, 0xefc, 0x0, 0xff, 0x2, 0x2}}, {0x8, 0x2, [0xffff, 0x2]}}, {{0x1c, 0x1, {0x82, 0x3, 0x2, 0x8001, 0x0, 0xb, 0x9, 0x3}}, {0xa, 0x2, [0x247, 0x0, 0x800]}}, {{0x1c, 0x1, {0x7f, 0x4, 0x8, 0x0, 0x2, 0x6, 0x683, 0x1}}, {0x6, 0x2, [0x0]}}]}, @TCA_STAB={0xac, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0x9, 0x9a2, 0x7, 0x2, 0x400, 0xfffffffe, 0x7}}, {0x12, 0x2, [0x0, 0x0, 0x73, 0xfff0, 0x25, 0xe3d, 0x81]}}, {{0x1c, 0x1, {0x7, 0x4, 0xb9, 0x95f9, 0x0, 0x3ff, 0x3, 0x1}}, {0x6, 0x2, [0x4]}}, {{0x1c, 0x1, {0x32, 0x5, 0x8000, 0x7f, 0x2, 0x3e, 0xe, 0x3}}, {0xa, 0x2, [0x88f, 0x1000, 0x3]}}, {{0x1c, 0x1, {0x95, 0x80, 0x2, 0x1ff, 0x0, 0x9, 0x9, 0x6}}, {0x10, 0x2, [0x7ff, 0x7, 0x8001, 0xfff, 0x101, 0x6251]}}]}]}, 0x24c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x800, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0xa, 0x3}, {0xffe8, 0x7}, {0x10, 0x5}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x24}}, 0x20040041)

326.217556ms ago: executing program 0 (id=1546):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000440)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000040)='./mnt\x00', 0x800090, &(0x7f0000000540)=ANY=[], 0x6, 0x2d8, &(0x7f0000000a40)="$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")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)

274.969476ms ago: executing program 4 (id=1547):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000440)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)

274.296176ms ago: executing program 1 (id=1548):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x20}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bind$unix(r2, &(0x7f0000000240)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)

262.599066ms ago: executing program 0 (id=1549):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

253.406676ms ago: executing program 4 (id=1550):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='fib_table_lookup\x00', r0, 0x0, 0x2}, 0x13)
syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000240)="a50769f9b1", 0x5}, {&(0x7f0000000440)="e2bb1ed63a57576cc2dcd86b8604be154e8a7600393346db8d", 0x19}], 0x2, &(0x7f0000001c00)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES8, @ANYRESDEC, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32, @ANYRES8, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001000000000000000010000000100"], 0xe8, 0x200400d1}, 0x80)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

239.768566ms ago: executing program 2 (id=1551):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
close(r1)

221.011957ms ago: executing program 1 (id=1552):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x10, 0x80002, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000002980)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002a80)=@newtaction={0x14, 0x13, 0x53b}, 0x14}}, 0x20094)
shutdown(r0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xa83b, 0x10, 0x2}, &(0x7f0000000340)=<r2=>0x0, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=ANY=[@ANYBLOB="4400000010000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000140012800b0001006970766c616e00000348028008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB="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"], 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00'}, 0x10)

215.456667ms ago: executing program 0 (id=1553):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000900)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x4, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x4, 0x8}}, @typedef={0x9, 0x0, 0x0, 0x8, 0x3}, @func={0xf, 0x0, 0x0, 0xc, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x3, 0xb608}}]}, {0x0, [0x5f, 0x61]}}, &(0x7f0000000780)=""/224, 0x64, 0xe0, 0x0, 0xff, 0x10000, @value}, 0x28)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x16, '\x00', 0x0, @fallback=0xe, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002640)={0x11, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x41100, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x3, 0x7, 0x54540e96, 0xdc4}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc, @void, @value}, 0x94)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r4, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f0000000140)={0x16f, @tick=0x7})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200000000"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2688f54c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r1, 0x0, r6, 0x0, 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x4051031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x3e, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

181.742967ms ago: executing program 2 (id=1554):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
bind$unix(r0, &(0x7f0000000240)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)

166.716187ms ago: executing program 2 (id=1555):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="190000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2688f54c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

139.461888ms ago: executing program 2 (id=1556):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r1, &(0x7f0000000080)=[{0x0}], 0x1)

138.407348ms ago: executing program 1 (id=1557):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
read$msr(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @x25={0x1, 0x4, 0x0, "936b5d9dd3aeba626df8e6f711fb2eb63be93e27886df2b8bea12b28ac37604ab05480ecf3dc"}}, 0x29)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r5)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000340)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000740)}, 0x20)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000800)=@o_path={&(0x7f00000007c0)='./file0\x00'}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0f00000000000000001000000800000088040000", @ANYRES32, @ANYBLOB="ff7f00000000fa00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000000000000100"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x7, 0x8, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}, [@generic={0x49, 0x5, 0x1, 0x9, 0x4}, @ringbuf_query]}, &(0x7f00000003c0)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000008c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, r5, r2, r7, r8, r9], &(0x7f0000000900)=[{0x3, 0x4, 0xe, 0x4}, {0x2, 0x3, 0x7, 0xa}, {0x1, 0x3, 0xc, 0xc}, {0x2, 0x4, 0x9, 0x3}, {0x1, 0x2, 0x10, 0x4}, {0x1, 0x5, 0xb, 0xc}, {0x5, 0x4, 0x0, 0x9}, {0x1, 0x4, 0x5, 0x6}], 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x15, &(0x7f0000000400)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x3}, @map_fd={0x18, 0x2, 0x0}, @map_fd={0x18, 0x8}, @initr0, @initr0={0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfff}, @printk={@li, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)

82.206959ms ago: executing program 2 (id=1558):
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f00000015c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x0, &(0x7f0000001c00)})
pipe2$watch_queue(&(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
sendmmsg$inet6(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0xa3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1000}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000440)="50f661ef291fe6210da7268fefd431d47084d0f49c01f205ea522c9dfe0c80d520c1172f2fb863ec5269a6bec64a479a83f743e9fd50ae5c779cc824638e503da784ee974ae6528f8d38eeac309331686827304c0b3bf2ac4d11a855ad87c24678670fee76e1b0f1ae679ca94d3389d7f2b5916ca6edc0ff88d62ed97e1139bb939d7fad096055abcb21605e693d7e78ceeea48c635a8404daf97f3e3501dbd0e0ed1dc8c9ba34a98bc86681cc0ddb241afd343a67d87e9ade15e3de4010763e8bf2482a12dafba173db14adb3d79018dc212603c1a973629ed34182fde5cf7b", 0xe0}, {&(0x7f0000000340)="877013f9709cdd22154b147c35d774c6f77a1ee1e393804590213c42e1b04c25acec31761f947f05a67c2006fe214a31740e40316891df89103f89f9436a915b51e9869d66857ec8e7f77edd73a829fbed9640f3eaa8aea6a9ae89ac7b9f2e707b79336cdc5f0030a9acb4e9ba79fa327392", 0x72}, {&(0x7f0000000540)="cfaea9f745299a02f3ec52a62b81ee337c79a90e18e7ad99e77adb98590ec7f5d7e2694eb79bec957a4ddfa500511c3c71400716ea3ee3094d7a640d50d11ab72f3a5a13a144cdb5fa0211f310a730326c8e636141096d96ed39e9e8e360359a63cde88db57cafbae6d2d72ae81ffe1d7f90fd27d626ce3a0d4f4a9a8b087ea342efa799d074759610755d009712e308bee112e21b8ec80505069208458bcafb801b7dd50ea2a655c28e90f3d63b40fcd2b2", 0xb2}, {&(0x7f0000001d40)="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", 0x1000}, {&(0x7f0000000680)="11ab43c966f0e3a917cdfb1c00cc1453351991ea990cce02e98d1422e9f87bb439a0cdc8a045c02942977c78d78d66a4311313948151a55baa16767c1af45d55937466fbc702c7c6c483235c96882affd2355b18ddb6838f", 0x58}, {&(0x7f0000000700)="de9ecedc4f92d64d44b3f697d9e11d3fd1f48b45f041cc78a23afc4824a42bb25e755a5df377a2abb468b2a38acdfb5e29824eee67f10e39b431332d98cb1fe73c8cb59e49aa", 0x46}, {&(0x7f0000000880)="dffb67af2434842a517f4d4cc007f4c9c3896aafb67142b81c4c7a14bad91f6bd5d9c5b0c6476ed95d2d6a4a2c3a5c85cc5986d45e4bc73b24d3ebcf4886d3dffd6ee711", 0x44}], 0x7, &(0x7f0000001c00)=ANY=[@ANYBLOB="1400000000000000290000000b0000000000000000000000140000000000000029000000f3000000000000030000000097abb7f01560dc5bd841ce29ec91661e3fc2b56a02a84155062d62a3453e77c1f94771051614ed9c4516e9fdfc926f0eb414539777cf5260f94f81f2710e7377c320d0ba94e170bfecf089fa8956069f1341cefcc11f4c27eac96863ffe87cc3c8096f1639c4ba85b0d036fdc81e55ac915ff4f1fb02cb893971ba17469a5cc2eaf0801b01b90351bf206b4b5ff234c4be9528f1e289ca09ef7bf499795d46e4757a561a85a331f2e074944970c6954e9404b1d584f44fe8"], 0x30}}, {{&(0x7f0000000780)={0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x40}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000980)="c4806c9aab6085655ea55dfd34f5f5fbbbc3ebc47a90b6b8b3c42523e2f1d0717becac5e91d2ae1ab8fa92e9bbb48bc5b05ff15e630182e4900a50b4860b78a1c362e3260ad6b3f46a04b558bd8cbcb6b50aa6739f2da1b697d643e763dc6c7b111adc9e3280b3021c90d68ce69086627e7a2d32ae7602eb9012c2b7e43abfb8bd5afa048e9c9bc1e8", 0x89}, {&(0x7f0000000a40)="2a1cb940ff1ccea0f9e8aed4ea36e966237f92fe03f975d601e477ccfffbf411d434d3a3a2051b4712177a0ed971738b9782d95a294db3", 0x37}, {&(0x7f0000000ac0)="9b4edadb521562cf4155eb0697765df0c887f8d57aa3f9f33b346804d24b1bffe5428b449fc96c8d918d0d770b2ed22220080028f66fe6895153e1885c33df39203f5e6a51", 0x45}], 0x3, &(0x7f0000000bc0)=ANY=[@ANYBLOB="e00000000000000029000000040000006c18000000000000c9100000000000000000000000000000000001060000000000000401070001000401090738050000000c06100007000000000000000300000000000000030000000000000005000000000000000d080000000000000900000000000000000100c910fc0000000000000000000000000000000748000000011007ffff010000000000000006000000000000000700000000000000030f49f9780000000000000000008000000000050000000000000003000000000000005000000000000000c20400000001000000"], 0xe0}}], 0x2, 0x4004000)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r3=>0x0)
io_submit(r3, 0x209e, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x3, 0x0, r2, 0x0}])
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
pipe2$9p(&(0x7f0000000240), 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x8404a0, &(0x7f0000002e40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRES32=r1, @ANYBLOB="2c776664666f3dd539991c4e5a6485f54ff6bbe89c1b1dac9e4d4c800b694ddcfad0e3301fae81a6133d68c01992bda3a8c9d729ddc78683f65bff0a8e0759e2f6d2d500465816bd41084922b95dba25ae65e92ad6aa4990debfe55500b3a1252b0a60ad3c49ac8782cb95e7c516838b069a5913505d1b165b87fd581918826a07282724daa052c7195e1f9afde642fef354abcf866362ceb900c8f788c5e86066882d4e0a319f4a76106179018b4e5dd113cae3965554200d03dbe07e5cd4aa", @ANYRESOCT=r2, @ANYRESOCT])
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r7, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
unshare(0x2c060000)
sendmsg$nl_route_sched(r4, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002f80)=@newqdisc={0x24c, 0x24, 0x5820a61ca228651, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r7, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x2, 0x1}}}}, @TCA_STAB={0x160, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0xd, 0x9, 0x3, 0x0, 0x8000, 0xffffff81, 0x1}}, {0x6, 0x2, [0x8]}}, {{0x1c, 0x1, {0x7f, 0x9, 0x9, 0x2a4, 0x1, 0x40, 0x2, 0x1}}, {0x6, 0x2, [0x71b]}}, {{0x1c, 0x1, {0x5, 0x9, 0x2, 0xbeb, 0x1, 0xa, 0x8, 0x1}}, {0x6, 0x2, [0x1]}}, {{0x1c, 0x1, {0x90, 0x7, 0x9, 0x6, 0x2, 0x7, 0x6c, 0x1}}, {0x6, 0x2, [0x1]}}, {{0x1c, 0x1, {0x7, 0x0, 0x9, 0x8001, 0x0, 0x7, 0xd, 0x8}}, {0x14, 0x2, [0x5, 0x7, 0x3, 0x8, 0x7, 0x7, 0x2, 0x4]}}, {{0x1c, 0x1, {0x34, 0x4, 0x8, 0x9, 0x2, 0x3, 0xf06, 0x5}}, {0xe, 0x2, [0xf, 0x410a, 0x5, 0x69d, 0x8]}}, {{0x1c, 0x1, {0xce, 0xf, 0x8, 0xefc, 0x0, 0xff, 0x2, 0x2}}, {0x8, 0x2, [0xffff, 0x2]}}, {{0x1c, 0x1, {0x82, 0x3, 0x2, 0x8001, 0x0, 0xb, 0x9, 0x3}}, {0xa, 0x2, [0x247, 0x0, 0x800]}}, {{0x1c, 0x1, {0x7f, 0x4, 0x8, 0x0, 0x2, 0x6, 0x683, 0x1}}, {0x6, 0x2, [0x0]}}]}, @TCA_STAB={0xac, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0x9, 0x9a2, 0x7, 0x2, 0x400, 0xfffffffe, 0x7}}, {0x12, 0x2, [0x0, 0x0, 0x73, 0xfff0, 0x25, 0xe3d, 0x81]}}, {{0x1c, 0x1, {0x7, 0x4, 0xb9, 0x95f9, 0x0, 0x3ff, 0x3, 0x1}}, {0x6, 0x2, [0x4]}}, {{0x1c, 0x1, {0x32, 0x5, 0x8000, 0x7f, 0x2, 0x3e, 0xe, 0x3}}, {0xa, 0x2, [0x88f, 0x1000, 0x3]}}, {{0x1c, 0x1, {0x95, 0x80, 0x2, 0x1ff, 0x0, 0x9, 0x9, 0x6}}, {0x10, 0x2, [0x7ff, 0x7, 0x8001, 0xfff, 0x101, 0x6251]}}]}]}, 0x24c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x800, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0xa, 0x3}, {0xffe8, 0x7}, {0x10, 0x5}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x24}}, 0x20040041)

