last executing test programs:

1m32.222495844s ago: executing program 1 (id=1098):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f000000000000000000003679a7745b96b55cda73c150a22df4ff39c3ef8fa9efbdd0f86fcd3de6a9c6c95640daf0e03dd7da7cf9da8fb3c8d221ad1075c44857e2c1e75026f557a25fc65d0caa370ad192a17c6c37622597262d589b9ad668583592fe3d8276f0d07114ab1d6b8e"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
r5 = socket$kcm(0x10, 0x2, 0x4)
close(r5)
r6 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r8, 0x0, 0x40}, 0x18)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x2c, r9, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}]}, 0x2c}}, 0x4000800)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000000040000000000000000000850000000e00000008000000000000953a600cbcebd9010cac808c89fb8265dcadd64936e8a9638c3a47c71a1cfa138bf884572fae03d71490da9ac715"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="e03f030013006bcd9e3fe3dc6e48aa31086b8700350000007ea60264160af3653c002e000d000af08bc3a0e69ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg(r6, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x2000)
sendmsg$RDMA_NLDEV_CMD_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x24, 0x1402, 0x1, 0x70bd2c, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz0\x00'}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x800)
r11 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r11, 0x0, r3, 0x0, 0x46)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r12 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
readv(r12, &(0x7f0000003400)=[{&(0x7f0000001080)=""/107, 0x7ffff000}, {&(0x7f0000004c00)=""/4096, 0x1000}], 0x2)

1m31.880082548s ago: executing program 1 (id=1110):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffe, 0x0, 0x3, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x1000000, 0x0, 0x30046, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 4)

1m31.69330965s ago: executing program 1 (id=1115):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={0x0, 0x5c}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0xf9)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)

1m31.684090459s ago: executing program 1 (id=1116):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r2 = signalfd4(r0, &(0x7f0000000080)={[0x4]}, 0x8, 0x800)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000340)={0x6, &(0x7f0000000200)=[{0x4, 0x1, 0x3, 0x9}, {0xc9a, 0x95, 0x0, 0x6}, {0x9, 0x8, 0x78, 0x4}, {0xbb2a, 0x92, 0x1, 0x7}, {0x9037, 0xe, 0x2}, {0x9, 0x0, 0x1, 0x3}]})
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000440)={0x1, <r4=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@fallback=r3, r2, 0x24, 0x2036, 0xffffffffffffffff, @void, @void, @value=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="180300000000000000000000000001008510000006000000180000000000000000000000000000003f00000000000000180000000000000000000000000000009500000000000000370300000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r6, 0x12)

1m31.210238778s ago: executing program 1 (id=1118):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, 0xffffffffffffffff)

1m30.965396257s ago: executing program 1 (id=1124):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000"], 0x5b0)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1m30.963449128s ago: executing program 32 (id=1124):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000980)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d00000000000000ed08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000"], 0x5b0)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1m23.534274076s ago: executing program 0 (id=1230):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)

1m23.487742524s ago: executing program 0 (id=1233):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00')
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0/..\x00', &(0x7f0000000300)={0x0, 0x0, 0x2c}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
io_cancel(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff0000001100a200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r3}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8000001f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f00000002c0)={'syztnl0\x00', 0x0})

1m23.39262321s ago: executing program 0 (id=1236):
r0 = syz_io_uring_setup(0x34b3, &(0x7f0000000180)={0x0, 0x0, 0x30c0, 0x1}, &(0x7f0000000100), &(0x7f0000000140))
r1 = epoll_create(0xaf2)
epoll_pwait2(r1, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0xe000200f})

1m22.70919639s ago: executing program 0 (id=1242):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r2 = signalfd4(r0, &(0x7f0000000080)={[0x4]}, 0x8, 0x800)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000340)={0x6, &(0x7f0000000200)=[{0x4, 0x1, 0x3, 0x9}, {0xc9a, 0x95, 0x0, 0x6}, {0x9, 0x8, 0x78, 0x4}, {0xbb2a, 0x92, 0x1, 0x7}, {0x9037, 0xe, 0x2}, {0x9, 0x0, 0x1, 0x3}]})
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000440)={0x1, <r4=>0x0}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@fallback=r3, r2, 0x24, 0x2036, 0xffffffffffffffff, @void, @void, @value=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r6)
tkill(r6, 0x12)

1m22.669960258s ago: executing program 0 (id=1244):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c00000010"], 0x5c}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0xf9)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)

1m22.277789281s ago: executing program 0 (id=1250):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, {0x0, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="4000000010000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)

1m22.239926549s ago: executing program 33 (id=1250):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, {0x0, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="4000000010000304fcffffff3f00000000000000", @ANYRES32=0x0, @ANYBLOB="a5fdad8800000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)

3.420731797s ago: executing program 5 (id=2640):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x2200000, &(0x7f0000000000)={[{@dioread_lock}, {@noquota}, {@nouid32}, {@grpquota}]}, 0xfc, 0x579, &(0x7f0000000680)="$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")
statx(r2, &(0x7f0000000040)='./file2\x00', 0x100, 0x2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000340)=@filename='./file2\x00', r3, &(0x7f0000000380)={0xae, 0x4b27, 0x1, 0xffffffff, 0x1, 0x40000, 0xfffffffffffffffe, 0x2})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {<r4=>0xee01}}, './file0\x00'})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000540)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000700)=<r7=>0x0)
r8 = geteuid()
getgroups(0x3, &(0x7f0000000740)=[0xee01, <r9=>0xee00, 0xee01])
setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000780)=ANY=[@ANYBLOB="0200000001000e000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000300", @ANYRES32=r1, @ANYBLOB="02000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32=r4, @ANYBLOB="02000100", @ANYRES32=r5, @ANYBLOB="02000800", @ANYRES32=r6, @ANYBLOB="02000000", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="040004000000000008000000", @ANYRES32, @ANYBLOB="08100100", @ANYRES32=r9, @ANYBLOB="10000200000000002000060000000000"], 0x74, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
syz_io_uring_setup(0x7440, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0xfffffffb}, &(0x7f0000000140)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2)
r12 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r12}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

2.547936598s ago: executing program 5 (id=2645):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
vmsplice(r0, &(0x7f0000001280)=[{&(0x7f0000000c40)="4064d1ad37020a12b91f6297ab6a3567e49f8e2d7b06c466233294642b3801a6295f4e48a4f48fd5a364931ab879d4e25ac75ea584f0b7cbbc40ca8e6e7c5891e3de56e48b1bb9aaa9512a95bd3307ec518eb057bab515840d56872794bb441b66c9b3f8477316bd7c469aba83c09cea8f3a8a00f8ee7232ddd5044f032c4e272922967a7e549f53bc13fc47054bc62aa695744a93e9b870c3916b1d852e35a1b5159f23b4290679cc1da91aef49cfc050ff75a66168d5a669f7ae8fb93e4a734d", 0xc1}, {&(0x7f0000000d40)="dd197995dbf003813a918e45e8b5a1070a09cd86658faa3caae30edc9fe2010138f54ad3b7c6788eb3001cc2755f28c407eec768720597b7624f832552594168ab0f443185ba810a2f4d5f14298893e7a3b79b1152acd6243f47c462cdf6386c2eb8e18542198a79d9fdb31ecb496e040f2bb0cf8ef33e71e4f772fe6b199d23bb3fc3ce36090e8311cf2f064162d4ecf55b1c682450919552af4312bc1123cd9ed9ec8ee4b1965f5f47273ec63464cce68482c41ef328a5da3598a43c16888ca0a458aa75c48b8318f0ff70dd0dcf7ec4b02d6aa7cdcc283fd8b6b33c0305feae0313e59c9324065c5f6c583caad76d", 0xf0}, {&(0x7f0000000e40)="2c06ac6880f21add55ad37591531e24bebd6668a0a71ab530a41ccbb01a7ca8e22381a4995864a47a8efc7e2ba48442fe23f11a82e0500b522a8e2032a91dd1d90d39da18dbf4478cfc9b0246b21e5b98e65393cef5f27fdc301a840ba2410f8aa908f0c8dc8172085f0c708454730c7a4dd14f417229d551b11be77c8a92082fb478d97a9aacff611c7511ab19648ba8dacf4eeceba34be27ebcd4d7ab1108e666a11b7144033916f6a12", 0xab}, {&(0x7f0000000f00)="006dd58787e73c00871728b24a3e9ed3633f10c17915c29761ed509d147c08c075592629b10ee01faf18f36b9bbc0c7d586f15eb3f53f9007181e24f33f15a9a7d5bd6bcd2628a5c46c50742ec5abfb4c388213b24bab8c1a17bd221efa31ee0180d2773a167ec418e056c9037375104a41428c1dbb68e36c0d37c2cd8473a55461d4b3635624ee04d75ed3d641176a301b4f273ab2e2d5c3ba16a384805b8549757eaae7cb790d68f05c9cf3f5785d4f78b228613c8f52eaa9a4a0614981ed39ea5d49b9310461f565c093b92ce134f14b62c3388519efa317af5fe12c0afbef4f33ac2bf1c4baac6926c70ef1521", 0xef}, {&(0x7f0000001000)="2d9343ab511e3e5910812c35f889f6421320eb1be7629f48baf7fefab3c38a12c0815eab2783c4eae41feab66d56b5e8822a4cf3efc04a80b9990c198c347044e8196723f3d892ae840c08bf784b4026a61ff9c364c92f78c3452320e7b6b6e67f274d67b439a059811965b9f999a0516cd2d2831a00e9df410785bb89a262dd2c1b9b464222d933428318c4d8f55d4e89ed4c5ecf7e3630b089fc570cea83b1c518035ea1279700b1f14363bf79b7e751", 0xb1}, {&(0x7f00000010c0)="8a8cc994de150fb50708ffc45d9716fdaaabb3e5b2002855886820e26289101e39a182b5db17c21640e862c1deefe429979166ff4cd01d4c17577ef6f63ddbb7579eb05322d7013d518ddc85c7d7634cdc9023955b1c955b360759ed1666cf330b781b015bb8c2e65a0982a1d2a22c79e3fe82253882004341e38a2ef0d57576cec4d9dffba397b3608dd9b1300fc1f69dbfb75c470ab4bdb0d4effef1dc0836de2797b9995159837088d9a790b7d60d0398", 0xb2}, {&(0x7f0000001180)="d6552f0fe7248c6d060f8a673c51c80bcb58038d5cd8b112e6e8951a7bee397d56848d7bfffc8806dd2a7c66f23acc9edd3f254131657339c940465e4000197fe47b56f18a455a6d977b8dbae8ec9e429d4c03178201d823754150742c079cb5cdb92e961f162738feff033e39b12075ea38795a2d7c49a33d3f9f54fa74fee1b45efd6c8706adf81451330ae406543db0e193ef180c716aa16c091493401a8b6bdcba92e9e4c633438ff4236b95ec659b741b2f2d937c732a2fc561b51266086f51e1baf8af573c66b373993a5b8c60ca5014925699b76178271470ff3ecedd0e63", 0xe2}], 0x7, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
time(&(0x7f0000000180))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000b80)=[{{&(0x7f0000000300)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/173, 0xad}, {&(0x7f0000000440)=""/86, 0x56}, {&(0x7f00000004c0)=""/188, 0xbc}, {&(0x7f0000000580)=""/102, 0x66}], 0x4, &(0x7f0000000180)=""/12, 0xc}, 0x483}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000600)=""/204, 0xcc}, {&(0x7f0000000700)=""/64, 0x40}], 0x2}, 0x1}, {{&(0x7f0000000780)=@nl=@proc, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000880)=""/48, 0x30}, {&(0x7f00000008c0)=""/93, 0x5d}, {&(0x7f0000000940)=""/208, 0xd0}, {&(0x7f0000000a40)=""/57, 0x39}], 0x5, &(0x7f0000000b00)=""/101, 0x65}}], 0x3, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x800000, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) (async)
getpid() (async)
vmsplice(r0, &(0x7f0000001280)=[{&(0x7f0000000c40)="4064d1ad37020a12b91f6297ab6a3567e49f8e2d7b06c466233294642b3801a6295f4e48a4f48fd5a364931ab879d4e25ac75ea584f0b7cbbc40ca8e6e7c5891e3de56e48b1bb9aaa9512a95bd3307ec518eb057bab515840d56872794bb441b66c9b3f8477316bd7c469aba83c09cea8f3a8a00f8ee7232ddd5044f032c4e272922967a7e549f53bc13fc47054bc62aa695744a93e9b870c3916b1d852e35a1b5159f23b4290679cc1da91aef49cfc050ff75a66168d5a669f7ae8fb93e4a734d", 0xc1}, {&(0x7f0000000d40)="dd197995dbf003813a918e45e8b5a1070a09cd86658faa3caae30edc9fe2010138f54ad3b7c6788eb3001cc2755f28c407eec768720597b7624f832552594168ab0f443185ba810a2f4d5f14298893e7a3b79b1152acd6243f47c462cdf6386c2eb8e18542198a79d9fdb31ecb496e040f2bb0cf8ef33e71e4f772fe6b199d23bb3fc3ce36090e8311cf2f064162d4ecf55b1c682450919552af4312bc1123cd9ed9ec8ee4b1965f5f47273ec63464cce68482c41ef328a5da3598a43c16888ca0a458aa75c48b8318f0ff70dd0dcf7ec4b02d6aa7cdcc283fd8b6b33c0305feae0313e59c9324065c5f6c583caad76d", 0xf0}, {&(0x7f0000000e40)="2c06ac6880f21add55ad37591531e24bebd6668a0a71ab530a41ccbb01a7ca8e22381a4995864a47a8efc7e2ba48442fe23f11a82e0500b522a8e2032a91dd1d90d39da18dbf4478cfc9b0246b21e5b98e65393cef5f27fdc301a840ba2410f8aa908f0c8dc8172085f0c708454730c7a4dd14f417229d551b11be77c8a92082fb478d97a9aacff611c7511ab19648ba8dacf4eeceba34be27ebcd4d7ab1108e666a11b7144033916f6a12", 0xab}, {&(0x7f0000000f00)="006dd58787e73c00871728b24a3e9ed3633f10c17915c29761ed509d147c08c075592629b10ee01faf18f36b9bbc0c7d586f15eb3f53f9007181e24f33f15a9a7d5bd6bcd2628a5c46c50742ec5abfb4c388213b24bab8c1a17bd221efa31ee0180d2773a167ec418e056c9037375104a41428c1dbb68e36c0d37c2cd8473a55461d4b3635624ee04d75ed3d641176a301b4f273ab2e2d5c3ba16a384805b8549757eaae7cb790d68f05c9cf3f5785d4f78b228613c8f52eaa9a4a0614981ed39ea5d49b9310461f565c093b92ce134f14b62c3388519efa317af5fe12c0afbef4f33ac2bf1c4baac6926c70ef1521", 0xef}, {&(0x7f0000001000)="2d9343ab511e3e5910812c35f889f6421320eb1be7629f48baf7fefab3c38a12c0815eab2783c4eae41feab66d56b5e8822a4cf3efc04a80b9990c198c347044e8196723f3d892ae840c08bf784b4026a61ff9c364c92f78c3452320e7b6b6e67f274d67b439a059811965b9f999a0516cd2d2831a00e9df410785bb89a262dd2c1b9b464222d933428318c4d8f55d4e89ed4c5ecf7e3630b089fc570cea83b1c518035ea1279700b1f14363bf79b7e751", 0xb1}, {&(0x7f00000010c0)="8a8cc994de150fb50708ffc45d9716fdaaabb3e5b2002855886820e26289101e39a182b5db17c21640e862c1deefe429979166ff4cd01d4c17577ef6f63ddbb7579eb05322d7013d518ddc85c7d7634cdc9023955b1c955b360759ed1666cf330b781b015bb8c2e65a0982a1d2a22c79e3fe82253882004341e38a2ef0d57576cec4d9dffba397b3608dd9b1300fc1f69dbfb75c470ab4bdb0d4effef1dc0836de2797b9995159837088d9a790b7d60d0398", 0xb2}, {&(0x7f0000001180)="d6552f0fe7248c6d060f8a673c51c80bcb58038d5cd8b112e6e8951a7bee397d56848d7bfffc8806dd2a7c66f23acc9edd3f254131657339c940465e4000197fe47b56f18a455a6d977b8dbae8ec9e429d4c03178201d823754150742c079cb5cdb92e961f162738feff033e39b12075ea38795a2d7c49a33d3f9f54fa74fee1b45efd6c8706adf81451330ae406543db0e193ef180c716aa16c091493401a8b6bdcba92e9e4c633438ff4236b95ec659b741b2f2d937c732a2fc561b51266086f51e1baf8af573c66b373993a5b8c60ca5014925699b76178271470ff3ecedd0e63", 0xe2}], 0x7, 0x2) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
time(&(0x7f0000000180)) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) (async)
recvmmsg(r2, &(0x7f0000000b80)=[{{&(0x7f0000000300)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/173, 0xad}, {&(0x7f0000000440)=""/86, 0x56}, {&(0x7f00000004c0)=""/188, 0xbc}, {&(0x7f0000000580)=""/102, 0x66}], 0x4, &(0x7f0000000180)=""/12, 0xc}, 0x483}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000600)=""/204, 0xcc}, {&(0x7f0000000700)=""/64, 0x40}], 0x2}, 0x1}, {{&(0x7f0000000780)=@nl=@proc, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000880)=""/48, 0x30}, {&(0x7f00000008c0)=""/93, 0x5d}, {&(0x7f0000000940)=""/208, 0xd0}, {&(0x7f0000000a40)=""/57, 0x39}], 0x5, &(0x7f0000000b00)=""/101, 0x65}}], 0x3, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x800000, 0x0) (async)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0) (async)

2.097380014s ago: executing program 5 (id=2650):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000000800)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000140)=ANY=[], 0x841, 0x1)

