last executing test programs:

1m4.174150207s ago: executing program 0 (id=251):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = open(&(0x7f00000001c0)='./file2\x00', 0x86442, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8947, &(0x7f0000000040)={'bond0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f00000002c0)=0x4, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="24000000700039022abd7000fbdbdf2507000000", @ANYRES32, @ANYBLOB="0c000180080001"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)
dup3(r1, r0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x5, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0x4}, 0x18)
io_submit(0x0, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, 0x0}])

1m4.056584039s ago: executing program 0 (id=255):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYRESOCT], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x6, 0xfff}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x84000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7}, 0x18)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kfree\x00', r4, 0x0, 0x800000000000000}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

1m3.930942482s ago: executing program 0 (id=260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='svcrdma_page_overrun_err\x00', r1}, 0x18)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r5}, 0x38)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1m3.791841994s ago: executing program 0 (id=263):
socket$tipc(0x1e, 0x5, 0x0)
symlink(0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x3753, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000001c0), 0x6, 0x5fc, &(0x7f0000000600)="$eJzs3c9rHGUfAPDvzCZ5kzavaUXEFsWAhxakaVKLVS+29WAPBQv2IOKhoUlq6PYHTQq2FkzBg4KCiFeRXvwHvEvv3kRQb56FKlJRUOnK7M62m2Q3XdPsTpr5fGCzz/PM7D7PdydP5pmZPDsBlNZ49iON2BVx51QSMdaybDQaC8fz9W7/du109kiiVnv91ySSvKy5fpI/b88zwxHx7dGIRyur6124cvXsdLXW8F7E/sVzF/cvXLm6b/7c9JnZM7Pnpw68cPDQ5ItTB6c2JM7t+fOx4689+fH7bz8/9111XxKH4+TguzOxIo6NMh7jcScPsbV8ICIOZYk2n8vDZguEUGqV/PdxMCIej7Go1HMNYzH/UaGNA3qqVomoASWV6P9QUs1xQPPYvrvj4JM9HpX0z60jjQOg1fEPNM6NxHD92Gjb7aTlyKhxbmPHBtSf1fHPtd2fZ49Ydh7iz7tbZ2AD6ulk6XpEPNEu/qTeth31SLP402XtSCJiMiKG8va98gBtSFrSvTgPs5b1xp9GxOH8OSs/us76x1fk+x0/AOV080i+I1/Kcvf2f9nYozn+iTbjn9E2+671KHr/13n819zfD9fPkacrxmHZmOVE+7ccXFnw04fHPu1Uf+v4L3tk9TfHgv1w63rE7hXxf5AFm49/sviTNts/W+XU4e7qePX7X451WlZ0/LUbEXvaHv/cG5VmqTWuT+6fm6/OTjZ+tq3j62/e+rJT/UXHn23/bR3ib9n+6crXZZ/JxS7r+OrEjXOdlo3eN/7056Gkcbw5lJe8M724eGkqYig5nq/SUn5g7bY012m+Rxb/3mfa9/9lv//Xl7/PSPNPZhcuvnH2dqdl69n+LReT79S6bEMnWfwz99/+q/p/VvZJl3X88eblpzotWyv+kQcJDAAAAAAAAEoorV+DTdKJu+k0nZhozJd9LLal1QsLi8/OXbh8fiZib/3/IQfT5pXusUY+yfJT+f/DNvMHVuSfi4idEfFZZaSenzh9oTpTdPAAAAAAAAAAAAAAAAAAAACwSWzP5/8371P9e6Ux/x8oiV7eYA7Y3PR/KK96/191iyegDOz/obz0fygv/R/KS/+H8tL/obz0fygv/R/KS/8HAAAAgC1p59M3f0wiYumlkfojM5QvMyMItrbBohsAFKZSdAOAwty99G+wD6XT1fj/r/zLAXvfHKAASbvC+uCgtnbnv9n2lQAAAAAAAAAAAABAD+zZ1Xn+v7nBsLWZ9gfl9QDz/311ADzkfPU/lJdjfOB+s/iHOy0w/x8AAAAAAAAAAAAA+ma0/kjSiXwu8Gik6cRExP8jYkcMJnPz1dnJiHgkIn6oDP4vy08V3WgAAAAAAAAAAAAAAAAAAADYYhauXD07Xa3OXmpN/L2qZGsnmndB7UNdL8d/fFUk/f9YRiKi8I3Ss8RAS0kSsZRt+U3RsEsLsTmaUU8U/IcJAAAAAAAAAAAAAAAAAABKqGXucXu7v+hziwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg/+7d/793iaJjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTv8GAAD//7V5QCw=")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
stat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000002c0)='kfree\x00', r0, 0x0, 0x9}, 0x64) (fail_nth: 7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008840}, 0x0)
r1 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r1, 0x0)

1m2.768924394s ago: executing program 0 (id=269):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback, 0x40000000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_128={{0x303}, "227d7944e182680c", "527b0afd542e83083f4e3fc43dccde5c", "fd596dc9", "6f086b719b2c7d13"}, 0x28)
close(r1)

1m2.200995675s ago: executing program 0 (id=276):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a88000000060a010400000000000000000a0000010900010073797a31000000005c000480580001800b0001007461726765740000480002802c0003009ac420002e2eafb9fdd672bad09dfb78c7699c74e82fa0c70000000000000000000000000000000008000240000000000e00010049444c4554494d45520000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

1m2.149682446s ago: executing program 32 (id=276):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a88000000060a010400000000000000000a0000010900010073797a31000000005c000480580001800b0001007461726765740000480002802c0003009ac420002e2eafb9fdd672bad09dfb78c7699c74e82fa0c70000000000000000000000000000000008000240000000000e00010049444c4554494d45520000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

2.120597189s ago: executing program 5 (id=1133):
syz_mount_image$iso9660(&(0x7f0000000800), &(0x7f0000000c80)='./file0\x00', 0x1004491, &(0x7f0000000f00)=ANY=[], 0xfe, 0x875, &(0x7f0000001000)="$eJzs3V1sHNW9APD/GDt2HJGL7r3KjaIQJglXSnSDWTtgri8P3L3rsTNg71q766tEFYIIHBrFAQRCQFSV5gXaqh/qUx8pfUS88NRWlVqpD22fKpWHvvQBCYmXVrRqpapVVdXVzuzGduy18+EkLf39Vt4zPnPOmf+ZHe/xrH1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIpDZdqYwnMZfXF0+n/dWmm435TdeMRESa9tr74bpki+1GJJ2vGBmJ/WXW/n9fXb2v83QkDpbfHYzORmIkLu3Zd8+j/zY40Ku/RcA36nCf/JU0HVr7fRLxhU5QF84uLy+9dAsCuY2+/P3uwsg1V/nTSud5NqvnrUY+X53N0rzVSKcmJysPnppppTP5XNY602pn82mtmVVf+5+VlWO14+n41NTJNBs701isz05X57K0m/nIAxOVymT6+NhCVm22GvUHHx9r1U7lc3N5fbYoM1F5NTplHukciE/k7bSdVefTdDiWl05uF+q588tL4+tyhtcdOAfvv+fjVz76/fmlzgHZr5Gke2BOjI9PTIxPPjz18COV8gCIuJJRGaxcJSYqE2WVGIiISmXwlhy03Fl7Nskb7B4xG1ZErPzLDrxzw80bGOkuzEUe9ViM05FGGgPFc/H42u5IYyhqMR3NaMR8J+8XQ6vru4+u3vj/nw/+5mdbbXft+N8b5fdfWVe+2x6JQ2XGoX7j/4YoduAx2K/V+ntlNGvzXo7X41JciLOxHMuxFC9dXWvX1TU2eVxLmZt+DJfpwM62OhtZ1COPViSRx3xUi5y0yGlEGlMxGZNRiafiVMxEK9KYiTzmIotWnIlWtCMrjqhaNCOLarSjEc1I41jU4nikMR5TMRUnI40sxuJMNGIx6jEb01EtWjm3Unrjqrj2ff7p7z3384/f7izHuThfvDjjW3Qk6Yzlez6M+N0Wha4M5r3hfkPG5uP/QJQlBroH+G0Zk7hNRq7zVd2Jt23YESvF+f/ghvyROxINAAAAcCskxafvSUQMxb3F0kw+l32mt3rozkYHAAAA7ITiP+0OdpLiVP/eSDrn/5VNSn4QMXzbwwMAAAB2QFLMsUsiYjTuK5d606U2+xAAAAAA+AdU/P3/UCcZjXijyHD+DwAAAJ8yX+x3jf2PdhXX2B2N1sJw8oPfRrM5lFxeOH1/crHaKVe9eFdZr5v8/5UW2zMHkr3dRopkcvDSniQiBmvZwaR39cu/dOcSfFI8H1i9AGG/a/0n2wQQWwdQfBdficNlmcPPlumzvTXlVkZn8rlsrNaYe3Q86X440n7l+fOvRdH9L9Xn9yZx7vzy0tgzLywXLVy83Hm+fLF7efikVyu6107YIpaV3myKezfv8VAxEaO73dFyu5W1/e9eTXZg6/4na7f5ZhwpyxwZLdPR9f0f6WxzfOzR8ahW9w60s9PtV1bW9L4bxXgRRdHz4V5vk2t6FQa6URwtyxw9drRMNoliYl0Uz2+MYmI1isvXuC/2rd8X/aN4+/Abp//w40aSndwuipM3GQXAnXKuuOrP6ii0uxiF/lxeVf3b3ynXrR13d/dqXs+73LnV3zJ69deMdYOxYXRPb2R0fzOOlWWOlb9PDB7YZFypbPKO/uL5F3/SfUd/6N1vfuvJQz99/6px/TqieDeOl2W6Sfzrj/qMsZ0+f/WqUfWdTo13+m63NTeRvJrEUNK998ylB85fPPvc0nNLz09MnJysPFSpPDwRQ8WvCt1ks0g37FQA/tlsd4+d9z93pWi/u/AkD21zVp0M9v6lYCyeiRdiOZ6NE8Vsg4i4b/NWR9f8G8KJDWetyfqz9jV3eDmxzbnlatmJq8sOH02iT9mTa/bYf3yjSP54i14QALgNjmwzDidxT3nZn1fv7ta4UmKl+PD3riQ5sfa8+7MRcaDfmNsZy4+XN87tnR1Hv7Lj6+L8VTf979uxUwDgUy5rfpKMtt9Kms184anxqanxavtUljYbtSfSZj49m6V5vZ01a6eq9dksXWg22o1a74+W01krbS0uLDSa7XSm0UwXGq38dHHn97R76/dWNl+tt/Naa2Euq7aytNaot6u1djqdt2rpUETkrVNZs6jcWshq+Uxeq7bzRj1tNRabtWwsTVtZli4s/t9cWTCfzurtfCbPhtK8ni408/lq83JEzC3OZ+l01qo184V2o2yw3FYnzpm9zfmi2bHY8AeFX9+BXQ4Ad9zLr1+6cHZ5eemlG1v45bUUvtN9BADWM0oDAAAAAAAAAAAAAMDfv43T9Tq51zURcChuePrgy8PRWdh9o9U7C0+WHeldV/impjNuXBjc6Qa3Xviv93auFxvbGerl3L3dvM/d617TXd19u7NdHug7/fSvm9bqRH/d23r6sccuXLocEUVOMri6ezud2n/qwyx6vduinc1/Ujab6vrW3ohd3/16mfO/fQongzt82HzQ7WDvp7pf4YH1OSvJFj/4t+XtBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuy98CAAD//0pDPbQ=")
r0 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x1f0, 0x0)
r1 = mq_open(&(0x7f0000000040)='GPL\x00', 0x800, 0x4a, &(0x7f0000000080)={0x3, 0xfffffffffffffffb, 0x3, 0x9})
mq_timedsend(r1, 0x0, 0xfc18, 0x1000000e, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r5 = gettid()
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="1400000022000b0fd25a806c8c6f94f90124fc60", 0x14}], 0x1}, 0x4000010)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008001c00", @ANYRES32=r5, @ANYBLOB="897a01d8d35c0f76f0790756e1e6b047164f181d1b2986e78ea64b9e89577a83458bdc99b03532a5ef5c292ad02a9979f61f4cf2ff530800f40a6743d33ef2d8caa7c1ee589b184841ec47"], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
syz_open_procfs$namespace(r5, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_FIOSETOWN(r7, 0x8901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r8, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2400f3d75af8dc8d7337000000000000000000010500010007e0ffff0400010007000000f511ebe0f26698ef5c5738726a847927ba9913c4d262eafc56c5a4e9a1c118753083d09bdfd1db4a68073957eb64a40688d5f4e1cc37bfd9b5f63bd2387458404c6b4193217b6201cc82eae95d375510ccae70e8b7b9324d426dd4e872253246c2ddf77bc34753dea84e19"], 0x24}, 0x1, 0x0, 0x0, 0x20000020}, 0x800)
accept$unix(0xffffffffffffffff, &(0x7f0000000180), 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
r9 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r9, &(0x7f0000000a40)={0xa, 0x4e02, 0x7ffe, @remote, 0x9}, 0x1c)

2.08284262s ago: executing program 5 (id=1135):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3004000, &(0x7f0000000340), 0x2, 0x7ad, &(0x7f0000000380)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000bc0)={@map, 0xffffffffffffffff, 0x38, 0x28}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040))

2.042738021s ago: executing program 1 (id=1136):
r0 = socket$packet(0x11, 0x3, 0x300)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB="84000000180001002cbd7000ffdbdf251d0107000c000b00040000a00300008015000100030000a006000000bac45f9ce14233bd0000000008000900", @ANYRES32=r4, @ANYBLOB="0c000b00000000e0020000a015000200010000a0070300007f15f0386605000b0200000008000a"], 0x84}}, 0x0)
ioctl$PPPIOCSMRU1(r3, 0x40047454, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'rose0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r6], 0x20}}, 0x0)

1.912108233s ago: executing program 1 (id=1138):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r3, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000300))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1.815430345s ago: executing program 2 (id=1139):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.480545212s ago: executing program 1 (id=1141):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x2602, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32=r2, @ANYBLOB="1d00"/15, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000002200481d004c072b"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000600)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000040000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000040000d136f93595c904543ac629d9886cb03928df79cd95a8c87354564b"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='qrtr_ns_service_announce_del\x00', r4}, 0x18)
r5 = epoll_create1(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x2, 0x4, 0x7ffc1ffb}]})
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x2, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYRESDEC=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0xd5)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r7}, 0x10)
syslog(0x1, 0x0, 0x0)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'sit0\x00', <r10=>0x0})
setsockopt$XDP_TX_RING(r8, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r8, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r8, &(0x7f0000000100)={0x2c, 0x0, r10}, 0x10)
r11 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000100)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r11, 0x207a98, 0x0, 0x0, 0x0, 0x0)
epoll_wait(r5, &(0x7f0000000340)=[{}], 0x1, 0x0)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000200)='nilfs2_collection_stage_transition\x00', r14, 0x0, 0x48000000000}, 0x18)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x40006)
r15 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r15, 0x6, 0x0, 0x0, 0x0)

1.460223212s ago: executing program 2 (id=1142):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

1.433170342s ago: executing program 2 (id=1143):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB="84000000180001002cbd7000ffdbdf251d0107000c000b00040000a00300008015000100030000a006000000bac45f9ce14233bd0000000008000900", @ANYRES32=r5, @ANYBLOB="0c000b00000000e0020000a015000200010000a0070300007f15f0386605000b0200000008000a"], 0x84}}, 0x0)
ioctl$PPPIOCSMRU1(r4, 0x40047454, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x102})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'rose0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x18)
pipe(&(0x7f0000000040))
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r7], 0x20}}, 0x0)