58.782289ms ago: executing program 4 (id=1559):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000440)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000040)='./mnt\x00', 0x800090, &(0x7f0000000540)=ANY=[], 0x6, 0x2d8, &(0x7f0000000a40)="$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")
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r3}, 0x18)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18)
mkdir(&(0x7f0000000180)='./file0\x00', 0x106)
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
dup(r8)
bind$bt_hci(r6, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)

6.30475ms ago: executing program 4 (id=1560):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000ff"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000440)='kmem_cache_free\x00', r0, 0x0, 0x6}, 0x18)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00')
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000040)='./mnt\x00', 0x800090, &(0x7f0000000540)=ANY=[], 0x6, 0x2d8, &(0x7f0000000a40)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)

0s ago: executing program 2 (id=1561):
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800004, 0x1, @perf_bp={0x0, 0x6}, 0x117a20, 0x2, 0x840000, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r0}, 0x8) (async)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) (async)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r1, r0, 0x4, r2}, 0x10) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

kernel console output (not intermixed with test programs):

up on readonly fs
[   51.253384][ T4506] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[   51.263093][ T4506] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #3: comm syz.4.397: mark_inode_dirty error
[   51.274791][ T4506] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.397: Invalid block bitmap block 3 in block_group 0
[   51.288524][ T4506] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.397: Invalid block bitmap block 3 in block_group 0
[   51.302058][ T4506] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.397: Invalid block bitmap block 3 in block_group 0
[   51.315596][ T4506] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[   51.325310][ T4506] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #3: comm syz.4.397: mark_inode_dirty error
[   51.336874][ T4506] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm syz.4.397: lblock 6 mapped to illegal pblock 1 (length 1)
[   51.351153][ T4506] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.397: lblock 0 mapped to illegal pblock 48 (length 1)
[   51.365506][ T4506] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.397: Failed to acquire dquot type 0
[   51.377439][ T4506] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 49: comm syz.4.397: lblock 1 mapped to illegal pblock 49 (length 1)
[   51.392553][ T4506] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.397: Failed to acquire dquot type 0
[   51.404860][ T4506] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem
[   51.415142][ T4506] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #15: comm syz.4.397: mark_inode_dirty error
[   51.428006][ T4506] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117)
[   51.438786][ T4506] EXT4-fs (loop4): 1 orphan inode deleted
[   51.445113][ T4506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   51.481451][ T4506] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #2: block 16: comm syz.4.397: lblock 0 mapped to illegal pblock 16 (length 1)
[   51.506873][ T4506] syz.4.397 (4506) used greatest stack depth: 8960 bytes left
[   51.515127][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.524259][ T4511] loop0: detected capacity change from 0 to 2048
[   51.542933][ T4513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.400'.
[   51.552287][ T4513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.400'.
[   51.568042][ T4511]  loop0: p3 < > p4 < >
[   51.569195][ T4513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.400'.
[   51.572272][ T4511] loop0: partition table partially beyond EOD, truncated
[   51.572547][ T4511] loop0: p3 start 4284289 is beyond EOD, truncated
[   51.612336][ T4513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.400'.
[   51.845967][ T4532] loop0: detected capacity change from 0 to 512
[   51.874085][ T4532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.897832][ T4532] ext4 filesystem being mounted at /78/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.032798][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.126827][ T4546] loop1: detected capacity change from 0 to 2048
[   52.163526][ T4549] infiniband syz!: set active
[   52.168438][ T4549] infiniband syz!: added team_slave_0
[   52.174720][ T3511]  loop1: p3 < > p4 < >
[   52.178952][ T3511] loop1: partition table partially beyond EOD, truncated
[   52.187029][ T3511] loop1: p3 start 4284289 is beyond EOD, truncated
[   52.198897][ T4549] RDS/IB: syz!: added
[   52.208735][ T4546]  loop1: p3 < > p4 < >
[   52.211063][ T4549] smc: adding ib device syz! with port count 1
[   52.212915][ T4546] loop1: partition table partially beyond EOD, truncated
[   52.215379][ T4546] loop1: p3 start 4284289 is beyond EOD, truncated
[   52.233469][ T4549] smc:    ib device syz! port 1 has pnetid 
[   52.242848][ T3005]  loop1: p3 < > p4 < >
[   52.247186][ T3005] loop1: partition table partially beyond EOD, truncated
[   52.261517][ T4560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4560 comm=syz.3.417
[   52.274469][ T3005] loop1: p3 start 4284289 is beyond EOD, truncated
[   52.397831][ T4563] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.410864][ T3511] udevd[3511]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   52.436296][ T4563] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.442688][ T3511] udevd[3511]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   52.491718][ T3511] udevd[3511]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   52.542493][ T4571] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   52.546808][ T4574] bridge0: entered promiscuous mode
[   52.557177][ T4574] bridge0: port 3(macvlan2) entered blocking state
[   52.563742][ T4574] bridge0: port 3(macvlan2) entered disabled state
[   52.573146][ T4574] macvlan2: entered allmulticast mode
[   52.578595][ T4574] bridge0: entered allmulticast mode
[   52.584404][ T4574] macvlan2: left allmulticast mode
[   52.589613][ T4574] bridge0: left allmulticast mode
[   52.595102][ T4574] bridge0: left promiscuous mode
[   52.736981][   T29] kauditd_printk_skb: 458 callbacks suppressed
[   52.737020][   T29] audit: type=1326 audit(1746511444.841:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4578 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.767785][   T29] audit: type=1326 audit(1746511444.841:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4578 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.798958][   T29] audit: type=1326 audit(1746511444.901:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.825994][   T29] audit: type=1326 audit(1746511444.901:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.849495][   T29] audit: type=1326 audit(1746511444.901:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.873021][   T29] audit: type=1326 audit(1746511444.901:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.896879][   T29] audit: type=1326 audit(1746511444.901:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.912254][ T4585] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[   52.920118][   T29] audit: type=1400 audit(1746511444.901:1866): avc:  denied  { create } for  pid=4580 comm="syz.0.424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   52.926611][ T4585] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   52.945958][   T29] audit: type=1326 audit(1746511444.901:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   52.953665][ T4585] vhci_hcd vhci_hcd.0: Device attached
[   52.977006][   T29] audit: type=1326 audit(1746511444.901:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4580 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   53.003123][ T4586] vhci_hcd: connection closed
[   53.008165][   T52] vhci_hcd: stop threads
[   53.017229][   T52] vhci_hcd: release socket
[   53.021715][   T52] vhci_hcd: disconnect device
[   53.115583][ T4594] loop3: detected capacity change from 0 to 512
[   53.122996][ T4594] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.149586][ T4594] EXT4-fs (loop3): 1 truncate cleaned up
[   53.155651][ T4602] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   53.155980][ T4594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.192402][ T4605] loop4: detected capacity change from 0 to 512
[   53.202915][ T4605] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.216905][ T4605] ext4 filesystem being mounted at /89/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.230242][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.297128][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.364356][ T4612] loop3: detected capacity change from 0 to 512
[   53.381237][ T4612] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.403920][ T4612] EXT4-fs (loop3): 1 truncate cleaned up
[   53.410286][ T4612] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.443150][ T4620] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.457731][ T4620] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.477290][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.819164][ T4651] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.827901][ T4651] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.975781][ T3380] vhci_hcd: vhci_device speed not set
[   54.020912][ T4660] __nla_validate_parse: 25 callbacks suppressed
[   54.020926][ T4660] netlink: 8 bytes leftover after parsing attributes in process `syz.1.449'.
[   54.038721][ T4660] bridge0: entered promiscuous mode
[   54.045392][ T4660] bridge0: port 3(macvlan2) entered blocking state
[   54.052090][ T4660] bridge0: port 3(macvlan2) entered disabled state
[   54.058852][ T4660] macvlan2: entered allmulticast mode
[   54.064266][ T4660] bridge0: entered allmulticast mode
[   54.070397][ T4660] macvlan2: left allmulticast mode
[   54.075552][ T4660] bridge0: left allmulticast mode
[   54.081066][ T4660] bridge0: left promiscuous mode
[   54.134621][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.143608][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.159390][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.168359][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.190701][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.200403][ T4662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[   54.445656][ T4681] loop0: detected capacity change from 0 to 128
[   54.452696][ T4681] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   54.465036][ T4681] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   54.538631][ T4685] 9pnet_fd: Insufficient options for proto=fd
[   54.630173][ T4692] loop3: detected capacity change from 0 to 512
[   54.640419][ T4693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.461'.
[   54.651317][ T4693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.461'.
[   54.676009][ T4692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.701496][ T4692] ext4 filesystem being mounted at /115/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.713210][ T4693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.461'.
[   54.773312][ T4707] loop2: detected capacity change from 0 to 256
[   54.780383][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.923094][ T4719] 9pnet_fd: Insufficient options for proto=fd
[   54.952758][ T4721] loop3: detected capacity change from 0 to 2048
[   54.971059][ T4721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.007953][ T4725] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   55.103902][ T4742] loop4: detected capacity change from 0 to 256
[   55.309828][ T4757] bridge0: entered promiscuous mode
[   55.326050][ T4757] bridge0: port 3(macvlan2) entered blocking state
[   55.332642][ T4757] bridge0: port 3(macvlan2) entered disabled state
[   55.347560][ T4757] macvlan2: entered allmulticast mode
[   55.350468][ T4760] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   55.353038][ T4757] bridge0: entered allmulticast mode
[   55.369912][ T4757] macvlan2: left allmulticast mode
[   55.375093][ T4757] bridge0: left allmulticast mode
[   55.380857][ T4757] bridge0: left promiscuous mode
[   55.585067][ T4766] loop4: detected capacity change from 0 to 8192
[   55.611701][ T4778] loop1: detected capacity change from 0 to 512
[   55.647433][ T4778] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.724461][ T4784] bridge0: port 3(vlan2) entered blocking state
[   55.730899][ T4784] bridge0: port 3(vlan2) entered disabled state
[   55.748188][ T4778] ext4 filesystem being mounted at /97/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.775847][ T4784] vlan2: entered allmulticast mode
[   55.781033][ T4784] bridge0: entered allmulticast mode
[   55.795216][ T4784] vlan2: left allmulticast mode
[   55.795865][ T4786] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   55.800170][ T4784] bridge0: left allmulticast mode
[   55.883953][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.925976][ T4792] loop3: detected capacity change from 0 to 256
[   55.934342][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.954536][ T4794] loop4: detected capacity change from 0 to 256
[   56.092457][ T4809] loop0: detected capacity change from 0 to 2048
[   56.131174][ T4821] FAULT_INJECTION: forcing a failure.
[   56.131174][ T4821] name failslab, interval 1, probability 0, space 0, times 0
[   56.143999][ T4821] CPU: 0 UID: 0 PID: 4821 Comm: syz.1.512 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   56.144034][ T4821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   56.144049][ T4821] Call Trace:
[   56.144056][ T4821]  <TASK>
[   56.144116][ T4821]  __dump_stack+0x1d/0x30
[   56.144142][ T4821]  dump_stack_lvl+0xe8/0x140
[   56.144163][ T4821]  dump_stack+0x15/0x1b
[   56.144183][ T4821]  should_fail_ex+0x265/0x280
[   56.144252][ T4821]  should_failslab+0x8c/0xb0
[   56.144310][ T4821]  kmem_cache_alloc_node_noprof+0x57/0x320
[   56.144353][ T4821]  ? __alloc_skb+0x101/0x320
[   56.144391][ T4821]  __alloc_skb+0x101/0x320
[   56.144484][ T4821]  inet6_ifmcaddr_notify+0x8f/0x150
[   56.144545][ T4821]  __ipv6_dev_mc_dec+0x1d8/0x400
[   56.144577][ T4821]  ipv6_mc_destroy_dev+0x22e/0x4a0
[   56.144618][ T4821]  addrconf_ifdown+0xcb5/0xf30
[   56.144648][ T4821]  ? __pfx_cbs_dev_notifier+0x10/0x10
[   56.144710][ T4821]  ? __rcu_read_unlock+0x4f/0x70
[   56.144735][ T4821]  ? tls_dev_event+0x3d7/0x910
[   56.144760][ T4821]  addrconf_notify+0x222/0x930
[   56.144838][ T4821]  ? __pfx_addrconf_notify+0x10/0x10
[   56.144865][ T4821]  raw_notifier_call_chain+0x6c/0x1b0
[   56.144889][ T4821]  ? call_netdevice_notifiers_info+0x9c/0x100
[   56.144921][ T4821]  call_netdevice_notifiers_info+0xae/0x100
[   56.144998][ T4821]  unregister_netdevice_many_notify+0xd9a/0x16a0
[   56.145028][ T4821]  unregister_netdevice_queue+0x1f5/0x220
[   56.145116][ T4821]  __tun_detach+0x7db/0xad0
[   56.145148][ T4821]  ? __pfx_tun_chr_close+0x10/0x10
[   56.145175][ T4821]  tun_chr_close+0x5a/0x100
[   56.145282][ T4821]  __fput+0x298/0x650
[   56.145314][ T4821]  fput_close_sync+0x6e/0x120
[   56.145338][ T4821]  __x64_sys_close+0x56/0xf0