2.049524604s ago: executing program 6 (id=2651):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaa23ffffffffffff0806000108000604"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f0000000100)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, &(0x7f0000000380)={0x102, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x7, 0x7, 0x4, 0x0, 0x6}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000440)='./cgroup\x00', 0x0, &(0x7f00000004c0)={[], [{@uid_eq}, {@flag='nomand'}, {@uid_lt}, {@fowner_eq}]}, 0x1, 0x4fa, &(0x7f0000000dc0)="$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")
setresuid(0xee00, 0xee00, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="6d706f6c3d696e7465725fd8dd251f6a86255fd2d90559808d6c656176653d72656c61746976653a2c300a05"])
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x0, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=0xffffffffffffffff, 0x12)
recvmsg$unix(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/79, 0xbdef}], 0x300}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, 0x0, &(0x7f0000000080))
open(0x0, 0x145142, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0xe7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.014106035s ago: executing program 5 (id=2652):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
eventfd2(0xddb, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x2d, &(0x7f00000000c0)=[{0x7, 0x4, 0x7f, 0x9}]})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x7c7, 0x7ff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x80, 0x4, 0x0, @loopback, @rand_addr=0x64010101}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f3, &(0x7f0000000000)={'syztnl0\x00', &(0x7f0000000100)={'ip_vti0\x00', 0x0, 0x0, 0x700, 0x4000000, 0x2, {{0x5, 0x4, 0x0, 0x16, 0x14, 0xfffe, 0x0, 0x1, 0x4, 0x0, @loopback, @rand_addr=0x64010100}}}})
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$evdev(&(0x7f0000000a80), 0x0, 0x0)

1.936604415s ago: executing program 6 (id=2654):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x2200000, &(0x7f0000000000)={[{@dioread_lock}, {@noquota}, {@nouid32}, {@grpquota}]}, 0xfc, 0x579, &(0x7f0000000680)="$eJzs3c9rHOUbAPBnNtk2/fH9JoVS1IMEerBSu2kSf1TwUI+ixYLe65JsQ8mmW7Kb0sSC7cFevEgRRCyI3jx491j8B/wrClooUoIevERmM5tuk910k+wmaffzgUned2Y2z/vuzPPmnZ1dNoC+NZr+yEW8HBFfJxHDTdsGI9s4urrf8uObU+mSxMrKJ38lkWTrGvsn2e8jWeWliPjty4jTuY1xq4tLs8VyuTSf1cdqc9fGqotLZ67MFWdKM6WrE5OT596anHj3nbe71tfXL/7z3cf3Pzj31cnlb395eOxuEufjaLatuR87cKu5Mhqj2XOSj/PrdhzvQrD9JNnrBrAtA1me5yMdA4ZjIMv6llaGd7NpQI99kaY10KcS+Q99qjEPaFzbd+k6+Lnx6P3VC6CN/R9cfW0khurXRoeXk6eujNLr3ZEuxE9j/PrnvbvpEt17HQLgmW7djoizg4Mbx78kG/+272wH+6yPkcXP7zA00IH76fznjVbzn9za/CdazH+OtMjd7WiT/01yD7sQpq10/vdey/nv2k2rkYGs9r/6nC+fXL5SLqVj2/8j4lTkD6b1Te7nfJZbfrDSbmPz/C9d0viNuWDWjoeDB59+zHSxVtxRp5s8uh3xSsv5b7J2/JMWxz99Pi52GONE6d6r7bY9u/9renKLaeXHiNdaHv/kqcCb3J8cq58PY42zYqO/75z4vV38LfS/Jx79nBXa938kab5fW916jB+G/i2127bd8/9A8mm9fCBbd6NYq82PRxxIPtq4fuLJYxv1xv7p+X/q5ObjX6vz/1Ca2B32/87xO827Dm2t/72V9n968/N/3fHfeuHBh59/3y5+Z8f/zXrpVLamk/Gv0wbu5LkDAAAAAACA/SYXEUcjyRXWyrlcobD6/o7jcThXrlRrpy9XFq5OR/2zsiORzzXudA83vR9iPHs/bKM+sa4+GRHHIuKbgUP1emGqUp7e684DAAAAAAAAAAAAAAAAAADAPnEkYqjV5/9TfwzsdeuAntvkK7+BF1z7/M+2dOObnoB9adv//4e62w5g95n/Q/+S/9C/5D/0L/kP/Uv+Q/+S/9C/tpL/P13oYUMAAAAAAAAAAAAAAAAAAAAAAAAAAADgxXDxwoV0WVl+fHMqrU9fX1yYrVw/M12qzhbmFqYKU5X5a4WZSmWmXCpMVeae9ffKlcq18YlYuDFWK1VrY9XFpUtzlYWrtUtX5oozpUul/K70CgAAAAAAAAAAAAAAAAAAAJ4v1cWl2WK5XJpXUNhWYXB/NEOhy4W9HpkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4In/AgAA//+z7zor")
statx(r2, &(0x7f0000000040)='./file2\x00', 0x100, 0x2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000340)=@filename='./file2\x00', r3, &(0x7f0000000380)={0xae, 0x4b27, 0x1, 0xffffffff, 0x1, 0x40000, 0xfffffffffffffffe, 0x2})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {<r4=>0xee01}}, './file0\x00'})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000540)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000700)=<r7=>0x0)
getgroups(0x3, &(0x7f0000000740)=[0xee01, <r8=>0xee00, 0xee01])
setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000780)=ANY=[@ANYBLOB="0200000001000e000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000300", @ANYRES32=r1, @ANYBLOB="02000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32=r4, @ANYBLOB="02000100", @ANYRES32=r5, @ANYBLOB="02000800", @ANYRES32=r6, @ANYBLOB="02000000", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32, @ANYBLOB="040004000000000008000000", @ANYRES32, @ANYBLOB="08100100", @ANYRES32=r8, @ANYBLOB="10000200000000002000060000000000"], 0x74, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
syz_io_uring_setup(0x7440, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0xfffffffb}, &(0x7f0000000140)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2)
r11 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r11}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

1.758387658s ago: executing program 3 (id=2656):
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x18)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000280), 0x1, 0x71c, &(0x7f0000000f40)="$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") (fail_nth: 14)

1.441231772s ago: executing program 3 (id=2657):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107842, 0x0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x42, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xafd, 0x0, @perf_bp={&(0x7f0000000400), 0x4}, 0x1, 0x7, 0x0, 0x8, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x2, 0xffffffffffffffff, 0x8) (async)
accept4$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000200)=0x44, 0x800) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="2f34bba00fbac999dfaf58e6dd799410196306cba2d7"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8b1, @void, @value}, 0x94) (async)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x60010023)
r3 = mq_open(0x0, 0x1, 0x60, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x80000000000b52, 0x0) (async)
r4 = socket$netlink(0x10, 0x3, 0x0) (async)
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r7=>0x0}) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r8}, 0x10)
nanosleep(&(0x7f0000000000)={0x0, 0x989680}, 0x0)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000040)={r7, 0x1, 0x6, @local}, 0x10) (async)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000000)={r7, 0x11, 0x6, @broadcast}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x1, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20008050) (async)
socket$kcm(0x29, 0x0, 0x0) (async)
ftruncate(r4, 0x8000000000000001)

1.440924912s ago: executing program 3 (id=2658):
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x80010, 0xffffffffffffffff, 0xc0947000)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x4001}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308)

1.353443373s ago: executing program 4 (id=2660):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet(0x2, 0x2000000080002, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
close(r1)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
fcntl$setlease(r2, 0x400, 0x300000000000000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000140)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3, 0x0, 0x7}, 0x18)
socket$kcm(0x10, 0x2, 0x10)
r4 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r4, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000001740)=[{0x10, 0x29, 0x8}], 0x10}}], 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x11, 0x67, 0x0, 0x172)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x105000, 0x0)

1.340751033s ago: executing program 3 (id=2661):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000000800)="$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")
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000140)=ANY=[], 0x841, 0x1)

1.290215994s ago: executing program 4 (id=2663):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r4)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r6, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r6, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
sendmsg$NLBL_MGMT_C_LISTDEF(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r5, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x800)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000080), 0xffffffffffffffff)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32], 0x1c}}, 0x44)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYRES16=r11, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r8, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4881}, 0x4000800)

1.254587434s ago: executing program 4 (id=2664):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r2}, 0x10)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0xfffffffffffffffc, 0x12000, 0x1000, 0x0, 0x2}, 0x20)

1.229533244s ago: executing program 4 (id=2666):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="86550856e67b6666adeed188122f1802de2ce78ba63e0d027abeb6c1829691f9e624d27351467d5e94a056c83f9a1c7bc18a89de2a6a191616afb299d3b377996a63979f123d36d2f25b0941c29cc42df09a323b244bb8b8a6d3a96a0144e05c15d1fb443d800a30d9340975035db13f55bf76f140c5754986eb82ca8765c81f7b1ef72f8f151f35a88d7f1246141b", @ANYRES64=r2, @ANYRES64=r1, @ANYRESDEC=r2, @ANYRESDEC=r1, @ANYRESDEC=r1], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f00000007c0), &(0x7f00000001c0)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000008500000050"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
kexec_load(0x3dfd, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="4400000013002901000000000000000007000000", @ANYRES32=<r8=>r6, @ANYBLOB="00000000000000001c001a800800068004000500080000003e"], 0x44}}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000a00)={<r9=>0x0, @private, @empty}, &(0x7f0000000a40)=0xc)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000b80)=[{{&(0x7f0000000300)={0x2, 0x4e23, @rand_addr=0x64010101}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000640)="a79f422d038ed78386d6574b075f0b77f025e367050fe3a59cae22993a0b0f6b5516dd00f7358531c1860785848cd5dc818c6f79ce3ccaeefd3c3361f90d1c78ba1b4666498fd24da2958231ab4ffd7b1aa1d66b439bc21ef976b81da41f125e75bd2506fe7c90cf1dcac4f0d68db092f8a0b56a743c941305dbc6e8c38517f2934b7bd9641a6f68a4f981de4f3bbf8b821a2b81bde94354b59133b317e9cf4adbd224fb6d9f242f4f4dbb7949081ccb810356b1087e1227faef5afeee8485532ec0c6a0a48b8e08728f8faf3422cf40920232c2521c3818afe7d85499f143731fa885", 0xe3}, {&(0x7f00000004c0)="2da1bec3662a1347afd7a64ba2d405cf85cbcc1c03dd5d55a6f20ebe990a86919f995c5c1c195ecf89900b170dda353f2eb9f05c113d315ee83bf95d4028ab3cb0bb67c9a7e119aa8a66d56380ff7476f086fdf55a53cbbe1586ae5a37a83e6509de3da3e1c74324979cfba3d8340a744067549b0cc98de98520004e4cbd3f581d8b330ae9636734850d4234975066f1f23b4b256b", 0x95}], 0x2, &(0x7f0000000400)=[@ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0xc, 0x30, 0x3, 0x6, [{@multicast2, 0x8}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @broadcast, @broadcast}}}], 0x58}}, {{&(0x7f0000000380)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000000780)=[{&(0x7f0000000800)="3798f27dade08cb1bb67a2ebe564f71370b5ea7a8a99e8c832e8aa99b53b73517f6e775c43f67172eb43f1ae51e82227d11ee28a17509cb7d7c6b5bf36fda69476f5a05db56e52a81a38eb09669690ae1840accdecf747bc0af4fbeb2526fa309440fd7fe56f0da11acd9bfb4fe47dfe133f8a2d816a3cb2a4d6d635251503b028be4668338d680ec4ca4af072c9d330725ee2f3e55d7f20eaf5dba5b0b9d95f", 0xa0}, {&(0x7f0000000740)="c2ae575df0943f116ab6ec9632c27f0108d7e5f68481d14c8968e86d92f4931b8648", 0x22}, {&(0x7f00000008c0)="d25d7ef0ff306306a72e33ea913ad455ab92ceb7a3b3b2090f6c005f22bc3a70818d320557b860bc17478948efb5277ec907bf393e13dd1622343f48ed891d2bd58f53a85acd34caea9e7d3aaa518f911e7701d5b31f39f918a90c1fa2d0dd5ec8b482f746facf896bc5897af3aa3ccee4c2fd270cc32e41e79aa87b4041b861c03386011d6dae9761804839e16fe06d7446401f818ae5ccf6c381b6aeba34580188d7cfa2f7532f398b660bd265e0e49d48345ce712e4d063446763c5cf5ed7519d83d84bf0d6905c2fdffd736fde7d293a14fb16a17b6343c68cc70d", 0xdd}], 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="14000000000000000000000001000800ff0700080000000014000000000048bc0fdd1ff96cdf14c407000000000000001c000000000000000000000008000000", @ANYRES32=r9, @ANYBLOB="e0000002ffffffff000000006c00000000000000000000000700000000000007237300000000000000007f000001ac1e0101ac14140be0000002ac1414aaac1e00014434c9717f00000100000004ac1414bb00000001ac1e0001000000030000000000000005ac141422000000cbac14142300010001000000000000"], 0xc0}}], 0x2, 0x4000000)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r10}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES64=r11, @ANYRES16=r8, @ANYBLOB="063e67434141ce77c12234b800000000000000d9f9c5992327ecf421d31b3d22e100f900b7080000000000007b8af8ff00000000bfa207000000000007020000f8ffffffb7036efa92ba7a0f46f800000000000085c4cf61b1cb6dee66"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x10)
r13 = socket(0x1e, 0x805, 0x0)
connect$tipc(r13, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x2}}, 0x10)
connect$tipc(r13, &(0x7f0000000000)=@id, 0x10)
close(r13)

1.222975024s ago: executing program 3 (id=2667):
openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x45d, &(0x7f0000000a00)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4041080)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000300)='kmem_cache_free\x00', r3, 0x0, 0x4}, 0x18)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000008c0)={<r4=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
read(r4, &(0x7f0000032440)=""/102364, 0x18fdc)

1.111615146s ago: executing program 5 (id=2669):
set_mempolicy(0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='xen_mmu_alloc_ptpage\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0x7, 0x0, 0x9, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000380)={[{@nojournal_checksum}]}, 0x1, 0x503, &(0x7f0000000880)="$eJzs3c9vI1cdAPDvOL+cNG3S0gMgoEspLGi1TuJto6oHWE4IoUqIHkHahsQbRbHjKHZKE/aQ/g9IVOIER/4Azj1x54LgxmU5IPEjAm1W4mA040nWm7U3ZpPYUfz5SKN5b2bs73trzXv21xu/AEbWjYg4iIjJiPgwIuby40m+xd32ll736PDB6tHhg9UkWq0P/plk59Nj0fGY1Ev5cxYj4kffi/hp8mzcxt7+5kq1WtlpV6cXmrXthcbe/u2N2sp6Zb2yVS4vLy0vvnvnnfKF9fWN2mRe+vLDPxx86+dps2bzI539uEjtrk+cxEmNR8QPLiPYEIzl/ZkcdkN4IYWIeC0i3szu/7kYy15NAOA6a7XmojXXWQcArrtClgNLCqU8FzAbhUKp1M7hvR4zhWq90bx1v767tdbOlc3HROH+RrWymOcK52MiSetLWflJvXyqficiXo2IX0xNZ/XSar26Nsw3PgAwwl46Nf//Z6o9/wMA11xx2A0AAAbO/A8Ao8f8DwCjx/wPAKPnyfx/d6jtAAAGx+d/ABg95n8AGCk/fP/9dGsd5b9/vfbR3u5m/aPba5XGZqm2u1pare9sl9br9fXsN3tqZz1ftV7fXno7dj+e//Z2o7nQ2Nu/V6vvbjXvZb/rfa8yMZBeAQDP8+obn/05iYiD96azLTrWcjBXw/VWGHYDgKEZG3YDgKGx2heMrnN8xpcegGuiyxK9TylGxPTpg61Wq3V5TQIu2c0vyP/DqOrI//tfwDBi5P9hdMn/w+hqtZJ+1/yPfi8EAK42OX6gx/f/r+X73+ZfDvxk7fQVn15mqwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBqO17/t5SvBT4bhUKpFPFyRMzHRHJ/o1pZjIhXIuJPUxNTaX1pyG0GAM6r8LckX//r5txbs6fPTiaPp7J9RPzsVx/88uOVZnPnj+nxf50cb36aHy8Po/0AwFmO5+ls3/FB/tHhg9XjbZDt+ft3I6LYjn90OBlHJ/HHYzzbF2MiImb+neT1tqQjd3EeB59ExOe79T+J2SwH0l759HT8NPbLA41feCp+ITvX3qf/Fp+7gLbAqPksHX/udrv/CnEj23e//4vZCHV++fiXPtXqUTYGPol/PP6N9Rj/bvQb4+3ff79dmn723CcRXxyPOI591DH+HMdPesR/q8/4f/nSV97sda7164ib0T1+Z6yFZm17obG3f3ujtrJeWa9slcvLS8uL7955p7yQ5agXes8G/3jv1itZocslaf9nesQvntH/r/fZ/9/898Mff7XHuTT+N7/WLX4hXn9O/HRO/Eaf8VdmflfsdS6Nv9aj/2e9/rf6jP/wr/vPLBsOAAxPY29/c6VarewMsnD8RmKgQRX6K0zlL85Vac9ThSvbsM2V6ncGFWsy/q9HtVovFKvXiHERWTfgKji56SPi8bAbAwAAAAAAAAAAAAAAdHWpf6iUtAvD7iMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADX1/8CAAD//8jOyzo=")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000001640)={'#! ', '', [{0x20, '\\Tf\\*\xbe'}, {0x20, '\xe6\x1e\xd0\x92{NGA\xd3`1\x19W`5t\x05\xe5\x04\x11\x99\r9L\xa7\xc8YG\x9dg\np\x18:\xf2nD\x87\xbb\x93ryi\xa8\x1dI\xcb\x1d\x99l\xea\xa8~\x886!\xd7\x04\x122\fZ\xfar\x83M\xa1\xce\xc4\xe0\xd7\x97\xf2{+\xd9\x13\x7f\x14,%\xe8\rQ\xbe6\xf5\xff\xbf\xc3,\x03\x96U\xd2=\x9fD\xe2\xb0L\xb4\x12)\xf5\xc8\\\x02?]\xf9C\x880\xb4\xf8\xeeMqv\xec\xcc\xe9\t\x00\x00\x00im\xa5\xb0\xd4\xe5\xa3\x93*X2\x95\xb0\xc1\xc53R\x14\xad\xc9a\b\xaf,\xbcw\x1f\x14o#\x06\x87a\xcb\x06\xe3o\xa9\x85\xaf\xd2\x1a\xeeU{\xa5iQe1Q\xefJ\xb7/!8f\xb1\x97'}, {0x20, 'ext4\x00'}, {0x20, '\xda\xa9\xf9\xf3\xb5\xb3\x89R\xb6-o\xde\xf4\xd6\xcfQ\xbf\x82\xcc-F\xc0Y\xc5\x96)\xc2\x84G\xfd\"\xdf\xb1\xa3\xbb\xcbg$\xbe\\\xfd\xd7\xe8\xcf\"{\x04\x1b\xc4#\xb0\xff}K\r\xa4\xae8\xdd]\xb0*$k\x13o\xd4\x03\xdd\x7f;y\xdb\x10\xe5c\x1d'}, {0x20, 'cpu\b\x00\x00\x00.usage_percpu_sys\x00'}]}, 0x135)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
brk(0x20001000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000003}, 0x80)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3)