1.412976503s ago: executing program 1 (id=1146):
r0 = epoll_create1(0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x48}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = add_key$keyring(&(0x7f0000000340), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r7, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)='ex\x0f\xac\xd1\xeb\xf4\xd8&w\xef\x9f`T3%\xfa\xbf\xef\xeb\x8e1w\xfd')
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000001740), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="58000000100037040400000000000000000000006bebbdc4e44ab6929eb63e0a3ac4f280644884987675622b39beb079738f9e4c0f2b8cc3599e0e669fcc9442bdb15c1bef4d1ec0061dc61275ab3c158c52f5a084aa270c1acd0e0967a544935fdf6a2a9f8ec824f2f8cf5a1de2a5e2882b30a9bb5e524088e425029e245c9f7dc671ba2ca5d9b37ca664e3aadb5e1a1ad7b7f5cceba50dd07cb1a7407c2aa0f1e6fceb4a0a1e9b6594803cbd9bc73a3ee54e4ac43ec05b35", @ANYRES32=0x0], 0x58}, 0x1, 0x0, 0x0, 0x9005}, 0x4000000)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000200)={'ip6_vti0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000004)
epoll_pwait(r0, &(0x7f0000000140)=[{}], 0x1, 0x2d516fb9, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000100)={0x20000014})

1.322673145s ago: executing program 3 (id=1149):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r0, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSMRU1(r0, 0x40047454, 0x0)

1.322296705s ago: executing program 3 (id=1150):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000040000000000000000000300000a20000000000a05000000000000000000070000000900010073797a300000000044000000090a010400000000000000000700ffff08000a40000000030900020073797a31000000000900010073797a3000000000080005400000002105000d40930000005c0000000c0a01020000000000000000070000000900020073797a31000000000900010073797a3000000000300003802c0000800400018024000b80100001800c000100636f756e7465720010000180090001006c617374"], 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.321863065s ago: executing program 3 (id=1151):
socket(0x10, 0x803, 0x0)
syz_socket_connect_nvme_tcp()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x6, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="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", @ANYRES16=r0, @ANYBLOB="000000180576191868f3b40056ee884285000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
faccessat(0xffffffffffffffff, 0x0, 0x5)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000280)={[{@grpquota}, {@journal_checksum}]}, 0x1, 0x46f, &(0x7f0000001200)="$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")
signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4]}, 0x8, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x10000802, 0x80, 0x0, 0x40000}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r1, &(0x7f0000001640)={0xfc, {"fce3ad0eed0d07f91b50091887f70706d038e7ff7fc6e5539b0d3c0a8b089b3f383163030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c523c921b1b5b3107200773090acd3b78130daa61d8e8040040005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a91e0dad47f36fd9f73c152a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e1c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df11847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e30400f7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddba02635478d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f79400000000ddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df04b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e785419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd502ac8044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88e4facfd4c735a20307c737afa2d60399473296b831dbd933d93990f00064279b10ea0c5833f41f157ea2302993dbe97fb1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea10c00a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeee964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e42df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed62480ec43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e069160f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df076f0ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f87296ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef869c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1066)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffeb9}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x9, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3a56735ae5cec9c4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r2, 0x4, 0x0, 0xfffffffffffffdae, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x405}, 0x4e4a9eaac70c947b)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/raw6\x00')
linkat(r3, &(0x7f0000000440)='./file0/file0\x00', 0xffffffffffffffff, 0x0, 0x1400)
socket$nl_netfilter(0x10, 0x3, 0xc)
modify_ldt$write(0x1, &(0x7f0000000040)={0x4, 0x1000, 0x2000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.236469657s ago: executing program 2 (id=1152):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r3, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000300))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x60000400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1.094667709s ago: executing program 5 (id=1153):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

890.638383ms ago: executing program 3 (id=1154):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

796.915965ms ago: executing program 3 (id=1156):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x2602, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32=r2, @ANYBLOB="1d00"/15, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB="00000000000000000000000000000000000000002200481d004c072b"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000600)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000040000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000040000d136f93595c904543ac629d9886cb03928df79cd95a8c87354564b"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='qrtr_ns_service_announce_del\x00', r4}, 0x18)
r5 = epoll_create1(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x2, 0x4, 0x7ffc1ffb}]})
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x2, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYRESDEC=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0xd5)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r7}, 0x10)
syslog(0x1, 0x0, 0x0)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'sit0\x00', <r10=>0x0})
setsockopt$XDP_TX_RING(r8, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r8, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r8, &(0x7f0000000100)={0x2c, 0x0, r10}, 0x10)
r11 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r12=>0x0, &(0x7f0000000100)=<r13=>0x0)
syz_io_uring_submit(r12, r13, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r11, 0x207a98, 0x0, 0x0, 0x0, 0x0)
epoll_wait(r5, &(0x7f0000000340)=[{}], 0x1, 0x0)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000200)='nilfs2_collection_stage_transition\x00', r14, 0x0, 0x48000000000}, 0x18)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x40006)
r15 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r15, 0x6, 0x0, 0x0, 0x0)

736.492766ms ago: executing program 2 (id=1159):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x1f, &(0x7f0000000040)=[{&(0x7f0000000180)="2e00000011008b88040f80ec59acbc0413a1f8480f0000005e2900421803001825000a001400000002800000121f", 0x2e}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/24], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r2, 0x0, 0xfffffffffffffeff}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x10000, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x1}, 0x50)
getsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000540)={@initdev, @empty, <r5=>0x0}, &(0x7f0000000580)=0xc)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000005800000058000000080004000700000000000009050000000d000000000000f0fffffe007a00394103000000040000930c0000000100000019050000000000800700000003000000030000000a0000000600000001800000b40a0000000900000003000000000030302e5f30"], &(0x7f0000000640)=""/74, 0x78, 0x4a, 0x0, 0x2}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0xa, &(0x7f0000000880)=ANY=[@ANYBLOB="851000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000086000000950000000000000018400000feffffff0000000000000000182b0000", @ANYRES32=r4, @ANYBLOB="000000000000f2b2b5f892497132ffa5acba0000"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0xb, '\x00', r5, 0x0, r6, 0x8, &(0x7f0000000700)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x4, 0x3, 0x3}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000300)={'#! ', '', [{0x20, 'memory.events\x00'}]}, 0x13)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x7, 0x0, 0x0, 0x3, 0x82, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x8080, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x10000000000007}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x8404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000080)}, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x40, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000001200)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a28000000000a010200000000000000000a00000408000240000000030900010073797a300000000020000000020a010100000000000000000a0000020900010073797a30000000a46b82af1a9c9933b1866fb68558f000140000001100010000000000000000000700000a"], 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x8c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00'}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

695.556767ms ago: executing program 3 (id=1160):
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000000085daf461dc47e4bb2deedcbf512e000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x2404d}, 0x40000)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x46b}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0xc}}}}]}, 0x78}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xfff2}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x325, &(0x7f0000001740)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
write(0xffffffffffffffff, &(0x7f0000004200)='t', 0x1)
sendfile(0xffffffffffffffff, r8, 0x0, 0x3ffff)
sendfile(0xffffffffffffffff, r8, 0x0, 0x7ffff000)

685.178027ms ago: executing program 5 (id=1161):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="d1ca", 0x2, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)=ANY=[], 0x9)

615.975959ms ago: executing program 5 (id=1164):
socket$nl_netfilter(0x10, 0x3, 0xc)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0))
openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x4, 0xa8, 0xfffffffffffffff1})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")

494.215171ms ago: executing program 1 (id=1166):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

475.499481ms ago: executing program 1 (id=1167):
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000000085daf461dc47e4bb2deedcbf512e000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket(0x10, 0x3, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x2404d}, 0x40000)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x46b}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0xc}}}}]}, 0x78}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xfff2}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x325, &(0x7f0000001740)="$eJzs3M9LI2cYwPEnMRljrE4OpaWF4kt7aS+DpvfSUBRKAxVrSn9A6Wgmbcg0kUywpJRVT3vZw7J/xB7Eozdh9R/wsrc97WVvXhb2sB6WnWV+JVGTNUZj1vX7AZmXeZ9n5n19NTzvQObol/v/VEqOUTIbEk8piYmIHItkJC6RWHiM+21NOm3KV5Mvnnz206+//ZDL5+eXlFrILX+dVUpNzzz69/+JMGxvXA4zfxw9zz47/Ojwk6PXy3+XHVV2VLXWUKZaqT1tmCu2pYplp2IotWhbpmOpctWx6kG/uyFiW6pk19bWmsqsFqfSa3XLcZRZbaqK1VSNmmrUm8r8yyxXlWEYaiot6GUjPBa2l5bM3IAXWb3CAWGI6vWcOSYiE2d6CtsjGRAAABipsP5vVftxr6QfpP5PdK3/dz4/aEz+vDsd1v97mlf/i3TU/3+2r2WpYrxV/6dEpF3/14L9wVXX/2cropvt3snFEddtNbVu8Zeq/3FDePV/Ovz/9W39vjPrN6j/AQAAAAAAAAAAAAAAAAAAAAC4CY5dV3ddVw+OY+FZVx8XkZT/DZKgf8TDxJCcXP/2D+t/O7Rf3JGYFrHvrhfWC8ExDDgQEVssmRVdXvl/DyGvrW0qP0h5MrJf/SDM31gvBJ8luZKU/fw50SVzOt91F77Pz8+pgOx7eVF+UtKd+VnR5cPu+dnT+UnvqMmXX3TkG6LL41WpiS3F8JtxUf6dOaW++zF/6v4TfhwAAAAAAO8DQ7Vkov3veGe/cbY/2B8H/cH+OiHdnw8E++vZrvv7hHyaGNWsAQAAAAC4XZzmfxXTtq36kBpbIjLkW/RoRDPsNyt6QW6PmJjEenVdQSO6+WDp3tguNwzZdN3wTLKv31h8oKHOaBdclK6N6LFRrxhZHOTKri5y2aX8+MHDl2+PCZ6MifRzwW92U+fMdNCGdt5Mk9f2AQQAAADg2rSL/ujMt6MdEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAt9AFXh6WPBms9f3KsVHPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhXvAkAAP//5Mv/6w==")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r9, &(0x7f0000004200)='t', 0x1)
sendfile(r9, r8, 0x0, 0x3ffff)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r9, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="20000000000801010000000000000000070000020c0004800800064000000009b2be66f641fedf79fc5c5b601536378b79397055d886523d3897a8186e5c04c772e8c378d2c4ac4e856cde4ef18f25334fa6f2961e34397016504b6d9d8fc4473542128c216bcbaa86eea9bcff2e86dd834dfc12c42597b4094b155b117aefb4eb87cc80a0aaac12a6e39db944eca9fea8428eb3a13a581abed0ad16c650ba7be052341d692d04ce68ce37ccd1e1639b12f2be111dad9e41c7e572be1c0c6d1ec2865ec5213df2843621de338a85c229e73abc58d3495d52642eac21f9d57b332a86b5d3dc7cc22777b433288ae6c25532"], 0x20}, 0x1, 0x0, 0x0, 0x80b0}, 0x20000804)
sendfile(r9, r8, 0x0, 0x7ffff000)

474.431812ms ago: executing program 5 (id=1168):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x6, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001300)=""/238, 0xee}], 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="210229bd7000fcdbdf2505000000080009000b0000005eda5c91115d4880b79053613297c37e4695dced6d37c5d76cb387c163d74fe29b3c939a339b6cfad4055f5da620cb74fe3c5bec"], 0x1c}, 0x1, 0x0, 0x0, 0x4044090}, 0x10)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, 0x0, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x12, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00[\x00'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYRES16=r4, @ANYRES64=r6, @ANYRESHEX=r0, @ANYRES16=r6, @ANYRES32=r6, @ANYBLOB="5a6623cd47a4ee790691e4c62341a7fb2d2f8d14288336c82d1748b27dee83921255183689cb", @ANYRES16=r0, @ANYRESHEX], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r8, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2400000}, 0x18)

472.717852ms ago: executing program 2 (id=1169):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB="84000000180001002cbd7000ffdbdf251d0107000c000b00040000a00300008015000100030000a006000000bac45f9ce14233bd0000000008000900", @ANYRES32=r5, @ANYBLOB="0c000b00000000e0020000a015000200010000a0070300007f15f0386605000b0200000008000a"], 0x84}}, 0x0)
ioctl$PPPIOCSMRU1(r4, 0x40047454, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000001a00)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x102})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'rose0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x18)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r11=>0x0)
io_getevents(r11, 0x3, 0x3, &(0x7f0000001dc0)=[{}, {}, {}], 0x0)
io_submit(r11, 0x1, &(0x7f0000000300)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r10, 0x0}])
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r7], 0x20}}, 0x0)
close_range(r0, r8, 0x0)

182.954577ms ago: executing program 4 (id=1173):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, 0x0, 0x0, 0x0, 0x10b8}, 0x0)

153.559418ms ago: executing program 4 (id=1174):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x63, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)=@id={0x1e, 0x3, 0x3, {0x4e23, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20040010}, 0x40)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)

132.000048ms ago: executing program 4 (id=1175):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="34000000110001000000", @ANYRES32=r2, @ANYBLOB="000000002000000014001a80100005800c000180"], 0x34}}, 0x0)

38.79606ms ago: executing program 4 (id=1176):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="d1ca", 0x2, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)=ANY=[], 0x9)

459.381µs ago: executing program 4 (id=1177):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000440), 0x1, 0x0)
ioctl$TCSETSF(r5, 0x5404, &(0x7f00000004c0)={0xffffffff, 0xc9a, 0x80080000, 0x6, 0xe, '\t\x00'})
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

0s ago: executing program 4 (id=1178):
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f0000000040)=@newpolicy={0xc4, 0x13, 0x1, 0x0, 0x0, {{@in=@loopback, @in6=@ipv4={'\x00', '\xff\xff', @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x87}, {0x1000, 0x0, 0x0, 0x0, 0x8}}, [@sec_ctx={0xc, 0x10, {0x8}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200b700"/49], &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=@newqdisc={0x4c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x8080)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
socket(0x2, 0x80805, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r10=>0x0})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r10, {0x10, 0xb}, {0x0, 0x4}, {0xe, 0xe}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

kernel console output (not intermixed with test programs):