[   56.145363][ T4821]  x64_sys_call+0x2747/0x2fb0
[   56.145466][ T4821]  do_syscall_64+0xd0/0x1a0
[   56.145494][ T4821]  ? clear_bhb_loop+0x25/0x80
[   56.145546][ T4821]  ? clear_bhb_loop+0x25/0x80
[   56.145572][ T4821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.145665][ T4821] RIP: 0033:0x7f9fe8c0e969
[   56.145683][ T4821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.145715][ T4821] RSP: 002b:00007f9fe7277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   56.145736][ T4821] RAX: ffffffffffffffda RBX: 00007f9fe8e35fa0 RCX: 00007f9fe8c0e969
[   56.145803][ T4821] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[   56.145866][ T4821] RBP: 00007f9fe7277090 R08: 0000000000000000 R09: 0000000000000000
[   56.145880][ T4821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.145893][ T4821] R13: 0000000000000000 R14: 00007f9fe8e35fa0 R15: 00007fffdf413938
[   56.145913][ T4821]  </TASK>
[   56.421877][ T4817] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   56.423486][ T4823] loop2: detected capacity change from 0 to 512
[   56.470212][ T4827] team0: entered promiscuous mode
[   56.475324][ T4827] team_slave_0: entered promiscuous mode
[   56.481242][ T4827] team_slave_1: entered promiscuous mode
[   56.492729][ T4826] team0: left promiscuous mode
[   56.497648][ T4826] team_slave_0: left promiscuous mode
[   56.503153][ T4826] team_slave_1: left promiscuous mode
[   56.510112][ T4823] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.525924][ T4823] ext4 filesystem being mounted at /69/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.528379][ T4809] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.552587][ T4834] loop1: detected capacity change from 0 to 128
[   56.561015][ T4834] netlink: 'syz.1.516': attribute type 6 has an invalid length.
[   56.564586][ T4833] loop3: detected capacity change from 0 to 256
[   56.604395][ T4834] FAULT_INJECTION: forcing a failure.
[   56.604395][ T4834] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   56.617847][ T4834] CPU: 0 UID: 0 PID: 4834 Comm: syz.1.516 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   56.617874][ T4834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   56.617886][ T4834] Call Trace:
[   56.617894][ T4834]  <TASK>
[   56.617903][ T4834]  __dump_stack+0x1d/0x30
[   56.617938][ T4834]  dump_stack_lvl+0xe8/0x140
[   56.617962][ T4834]  dump_stack+0x15/0x1b
[   56.617982][ T4834]  should_fail_ex+0x265/0x280
[   56.618073][ T4834]  should_fail_alloc_page+0xf2/0x100
[   56.618111][ T4834]  __alloc_frozen_pages_noprof+0xff/0x360
[   56.618148][ T4834]  alloc_pages_mpol+0xb3/0x250
[   56.618178][ T4834]  vma_alloc_folio_noprof+0x1aa/0x300
[   56.618262][ T4834]  handle_mm_fault+0x1056/0x2ae0
[   56.618292][ T4834]  ? __rcu_read_unlock+0x4f/0x70
[   56.618331][ T4834]  do_user_addr_fault+0x3fe/0x1090
[   56.618420][ T4834]  exc_page_fault+0x54/0xc0
[   56.618511][ T4834]  asm_exc_page_fault+0x26/0x30
[   56.618537][ T4834] RIP: 0010:rep_movs_alternative+0x4a/0x90
[   56.618574][ T4834] Code: cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   56.618593][ T4834] RSP: 0018:ffffc90012a53cd8 EFLAGS: 00050246
[   56.618621][ T4834] RAX: ffff888118fb1b18 RBX: 0000000000000040 RCX: 0000000000000040
[   56.618633][ T4834] RDX: 0000000000000000 RSI: ffffc90012a53d30 RDI: 0000200000033a80
[   56.618644][ T4834] RBP: ffffc90012a53db0 R08: 0000000000000119 R09: 0000000000000000
[   56.618656][ T4834] R10: 0001c90012a53d30 R11: 0001c90012a53d6f R12: 0000200000033ac0
[   56.618671][ T4834] R13: 00007ffffffff000 R14: 0000200000033a80 R15: ffffc90012a53d30
[   56.618695][ T4834]  _copy_to_user+0x7c/0xa0
[   56.618717][ T4834]  rng_dev_read+0x3ef/0x740
[   56.618775][ T4834]  vfs_readv+0x3e6/0x670
[   56.618811][ T4834]  ? __pfx_rng_dev_read+0x10/0x10
[   56.618849][ T4834]  __x64_sys_preadv+0xfd/0x1c0
[   56.618953][ T4834]  x64_sys_call+0x1503/0x2fb0
[   56.619053][ T4834]  do_syscall_64+0xd0/0x1a0
[   56.619079][ T4834]  ? clear_bhb_loop+0x25/0x80
[   56.619105][ T4834]  ? clear_bhb_loop+0x25/0x80
[   56.619133][ T4834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.619157][ T4834] RIP: 0033:0x7f9fe8c0e969
[   56.619231][ T4834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.619252][ T4834] RSP: 002b:00007f9fe7277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   56.619274][ T4834] RAX: ffffffffffffffda RBX: 00007f9fe8e35fa0 RCX: 00007f9fe8c0e969
[   56.619287][ T4834] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000007
[   56.619298][ T4834] RBP: 00007f9fe7277090 R08: 0000000000000000 R09: 0000000000000000
[   56.619330][ T4834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.619341][ T4834] R13: 0000000000000000 R14: 00007f9fe8e35fa0 R15: 00007fffdf413938
[   56.619379][ T4834]  </TASK>
[   56.994894][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.169102][ T3005] udevd[3005]: worker [3511] terminated by signal 33 (Unknown signal 33)
[   57.174034][ T4859] loop4: detected capacity change from 0 to 2048
[   57.203937][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.203937][   T52] loop1: rw=1, sector=145, nr_sectors = 8 limit=128
[   57.218067][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.218067][   T52] loop1: rw=1, sector=161, nr_sectors = 8 limit=128
[   57.235828][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.235828][   T52] loop1: rw=1, sector=177, nr_sectors = 8 limit=128
[   57.249766][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.249766][   T52] loop1: rw=1, sector=193, nr_sectors = 8 limit=128
[   57.263321][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.263321][   T52] loop1: rw=1, sector=209, nr_sectors = 8 limit=128
[   57.277015][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.277015][   T52] loop1: rw=1, sector=225, nr_sectors = 8 limit=128
[   57.290584][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.290584][   T52] loop1: rw=1, sector=241, nr_sectors = 8 limit=128
[   57.304057][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.304057][   T52] loop1: rw=1, sector=257, nr_sectors = 8 limit=128
[   57.328897][ T4863] loop3: detected capacity change from 0 to 256
[   57.331295][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.331295][   T52] loop1: rw=1, sector=273, nr_sectors = 8 limit=128
[   57.357471][   T52] kworker/u8:4: attempt to access beyond end of device
[   57.357471][   T52] loop1: rw=1, sector=289, nr_sectors = 8 limit=128
[   57.401153][ T4871] loop3: detected capacity change from 0 to 128
[   57.410804][ T4871] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   57.434227][ T4871] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.463550][ T4878] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   57.512131][   T37] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.539492][ T4892] loop0: detected capacity change from 0 to 2048
[   57.557490][ T4892] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.597530][ T4896] loop4: detected capacity change from 0 to 256
[   57.617777][ T4892] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #16: comm syz.0.540: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   57.677999][ T4909] loop1: detected capacity change from 0 to 128
[   57.684930][ T4909] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   57.704756][ T4909] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.707491][ T4892] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz.0.540: path /106/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   57.778844][   T29] kauditd_printk_skb: 688 callbacks suppressed
[   57.778861][   T29] audit: type=1326 audit(1746511449.881:2557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.812278][   T29] audit: type=1326 audit(1746511449.881:2558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.835574][   T29] audit: type=1326 audit(1746511449.911:2559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.859175][   T29] audit: type=1326 audit(1746511449.911:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.884496][ T4913] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   57.894564][   T29] audit: type=1326 audit(1746511449.911:2561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.918271][   T29] audit: type=1326 audit(1746511449.911:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.941659][   T29] audit: type=1326 audit(1746511449.911:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.965035][   T29] audit: type=1326 audit(1746511449.911:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   57.988456][   T29] audit: type=1326 audit(1746511449.911:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   58.011980][   T29] audit: type=1326 audit(1746511449.911:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4908 comm="syz.1.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fe8c0e969 code=0x7ffc0000
[   58.054164][ T4923] loop4: detected capacity change from 0 to 256
[   58.115190][   T51] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.153827][ T4943] loop4: detected capacity change from 0 to 128
[   58.161447][ T4943] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.206447][ T4943] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.347199][ T4966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   58.384161][ T4969] loop1: detected capacity change from 0 to 8192
[   58.394447][ T4966] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   58.454235][ T4980] loop2: detected capacity change from 0 to 2048
[   58.561450][ T4995] loop4: detected capacity change from 0 to 128
[   58.572363][ T4995] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.587467][ T4995] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.667256][ T5005] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   58.766245][   T37] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.800864][ T5026] loop0: detected capacity change from 0 to 256
[   58.858468][ T5034] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=5034 comm=syz.0.599
[   58.897396][ T5038] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   58.974530][ T5047] loop0: detected capacity change from 0 to 2048
[   58.994209][ T5051] loop1: detected capacity change from 0 to 128
[   59.004603][ T5051] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.017197][ T5051] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.026102][ T5055] loop3: detected capacity change from 0 to 256
[   59.102560][ T5047] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.606: bg 0: block 234: padding at end of block bitmap is not set
[   59.137750][ T5047] EXT4-fs (loop0): Remounting filesystem read-only
[   59.159314][ T5064] FAULT_INJECTION: forcing a failure.
[   59.159314][ T5064] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.172428][ T5064] CPU: 0 UID: 0 PID: 5064 Comm: syz.0.606 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   59.172518][ T5064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   59.172530][ T5064] Call Trace:
[   59.172536][ T5064]  <TASK>
[   59.172543][ T5064]  __dump_stack+0x1d/0x30
[   59.172593][ T5064]  dump_stack_lvl+0xe8/0x140
[   59.172617][ T5064]  dump_stack+0x15/0x1b
[   59.172637][ T5064]  should_fail_ex+0x265/0x280
[   59.172728][ T5064]  should_fail+0xb/0x20
[   59.172763][ T5064]  should_fail_usercopy+0x1a/0x20
[   59.172836][ T5064]  _copy_to_user+0x20/0xa0
[   59.172879][ T5064]  simple_read_from_buffer+0xb5/0x130
[   59.172909][ T5064]  proc_fail_nth_read+0x100/0x140
[   59.172941][ T5064]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   59.172965][ T5064]  vfs_read+0x19d/0x6f0
[   59.172987][ T5064]  ? __rcu_read_unlock+0x4f/0x70
[   59.173072][ T5064]  ? __fget_files+0x184/0x1c0
[   59.173106][ T5064]  ksys_read+0xda/0x1a0
[   59.173138][ T5064]  __x64_sys_read+0x40/0x50
[   59.173242][ T5064]  x64_sys_call+0x2d77/0x2fb0
[   59.173266][ T5064]  do_syscall_64+0xd0/0x1a0
[   59.173287][ T5064]  ? clear_bhb_loop+0x25/0x80
[   59.173306][ T5064]  ? clear_bhb_loop+0x25/0x80
[   59.173328][ T5064]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.173364][ T5064] RIP: 0033:0x7f392a37d37c
[   59.173382][ T5064] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   59.173403][ T5064] RSP: 002b:00007f39289c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   59.173425][ T5064] RAX: ffffffffffffffda RBX: 00007f392a5a6080 RCX: 00007f392a37d37c
[   59.173441][ T5064] RDX: 000000000000000f RSI: 00007f39289c60a0 RDI: 0000000000000007
[   59.173455][ T5064] RBP: 00007f39289c6090 R08: 0000000000000000 R09: 0000000000000000
[   59.173491][ T5064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.173573][ T5064] R13: 0000000000000000 R14: 00007f392a5a6080 R15: 00007fff02848388
[   59.173596][ T5064]  </TASK>
[   59.174425][   T52] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.213307][ T5072] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   59.444194][ T5079] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   59.458283][ T5085] loop1: detected capacity change from 0 to 256
[   59.485059][ T5079] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[   59.491705][ T5079] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   59.499414][ T5079] vhci_hcd vhci_hcd.0: Device attached
[   59.570213][ T5101] __nla_validate_parse: 25 callbacks suppressed
[   59.570310][ T5101] netlink: 4 bytes leftover after parsing attributes in process `syz.3.631'.
[   59.573898][ T5099] netlink: 4 bytes leftover after parsing attributes in process `syz.1.630'.
[   59.592156][ T5097] team0: entered promiscuous mode
[   59.594799][ T5103] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   59.599763][ T5097] team_slave_0: entered promiscuous mode
[   59.599861][ T5097] team_slave_1: entered promiscuous mode
[   59.614000][ T5101] loop3: detected capacity change from 0 to 512
[   59.629708][ T5096] team0: left promiscuous mode
[   59.633000][ T5105] loop1: detected capacity change from 0 to 512
[   59.634568][ T5096] team_slave_0: left promiscuous mode
[   59.641495][ T5101] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   59.646353][ T5096] team_slave_1: left promiscuous mode
[   59.658271][ T5105] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   59.663195][ T5106] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[   59.677820][ T5106] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   59.685609][ T5106] vhci_hcd vhci_hcd.0: Device attached
[   59.686778][ T5101] EXT4-fs (loop3): 1 truncate cleaned up
[   59.709642][ T5105] EXT4-fs (loop1): 1 truncate cleaned up
[   59.739633][ T5107] vhci_hcd: connection closed
[   59.739826][   T37] vhci_hcd: stop threads
[   59.748957][   T37] vhci_hcd: release socket
[   59.753438][   T37] vhci_hcd: disconnect device
[   59.758358][   T36] usb 1-1: new high-speed USB device number 2 using vhci_hcd
[   59.766229][ T5088] vhci_hcd: connection closed
[   59.766481][   T37] vhci_hcd: stop threads
[   59.775444][   T37] vhci_hcd: release socket
[   59.780050][   T37] vhci_hcd: disconnect device
[   59.842772][ T5118] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   59.856645][ T5125] netlink: 8 bytes leftover after parsing attributes in process `syz.2.638'.
[   59.868283][ T5125] bridge0: entered promiscuous mode
[   59.875095][ T5125] bridge0: port 3(macvlan2) entered blocking state
[   59.881822][ T5125] bridge0: port 3(macvlan2) entered disabled state
[   59.888572][ T5125] macvlan2: entered allmulticast mode
[   59.894109][ T5125] bridge0: entered allmulticast mode
[   59.900215][ T5125] macvlan2: left allmulticast mode