1.106865976s ago: executing program 2 (id=2670):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x8, 0xd, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000008500000007000000181100"/28, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0xfffffffffffff001}, 0x18)
removexattr(&(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0)=@known='user.incfs.metadata\x00')
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000760009eeffffffffffffff0400000000", @ANYBLOB="04000d8008"], 0x24}, 0x1, 0x5502000000000000, 0x0, 0x4000840}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=<r5=>r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r4, 0x0, 0x100000000}, 0x18)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e22, 0x100, @loopback, 0x101}, 0x1c)
close(r6)
socket(0xa, 0x3, 0x3a)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2ab}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="2100000000000000000000000000100000040000", @ANYRES32, @ANYBLOB="28d50000000000000000000000000000000900f1", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000020000"], 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r7 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', &(0x7f00000001c0)={0x480000}, 0x18)
r8 = openat(r7, &(0x7f0000000240)='./file1\x00', 0x8042, 0x0)
fallocate(r8, 0x0, 0x0, 0x8000c62)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000100)=ANY=[@ANYRES64=r5])
r9 = syz_open_dev$loop(&(0x7f00000005c0), 0x9, 0x12d600)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_user\x00', 0x275a, 0x0)
io_uring_enter(r10, 0x399d, 0x71be, 0x64, &(0x7f0000000000)={[0x80000001]}, 0x8)
write$binfmt_misc(r10, &(0x7f0000001000), 0xe09)
ioctl$LOOP_CONFIGURE(r9, 0x4c0a, &(0x7f00000002c0)={r10, 0x1000, {0x2a00, 0x80010000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2abfc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0155aaffffffffffff0300", "2809e85397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000000400", "90010005009265406c09306903d800", [0x0, 0x1]}})

1.067764557s ago: executing program 6 (id=2671):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000300)='\x04\x00\x00\x00\x00^\xf6jAc')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f00000000c0)=@newtaction={0xe54, 0x58, 0x284f, 0x0, 0x0, {}, [{0xe40, 0x1, [@m_skbmod={0xe3c, 0x4, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_SKBMOD_SMAC={0xa, 0x4, @multicast}]}, {0xe04, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xe54}}, 0x2400c840)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r2}, 0x18)
r3 = socket(0x2c, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f00000002c0)=@ethtool_ringparam={0x12, 0x0, 0x80, 0x0, 0x1002}})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x65, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4}, &(0x7f0000000380), &(0x7f00000003c0)=r5}, 0x20)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000020c0)=ANY=[@ANYBLOB="500000000101010300000000000000e3090000000c00198008000100ad040000300001"], 0x50}}, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r9, 0x4004551e, 0x0)

1.045097687s ago: executing program 4 (id=2672):
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000080d}, 0x24000000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 4)

661.128882ms ago: executing program 4 (id=2673):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000200)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = memfd_secret(0x80000)
fcntl$setlease(r3, 0x400, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x8, 0x8410b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x1320, 0x4, 0x3, 0x5, 0x9, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/126, 0x7e, 0x41)
fsetxattr$system_posix_acl(r3, &(0x7f0000000380)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

660.340732ms ago: executing program 2 (id=2674):
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x0, 0x1}, &(0x7f0000044000)=<r1=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0)
timer_settime(r1, 0x1, &(0x7f00000000c0)={{}, {0x77359400}}, &(0x7f0000000140))
syz_clone(0x20a00000, 0x0, 0x0, 0x0, 0x0, 0x0)

627.260882ms ago: executing program 5 (id=2675):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
eventfd2(0xddb, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x2d, &(0x7f00000000c0)=[{0x7, 0x4, 0x7f, 0x9}]})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x7c7, 0x7ff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x80, 0x4, 0x0, @loopback, @rand_addr=0x64010101}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f3, &(0x7f0000000000)={'syztnl0\x00', &(0x7f0000000100)={'ip_vti0\x00', 0x0, 0x0, 0x700, 0x4000000, 0x2, {{0x5, 0x4, 0x0, 0x16, 0x14, 0xfffe, 0x0, 0x1, 0x4, 0x0, @loopback, @rand_addr=0x64010100}}}})
r5 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGMASK(r5, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})
syz_open_dev$evdev(&(0x7f0000000a80), 0x0, 0x0)

602.454742ms ago: executing program 2 (id=2676):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000000)={0xfffffffffffffffc, 0x12000, 0x1000, 0x0, 0x2}, 0x20)

576.490703ms ago: executing program 2 (id=2677):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000000800)="$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")
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000140)=ANY=[], 0x841, 0x1)

549.705443ms ago: executing program 2 (id=2678):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0xf9)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[], 0xfe44, 0x0)

513.541674ms ago: executing program 2 (id=2679):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
eventfd2(0xddb, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x2d, &(0x7f00000000c0)=[{0x7, 0x4, 0x7f, 0x9}]})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x7c7, 0x7ff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x80, 0x4, 0x0, @loopback, @rand_addr=0x64010101}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f3, &(0x7f0000000000)={'syztnl0\x00', &(0x7f0000000100)={'ip_vti0\x00', 0x0, 0x0, 0x700, 0x4000000, 0x2, {{0x5, 0x4, 0x0, 0x16, 0x14, 0xfffe, 0x0, 0x1, 0x4, 0x0, @loopback, @rand_addr=0x64010100}}}})
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$evdev(&(0x7f0000000a80), 0x0, 0x0)

258.931497ms ago: executing program 6 (id=2680):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='attr/current\x00')
pread64(r1, &(0x7f0000001240)=""/102392, 0x18ff8, 0x0)

201.134027ms ago: executing program 3 (id=2681):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x2200000, &(0x7f0000000000)={[{@dioread_lock}, {@noquota}, {@nouid32}, {@grpquota}]}, 0xfc, 0x579, &(0x7f0000000680)="$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")
statx(r2, &(0x7f0000000040)='./file2\x00', 0x100, 0x2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000340)=@filename='./file2\x00', r3, &(0x7f0000000380)={0xae, 0x4b27, 0x1, 0xffffffff, 0x1, 0x40000, 0xfffffffffffffffe, 0x2})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {<r4=>0xee01}}, './file0\x00'})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000540)={{{@in6=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000700)=<r7=>0x0)
getgroups(0x3, &(0x7f0000000740)=[0xee01, <r8=>0xee00, 0xee01])
setxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000780)=ANY=[@ANYBLOB="0200000001000e000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000300", @ANYRES32=r1, @ANYBLOB="02000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32=r4, @ANYBLOB="02000100", @ANYRES32=r5, @ANYBLOB="02000800", @ANYRES32=r6, @ANYBLOB="02000000", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32, @ANYBLOB="040004000000000008000000", @ANYRES32, @ANYBLOB="08100100", @ANYRES32=r8, @ANYBLOB="10000200000000002000060000000000"], 0x74, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
syz_io_uring_setup(0x7440, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0xfffffffb}, &(0x7f0000000140)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2)
r11 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r11}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

70.105829ms ago: executing program 6 (id=2682):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c00000010"], 0x5c}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0xf9)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[], 0xfe44, 0x0)

0s ago: executing program 6 (id=2683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioprio_set$pid(0x1, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
r3 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r4=>0x0)
io_submit(r4, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000000), 0x1a00001a}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095", @ANYRESHEX, @ANYRES16], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000002c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = request_key(&(0x7f0000000080)='cifs.idmap\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000180)='blkio.bfq.io_service_bytes\x00', 0xfffffffffffffffa)
r6 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r6, 0x52b242d)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f00000001c0)='id_resolver\x00', &(0x7f0000000200)=@keyring={'key_or_keyring:', r6})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='xprtrdma_err_unrecognized\x00', r1, 0x0, 0xa002}, 0x18)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="6344849e040000000500000002a58337761de4af892ad79d34f4b9530007000000"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60a, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b750000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000856d97586b4956edeee3eeee5300000084000000b700"/108], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
chown(&(0x7f0000000300)='./file0\x00', 0x0, 0xee01)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r11 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r11, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

kernel console output (not intermixed with test programs):