udevd[4404]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   94.651165][ T5336] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.512: Invalid inode bitmap blk 0 in block_group 0
[   94.666440][ T4404] udevd[4404]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   94.677586][ T3521] udevd[3521]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   94.679376][   T12] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   94.716123][ T5336] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[   94.735327][ T5336] EXT4-fs (loop5): 1 orphan inode deleted
[   94.742456][   T12] EXT4-fs error (device loop5): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 0
[   94.764923][ T5336] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.982177][ T5375] __nla_validate_parse: 2 callbacks suppressed
[   94.982193][ T5375] netlink: 8 bytes leftover after parsing attributes in process `syz.2.525'.
[   95.171626][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.188037][ T5392] netlink: 'syz.2.533': attribute type 6 has an invalid length.
[   95.198335][ T5390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.531'.
[   95.248922][ T5392] Falling back ldisc for ttyS3.
[   95.295784][ T5402] loop1: detected capacity change from 0 to 512
[   95.315879][ T5402] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   95.337150][ T5402] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   95.348787][ T5404] netlink: 8 bytes leftover after parsing attributes in process `syz.5.538'.
[   95.361308][ T5407] loop2: detected capacity change from 0 to 512
[   95.368178][ T5407] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   95.368327][ T5407] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[   95.445503][ T5415] Driver unsupported XDP return value 0 on prog  (id 421) dev N/A, expect packet loss!
[   95.522857][ T5422] FAULT_INJECTION: forcing a failure.
[   95.522857][ T5422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.535964][ T5422] CPU: 1 UID: 0 PID: 5422 Comm: syz.1.543 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.535992][ T5422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   95.536004][ T5422] Call Trace:
[   95.536082][ T5422]  <TASK>
[   95.536088][ T5422]  __dump_stack+0x1d/0x30
[   95.536180][ T5422]  dump_stack_lvl+0xe8/0x140
[   95.536200][ T5422]  dump_stack+0x15/0x1b
[   95.536215][ T5422]  should_fail_ex+0x265/0x280
[   95.536235][ T5422]  should_fail+0xb/0x20
[   95.536255][ T5422]  should_fail_usercopy+0x1a/0x20
[   95.536316][ T5422]  _copy_to_user+0x20/0xa0
[   95.536348][ T5422]  simple_read_from_buffer+0xb5/0x130
[   95.536371][ T5422]  proc_fail_nth_read+0x10e/0x150
[   95.536394][ T5422]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   95.536415][ T5422]  vfs_read+0x1a8/0x770
[   95.536468][ T5422]  ? __rcu_read_unlock+0x4f/0x70
[   95.536490][ T5422]  ? __fget_files+0x184/0x1c0
[   95.536518][ T5422]  ksys_read+0xda/0x1a0
[   95.536541][ T5422]  __x64_sys_read+0x40/0x50
[   95.536593][ T5422]  x64_sys_call+0x27bc/0x2ff0
[   95.536615][ T5422]  do_syscall_64+0xd2/0x200
[   95.536644][ T5422]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   95.536749][ T5422]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   95.536805][ T5422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.536874][ T5422] RIP: 0033:0x7fe9d7a9d5bc
[   95.536890][ T5422] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   95.536907][ T5422] RSP: 002b:00007fe9d6507030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   95.536925][ T5422] RAX: ffffffffffffffda RBX: 00007fe9d7ce5fa0 RCX: 00007fe9d7a9d5bc
[   95.536937][ T5422] RDX: 000000000000000f RSI: 00007fe9d65070a0 RDI: 0000000000000006
[   95.536949][ T5422] RBP: 00007fe9d6507090 R08: 0000000000000000 R09: 0000000000000000
[   95.536962][ T5422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   95.536974][ T5422] R13: 00007fe9d7ce6038 R14: 00007fe9d7ce5fa0 R15: 00007ffde9f01ad8
[   95.537048][ T5422]  </TASK>
[   95.767431][ T5426] loop5: detected capacity change from 0 to 764
[   95.790254][ T5426] netlink: 16 bytes leftover after parsing attributes in process `syz.5.544'.
[   95.838897][ T5433] loop2: detected capacity change from 0 to 1024
[   95.845739][ T5433] EXT4-fs: Ignoring removed orlov option
[   95.851487][ T5433] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.885841][ T5433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.902275][ T5440] loop4: detected capacity change from 0 to 1024
[   95.909179][ T5440] journal_path: Non-blockdev passed as './file1'
[   95.915641][ T5440] EXT4-fs: error: could not find journal device path
[   96.017295][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.112346][ T5463] loop5: detected capacity change from 0 to 764
[   96.154584][ T5469] ipvlan2: entered promiscuous mode
[   96.186653][ T5469] bridge0: port 4(ipvlan2) entered blocking state
[   96.193229][ T5469] bridge0: port 4(ipvlan2) entered disabled state
[   96.210614][ T5474] tmpfs: Unknown parameter 'mpo‚'
[   96.212183][ T5469] ipvlan2: entered allmulticast mode
[   96.215955][ T5474] nfs4: Bad value for 'source'
[   96.221043][ T5469] bridge0: entered allmulticast mode
[   96.237979][ T5469] ipvlan2: left allmulticast mode
[   96.243146][ T5469] bridge0: left allmulticast mode
[   96.263583][ T5474] loop3: detected capacity change from 0 to 512
[   96.290712][ T5474] EXT4-fs warning (device loop3): ext4_xattr_inode_get:556: inode #11: comm syz.3.563: EA inode hash validation failed
[   96.310916][ T5474] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.563: corrupted inode contents
[   96.325470][ T5474] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #15: comm syz.3.563: mark_inode_dirty error
[   96.337440][ T5474] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.563: corrupted inode contents
[   96.368522][ T5486] loop4: detected capacity change from 0 to 128
[   96.376420][ T5474] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #15: comm syz.3.563: mark_inode_dirty error
[   96.401642][ T5489] loop2: detected capacity change from 0 to 1024
[   96.408012][ T5474] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #15: comm syz.3.563: mark inode dirty (error -117)
[   96.432709][ T5493] loop5: detected capacity change from 0 to 1024
[   96.435169][ T5474] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   96.449465][ T5489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.449844][ T5474] EXT4-fs (loop3): 1 orphan inode deleted
[   96.477194][ T5493] EXT4-fs: Ignoring removed nobh option
[   96.487206][ T5493] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.521996][ T5493] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.569: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   96.529473][ T5474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.566403][ T5493] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.569: couldn't read orphan inode 11 (err -117)
[   96.580025][ T5493] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.610187][ T5500] FAULT_INJECTION: forcing a failure.
[   96.610187][ T5500] name failslab, interval 1, probability 0, space 0, times 0
[   96.622917][ T5500] CPU: 0 UID: 0 PID: 5500 Comm: syz.4.571 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   96.622944][ T5500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.622956][ T5500] Call Trace:
[   96.622963][ T5500]  <TASK>
[   96.622972][ T5500]  __dump_stack+0x1d/0x30
[   96.622990][ T5500]  dump_stack_lvl+0xe8/0x140
[   96.623064][ T5500]  dump_stack+0x15/0x1b
[   96.623081][ T5500]  should_fail_ex+0x265/0x280
[   96.623105][ T5500]  ? sctp_add_bind_addr+0x71/0x1e0
[   96.623130][ T5500]  should_failslab+0x8c/0xb0
[   96.623155][ T5500]  __kmalloc_cache_noprof+0x4c/0x320
[   96.623211][ T5500]  sctp_add_bind_addr+0x71/0x1e0
[   96.623359][ T5500]  sctp_copy_local_addr_list+0x199/0x220
[   96.623391][ T5500]  sctp_copy_one_addr+0x7f/0x280
[   96.623419][ T5500]  sctp_bind_addr_copy+0x79/0x290
[   96.623508][ T5500]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[   96.623531][ T5500]  sctp_connect_new_asoc+0x1c3/0x3a0
[   96.623622][ T5500]  sctp_sendmsg+0xf10/0x18d0
[   96.623643][ T5500]  ? selinux_socket_sendmsg+0x151/0x1b0
[   96.623674][ T5500]  ? __pfx_sctp_sendmsg+0x10/0x10
[   96.623694][ T5500]  inet_sendmsg+0xc2/0xd0
[   96.623775][ T5500]  __sock_sendmsg+0x102/0x180
[   96.623838][ T5500]  __sys_sendto+0x268/0x330
[   96.623867][ T5500]  __x64_sys_sendto+0x76/0x90
[   96.623890][ T5500]  x64_sys_call+0x2d05/0x2ff0
[   96.623965][ T5500]  do_syscall_64+0xd2/0x200
[   96.623990][ T5500]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   96.624040][ T5500]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   96.624069][ T5500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.624090][ T5500] RIP: 0033:0x7f268498eba9
[   96.624105][ T5500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.624189][ T5500] RSP: 002b:00007f26833f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   96.624208][ T5500] RAX: ffffffffffffffda RBX: 00007f2684bd5fa0 RCX: 00007f268498eba9
[   96.624222][ T5500] RDX: 0000000000034000 RSI: 0000200000000180 RDI: 0000000000000003
[   96.624234][ T5500] RBP: 00007f26833f7090 R08: 0000200000000480 R09: 000000000000001c
[   96.624244][ T5500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.624263][ T5500] R13: 00007f2684bd6038 R14: 00007f2684bd5fa0 R15: 00007fffea67f658
[   96.624336][ T5500]  </TASK>
[   96.626118][ T5493] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.569: Invalid block bitmap block 0 in block_group 0
[   96.752591][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.792218][ T5493] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.569: Failed to acquire dquot type 0
[   96.938969][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.951964][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.019727][ T5509] batadv_slave_1: entered promiscuous mode
[   97.042273][ T5509] batadv_slave_1: left promiscuous mode
[   97.182594][ T5534] loop4: detected capacity change from 0 to 1024
[   97.213350][ T5534] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.247578][ T5534] EXT4-fs error (device loop4): __ext4_new_inode:1073: comm syz.4.581: reserved inode found cleared - inode=18
[   97.295337][ T5534] netlink: 36 bytes leftover after parsing attributes in process `syz.4.581'.
[   97.723599][ T5578] netlink: 12 bytes leftover after parsing attributes in process `syz.5.590'.
[   97.769758][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   97.776301][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   97.783964][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.793056][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6)
[   97.799730][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   97.807254][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.821576][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(12)
[   97.828265][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   97.835952][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.845257][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(14)
[   97.851912][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   97.859611][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.869727][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(3) sockfd(16)
[   97.876352][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   97.884048][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.890932][ T5597] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(18)
[   97.897517][ T5597] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   97.905151][ T5597] vhci_hcd vhci_hcd.0: Device attached
[   97.909073][   T29] kauditd_printk_skb: 841 callbacks suppressed
[   97.909087][   T29] audit: type=1326 audit(1757698134.557:16739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5522 comm="syz.4.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[   97.915124][ T5606] vhci_hcd: connection closed
[   97.919610][ T5608] vhci_hcd: connection closed
[   97.941439][ T5598] vhci_hcd: connection closed
[   97.947138][   T29] audit: type=1326 audit(1757698134.567:16740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f28e7b3d80a code=0x7ffc0000
[   97.949796][ T5602] vhci_hcd: connection closed
[   97.954268][   T29] audit: type=1326 audit(1757698134.567:16741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   97.977938][ T5600] vhci_hcd: connection closed
[   97.982191][   T29] audit: type=1326 audit(1757698134.567:16742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   97.982218][   T29] audit: type=1326 audit(1757698134.567:16743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.005851][ T5604] vhci_hcd: connection closed
[   98.010296][   T29] audit: type=1326 audit(1757698134.567:16744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.037073][   T12] vhci_hcd: stop threads
[   98.057077][   T29] audit: type=1326 audit(1757698134.567:16745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.061766][   T12] vhci_hcd: release socket
[   98.061792][   T12] vhci_hcd: disconnect device
[   98.075390][   T12] vhci_hcd: stop threads
[   98.085386][   T29] audit: type=1326 audit(1757698134.567:16746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.089543][   T12] vhci_hcd: release socket
[   98.089556][   T12] vhci_hcd: disconnect device
[   98.089593][   T36] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   98.090895][   T12] vhci_hcd: stop threads
[   98.113076][   T29] audit: type=1326 audit(1757698134.567:16747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.117484][   T12] vhci_hcd: release socket
[   98.122291][   T29] audit: type=1326 audit(1757698134.567:16748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5596 comm="syz.3.593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[   98.126381][   T12] vhci_hcd: disconnect device
[   98.271549][   T12] vhci_hcd: stop threads
[   98.275813][   T12] vhci_hcd: release socket
[   98.280330][   T12] vhci_hcd: disconnect device
[   98.285604][ T5623] loop1: detected capacity change from 0 to 512
[   98.293721][   T12] vhci_hcd: stop threads
[   98.297968][   T12] vhci_hcd: release socket
[   98.302439][   T12] vhci_hcd: disconnect device
[   98.310617][ T5629] FAULT_INJECTION: forcing a failure.
[   98.310617][ T5629] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   98.323952][ T5629] CPU: 0 UID: 0 PID: 5629 Comm: syz.2.595 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.323979][ T5629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.323991][ T5629] Call Trace:
[   98.323998][ T5629]  <TASK>
[   98.324006][ T5629]  __dump_stack+0x1d/0x30
[   98.324026][ T5629]  dump_stack_lvl+0xe8/0x140
[   98.324107][ T5629]  dump_stack+0x15/0x1b
[   98.324124][ T5629]  should_fail_ex+0x265/0x280
[   98.324162][ T5629]  should_fail_alloc_page+0xf2/0x100
[   98.324184][ T5629]  __alloc_frozen_pages_noprof+0xff/0x360
[   98.324213][ T5629]  alloc_pages_mpol+0xb3/0x250
[   98.324300][ T5629]  alloc_pages_noprof+0x90/0x130
[   98.324324][ T5629]  pte_alloc_one+0x2d/0x120
[   98.324371][ T5629]  __pte_alloc+0x32/0x2b0
[   98.324470][ T5629]  __get_locked_pte+0x89/0xb0
[   98.324490][ T5629]  map_ldt_struct+0x227/0x430
[   98.324517][ T5629]  write_ldt+0x442/0x4b0
[   98.324539][ T5629]  __se_sys_modify_ldt+0x6c/0x270
[   98.324669][ T5629]  x64_sys_call+0x2b8f/0x2ff0
[   98.324709][ T5629]  do_syscall_64+0xd2/0x200
[   98.324789][ T5629]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.324810][ T5629]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.324839][ T5629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.324861][ T5629] RIP: 0033:0x7f456db2eba9
[   98.324923][ T5629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.324940][ T5629] RSP: 002b:00007f456c597038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[   98.324960][ T5629] RAX: ffffffffffffffda RBX: 00007f456dd75fa0 RCX: 00007f456db2eba9
[   98.324973][ T5629] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000001
[   98.324985][ T5629] RBP: 00007f456c597090 R08: 0000000000000000 R09: 0000000000000000
[   98.325042][ T5629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   98.325055][ T5629] R13: 00007f456dd76038 R14: 00007f456dd75fa0 R15: 00007ffe31485318
[   98.325073][ T5629]  </TASK>
[   98.325435][   T12] vhci_hcd: stop threads
[   98.486384][ T5623] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   98.492709][   T12] vhci_hcd: release socket
[   98.492724][   T12] vhci_hcd: disconnect device
[   98.514776][ T5623] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[   98.553628][ T5643] FAULT_INJECTION: forcing a failure.
[   98.553628][ T5643] name failslab, interval 1, probability 0, space 0, times 0
[   98.553656][ T5643] CPU: 1 UID: 0 PID: 5643 Comm: syz.2.597 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.553758][ T5643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.553815][ T5643] Call Trace:
[   98.553822][ T5643]  <TASK>
[   98.553829][ T5643]  __dump_stack+0x1d/0x30
[   98.553893][ T5643]  dump_stack_lvl+0xe8/0x140
[   98.553910][ T5643]  dump_stack+0x15/0x1b
[   98.553925][ T5643]  should_fail_ex+0x265/0x280
[   98.553970][ T5643]  should_failslab+0x8c/0xb0
[   98.553990][ T5643]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   98.554022][ T5643]  ? sidtab_sid2str_get+0xa0/0x130
[   98.554082][ T5643]  kmemdup_noprof+0x2b/0x70
[   98.554172][ T5643]  sidtab_sid2str_get+0xa0/0x130
[   98.554210][ T5643]  security_sid_to_context_core+0x1eb/0x2e0
[   98.554230][ T5643]  security_sid_to_context+0x27/0x40
[   98.554249][ T5643]  selinux_lsmprop_to_secctx+0x67/0xf0
[   98.554270][ T5643]  security_lsmprop_to_secctx+0x43/0x80
[   98.554420][ T5643]  audit_log_task_context+0x77/0x190
[   98.554494][ T5643]  audit_log_task+0xf4/0x250
[   98.554522][ T5643]  audit_seccomp+0x61/0x100
[   98.554545][ T5643]  ? __seccomp_filter+0x68c/0x10d0
[   98.554622][ T5643]  __seccomp_filter+0x69d/0x10d0
[   98.554716][ T5643]  ? mas_find+0x5d5/0x700
[   98.554744][ T5643]  ? bpf_trace_run2+0x124/0x1c0
[   98.554838][ T5643]  __secure_computing+0x82/0x150
[   98.554858][ T5643]  syscall_trace_enter+0xcf/0x1e0
[   98.554882][ T5643]  do_syscall_64+0xac/0x200