[   59.905361][ T5125] bridge0: left allmulticast mode
[   59.910908][ T5125] bridge0: left promiscuous mode
[   59.963322][ T5136] loop3: detected capacity change from 0 to 128
[   59.970782][ T5136] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.982893][ T5136] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.003132][ T5138] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=5138 comm=syz.2.644
[   60.100824][ T5142] loop2: detected capacity change from 0 to 128
[   60.107909][ T5142] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.120180][ T5142] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.184828][ T5148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.193525][ T5148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.237918][ T5153] loop2: detected capacity change from 0 to 2048
[   60.361891][ T5167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'.
[   60.432215][ T5176] loop0: detected capacity change from 0 to 128
[   60.439285][ T5176] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.451790][ T5176] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.610738][ T5182] loop0: detected capacity change from 0 to 128
[   60.626777][ T5182] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.641513][ T5182] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.782612][ T5187] loop1: detected capacity change from 0 to 128
[   60.866706][ T5197] loop0: detected capacity change from 0 to 2048
[   60.889399][ T5197] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.939509][ T5197] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #16: comm syz.0.666: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   60.941602][ T5209] loop3: detected capacity change from 0 to 128
[   60.964105][ T5209] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.976780][ T5209] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.000017][ T5208] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.003598][ T5214] loop1: detected capacity change from 0 to 512
[   61.016837][ T5208] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.031174][ T5214] ext4 filesystem being mounted at /135/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.041006][ T5197] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz.0.666: path /129/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   61.068816][ T5214] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   61.099641][ T5218] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5218 comm=syz.2.674
[   61.241381][ T5241] loop1: detected capacity change from 0 to 2048
[   61.340405][ T5258] loop0: detected capacity change from 0 to 128
[   61.357803][ T5258] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   61.370147][ T5262] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5262 comm=syz.3.691
[   61.397975][ T5258] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.412128][ T5264] team0: entered promiscuous mode
[   61.417235][ T5264] team_slave_0: entered promiscuous mode
[   61.423018][ T5264] team_slave_1: entered promiscuous mode
[   61.437737][ T5263] team0: left promiscuous mode
[   61.442577][ T5263] team_slave_0: left promiscuous mode
[   61.448900][ T5263] team_slave_1: left promiscuous mode
[   61.476905][ T5269] loop3: detected capacity change from 0 to 128
[   61.517319][ T5273] netlink: 8 bytes leftover after parsing attributes in process `syz.0.696'.
[   61.531450][ T5273] bridge0: entered promiscuous mode
[   61.552772][ T5273] bridge0: port 3(macvlan2) entered blocking state
[   61.559559][ T5273] bridge0: port 3(macvlan2) entered disabled state
[   61.567860][ T5275] loop2: detected capacity change from 0 to 8192
[   61.570270][ T5273] macvlan2: entered allmulticast mode
[   61.579699][ T5273] bridge0: entered allmulticast mode
[   61.614083][ T5273] macvlan2: left allmulticast mode
[   61.619416][ T5273] bridge0: left allmulticast mode
[   61.625132][ T5273] bridge0: left promiscuous mode
[   61.757091][ T5291] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5291 comm=syz.3.703
[   61.989301][ T5310] team0: entered promiscuous mode
[   61.994445][ T5310] team_slave_0: entered promiscuous mode
[   62.000305][ T5310] team_slave_1: entered promiscuous mode
[   62.054083][ T5313] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.061030][ T5308] team0: left promiscuous mode
[   62.067370][ T5308] team_slave_0: left promiscuous mode
[   62.072935][ T5308] team_slave_1: left promiscuous mode
[   62.078565][ T5313] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.105685][ T5307] netlink: 8 bytes leftover after parsing attributes in process `syz.2.711'.
[   62.150341][ T5320] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   62.177276][ T5320] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[   62.183969][ T5320] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   62.191798][ T5320] vhci_hcd vhci_hcd.0: Device attached
[   62.220903][ T5325] vhci_hcd: connection closed
[   62.221044][  T270] vhci_hcd: stop threads
[   62.230198][  T270] vhci_hcd: release socket
[   62.234626][  T270] vhci_hcd: disconnect device
[   62.347751][ T5348] team0: entered promiscuous mode
[   62.352885][ T5348] team_slave_0: entered promiscuous mode
[   62.358844][ T5348] team_slave_1: entered promiscuous mode
[   62.400874][ T5353] loop3: detected capacity change from 0 to 512
[   62.409478][ T5353] netlink: 12 bytes leftover after parsing attributes in process `syz.3.725'.
[   62.455236][ T5357] netlink: 4 bytes leftover after parsing attributes in process `syz.3.727'.
[   62.464628][ T5357] netlink: 12 bytes leftover after parsing attributes in process `syz.3.727'.
[   62.486564][ T5343] team0: left promiscuous mode
[   62.491389][ T5343] team_slave_0: left promiscuous mode
[   62.497068][ T5343] team_slave_1: left promiscuous mode
[   62.542440][ T5359] loop1: detected capacity change from 0 to 2048
[   62.586169][ T5359]  loop1: p3 < > p4 < >
[   62.590378][ T5359] loop1: partition table partially beyond EOD, truncated
[   62.590686][ T5361] loop3: detected capacity change from 0 to 2048
[   62.598479][ T5359] loop1: p3 start 4284289 is beyond EOD, truncated
[   62.805272][   T29] kauditd_printk_skb: 1132 callbacks suppressed
[   62.805290][   T29] audit: type=1326 audit(1746511454.881:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f93746ae969 code=0x7ffc0000
[   62.835001][   T29] audit: type=1326 audit(1746511454.881:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93746ae969 code=0x7ffc0000
[   62.858392][   T29] audit: type=1326 audit(1746511454.881:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f93746ae969 code=0x7ffc0000
[   62.881800][   T29] audit: type=1326 audit(1746511454.881:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93746ae969 code=0x7ffc0000
[   62.905455][   T29] audit: type=1326 audit(1746511454.891:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f93746ae969 code=0x7ffc0000
[   62.928831][   T29] audit: type=1326 audit(1746511454.891:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5370 comm="syz.4.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f93746ae9a3 code=0x7ffc0000
[   62.952342][   T29] audit: type=1400 audit(1746511454.901:3705): avc:  denied  { read write } for  pid=3306 comm="syz-executor" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   62.976664][   T29] audit: type=1400 audit(1746511454.901:3706): avc:  denied  { open } for  pid=3306 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   63.001360][   T29] audit: type=1400 audit(1746511454.901:3707): avc:  denied  { ioctl } for  pid=3306 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=100 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   63.029424][ T5373] loop4: detected capacity change from 0 to 8192
[   63.034818][   T29] audit: type=1400 audit(1746511454.901:3708): avc:  denied  { open } for  pid=5374 comm="syz.0.735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   63.207829][ T5392] loop2: detected capacity change from 0 to 2048
[   63.226766][ T5382] serio: Serial port ptm0
[   63.265339][ T5397] loop4: detected capacity change from 0 to 128
[   63.293031][ T5397] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.330032][ T5397] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.343012][ T5404] loop3: detected capacity change from 0 to 512
[   63.396752][ T5404] ext4 filesystem being mounted at /184/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.412896][ T5400] loop0: detected capacity change from 0 to 512
[   63.447870][ T5400] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   63.469997][ T5400] EXT4-fs (loop0): invalid journal inode
[   63.510157][ T5400] EXT4-fs (loop0): can't get journal size
[   63.526812][ T5400] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[   63.543886][ T5400] System zones: 1-12, 13-13
[   63.582276][ T5410] loop3: detected capacity change from 0 to 8192
[   63.590957][ T5400] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.740: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   63.633423][ T5400] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.740: couldn't read orphan inode 15 (err -117)
[   63.635625][ T5413] loop2: detected capacity change from 0 to 128
[   63.653717][ T5413] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.688238][ T5413] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.736894][   T52] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.901153][ T5427] loop2: detected capacity change from 0 to 2048
[   64.077768][ T5450] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=5450 comm=syz.4.763
[   64.294532][ T5456] loop3: detected capacity change from 0 to 2048
[   64.356195][ T5456]  loop3: p3 < > p4 < >
[   64.360513][ T5456] loop3: partition table partially beyond EOD, truncated
[   64.368188][ T5456] loop3: p3 start 4284289 is beyond EOD, truncated
[   64.524616][ T5472] bridge0: entered promiscuous mode
[   64.534659][ T5472] bridge0: port 3(macvlan2) entered blocking state
[   64.541277][ T5472] bridge0: port 3(macvlan2) entered disabled state
[   64.585068][ T5472] macvlan2: entered allmulticast mode
[   64.590535][ T5472] bridge0: entered allmulticast mode
[   64.622773][ T5472] macvlan2: left allmulticast mode
[   64.628030][ T5472] bridge0: left allmulticast mode
[   64.633973][ T5472] bridge0: left promiscuous mode
[   64.697172][ T5478] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   64.789966][ T5486] loop4: detected capacity change from 0 to 128
[   64.812975][ T5486] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.829665][ T5486] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.855768][   T36] vhci_hcd: vhci_device speed not set
[   64.860182][ T5491] __nla_validate_parse: 7 callbacks suppressed
[   64.860201][ T5491] netlink: 8 bytes leftover after parsing attributes in process `syz.2.781'.
[   64.899115][ T5491] bridge0: entered promiscuous mode
[   64.911936][ T5491] bridge0: port 3(macvlan2) entered blocking state
[   64.918719][ T5491] bridge0: port 3(macvlan2) entered disabled state
[   64.931982][ T5491] macvlan2: entered allmulticast mode
[   64.937527][ T5491] bridge0: entered allmulticast mode
[   64.953765][ T2585] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.964265][ T5491] macvlan2: left allmulticast mode
[   64.969529][ T5491] bridge0: left allmulticast mode
[   64.985655][ T5491] bridge0: left promiscuous mode
[   65.016112][ T5493] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   65.138291][ T5498] loop4: detected capacity change from 0 to 2048
[   65.177350][ T5498]  loop4: p3 < > p4 < >
[   65.181562][ T5498] loop4: partition table partially beyond EOD, truncated
[   65.205690][ T5498] loop4: p3 start 4284289 is beyond EOD, truncated
[   65.298329][ T5502] loop2: detected capacity change from 0 to 128
[   65.355877][ T5502] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   65.396270][ T5502] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.501489][ T5514] netlink: 8 bytes leftover after parsing attributes in process `syz.0.791'.
[   65.515172][ T5514] bridge0: entered promiscuous mode
[   65.521632][ T5516] netlink: 8 bytes leftover after parsing attributes in process `syz.3.792'.
[   65.531853][   T52] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.534320][ T5514] bridge0: port 3(macvlan2) entered blocking state
[   65.547595][ T5514] bridge0: port 3(macvlan2) entered disabled state
[   65.572560][ T5514] macvlan2: entered allmulticast mode
[   65.578107][ T5514] bridge0: entered allmulticast mode
[   65.593625][ T5514] macvlan2: left allmulticast mode
[   65.598842][ T5514] bridge0: left allmulticast mode
[   65.610107][ T5514] bridge0: left promiscuous mode
[   65.634372][ T5522] loop2: detected capacity change from 0 to 2048
[   65.670794][ T5522] ext4 filesystem being mounted at /113/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.682837][ T5530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.796'.
[   65.697249][ T5526] loop1: detected capacity change from 0 to 2048
[   65.710532][ T5522] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.795: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   65.737215][ T5522] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 16: comm syz.2.795: path /113/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   65.737510][ T5526]  loop1: p3 < > p4 < >
[   65.762144][ T5526] loop1: partition table partially beyond EOD, truncated
[   65.773550][ T5526] loop1: p3 start 4284289 is beyond EOD, truncated
[   65.824515][ T5532] loop0: detected capacity change from 0 to 512
[   65.892745][ T5532] ext4 filesystem being mounted at /146/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.921308][ T5532] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   65.973299][ T5548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.805'.
[   66.043196][ T5558] loop3: detected capacity change from 0 to 2048
[   66.069164][ T5558] ext4 filesystem being mounted at /203/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.084132][ T5562] netlink: 8 bytes leftover after parsing attributes in process `syz.0.809'.
[   66.109541][ T5558] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #16: comm syz.3.810: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   66.134055][ T5558] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz.3.810: path /203/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   66.252308][ T5570] loop3: detected capacity change from 0 to 2048
[   66.298486][ T5570]  loop3: p3 < > p4 < >
[   66.302690][ T5570] loop3: partition table partially beyond EOD, truncated
[   66.310122][ T5570] loop3: p3 start 4284289 is beyond EOD, truncated
[   66.369578][ T5578] netlink: 8 bytes leftover after parsing attributes in process `syz.4.817'.
[   66.423667][ T5583] netlink: 8 bytes leftover after parsing attributes in process `syz.4.819'.
[   66.465124][ T5587] loop3: detected capacity change from 0 to 512
[   66.474469][ T5587] ext4 filesystem being mounted at /207/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.488979][ T5587] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   66.564777][ T5594] team0: entered promiscuous mode
[   66.569969][ T5594] team_slave_0: entered promiscuous mode
[   66.575875][ T5594] team_slave_1: entered promiscuous mode
[   66.582854][ T5593] team0: left promiscuous mode
[   66.587786][ T5593] team_slave_0: left promiscuous mode
[   66.593713][ T5593] team_slave_1: left promiscuous mode
[   66.765467][ T5611] loop4: detected capacity change from 0 to 2048