90
[  150.480973][ T8798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.481058][ T8798] RIP: 0033:0x7ffb21ede969
[  150.481078][ T8798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.481101][ T8798] RSP: 002b:00007ffb20547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.481125][ T8798] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21ede969
[  150.481141][ T8798] RDX: 0000200000000080 RSI: 00000000c028660f RDI: 0000000000000007
[  150.481157][ T8798] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  150.481173][ T8798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.481188][ T8798] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  150.481260][ T8798]  </TASK>
[  150.733765][ T8803] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.814922][ T8812] netlink: '': attribute type 1 has an invalid length.
[  150.847069][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  150.879658][ T8812] lo speed is unknown, defaulting to 1000
[  150.898520][ T8812] lo speed is unknown, defaulting to 1000
[  150.906026][ T8819] smc: net device bond0 applied user defined pnetid SYZ2
[  150.909691][ T8820] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1994'.
[  150.924798][ T8819] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1996'.
[  150.935434][ T8819] smc: net device bond0 erased user defined pnetid SYZ2
[  151.070932][ T8833] loop3: detected capacity change from 0 to 512
[  151.125849][ T8833] EXT4-fs (loop3): 1 orphan inode deleted
[  151.132235][ T8833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.144659][ T8833] ext4 filesystem being mounted at /424/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.229148][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.380389][ T8854] smc: net device bond0 applied user defined pnetid SYZ2
[  151.394375][ T8854] smc: net device bond0 erased user defined pnetid SYZ2
[  151.573811][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.583202][ T8857] wg2: left promiscuous mode
[  151.587855][ T8857] wg2: left allmulticast mode
[  151.596159][ T8857] wg2: entered promiscuous mode
[  151.601165][ T8857] wg2: entered allmulticast mode
[  151.645846][ T8868] netlink: '': attribute type 1 has an invalid length.
[  151.666072][ T8868] lo speed is unknown, defaulting to 1000
[  151.672172][ T8868] lo speed is unknown, defaulting to 1000
[  152.018447][ T8894] loop3: detected capacity change from 0 to 512
[  152.026252][ T8894] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  152.035512][ T8894] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  152.046824][ T8894] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  152.060387][ T8894] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  152.068511][ T8894] System zones: 0-2, 18-18, 34-35
[  152.074397][ T8894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.094488][ T8894] netlink: 'syz.3.2026': attribute type 12 has an invalid length.
[  152.120821][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.141582][ T8903] netlink: '': attribute type 1 has an invalid length.
[  152.172861][ T8903] lo speed is unknown, defaulting to 1000
[  152.178981][ T8903] lo speed is unknown, defaulting to 1000
[  152.423216][ T8920] FAULT_INJECTION: forcing a failure.
[  152.423216][ T8920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.436487][ T8920] CPU: 1 UID: 0 PID: 8920 Comm: syz.4.2034 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  152.436588][ T8920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.436605][ T8920] Call Trace:
[  152.436613][ T8920]  <TASK>
[  152.436622][ T8920]  __dump_stack+0x1d/0x30
[  152.436650][ T8920]  dump_stack_lvl+0xe8/0x140
[  152.436675][ T8920]  dump_stack+0x15/0x1b
[  152.436691][ T8920]  should_fail_ex+0x265/0x280
[  152.436769][ T8920]  should_fail+0xb/0x20
[  152.436826][ T8920]  should_fail_usercopy+0x1a/0x20
[  152.436950][ T8920]  _copy_from_user+0x1c/0xb0
[  152.437029][ T8920]  __copy_msghdr+0x244/0x300
[  152.437095][ T8920]  ___sys_sendmsg+0x109/0x1d0
[  152.437136][ T8920]  __x64_sys_sendmsg+0xd4/0x160
[  152.437169][ T8920]  x64_sys_call+0x2999/0x2fb0
[  152.437201][ T8920]  do_syscall_64+0xd2/0x200
[  152.437228][ T8920]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  152.437253][ T8920]  ? clear_bhb_loop+0x40/0x90
[  152.437322][ T8920]  ? clear_bhb_loop+0x40/0x90
[  152.437400][ T8920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.437427][ T8920] RIP: 0033:0x7f6af5e7e969
[  152.437444][ T8920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.437467][ T8920] RSP: 002b:00007f6af44e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.437490][ T8920] RAX: ffffffffffffffda RBX: 00007f6af60a5fa0 RCX: 00007f6af5e7e969
[  152.437505][ T8920] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 0000000000000004
[  152.437533][ T8920] RBP: 00007f6af44e7090 R08: 0000000000000000 R09: 0000000000000000
[  152.437545][ T8920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.437557][ T8920] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  152.437581][ T8920]  </TASK>
[  152.715003][ T8929] loop6: detected capacity change from 0 to 164
[  152.761775][ T8929] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.773967][ T3395] hid-generic 0000:0004:0000.0009: unknown main item tag 0x0
[  152.777849][ T8929] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  152.781486][ T3395] hid-generic 0000:0004:0000.0009: unknown main item tag 0x0
[  152.792824][ T8929] Symlink component flag not implemented
[  152.797032][ T3395] hid-generic 0000:0004:0000.0009: unknown main item tag 0x0
[  152.802623][ T8929] Symlink component flag not implemented
[  152.853173][ T8929] Symlink component flag not implemented (7)
[  152.859233][ T8929] Symlink component flag not implemented (116)
[  152.905457][ T3395] hid-generic 0000:0004:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  153.039244][ T8951] loop3: detected capacity change from 0 to 2048
[  153.044085][ T8953] loop6: detected capacity change from 0 to 1024
[  153.059595][   T29] kauditd_printk_skb: 78 callbacks suppressed
[  153.059614][   T29] audit: type=1326 audit(1748530045.162:3381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.089276][   T29] audit: type=1326 audit(1748530045.162:3382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.112636][   T29] audit: type=1400 audit(1748530045.162:3383): avc:  denied  { setopt } for  pid=8949 comm="syz.3.2043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  153.133204][   T29] audit: type=1326 audit(1748530045.172:3384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.156672][   T29] audit: type=1326 audit(1748530045.172:3385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.180218][   T29] audit: type=1326 audit(1748530045.172:3386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8956 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f6af5eb1225 code=0x7ffc0000
[  153.194598][ T8959] loop4: detected capacity change from 0 to 512
[  153.203660][   T29] audit: type=1326 audit(1748530045.172:3387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.222665][ T8959] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  153.233250][   T29] audit: type=1326 audit(1748530045.172:3388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.233291][   T29] audit: type=1326 audit(1748530045.172:3389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.247118][ T8953] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.266504][   T29] audit: type=1326 audit(1748530045.172:3390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8954 comm="syz.4.2047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f6af5e7e969 code=0x7ffc0000
[  153.330467][ T8959] EXT4-fs (loop4): 1 truncate cleaned up
[  153.339060][ T8959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.359950][ T8964] FAULT_INJECTION: forcing a failure.
[  153.359950][ T8964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.373236][ T8964] CPU: 1 UID: 0 PID: 8964 Comm: syz.3.2049 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  153.373333][ T8964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.373346][ T8964] Call Trace:
[  153.373352][ T8964]  <TASK>
[  153.373360][ T8964]  __dump_stack+0x1d/0x30
[  153.373381][ T8964]  dump_stack_lvl+0xe8/0x140
[  153.373407][ T8964]  dump_stack+0x15/0x1b
[  153.373471][ T8964]  should_fail_ex+0x265/0x280
[  153.373502][ T8964]  should_fail+0xb/0x20
[  153.373592][ T8964]  should_fail_usercopy+0x1a/0x20
[  153.373686][ T8964]  _copy_from_user+0x1c/0xb0
[  153.373707][ T8964]  ___sys_sendmsg+0xc1/0x1d0
[  153.373758][ T8964]  __x64_sys_sendmsg+0xd4/0x160
[  153.373835][ T8964]  x64_sys_call+0x2999/0x2fb0
[  153.373862][ T8964]  do_syscall_64+0xd2/0x200
[  153.373889][ T8964]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  153.373992][ T8964]  ? clear_bhb_loop+0x40/0x90
[  153.374013][ T8964]  ? clear_bhb_loop+0x40/0x90
[  153.374035][ T8964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.374061][ T8964] RIP: 0033:0x7ffb21ede969
[  153.374087][ T8964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.374112][ T8964] RSP: 002b:00007ffb20547038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.374156][ T8964] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21ede969
[  153.374168][ T8964] RDX: 0000000000040010 RSI: 0000200000000140 RDI: 0000000000000003
[  153.374247][ T8964] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  153.374263][ T8964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.374279][ T8964] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  153.374305][ T8964]  </TASK>
[  153.566606][ T8968] netlink: 'syz.3.2050': attribute type 4 has an invalid length.
[  153.581389][ T8968] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.588853][ T8968] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.597730][ T8968] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.605486][ T8968] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.623450][ T8970] netlink: 'syz.5.2051': attribute type 1 has an invalid length.
[  153.637800][ T8970] 8021q: adding VLAN 0 to HW filter on device bond1
[  153.693159][ T8974] loop5: detected capacity change from 0 to 164
[  153.715120][ T3393] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  153.722698][ T3393] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  153.730185][ T3393] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  153.737633][ T8978] IPv6: Can't replace route, no match found
[  153.738025][ T3393] hid-generic 0000:0004:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  153.878313][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.898434][ T8995] smc: net device bond0 applied user defined pnetid SYZ2
[  153.935064][ T8995] smc: net device bond0 erased user defined pnetid SYZ2
[  153.974436][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.064380][ T9018] loop3: detected capacity change from 0 to 512
[  154.087165][ T9018] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  154.102368][ T9018] EXT4-fs (loop3): 1 truncate cleaned up
[  154.108562][ T9018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.204656][ T9036] loop4: detected capacity change from 0 to 164
[  154.212398][ T9036] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  154.823686][ T9057] loop5: detected capacity change from 0 to 128
[  154.899292][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.920356][ T9064] smc: net device bond0 applied user defined pnetid SYZ2
[  154.946364][ T9064] __nla_validate_parse: 21 callbacks suppressed
[  154.946385][ T9064] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2087'.
[  154.962040][ T9064] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2087'.
[  154.971166][ T9064] netlink: 38 bytes leftover after parsing attributes in process `syz.5.2087'.
[  154.986859][ T9064] smc: net device bond0 erased user defined pnetid SYZ2
[  155.037746][ T9074] FAULT_INJECTION: forcing a failure.
[  155.037746][ T9074] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.051079][ T9074] CPU: 0 UID: 0 PID: 9074 Comm: syz.5.2090 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  155.051118][ T9074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.051136][ T9074] Call Trace:
[  155.051144][ T9074]  <TASK>
[  155.051154][ T9074]  __dump_stack+0x1d/0x30
[  155.051177][ T9074]  dump_stack_lvl+0xe8/0x140
[  155.051278][ T9074]  dump_stack+0x15/0x1b
[  155.051305][ T9074]  should_fail_ex+0x265/0x280
[  155.051424][ T9074]  should_fail+0xb/0x20
[  155.051461][ T9074]  should_fail_usercopy+0x1a/0x20
[  155.051509][ T9074]  _copy_from_user+0x1c/0xb0
[  155.051530][ T9074]  ___sys_sendmsg+0xc1/0x1d0
[  155.051582][ T9074]  __x64_sys_sendmsg+0xd4/0x160
[  155.051624][ T9074]  x64_sys_call+0x2999/0x2fb0
[  155.051667][ T9074]  do_syscall_64+0xd2/0x200
[  155.051694][ T9074]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.051738][ T9074]  ? clear_bhb_loop+0x40/0x90
[  155.051760][ T9074]  ? clear_bhb_loop+0x40/0x90
[  155.051782][ T9074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.051875][ T9074] RIP: 0033:0x7f601613e969
[  155.051894][ T9074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.051918][ T9074] RSP: 002b:00007f60147a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.051941][ T9074] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613e969
[  155.051954][ T9074] RDX: 0000000000040010 RSI: 0000200000000140 RDI: 0000000000000003
[  155.051966][ T9074] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  155.052004][ T9074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.052018][ T9074] R13: 0000000000000000 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  155.052039][ T9074]  </TASK>
[  155.054084][ T9073] SELinux:  Context system_u: is not valid (left unmapped).
[  155.266586][ T9073] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  155.296680][ T9081] loop4: detected capacity change from 0 to 512
[  155.308415][ T9073] loop6: detected capacity change from 0 to 2048
[  155.317162][ T9083] FAULT_INJECTION: forcing a failure.
[  155.317162][ T9083] name failslab, interval 1, probability 0, space 0, times 0
[  155.329872][ T9083] CPU: 0 UID: 0 PID: 9083 Comm: syz.5.2095 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  155.329913][ T9083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.329926][ T9083] Call Trace:
[  155.329933][ T9083]  <TASK>
[  155.329941][ T9083]  __dump_stack+0x1d/0x30
[  155.329972][ T9083]  dump_stack_lvl+0xe8/0x140
[  155.330014][ T9083]  dump_stack+0x15/0x1b
[  155.330038][ T9083]  should_fail_ex+0x265/0x280
[  155.330077][ T9083]  should_failslab+0x8c/0xb0
[  155.330105][ T9083]  kmem_cache_alloc_noprof+0x50/0x310
[  155.330133][ T9083]  ? getname_flags+0x80/0x3b0
[  155.330241][ T9083]  getname_flags+0x80/0x3b0
[  155.330266][ T9083]  user_path_at+0x28/0x130
[  155.330300][ T9083]  __se_sys_mount+0x25b/0x2e0
[  155.330322][ T9083]  ? fput+0x8f/0xc0
[  155.330391][ T9083]  __x64_sys_mount+0x67/0x80
[  155.330433][ T9083]  x64_sys_call+0xd36/0x2fb0
[  155.330498][ T9083]  do_syscall_64+0xd2/0x200
[  155.330527][ T9083]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  155.330593][ T9083]  ? clear_bhb_loop+0x40/0x90
[  155.330615][ T9083]  ? clear_bhb_loop+0x40/0x90
[  155.330636][ T9083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.330661][ T9083] RIP: 0033:0x7f601613e969
[  155.330704][ T9083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.330722][ T9083] RSP: 002b:00007f60147a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  155.330747][ T9083] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613e969
[  155.330764][ T9083] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  155.330779][ T9083] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  155.330795][ T9083] R10: 0000000000000021 R11: 0000000000000246 R12: 0000000000000001
[  155.330858][ T9083] R13: 0000000000000001 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  155.330883][ T9083]  </TASK>
[  155.542792][ T9087] loop5: detected capacity change from 0 to 128
[  155.552300][ T9073] Alternate GPT is invalid, using primary GPT.
[  155.558745][ T9073]  loop6: p1 p2 p3
[  155.564352][ T9081] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.577840][ T9081] ext4 filesystem being mounted at /376/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.663964][ T9098] netlink: 'syz.2.2102': attribute type 11 has an invalid length.
[  155.672045][ T9098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2102'.
[  155.785919][ T9096] siw: device registration error -23
[  155.835300][ T9110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2106'.
[  155.850303][ T9096] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9096 comm=syz.5.2100
[  155.872421][ T9110] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.879733][ T9110] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.966483][ T9114] loop6: detected capacity change from 0 to 512
[  155.975469][ T9114] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  156.002256][ T9114] EXT4-fs (loop6): 1 truncate cleaned up
[  156.008427][ T9114] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.044231][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.114391][ T9125] loop4: detected capacity change from 0 to 512
[  156.159125][ T9125] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  156.191617][ T9125] EXT4-fs (loop4): 1 truncate cleaned up
[  156.198163][ T9125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.313785][ T9145] siw: device registration error -23
[  156.324781][ T9145] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9145 comm=syz.5.2120
[  156.382899][ T9154] veth0: entered promiscuous mode
[  156.388793][ T9154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2124'.
[  156.404308][ T9156] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  156.425645][ T9154] veth0 (unregistering): left promiscuous mode
[  156.683153][ T9175] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9175 comm=syz.3.2133
[  156.800450][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.808983][ T9182] smc: net device bond0 applied user defined pnetid SYZ2
[  156.820982][ T9182] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2137'.
[  156.830137][ T9182] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2137'.
[  156.839182][ T9182] netlink: 38 bytes leftover after parsing attributes in process `syz.3.2137'.
[  156.849413][ T9182] smc: net device bond0 erased user defined pnetid SYZ2
[  156.898686][ T3393] IPVS: starting estimator thread 0...
[  156.953405][ T9203] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9203 comm=syz.3.2144
[  156.990101][ T9208] loop3: detected capacity change from 0 to 128
[  157.001808][ T9208] ext4 filesystem being mounted at /458/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  157.077585][ T9195] IPVS: using max 1920 ests per chain, 96000 per kthread
[  157.153999][ T9215] FAULT_INJECTION: forcing a failure.
[  157.153999][ T9215] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.167154][ T9215] CPU: 0 UID: 0 PID: 9215 Comm: syz.3.2148 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  157.167191][ T9215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.167257][ T9215] Call Trace:
[  157.167263][ T9215]  <TASK>
[  157.167270][ T9215]  __dump_stack+0x1d/0x30
[  157.167289][ T9215]  dump_stack_lvl+0xe8/0x140
[  157.167307][ T9215]  dump_stack+0x15/0x1b
[  157.167374][ T9215]  should_fail_ex+0x265/0x280
[  157.167470][ T9215]  should_fail+0xb/0x20
[  157.167606][ T9215]  should_fail_usercopy+0x1a/0x20
[  157.167653][ T9215]  _copy_to_user+0x20/0xa0
[  157.167673][ T9215]  simple_read_from_buffer+0xb5/0x130
[  157.167703][ T9215]  proc_fail_nth_read+0x100/0x140
[  157.167781][ T9215]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.167822][ T9215]  vfs_read+0x1a0/0x6f0
[  157.167851][ T9215]  ? __rcu_read_unlock+0x4f/0x70
[  157.167871][ T9215]  ? __fget_files+0x184/0x1c0
[  157.167935][ T9215]  ksys_read+0xda/0x1a0
[  157.167980][ T9215]  __x64_sys_read+0x40/0x50
[  157.168015][ T9215]  x64_sys_call+0x2d77/0x2fb0
[  157.168089][ T9215]  do_syscall_64+0xd2/0x200
[  157.168112][ T9215]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  157.168136][ T9215]  ? clear_bhb_loop+0x40/0x90
[  157.168176][ T9215]  ? clear_bhb_loop+0x40/0x90
[  157.168196][ T9215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.168282][ T9215] RIP: 0033:0x7ffb21edd37c
[  157.168295][ T9215] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  157.168311][ T9215] RSP: 002b:00007ffb20547030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.168328][ T9215] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21edd37c
[  157.168340][ T9215] RDX: 000000000000000f RSI: 00007ffb205470a0 RDI: 0000000000000006
[  157.168351][ T9215] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  157.168410][ T9215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.168421][ T9215] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  157.168440][ T9215]  </TASK>
[  157.399172][ T9219] smc: net device bond0 applied user defined pnetid SYZ2
[  157.410189][ T9219] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2150'.
[  157.420798][ T9219] smc: net device bond0 erased user defined pnetid SYZ2
[  157.518415][ T9232] netlink: 'syz.5.2154': attribute type 6 has an invalid length.
[  157.788149][ T9236] futex_wake_op: syz.6.2156 tries to shift op by -1; fix this program
[  157.873208][ T9242] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  157.912799][ T9245] netlink: 'syz.6.2160': attribute type 11 has an invalid length.