[   98.554911][ T5643]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.555000][ T5643]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.555027][ T5643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.555129][ T5643] RIP: 0033:0x7f456db2d5bc
[   98.555144][ T5643] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.555160][ T5643] RSP: 002b:00007f456c597030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.555179][ T5643] RAX: ffffffffffffffda RBX: 00007f456dd75fa0 RCX: 00007f456db2d5bc
[   98.555191][ T5643] RDX: 000000000000000f RSI: 00007f456c5970a0 RDI: 0000000000000006
[   98.555234][ T5643] RBP: 00007f456c597090 R08: 0000000000000000 R09: 0000000000000000
[   98.555246][ T5643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.555335][ T5643] R13: 00007f456dd76038 R14: 00007f456dd75fa0 R15: 00007ffe31485318
[   98.555352][ T5643]  </TASK>
[   98.566966][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.692989][ T5651] ipvlan2: entered promiscuous mode
[   98.694113][ T5651] bridge0: port 3(ipvlan2) entered blocking state
[   98.694153][ T5651] bridge0: port 3(ipvlan2) entered disabled state
[   98.694506][ T5651] ipvlan2: entered allmulticast mode
[   98.694520][ T5651] bridge0: entered allmulticast mode
[   98.694914][ T5651] ipvlan2: left allmulticast mode
[   98.694927][ T5651] bridge0: left allmulticast mode
[   99.018305][ T5687] netlink: 8 bytes leftover after parsing attributes in process `syz.3.607'.
[   99.152477][ T5696] netlink: 24 bytes leftover after parsing attributes in process `syz.1.611'.
[   99.182608][ T5692] loop3: detected capacity change from 0 to 8192
[   99.251701][ T5704] ipvlan2: entered promiscuous mode
[   99.266766][ T5704] bridge0: port 3(ipvlan2) entered blocking state
[   99.273315][ T5704] bridge0: port 3(ipvlan2) entered disabled state
[   99.280324][ T5704] ipvlan2: entered allmulticast mode
[   99.285755][ T5704] bridge0: entered allmulticast mode
[   99.293082][ T5706] FAULT_INJECTION: forcing a failure.
[   99.293082][ T5706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.306387][ T5706] CPU: 0 UID: 0 PID: 5706 Comm: syz.1.616 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   99.306460][ T5706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   99.306471][ T5706] Call Trace:
[   99.306477][ T5706]  <TASK>
[   99.306486][ T5706]  __dump_stack+0x1d/0x30
[   99.306508][ T5706]  dump_stack_lvl+0xe8/0x140
[   99.306525][ T5706]  dump_stack+0x15/0x1b
[   99.306538][ T5706]  should_fail_ex+0x265/0x280
[   99.306565][ T5706]  should_fail+0xb/0x20
[   99.306585][ T5706]  should_fail_usercopy+0x1a/0x20
[   99.306610][ T5706]  strncpy_from_user+0x25/0x230
[   99.306653][ T5706]  ? kmem_cache_alloc_noprof+0x186/0x310
[   99.306677][ T5706]  ? getname_flags+0x80/0x3b0
[   99.306717][ T5706]  getname_flags+0xae/0x3b0
[   99.306745][ T5706]  do_sys_openat2+0x60/0x110
[   99.306853][ T5706]  __x64_sys_openat+0xf2/0x120
[   99.306880][ T5706]  x64_sys_call+0x2e9c/0x2ff0
[   99.306933][ T5706]  do_syscall_64+0xd2/0x200
[   99.306981][ T5706]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   99.307006][ T5706]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   99.307112][ T5706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.307129][ T5706] RIP: 0033:0x7fe9d7a9eba9
[   99.307143][ T5706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.307158][ T5706] RSP: 002b:00007fe9d6507038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   99.307176][ T5706] RAX: ffffffffffffffda RBX: 00007fe9d7ce5fa0 RCX: 00007fe9d7a9eba9
[   99.307187][ T5706] RDX: 0000000000044040 RSI: 0000200000000040 RDI: ffffffffffffff9c
[   99.307251][ T5706] RBP: 00007fe9d6507090 R08: 0000000000000000 R09: 0000000000000000
[   99.307261][ T5706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.307274][ T5706] R13: 00007fe9d7ce6038 R14: 00007fe9d7ce5fa0 R15: 00007ffde9f01ad8
[   99.307304][ T5706]  </TASK>
[   99.307871][ T5704] ipvlan2: left allmulticast mode
[   99.497867][ T5704] bridge0: left allmulticast mode
[   99.628762][ T5720] loop5: detected capacity change from 0 to 164
[   99.638275][ T5720] Unable to read rock-ridge attributes
[   99.643978][ T5723] netlink: 14 bytes leftover after parsing attributes in process `syz.1.621'.
[   99.648190][ T5722] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=5722 comm=syz.4.622
[   99.674111][ T5720] Unable to read rock-ridge attributes
[   99.681993][ T5720] iso9660: Corrupted directory entry in block 4 of inode 1792
[   99.699874][ T5723] loop1: detected capacity change from 0 to 1024
[   99.709438][ T5723] EXT4-fs: Ignoring removed orlov option
[   99.725446][ T5723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.761365][ T5728] loop5: detected capacity change from 0 to 128
[   99.776667][ T5728] netlink: 8 bytes leftover after parsing attributes in process `syz.5.623'.
[   99.828280][ T5732] loop5: detected capacity change from 0 to 764
[   99.877888][ T5737] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5737 comm=syz.5.627
[  100.030096][ T5743] tmpfs: Unknown parameter 'mpo‚'
[  100.035642][ T5743] nfs4: Bad value for 'source'
[  100.045691][ T5743] loop3: detected capacity change from 0 to 512
[  100.066589][ T5743] EXT4-fs warning (device loop3): ext4_xattr_inode_get:556: inode #11: comm syz.3.628: EA inode hash validation failed
[  100.089193][ T5743] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.628: corrupted inode contents
[  100.102177][ T5743] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #15: comm syz.3.628: mark_inode_dirty error
[  100.114407][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.126127][ T5743] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.628: corrupted inode contents
[  100.138133][ T5743] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #15: comm syz.3.628: mark_inode_dirty error
[  100.157747][ T5743] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #15: comm syz.3.628: mark inode dirty (error -117)
[  100.196652][ T5743] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  100.207340][ T5743] EXT4-fs (loop3): 1 orphan inode deleted
[  100.214549][ T5743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.548374][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.578217][ T5757] ipvlan2: entered promiscuous mode
[  100.585819][ T5757] bridge0: port 3(ipvlan2) entered blocking state
[  100.592485][ T5757] bridge0: port 3(ipvlan2) entered disabled state
[  100.600804][ T5757] ipvlan2: entered allmulticast mode
[  100.605691][ T5755] tmpfs: Unknown parameter 'mpo‚'
[  100.606230][ T5757] bridge0: entered allmulticast mode
[  100.612438][ T5755] nfs4: Bad value for 'source'
[  100.617381][ T5757] ipvlan2: left allmulticast mode
[  100.626543][ T5757] bridge0: left allmulticast mode
[  100.632164][ T5755] loop4: detected capacity change from 0 to 512
[  100.647726][ T5755] EXT4-fs warning (device loop4): ext4_xattr_inode_get:556: inode #11: comm syz.4.633: EA inode hash validation failed
[  100.661995][ T5755] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #15: comm syz.4.633: corrupted inode contents
[  100.674261][ T5755] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #15: comm syz.4.633: mark_inode_dirty error
[  100.687016][ T5755] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #15: comm syz.4.633: corrupted inode contents
[  100.700405][ T5755] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #15: comm syz.4.633: mark_inode_dirty error
[  100.713069][ T5755] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #15: comm syz.4.633: mark inode dirty (error -117)
[  100.726542][ T5755] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  100.735941][ T5755] EXT4-fs (loop4): 1 orphan inode deleted
[  100.743017][ T5755] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.778403][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.799089][ T5761] loop3: detected capacity change from 0 to 128
[  100.822494][ T5761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.635'.
[  100.850320][ T5766] serio: Serial port ptm0
[  100.902835][ T5769] loop3: detected capacity change from 0 to 8192
[  101.040802][ T5781] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5781 comm=syz.5.641
[  101.463512][ T5795] netlink: 'syz.2.644': attribute type 21 has an invalid length.
[  101.482960][ T5796] tmpfs: Unknown parameter 'mpo‚'
[  101.519889][ T5796] nfs4: Bad value for 'source'
[  101.661337][ T5798] loop1: detected capacity change from 0 to 512
[  101.721759][ T5798] EXT4-fs warning (device loop1): ext4_xattr_inode_get:556: inode #11: comm syz.1.645: EA inode hash validation failed
[  101.763413][ T5798] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.645: corrupted inode contents
[  101.775389][ T5798] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #15: comm syz.1.645: mark_inode_dirty error
[  101.799128][ T5798] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.645: corrupted inode contents
[  101.848102][ T5803] syz_tun: entered allmulticast mode
[  101.854777][ T5798] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #15: comm syz.1.645: mark_inode_dirty error
[  101.867122][ T5802] syz_tun: left allmulticast mode
[  101.907261][ T5809] loop3: detected capacity change from 0 to 128
[  101.917553][ T5798] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #15: comm syz.1.645: mark inode dirty (error -117)
[  101.947110][ T5809] netlink: 8 bytes leftover after parsing attributes in process `syz.3.649'.
[  101.949381][ T5798] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  102.016449][ T5798] EXT4-fs (loop1): 1 orphan inode deleted
[  102.023960][ T5798] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.028122][ T5817] loop3: detected capacity change from 0 to 1024
[  102.069152][ T5817] journal_path: Non-blockdev passed as './file1'
[  102.073237][ T5820] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5820 comm=syz.5.653
[  102.075514][ T5817] EXT4-fs: error: could not find journal device path
[  102.112512][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.363522][ T5839] loop2: detected capacity change from 0 to 8192
[  102.821855][ T5852] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5852 comm=syz.1.663
[  102.890330][ T5857] ipvlan2: entered promiscuous mode
[  102.897448][ T5857] bridge0: port 4(ipvlan2) entered blocking state
[  102.903979][ T5857] bridge0: port 4(ipvlan2) entered disabled state
[  102.958400][ T5857] ipvlan2: entered allmulticast mode
[  102.963771][ T5857] bridge0: entered allmulticast mode
[  102.990135][ T5857] ipvlan2: left allmulticast mode
[  102.995351][ T5857] bridge0: left allmulticast mode
[  103.158711][   T36] usb 7-1: enqueue for inactive port 0
[  103.164341][   T36] usb 7-1: enqueue for inactive port 0
[  103.268729][   T36] vhci_hcd: vhci_device speed not set
[  103.443341][ T5873] loop5: detected capacity change from 0 to 512
[  103.449375][   T29] kauditd_printk_skb: 508 callbacks suppressed
[  103.449389][   T29] audit: type=1326 audit(1757698140.107:17256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.493293][   T29] audit: type=1326 audit(1757698140.147:17257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.516858][   T29] audit: type=1326 audit(1757698140.147:17258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.540348][   T29] audit: type=1326 audit(1757698140.147:17259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.563772][   T29] audit: type=1326 audit(1757698140.147:17260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f456db2ebe3 code=0x7ffc0000
[  103.587049][   T29] audit: type=1326 audit(1757698140.147:17261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f456db2ebe3 code=0x7ffc0000
[  103.610407][   T29] audit: type=1326 audit(1757698140.147:17262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.633817][   T29] audit: type=1326 audit(1757698140.147:17263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.657534][   T29] audit: type=1326 audit(1757698140.147:17264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.680973][   T29] audit: type=1326 audit(1757698140.147:17265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5874 comm="syz.2.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456db2eba9 code=0x7ffc0000
[  103.754883][ T5890] tipc: Started in network mode
[  103.759899][ T5890] tipc: Node identity fe800000000000000000000000000016, cluster identity 4711
[  103.775240][ T5890] tipc: Enabled bearer <udp:syz1>, priority 10
[  103.777833][ T5873] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.813051][ T5873] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.817364][ T5896] loop2: detected capacity change from 0 to 512
[  103.828407][ T5898] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5898 comm=syz.4.675
[  103.871204][ T5896] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  103.902991][ T5896] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  103.934343][ T5873] netlink: 256 bytes leftover after parsing attributes in process `syz.5.667'.
[  104.053796][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.377541][ T5913] loop2: detected capacity change from 0 to 1024
[  104.434092][ T5910] loop5: detected capacity change from 0 to 8192
[  104.518193][ T5913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.588724][ T5913] EXT4-fs error (device loop2): __ext4_new_inode:1073: comm syz.2.681: reserved inode found cleared - inode=18
[  104.671703][ T5913] netlink: 36 bytes leftover after parsing attributes in process `syz.2.681'.
[  104.768773][ T1044] tipc: Node number set to 4269801494
[  104.850547][ T5969] loop3: detected capacity change from 0 to 764
[  104.885193][ T5972] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[  104.897958][ T5973] loop4: detected capacity change from 0 to 128
[  104.917888][ T5969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.689'.
[  104.924184][ T5973] netlink: 8 bytes leftover after parsing attributes in process `syz.4.690'.
[  104.962147][ T5972] loop1: detected capacity change from 0 to 1024
[  104.978260][ T5972] EXT4-fs: Ignoring removed orlov option
[  105.042072][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.062762][ T5987] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5987 comm=syz.5.692
[  105.064030][ T5972] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  105.118399][ T5972] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.137240][ T5993] loop2: detected capacity change from 0 to 512
[  105.227152][ T5993] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  105.238296][ T5993] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  105.367044][ T6011] loop2: detected capacity change from 0 to 512
[  105.378410][ T6011] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  105.398055][ T6011] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  105.801106][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  105.909137][ T6050] loop4: detected capacity change from 0 to 764
[  105.942278][ T6050] netlink: 8 bytes leftover after parsing attributes in process `syz.4.701'.
[  105.995199][ T6055] loop5: detected capacity change from 0 to 764
[  106.025639][ T6055] netlink: 8 bytes leftover after parsing attributes in process `syz.5.703'.
[  106.028253][ T6053] loop2: detected capacity change from 0 to 8192
[  106.059819][ T6061] loop1: detected capacity change from 0 to 128
[  106.090157][ T6065] netlink: 14 bytes leftover after parsing attributes in process `syz.3.708'.
[  106.092857][ T6064] netlink: 24 bytes leftover after parsing attributes in process `syz.5.706'.
[  106.146982][ T6065] loop3: detected capacity change from 0 to 1024
[  106.163795][ T6065] EXT4-fs: Ignoring removed orlov option
[  106.168929][ T3570] usb usb8-port1: attempt power cycle
[  106.203496][ T6065] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.282025][ T6081] loop5: detected capacity change from 0 to 1024
[  106.302271][ T6081] EXT4-fs: inline encryption not supported
[  106.308126][ T6081] EXT4-fs: Ignoring removed i_version option
[  106.317014][ T6081] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  106.347436][ T6081] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.712: lblock 2 mapped to illegal pblock 2 (length 1)
[  106.401560][ T6081] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.712: lblock 0 mapped to illegal pblock 48 (length 1)
[  106.439504][ T6081] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.712: Failed to acquire dquot type 0
[  106.452116][ T6081] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  106.461686][ T6081] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.712: mark_inode_dirty error
[  106.473046][ T6081] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  106.483315][ T6081] EXT4-fs (loop5): 1 orphan inode deleted
[  106.499117][ T6081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.514339][   T41] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  106.529310][   T41] EXT4-fs error (device loop5): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0
[  106.541771][ T6081] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.542380][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.552147][ T6081] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.712: Invalid inode table block 1 in block_group 0
[  106.573414][ T6081] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  106.586805][ T6081] EXT4-fs error (device loop5): ext4_quota_off:7221: inode #3: comm syz.5.712: mark_inode_dirty error
[  106.602936][ T6090] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6090 comm=syz.3.714
[  106.620077][ T6090] FAULT_INJECTION: forcing a failure.
[  106.620077][ T6090] name failslab, interval 1, probability 0, space 0, times 0
[  106.632757][ T6090] CPU: 0 UID: 0 PID: 6090 Comm: syz.3.714 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  106.632781][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  106.632791][ T6090] Call Trace:
[  106.632797][ T6090]  <TASK>
[  106.632803][ T6090]  __dump_stack+0x1d/0x30
[  106.632821][ T6090]  dump_stack_lvl+0xe8/0x140
[  106.632839][ T6090]  dump_stack+0x15/0x1b
[  106.632856][ T6090]  should_fail_ex+0x265/0x280
[  106.632880][ T6090]  should_failslab+0x8c/0xb0
[  106.632905][ T6090]  kmem_cache_alloc_noprof+0x50/0x310
[  106.632931][ T6090]  ? vm_area_dup+0x33/0x2c0
