last executing test programs:

12.785046714s ago: executing program 0 (id=1255):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, &(0x7f0000000280)=0x9)
mmap(&(0x7f00009cf000/0x3000)=nil, 0x3000, 0x2000009, 0x2010, 0xffffffffffffffff, 0x40eb1000)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000400)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x4000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='xdp_devmap_xmit\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
syz_open_dev$usbfs(&(0x7f0000003f00), 0x80000001, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x0)

12.712384589s ago: executing program 0 (id=1258):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000400)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x14320, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='xdp_devmap_xmit\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x48, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000100000000181100001cd489efecf6d214b661bfea35cf6616f9e9e5cbcfe63c146cdf14b70171fcaee65ff293522f0182b8d0ae8e7518ebe7b86ec2070d2a2de73ee3be4ed950b42e7da25c242a7ed02965268c726f73899c78eeac7c944818f370441b3b213f2ccefe5d9f5dd9cf13d9f30ac0a1fb66cc55be847331bb02ad4305122065cdfb327a97b9", @ANYRES32, @ANYRESOCT], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x0)

12.234403528s ago: executing program 0 (id=1266):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

12.21585181s ago: executing program 0 (id=1269):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x4f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)

12.189867741s ago: executing program 0 (id=1270):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fspick(r1, &(0x7f0000000000)='.\x00', 0x0)
syz_io_uring_setup(0x3bac, &(0x7f00000001c0)={0x0, 0x534d, 0x0, 0x482, 0x3e2, 0x0, r1}, &(0x7f0000000080), &(0x7f0000000340))
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r3=>0x0})
setitimer(0x2, &(0x7f0000000580)={{0x77359400}, {0x0, 0xea60}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x10000, '\x00', r3, r1, 0x3, 0x2, 0x4}, 0x50)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0xffffffffffffffff}, 0x0)
setitimer(0x2, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000002c0)=0x20)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r5, 0x227b, &(0x7f00000001c0)=0x2001)
r6 = fcntl$dupfd(r5, 0x0, r5)
write$sndseq(r6, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x3, {}, {0x0, 0x4}, @result={0x1, 0x2}}, {0x33, 0x0, 0xff, 0x3, @tick=0xf27, {0x3, 0x31}, {0x8}, @addr={0x4, 0x5}}], 0x38)
readv(r6, &(0x7f0000000000)=[{&(0x7f0000001140)=""/134, 0x86}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='f2fs_write_end\x00', r6, 0x0, 0x2}, 0x18)
statx(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x800, 0x800, &(0x7f0000000240))
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r7, 0x0, 0x19, 0xffffffffffffffff, &(0x7f0000000000)=0x1)
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r3, 0x1, {}, 0xff}, 0x18)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400)={<r8=>0x0}, &(0x7f0000000440)=0xc)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_CONTEXT(r6, 0x84, 0x11, &(0x7f0000000540)={<r10=>0x0, 0x100}, &(0x7f00000005c0)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r9, 0x84, 0x17, &(0x7f0000000600)={r10, 0x1ff, 0xb0, "88934b6395c776105e97767a86a51bdab325b2024c13cb7069159e517f9dfb54a53ad005bf78c77d4a75568737ea1c1a79e74e023d553b06cb5174cedf5e7704888fa8d8b5bbaa92dd8f0c64b007cecb9ac2754907761b1be92dab5410e35ce6675c311e504f6ed01d50239c21a77e03314e7885a28d0148da1bcc605b4e6b2208f1f2c763a39d7e21b1456dfa05711bf573088b01fb0b14ec8aad3e517e8712a1f4f1ea4afaa44091caa7bed29df991"}, 0xb8)
sched_setscheduler(r8, 0x1, &(0x7f0000000480)=0xa0000000)
sendmsg$can_j1939(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x4, 0x0, 0x0, 0x24000044}, 0x4000010)

12.107798708s ago: executing program 0 (id=1274):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
close(r0)

1.273332228s ago: executing program 2 (id=1451):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e757811"], 0x65)

1.199974493s ago: executing program 2 (id=1455):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB='\x00'/16, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x4f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)

950.785953ms ago: executing program 4 (id=1457):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

921.202666ms ago: executing program 3 (id=1458):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r0}, 0x10)
unlink(&(0x7f0000000400)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')

919.435686ms ago: executing program 4 (id=1459):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
sendmmsg(r1, &(0x7f0000000180), 0x4000190, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000005800)={0x18, 0xf, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1300000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000980)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r4, @ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r5}, 0x10)
r6 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000100)={0x20000014})
close_range(r6, r7, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={0x0, r8}, 0x18)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r9, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r9, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_128={{0x304}, "d524c18c21e24872", "c6a71e72e7ff122a782a7f00", "e471e97b", "6168e4a7e349a0d4"}, 0x28)
close(r9)