[  158.355157][   T29] kauditd_printk_skb: 204 callbacks suppressed
[  158.355176][   T29] audit: type=1326 audit(1748530050.462:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.390371][   T29] audit: type=1326 audit(1748530050.502:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.413945][   T29] audit: type=1326 audit(1748530050.502:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.437636][   T29] audit: type=1326 audit(1748530050.502:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.461225][   T29] audit: type=1326 audit(1748530050.502:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.484756][   T29] audit: type=1326 audit(1748530050.502:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9267 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7febd1151225 code=0x7ffc0000
[  158.508255][   T29] audit: type=1326 audit(1748530050.502:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.531852][   T29] audit: type=1326 audit(1748530050.502:3602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.550109][ T9271] netlink: 'syz.2.2171': attribute type 11 has an invalid length.
[  158.555260][   T29] audit: type=1326 audit(1748530050.502:3603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.555332][   T29] audit: type=1326 audit(1748530050.502:3604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9263 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  158.668598][ T9279] FAULT_INJECTION: forcing a failure.
[  158.668598][ T9279] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.681806][ T9279] CPU: 0 UID: 0 PID: 9279 Comm: syz.5.2175 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  158.681838][ T9279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.681852][ T9279] Call Trace:
[  158.681858][ T9279]  <TASK>
[  158.681868][ T9279]  __dump_stack+0x1d/0x30
[  158.681923][ T9279]  dump_stack_lvl+0xe8/0x140
[  158.681949][ T9279]  dump_stack+0x15/0x1b
[  158.681967][ T9279]  should_fail_ex+0x265/0x280
[  158.682020][ T9279]  should_fail+0xb/0x20
[  158.682057][ T9279]  should_fail_usercopy+0x1a/0x20
[  158.682121][ T9279]  _copy_to_user+0x20/0xa0
[  158.682144][ T9279]  simple_read_from_buffer+0xb5/0x130
[  158.682177][ T9279]  proc_fail_nth_read+0x100/0x140
[  158.682217][ T9279]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  158.682406][ T9279]  vfs_read+0x1a0/0x6f0
[  158.682446][ T9279]  ? __rcu_read_unlock+0x4f/0x70
[  158.682469][ T9279]  ? __rcu_read_unlock+0x4f/0x70
[  158.682490][ T9279]  ? __fget_files+0x184/0x1c0
[  158.682512][ T9279]  ksys_read+0xda/0x1a0
[  158.682608][ T9279]  __x64_sys_read+0x40/0x50
[  158.682648][ T9279]  x64_sys_call+0x2d77/0x2fb0
[  158.682676][ T9279]  do_syscall_64+0xd2/0x200
[  158.682768][ T9279]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.682806][ T9279]  ? clear_bhb_loop+0x40/0x90
[  158.682860][ T9279]  ? clear_bhb_loop+0x40/0x90
[  158.682890][ T9279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.682915][ T9279] RIP: 0033:0x7f601613d37c
[  158.682935][ T9279] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  158.682958][ T9279] RSP: 002b:00007f60147a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  158.682999][ T9279] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613d37c
[  158.683010][ T9279] RDX: 000000000000000f RSI: 00007f60147a70a0 RDI: 0000000000000004
[  158.683022][ T9279] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  158.683033][ T9279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.683052][ T9279] R13: 0000000000000000 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  158.683078][ T9279]  </TASK>
[  159.083693][ T9299] netlink: 'syz.5.2183': attribute type 11 has an invalid length.
[  159.098767][ T9303] smc: net device bond0 applied user defined pnetid SYZ2
[  159.125616][ T9306] smc: net device bond0 erased user defined pnetid SYZ2
[  159.337778][ T9334] netlink: 'syz.3.2198': attribute type 11 has an invalid length.
[  159.353472][ T3395] hid-generic 0000:0004:0000.000B: unknown main item tag 0x0
[  159.360981][ T3395] hid-generic 0000:0004:0000.000B: unknown main item tag 0x0
[  159.368445][ T3395] hid-generic 0000:0004:0000.000B: unknown main item tag 0x0
[  159.383701][ T9338] loop3: detected capacity change from 0 to 1764
[  159.384223][ T3395] hid-generic 0000:0004:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  159.469611][ T9348] loop6: detected capacity change from 0 to 512
[  159.477353][ T9348] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  159.489658][ T9348] EXT4-fs (loop6): 1 truncate cleaned up
[  159.676477][ T9358] loop4: detected capacity change from 0 to 128
[  159.685599][ T9358] ext4 filesystem being mounted at /389/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  159.927154][ T9370] netlink: 'syz.2.2210': attribute type 11 has an invalid length.
[  160.122390][ T9385] loop5: detected capacity change from 0 to 128
[  160.199890][ T9391] loop4: detected capacity change from 0 to 512
[  160.207572][ T9391] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  160.223650][ T9391] EXT4-fs (loop4): 1 truncate cleaned up
[  160.292015][ T9396] netlink: 'syz.3.2222': attribute type 11 has an invalid length.
[  160.300004][ T9396] __nla_validate_parse: 16 callbacks suppressed
[  160.300017][ T9396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2222'.
[  160.342181][ T9400] loop3: detected capacity change from 0 to 512
[  160.349047][ T9400] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  160.360971][ T9400] EXT4-fs (loop3): 1 truncate cleaned up
[  160.673669][ T9405] smc: net device bond0 applied user defined pnetid SYZ2
[  160.702924][ T9405] netlink: 224 bytes leftover after parsing attributes in process `syz.6.2224'.
[  160.712071][ T9405] netlink: 224 bytes leftover after parsing attributes in process `syz.6.2224'.
[  160.721213][ T9405] netlink: 38 bytes leftover after parsing attributes in process `syz.6.2224'.
[  160.740482][ T9405] smc: net device bond0 erased user defined pnetid SYZ2
[  160.783104][ T9407] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2225'.
[  160.966253][ T9424] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2233'.
[  161.011359][ T9430] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2236'.
[  161.020547][ T9430] bridge_slave_1: left allmulticast mode
[  161.026235][ T9430] bridge_slave_1: left promiscuous mode
[  161.032200][ T9430] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.049441][ T9430] bridge_slave_0: left allmulticast mode
[  161.055224][ T9430] bridge_slave_0: left promiscuous mode
[  161.061156][ T9430] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.070928][ T3321] EXT4-fs unmount: 9 callbacks suppressed
[  161.070942][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.099447][ T9434] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  161.169285][ T9440] FAULT_INJECTION: forcing a failure.
[  161.169285][ T9440] name failslab, interval 1, probability 0, space 0, times 0
[  161.182051][ T9440] CPU: 0 UID: 0 PID: 9440 Comm: syz.5.2239 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  161.182087][ T9440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.182104][ T9440] Call Trace:
[  161.182112][ T9440]  <TASK>
[  161.182121][ T9440]  __dump_stack+0x1d/0x30
[  161.182150][ T9440]  dump_stack_lvl+0xe8/0x140
[  161.182177][ T9440]  dump_stack+0x15/0x1b
[  161.182198][ T9440]  should_fail_ex+0x265/0x280
[  161.182237][ T9440]  should_failslab+0x8c/0xb0
[  161.182296][ T9440]  kmem_cache_alloc_node_noprof+0x57/0x320
[  161.182328][ T9440]  ? __alloc_skb+0x101/0x320
[  161.182351][ T9440]  __alloc_skb+0x101/0x320
[  161.182374][ T9440]  netlink_alloc_large_skb+0xba/0xf0
[  161.182466][ T9440]  netlink_sendmsg+0x3cf/0x6b0
[  161.182496][ T9440]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.182526][ T9440]  __sock_sendmsg+0x145/0x180
[  161.182606][ T9440]  ____sys_sendmsg+0x31e/0x4e0
[  161.182680][ T9440]  ___sys_sendmsg+0x17b/0x1d0
[  161.182725][ T9440]  __x64_sys_sendmsg+0xd4/0x160
[  161.182799][ T9440]  x64_sys_call+0x2999/0x2fb0
[  161.182822][ T9440]  do_syscall_64+0xd2/0x200
[  161.182903][ T9440]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  161.182930][ T9440]  ? clear_bhb_loop+0x40/0x90
[  161.182952][ T9440]  ? clear_bhb_loop+0x40/0x90
[  161.182975][ T9440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.183045][ T9440] RIP: 0033:0x7f601613e969
[  161.183060][ T9440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.183144][ T9440] RSP: 002b:00007f60147a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.183163][ T9440] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613e969
[  161.183175][ T9440] RDX: 0000000000000000 RSI: 000020000000c2c0 RDI: 0000000000000003
[  161.183188][ T9440] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  161.183199][ T9440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.183212][ T9440] R13: 0000000000000000 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  161.183232][ T9440]  </TASK>
[  161.402327][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.431308][ T9445] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2241'.
[  161.480259][ T9449] loop5: detected capacity change from 0 to 512
[  161.529171][ T9454] netlink: 'syz.2.2245': attribute type 11 has an invalid length.
[  161.537115][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2245'.
[  161.557474][ T9458] loop3: detected capacity change from 0 to 512
[  161.566150][ T9460] loop5: detected capacity change from 0 to 512
[  161.573204][ T9458] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  161.573279][ T9462] netlink: '': attribute type 1 has an invalid length.
[  161.583513][ T9460] EXT4-fs: Ignoring removed i_version option
[  161.598521][ T9458] EXT4-fs (loop3): 1 truncate cleaned up
[  161.598769][ T9460] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  161.614370][ T9458] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.630922][ T9460] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[  161.647595][ T9460] System zones: 1-12
[  161.652159][ T9460] EXT4-fs (loop5): write access unavailable, skipping orphan cleanup
[  161.665770][ T9460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  161.689112][ T9460] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.697910][ T9460] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.709346][ T9462] lo speed is unknown, defaulting to 1000
[  161.715585][ T9462] lo speed is unknown, defaulting to 1000
[  161.773185][ T9468] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2249'.
[  161.825236][ T9471] loop6: detected capacity change from 0 to 512
[  161.834186][ T9471] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  161.847870][ T9471] EXT4-fs (loop6): 1 truncate cleaned up
[  161.854154][ T9471] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.907565][ T9476] tipc: Started in network mode
[  161.912528][ T9476] tipc: Node identity ac14140f, cluster identity 4711
[  161.919503][ T9476] tipc: New replicast peer: 255.255.255.83
[  161.925487][ T9476] tipc: Enabled bearer <udp:�>, priority 10
[  162.001309][ T9485] netlink: '': attribute type 1 has an invalid length.
[  162.027784][ T9485] lo speed is unknown, defaulting to 1000
[  162.036946][ T9485] lo speed is unknown, defaulting to 1000
[  162.205712][ T9498] veth0_macvtap: left promiscuous mode
[  162.386226][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.460055][ T9505] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  162.489165][ T9505] loop3: detected capacity change from 0 to 2048
[  162.502025][ T9505] msdos: Unknown parameter ''
[  162.543266][ T9519] FAULT_INJECTION: forcing a failure.
[  162.543266][ T9519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.543525][ T9517] loop4: detected capacity change from 0 to 512
[  162.556498][ T9519] CPU: 0 UID: 0 PID: 9519 Comm: syz.3.2264 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  162.556581][ T9519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.556601][ T9519] Call Trace:
[  162.556610][ T9519]  <TASK>
[  162.556622][ T9519]  __dump_stack+0x1d/0x30
[  162.556651][ T9519]  dump_stack_lvl+0xe8/0x140
[  162.556678][ T9519]  dump_stack+0x15/0x1b
[  162.556701][ T9519]  should_fail_ex+0x265/0x280
[  162.556775][ T9519]  should_fail+0xb/0x20
[  162.556812][ T9519]  should_fail_usercopy+0x1a/0x20
[  162.556857][ T9519]  _copy_from_user+0x1c/0xb0
[  162.556924][ T9519]  do_fcntl+0x5a3/0xdf0
[  162.557099][ T9519]  ? selinux_file_fcntl+0x1cb/0x1e0
[  162.557135][ T9519]  __se_sys_fcntl+0xb1/0x120
[  162.557171][ T9519]  __x64_sys_fcntl+0x43/0x50
[  162.557205][ T9519]  x64_sys_call+0x1f1d/0x2fb0
[  162.557234][ T9519]  do_syscall_64+0xd2/0x200
[  162.557332][ T9519]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  162.557381][ T9519]  ? clear_bhb_loop+0x40/0x90
[  162.557423][ T9519]  ? clear_bhb_loop+0x40/0x90
[  162.557451][ T9519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.557480][ T9519] RIP: 0033:0x7ffb21ede969
[  162.557501][ T9519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.557525][ T9519] RSP: 002b:00007ffb20547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  162.557554][ T9519] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21ede969
[  162.557571][ T9519] RDX: 0000200000000000 RSI: 0000000000000026 RDI: 0000000000000003
[  162.557587][ T9519] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  162.557603][ T9519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.557619][ T9519] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  162.557671][ T9519]  </TASK>
[  162.618077][ T9521] smc: net device bond0 applied user defined pnetid SYZ2
[  162.730750][ T9517] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  162.772927][ T9521] smc: net device bond0 erased user defined pnetid SYZ2
[  162.789913][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.819652][ T9517] EXT4-fs (loop4): 1 truncate cleaned up
[  162.825441][ T9528] loop6: detected capacity change from 0 to 128
[  162.832025][ T9525] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.832639][ T9517] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.839086][ T9525] bridge0: port 2(bridge_slave_1) entered listening state
[  162.858383][ T9525] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.865520][ T9525] bridge0: port 1(bridge_slave_0) entered listening state
[  162.874836][ T9528] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  162.887946][ T9525] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  162.904278][ T9528] ext4 filesystem being mounted at /169/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  163.040252][    T9] tipc: Node number set to 2886997007
[  163.051439][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.068722][ T6708] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  163.094989][ T9533] loop4: detected capacity change from 0 to 512
[  163.103505][ T9533] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  163.115568][ T9533] EXT4-fs (loop4): 1 truncate cleaned up
[  163.122005][ T9533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.215184][ T9550] loop6: detected capacity change from 0 to 2048
[  163.287916][ T9553] smc: net device bond0 applied user defined pnetid SYZ2
[  163.305103][ T9553] smc: net device bond0 erased user defined pnetid SYZ2
[  163.468596][ T9557] siw: device registration error -23
[  163.476841][ T9557] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9557 comm=syz.6.2278
[  163.696746][   T29] kauditd_printk_skb: 90 callbacks suppressed
[  163.696836][   T29] audit: type=1400 audit(1748530055.802:3695): avc:  denied  { read write } for  pid=9574 comm="syz.3.2287" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  163.727901][   T29] audit: type=1400 audit(1748530055.802:3696): avc:  denied  { open } for  pid=9574 comm="syz.3.2287" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  163.752734][   T29] audit: type=1400 audit(1748530055.802:3697): avc:  denied  { ioctl } for  pid=9574 comm="syz.3.2287" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  163.782317][ T9573] loop6: detected capacity change from 0 to 1024
[  163.812238][ T9573] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.826288][ T9579] smc: net device bond0 applied user defined pnetid SYZ2
[  163.845352][ T9579] smc: net device bond0 erased user defined pnetid SYZ2
[  163.881904][ T9588] smc: net device bond0 applied user defined pnetid SYZ2
[  163.897699][ T9588] smc: net device bond0 erased user defined pnetid SYZ2
[  163.928748][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.959579][ T9594] loop4: detected capacity change from 0 to 512
[  163.973523][ T9594] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  163.986476][ T9594] EXT4-fs (loop4): 1 truncate cleaned up
[  163.994298][ T9594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.059539][ T9609] smc: net device bond0 applied user defined pnetid SYZ2
[  164.071848][ T9609] smc: net device bond0 erased user defined pnetid SYZ2
[  164.104030][   T29] audit: type=1326 audit(1748530056.212:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9612 comm="syz.3.2303" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffb21ede969 code=0x0
[  164.159265][   T29] audit: type=1326 audit(1748530056.262:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  164.187196][   T29] audit: type=1326 audit(1748530056.262:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  164.210767][   T29] audit: type=1326 audit(1748530056.292:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febd111d2d0 code=0x7ffc0000
[  164.234227][   T29] audit: type=1326 audit(1748530056.292:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febd111d2d0 code=0x7ffc0000
[  164.257820][   T29] audit: type=1326 audit(1748530056.292:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  164.281281][   T29] audit: type=1326 audit(1748530056.292:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9621 comm="syz.2.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  164.477378][ T9627] 9pnet_fd: Insufficient options for proto=fd
[  164.525467][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.548582][ T9630] IPVS: Error joining to the multicast group
[  164.637632][ T9638] loop6: detected capacity change from 0 to 128
[  164.646282][ T9638] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  164.660436][ T6344] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  164.671343][ T9638] ext4 filesystem being mounted at /185/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  164.725553][ T6708] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.726408][ T9642] smc: net device bond0 applied user defined pnetid SYZ2
[  164.747166][ T9642] smc: net device bond0 erased user defined pnetid SYZ2
[  164.807398][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.833326][ T9650] loop4: detected capacity change from 0 to 1024
[  164.853681][ T9650] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.867483][ T9650] ext4 filesystem being mounted at /406/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.903340][ T9658] FAULT_INJECTION: forcing a failure.
[  164.903340][ T9658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.916528][ T9658] CPU: 0 UID: 0 PID: 9658 Comm: syz.5.2320 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  164.916568][ T9658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.916581][ T9658] Call Trace:
[  164.916587][ T9658]  <TASK>
[  164.916603][ T9658]  __dump_stack+0x1d/0x30
[  164.916710][ T9658]  dump_stack_lvl+0xe8/0x140
[  164.916812][ T9658]  dump_stack+0x15/0x1b
[  164.916833][ T9658]  should_fail_ex+0x265/0x280
[  164.916876][ T9658]  should_fail+0xb/0x20
[  164.916914][ T9658]  should_fail_usercopy+0x1a/0x20
[  164.916957][ T9658]  _copy_to_user+0x20/0xa0
[  164.916993][ T9658]  simple_read_from_buffer+0xb5/0x130
[  164.917098][ T9658]  proc_fail_nth_read+0x100/0x140
[  164.917180][ T9658]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  164.917220][ T9658]  vfs_read+0x1a0/0x6f0
[  164.917256][ T9658]  ? __rcu_read_unlock+0x4f/0x70
[  164.917353][ T9658]  ? __fget_files+0x184/0x1c0
[  164.917378][ T9658]  ksys_read+0xda/0x1a0
[  164.917412][ T9658]  __x64_sys_read+0x40/0x50
[  164.917455][ T9658]  x64_sys_call+0x2d77/0x2fb0
[  164.917476][ T9658]  do_syscall_64+0xd2/0x200
[  164.917507][ T9658]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  164.917586][ T9658]  ? clear_bhb_loop+0x40/0x90
[  164.917618][ T9658]  ? clear_bhb_loop+0x40/0x90
[  164.917648][ T9658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.917677][ T9658] RIP: 0033:0x7f601613d37c
[  164.917755][ T9658] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  164.917774][ T9658] RSP: 002b:00007f60147a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  164.917799][ T9658] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613d37c
[  164.917817][ T9658] RDX: 000000000000000f RSI: 00007f60147a70a0 RDI: 0000000000000004
[  164.917833][ T9658] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  164.917850][ T9658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.917866][ T9658] R13: 0000000000000000 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  164.917894][ T9658]  </TASK>
[  165.137351][ T9668] loop6: detected capacity change from 0 to 512
[  165.145385][ T9668] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  165.170685][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.186854][ T9668] EXT4-fs (loop6): 1 truncate cleaned up