[  106.632957][ T6090]  vm_area_dup+0x33/0x2c0
[  106.632979][ T6090]  __split_vma+0xe9/0x650
[  106.633003][ T6090]  vma_modify+0x3f2/0xc80
[  106.633023][ T6090]  ? path_openat+0x1bf8/0x2170
[  106.633044][ T6090]  vma_modify_flags+0x101/0x130
[  106.633072][ T6090]  mprotect_fixup+0x2cc/0x570
[  106.633097][ T6090]  do_mprotect_pkey+0x6d6/0x980
[  106.633134][ T6090]  __x64_sys_mprotect+0x48/0x60
[  106.633158][ T6090]  x64_sys_call+0x274e/0x2ff0
[  106.633179][ T6090]  do_syscall_64+0xd2/0x200
[  106.633208][ T6090]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  106.633230][ T6090]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  106.633253][ T6090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.633270][ T6090] RIP: 0033:0x7f28e7b3eba9
[  106.633284][ T6090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.633301][ T6090] RSP: 002b:00007f28e659f038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a
[  106.633319][ T6090] RAX: ffffffffffffffda RBX: 00007f28e7d85fa0 RCX: 00007f28e7b3eba9
[  106.633332][ T6090] RDX: 0000000000000002 RSI: 0000000000800000 RDI: 00002000004a4000
[  106.633344][ T6090] RBP: 00007f28e659f090 R08: 0000000000000000 R09: 0000000000000000
[  106.633355][ T6090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.633366][ T6090] R13: 00007f28e7d86038 R14: 00007f28e7d85fa0 R15: 00007ffc0987bfb8
[  106.633384][ T6090]  </TASK>
[  106.874984][ T6094] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6094 comm=syz.3.717
[  106.890562][ T6096] serio: Serial port ptm0
[  107.002557][ T6100] loop2: detected capacity change from 0 to 764
[  107.031526][ T6100] netlink: 8 bytes leftover after parsing attributes in process `syz.2.718'.
[  107.762588][ T6114] netlink: 24 bytes leftover after parsing attributes in process `syz.1.722'.
[  107.772372][ T6109] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6109 comm=syz.2.721
[  108.074840][ T6125] loop5: detected capacity change from 0 to 128
[  108.081563][ T6124] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6124 comm=syz.3.724
[  108.127829][ T6125] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  108.306088][ T6125] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.496177][   T29] kauditd_printk_skb: 420 callbacks suppressed
[  108.496210][   T29] audit: type=1400 audit(1757698145.147:17683): avc:  denied  { ioctl } for  pid=6123 comm="syz.5.725" path="socket:[13338]" dev="sockfs" ino=13338 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  108.528668][ T6141] FAULT_INJECTION: forcing a failure.
[  108.528668][ T6141] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.541836][ T6141] CPU: 0 UID: 0 PID: 6141 Comm: syz.1.731 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  108.541862][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.541921][ T6141] Call Trace:
[  108.541928][ T6141]  <TASK>
[  108.541935][ T6141]  __dump_stack+0x1d/0x30
[  108.541956][ T6141]  dump_stack_lvl+0xe8/0x140
[  108.542053][ T6141]  dump_stack+0x15/0x1b
[  108.542067][ T6141]  should_fail_ex+0x265/0x280
[  108.542095][ T6141]  should_fail+0xb/0x20
[  108.542111][ T6141]  should_fail_usercopy+0x1a/0x20
[  108.542145][ T6141]  strncpy_from_user+0x25/0x230
[  108.542175][ T6141]  ? kmem_cache_alloc_noprof+0x186/0x310
[  108.542204][ T6141]  ? getname_flags+0x80/0x3b0
[  108.542345][ T6141]  getname_flags+0xae/0x3b0
[  108.542443][ T6141]  __x64_sys_link+0x40/0x70
[  108.542467][ T6141]  x64_sys_call+0x12a7/0x2ff0
[  108.542521][ T6141]  do_syscall_64+0xd2/0x200
[  108.542553][ T6141]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  108.542632][ T6141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.542654][ T6141] RIP: 0033:0x7fe9d7a9eba9
[  108.542669][ T6141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.542687][ T6141] RSP: 002b:00007fe9d6507038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056
[  108.542707][ T6141] RAX: ffffffffffffffda RBX: 00007fe9d7ce5fa0 RCX: 00007fe9d7a9eba9
[  108.542720][ T6141] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000200000000200
[  108.542814][ T6141] RBP: 00007fe9d6507090 R08: 0000000000000000 R09: 0000000000000000
[  108.542827][ T6141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.542868][ T6141] R13: 00007fe9d7ce6038 R14: 00007fe9d7ce5fa0 R15: 00007ffde9f01ad8
[  108.542883][ T6141]  </TASK>
[  108.728569][ T3570] usb usb8-port1: unable to enumerate USB device
[  108.754968][ T6145] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6145 comm=syz.4.734
[  108.765976][ T6149] loop2: detected capacity change from 0 to 764
[  108.805741][ T6147] 9pnet: p9_errstr2errno: server reported unknown error 
[  108.848826][   T29] audit: type=1400 audit(1757698145.487:17684): avc:  denied  { mounton } for  pid=6146 comm="syz.1.733" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  108.913384][ T6149] netlink: 8 bytes leftover after parsing attributes in process `syz.2.732'.
[  108.947070][ T6158] loop3: detected capacity change from 0 to 2048
[  108.989352][ T6163] FAULT_INJECTION: forcing a failure.
[  108.989352][ T6163] name failslab, interval 1, probability 0, space 0, times 0
[  109.002177][ T6163] CPU: 1 UID: 0 PID: 6163 Comm: syz.2.738 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  109.002239][ T6163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  109.002249][ T6163] Call Trace:
[  109.002256][ T6163]  <TASK>
[  109.002263][ T6163]  __dump_stack+0x1d/0x30
[  109.002382][ T6163]  dump_stack_lvl+0xe8/0x140
[  109.002446][ T6163]  dump_stack+0x15/0x1b
[  109.002459][ T6163]  should_fail_ex+0x265/0x280
[  109.002480][ T6163]  should_failslab+0x8c/0xb0
[  109.002504][ T6163]  kmem_cache_alloc_node_noprof+0x57/0x320
[  109.002534][ T6163]  ? __alloc_skb+0x101/0x320
[  109.002639][ T6163]  __alloc_skb+0x101/0x320
[  109.002656][ T6163]  ? audit_log_start+0x365/0x6c0
[  109.002686][ T6163]  audit_log_start+0x380/0x6c0
[  109.002713][ T6163]  ? kmem_cache_alloc_noprof+0x220/0x310
[  109.002782][ T6163]  audit_seccomp+0x48/0x100
[  109.002802][ T6163]  ? __seccomp_filter+0x68c/0x10d0
[  109.002823][ T6163]  __seccomp_filter+0x69d/0x10d0
[  109.002844][ T6163]  ? _raw_spin_unlock+0x26/0x50
[  109.002936][ T6163]  ? __inet_hash+0x6d6/0x740
[  109.003121][ T6163]  __secure_computing+0x82/0x150
[  109.003142][ T6163]  syscall_trace_enter+0xcf/0x1e0
[  109.003167][ T6163]  do_syscall_64+0xac/0x200
[  109.003197][ T6163]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  109.003301][ T6163]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  109.003331][ T6163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.003440][ T6163] RIP: 0033:0x7f456db2d5bc
[  109.003457][ T6163] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  109.003474][ T6163] RSP: 002b:00007f456c597030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  109.003494][ T6163] RAX: ffffffffffffffda RBX: 00007f456dd75fa0 RCX: 00007f456db2d5bc
[  109.003581][ T6163] RDX: 000000000000000f RSI: 00007f456c5970a0 RDI: 0000000000000007
[  109.003594][ T6163] RBP: 00007f456c597090 R08: 0000000000000000 R09: 0000000000000000
[  109.003678][ T6163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.003689][ T6163] R13: 00007f456dd76038 R14: 00007f456dd75fa0 R15: 00007ffe31485318
[  109.003709][ T6163]  </TASK>
[  109.003719][ T6163] audit: audit_lost=5 audit_rate_limit=0 audit_backlog_limit=64
[  109.085263][   T29] audit: type=1326 audit(1757698145.507:17685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.087080][ T6163] audit: out of memory in audit_log_start
[  109.177008][ T6158] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.179487][   T29] audit: type=1326 audit(1757698145.507:17686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.194837][ T6158] tipc: Enabling of bearer <eth:syzkaller0
> rejected, failed to enable media
[  109.195463][   T29] audit: type=1326 audit(1757698145.507:17687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.318802][   T29] audit: type=1326 audit(1757698145.507:17688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.342356][   T29] audit: type=1326 audit(1757698145.507:17689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.365947][   T29] audit: type=1326 audit(1757698145.507:17690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6153 comm="syz.3.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28e7b3eba9 code=0x7ffc0000
[  109.486434][ T6178] loop2: detected capacity change from 0 to 1024
[  109.513638][ T6178] EXT4-fs: inline encryption not supported
[  109.534662][ T6178] EXT4-fs: Ignoring removed bh option
[  109.561337][ T6178] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.600545][ T6178] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.679275][ T3322] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  109.698154][ T3322] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  109.713110][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.767330][ T6190] rdma_op ffff8881077b3580 conn xmit_rdma 0000000000000000
[  109.775661][ T6188] loop5: detected capacity change from 0 to 512
[  109.828999][ T6188] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  109.860127][ T6188] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal
[  110.002484][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.023984][ T6208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.751'.
[  110.057741][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.091236][ T6208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.751'.
[  110.112347][ T2994] udevd[2994]: worker [3521] terminated by signal 33 (Unknown signal 33)
[  110.134490][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.156847][ T6208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.751'.
[  110.168166][ T6215] loop4: detected capacity change from 0 to 128
[  110.186561][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.213185][ T6216] loop2: detected capacity change from 0 to 2048
[  110.220912][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.239653][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.278929][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.306872][ T6216] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  110.383108][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.418022][ T6213] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:169: inode #12: comm syz.2.753: inline data xattr refers to an external xattr inode
[  110.419913][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.434720][ T6213] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:169: inode #12: comm syz.2.753: inline data xattr refers to an external xattr inode
[  110.484187][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  110.508361][ T6208] netlink: 'syz.5.751': attribute type 21 has an invalid length.
[  110.525267][ T6226] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6226 comm=syz.2.757
[  110.561802][ T6228] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6228 comm=syz.4.759
[  110.736353][ T6242] loop3: detected capacity change from 0 to 512
[  110.743770][ T6242] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  110.753618][ T6242] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[  111.623519][ T6257] SELinux:  Context  is not valid (left unmapped).
[  111.634831][ T6257] blkio.reset_stats is deprecated
[  111.641774][ T6257] tipc: Enabling of bearer <ib:bond0> rejected, failed to enable media
[  111.721006][ T6261] FAULT_INJECTION: forcing a failure.
[  111.721006][ T6261] name failslab, interval 1, probability 0, space 0, times 0
[  111.733849][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.3.768 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  111.733872][ T6261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.733883][ T6261] Call Trace:
[  111.733968][ T6261]  <TASK>
[  111.733975][ T6261]  __dump_stack+0x1d/0x30
[  111.734057][ T6261]  dump_stack_lvl+0xe8/0x140
[  111.734076][ T6261]  dump_stack+0x15/0x1b
[  111.734093][ T6261]  should_fail_ex+0x265/0x280
[  111.734117][ T6261]  should_failslab+0x8c/0xb0
[  111.734167][ T6261]  kmem_cache_alloc_node_noprof+0x57/0x320
[  111.734191][ T6261]  ? __alloc_skb+0x101/0x320
[  111.734211][ T6261]  __alloc_skb+0x101/0x320
[  111.734238][ T6261]  netlink_alloc_large_skb+0xba/0xf0
[  111.734348][ T6261]  netlink_sendmsg+0x3cf/0x6b0
[  111.734376][ T6261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.734403][ T6261]  __sock_sendmsg+0x145/0x180
[  111.734433][ T6261]  ____sys_sendmsg+0x31e/0x4e0
[  111.734457][ T6261]  ___sys_sendmsg+0x17b/0x1d0
[  111.734524][ T6261]  __x64_sys_sendmsg+0xd4/0x160
[  111.734547][ T6261]  x64_sys_call+0x191e/0x2ff0
[  111.734564][ T6261]  do_syscall_64+0xd2/0x200
[  111.734652][ T6261]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  111.734672][ T6261]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  111.734694][ T6261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.734758][ T6261] RIP: 0033:0x7f28e7b3eba9
[  111.734772][ T6261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.734790][ T6261] RSP: 002b:00007f28e659f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.734815][ T6261] RAX: ffffffffffffffda RBX: 00007f28e7d85fa0 RCX: 00007f28e7b3eba9
[  111.734829][ T6261] RDX: 0000000020000004 RSI: 0000200000000040 RDI: 0000000000000006
[  111.734882][ T6261] RBP: 00007f28e659f090 R08: 0000000000000000 R09: 0000000000000000
[  111.734895][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.734908][ T6261] R13: 00007f28e7d86038 R14: 00007f28e7d85fa0 R15: 00007ffc0987bfb8
[  111.734927][ T6261]  </TASK>
[  111.994205][ T6272] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6272 comm=syz.4.772
[  112.007644][ T6270] FAULT_INJECTION: forcing a failure.
[  112.007644][ T6270] name failslab, interval 1, probability 0, space 0, times 0
[  112.020411][ T6270] CPU: 1 UID: 0 PID: 6270 Comm: syz.3.771 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  112.020437][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  112.020450][ T6270] Call Trace:
[  112.020456][ T6270]  <TASK>
[  112.020463][ T6270]  __dump_stack+0x1d/0x30
[  112.020483][ T6270]  dump_stack_lvl+0xe8/0x140
[  112.020564][ T6270]  dump_stack+0x15/0x1b
[  112.020578][ T6270]  should_fail_ex+0x265/0x280
[  112.020599][ T6270]  should_failslab+0x8c/0xb0
[  112.020662][ T6270]  __kmalloc_noprof+0xa5/0x3e0
[  112.020690][ T6270]  ? usb_alloc_urb+0x42/0xc0
[  112.020780][ T6270]  usb_alloc_urb+0x42/0xc0
[  112.020808][ T6270]  alloc_async+0x41/0x90
[  112.020828][ T6270]  proc_do_submiturb+0x76d/0x1d20
[  112.020850][ T6270]  proc_submiturb+0x7b/0xa0
[  112.020879][ T6270]  usbdev_ioctl+0xcc2/0x1710
[  112.020963][ T6270]  ? __pfx_usbdev_ioctl+0x10/0x10
[  112.020986][ T6270]  __se_sys_ioctl+0xce/0x140
[  112.021002][ T6270]  __x64_sys_ioctl+0x43/0x50
[  112.021016][ T6270]  x64_sys_call+0x1816/0x2ff0
[  112.021064][ T6270]  do_syscall_64+0xd2/0x200
[  112.021090][ T6270]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  112.021114][ T6270]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  112.021142][ T6270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.021197][ T6270] RIP: 0033:0x7f28e7b3eba9
[  112.021211][ T6270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.021238][ T6270] RSP: 002b:00007f28e659f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  112.021257][ T6270] RAX: ffffffffffffffda RBX: 00007f28e7d85fa0 RCX: 00007f28e7b3eba9
[  112.021268][ T6270] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000007
[  112.021280][ T6270] RBP: 00007f28e659f090 R08: 0000000000000000 R09: 0000000000000000
[  112.021292][ T6270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.021304][ T6270] R13: 00007f28e7d86038 R14: 00007f28e7d85fa0 R15: 00007ffc0987bfb8
[  112.021320][ T6270]  </TASK>
[  112.024633][ T6274] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6274 comm=syz.5.773
[  112.298249][ T6276] loop2: detected capacity change from 0 to 128
[  113.111899][ T6278] SELinux: security_context_str_to_sid (Ö) failed with errno=-22
[  113.180528][ T6278] loop3: detected capacity change from 0 to 1024
[  113.187240][ T6278] EXT4-fs: Ignoring removed orlov option
[  113.214294][ T6278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  113.260058][ T6278] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.354740][ T6324] pim6reg: entered allmulticast mode
[  113.388708][ T6328] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6328 comm=syz.5.785
[  113.414519][ T6332] loop2: detected capacity change from 0 to 1024
[  113.422520][ T6332] EXT4-fs: Ignoring removed orlov option
[  113.446468][ T6332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  113.461016][ T6332] ext4 filesystem being mounted at /174/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.473027][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  113.574252][ T6332] FAULT_INJECTION: forcing a failure.
[  113.574252][ T6332] name failslab, interval 1, probability 0, space 0, times 0
[  113.586985][ T6332] CPU: 1 UID: 0 PID: 6332 Comm: syz.2.786 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  113.587011][ T6332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  113.587022][ T6332] Call Trace:
[  113.587028][ T6332]  <TASK>
[  113.587035][ T6332]  __dump_stack+0x1d/0x30
[  113.587053][ T6332]  dump_stack_lvl+0xe8/0x140
[  113.587071][ T6332]  dump_stack+0x15/0x1b
[  113.587087][ T6332]  should_fail_ex+0x265/0x280
[  113.587108][ T6332]  should_failslab+0x8c/0xb0
[  113.587127][ T6332]  kmem_cache_alloc_noprof+0x50/0x310
[  113.587148][ T6332]  ? mas_alloc_nodes+0x265/0x520
[  113.587179][ T6332]  mas_alloc_nodes+0x265/0x520
[  113.587211][ T6332]  mas_preallocate+0x33e/0x520
[  113.587236][ T6332]  __split_vma+0x240/0x650
[  113.587261][ T6332]  ? mas_find+0x5d5/0x700
[  113.587288][ T6332]  vms_gather_munmap_vmas+0x2b2/0x7b0
[  113.587309][ T6332]  mmap_region+0x53f/0x1630
[  113.587329][ T6332]  ? bsearch+0x95/0xc0
[  113.587345][ T6332]  ? __pfx_cmp_ex_search+0x10/0x10
[  113.587364][ T6332]  ? rep_movs_alternative+0xf/0x90
[  113.587387][ T6332]  ? search_extable+0x53/0x80
[  113.587403][ T6332]  ? rep_movs_alternative+0xf/0x90
[  113.587422][ T6332]  ? rep_movs_alternative+0xf/0x90
[  113.587451][ T6332]  do_mmap+0x9b3/0xbe0
[  113.587478][ T6332]  vm_mmap_pgoff+0x17a/0x2e0