[   66.827588][ T5611]  loop4: p3 < > p4 < >
[   66.831809][ T5611] loop4: partition table partially beyond EOD, truncated
[   66.839196][ T5611] loop4: p3 start 4284289 is beyond EOD, truncated
[   67.064240][ T5634] loop4: detected capacity change from 0 to 128
[   67.077216][ T5634] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   67.090070][ T5634] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   67.142971][ T5645] loop4: detected capacity change from 0 to 256
[   67.210495][ T5656] FAULT_INJECTION: forcing a failure.
[   67.210495][ T5656] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.210531][ T5656] CPU: 1 UID: 0 PID: 5656 Comm: syz.4.848 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   67.210563][ T5656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   67.210578][ T5656] Call Trace:
[   67.210584][ T5656]  <TASK>
[   67.210592][ T5656]  __dump_stack+0x1d/0x30
[   67.210617][ T5656]  dump_stack_lvl+0xe8/0x140
[   67.210640][ T5656]  dump_stack+0x15/0x1b
[   67.210684][ T5656]  should_fail_ex+0x265/0x280
[   67.210729][ T5656]  should_fail+0xb/0x20
[   67.210828][ T5656]  should_fail_usercopy+0x1a/0x20
[   67.210851][ T5656]  _copy_from_user+0x1c/0xb0
[   67.210879][ T5656]  ___sys_sendmsg+0xc1/0x1d0
[   67.210922][ T5656]  __x64_sys_sendmsg+0xd4/0x160
[   67.210955][ T5656]  x64_sys_call+0x2999/0x2fb0
[   67.210983][ T5656]  do_syscall_64+0xd0/0x1a0
[   67.211010][ T5656]  ? clear_bhb_loop+0x25/0x80
[   67.211112][ T5656]  ? clear_bhb_loop+0x25/0x80
[   67.211139][ T5656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.211190][ T5656] RIP: 0033:0x7f93746ae969
[   67.211210][ T5656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.211232][ T5656] RSP: 002b:00007f9372d17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.211256][ T5656] RAX: ffffffffffffffda RBX: 00007f93748d5fa0 RCX: 00007f93746ae969
[   67.211271][ T5656] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000005
[   67.211287][ T5656] RBP: 00007f9372d17090 R08: 0000000000000000 R09: 0000000000000000
[   67.211302][ T5656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.211317][ T5656] R13: 0000000000000000 R14: 00007f93748d5fa0 R15: 00007ffeeebf6008
[   67.211341][ T5656]  </TASK>
[   67.321656][ T5658] loop0: detected capacity change from 0 to 2048
[   67.352928][ T5664] loop4: detected capacity change from 0 to 128
[   67.353424][ T5664] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   67.379720][ T5664] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   67.411908][ T5658]  loop0: p3 < > p4 < >
[   67.463876][ T5658] loop0: partition table partially beyond EOD, truncated
[   67.471631][ T5658] loop0: p3 start 4284289 is beyond EOD, truncated
[   67.472030][ T5667] loop1: detected capacity change from 0 to 1024
[   67.472391][ T5667] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.472451][ T5667] EXT4-fs: Ignoring removed nobh option
[   67.472473][ T5667] EXT4-fs: Ignoring removed bh option
[   67.502697][ T5667] EXT4-fs mount: 35 callbacks suppressed
[   67.502715][ T5667] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.540399][ T2585] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   67.697720][ T5682] loop0: detected capacity change from 0 to 256
[   67.737218][ T5684] team0: entered promiscuous mode
[   67.742324][ T5684] team_slave_0: entered promiscuous mode
[   67.748437][ T5684] team_slave_1: entered promiscuous mode
[   67.755403][ T5683] team0: left promiscuous mode
[   67.760310][ T5683] team_slave_0: left promiscuous mode
[   67.766019][ T5683] team_slave_1: left promiscuous mode
[   67.889668][ T5700] loop0: detected capacity change from 0 to 2048
[   67.903475][ T5707] loop3: detected capacity change from 0 to 512
[   67.912915][ T5707] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.926083][ T5707] ext4 filesystem being mounted at /218/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.937249][ T5700]  loop0: p3 < > p4 < >
[   67.941459][ T5700] loop0: partition table partially beyond EOD, truncated
[   67.951739][   T29] kauditd_printk_skb: 696 callbacks suppressed
[   67.951798][   T29] audit: type=1326 audit(1746511460.051:4402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   67.952443][ T5700] loop0: p3 start 4284289 is beyond EOD, 
[   67.958049][   T29] audit: type=1326 audit(1746511460.051:4403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   67.981616][ T5700] truncated
[   67.987462][   T29] audit: type=1326 audit(1746511460.051:4404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.037888][   T29] audit: type=1326 audit(1746511460.051:4405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.061225][   T29] audit: type=1326 audit(1746511460.051:4406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.084693][   T29] audit: type=1326 audit(1746511460.051:4407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.108054][   T29] audit: type=1326 audit(1746511460.051:4408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.131945][   T29] audit: type=1326 audit(1746511460.051:4409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.155213][   T29] audit: type=1326 audit(1746511460.051:4410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.178712][   T29] audit: type=1326 audit(1746511460.051:4411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5709 comm="syz.2.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   68.220183][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.278545][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.308115][ T5724] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   68.345613][ T5730] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   68.447711][ T5739] loop3: detected capacity change from 0 to 2048
[   68.486392][ T5739]  loop3: p3 < > p4 < >
[   68.490586][ T5739] loop3: partition table partially beyond EOD, truncated
[   68.508937][ T5739] loop3: p3 start 4284289 is beyond EOD, truncated
[   68.626000][ T5762] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   68.788832][ T5784] loop3: detected capacity change from 0 to 512
[   68.798595][ T5784] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.811459][ T5784] ext4 filesystem being mounted at /223/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.878466][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.929748][ T5796] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   68.997077][ T5797] loop0: detected capacity change from 0 to 2048
[   69.026218][ T5797]  loop0: p3 < > p4 < >
[   69.030483][ T5797] loop0: partition table partially beyond EOD, truncated
[   69.039470][ T5797] loop0: p3 start 4284289 is beyond EOD, truncated
[   69.060135][ T5818] loop3: detected capacity change from 0 to 512
[   69.067200][ T5818] EXT4-fs (loop3): Invalid log cluster size: 2560
[   69.195659][ T5826] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   69.225033][ T5831] loop1: detected capacity change from 0 to 128
[   69.233155][ T5831] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.247233][ T5831] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   69.285420][ T5838] loop2: detected capacity change from 0 to 256
[   69.322426][ T5844] loop2: detected capacity change from 0 to 128
[   69.330275][ T5844] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.342678][ T5844] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   69.384137][ T2585] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   69.429049][ T5853] loop2: detected capacity change from 0 to 2048
[   69.476083][ T5853]  loop2: p3 < > p4 < >
[   69.480402][ T5853] loop2: partition table partially beyond EOD, truncated
[   69.487537][ T5853] loop2: p3 start 4284289 is beyond EOD, truncated
[   69.619646][ T5861] loop2: detected capacity change from 0 to 128
[   69.626460][ T5861] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.638418][ T5861] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.056965][ T5882] __nla_validate_parse: 5 callbacks suppressed
[   70.056982][ T5882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.938'.
[   70.343001][ T5923] loop0: detected capacity change from 0 to 128
[   70.349807][ T5923] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   70.362124][ T5923] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   70.404855][  T270] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.033734][ T5955] loop3: detected capacity change from 0 to 128
[   71.040669][ T5955] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.052982][ T5955] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.125893][ T2585] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.174794][ T5963] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   71.323078][ T5980] loop2: detected capacity change from 0 to 2048
[   71.388465][ T5980]  loop2: p3 < > p4 < >
[   71.392678][ T5980] loop2: partition table partially beyond EOD, truncated
[   71.401170][ T5980] loop2: p3 start 4284289 is beyond EOD, truncated
[   71.437386][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.0.981'.
[   71.476407][ T5990] netlink: 12 bytes leftover after parsing attributes in process `syz.0.981'.
[   71.500297][ T5992] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   71.602534][ T6005] netlink: 8 bytes leftover after parsing attributes in process `syz.3.985'.
[   71.717266][ T6019] loop2: detected capacity change from 0 to 128
[   71.724121][ T6019] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.728134][ T6021] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   71.745141][ T6019] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.777536][ T2585] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.799529][ T6030] netlink: 4 bytes leftover after parsing attributes in process `syz.2.997'.
[   71.799739][ T6030] netlink: 12 bytes leftover after parsing attributes in process `syz.2.997'.
[   71.842974][ T6028] loop0: detected capacity change from 0 to 2048
[   71.874690][ T6034] loop3: detected capacity change from 0 to 128
[   71.881527][ T6034] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.893714][ T6028]  loop0: p3 < > p4 < >
[   71.893821][ T6034] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.897961][ T6028] loop0: partition table partially beyond EOD, truncated
[   71.898523][ T6028] loop0: p3 start 4284289 is beyond EOD, truncated
[   72.113442][ T6066] loop2: detected capacity change from 0 to 512
[   72.125990][ T6069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1012'.
[   72.127420][ T6066] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.135296][ T6069] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1012'.
[   72.147927][ T6066] ext4 filesystem being mounted at /159/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.236972][ T6074] loop3: detected capacity change from 0 to 2048
[   72.253174][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.273707][ T6074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.357729][ T6092] loop2: detected capacity change from 0 to 128
[   72.364925][ T6092] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   72.379858][ T6092] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.425428][  T270] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   72.493871][ T6096] loop2: detected capacity change from 0 to 2048
[   72.584335][ T6098] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6098 comm=syz.4.1021
[   72.597930][ T6096]  loop2: p3 < > p4 < >
[   72.602166][ T6096] loop2: partition table partially beyond EOD, truncated
[   72.615986][ T6096] loop2: p3 start 4284289 is beyond EOD, truncated
[   72.713586][ T6102] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1022'.
[   72.938218][ T6110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1025'.
[   73.097850][   T29] kauditd_printk_skb: 345 callbacks suppressed
[   73.097865][   T29] audit: type=1400 audit(1746511465.201:4757): avc:  denied  { create } for  pid=6115 comm="syz.4.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   73.141992][   T29] audit: type=1400 audit(1746511465.201:4758): avc:  denied  { write } for  pid=6115 comm="syz.4.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   73.172710][   T29] audit: type=1400 audit(1746511465.241:4759): avc:  denied  { read write } for  pid=3313 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   73.197160][   T29] audit: type=1400 audit(1746511465.241:4760): avc:  denied  { open } for  pid=3313 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   73.221392][   T29] audit: type=1400 audit(1746511465.241:4761): avc:  denied  { ioctl } for  pid=3313 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   73.247456][   T29] audit: type=1400 audit(1746511465.271:4762): avc:  denied  { map_create } for  pid=6119 comm="syz.4.1030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   73.250483][ T6120] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   73.266811][   T29] audit: type=1400 audit(1746511465.271:4763): avc:  denied  { bpf } for  pid=6119 comm="syz.4.1030" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   73.295165][   T29] audit: type=1400 audit(1746511465.271:4764): avc:  denied  { map_read map_write } for  pid=6119 comm="syz.4.1030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   73.315260][   T29] audit: type=1400 audit(1746511465.301:4765): avc:  denied  { prog_load } for  pid=6119 comm="syz.4.1030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   73.334435][   T29] audit: type=1400 audit(1746511465.301:4766): avc:  denied  { perfmon } for  pid=6119 comm="syz.4.1030" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   73.371285][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.385450][ T6125] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6125 comm=syz.0.1032
[   73.420153][ T6128] loop3: detected capacity change from 0 to 128
[   73.427052][ T6128] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.439507][ T6128] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   73.466603][   T52] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   73.489770][ T6130] loop0: detected capacity change from 0 to 2048
[   73.536012][ T6130]  loop0: p3 < > p4 < >
[   73.540264][ T6130] loop0: partition table partially beyond EOD, truncated
[   73.547428][ T6130] loop0: p3 start 4284289 is beyond EOD, truncated
[   73.652877][ T6136] loop3: detected capacity change from 0 to 512
[   73.670539][ T6136] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.687680][ T6136] EXT4-fs (loop3): 1 truncate cleaned up
[   73.694839][ T6136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.740082][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.770124][ T6148] loop0: detected capacity change from 0 to 256
[   73.781145][ T6151] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   73.801358][ T6154] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6154 comm=syz.0.1044
[   73.840255][ T6159] loop3: detected capacity change from 0 to 128
[   73.847381][ T6159] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.859625][ T6159] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   73.901572][ T6161] loop0: detected capacity change from 0 to 2048
[   73.936668][ T6161]  loop0: p3 < > p4 < >
[   73.940926][ T6161] loop0: partition table partially beyond EOD, truncated
[   73.948239][ T6161] loop0: p3 start 4284289 is beyond EOD, truncated
[   74.115129][ T6177] loop0: detected capacity change from 0 to 256