[  165.194080][ T9668] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.201493][ T9678] loop5: detected capacity change from 0 to 1024
[  165.244712][ T9683] loop4: detected capacity change from 0 to 512
[  165.252962][ T9683] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  165.264494][ T9683] EXT4-fs (loop4): 1 truncate cleaned up
[  165.271826][ T9683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.276986][ T9686] tipc: Started in network mode
[  165.288959][ T9686] tipc: Node identity 1, cluster identity 4711
[  165.295281][ T9686] tipc: Node number set to 1
[  165.978776][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.018402][ T9702] FAULT_INJECTION: forcing a failure.
[  166.018402][ T9702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.031616][ T9702] CPU: 1 UID: 0 PID: 9702 Comm: syz.3.2336 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  166.031722][ T9702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.031739][ T9702] Call Trace:
[  166.031748][ T9702]  <TASK>
[  166.031758][ T9702]  __dump_stack+0x1d/0x30
[  166.031856][ T9702]  dump_stack_lvl+0xe8/0x140
[  166.031878][ T9702]  dump_stack+0x15/0x1b
[  166.031969][ T9702]  should_fail_ex+0x265/0x280
[  166.032001][ T9702]  should_fail+0xb/0x20
[  166.032028][ T9702]  should_fail_usercopy+0x1a/0x20
[  166.032069][ T9702]  _copy_from_user+0x1c/0xb0
[  166.032158][ T9702]  perf_copy_attr+0x145/0x610
[  166.032194][ T9702]  __se_sys_perf_event_open+0x67/0x11c0
[  166.032267][ T9702]  ? vfs_write+0x75e/0x8e0
[  166.032310][ T9702]  ? __rcu_read_unlock+0x4f/0x70
[  166.032346][ T9702]  __x64_sys_perf_event_open+0x67/0x80
[  166.032386][ T9702]  x64_sys_call+0x27ec/0x2fb0
[  166.032440][ T9702]  do_syscall_64+0xd2/0x200
[  166.032472][ T9702]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  166.032581][ T9702]  ? clear_bhb_loop+0x40/0x90
[  166.032603][ T9702]  ? clear_bhb_loop+0x40/0x90
[  166.032625][ T9702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.032669][ T9702] RIP: 0033:0x7ffb21ede969
[  166.032689][ T9702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.032713][ T9702] RSP: 002b:00007ffb20547038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  166.032749][ T9702] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21ede969
[  166.032766][ T9702] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[  166.032781][ T9702] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  166.032794][ T9702] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  166.032812][ T9702] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  166.032838][ T9702]  </TASK>
[  166.346809][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.448784][ T9722] __nla_validate_parse: 97 callbacks suppressed
[  166.448878][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2345'.
[  166.486623][ T9726] loop4: detected capacity change from 0 to 1024
[  166.498840][ T9724] loop3: detected capacity change from 0 to 512
[  166.523693][ T9726] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.536572][ T9724] loop3: detected capacity change from 0 to 2048
[  166.548231][ T9724] EXT4-fs: Ignoring removed bh option
[  166.567317][ T9724] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.037895][ T9744] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2346'.
[  167.053637][ T9742] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2346'.
[  167.337230][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.429062][ T9756] loop6: detected capacity change from 0 to 164
[  167.436645][ T9756] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  167.448205][ T9756] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  167.563306][ T8203] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  167.590361][ T8203] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  167.602607][ T8203] EXT4-fs (loop3): This should not happen!! Data will be lost
[  167.602607][ T8203] 
[  167.612269][ T8203] EXT4-fs (loop3): Total free blocks count 0
[  167.618259][ T8203] EXT4-fs (loop3): Free/Dirty block details
[  167.624195][ T8203] EXT4-fs (loop3): free_blocks=2415919104
[  167.630037][ T8203] EXT4-fs (loop3): dirty_blocks=7456
[  167.635396][ T8203] EXT4-fs (loop3): Block reservation details
[  167.641420][ T8203] EXT4-fs (loop3): i_reserved_data_blocks=466
[  167.648523][ T9762] wg2: left promiscuous mode
[  167.653253][ T9762] wg2: left allmulticast mode
[  167.654681][ T8233] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28
[  167.672287][ T9762] wg2: entered promiscuous mode
[  167.677242][ T9762] wg2: entered allmulticast mode
[  168.372456][ T9797] loop5: detected capacity change from 0 to 512
[  168.532123][ T9806] lo speed is unknown, defaulting to 1000
[  168.554972][ T9806] lo speed is unknown, defaulting to 1000
[  168.569837][ T9809] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2374'.
[  168.734037][ T9815] loop4: detected capacity change from 0 to 512
[  168.742966][ T9817] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2378'.
[  168.744912][ T9815] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  168.765347][ T9815] EXT4-fs (loop4): 1 truncate cleaned up
[  168.771863][ T9815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.213255][ T9841] smc: net device bond0 applied user defined pnetid SYZ2
[  169.224698][ T9841] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2387'.
[  169.233862][ T9841] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2387'.
[  169.242941][ T9841] netlink: 38 bytes leftover after parsing attributes in process `syz.3.2387'.
[  169.346179][ T9843] smc: net device bond0 erased user defined pnetid SYZ2
[  169.388137][ T9844] wg2: left promiscuous mode
[  169.392904][ T9844] wg2: left allmulticast mode
[  169.452101][ T9845] wg2: entered promiscuous mode
[  169.457040][ T9845] wg2: entered allmulticast mode
[  169.601623][ T9848] loop3: detected capacity change from 0 to 164
[  169.621570][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.650653][ T9848] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  169.712836][ T9847] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  169.745388][ T9850] loop4: detected capacity change from 0 to 2048
[  169.832058][ T9852] program syz.4.2390 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  169.843212][ T9852] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2390'.
[  169.891585][ T9856] loop3: detected capacity change from 0 to 512
[  169.898989][ T9856] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  169.911305][ T9856] EXT4-fs (loop3): 1 truncate cleaned up
[  169.917476][ T9856] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.940209][ T9854] lo speed is unknown, defaulting to 1000
[  169.946246][ T9854] lo speed is unknown, defaulting to 1000
[  169.970793][ T9858] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2391'.
[  170.045459][ T9863] loop5: detected capacity change from 0 to 128
[  170.164139][   T29] kauditd_printk_skb: 86 callbacks suppressed
[  170.164153][   T29] audit: type=1326 audit(1748530062.272:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9870 comm="syz.5.2397" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f601613e969 code=0x0
[  170.259911][ T9875] loop4: detected capacity change from 0 to 512
[  170.297661][ T9875] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  170.343635][ T9875] EXT4-fs (loop4): 1 truncate cleaned up
[  170.350007][ T9875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.557035][   T29] audit: type=1326 audit(1748530062.662:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.583112][   T29] audit: type=1326 audit(1748530062.662:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.606741][   T29] audit: type=1326 audit(1748530062.662:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.630213][   T29] audit: type=1326 audit(1748530062.662:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.653805][   T29] audit: type=1326 audit(1748530062.662:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.677437][   T29] audit: type=1326 audit(1748530062.662:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.701135][   T29] audit: type=1326 audit(1748530062.662:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.724516][   T29] audit: type=1326 audit(1748530062.662:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.748002][   T29] audit: type=1326 audit(1748530062.662:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9882 comm="syz.6.2401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f48924ce969 code=0x7ffc0000
[  170.782451][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.878999][ T9890] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.322811][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.370565][ T9895] wg2: left promiscuous mode
[  171.375233][ T9895] wg2: left allmulticast mode
[  171.420631][ T9897] 9pnet_fd: Insufficient options for proto=fd
[  171.435255][ T9895] wg2: entered promiscuous mode
[  171.440361][ T9895] wg2: entered allmulticast mode
[  171.499046][ T9904] loop4: detected capacity change from 0 to 1024
[  171.506032][ T9904] EXT4-fs: Ignoring removed bh option
[  171.511670][ T9904] EXT4-fs: inline encryption not supported
[  171.528341][ T9904] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  171.550652][ T9904] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  171.570354][ T9904] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 2: comm syz.4.2409: lblock 2 mapped to illegal pblock 2 (length 1)
[  171.590299][ T9904] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 48: comm syz.4.2409: lblock 0 mapped to illegal pblock 48 (length 1)
[  171.609768][ T9904] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2409: Failed to acquire dquot type 0
[  171.621850][ T9904] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  171.650014][ T9899] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9899 comm=syz.3.2408
[  171.666495][ T9904] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.2409: mark_inode_dirty error
[  171.700700][ T9904] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  171.713333][ T9904] EXT4-fs (loop4): 1 orphan inode deleted
[  171.720490][ T9904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.733120][ T8258] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:61: lblock 1 mapped to illegal pblock 1 (length 1)
[  171.757874][ T8258] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:61: Failed to release dquot type 0
[  171.783615][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.800750][ T9912] loop5: detected capacity change from 0 to 128
[  171.801284][ T3321] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[  171.833057][ T3321] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  171.845000][ T3321] EXT4-fs error (device loop4): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[  171.951485][ T9923] loop3: detected capacity change from 0 to 2048
[  172.104218][ T9938] loop5: detected capacity change from 0 to 128
[  172.179334][ T9944] FAULT_INJECTION: forcing a failure.
[  172.179334][ T9944] name failslab, interval 1, probability 0, space 0, times 0
[  172.192193][ T9944] CPU: 1 UID: 0 PID: 9944 Comm: syz.5.2426 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  172.192232][ T9944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.192249][ T9944] Call Trace:
[  172.192258][ T9944]  <TASK>
[  172.192269][ T9944]  __dump_stack+0x1d/0x30
[  172.192295][ T9944]  dump_stack_lvl+0xe8/0x140
[  172.192372][ T9944]  dump_stack+0x15/0x1b
[  172.192469][ T9944]  should_fail_ex+0x265/0x280
[  172.192510][ T9944]  should_failslab+0x8c/0xb0
[  172.192538][ T9944]  __kmalloc_noprof+0xa5/0x3e0
[  172.192567][ T9944]  ? alloc_workqueue+0x163/0x1330
[  172.192638][ T9944]  alloc_workqueue+0x163/0x1330
[  172.192665][ T9944]  ? __rcu_read_unlock+0x4f/0x70
[  172.192688][ T9944]  ? mutex_lock+0xd/0x30
[  172.192710][ T9944]  ? bd_prepare_to_claim+0x1c1/0x230
[  172.192802][ T9944]  ? __pfx_loop_configure+0x10/0x10
[  172.192849][ T9944]  ? loop_set_status_from_info+0x114/0x170
[  172.192976][ T9944]  loop_configure+0x666/0xa50
[  172.193019][ T9944]  lo_ioctl+0x559/0x15d0
[  172.193062][ T9944]  ? avc_has_extended_perms+0x73d/0x940
[  172.193143][ T9944]  ? blkdev_common_ioctl+0xad6/0x1ac0
[  172.193188][ T9944]  ? do_vfs_ioctl+0x9df/0x11d0
[  172.193229][ T9944]  ? selinux_file_ioctl+0x2e3/0x370
[  172.193255][ T9944]  ? __pfx_lo_ioctl+0x10/0x10
[  172.193296][ T9944]  ? __pfx_blkdev_ioctl+0x10/0x10
[  172.193330][ T9944]  blkdev_ioctl+0x34f/0x440
[  172.193373][ T9944]  __se_sys_ioctl+0xce/0x140
[  172.193485][ T9944]  __x64_sys_ioctl+0x43/0x50
[  172.193585][ T9944]  x64_sys_call+0x19a8/0x2fb0
[  172.193666][ T9944]  do_syscall_64+0xd2/0x200
[  172.193700][ T9944]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.193734][ T9944]  ? clear_bhb_loop+0x40/0x90
[  172.193763][ T9944]  ? clear_bhb_loop+0x40/0x90
[  172.193793][ T9944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.193863][ T9944] RIP: 0033:0x7f601613e969
[  172.193975][ T9944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.193996][ T9944] RSP: 002b:00007f60147a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.194015][ T9944] RAX: ffffffffffffffda RBX: 00007f6016365fa0 RCX: 00007f601613e969
[  172.194104][ T9944] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000003
[  172.194120][ T9944] RBP: 00007f60147a7090 R08: 0000000000000000 R09: 0000000000000000
[  172.194133][ T9944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.194145][ T9944] R13: 0000000000000000 R14: 00007f6016365fa0 R15: 00007ffd00ae7018
[  172.194165][ T9944]  </TASK>
[  172.539039][ T9947] loop3: detected capacity change from 0 to 1024
[  172.566343][ T9947] EXT4-fs: Ignoring removed bh option
[  172.601671][ T9939] siw: device registration error -23
[  172.611219][ T9947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.613716][ T9939] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9939 comm=syz.2.2423
[  172.635836][ T9949] lo speed is unknown, defaulting to 1000
[  172.645448][ T9949] lo speed is unknown, defaulting to 1000
[  172.689278][ T9947] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.2427: Abort forced by user
[  172.713406][ T9947] EXT4-fs (loop3): Remounting filesystem read-only
[  172.720062][ T9947] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  172.792357][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.808219][ T9956] wg2: left promiscuous mode
[  172.812903][ T9956] wg2: left allmulticast mode
[  172.854661][ T9956] wg2: entered promiscuous mode
[  172.859690][ T9956] wg2: entered allmulticast mode
[  172.950400][ T9971] FAULT_INJECTION: forcing a failure.
[  172.950400][ T9971] name failslab, interval 1, probability 0, space 0, times 0
[  172.963169][ T9971] CPU: 1 UID: 0 PID: 9971 Comm: syz.4.2436 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  172.963217][ T9971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.963231][ T9971] Call Trace:
[  172.963237][ T9971]  <TASK>
[  172.963245][ T9971]  __dump_stack+0x1d/0x30
[  172.963350][ T9971]  dump_stack_lvl+0xe8/0x140
[  172.963371][ T9971]  dump_stack+0x15/0x1b
[  172.963386][ T9971]  should_fail_ex+0x265/0x280
[  172.963423][ T9971]  should_failslab+0x8c/0xb0
[  172.963499][ T9971]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  172.963542][ T9971]  ? sock_alloc_inode+0x34/0xa0
[  172.963594][ T9971]  ? __pfx_sock_alloc_inode+0x10/0x10
[  172.963690][ T9971]  sock_alloc_inode+0x34/0xa0
[  172.963733][ T9971]  alloc_inode+0x40/0x170
[  172.963769][ T9971]  __sock_create+0x122/0x5b0
[  172.963791][ T9971]  ? bpf_ringbuf_output+0x110/0x150
[  172.963842][ T9971]  ? __rcu_read_unlock+0x34/0x70
[  172.963892][ T9971]  sock_create_kern+0x38/0x50
[  172.963910][ T9971]  udp_sock_create6+0x68/0x3d0
[  172.963940][ T9971]  fou_nl_add_doit+0xd8/0x410
[  172.963977][ T9971]  genl_family_rcv_msg_doit+0x140/0x1b0
[  172.964031][ T9971]  genl_rcv_msg+0x422/0x460
[  172.964122][ T9971]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  172.964148][ T9971]  netlink_rcv_skb+0x120/0x220
[  172.964189][ T9971]  ? __pfx_genl_rcv_msg+0x10/0x10
[  172.964294][ T9971]  genl_rcv+0x28/0x40
[  172.964330][ T9971]  netlink_unicast+0x59e/0x670
[  172.964362][ T9971]  netlink_sendmsg+0x58b/0x6b0
[  172.964406][ T9971]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.964434][ T9971]  __sock_sendmsg+0x145/0x180
[  172.964471][ T9971]  ____sys_sendmsg+0x31e/0x4e0
[  172.964507][ T9971]  ___sys_sendmsg+0x17b/0x1d0
[  172.964587][ T9971]  __x64_sys_sendmsg+0xd4/0x160
[  172.964626][ T9971]  x64_sys_call+0x2999/0x2fb0
[  172.964654][ T9971]  do_syscall_64+0xd2/0x200
[  172.964708][ T9971]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.964804][ T9971]  ? clear_bhb_loop+0x40/0x90
[  172.964825][ T9971]  ? clear_bhb_loop+0x40/0x90
[  172.964846][ T9971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.964868][ T9971] RIP: 0033:0x7f6af5e7e969
[  172.964886][ T9971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.964974][ T9971] RSP: 002b:00007f6af44e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.964999][ T9971] RAX: ffffffffffffffda RBX: 00007f6af60a5fa0 RCX: 00007f6af5e7e969
[  172.965016][ T9971] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  172.965098][ T9971] RBP: 00007f6af44e7090 R08: 0000000000000000 R09: 0000000000000000
[  172.965128][ T9971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.965142][ T9971] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  172.965165][ T9971]  </TASK>
[  172.965174][ T9971] socket: no more sockets
[  173.321751][ T9975] loop5: detected capacity change from 0 to 512
[  173.533111][ T9985] lo speed is unknown, defaulting to 1000
[  173.540295][ T9985] lo speed is unknown, defaulting to 1000
[  173.969538][ T9987] FAULT_INJECTION: forcing a failure.
[  173.969538][ T9987] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.982786][ T9987] CPU: 1 UID: 0 PID: 9987 Comm: syz.6.2442 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  173.982813][ T9987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.982851][ T9987] Call Trace:
[  173.982859][ T9987]  <TASK>
[  173.982869][ T9987]  __dump_stack+0x1d/0x30
[  173.982895][ T9987]  dump_stack_lvl+0xe8/0x140
[  173.982920][ T9987]  dump_stack+0x15/0x1b
[  173.982942][ T9987]  should_fail_ex+0x265/0x280
[  173.983025][ T9987]  should_fail+0xb/0x20
[  173.983061][ T9987]  should_fail_usercopy+0x1a/0x20
[  173.983095][ T9987]  _copy_to_user+0x20/0xa0
[  173.983138][ T9987]  simple_read_from_buffer+0xb5/0x130
[  173.983204][ T9987]  proc_fail_nth_read+0x100/0x140
[  173.983242][ T9987]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  173.983273][ T9987]  vfs_read+0x1a0/0x6f0
[  173.983338][ T9987]  ? __rcu_read_unlock+0x4f/0x70
[  173.983364][ T9987]  ? __fget_files+0x184/0x1c0
[  173.983435][ T9987]  ksys_read+0xda/0x1a0
[  173.983478][ T9987]  __x64_sys_read+0x40/0x50
[  173.983538][ T9987]  x64_sys_call+0x2d77/0x2fb0
[  173.983566][ T9987]  do_syscall_64+0xd2/0x200
[  173.983594][ T9987]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  173.983702][ T9987]  ? clear_bhb_loop+0x40/0x90
[  173.983730][ T9987]  ? clear_bhb_loop+0x40/0x90
[  173.983779][ T9987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.983861][ T9987] RIP: 0033:0x7f48924cd37c
[  173.983875][ T9987] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  173.983893][ T9987] RSP: 002b:00007f4890b37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  173.983913][ T9987] RAX: ffffffffffffffda RBX: 00007f48926f5fa0 RCX: 00007f48924cd37c
[  173.983930][ T9987] RDX: 000000000000000f RSI: 00007f4890b370a0 RDI: 0000000000000003
[  173.983981][ T9987] RBP: 00007f4890b37090 R08: 0000000000000000 R09: 0000000000000000
[  173.983994][ T9987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.984006][ T9987] R13: 0000000000000001 R14: 00007f48926f5fa0 R15: 00007ffee9d0cd08
[  173.984027][ T9987]  </TASK>
[  174.380937][ T9982] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=9982 comm=syz.3.2441
[  174.692754][T10003] __nla_validate_parse: 2 callbacks suppressed
[  174.692774][T10003] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2448'.
[  174.709371][T10003] 9pnet_fd: Insufficient options for proto=fd
[  175.336743][T10013] lo speed is unknown, defaulting to 1000
[  175.343039][T10013] lo speed is unknown, defaulting to 1000
[  175.411781][ T3393] hid-generic 0000:0004:0000.000C: unknown main item tag 0x0
[  175.419263][ T3393] hid-generic 0000:0004:0000.000C: unknown main item tag 0x0
[  175.426885][ T3393] hid-generic 0000:0004:0000.000C: unknown main item tag 0x0
[  175.434435][   T29] kauditd_printk_skb: 90 callbacks suppressed
[  175.434450][   T29] audit: type=1326 audit(1748530067.522:3888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10016 comm="syz.6.2453" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48924ce969 code=0x0
[  175.471241][ T3393] hid-generic 0000:0004:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  175.558124][T10027] loop5: detected capacity change from 0 to 512
[  175.565616][T10027] EXT4-fs: Ignoring removed bh option
[  175.571135][T10027] EXT4-fs: Ignoring removed mblk_io_submit option