[  113.587502][ T6332]  ksys_mmap_pgoff+0x268/0x310
[  113.587517][ T6332]  x64_sys_call+0x14a3/0x2ff0
[  113.587536][ T6332]  do_syscall_64+0xd2/0x200
[  113.587562][ T6332]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  113.587583][ T6332]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  113.587607][ T6332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.587626][ T6332] RIP: 0033:0x7f456db2eba9
[  113.587641][ T6332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.587658][ T6332] RSP: 002b:00007f456c597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  113.587677][ T6332] RAX: ffffffffffffffda RBX: 00007f456dd75fa0 RCX: 00007f456db2eba9
[  113.587689][ T6332] RDX: 00000000027ffff7 RSI: 0000000000600000 RDI: 0000200000000000
[  113.587702][ T6332] RBP: 00007f456c597090 R08: 0000000000000005 R09: 0000000000000000
[  113.587714][ T6332] R10: 0000000004012011 R11: 0000000000000246 R12: 0000000000000001
[  113.587726][ T6332] R13: 00007f456dd76038 R14: 00007f456dd75fa0 R15: 00007ffe31485318
[  113.587740][ T6332]  </TASK>
[  113.881319][ T6338] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.786: lblock 0 mapped to illegal pblock 0 (length 1)
[  113.896686][ T6338] EXT4-fs error (device loop2): ext4_ext_remove_space:2955: inode #15: comm syz.2.786: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  113.973606][   T29] kauditd_printk_skb: 789 callbacks suppressed
[  113.973704][   T29] audit: type=1326 audit(1757698150.507:18480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6339 comm="syz.4.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.003418][   T29] audit: type=1326 audit(1757698150.507:18481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6339 comm="syz.4.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.026819][   T29] audit: type=1326 audit(1757698150.507:18482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6339 comm="syz.4.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.050344][   T29] audit: type=1326 audit(1757698150.507:18483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6339 comm="syz.4.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.091531][ T6345] FAULT_INJECTION: forcing a failure.
[  114.091531][ T6345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.104641][ T6345] CPU: 0 UID: 0 PID: 6345 Comm: syz.4.789 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.104669][ T6345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  114.104681][ T6345] Call Trace:
[  114.104689][ T6345]  <TASK>
[  114.104698][ T6345]  __dump_stack+0x1d/0x30
[  114.104718][ T6345]  dump_stack_lvl+0xe8/0x140
[  114.104814][ T6345]  dump_stack+0x15/0x1b
[  114.104831][ T6345]  should_fail_ex+0x265/0x280
[  114.104915][ T6345]  should_fail+0xb/0x20
[  114.104936][ T6345]  should_fail_usercopy+0x1a/0x20
[  114.104962][ T6345]  _copy_from_user+0x1c/0xb0
[  114.104987][ T6345]  simple_transaction_get+0xe2/0x130
[  114.105025][ T6345]  selinux_transaction_write+0x9d/0x110
[  114.105061][ T6345]  ? __pfx_selinux_transaction_write+0x10/0x10
[  114.105088][ T6345]  vfs_write+0x269/0x960
[  114.105122][ T6345]  ? __cond_resched+0x4e/0x90
[  114.105211][ T6345]  ksys_write+0xda/0x1a0
[  114.105235][ T6345]  __x64_sys_write+0x40/0x50
[  114.105283][ T6345]  x64_sys_call+0x27fe/0x2ff0
[  114.105306][ T6345]  do_syscall_64+0xd2/0x200
[  114.105397][ T6345]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  114.105417][ T6345]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  114.105440][ T6345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.105500][ T6345] RIP: 0033:0x7f268498eba9
[  114.105516][ T6345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.105534][ T6345] RSP: 002b:00007f26833f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.105609][ T6345] RAX: ffffffffffffffda RBX: 00007f2684bd5fa0 RCX: 00007f268498eba9
[  114.105623][ T6345] RDX: 000000000000005a RSI: 0000200000000540 RDI: 0000000000000003
[  114.105636][ T6345] RBP: 00007f26833f7090 R08: 0000000000000000 R09: 0000000000000000
[  114.105649][ T6345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.105662][ T6345] R13: 00007f2684bd6038 R14: 00007f2684bd5fa0 R15: 00007fffea67f658
[  114.105681][ T6345]  </TASK>
[  114.327812][   T29] audit: type=1326 audit(1757698150.977:18484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6346 comm="syz.3.787" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f28e7b3eba9 code=0x0
[  114.370430][ T6352] __nla_validate_parse: 63 callbacks suppressed
[  114.370454][ T6352] netlink: 12 bytes leftover after parsing attributes in process `syz.5.790'.
[  114.439914][   T29] audit: type=1107 audit(1757698151.097:18485): pid=6346 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  114.455198][ T6353] loop3: detected capacity change from 0 to 128
[  114.464747][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  114.470957][   T29] audit: type=1326 audit(1757698151.107:18486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6358 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.497261][   T29] audit: type=1326 audit(1757698151.107:18487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6358 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.520749][   T29] audit: type=1326 audit(1757698151.127:18488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6358 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.544155][   T29] audit: type=1326 audit(1757698151.127:18489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6358 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  114.600237][ T6364] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6364 comm=syz.4.795
[  114.656050][ T6372] 9pnet_fd: Insufficient options for proto=fd
[  114.712300][ T6384] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6384 comm=syz.2.801
[  114.840604][ T6386] loop5: detected capacity change from 0 to 8192
[  115.250757][ T6406] FAULT_INJECTION: forcing a failure.
[  115.250757][ T6406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.263859][ T6406] CPU: 0 UID: 0 PID: 6406 Comm: syz.3.803 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.263888][ T6406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.263901][ T6406] Call Trace:
[  115.263999][ T6406]  <TASK>
[  115.264007][ T6406]  __dump_stack+0x1d/0x30
[  115.264029][ T6406]  dump_stack_lvl+0xe8/0x140
[  115.264049][ T6406]  dump_stack+0x15/0x1b
[  115.264067][ T6406]  should_fail_ex+0x265/0x280
[  115.264157][ T6406]  should_fail+0xb/0x20
[  115.264178][ T6406]  should_fail_usercopy+0x1a/0x20
[  115.264200][ T6406]  _copy_from_user+0x1c/0xb0
[  115.264225][ T6406]  smc_setsockopt+0x2ac/0x750
[  115.264297][ T6406]  ? __pfx_smc_setsockopt+0x10/0x10
[  115.264315][ T6406]  __sys_setsockopt+0x184/0x200
[  115.264337][ T6406]  __x64_sys_setsockopt+0x64/0x80
[  115.264361][ T6406]  x64_sys_call+0x20ec/0x2ff0
[  115.264384][ T6406]  do_syscall_64+0xd2/0x200
[  115.264422][ T6406]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.264444][ T6406]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  115.264467][ T6406]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.264533][ T6406] RIP: 0033:0x7f28e7b3eba9
[  115.264549][ T6406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.264566][ T6406] RSP: 002b:00007f28e659f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  115.264582][ T6406] RAX: ffffffffffffffda RBX: 00007f28e7d85fa0 RCX: 00007f28e7b3eba9
[  115.264593][ T6406] RDX: 000000000000000d RSI: 0000000000000006 RDI: 0000000000000004
[  115.264604][ T6406] RBP: 00007f28e659f090 R08: 0000000000000004 R09: 0000000000000000
[  115.264614][ T6406] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  115.264627][ T6406] R13: 00007f28e7d86038 R14: 00007f28e7d85fa0 R15: 00007ffc0987bfb8
[  115.264647][ T6406]  </TASK>
[  115.482176][ T6408] netlink: 72 bytes leftover after parsing attributes in process `syz.1.804'.
[  115.532434][ T6409] geneve2: entered promiscuous mode
[  115.537672][ T6409] geneve2: entered allmulticast mode
[  115.563299][ T6413] loop3: detected capacity change from 0 to 764
[  115.596623][ T6408] geneve2: entered promiscuous mode
[  115.602035][ T6408] geneve2: entered allmulticast mode
[  115.648759][ T6417] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6417 comm=syz.4.808
[  115.699779][ T6420] tipc: Started in network mode
[  115.704667][ T6420] tipc: Node identity 1ad6490d2afc, cluster identity 4711
[  115.711983][ T6420] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  115.731399][ T6420] syzkaller0: entered promiscuous mode
[  115.736910][ T6420] syzkaller0: entered allmulticast mode
[  115.756964][ T6433] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6433 comm=syz.5.816
[  115.762774][ T6420] tipc: Resetting bearer <eth:syzkaller0>
[  115.787689][ T6420] loop3: detected capacity change from 0 to 1024
[  115.796012][ T6420] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  115.812103][ T6420] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[  115.817764][ T6438] serio: Serial port ptm0
[  115.820535][ T6420] EXT4-fs (loop3): failed to initialize system zone (-117)
[  115.832055][ T6444] loop1: detected capacity change from 0 to 1024
[  115.848032][ T6420] EXT4-fs (loop3): mount failed
[  115.855639][ T6444] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.812: Failed to acquire dquot type 0
[  115.868410][ T6444] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  115.884415][ T6444] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.812: corrupted inode contents
[  115.898265][ T6444] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #13: comm syz.1.812: mark_inode_dirty error
[  115.912302][ T6444] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.812: corrupted inode contents
[  115.931244][ T6444] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.812: mark_inode_dirty error
[  115.942950][ T6444] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.812: corrupted inode contents
[  115.955968][ T6444] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  115.965423][ T6444] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.812: corrupted inode contents
[  115.977883][ T6418] tipc: Resetting bearer <eth:syzkaller0>
[  115.983747][ T6444] EXT4-fs error (device loop1): ext4_truncate:4666: inode #13: comm syz.1.812: mark_inode_dirty error
[  115.995953][ T6418] tipc: Disabling bearer <eth:syzkaller0>
[  116.002293][ T6444] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  116.012654][ T6444] EXT4-fs (loop1): 1 truncate cleaned up
[  116.027398][ T6444] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.150904][ T6461] netlink: 24 bytes leftover after parsing attributes in process `syz.3.819'.
[  116.394518][ T6434] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  116.495920][ T6466] loop3: detected capacity change from 0 to 164
[  116.504179][ T6466] ISOFS: unable to read i-node block
[  116.509513][ T6466] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  116.536827][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.577705][ T6473] loop4: detected capacity change from 0 to 164
[  116.647024][ T6478] loop3: detected capacity change from 0 to 8192
[  116.660378][ T6470] loop1: detected capacity change from 0 to 512
[  116.676660][ T6470] EXT4-fs: Ignoring removed oldalloc option
[  116.687069][ T6470] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.823: Parent and EA inode have the same ino 15
[  116.722750][ T6493] loop4: detected capacity change from 0 to 512
[  116.758688][ T6470] EXT4-fs (loop1): 1 orphan inode deleted
[  116.775320][ T6493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.796552][ T6470] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.811109][ T6493] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.852854][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.865127][ T6493] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  116.896889][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.941825][ T6573] loop2: detected capacity change from 0 to 2048
[  116.977567][ T6573] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.982967][ T6569] loop4: detected capacity change from 0 to 512
[  117.010737][ T6569] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.024392][ T6569] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.055443][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.144294][ T6582] loop1: detected capacity change from 0 to 2048
[  117.171436][ T6582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.203676][ T3316] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[  117.219099][ T6593] netlink: 24 bytes leftover after parsing attributes in process `syz.4.842'.
[  117.219835][ T3316] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  117.251069][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.270107][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.285404][ T6598] netlink: 16 bytes leftover after parsing attributes in process `syz.2.844'.
[  117.359858][ T6602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.846'.
[  117.374399][ T6602] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.381842][ T6602] batman_adv: batadv0: Removing interface: batadv_slave_0
[  117.398452][ T6602] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.406422][ T6602] batman_adv: batadv0: Removing interface: batadv_slave_1
[  117.532581][ T6613] netlink: 4 bytes leftover after parsing attributes in process `syz.3.850'.
[  117.541977][ T6613] netlink: 32 bytes leftover after parsing attributes in process `syz.3.850'.
[  117.632773][ T6627] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6627 comm=syz.2.857
[  117.641510][ T6630] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6630 comm=syz.1.858
[  117.715263][ T6632] loop3: detected capacity change from 0 to 256
[  118.616929][ T6644] netlink: 14 bytes leftover after parsing attributes in process `syz.3.859'.
[  118.734952][ T6651] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6651 comm=syz.4.861
[  118.799275][ T6652] loop5: detected capacity change from 0 to 512
[  118.809534][ T6652] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  118.819340][ T6652] EXT4-fs (loop5): can't mount with journal_checksum, fs mounted w/o journal
[  118.830606][ T6654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.863'.
[  118.842153][ T6654] FAULT_INJECTION: forcing a failure.
[  118.842153][ T6654] name failslab, interval 1, probability 0, space 0, times 0
[  118.854838][ T6654] CPU: 0 UID: 0 PID: 6654 Comm: syz.2.863 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  118.854863][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  118.854934][ T6654] Call Trace:
[  118.854941][ T6654]  <TASK>
[  118.855021][ T6654]  __dump_stack+0x1d/0x30
[  118.855042][ T6654]  dump_stack_lvl+0xe8/0x140
[  118.855063][ T6654]  dump_stack+0x15/0x1b
[  118.855072][ T6654]  should_fail_ex+0x265/0x280
[  118.855157][ T6654]  should_failslab+0x8c/0xb0
[  118.855171][ T6654]  kmem_cache_alloc_noprof+0x50/0x310
[  118.855193][ T6654]  ? skb_clone+0x151/0x1f0
[  118.855208][ T6654]  skb_clone+0x151/0x1f0
[  118.855221][ T6654]  __netlink_deliver_tap+0x2c9/0x500
[  118.855241][ T6654]  netlink_dump+0x836/0x8a0
[  118.855307][ T6654]  __netlink_dump_start+0x43e/0x520
[  118.855320][ T6654]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  118.855415][ T6654]  rtnetlink_rcv_msg+0x552/0x6d0
[  118.855431][ T6654]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  118.855447][ T6654]  ? __pfx_rtnl_dumpit+0x10/0x10
[  118.855462][ T6654]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  118.855555][ T6654]  netlink_rcv_skb+0x123/0x220
[  118.855577][ T6654]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  118.855619][ T6654]  rtnetlink_rcv+0x1c/0x30
[  118.855634][ T6654]  netlink_unicast+0x5bd/0x690
[  118.855673][ T6654]  netlink_sendmsg+0x58b/0x6b0
[  118.855687][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.855700][ T6654]  __sock_sendmsg+0x145/0x180
[  118.855718][ T6654]  ____sys_sendmsg+0x31e/0x4e0
[  118.855751][ T6654]  ___sys_sendmsg+0x17b/0x1d0
[  118.855850][ T6654]  __x64_sys_sendmsg+0xd4/0x160
[  118.855943][ T6654]  x64_sys_call+0x191e/0x2ff0
[  118.855955][ T6654]  do_syscall_64+0xd2/0x200
[  118.855972][ T6654]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  118.855984][ T6654]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  118.856044][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.856059][ T6654] RIP: 0033:0x7f456db2eba9
[  118.856069][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.856079][ T6654] RSP: 002b:00007f456c597038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.856091][ T6654] RAX: ffffffffffffffda RBX: 00007f456dd75fa0 RCX: 00007f456db2eba9
[  118.856098][ T6654] RDX: 0000000000000800 RSI: 0000200000000000 RDI: 0000000000000003
[  118.856105][ T6654] RBP: 00007f456c597090 R08: 0000000000000000 R09: 0000000000000000
[  118.856138][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.856144][ T6654] R13: 00007f456dd76038 R14: 00007f456dd75fa0 R15: 00007ffe31485318
[  118.856154][ T6654]  </TASK>
[  119.110877][ T6644] loop3: detected capacity change from 0 to 1024
[  119.117705][ T6644] EXT4-fs: Ignoring removed orlov option
[  119.124121][   T29] kauditd_printk_skb: 335 callbacks suppressed
[  119.124133][   T29] audit: type=1326 audit(1757698155.767:18823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6640 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f28e7b3e7ab code=0x7ffc0000
[  119.143314][ T6644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.153785][   T29] audit: type=1326 audit(1757698155.767:18824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6640 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f28e7b3d80a code=0x7ffc0000
[  119.189517][   T29] audit: type=1326 audit(1757698155.767:18825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6640 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f28e7b3d80a code=0x7ffc0000
[  119.189544][   T29] audit: type=1326 audit(1757698155.767:18826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6640 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f28e7b3d417 code=0x7ffc0000