[   74.168914][ T6181] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   74.267604][ T6191] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[   74.274172][ T6191] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   74.281955][ T6191] vhci_hcd vhci_hcd.0: Device attached
[   74.288439][ T6192] vhci_hcd: connection closed
[   74.288729][   T12] vhci_hcd: stop threads
[   74.297871][   T12] vhci_hcd: release socket
[   74.302297][   T12] vhci_hcd: disconnect device
[   74.346497][ T6197] loop0: detected capacity change from 0 to 2048
[   74.377254][ T6197]  loop0: p3 < > p4 < >
[   74.381456][ T6197] loop0: partition table partially beyond EOD, truncated
[   74.389742][ T6197] loop0: p3 start 4284289 is beyond EOD, truncated
[   74.406377][ T6205] loop1: detected capacity change from 0 to 256
[   74.441659][ T6207] loop1: detected capacity change from 0 to 512
[   74.448639][ T6207] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.461656][ T6207] EXT4-fs (loop1): 1 truncate cleaned up
[   74.467990][ T6207] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.517400][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.633161][ T6216] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   74.639782][ T6216] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   74.647609][ T6216] vhci_hcd vhci_hcd.0: Device attached
[   74.654212][ T6217] vhci_hcd: connection closed
[   74.654418][   T51] vhci_hcd: stop threads
[   74.663552][   T51] vhci_hcd: release socket
[   74.668011][   T51] vhci_hcd: disconnect device
[   74.690502][ T6220] loop1: detected capacity change from 0 to 128
[   74.697402][ T6220] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   74.710243][ T6220] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   74.929387][ T6236] loop3: detected capacity change from 0 to 2048
[   74.986723][ T6236]  loop3: p3 < > p4 < >
[   74.990939][ T6236] loop3: partition table partially beyond EOD, truncated
[   75.006032][ T6236] loop3: p3 start 4284289 is beyond EOD, truncated
[   75.067799][ T6246] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   75.097810][ T6250] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   75.104436][ T6250] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   75.112172][ T6250] vhci_hcd vhci_hcd.0: Device attached
[   75.118653][ T6251] vhci_hcd: connection closed
[   75.119409][   T12] vhci_hcd: stop threads
[   75.128466][   T12] vhci_hcd: release socket
[   75.132958][   T12] vhci_hcd: disconnect device
[   75.207679][ T6261] loop3: detected capacity change from 0 to 128
[   75.214507][ T6261] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   75.226751][ T6261] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.249881][   T52] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.311113][ T6273] loop3: detected capacity change from 0 to 128
[   75.318416][ T6273] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   75.328575][ T6275] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   75.330761][ T6273] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.402109][ T6278] loop2: detected capacity change from 0 to 2048
[   75.426290][ T6278]  loop2: p3 < > p4 < >
[   75.428512][ T6286] loop3: detected capacity change from 0 to 128
[   75.430493][ T6278] loop2: partition table partially beyond EOD, truncated
[   75.439815][ T6286] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   75.444065][ T6278] loop2: p3 start 4284289 is beyond EOD, truncated
[   75.456568][ T6286] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.489615][   T52] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   75.714094][ T6302] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   75.754538][ T6307] loop2: detected capacity change from 0 to 512
[   75.765083][ T6307] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.821849][ T6307] ext4 filesystem being mounted at /175/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.033197][ T6307] __nla_validate_parse: 4 callbacks suppressed
[   76.033212][ T6307] netlink: 200 bytes leftover after parsing attributes in process `+}[@'.
[   76.131191][ T6320] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6320 comm=syz.4.1111
[   76.241001][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.668149][ T6331] loop4: detected capacity change from 0 to 2048
[   76.706223][ T6331]  loop4: p3 < > p4 < >
[   76.710486][ T6331] loop4: partition table partially beyond EOD, truncated
[   76.730466][ T6331] loop4: p3 start 4284289 is beyond EOD, truncated
[   77.064106][ T6363] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1128'.
[   77.102974][ T6363] bridge0: entered promiscuous mode
[   77.148964][ T6370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1131'.
[   77.346837][ T6375] loop4: detected capacity change from 0 to 2048
[   77.379376][ T6375] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.392932][ T6375] ext4 filesystem being mounted at /247/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.435512][ T6375] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #16: comm syz.4.1133: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   77.453305][ T6381] loop3: detected capacity change from 0 to 2048
[   77.468169][ T6381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.468340][ T6375] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1133: path /247/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   77.480463][ T6381] ext4 filesystem being mounted at /275/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.538914][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.547469][ T6381] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #16: comm syz.3.1135: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   77.572206][ T6381] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz.3.1135: path /275/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   77.625124][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.775538][ T6408] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1146'.
[   77.787075][ T6408] ipvlan2: entered promiscuous mode
[   77.937184][ T6420] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1151'.
[   77.949446][ T6420] bridge0: entered promiscuous mode
[   77.957127][ T6420] bridge0: port 3(macvlan2) entered blocking state
[   77.963762][ T6420] bridge0: port 3(macvlan2) entered disabled state
[   77.970526][ T6420] macvlan2: entered allmulticast mode
[   77.976073][ T6420] bridge0: entered allmulticast mode
[   77.982022][ T6420] macvlan2: left allmulticast mode
[   77.987216][ T6420] bridge0: left allmulticast mode
[   77.992762][ T6420] bridge0: left promiscuous mode
[   78.050664][ T6425] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1152'.
[   78.064171][ T6425] loop0: detected capacity change from 0 to 512
[   78.065179][ T6428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1154'.
[   78.071369][ T6425] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   78.082930][ T6428] bridge0: entered promiscuous mode
[   78.092885][ T6425] EXT4-fs (loop0): 1 truncate cleaned up
[   78.102262][ T6425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.118434][   T29] kauditd_printk_skb: 346 callbacks suppressed
[   78.118453][   T29] audit: type=1400 audit(1746511470.221:5113): avc:  denied  { write } for  pid=6423 comm="syz.0.1152" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   78.146558][   T29] audit: type=1400 audit(1746511470.221:5114): avc:  denied  { remove_name } for  pid=6423 comm="syz.0.1152" name="file2" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   78.169372][   T29] audit: type=1400 audit(1746511470.221:5115): avc:  denied  { rename } for  pid=6423 comm="syz.0.1152" name="file2" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   78.191916][   T29] audit: type=1400 audit(1746511470.221:5116): avc:  denied  { add_name } for  pid=6423 comm="syz.0.1152" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   78.214555][   T29] audit: type=1400 audit(1746511470.221:5117): avc:  denied  { unlink } for  pid=6423 comm="syz.0.1152" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   78.237309][   T29] audit: type=1326 audit(1746511470.271:5118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6433 comm="syz.2.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   78.261019][   T29] audit: type=1326 audit(1746511470.271:5119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6433 comm="syz.2.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   78.284554][   T29] audit: type=1326 audit(1746511470.271:5120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6433 comm="syz.2.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   78.308158][   T29] audit: type=1326 audit(1746511470.271:5121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6433 comm="syz.2.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   78.331861][   T29] audit: type=1326 audit(1746511470.271:5122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6433 comm="syz.2.1156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd7ef9e969 code=0x7ffc0000
[   78.341371][ T6436] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6436 comm=syz.2.1157
[   78.398027][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.416670][ T6440] loop0: detected capacity change from 0 to 512
[   78.425432][ T6440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.438494][ T6440] ext4 filesystem being mounted at /227/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.452631][ T6440] netlink: '+}[@': attribute type 32 has an invalid length.
[   78.506548][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.567306][ T6450] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1163'.
[   78.596528][ T6455] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1165'.
[   78.605496][ T6455] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1165'.
[   78.690012][ T6464] loop4: detected capacity change from 0 to 512
[   78.696955][ T6464] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   78.701350][ T6466] capability: warning: `syz.0.1170' uses deprecated v2 capabilities in a way that may be insecure
[   78.712301][ T6464] EXT4-fs (loop4): 1 truncate cleaned up
[   78.723912][ T6464] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.796118][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.837016][ T6482] loop4: detected capacity change from 0 to 128
[   78.843655][ T6482] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   78.856095][ T6482] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   78.886115][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.893575][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.901106][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.908565][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.916098][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.923488][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.930933][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.938447][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.945879][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.953328][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.960756][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.968211][ T3380] hid-generic 0021:000C:0000.0001: unknown main item tag 0x0
[   78.986998][ T3380] hid-generic 0021:000C:0000.0001: hidraw0: <UNKNOWN> HID v0.07 Device [syz0] on syz1
[   79.047498][ T6494] loop1: detected capacity change from 0 to 128
[   79.054773][ T6494] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   79.068105][ T6494] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.094193][  T270] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.114669][ T6501] loop0: detected capacity change from 0 to 512
[   79.123520][ T6501] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   79.144188][ T6501] EXT4-fs (loop0): 1 truncate cleaned up
[   79.161842][ T6501] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.248597][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.348390][ T6524] netlink: 'syz.1.1195': attribute type 10 has an invalid length.
[   79.358881][ T6524] batman_adv: batadv0: Adding interface: team0
[   79.365153][ T6524] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.390463][ T6524] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   79.410386][ T6524] netlink: 'syz.1.1195': attribute type 10 has an invalid length.
[   79.418600][ T6524] team0: entered promiscuous mode
[   79.423679][ T6524] team_slave_0: entered promiscuous mode
[   79.429640][ T6524] team_slave_1: entered promiscuous mode
[   79.437910][ T6524] 8021q: adding VLAN 0 to HW filter on device team0
[   79.449272][ T6524] batman_adv: batadv0: Interface activated: team0
[   79.455816][ T6524] batman_adv: batadv0: Interface deactivated: team0
[   79.462643][ T6524] batman_adv: batadv0: Removing interface: team0
[   79.470140][ T6524] bridge0: port 3(team0) entered blocking state
[   79.470323][ T6529] loop4: detected capacity change from 0 to 128
[   79.476495][ T6524] bridge0: port 3(team0) entered disabled state
[   79.483621][ T6529] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   79.490514][ T6524] team0: entered allmulticast mode
[   79.501511][ T6529] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.506165][ T6524] team_slave_0: entered allmulticast mode
[   79.521035][ T6524] team_slave_1: entered allmulticast mode
[   79.528725][ T6524] bridge0: port 3(team0) entered blocking state
[   79.535069][ T6524] bridge0: port 3(team0) entered forwarding state
[   79.565850][   T12] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   79.587185][ T6535] loop4: detected capacity change from 0 to 512
[   79.600465][ T6533] loop2: detected capacity change from 0 to 512
[   79.609540][ T6535] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.622450][ T6533] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   79.633432][ T6535] ext4 filesystem being mounted at /264/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.644949][ T6533] EXT4-fs (loop2): 1 truncate cleaned up
[   79.651176][ T6533] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.717570][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.744840][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.798969][ T6548] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[   79.805519][ T6548] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   79.813206][ T6548] vhci_hcd vhci_hcd.0: Device attached
[   79.823324][ T6550] vhci_hcd: connection closed
[   79.823545][  T270] vhci_hcd: stop threads
[   79.832683][  T270] vhci_hcd: release socket
[   79.837173][  T270] vhci_hcd: disconnect device
[   79.847483][ T6553] bridge0: port 3(macvlan3) entered blocking state
[   79.854176][ T6553] bridge0: port 3(macvlan3) entered disabled state
[   79.863644][ T6553] macvlan3: entered allmulticast mode
[   79.869097][ T6553] bridge0: entered allmulticast mode
[   79.875191][ T6553] macvlan3: left allmulticast mode
[   79.880443][ T6553] bridge0: left allmulticast mode
[   79.934770][ T6560] bridge0: entered promiscuous mode
[   79.941451][ T6560] bridge0: port 4(macvlan2) entered blocking state
[   79.948224][ T6560] bridge0: port 4(macvlan2) entered disabled state
[   79.955020][ T6560] macvlan2: entered allmulticast mode
[   79.960545][ T6560] bridge0: entered allmulticast mode
[   79.966950][ T6560] macvlan2: left allmulticast mode
[   79.972141][ T6560] bridge0: left allmulticast mode
[   79.977521][ T6560] bridge0: left promiscuous mode
[   80.057159][ T6568] loop2: detected capacity change from 0 to 512
[   80.066308][ T6568] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   80.086680][ T6568] EXT4-fs (loop2): 1 truncate cleaned up