[  175.623978][   T29] audit: type=1326 audit(1748530067.712:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.647749][   T29] audit: type=1326 audit(1748530067.712:3890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.671474][   T29] audit: type=1326 audit(1748530067.712:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.695046][   T29] audit: type=1326 audit(1748530067.712:3892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.718568][   T29] audit: type=1326 audit(1748530067.712:3893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.742450][   T29] audit: type=1326 audit(1748530067.712:3894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.766049][   T29] audit: type=1326 audit(1748530067.712:3895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.789717][   T29] audit: type=1326 audit(1748530067.712:3896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.813521][   T29] audit: type=1326 audit(1748530067.712:3897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10028 comm="syz.2.2457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febd111e969 code=0x7ffc0000
[  175.958559][T10041] loop5: detected capacity change from 0 to 512
[  176.267379][T10048] wg2: left promiscuous mode
[  176.272246][T10048] wg2: left allmulticast mode
[  176.295993][T10048] wg2: entered promiscuous mode
[  176.300980][T10048] wg2: entered allmulticast mode
[  176.329909][T10065] openvswitch: netlink: Message has 6 unknown bytes.
[  176.897897][T10073] loop6: detected capacity change from 0 to 1024
[  176.929003][T10073] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.960003][    C0] bridge0: port 1(bridge_slave_0) entered learning state
[  176.967167][    C0] bridge0: port 2(bridge_slave_1) entered learning state
[  177.044804][T10086] loop5: detected capacity change from 0 to 512
[  177.062499][T10086] EXT4-fs: Ignoring removed bh option
[  177.067989][T10086] EXT4-fs: Ignoring removed mblk_io_submit option
[  177.075436][T10088] loop4: detected capacity change from 0 to 512
[  177.082280][T10088] journal_path: Non-blockdev passed as './file0'
[  177.088702][T10088] EXT4-fs: error: could not find journal device path
[  177.182599][ T4243] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  177.189161][   T36] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  177.190075][ T4243] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  177.197446][   T36] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  177.204839][ T4243] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  177.207905][ T4243] hid-generic 0000:0004:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  177.212354][   T36] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  177.237334][   T36] hid-generic 0000:0004:0000.000E: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  177.278068][T10110] netlink: '': attribute type 1 has an invalid length.
[  177.302344][T10110] lo speed is unknown, defaulting to 1000
[  177.308873][T10110] lo speed is unknown, defaulting to 1000
[  177.343339][T10117] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2488'.
[  177.359392][T10119] loop3: detected capacity change from 0 to 128
[  177.374278][T10119] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  177.396317][T10119] ext4 filesystem being mounted at /528/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  177.447897][ T3317] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.617720][T10132] loop5: detected capacity change from 0 to 512
[  177.624862][T10132] EXT4-fs: Ignoring removed bh option
[  177.630456][T10132] EXT4-fs: Ignoring removed mblk_io_submit option
[  177.774882][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.861446][T10137] loop6: detected capacity change from 0 to 512
[  177.879024][T10137] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  177.912006][T10137] EXT4-fs (loop6): 1 truncate cleaned up
[  177.920708][T10137] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.180818][T10158] netlink: '': attribute type 1 has an invalid length.
[  178.215741][T10158] lo speed is unknown, defaulting to 1000
[  178.230182][T10158] lo speed is unknown, defaulting to 1000
[  178.266728][T10162] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2506'.
[  178.450703][T10166] wg2: left promiscuous mode
[  178.455571][T10166] wg2: left allmulticast mode
[  178.477514][T10166] wg2: entered promiscuous mode
[  178.482488][T10166] wg2: entered allmulticast mode
[  178.505114][T10173] FAULT_INJECTION: forcing a failure.
[  178.505114][T10173] name failslab, interval 1, probability 0, space 0, times 0
[  178.517902][T10173] CPU: 1 UID: 0 PID: 10173 Comm: syz.4.2511 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  178.517941][T10173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.517958][T10173] Call Trace:
[  178.517966][T10173]  <TASK>
[  178.518035][T10173]  __dump_stack+0x1d/0x30
[  178.518063][T10173]  dump_stack_lvl+0xe8/0x140
[  178.518146][T10173]  dump_stack+0x15/0x1b
[  178.518169][T10173]  should_fail_ex+0x265/0x280
[  178.518210][T10173]  should_failslab+0x8c/0xb0
[  178.518239][T10173]  kmem_cache_alloc_noprof+0x50/0x310
[  178.518273][T10173]  ? alloc_empty_file+0x76/0x200
[  178.518377][T10173]  alloc_empty_file+0x76/0x200
[  178.518405][T10173]  path_openat+0x68/0x2170
[  178.518432][T10173]  ? __rcu_read_unlock+0x34/0x70
[  178.518526][T10173]  ? filemap_map_pages+0x9be/0xab0
[  178.518555][T10173]  ? css_rstat_updated+0xcd/0x5b0
[  178.518716][T10173]  do_filp_open+0x109/0x230
[  178.518761][T10173]  do_sys_openat2+0xa6/0x110
[  178.518791][T10173]  __x64_sys_openat+0xf2/0x120
[  178.518827][T10173]  x64_sys_call+0x1af/0x2fb0
[  178.518857][T10173]  do_syscall_64+0xd2/0x200
[  178.518932][T10173]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  178.518994][T10173]  ? clear_bhb_loop+0x40/0x90
[  178.519015][T10173]  ? clear_bhb_loop+0x40/0x90
[  178.519036][T10173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.519059][T10173] RIP: 0033:0x7f6af5e7d2d0
[  178.519161][T10173] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  178.519256][T10173] RSP: 002b:00007f6af44e6b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  178.519280][T10173] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6af5e7d2d0
[  178.519297][T10173] RDX: 0000000000000000 RSI: 00007f6af44e6c10 RDI: 00000000ffffff9c
[  178.519314][T10173] RBP: 00007f6af44e6c10 R08: 0000000000000000 R09: 0000000000000000
[  178.519330][T10173] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  178.519345][T10173] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  178.519393][T10173]  </TASK>
[  178.763723][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.811325][T10176] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2512'.
[  178.820448][T10176] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2512'.
[  178.829445][T10176] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2512'.
[  178.865241][T10181] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  178.870686][T10176] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2512'.
[  180.045414][T10206] netlink: 400 bytes leftover after parsing attributes in process `syz.5.2523'.
[  180.189872][T10213] loop4: detected capacity change from 0 to 512
[  180.198365][T10213] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  180.213077][T10213] EXT4-fs (loop4): 1 truncate cleaned up
[  180.228041][T10213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.402306][   T36] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  180.409845][   T36] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  180.417470][   T36] hid-generic 0000:0004:0000.000F: unknown main item tag 0x0
[  180.440853][   T36] hid-generic 0000:0004:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  180.504466][T10237] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  181.015705][T10246] loop5: detected capacity change from 0 to 512
[  181.022901][T10246] EXT4-fs: Ignoring removed oldalloc option
[  181.048148][   T29] kauditd_printk_skb: 45 callbacks suppressed
[  181.048210][   T29] audit: type=1400 audit(1748530073.152:3943): avc:  denied  { ioctl } for  pid=10245 comm="syz.5.2539" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  181.157436][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.201580][T10250] loop4: detected capacity change from 0 to 512
[  181.205560][T10252] loop5: detected capacity change from 0 to 128
[  181.221696][T10250] EXT4-fs: Ignoring removed oldalloc option
[  181.230879][T10250] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  181.257935][T10250] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2540: invalid indirect mapped block 83886080 (level 1)
[  181.273446][T10250] EXT4-fs (loop4): Remounting filesystem read-only
[  181.281259][T10257] smc: net device bond0 applied user defined pnetid SYZ2
[  181.288466][T10250] EXT4-fs (loop4): 1 orphan inode deleted
[  181.294381][T10250] EXT4-fs (loop4): 1 truncate cleaned up
[  181.303084][T10250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.321803][T10257] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2544'.
[  181.330957][T10257] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2544'.
[  181.340105][T10257] netlink: 38 bytes leftover after parsing attributes in process `syz.5.2544'.
[  181.358360][T10257] smc: net device bond0 erased user defined pnetid SYZ2
[  181.379632][T10250] FAULT_INJECTION: forcing a failure.
[  181.379632][T10250] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.392905][T10250] CPU: 1 UID: 0 PID: 10250 Comm: syz.4.2540 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  181.392934][T10250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  181.393018][T10250] Call Trace:
[  181.393024][T10250]  <TASK>
[  181.393031][T10250]  __dump_stack+0x1d/0x30
[  181.393050][T10250]  dump_stack_lvl+0xe8/0x140
[  181.393068][T10250]  dump_stack+0x15/0x1b
[  181.393083][T10250]  should_fail_ex+0x265/0x280
[  181.393112][T10250]  should_fail+0xb/0x20
[  181.393150][T10250]  should_fail_usercopy+0x1a/0x20
[  181.393181][T10250]  _copy_from_user+0x1c/0xb0
[  181.393201][T10250]  autofs_dev_ioctl+0xdd/0x6a0
[  181.393229][T10250]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[  181.393329][T10250]  __se_sys_ioctl+0xce/0x140
[  181.393357][T10250]  __x64_sys_ioctl+0x43/0x50
[  181.393455][T10250]  x64_sys_call+0x19a8/0x2fb0
[  181.393474][T10250]  do_syscall_64+0xd2/0x200
[  181.393498][T10250]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  181.393560][T10250]  ? clear_bhb_loop+0x40/0x90
[  181.393579][T10250]  ? clear_bhb_loop+0x40/0x90
[  181.393599][T10250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.393688][T10250] RIP: 0033:0x7f6af5e7e969
[  181.393702][T10250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.393718][T10250] RSP: 002b:00007f6af44e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  181.393734][T10250] RAX: ffffffffffffffda RBX: 00007f6af60a5fa0 RCX: 00007f6af5e7e969
[  181.393746][T10250] RDX: 0000200000000200 RSI: 00000000c018937e RDI: 0000000000000007
[  181.393781][T10250] RBP: 00007f6af44e7090 R08: 0000000000000000 R09: 0000000000000000
[  181.393791][T10250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.393802][T10250] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  181.393820][T10250]  </TASK>
[  181.713356][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.724914][T10270] loop3: detected capacity change from 0 to 512
[  181.732816][T10270] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  181.744278][   T29] audit: type=1326 audit(1748530073.842:3944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10267 comm="syz.5.2548" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f601613e969 code=0x0
[  181.771373][T10270] EXT4-fs (loop3): 1 truncate cleaned up
[  181.777584][T10270] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.791001][T10260] wg2: left promiscuous mode
[  181.795645][T10260] wg2: left allmulticast mode
[  181.803275][T10260] wg2: entered promiscuous mode
[  181.808393][T10260] wg2: entered allmulticast mode
[  182.280748][   T29] audit: type=1326 audit(1748530074.352:3945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10285 comm="syz.6.2553" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48924ce969 code=0x0
[  182.506360][T10290] loop5: detected capacity change from 0 to 128
[  182.551823][   T29] audit: type=1326 audit(1748530074.662:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.586242][T10292] loop5: detected capacity change from 0 to 1024
[  182.593086][   T29] audit: type=1326 audit(1748530074.682:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.599009][T10292] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  182.616835][   T29] audit: type=1326 audit(1748530074.682:3948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.627653][T10292] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  182.651066][   T29] audit: type=1326 audit(1748530074.682:3949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.651106][   T29] audit: type=1326 audit(1748530074.682:3950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.708045][   T29] audit: type=1326 audit(1748530074.682:3951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.732372][   T29] audit: type=1326 audit(1748530074.682:3952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.5.2555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  182.762558][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.777753][T10292] JBD2: no valid journal superblock found
[  182.783559][T10292] EXT4-fs (loop5): Could not load journal inode
[  182.805858][T10305] smc: net device bond0 applied user defined pnetid SYZ2
[  182.832795][T10292] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  182.862858][T10305] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2557'.
[  182.872029][T10305] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2557'.
[  182.881230][T10305] netlink: 38 bytes leftover after parsing attributes in process `syz.3.2557'.
[  182.930686][T10305] smc: net device bond0 erased user defined pnetid SYZ2
[  182.952856][T10315] loop4: detected capacity change from 0 to 128
[  182.962385][T10315] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  182.980058][   T36] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  182.987516][   T36] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  182.995023][   T36] hid-generic 0000:0004:0000.0010: unknown main item tag 0x0
[  183.020765][T10315] ext4 filesystem being mounted at /447/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  183.111788][   T36] hid-generic 0000:0004:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  183.218107][ T3321] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  183.282547][   T36] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  183.290235][   T36] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  183.297676][   T36] hid-generic 0000:0004:0000.0011: unknown main item tag 0x0
[  183.335540][T10326] loop6: detected capacity change from 0 to 512
[  183.343466][T10326] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  183.355486][   T36] hid-generic 0000:0004:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  183.395247][T10326] EXT4-fs (loop6): 1 truncate cleaned up
[  183.402842][T10326] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.411894][T10330] loop4: detected capacity change from 0 to 512
[  183.423755][T10330] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  183.435162][T10332] FAULT_INJECTION: forcing a failure.
[  183.435162][T10332] name failslab, interval 1, probability 0, space 0, times 0
[  183.444676][T10330] EXT4-fs (loop4): 1 truncate cleaned up
[  183.447898][T10332] CPU: 1 UID: 0 PID: 10332 Comm: syz.3.2570 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  183.447938][T10332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.447965][T10332] Call Trace:
[  183.447974][T10332]  <TASK>
[  183.448012][T10332]  __dump_stack+0x1d/0x30
[  183.448041][T10332]  dump_stack_lvl+0xe8/0x140
[  183.448069][T10332]  dump_stack+0x15/0x1b
[  183.448090][T10332]  should_fail_ex+0x265/0x280
[  183.448207][T10332]  should_failslab+0x8c/0xb0
[  183.448237][T10332]  kmem_cache_alloc_noprof+0x50/0x310
[  183.448272][T10332]  ? getname_flags+0x80/0x3b0
[  183.448305][T10332]  getname_flags+0x80/0x3b0
[  183.448360][T10332]  __x64_sys_linkat+0x73/0xa0
[  183.448387][T10332]  x64_sys_call+0x2cfe/0x2fb0
[  183.448416][T10332]  do_syscall_64+0xd2/0x200
[  183.448451][T10332]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  183.448537][T10332]  ? clear_bhb_loop+0x40/0x90
[  183.448566][T10332]  ? clear_bhb_loop+0x40/0x90
[  183.448597][T10332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.448651][T10332] RIP: 0033:0x7ffb21ede969
[  183.448671][T10332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.448696][T10332] RSP: 002b:00007ffb20547038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
[  183.448722][T10332] RAX: ffffffffffffffda RBX: 00007ffb22105fa0 RCX: 00007ffb21ede969
[  183.448739][T10332] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff
[  183.448756][T10332] RBP: 00007ffb20547090 R08: 0000000000000000 R09: 0000000000000000
[  183.448820][T10332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.448836][T10332] R13: 0000000000000000 R14: 00007ffb22105fa0 R15: 00007fff91ebcf38
[  183.448945][T10332]  </TASK>
[  183.503225][   T36] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  183.525683][T10330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.528718][   T36] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  183.657210][   T36] hid-generic 0000:0004:0000.0012: unknown main item tag 0x0
[  183.667811][   T36] hid-generic 0000:0004:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  183.952193][T10354] smc: net device bond0 applied user defined pnetid SYZ2
[  183.963427][T10354] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2579'.
[  183.972611][T10354] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2579'.
[  183.981716][T10354] netlink: 38 bytes leftover after parsing attributes in process `syz.5.2579'.
[  183.991946][T10354] smc: net device bond0 erased user defined pnetid SYZ2
[  184.062198][T10358] ������: renamed from vlan0 (while UP)
[  184.182769][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.321826][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.675568][T10371] loop4: detected capacity change from 0 to 512
[  184.682474][T10371] EXT4-fs: Ignoring removed bh option
[  184.687930][T10371] EXT4-fs: Ignoring removed mblk_io_submit option
[  184.702823][T10371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.715678][T10371] ext4 filesystem being mounted at /449/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  184.835709][T10386] loop6: detected capacity change from 0 to 1024
[  184.852377][T10386] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.869204][T10386] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.884925][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.912532][T10396] loop4: detected capacity change from 0 to 512
[  184.932298][T10396] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  184.932904][ T6708] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.959471][T10396] EXT4-fs (loop4): 1 truncate cleaned up
[  184.966724][T10396] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.149237][T10410] siw: device registration error -23
[  185.160845][T10410] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=10410 comm=syz.5.2601
[  185.290067][T10422] FAULT_INJECTION: forcing a failure.
[  185.290067][T10422] name failslab, interval 1, probability 0, space 0, times 0
[  185.302847][T10422] CPU: 1 UID: 0 PID: 10422 Comm: syz.5.2604 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  185.302900][T10422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.302914][T10422] Call Trace:
[  185.302920][T10422]  <TASK>
[  185.302928][T10422]  __dump_stack+0x1d/0x30
[  185.302948][T10422]  dump_stack_lvl+0xe8/0x140
[  185.303041][T10422]  dump_stack+0x15/0x1b
[  185.303057][T10422]  should_fail_ex+0x265/0x280
[  185.303189][T10422]  should_failslab+0x8c/0xb0
[  185.303213][T10422]  kmem_cache_alloc_noprof+0x50/0x310
[  185.303242][T10422]  ? alloc_empty_file+0x76/0x200
[  185.303314][T10422]  ? mntput+0x4b/0x80
[  185.303348][T10422]  alloc_empty_file+0x76/0x200
[  185.303412][T10422]  path_openat+0x68/0x2170
[  185.303449][T10422]  ? bpf_bprintf_prepare+0xc42/0xd50
[  185.303490][T10422]  ? _parse_integer_limit+0x170/0x190
[  185.303548][T10422]  ? kstrtoull+0x111/0x140
[  185.303583][T10422]  ? kstrtouint+0x76/0xc0
[  185.303620][T10422]  do_filp_open+0x109/0x230
[  185.303670][T10422]  do_sys_openat2+0xa6/0x110
[  185.303734][T10422]  __x64_sys_openat+0xf2/0x120
[  185.303764][T10422]  x64_sys_call+0x1af/0x2fb0
[  185.303785][T10422]  do_syscall_64+0xd2/0x200
[  185.303816][T10422]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  185.303859][T10422]  ? clear_bhb_loop+0x40/0x90
[  185.303887][T10422]  ? clear_bhb_loop+0x40/0x90
[  185.303915][T10422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.303942][T10422] RIP: 0033:0x7f601613d2d0
[  185.303962][T10422] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  185.304063][T10422] RSP: 002b:00007f6014785b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  185.304180][T10422] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f601613d2d0
[  185.304198][T10422] RDX: 0000000000000000 RSI: 00007f6014785c10 RDI: 00000000ffffff9c
[  185.304213][T10422] RBP: 00007f6014785c10 R08: 0000000000000000 R09: 0000000000000000
[  185.304229][T10422] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  185.304245][T10422] R13: 0000000000000000 R14: 00007f6016366080 R15: 00007ffd00ae7018