[  119.189564][   T29] audit: type=1326 audit(1757698155.767:18827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6640 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f28e7b4034a code=0x7ffc0000
[  119.189589][   T29] audit: type=1326 audit(1757698155.777:18828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6650 comm="syz.5.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  119.189683][   T29] audit: type=1326 audit(1757698155.777:18829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6650 comm="syz.5.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  119.189703][   T29] audit: type=1326 audit(1757698155.777:18830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6650 comm="syz.5.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  119.189839][   T29] audit: type=1326 audit(1757698155.797:18831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6650 comm="syz.5.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  119.189860][   T29] audit: type=1326 audit(1757698155.797:18832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6650 comm="syz.5.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  119.619422][ T6678] netlink: 24 bytes leftover after parsing attributes in process `syz.5.869'.
[  119.689907][ T6681] loop5: detected capacity change from 0 to 512
[  119.711161][ T6681] EXT4-fs: Ignoring removed oldalloc option
[  119.718198][ T6681] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.870: Parent and EA inode have the same ino 15
[  119.745338][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.767772][ T6681] EXT4-fs (loop5): 1 orphan inode deleted
[  119.776010][ T6681] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.811781][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.814418][ T6690] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6690 comm=syz.1.873
[  120.010237][ T6714] loop5: detected capacity change from 0 to 1024
[  120.016899][ T6714] EXT4-fs: Ignoring removed orlov option
[  120.025177][ T6714] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.027338][ T6717] loop4: detected capacity change from 0 to 512
[  120.049405][ T6717] EXT4-fs: Ignoring removed oldalloc option
[  120.071229][ T6717] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.885: Parent and EA inode have the same ino 15
[  120.084457][ T6717] EXT4-fs (loop4): 1 orphan inode deleted
[  120.091272][ T6714] vhci_hcd: invalid port number 96
[  120.096399][ T6714] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  120.111916][ T6714] netlink: 8 bytes leftover after parsing attributes in process `syz.5.884'.
[  120.134493][ T6717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.358490][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.491679][ T6732] loop4: detected capacity change from 0 to 512
[  120.510236][ T6732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.516270][ T6734] ipvlan2: entered promiscuous mode
[  120.532731][ T6732] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.565349][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.570057][ T6738] tmpfs: Bad value for 'mpol'
[  120.594457][ T6738] loop2: detected capacity change from 0 to 2048
[  120.608077][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.620301][ T6738] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.638378][ T6738] validate_nla: 55 callbacks suppressed
[  120.638448][ T6738] netlink: 'syz.2.892': attribute type 27 has an invalid length.
[  120.702322][ T6746] Invalid ELF header magic: != ELF
[  120.760329][ T6738] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.767691][ T6738] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.104885][ T6738] ip6gre1: left allmulticast mode
[  121.141091][ T6738] ipvlan2: left promiscuous mode
[  121.209064][ T6779] netlink: 24 bytes leftover after parsing attributes in process `syz.1.899'.
[  121.269329][ T6658] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  121.438647][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.642946][ T6543] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  121.653477][ T6543] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  121.663412][ T6543] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  121.675055][ T6543] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  121.697396][ T6792] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(243)
[  121.700691][ T6798] netlink: 56 bytes leftover after parsing attributes in process `syz.3.903'.
[  121.704104][ T6792] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  121.720659][ T6792] vhci_hcd vhci_hcd.0: Device attached
[  121.726531][ T6796] loop2: detected capacity change from 0 to 2048
[  121.735629][ T6801] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6801 comm=syz.4.906
[  121.750502][ T6796] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.763978][ T6794] vhci_hcd: connection closed
[  121.764166][ T6551] vhci_hcd: stop threads
[  121.773253][ T6551] vhci_hcd: release socket
[  121.773321][ T6551] vhci_hcd: disconnect device
[  122.999133][ T6805] SELinux: ebitmap: truncated map
[  123.004801][ T6821] netlink: 24 bytes leftover after parsing attributes in process `syz.5.911'.
[  123.006049][ T6805] SELinux: failed to load policy
[  123.043154][ T6823] netlink: 24 bytes leftover after parsing attributes in process `syz.5.912'.
[  123.052246][ T6805] tipc: Started in network mode
[  123.057133][ T6805] tipc: Node identity ce2c063fbb54, cluster identity 4711
[  123.064476][ T6805] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  123.094274][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.110538][ T6804] tipc: Resetting bearer <eth:syzkaller0>
[  123.125730][ T6825] loop3: detected capacity change from 0 to 128
[  123.147198][ T6804] tipc: Disabling bearer <eth:syzkaller0>
[  123.241093][ T6842] netlink: 'syz.3.918': attribute type 13 has an invalid length.
[  123.316060][ T6842] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.323316][ T6842] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.367789][ T6854] loop1: detected capacity change from 0 to 2048
[  123.377429][ T6854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.429543][ T6842] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  123.447004][ T6842] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  123.501295][ T6859] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6859 comm=syz.4.925
[  123.818874][ T6855] tap0: tun_chr_ioctl cmd 1074025677
[  124.327343][ T6855] tap0: linktype set to 768
[  124.349962][   T29] kauditd_printk_skb: 195 callbacks suppressed
[  124.350044][   T29] audit: type=1404 audit(1757698161.007:19028): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  124.384486][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.400865][   T29] audit: type=1404 audit(1757698161.027:19029): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  124.435123][ T6549] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.444164][   T29] audit: type=1400 audit(1757698161.077:19030): avc:  denied  { block_suspend } for  pid=6858 comm="syz.4.925" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  124.472729][ T6875] geneve2: entered allmulticast mode
[  124.494483][ T6549] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.555351][   T29] audit: type=1400 audit(1757698161.167:19031): avc:  denied  { read write } for  pid=3325 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  124.579751][   T29] audit: type=1400 audit(1757698161.167:19032): avc:  denied  { open } for  pid=3325 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  124.595582][ T6879] netlink: 'syz.2.929': attribute type 27 has an invalid length.
[  124.604058][   T29] audit: type=1400 audit(1757698161.167:19033): avc:  denied  { ioctl } for  pid=3325 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  124.620099][ T6879] netlink: 8 bytes leftover after parsing attributes in process `syz.2.929'.
[  124.637639][   T29] audit: type=1400 audit(1757698161.177:19034): avc:  denied  { read } for  pid=6878 comm="syz.2.929" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  124.669118][   T29] audit: type=1400 audit(1757698161.177:19035): avc:  denied  { open } for  pid=6878 comm="syz.2.929" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  124.692757][   T29] audit: type=1400 audit(1757698161.177:19036): avc:  denied  { prog_load } for  pid=6878 comm="syz.2.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  124.711901][   T29] audit: type=1400 audit(1757698161.177:19037): avc:  denied  { bpf } for  pid=6878 comm="syz.2.929" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  124.774193][ T6896] macvtap0: refused to change device tx_queue_len
[  124.842754][ T6905] loop4: detected capacity change from 0 to 2048
[  124.881086][ T6912] FAULT_INJECTION: forcing a failure.
[  124.881086][ T6912] name failslab, interval 1, probability 0, space 0, times 0
[  124.894096][ T6912] CPU: 0 UID: 0 PID: 6912 Comm: syz.5.940 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  124.894166][ T6912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  124.894176][ T6912] Call Trace:
[  124.894181][ T6912]  <TASK>
[  124.894188][ T6912]  __dump_stack+0x1d/0x30
[  124.894207][ T6912]  dump_stack_lvl+0xe8/0x140
[  124.894228][ T6912]  dump_stack+0x15/0x1b
[  124.894244][ T6912]  should_fail_ex+0x265/0x280
[  124.894331][ T6912]  ? __pfx_cond_bools_destroy+0x10/0x10
[  124.894380][ T6912]  should_failslab+0x8c/0xb0
[  124.894449][ T6912]  kmem_cache_alloc_noprof+0x50/0x310
[  124.894522][ T6912]  ? hashtab_duplicate+0xfe/0x360
[  124.894543][ T6912]  ? __pfx_cond_bools_destroy+0x10/0x10
[  124.894568][ T6912]  hashtab_duplicate+0xfe/0x360
[  124.894584][ T6912]  ? __pfx_cond_bools_copy+0x10/0x10
[  124.894669][ T6912]  cond_policydb_dup+0xd2/0x4e0
[  124.894695][ T6912]  security_set_bools+0xa0/0x340
[  124.894719][ T6912]  sel_commit_bools_write+0x1ea/0x270
[  124.894826][ T6912]  vfs_writev+0x406/0x8b0
[  124.894855][ T6912]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  124.894884][ T6912]  ? mutex_lock+0xd/0x30
[  124.894960][ T6912]  do_writev+0xe7/0x210
[  124.894989][ T6912]  __x64_sys_writev+0x45/0x50
[  124.895051][ T6912]  x64_sys_call+0x1e9a/0x2ff0
[  124.895069][ T6912]  do_syscall_64+0xd2/0x200
[  124.895094][ T6912]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  124.895115][ T6912]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  124.895211][ T6912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.895230][ T6912] RIP: 0033:0x7fd4560eeba9
[  124.895286][ T6912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.895301][ T6912] RSP: 002b:00007fd454b57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  124.895317][ T6912] RAX: ffffffffffffffda RBX: 00007fd456335fa0 RCX: 00007fd4560eeba9
[  124.895328][ T6912] RDX: 0000000000000001 RSI: 00002000000025c0 RDI: 0000000000000003
[  124.895338][ T6912] RBP: 00007fd454b57090 R08: 0000000000000000 R09: 0000000000000000
[  124.895349][ T6912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.895359][ T6912] R13: 00007fd456336038 R14: 00007fd456335fa0 R15: 00007ffc21131d18
[  124.895406][ T6912]  </TASK>
[  125.127822][ T6905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.190554][ T6917] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6917 comm=syz.3.942
[  126.376970][ T6937] loop2: detected capacity change from 0 to 256
[  126.388763][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.423922][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.944'.
[  126.424137][ T6937] loop2: detected capacity change from 0 to 512
[  126.432749][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.944'.
[  126.446880][ T6940] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6940 comm=syz.4.947
[  126.448352][ T6937] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.468670][ T6937] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  126.476623][ T6937] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  126.527439][ T6937] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  126.537086][ T6937] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  126.570994][ T6937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  126.581538][ T6953] netlink: 16 bytes leftover after parsing attributes in process `syz.3.952'.
[  126.604970][ T6951] netlink: 4 bytes leftover after parsing attributes in process `syz.5.951'.
[  126.634179][ T6957] smc: net device bond0 applied user defined pnetid SYZ0
[  126.649101][ T6957] smc: net device bond0 erased user defined pnetid SYZ0
[  126.665323][ T6937] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.672990][ T6937] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  126.692900][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.724523][ T6965] loop3: detected capacity change from 0 to 764
[  126.767353][ T6970] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6970 comm=syz.3.960
[  126.865979][ T6981] loop1: detected capacity change from 0 to 128
[  126.934919][ T6967] netlink: 12 bytes leftover after parsing attributes in process `syz.2.957'.
[  126.945684][ T6987] loop1: detected capacity change from 0 to 512
[  126.952905][ T6987] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  127.018748][ T6987] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal
[  127.335371][ T6994] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6994 comm=syz.1.969
[  127.366105][ T6996] tmpfs: Unknown parameter 'mpo‚'
[  127.371759][ T6996] nfs4: Bad value for 'source'
[  127.378838][ T6996] loop5: detected capacity change from 0 to 512
[  127.388278][ T6996] EXT4-fs warning (device loop5): ext4_xattr_inode_get:556: inode #11: comm syz.5.970: EA inode hash validation failed
[  127.401659][ T6996] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.970: corrupted inode contents
[  127.414240][ T6996] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #15: comm syz.5.970: mark_inode_dirty error
[  127.477004][ T7003] tmpfs: Unknown parameter 'mpo‚'
[  127.482954][ T7003] nfs4: Bad value for 'source'
[  127.491032][ T7003] loop2: detected capacity change from 0 to 512
[  127.499896][ T6996] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.970: corrupted inode contents
[  127.522363][ T6996] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2991: inode #15: comm syz.5.970: mark_inode_dirty error
[  127.536775][ T6996] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2994: inode #15: comm syz.5.970: mark inode dirty (error -117)
[  127.551787][ T7003] EXT4-fs warning (device loop2): ext4_xattr_inode_get:556: inode #11: comm syz.2.972: EA inode hash validation failed
[  127.564681][ T6996] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  127.574704][ T7003] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.972: corrupted inode contents
[  127.586700][ T6996] EXT4-fs (loop5): 1 orphan inode deleted
[  127.593040][ T6996] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.605789][ T7003] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #15: comm syz.2.972: mark_inode_dirty error
[  127.624512][ T7003] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.972: corrupted inode contents
[  127.637023][ T7003] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #15: comm syz.2.972: mark_inode_dirty error
[  127.650379][ T7003] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #15: comm syz.2.972: mark inode dirty (error -117)
[  127.663438][ T7003] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  127.682099][ T7003] EXT4-fs (loop2): 1 orphan inode deleted
[  127.688473][ T7003] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.722493][ T7007] SELinux: ebitmap: truncated map
[  127.754805][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.769390][ T7007] SELinux: failed to load policy
[  127.791286][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.947912][ T7014] loop4: detected capacity change from 0 to 128
[  128.111724][ T7022] netlink: 14 bytes leftover after parsing attributes in process `syz.5.974'.
[  128.158704][ T7024] loop3: detected capacity change from 0 to 512
[  128.192355][ T7024] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  128.207634][ T7029] loop5: detected capacity change from 0 to 1024
[  128.214701][ T7029] EXT4-fs: Ignoring removed orlov option
[  128.214752][ T7022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.225462][ T7031] loop2: detected capacity change from 0 to 764
[  128.236148][ T7024] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[  128.308766][ T7022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  128.326445][ T7029] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.408029][ T7022] bond0 (unregistering): Released all slaves
[  128.735983][ T7054] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7054 comm=syz.1.989
[  128.923674][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.234833][ T7076] loop5: detected capacity change from 0 to 764
[  129.244633][ T7075] team_slave_0: entered promiscuous mode
[  129.250357][ T7075] team_slave_1: entered promiscuous mode
[  129.324690][ T7075] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  129.489646][ T7088] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7088 comm=syz.2.1000
[  129.507063][   T29] kauditd_printk_skb: 474 callbacks suppressed
[  129.507077][   T29] audit: type=1326 audit(1757698166.167:19512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7082 comm="syz.3.999" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f28e7b3eba9 code=0x0
[  129.551529][   T29] audit: type=1326 audit(1757698166.207:19513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7089 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.576880][   T29] audit: type=1326 audit(1757698166.207:19514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7089 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.600496][   T29] audit: type=1326 audit(1757698166.207:19515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7089 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.624135][   T29] audit: type=1326 audit(1757698166.207:19516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7089 comm="syz.4.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.713056][ T7091] smc: net device bond0 applied user defined pnetid SYZ0