[   80.097275][ T6574] ipvlan2: entered promiscuous mode
[   80.127146][ T6568] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.190907][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.337133][ T6604] loop1: detected capacity change from 0 to 512
[   80.343962][ T6604] EXT4-fs: Ignoring removed orlov option
[   80.351040][ T6604] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.403014][ T6604] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   80.418488][ T6604] EXT4-fs (loop1): orphan cleanup on readonly fs
[   80.425392][ T6604] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   80.443350][ T6604] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   80.450954][ T6604] EXT4-fs (loop1): 1 truncate cleaned up
[   80.458184][ T6604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.464518][ T6616] ipvlan2: entered promiscuous mode
[   80.491691][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.505530][ T6618] bridge0: port 3(macvlan3) entered blocking state
[   80.512288][ T6618] bridge0: port 3(macvlan3) entered disabled state
[   80.524657][ T6618] macvlan3: entered allmulticast mode
[   80.530219][ T6618] bridge0: entered allmulticast mode
[   80.536478][ T6618] macvlan3: left allmulticast mode
[   80.541640][ T6618] bridge0: left allmulticast mode
[   80.674264][ T6634] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   80.680829][ T6634] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   80.688453][ T6634] vhci_hcd vhci_hcd.0: Device attached
[   80.696146][ T6635] vhci_hcd: connection closed
[   80.696512][   T12] vhci_hcd: stop threads
[   80.705547][   T12] vhci_hcd: release socket
[   80.710026][   T12] vhci_hcd: disconnect device
[   80.738944][ T6641] netlink: zone id is out of range
[   80.778903][ T6644] loop3: detected capacity change from 0 to 1024
[   80.785994][ T6644] EXT4-fs: Ignoring removed orlov option
[   80.803866][ T6644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.837359][ T6650] loop0: detected capacity change from 0 to 2048
[   80.857520][ T6650] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.871857][ T6650] FAULT_INJECTION: forcing a failure.
[   80.871857][ T6650] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   80.885497][ T6650] CPU: 1 UID: 0 PID: 6650 Comm: syz.0.1246 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   80.885532][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   80.885547][ T6650] Call Trace:
[   80.885554][ T6650]  <TASK>
[   80.885561][ T6650]  __dump_stack+0x1d/0x30
[   80.885582][ T6650]  dump_stack_lvl+0xe8/0x140
[   80.885682][ T6650]  dump_stack+0x15/0x1b
[   80.885708][ T6650]  should_fail_ex+0x265/0x280
[   80.885746][ T6650]  should_fail_alloc_page+0xf2/0x100
[   80.885848][ T6650]  alloc_pages_bulk_noprof+0xef/0x540
[   80.885947][ T6650]  copy_splice_read+0xf3/0x5f0
[   80.886006][ T6650]  ? __pfx_ext4_file_splice_read+0x10/0x10
[   80.886033][ T6650]  splice_direct_to_actor+0x290/0x680
[   80.886076][ T6650]  ? __pfx_direct_splice_actor+0x10/0x10
[   80.886129][ T6650]  do_splice_direct+0xda/0x150
[   80.886147][ T6650]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   80.886172][ T6650]  do_sendfile+0x380/0x640
[   80.886204][ T6650]  __x64_sys_sendfile64+0x105/0x150
[   80.886330][ T6650]  x64_sys_call+0xb39/0x2fb0
[   80.886348][ T6650]  do_syscall_64+0xd0/0x1a0
[   80.886367][ T6650]  ? clear_bhb_loop+0x25/0x80
[   80.886385][ T6650]  ? clear_bhb_loop+0x25/0x80
[   80.886403][ T6650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.886468][ T6650] RIP: 0033:0x7f392a37e969
[   80.886481][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.886496][ T6650] RSP: 002b:00007f39289e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   80.886519][ T6650] RAX: ffffffffffffffda RBX: 00007f392a5a5fa0 RCX: 00007f392a37e969
[   80.886535][ T6650] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[   80.886551][ T6650] RBP: 00007f39289e7090 R08: 0000000000000000 R09: 0000000000000000
[   80.886611][ T6650] R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000001
[   80.886622][ T6650] R13: 0000000000000000 R14: 00007f392a5a5fa0 R15: 00007fff02848388
[   80.886640][ T6650]  </TASK>
[   80.889768][ T6653] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1244: bg 0: block 88: padding at end of block bitmap is not set
[   81.101716][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.126630][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.138152][   T10] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   81.145636][   T10] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   81.153132][   T10] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0
[   81.163343][   T10] hid-generic 0000:0004:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   81.250828][ T6671] __nla_validate_parse: 23 callbacks suppressed
[   81.250847][ T6671] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1254'.
[   81.335445][ T6674] loop1: detected capacity change from 0 to 2048
[   81.380828][ T6678] SELinux:  policydb version -238722711 does not match my version range 15-34
[   81.389934][ T6678] SELinux: failed to load policy
[   81.396350][ T6674]  loop1: p1 < > p4
[   81.398852][ T6678] vlan2: entered allmulticast mode
[   81.401311][ T6674] loop1: p4 size 8388608 extends beyond EOD, truncated
[   81.466605][ T6684] FAULT_INJECTION: forcing a failure.
[   81.466605][ T6684] name failslab, interval 1, probability 0, space 0, times 0
[   81.479557][ T6684] CPU: 1 UID: 0 PID: 6684 Comm: syz.1.1260 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   81.479607][ T6684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   81.479619][ T6684] Call Trace:
[   81.479624][ T6684]  <TASK>
[   81.479643][ T6684]  __dump_stack+0x1d/0x30
[   81.479666][ T6684]  dump_stack_lvl+0xe8/0x140
[   81.479689][ T6684]  dump_stack+0x15/0x1b
[   81.479735][ T6684]  should_fail_ex+0x265/0x280
[   81.479776][ T6684]  should_failslab+0x8c/0xb0
[   81.479862][ T6684]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   81.479889][ T6684]  ? sidtab_sid2str_get+0xa0/0x130
[   81.479943][ T6684]  kmemdup_noprof+0x2b/0x70
[   81.479981][ T6684]  sidtab_sid2str_get+0xa0/0x130
[   81.480008][ T6684]  security_sid_to_context_core+0x1eb/0x2e0
[   81.480058][ T6684]  security_sid_to_context+0x27/0x40
[   81.480154][ T6684]  selinux_lsmprop_to_secctx+0x67/0xf0
[   81.480186][ T6684]  security_lsmprop_to_secctx+0x43/0x80
[   81.480212][ T6684]  audit_log_task_context+0x77/0x190
[   81.480296][ T6684]  audit_log_task+0xf4/0x250
[   81.480329][ T6684]  audit_seccomp+0x61/0x100
[   81.480354][ T6684]  ? __seccomp_filter+0x68c/0x10d0
[   81.480408][ T6684]  __seccomp_filter+0x69d/0x10d0
[   81.480435][ T6684]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   81.480464][ T6684]  ? vfs_write+0x75e/0x8d0
[   81.480486][ T6684]  ? __rcu_read_unlock+0x4f/0x70
[   81.480570][ T6684]  ? __fget_files+0x184/0x1c0
[   81.480649][ T6684]  __secure_computing+0x82/0x150
[   81.480670][ T6684]  syscall_trace_enter+0xcf/0x1e0
[   81.480695][ T6684]  do_syscall_64+0xaa/0x1a0
[   81.480760][ T6684]  ? clear_bhb_loop+0x25/0x80
[   81.480794][ T6684]  ? clear_bhb_loop+0x25/0x80
[   81.480821][ T6684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.480847][ T6684] RIP: 0033:0x7f9fe8c0e969
[   81.480866][ T6684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.480887][ T6684] RSP: 002b:00007f9fe7277038 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[   81.480910][ T6684] RAX: ffffffffffffffda RBX: 00007f9fe8e35fa0 RCX: 00007f9fe8c0e969
[   81.480978][ T6684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   81.481061][ T6684] RBP: 00007f9fe7277090 R08: 0000000000000000 R09: 0000000000000000
[   81.481076][ T6684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.481091][ T6684] R13: 0000000000000000 R14: 00007f9fe8e35fa0 R15: 00007fffdf413938
[   81.481115][ T6684]  </TASK>
[   81.897286][ T6707] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   81.925542][ T6712] loop2: detected capacity change from 0 to 128
[   81.925527][ T6711] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6711 comm=syz.1.1273
[   81.932508][ T6712] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   81.969194][ T6712] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   82.092305][ T6728] loop3: detected capacity change from 0 to 1024
[   82.099057][ T6728] journal_path: Non-blockdev passed as './file0'
[   82.105470][ T6728] EXT4-fs: error: could not find journal device path
[   82.140497][ T6733] loop0: detected capacity change from 0 to 2048
[   82.172719][ T6728] netem: change failed
[   82.173118][ T6733] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.247077][ T6740] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   82.254079][ T6740] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   82.261927][ T6740] vhci_hcd vhci_hcd.0: Device attached
[   82.331999][ T6743] vhci_hcd: connection closed
[   82.335732][  T270] vhci_hcd: stop threads
[   82.344718][  T270] vhci_hcd: release socket
[   82.349216][  T270] vhci_hcd: disconnect device
[   82.360440][ T6747] loop2: detected capacity change from 0 to 2048
[   82.408814][ T6747] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.421469][ T6747] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.457639][ T6747] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #16: comm syz.2.1287: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   82.538516][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.633186][ T6770] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1297'.
[   82.664310][ T6772] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6772 comm=syz.4.1298
[   82.981592][ T6794] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1308'.
[   82.993080][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.011465][ T6796] loop4: detected capacity change from 0 to 128
[   83.018712][ T6796] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   83.034015][ T6796] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.062266][ T6800] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=6800 comm=syz.0.1309
[   83.116432][ T6802] loop0: detected capacity change from 0 to 2048
[   83.149114][ T6802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.235324][   T29] kauditd_printk_skb: 426 callbacks suppressed
[   83.235342][   T29] audit: type=1400 audit(1746511475.331:5547): avc:  denied  { prog_load } for  pid=6801 comm="syz.0.1312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   83.261359][ T6824] loop1: detected capacity change from 0 to 1024
[   83.272495][   T29] audit: type=1400 audit(1746511475.331:5548): avc:  denied  { map_create } for  pid=6820 comm="syz.1.1320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   83.272522][   T29] audit: type=1400 audit(1746511475.331:5549): avc:  denied  { bpf } for  pid=6801 comm="syz.0.1312" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   83.279296][ T6824] journal_path: Non-blockdev passed as './file0'
[   83.298032][   T29] audit: type=1400 audit(1746511475.331:5550): avc:  denied  { perfmon } for  pid=6801 comm="syz.0.1312" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   83.346126][ T6824] EXT4-fs: error: could not find journal device path
[   83.368425][   T29] audit: type=1400 audit(1746511475.331:5551): avc:  denied  { bpf } for  pid=6820 comm="syz.1.1320" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   83.389375][   T29] audit: type=1400 audit(1746511475.331:5552): avc:  denied  { perfmon } for  pid=6820 comm="syz.1.1320" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   83.400903][ T6826] loop4: detected capacity change from 0 to 2048
[   83.410383][   T29] audit: type=1400 audit(1746511475.351:5553): avc:  denied  { read write } for  pid=3302 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   83.441052][   T29] audit: type=1400 audit(1746511475.351:5554): avc:  denied  { open } for  pid=3302 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   83.465430][   T29] audit: type=1400 audit(1746511475.351:5555): avc:  denied  { ioctl } for  pid=3302 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   83.491022][   T29] audit: type=1400 audit(1746511475.381:5556): avc:  denied  { mounton } for  pid=6823 comm="syz.1.1321" path="/249/file0" dev="tmpfs" ino=1317 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   83.625663][ T6826] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.705959][ T6826] ext4 filesystem being mounted at /293/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   83.818983][ T6848] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   83.825580][ T6848] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   83.833247][ T6848] vhci_hcd vhci_hcd.0: Device attached
[   83.851819][ T6826] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1323: path /293/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   83.876294][ T6849] vhci_hcd: connection closed
[   83.879297][   T52] vhci_hcd: stop threads
[   83.888329][   T52] vhci_hcd: release socket
[   83.892791][   T52] vhci_hcd: disconnect device
[   83.903164][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1333'.
[   83.915337][ T6852] ipvlan2: entered promiscuous mode
[   83.954204][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.000226][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.081163][ T6870] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1335'.
[   84.099868][ T6872] loop0: detected capacity change from 0 to 256
[   84.115192][ T6872] bio_check_eod: 102 callbacks suppressed
[   84.115209][ T6872] syz.0.1340: attempt to access beyond end of device
[   84.115209][ T6872] loop0: rw=2049, sector=256, nr_sectors = 4 limit=256
[   84.204189][ T6880] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1344'.
[   84.211615][ T6882] loop0: detected capacity change from 0 to 1024
[   84.213245][ T6880] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1344'.
[   84.219974][ T6882] journal_path: Non-blockdev passed as './file0'
[   84.234924][ T6882] EXT4-fs: error: could not find journal device path
[   84.330139][ T6890] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1349'.
[   84.343813][ T6890] loop4: detected capacity change from 0 to 512
[   84.351147][ T6890] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   84.385445][ T6890] EXT4-fs (loop4): 1 truncate cleaned up
[   84.404287][ T6890] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.472443][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.568160][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1366'.
[   84.574586][ T6932] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1365'.
[   84.593619][ T6932] bridge0: port 3(macvlan3) entered blocking state
[   84.600302][ T6932] bridge0: port 3(macvlan3) entered disabled state
[   84.607126][ T6932] macvlan3: entered allmulticast mode
[   84.612812][ T6932] bridge0: entered allmulticast mode
[   84.619297][ T6932] macvlan3: left allmulticast mode
[   84.624478][ T6932] bridge0: left allmulticast mode
[   84.806899][ T6979] loop4: detected capacity change from 0 to 2048
[   84.847881][ T6979] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.873766][ T6979] ext4 filesystem being mounted at /304/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.884750][ T6984] loop1: detected capacity change from 0 to 8192
[   84.895364][ T6964] syz.1.1381: attempt to access beyond end of device