[  185.304272][T10422]  </TASK>
[  185.568747][T10433] netlink: 'syz.5.2608': attribute type 2 has an invalid length.
[  185.576840][T10433] __nla_validate_parse: 5 callbacks suppressed
[  185.576887][T10433] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2608'.
[  185.578223][T10436] loop3: detected capacity change from 0 to 1024
[  185.598987][T10433] lo speed is unknown, defaulting to 1000
[  185.605497][T10433] lo speed is unknown, defaulting to 1000
[  185.611911][T10436] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.792027][T10447] FAULT_INJECTION: forcing a failure.
[  185.792027][T10447] name failslab, interval 1, probability 0, space 0, times 0
[  185.804783][T10447] CPU: 1 UID: 0 PID: 10447 Comm: syz.4.2611 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  185.804894][T10447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.804911][T10447] Call Trace:
[  185.804919][T10447]  <TASK>
[  185.804930][T10447]  __dump_stack+0x1d/0x30
[  185.804957][T10447]  dump_stack_lvl+0xe8/0x140
[  185.804985][T10447]  dump_stack+0x15/0x1b
[  185.805007][T10447]  should_fail_ex+0x265/0x280
[  185.805048][T10447]  ? snd_timer_instance_new+0x31/0x160
[  185.805093][T10447]  should_failslab+0x8c/0xb0
[  185.805134][T10447]  __kmalloc_cache_noprof+0x4c/0x320
[  185.805329][T10447]  snd_timer_instance_new+0x31/0x160
[  185.805375][T10447]  snd_seq_timer_open+0x12f/0x330
[  185.805408][T10447]  ? snd_timer_instance_free+0x5f/0x70
[  185.805453][T10447]  ? kfree+0xd9/0x320
[  185.805526][T10447]  ? snd_timer_instance_free+0x5f/0x70
[  185.805587][T10447]  snd_seq_queue_timer_open+0x85/0xe0
[  185.805616][T10447]  snd_seq_ioctl_set_queue_timer+0x14b/0x170
[  185.805655][T10447]  snd_seq_ioctl+0x17a/0x2e0
[  185.805708][T10447]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  185.805749][T10447]  __se_sys_ioctl+0xce/0x140
[  185.805848][T10447]  __x64_sys_ioctl+0x43/0x50
[  185.805883][T10447]  x64_sys_call+0x19a8/0x2fb0
[  185.805961][T10447]  do_syscall_64+0xd2/0x200
[  185.805992][T10447]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  185.806025][T10447]  ? clear_bhb_loop+0x40/0x90
[  185.806109][T10447]  ? clear_bhb_loop+0x40/0x90
[  185.806150][T10447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.806177][T10447] RIP: 0033:0x7f6af5e7e969
[  185.806196][T10447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.806234][T10447] RSP: 002b:00007f6af44e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  185.806259][T10447] RAX: ffffffffffffffda RBX: 00007f6af60a5fa0 RCX: 00007f6af5e7e969
[  185.806276][T10447] RDX: 0000200000000100 RSI: 0000000040605346 RDI: 0000000000000006
[  185.806292][T10447] RBP: 00007f6af44e7090 R08: 0000000000000000 R09: 0000000000000000
[  185.806326][T10447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.806338][T10447] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  185.806369][T10447]  </TASK>
[  186.466571][ T8205] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.524746][ T8205] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.588551][T10448] lo speed is unknown, defaulting to 1000
[  186.600525][T10448] lo speed is unknown, defaulting to 1000
[  186.608608][ T8205] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.620175][T10470] loop5: detected capacity change from 0 to 1024
[  186.628358][T10470] EXT4-fs: Ignoring removed bh option
[  186.634985][T10474] loop3: detected capacity change from 0 to 128
[  186.647255][T10458] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=10458 comm=syz.4.2614
[  186.663388][T10474] ext4 filesystem being mounted at /553/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  186.695725][T10470] loop5: detected capacity change from 0 to 1024
[  186.733083][T10470] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  186.742962][T10470] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  186.743658][ T8205] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.764633][T10470] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  186.778995][T10478] loop3: detected capacity change from 0 to 512
[  186.787917][T10470] EXT4-fs (loop5): write access unavailable, skipping orphan cleanup
[  186.827661][T10480] netlink: '': attribute type 1 has an invalid length.
[  186.858552][T10478] ext4 filesystem being mounted at /554/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.873375][T10489] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2624'.
[  186.896888][T10448] chnl_net:caif_netlink_parms(): no params data found
[  186.923983][T10480] lo speed is unknown, defaulting to 1000
[  186.931394][T10492] loop5: detected capacity change from 0 to 1024
[  186.940822][T10494] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2622'.
[  187.026380][T10499] netlink: 'syz.4.2627': attribute type 1 has an invalid length.
[  187.207492][T10502] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2627'.
[  187.343655][ T8205] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  187.355973][ T8205] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  187.366676][ T8205] bond0 (unregistering): Released all slaves
[  187.404308][T10480] lo speed is unknown, defaulting to 1000
[  187.448902][T10448] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.456225][T10448] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.465840][T10448] bridge_slave_0: entered allmulticast mode
[  187.473852][T10448] bridge_slave_0: entered promiscuous mode
[  187.484274][T10448] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.491642][T10448] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.502499][T10448] bridge_slave_1: entered allmulticast mode
[  187.509252][T10448] bridge_slave_1: entered promiscuous mode
[  187.527694][ T8205] tipc: Left network mode
[  187.530918][T10501] lo speed is unknown, defaulting to 1000
[  187.549472][T10448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  187.563816][T10501] lo speed is unknown, defaulting to 1000
[  187.573246][T10448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  187.613994][T10448] team0: Port device team_slave_0 added
[  187.621253][T10448] team0: Port device team_slave_1 added
[  187.664386][T10448] batman_adv: batadv0: Adding interface: batadv_slave_0
[  187.671447][T10448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  187.697536][T10448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  187.718834][ T8205] hsr_slave_0: left promiscuous mode
[  187.727550][ T8205] hsr_slave_1: left promiscuous mode
[  187.740880][ T8205] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  187.748325][ T8205] batman_adv: batadv0: Removing interface: batadv_slave_0
[  187.756283][ T8205] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  187.763878][ T8205] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.796112][ T4243] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  187.803618][ T4243] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  187.811076][ T4243] hid-generic 0000:0004:0000.0013: unknown main item tag 0x0
[  187.833985][ T8205] veth1_macvtap: left promiscuous mode
[  187.839660][ T4243] hid-generic 0000:0004:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  187.850594][ T8205] veth1_vlan: left promiscuous mode
[  187.855862][ T8205] veth0_vlan: left promiscuous mode
[  187.971112][T10520] loop3: detected capacity change from 0 to 1024
[  187.992267][T10520] ext4 filesystem being mounted at /556/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.004614][ T8205] team0 (unregistering): Port device team_slave_1 removed
[  188.023832][ T8205] team0 (unregistering): Port device team_slave_0 removed
[  188.093062][T10531] openvswitch: netlink: Message has 6 unknown bytes.
[  188.093765][T10448] batman_adv: batadv0: Adding interface: batadv_slave_1
[  188.106982][T10448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  188.133028][T10448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  188.178731][T10535] loop5: detected capacity change from 0 to 1024
[  188.195001][T10448] hsr_slave_0: entered promiscuous mode
[  188.202496][T10448] hsr_slave_1: entered promiscuous mode
[  188.212058][T10448] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  188.219651][T10448] Cannot create hsr debugfs directory
[  188.236300][T10537] loop6: detected capacity change from 0 to 512
[  188.260208][T10537] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  188.302785][T10537] EXT4-fs (loop6): 1 truncate cleaned up
[  188.922943][T10448] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  188.934439][T10448] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  188.947027][T10448] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  188.956226][T10448] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  188.994967][T10448] 8021q: adding VLAN 0 to HW filter on device bond0
[  189.011382][T10448] 8021q: adding VLAN 0 to HW filter on device team0
[  189.021298][ T8237] bridge0: port 1(bridge_slave_0) entered blocking state
[  189.028430][ T8237] bridge0: port 1(bridge_slave_0) entered forwarding state
[  189.042153][ T8204] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.043161][   T29] kauditd_printk_skb: 56 callbacks suppressed
[  189.043178][   T29] audit: type=1326 audit(1748530082.160:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.049245][ T8204] bridge0: port 2(bridge_slave_1) entered forwarding state
[  189.055361][   T29] audit: type=1326 audit(1748530082.160:4010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.120235][   T29] audit: type=1326 audit(1748530082.170:4011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.143854][   T29] audit: type=1326 audit(1748530082.170:4012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.167372][   T29] audit: type=1326 audit(1748530082.170:4013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.170819][T10448] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  189.190912][   T29] audit: type=1326 audit(1748530082.170:4014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.190949][   T29] audit: type=1326 audit(1748530082.170:4015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.201289][T10448] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  189.224786][   T29] audit: type=1326 audit(1748530082.170:4016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.282420][   T29] audit: type=1326 audit(1748530082.170:4017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.311064][   T29] audit: type=1326 audit(1748530082.270:4018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10550 comm="syz.5.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f601613e969 code=0x7ffc0000
[  189.317730][T10556] loop4: detected capacity change from 0 to 1024
[  189.425859][T10568] loop3: detected capacity change from 0 to 512
[  189.433332][T10568] EXT4-fs: Ignoring removed bh option
[  189.438834][T10568] EXT4-fs: Ignoring removed mblk_io_submit option
[  189.446010][T10561] wg2: left promiscuous mode
[  189.450704][T10561] wg2: left allmulticast mode
[  189.452945][T10556] ext4 filesystem being mounted at /459/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.464873][T10571] loop5: detected capacity change from 0 to 1024
[  189.471920][T10448] 8021q: adding VLAN 0 to HW filter on device batadv0
[  189.480630][T10569] wg2: entered promiscuous mode
[  189.483532][T10571] EXT4-fs: Ignoring removed bh option
[  189.485514][T10569] wg2: entered allmulticast mode
[  189.506654][T10568] ext4 filesystem being mounted at /561/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.573791][T10577] loop6: detected capacity change from 0 to 512
[  189.581735][T10577] ext4: Unknown parameter 'uid'
[  189.619689][T10587] netlink: '': attribute type 1 has an invalid length.
[  189.635567][T10448] veth0_vlan: entered promiscuous mode
[  189.654725][T10448] veth1_vlan: entered promiscuous mode
[  189.665183][T10589] loop6: detected capacity change from 0 to 1024
[  189.683497][T10587] lo speed is unknown, defaulting to 1000
[  189.693309][T10587] lo speed is unknown, defaulting to 1000
[  189.694007][T10448] veth0_macvtap: entered promiscuous mode
[  189.706356][T10593] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2653'.
[  189.727333][T10448] veth1_macvtap: entered promiscuous mode
[  189.740425][T10448] batman_adv: batadv0: Interface activated: batadv_slave_0
[  189.753956][T10448] batman_adv: batadv0: Interface activated: batadv_slave_1
[  189.764678][T10448] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.773512][T10448] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  189.782272][T10448] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  189.791069][T10448] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.827177][T10597] FAULT_INJECTION: forcing a failure.
[  189.827177][T10597] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  189.840724][T10597] CPU: 0 UID: 0 PID: 10597 Comm: syz.3.2656 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  189.840750][T10597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  189.840761][T10597] Call Trace:
[  189.840766][T10597]  <TASK>
[  189.840773][T10597]  __dump_stack+0x1d/0x30
[  189.840813][T10597]  dump_stack_lvl+0xe8/0x140
[  189.840841][T10597]  dump_stack+0x15/0x1b
[  189.840856][T10597]  should_fail_ex+0x265/0x280
[  189.840886][T10597]  should_fail_alloc_page+0xf2/0x100
[  189.840908][T10597]  __alloc_frozen_pages_noprof+0xff/0x360
[  189.841065][T10597]  alloc_pages_mpol+0xb3/0x250
[  189.841094][T10597]  vma_alloc_folio_noprof+0x1aa/0x300
[  189.841125][T10597]  handle_mm_fault+0xe9f/0x2c00
[  189.841212][T10597]  ? mas_walk+0xf2/0x120
[  189.841309][T10597]  do_user_addr_fault+0x636/0x1090
[  189.841363][T10597]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  189.841417][T10597]  exc_page_fault+0x62/0xa0
[  189.841437][T10597]  asm_exc_page_fault+0x26/0x30
[  189.841455][T10597] RIP: 0033:0x7ffb21da0cc3
[  189.841469][T10597] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  189.841486][T10597] RSP: 002b:00007ffb205464a0 EFLAGS: 00010206
[  189.841500][T10597] RAX: 0000000000001000 RBX: 00007ffb20546540 RCX: 00007ffb18127000
[  189.841582][T10597] RDX: 00007ffb205466e0 RSI: 0000000000000043 RDI: 00007ffb205465e0
[  189.841594][T10597] RBP: 00000000000000dc R08: 0000000000000008 R09: 00000000000000b9
[  189.841605][T10597] R10: 00000000000000c2 R11: 00007ffb20546540 R12: 0000000000000001
[  189.841616][T10597] R13: 00007ffb21f7bfc0 R14: 00000000000000ff R15: 00007ffb205465e0
[  189.841635][T10597]  </TASK>
[  189.841644][T10597] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  190.032950][T10597] loop3: detected capacity change from 0 to 2048
[  190.058852][T10597] EXT4-fs (loop3): failed to initialize system zone (-117)
[  190.066889][T10597] EXT4-fs (loop3): mount failed
[  190.254555][T10618] loop3: detected capacity change from 0 to 1024
[  190.272144][T10618] EXT4-fs: Ignoring removed bh option
[  190.299923][T10618] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.2661: Abort forced by user
[  190.310721][T10618] EXT4-fs (loop3): Remounting filesystem read-only
[  190.317289][T10618] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  190.392913][T10632] loop3: detected capacity change from 0 to 512
[  190.413195][T10632] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  190.425894][T10632] EXT4-fs (loop3): 1 truncate cleaned up
[  190.485214][T10639] loop5: detected capacity change from 0 to 512
[  190.531925][T10645] netlink: '': attribute type 1 has an invalid length.
[  190.555509][T10641] tmpfs: Unknown parameter '��������'
[  190.557771][T10645] lo speed is unknown, defaulting to 1000
[  190.561784][T10641] loop9: detected capacity change from 0 to 7
[  190.567296][T10645] lo speed is unknown, defaulting to 1000
[  190.573273][T10641] Buffer I/O error on dev loop9, logical block 0, async page read
[  190.596104][T10650] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2671'.
[  190.606044][T10641] Buffer I/O error on dev loop9, logical block 0, async page read
[  190.613954][T10641]  loop9: unable to read partition table
[  190.619837][T10641] loop_reread_partitions: partition scan of loop9 (�被������ڬ��dƤ����ݡ�����
[  190.619837][T10641] 
U�������) failed (rc=-5)
[  190.620218][T10649] FAULT_INJECTION: forcing a failure.
[  190.620218][T10649] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.646922][T10649] CPU: 1 UID: 0 PID: 10649 Comm: syz.4.2672 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  190.646956][T10649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.646973][T10649] Call Trace:
[  190.646981][T10649]  <TASK>
[  190.646990][T10649]  __dump_stack+0x1d/0x30
[  190.647016][T10649]  dump_stack_lvl+0xe8/0x140
[  190.647057][T10649]  dump_stack+0x15/0x1b
[  190.647078][T10649]  should_fail_ex+0x265/0x280
[  190.647118][T10649]  should_fail+0xb/0x20
[  190.647153][T10649]  should_fail_usercopy+0x1a/0x20
[  190.647256][T10649]  _copy_from_iter+0xcf/0xe40
[  190.647343][T10649]  ? __build_skb_around+0x1a0/0x200
[  190.647426][T10649]  ? __alloc_skb+0x223/0x320
[  190.647455][T10649]  netlink_sendmsg+0x471/0x6b0
[  190.647519][T10649]  ? __pfx_netlink_sendmsg+0x10/0x10
[  190.647551][T10649]  __sock_sendmsg+0x145/0x180
[  190.647603][T10649]  ____sys_sendmsg+0x345/0x4e0
[  190.647736][T10649]  ___sys_sendmsg+0x17b/0x1d0
[  190.647781][T10649]  __sys_sendmmsg+0x178/0x300
[  190.647822][T10649]  __x64_sys_sendmmsg+0x57/0x70
[  190.647852][T10649]  x64_sys_call+0x2f2f/0x2fb0
[  190.647961][T10649]  do_syscall_64+0xd2/0x200
[  190.647993][T10649]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  190.648025][T10649]  ? clear_bhb_loop+0x40/0x90
[  190.648052][T10649]  ? clear_bhb_loop+0x40/0x90
[  190.648084][T10649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.648110][T10649] RIP: 0033:0x7f6af5e7e969
[  190.648129][T10649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.648193][T10649] RSP: 002b:00007f6af44e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  190.648215][T10649] RAX: ffffffffffffffda RBX: 00007f6af60a5fa0 RCX: 00007f6af5e7e969
[  190.648230][T10649] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  190.648244][T10649] RBP: 00007f6af44e7090 R08: 0000000000000000 R09: 0000000000000000
[  190.648258][T10649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.648272][T10649] R13: 0000000000000000 R14: 00007f6af60a5fa0 R15: 00007fffe36e05a8
[  190.648296][T10649]  </TASK>
[  191.349703][ T3317] EXT4-fs unmount: 21 callbacks suppressed
[  191.349721][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.589124][T10681] loop3: detected capacity change from 0 to 1024
[  191.603727][T10681] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.623798][T10683] loop6: detected capacity change from 0 to 8192
[  191.769043][T10686] ==================================================================
[  191.777152][T10686] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[  191.784268][T10686] 
[  191.786589][T10686] write to 0xffff88813dcc642e of 2 bytes by task 10683 on cpu 1:
[  191.794302][T10686]  fat16_ent_put+0x28/0x60
[  191.798732][T10686]  fat_ent_write+0x6c/0xe0
[  191.803165][T10686]  fat_chain_add+0x15b/0x3f0
[  191.807765][T10686]  fat_get_block+0x46c/0x5e0
[  191.812376][T10686]  __block_write_begin_int+0x3fd/0xf90
[  191.817873][T10686]  cont_write_begin+0x5fc/0x970
[  191.822728][T10686]  fat_write_begin+0x4f/0xe0
[  191.827329][T10686]  generic_perform_write+0x181/0x490
[  191.832789][T10686]  __generic_file_write_iter+0x9e/0x120
[  191.838336][T10686]  generic_file_write_iter+0x8d/0x2f0
[  191.843712][T10686]  vfs_write+0x4a0/0x8e0
[  191.847979][T10686]  ksys_write+0xda/0x1a0
[  191.852243][T10686]  __x64_sys_write+0x40/0x50
[  191.856848][T10686]  x64_sys_call+0x2cdd/0x2fb0
[  191.861557][T10686]  do_syscall_64+0xd2/0x200
[  191.866094][T10686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.871993][T10686] 
[  191.874344][T10686] read to 0xffff88813dcc6400 of 512 bytes by task 10686 on cpu 0:
[  191.882149][T10686]  fat_mirror_bhs+0x1df/0x320
[  191.886833][T10686]  fat_ent_write+0xd0/0xe0
[  191.891251][T10686]  fat_chain_add+0x15b/0x3f0
[  191.895860][T10686]  fat_get_block+0x46c/0x5e0
[  191.900473][T10686]  __block_write_begin_int+0x3fd/0xf90
[  191.905979][T10686]  cont_write_begin+0x5fc/0x970
[  191.910861][T10686]  fat_write_begin+0x4f/0xe0
[  191.915464][T10686]  generic_perform_write+0x181/0x490
[  191.920753][T10686]  __generic_file_write_iter+0x9e/0x120
[  191.926303][T10686]  generic_file_write_iter+0x8d/0x2f0
[  191.931688][T10686]  aio_write+0x2e5/0x410
[  191.935932][T10686]  io_submit_one+0xacd/0x11d0
[  191.940637][T10686]  __se_sys_io_submit+0xfb/0x280
[  191.945618][T10686]  __x64_sys_io_submit+0x43/0x50
[  191.950607][T10686]  x64_sys_call+0xfc4/0x2fb0
[  191.955225][T10686]  do_syscall_64+0xd2/0x200
[  191.959742][T10686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.965658][T10686] 
[  191.967976][T10686] Reported by Kernel Concurrency Sanitizer on:
[  191.974118][T10686] CPU: 0 UID: 0 PID: 10686 Comm: syz.6.2683 Not tainted 6.15.0-syzkaller-07774-g90b83efa6701 #0 PREEMPT(voluntary) 
[  191.986267][T10686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  191.996335][T10686] ==================================================================
[  192.425661][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.960109][    C0] bridge0: port 1(bridge_slave_0) entered learning state
[  192.967217][    C0] bridge0: port 2(bridge_slave_1) entered learning state