[  129.713742][   T29] audit: type=1326 audit(1757698166.367:19517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7094 comm="syz.4.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.744130][ T7091] smc: net device bond0 erased user defined pnetid SYZ0
[  129.744264][   T29] audit: type=1326 audit(1757698166.407:19518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7094 comm="syz.4.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.774625][   T29] audit: type=1326 audit(1757698166.407:19519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7094 comm="syz.4.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.798148][   T29] audit: type=1326 audit(1757698166.407:19520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7094 comm="syz.4.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.821805][   T29] audit: type=1326 audit(1757698166.407:19521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7094 comm="syz.4.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  129.940849][ T7100] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7100 comm=syz.4.1005
[  130.560005][ T7116] loop5: detected capacity change from 0 to 128
[  130.824704][ T7131] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7131 comm=syz.2.1014
[  131.019286][ T7142] loop4: detected capacity change from 0 to 128
[  131.036867][ T7146] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1018'.
[  131.412697][ T7151] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1019'.
[  131.482826][ T7153] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1020'.
[  131.492536][ T7153] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.500373][ T7153] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.540945][ T7156] loop5: detected capacity change from 0 to 764
[  131.579343][ T7158] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7158 comm=syz.5.1022
[  131.637795][ T7162] loop5: detected capacity change from 0 to 128
[  131.669856][ T7164] loop3: detected capacity change from 0 to 512
[  131.683214][ T7164] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  131.698748][ T7164] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[  131.759586][ T7170] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1028'.
[  131.828792][ T7179] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7179 comm=syz.2.1031
[  131.853975][ T7181] tmpfs: Unknown parameter 'mpo‚'
[  131.871230][ T7181] nfs4: Bad value for 'source'
[  131.886234][ T7181] loop3: detected capacity change from 0 to 512
[  131.914268][ T7181] EXT4-fs warning (device loop3): ext4_xattr_inode_get:556: inode #11: comm syz.3.1032: EA inode hash validation failed
[  131.927249][ T7181] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.1032: corrupted inode contents
[  131.940073][ T7181] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #15: comm syz.3.1032: mark_inode_dirty error
[  131.951742][ T7181] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #15: comm syz.3.1032: corrupted inode contents
[  131.975016][ T7181] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #15: comm syz.3.1032: mark_inode_dirty error
[  131.991508][ T7192] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1035'.
[  132.019307][ T7181] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #15: comm syz.3.1032: mark inode dirty (error -117)
[  132.039026][ T7192] loop1: detected capacity change from 0 to 1024
[  132.046131][ T7192] EXT4-fs: Ignoring removed orlov option
[  132.049087][ T7181] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  132.062944][ T7181] EXT4-fs (loop3): 1 orphan inode deleted
[  132.084113][ T7196] loop5: detected capacity change from 0 to 128
[  132.176188][ T7192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.196438][ T7181] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.318121][ T7208] loop5: detected capacity change from 0 to 128
[  132.427181][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.573068][ T7218] loop4: detected capacity change from 0 to 512
[  132.581857][ T7218] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  132.591841][ T7218] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[  132.739965][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.873040][ T7233] loop1: detected capacity change from 0 to 128
[  132.919892][ T7239] loop4: detected capacity change from 0 to 512
[  132.941146][ T7239] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  132.965008][ T7239] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal
[  132.990550][ T7246] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1055'.
[  133.034306][ T7246] loop1: detected capacity change from 0 to 1024
[  133.081813][ T7246] EXT4-fs: Ignoring removed orlov option
[  133.092063][ T7246] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.267508][ T7264] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7264 comm=syz.4.1061
[  133.436980][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.468943][ T7270] loop1: detected capacity change from 0 to 128
[  133.637324][ T7278] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1066'.
[  133.707419][ T7280] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1067'.
[  133.841923][ T7282] loop2: detected capacity change from 0 to 2048
[  133.852859][ T7282] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.479855][ T7308] SELinux: ebitmap: truncated map
[  134.486121][ T7308] SELinux: failed to load policy
[  134.584598][ T7315] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1080'.
[  134.642128][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.661263][   T29] kauditd_printk_skb: 677 callbacks suppressed
[  134.661277][   T29] audit: type=1326 audit(1757698171.317:20199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz.5.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.691119][   T29] audit: type=1326 audit(1757698171.317:20200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz.5.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.722656][   T29] audit: type=1326 audit(1757698171.317:20201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz.5.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.746235][   T29] audit: type=1326 audit(1757698171.317:20202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7318 comm="syz.5.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.776375][   T29] audit: type=1326 audit(1757698171.427:20203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.800073][   T29] audit: type=1326 audit(1757698171.427:20204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.823812][   T29] audit: type=1326 audit(1757698171.427:20205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.847384][   T29] audit: type=1326 audit(1757698171.427:20206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.870870][   T29] audit: type=1326 audit(1757698171.427:20207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.894358][   T29] audit: type=1326 audit(1757698171.427:20208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7321 comm="syz.5.1084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4560eeba9 code=0x7ffc0000
[  134.957404][ T7328] loop5: detected capacity change from 0 to 128
[  134.989232][ T7335] loop4: detected capacity change from 0 to 512
[  134.997293][ T7335] EXT4-fs warning (device loop4): ext4_xattr_inode_get:556: inode #11: comm syz.4.1087: EA inode hash validation failed
[  135.010558][ T7335] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #15: comm syz.4.1087: corrupted inode contents
[  135.022850][ T7335] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #15: comm syz.4.1087: mark_inode_dirty error
[  135.035023][ T7335] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #15: comm syz.4.1087: corrupted inode contents
[  135.047551][ T7335] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #15: comm syz.4.1087: mark_inode_dirty error
[  135.060832][ T7335] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #15: comm syz.4.1087: mark inode dirty (error -117)
[  135.073765][ T7335] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  135.083467][ T7335] EXT4-fs (loop4): 1 orphan inode deleted
[  135.090288][ T7335] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.121646][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.152041][ T7348] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1090'.
[  135.184200][ T7350] loop2: detected capacity change from 0 to 2048
[  135.192905][ T7350] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.244370][ T7353] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7353 comm=syz.4.1093
[  136.184271][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.214993][ T7368] loop5: detected capacity change from 0 to 764
[  136.264001][ T7370] SELinux: ebitmap: truncated map
[  136.272886][ T7370] SELinux: failed to load policy
[  136.321670][ T7377] loop1: detected capacity change from 0 to 512
[  136.330173][ T7377] EXT4-fs warning (device loop1): ext4_xattr_inode_get:556: inode #11: comm syz.1.1099: EA inode hash validation failed
[  136.344119][ T7377] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.1099: corrupted inode contents
[  136.356337][ T7377] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #15: comm syz.1.1099: mark_inode_dirty error
[  136.368554][ T7377] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.1099: corrupted inode contents
[  136.381331][ T7377] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #15: comm syz.1.1099: mark_inode_dirty error
[  136.404617][ T7377] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #15: comm syz.1.1099: mark inode dirty (error -117)
[  136.432609][ T7377] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  136.444755][ T7377] EXT4-fs (loop1): 1 orphan inode deleted
[  136.447402][ T7382] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1101'.
[  136.460741][ T7377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.493667][ T7382] loop4: detected capacity change from 0 to 1024
[  136.503157][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.505130][ T7382] EXT4-fs: Ignoring removed orlov option
[  136.538962][ T7388] loop1: detected capacity change from 0 to 512
[  136.560086][ T7388] EXT4-fs warning (device loop1): ext4_xattr_inode_get:556: inode #11: comm syz.1.1102: EA inode hash validation failed
[  136.577286][ T7382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.578282][ T7388] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.1102: corrupted inode contents
[  136.590071][ T7392] loop5: detected capacity change from 0 to 2048
[  136.615299][ T7388] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #15: comm syz.1.1102: mark_inode_dirty error
[  136.630957][ T7392] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.643771][ T7388] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #15: comm syz.1.1102: corrupted inode contents
[  136.650913][ T7401] loop2: detected capacity change from 0 to 764
[  136.657765][ T7388] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #15: comm syz.1.1102: mark_inode_dirty error
[  136.693470][ T7388] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #15: comm syz.1.1102: mark inode dirty (error -117)
[  136.711682][ T7388] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  136.721826][ T7388] EXT4-fs (loop1): 1 orphan inode deleted
[  136.728197][ T7388] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.765295][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.227968][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.321006][ T7435] loop1: detected capacity change from 0 to 764
[  137.322581][ T7434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1121'.
[  137.390976][ T7440] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1123'.
[  137.441766][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.571405][ T7453] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1127'.
[  137.643331][ T7453] loop2: detected capacity change from 0 to 1024
[  137.651231][ T7453] EXT4-fs: Ignoring removed orlov option
[  137.659516][ T7453] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.742058][ T7469] loop5: detected capacity change from 0 to 764
[  137.809629][ T7472] loop5: detected capacity change from 0 to 2048
[  137.821130][ T7472] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.839101][ T7476] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1136'.
[  137.935934][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.082223][ T7488] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1140'.
[  138.176463][ T7488] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.183955][ T7488] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.269754][ T7488] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.277157][ T7488] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.468452][ T7502] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7502 comm=syz.1.1146
[  138.496562][ T7507] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1143'.
[  138.566332][ T7517] loop3: detected capacity change from 0 to 512
[  138.574158][ T7517] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  138.584530][ T7517] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[  139.059119][ T4380] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.148497][ T7540] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1159'.
[  139.174181][ T7540] loop2: detected capacity change from 0 to 1024
[  139.193771][ T7540] EXT4-fs: Ignoring removed orlov option
[  139.203996][ T7540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.233245][ T7551] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1163'.
[  139.247137][ T7552] loop5: detected capacity change from 0 to 512
[  139.259317][ T7552] EXT4-fs warning (device loop5): ext4_xattr_inode_get:556: inode #11: comm syz.5.1164: EA inode hash validation failed
[  139.273464][ T7552] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1164: corrupted inode contents
[  139.286091][ T7552] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #15: comm syz.5.1164: mark_inode_dirty error
[  139.286573][ T7553] loop3: detected capacity change from 0 to 128
[  139.298229][ T7552] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1164: corrupted inode contents
[  139.316199][ T7552] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2991: inode #15: comm syz.5.1164: mark_inode_dirty error
[  139.328987][ T7552] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2994: inode #15: comm syz.5.1164: mark inode dirty (error -117)
[  139.342829][ T7552] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  139.352881][ T7552] EXT4-fs (loop5): 1 orphan inode deleted
[  139.359508][ T7552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.414744][ T7565] serio: Serial port ptm0
[  139.415224][ T7567] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1169'.
[  139.522456][ T7580] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 37748736, id = 0
[  139.537370][ T7574] loop1: detected capacity change from 0 to 128
[  139.714247][   T29] kauditd_printk_skb: 812 callbacks suppressed
[  139.714281][   T29] audit: type=1326 audit(1757698176.367:21021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  139.728341][ T7590] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1175'.
[  139.753230][   T29] audit: type=1326 audit(1757698176.367:21022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  139.753273][   T29] audit: type=1326 audit(1757698176.367:21023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  139.753295][   T29] audit: type=1326 audit(1757698176.367:21024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.4.1174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268498eba9 code=0x7ffc0000
[  139.893119][ T7574] ==================================================================
[  139.901349][ T7574] BUG: KCSAN: data-race in file_write_and_wait_range / xas_set_mark
[  139.909355][ T7574] 
[  139.911682][ T7574] write to 0xffff88811987d414 of 4 bytes by task 7582 on cpu 1:
[  139.919307][ T7574]  xas_set_mark+0x12b/0x140
[  139.923818][ T7574]  tag_pages_for_writeback+0xc2/0x290
[  139.929198][ T7574]  writeback_iter+0x340/0x820
[  139.933885][ T7574]  mpage_writepages+0x87/0x1250
[  139.938775][ T7574]  fat_writepages+0x24/0x30
[  139.943283][ T7574]  do_writepages+0x1c6/0x310
[  139.947884][ T7574]  file_write_and_wait_range+0x156/0x2c0
[  139.953626][ T7574]  __generic_file_fsync+0x46/0x140
[  139.958745][ T7574]  fat_file_fsync+0x49/0x100
[  139.963338][ T7574]  vfs_fsync_range+0x10d/0x130
[  139.968286][ T7574]  generic_file_write_iter+0x1b8/0x2f0
[  139.973753][ T7574]  iter_file_splice_write+0x663/0xa60
[  139.979254][ T7574]  direct_splice_actor+0x153/0x2a0
[  139.984383][ T7574]  splice_direct_to_actor+0x30f/0x680
[  139.989754][ T7574]  do_splice_direct+0xda/0x150
[  139.994522][ T7574]  do_sendfile+0x380/0x650
[  139.998948][ T7574]  __x64_sys_sendfile64+0x105/0x150
[  140.004154][ T7574]  x64_sys_call+0x2bb0/0x2ff0
[  140.008836][ T7574]  do_syscall_64+0xd2/0x200
[  140.013360][ T7574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.019263][ T7574] 
[  140.021579][ T7574] read to 0xffff88811987d414 of 4 bytes by task 7574 on cpu 0:
[  140.029119][ T7574]  file_write_and_wait_range+0x10e/0x2c0
[  140.034772][ T7574]  __generic_file_fsync+0x46/0x140
[  140.039894][ T7574]  fat_file_fsync+0x49/0x100
[  140.044490][ T7574]  vfs_fsync_range+0x10d/0x130
[  140.049262][ T7574]  generic_file_write_iter+0x1b8/0x2f0
[  140.054727][ T7574]  iter_file_splice_write+0x663/0xa60
[  140.060101][ T7574]  direct_splice_actor+0x153/0x2a0
[  140.065214][ T7574]  splice_direct_to_actor+0x30f/0x680
[  140.070591][ T7574]  do_splice_direct+0xda/0x150
[  140.075355][ T7574]  do_sendfile+0x380/0x650
[  140.079793][ T7574]  __x64_sys_sendfile64+0x105/0x150
[  140.085017][ T7574]  x64_sys_call+0x2bb0/0x2ff0
[  140.089697][ T7574]  do_syscall_64+0xd2/0x200
[  140.094215][ T7574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.100108][ T7574] 
[  140.102429][ T7574] value changed: 0x02000021 -> 0x04000021
[  140.108136][ T7574] 
[  140.110453][ T7574] Reported by Kernel Concurrency Sanitizer on:
[  140.116601][ T7574] CPU: 0 UID: 0 PID: 7574 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  140.125818][ T7574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  140.135872][ T7574] ==================================================================