[   84.895364][ T6964] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   84.917866][ T6979] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1384: path /304/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   84.925205][ T6964] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   84.947540][ T6964] FAT-fs (loop1): Filesystem has been set read-only
[   84.957178][ T6964] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   84.965507][ T6964] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   84.996175][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.025149][ T7004] loop4: detected capacity change from 0 to 2048
[   85.037692][ T7004] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.050298][ T7004] ext4 filesystem being mounted at /305/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.073006][ T7004] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1390: path /305/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   85.129909][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.287711][ T7027] loop4: detected capacity change from 0 to 2048
[   85.326062][ T7027]  loop4: p3 < > p4 < >
[   85.330442][ T7027] loop4: partition table partially beyond EOD, truncated
[   85.337706][ T7027] loop4: p3 start 4284289 is beyond EOD, truncated
[   85.626653][ T7049] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7049 comm=syz.4.1409
[   85.986353][ T7059] loop2: detected capacity change from 0 to 2048
[   86.016058][ T7059]  loop2: p3 < > p4 < >
[   86.020272][ T7059] loop2: partition table partially beyond EOD, truncated
[   86.027439][ T7059] loop2: p3 start 4284289 is beyond EOD, truncated
[   86.421964][ T7082] loop2: detected capacity change from 0 to 2048
[   86.466165][ T7082]  loop2: p3 < > p4 < >
[   86.470379][ T7082] loop2: partition table partially beyond EOD, truncated
[   86.477663][ T7082] loop2: p3 start 4284289 is beyond EOD, truncated
[   86.609086][ T7090] loop2: detected capacity change from 0 to 1024
[   86.610858][ T7092] __nla_validate_parse: 3 callbacks suppressed
[   86.610877][ T7092] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1428'.
[   86.615933][ T7090] journal_path: Non-blockdev passed as './file0'
[   86.637370][ T7090] EXT4-fs: error: could not find journal device path
[   86.693766][ T7097] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1429'.
[   86.779690][ T7109] bond0: entered promiscuous mode
[   86.784795][ T7109] bond_slave_0: entered promiscuous mode
[   86.790938][ T7109] bond_slave_1: entered promiscuous mode
[   86.837696][ T7114] loop2: detected capacity change from 0 to 2048
[   86.866599][ T7114]  loop2: p3 < > p4 < >
[   86.870826][ T7114] loop2: partition table partially beyond EOD, truncated
[   86.878105][ T7114] loop2: p3 start 4284289 is beyond EOD, truncated
[   86.989846][ T7123] loop1: detected capacity change from 0 to 2048
[   87.007331][ T7123] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.031060][ T7128] usb usb1: check_ctrlrecip: process 7128 (syz.2.1440) requesting ep 01 but needs 81
[   87.094423][ T7131] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1441'.
[   87.176424][ T7133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.184983][ T7133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.618279][ T7145] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1446'.
[   87.732225][ T7153] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7153 comm=syz.2.1450
[   87.773179][ T7157] loop4: detected capacity change from 0 to 1024
[   87.780363][ T7157] journal_path: Non-blockdev passed as './file0'
[   87.786809][ T7157] EXT4-fs: error: could not find journal device path
[   87.819705][ T7161] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1454'.
[   87.839471][ T7161] ipvlan2: entered promiscuous mode
[   87.853256][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.886689][ T7164] loop1: detected capacity change from 0 to 256
[   87.909974][ T7164] syz.1.1455: attempt to access beyond end of device
[   87.909974][ T7164] loop1: rw=2049, sector=256, nr_sectors = 4 limit=256
[   88.078584][ T7190] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7190 comm=syz.4.1464
[   88.098983][ T7189] loop0: detected capacity change from 0 to 2048
[   88.130093][ T7189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.144781][ T7189] ext4 filesystem being mounted at /275/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.162855][ T7189] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz.0.1465: path /275/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   88.214114][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.236376][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1471'.
[   88.245373][   T29] kauditd_printk_skb: 546 callbacks suppressed
[   88.245387][   T29] audit: type=1326 audit(1746511480.341:6103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.257329][ T7204] ipvlan2: entered promiscuous mode
[   88.275248][   T29] audit: type=1326 audit(1746511480.341:6104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.304222][   T29] audit: type=1326 audit(1746511480.341:6105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.314540][ T7208] loop0: detected capacity change from 0 to 128
[   88.327851][   T29] audit: type=1326 audit(1746511480.341:6106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.336940][ T7208] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   88.357545][   T29] audit: type=1326 audit(1746511480.341:6107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.371421][ T7208] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   88.392950][   T29] audit: type=1326 audit(1746511480.341:6108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.392986][   T29] audit: type=1326 audit(1746511480.341:6109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.393018][   T29] audit: type=1326 audit(1746511480.341:6110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.473162][   T29] audit: type=1326 audit(1746511480.341:6111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.496579][   T29] audit: type=1326 audit(1746511480.341:6112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.0.1470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f392a37e969 code=0x7ffc0000
[   88.639487][ T7222] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7222 comm=syz.3.1477
[   88.679818][ T7224] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1478'.
[   88.691590][ T7224] bridge0: entered promiscuous mode
[   88.698262][ T7224] bridge0: port 3(macvlan2) entered blocking state
[   88.704928][ T7224] bridge0: port 3(macvlan2) entered disabled state
[   88.711657][ T7224] macvlan2: entered allmulticast mode
[   88.717164][ T7224] bridge0: entered allmulticast mode
[   88.723156][ T7224] macvlan2: left allmulticast mode
[   88.728556][ T7224] bridge0: left allmulticast mode
[   88.734213][ T7224] bridge0: left promiscuous mode
[   88.797312][ T7230] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   88.807073][ T7230] SELinux: failed to load policy
[   88.941658][ T7246] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7246 comm=syz.3.1488
[   89.004928][ T7250] loop2: detected capacity change from 0 to 2048
[   89.028200][ T7250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.040881][ T7250] ext4 filesystem being mounted at /253/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.061826][ T7250] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 16: comm syz.2.1490: path /253/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   89.062803][ T7255] loop4: detected capacity change from 0 to 256
[   89.097669][ T7255] syz.4.1491: attempt to access beyond end of device
[   89.097669][ T7255] loop4: rw=2049, sector=256, nr_sectors = 4 limit=256
[   89.123834][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.177451][ T7265] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1496'.
[   89.190026][ T7265] loop4: detected capacity change from 0 to 512
[   89.198507][ T7265] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   89.205445][ T7269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1498'.
[   89.210393][ T7265] EXT4-fs (loop4): 1 truncate cleaned up
[   89.226238][ T7265] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.248772][ T7272] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7272 comm=syz.2.1499
[   89.274793][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.463521][ T7282] loop4: detected capacity change from 0 to 2048
[   89.487267][ T7282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.499986][ T7282] ext4 filesystem being mounted at /336/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.515184][ T7282] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1503: path /336/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   89.568379][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.593324][ T7296] program syz.0.1509 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   89.612637][ T7298] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1510'.
[   89.627009][ T7298] loop4: detected capacity change from 0 to 512
[   89.633783][ T7296] loop0: detected capacity change from 0 to 764
[   89.634394][ T7298] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   89.652656][ T7298] EXT4-fs (loop4): 1 truncate cleaned up
[   89.660308][ T7303] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=15975 sclass=netlink_audit_socket pid=7303 comm=syz.0.1511
[   89.863024][ T7320] loop3: detected capacity change from 0 to 2048
[   89.888170][ T7320] ext4 filesystem being mounted at /342/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.899268][ T7328] FAULT_INJECTION: forcing a failure.
[   89.899268][ T7328] name failslab, interval 1, probability 0, space 0, times 0
[   89.912518][ T7328] CPU: 1 UID: 0 PID: 7328 Comm: syz.0.1522 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   89.912571][ T7328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   89.912588][ T7328] Call Trace:
[   89.912595][ T7328]  <TASK>
[   89.912604][ T7328]  __dump_stack+0x1d/0x30
[   89.912629][ T7328]  dump_stack_lvl+0xe8/0x140
[   89.912649][ T7328]  dump_stack+0x15/0x1b
[   89.912703][ T7328]  should_fail_ex+0x265/0x280
[   89.912958][ T7328]  should_failslab+0x8c/0xb0
[   89.913011][ T7328]  __kmalloc_noprof+0xa5/0x3e0
[   89.913031][ T7328]  ? sel_write_relabel+0x18c/0x360
[   89.913052][ T7328]  sel_write_relabel+0x18c/0x360
[   89.913075][ T7328]  selinux_transaction_write+0xc3/0x110
[   89.913108][ T7328]  ? __pfx_selinux_transaction_write+0x10/0x10
[   89.913202][ T7328]  vfs_write+0x266/0x8d0
[   89.913228][ T7328]  ? __rcu_read_unlock+0x4f/0x70
[   89.913250][ T7328]  ? __fget_files+0x184/0x1c0
[   89.913317][ T7328]  ksys_write+0xda/0x1a0
[   89.913342][ T7328]  __x64_sys_write+0x40/0x50
[   89.913443][ T7328]  x64_sys_call+0x2cdd/0x2fb0
[   89.913477][ T7328]  do_syscall_64+0xd0/0x1a0
[   89.913503][ T7328]  ? clear_bhb_loop+0x25/0x80
[   89.913529][ T7328]  ? clear_bhb_loop+0x25/0x80
[   89.913556][ T7328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.913642][ T7328] RIP: 0033:0x7f392a37e969
[   89.913661][ T7328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.913682][ T7328] RSP: 002b:00007f39289e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   89.913704][ T7328] RAX: ffffffffffffffda RBX: 00007f392a5a5fa0 RCX: 00007f392a37e969
[   89.913719][ T7328] RDX: 0000000000000056 RSI: 00002000000004c0 RDI: 0000000000000006
[   89.913780][ T7328] RBP: 00007f39289e7090 R08: 0000000000000000 R09: 0000000000000000
[   89.913792][ T7328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.913804][ T7328] R13: 0000000000000000 R14: 00007f392a5a5fa0 R15: 00007fff02848388
[   89.913823][ T7328]  </TASK>
[   90.140246][ T7320] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 16: comm syz.3.1519: path /342/bus: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[   90.172191][ T7331] loop0: detected capacity change from 0 to 512
[   90.181494][ T7331] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   90.193602][ T7331] EXT4-fs (loop0): 1 truncate cleaned up
[   90.398234][ T7356] pim6reg1: entered promiscuous mode
[   90.403635][ T7356] pim6reg1: entered allmulticast mode
[   90.539950][ T7364] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   90.546530][ T7364] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   90.554666][ T7364] vhci_hcd vhci_hcd.0: Device attached
[   90.562276][ T7365] vhci_hcd: connection closed
[   90.562342][  T270] vhci_hcd: stop threads
[   90.571551][  T270] vhci_hcd: release socket
[   90.576057][  T270] vhci_hcd: disconnect device
[   90.604910][ T7372] loop3: detected capacity change from 0 to 2048
[   90.617253][ T7372] ext4 filesystem being mounted at /350/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.641582][ T7372] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #16: comm syz.3.1541: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[   91.079629][ T7384] loop0: detected capacity change from 0 to 256
[   91.095331][ T7384] syz.0.1546: attempt to access beyond end of device
[   91.095331][ T7384] loop0: rw=2049, sector=256, nr_sectors = 4 limit=256
[   91.201776][ T7396] ipvlan2: entered promiscuous mode
[   91.347641][ T7412] loop4: detected capacity change from 0 to 256
[   91.361581][ T7412] syz.4.1559: attempt to access beyond end of device
[   91.361581][ T7412] loop4: rw=2049, sector=256, nr_sectors = 4 limit=256
[   91.402559][ T7414] loop4: detected capacity change from 0 to 256
[   91.409086][ T7417] ==================================================================
[   91.417636][ T7417] BUG: KCSAN: data-race in mas_state_walk / mas_wmb_replace
[   91.424955][ T7417] 
[   91.427285][ T7417] write to 0xffff8881047a8800 of 8 bytes by task 7415 on cpu 0:
[   91.434917][ T7417]  mas_wmb_replace+0x20e/0x14a0
[   91.439870][ T7417]  mas_wr_store_entry+0x17ae/0x2b60
[   91.445075][ T7417]  mas_store_prealloc+0x74d/0x9e0
[   91.450132][ T7417]  vma_iter_store_new+0x1c5/0x200
[   91.455260][ T7417]  vma_complete+0x125/0x570
[   91.459778][ T7417]  __split_vma+0x594/0x610
[   91.464213][ T7417]  vma_modify+0x1a4/0x210
[   91.468556][ T7417]  vma_modify_flags+0x101/0x130
[   91.473424][ T7417]  mprotect_fixup+0x2cc/0x570
[   91.478122][ T7417]  do_mprotect_pkey+0x6d6/0x980
[   91.482979][ T7417]  __x64_sys_mprotect+0x48/0x60
[   91.487849][ T7417]  x64_sys_call+0x2794/0x2fb0
[   91.492641][ T7417]  do_syscall_64+0xd0/0x1a0
[   91.497155][ T7417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.503079][ T7417] 
[   91.505409][ T7417] read to 0xffff8881047a8800 of 8 bytes by task 7417 on cpu 1:
[   91.512954][ T7417]  mas_state_walk+0x485/0x650
[   91.517636][ T7417]  mas_walk+0x30/0x120
[   91.521706][ T7417]  lock_vma_under_rcu+0xa2/0x2f0
[   91.526656][ T7417]  do_user_addr_fault+0x233/0x1090
[   91.531783][ T7417]  exc_page_fault+0x54/0xc0
[   91.536303][ T7417]  asm_exc_page_fault+0x26/0x30
[   91.541158][ T7417] 
[   91.543482][ T7417] value changed: 0xffff888100059641 -> 0xffff8881047a8800
[   91.550588][ T7417] 
[   91.552909][ T7417] Reported by Kernel Concurrency Sanitizer on:
[   91.559061][ T7417] CPU: 1 UID: 0 PID: 7417 Comm: syz.2.1561 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(voluntary) 
[   91.571579][ T7417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   91.582019][ T7417] ==================================================================
[   91.598775][ T7414] syz.4.1560: attempt to access beyond end of device
[   91.598775][ T7414] loop4: rw=2049, sector=256, nr_sectors = 4 limit=256