858.566041ms ago: executing program 2 (id=1461):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x836d9fb164f927b3)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
r2 = syz_io_uring_setup(0x3e91, &(0x7f0000000300)={0x0, 0x5aa7, 0x10100, 0x1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000040)=[{&(0x7f00000003c0)='0', 0x1}, {0x0}], 0x2})
io_uring_enter(r2, 0x5113, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x49, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r7, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r8 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x100002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r8}, 0x20)
flistxattr(r6, &(0x7f0000000540)=""/49, 0x31)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x6}, 0x18)
socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xfffa}, {}, {0x5, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x6c, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_FLOWER_KEY_ARP_SHA={0xa, 0x3f, @local}, @TCA_FLOWER_KEY_ARP_TIP_MASK={0x8}]}}]}, 0x9c}}, 0x24000000)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r11, &(0x7f00000002c0), 0x40000000000009f, 0x0)

853.307831ms ago: executing program 3 (id=1462):
socket$packet(0x11, 0x2, 0x300)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000600)='net/dev_snmp6\x00')
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269bb, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

799.875176ms ago: executing program 4 (id=1464):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x4}, 0x1, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0x200, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
futex_waitv(&(0x7f0000000d00)=[{0xd, 0x0, 0x6}], 0x1, 0x0, 0x0, 0x1)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = socket(0x2, 0x80805, 0x5)
sendmmsg$inet_sctp(r1, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1, 0x0, 0x0, 0x10}], 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000004)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000007c0)={{0x1, 0x1, 0x18, <r4=>r0, {0x5, 0x9}}, './file0\x00'})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000008, 0x1010, r4, 0x8000000)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xfe, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c10ade8a05c3a5c90"], 0x30}], 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000002, {0x0, 0x0, 0x0, r7, {0x7, 0xffff}, {0xffff, 0xfff1}, {0x10}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x10100, 0x5, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_JITTER64={0xc, 0xb, 0x5}]}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="a1ab23bd7000fdffffff32000000080017015900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x0)

716.481702ms ago: executing program 2 (id=1466):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=ANY=[@ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = io_uring_setup(0x1bb1, &(0x7f0000000000)={0x0, 0xeec2, 0x1000, 0x800003, 0x10b})
close_range(r3, r3, 0x0)
pipe2$9p(&(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80800)
vmsplice(r5, &(0x7f0000000040)=[{&(0x7f0000000000)="e3", 0x1}], 0x1, 0x1)
fcntl$setpipe(r4, 0x407, 0x176)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
vmsplice(r5, &(0x7f0000000480)=[{&(0x7f00000000c0)='{', 0x1}], 0x1, 0xd)
vmsplice(r4, &(0x7f00000018c0)=[{&(0x7f0000000100)="91", 0x1}], 0x1, 0x5)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000019c0)=@newtaction={0xeb0, 0x30, 0xb, 0x70bd28, 0x0, {}, [{0xe9c, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x3, 0x0, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe50, 0x2, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x8, 0x4, 0x7, 0x2, 0xfffffff0}, 0x0, 0x5}, [{0x7, 0x1, 0xb2, 0x6, 0x8001, 0xa43e}, {0xb, 0x2, 0xa, 0x6, 0x401, 0x4d4f7022}, {0x17fa, 0x305c, 0x7, 0x3, 0x36, 0xe48}, {0x18f, 0x9, 0x0, 0x6, 0xb, 0x5}, {0x8d14, 0x3, 0x3, 0x0, 0xfffff6a0, 0xd}, {0x7fff, 0x0, 0x3, 0x4, 0x3, 0x9}, {0x80, 0xffffffff, 0x9, 0x4, 0x7fff, 0x927d}, {0x3, 0x6, 0x3, 0x8, 0x41, 0x100}, {0x5, 0x0, 0x1, 0xdf, 0x80, 0x7fff}, {0x2, 0xfffffffa, 0x1ff, 0x6, 0xfffffff0, 0x1000}, {0x8a10, 0x8, 0x7f, 0x1, 0x5, 0x9}, {0x3e, 0x9, 0x4, 0x3, 0x7, 0x8}, {0x9, 0x101, 0x3, 0x0, 0x6bc, 0x7fffffff}, {0x80000001, 0x1, 0x4, 0x1, 0x7a, 0x30000000}, {0x21, 0x9, 0x80, 0x2, 0x81, 0x2}, {0x9, 0x0, 0x7, 0x3, 0x80, 0x1}, {0x5, 0x1, 0x6de6761d, 0x800, 0xf, 0x80000001}, {0x7, 0xfaf8, 0x80000001, 0x4, 0x1, 0xc0}, {0x5, 0x0, 0x83925e1, 0x8, 0xc80, 0xe4}, {0x2, 0xfffffff7, 0x80000000, 0x700, 0xf, 0x6}, {0x0, 0x7fff, 0x0, 0x6, 0x2, 0xa5}, {0x1, 0x1, 0xfffffff8, 0x4, 0x7fffffff, 0x6}, {0x7f, 0x5, 0x6, 0x7f, 0x8c2b, 0xc54}, {0x6, 0x6, 0x34d, 0x7, 0x101, 0x23}, {0x653, 0x0, 0x6, 0x7ff, 0x8, 0x4bf}, {0x1000, 0x0, 0x3, 0x8, 0x7, 0x2}, {0x0, 0xb, 0x9, 0x1, 0x9, 0x7}, {0xd, 0x4, 0x6, 0x4, 0xff}, {0x5, 0x400, 0x5, 0x1, 0x4, 0x5}, {0x4, 0x6, 0x0, 0x1ff, 0x878, 0x3}, {0x2, 0xffff, 0x7, 0x30, 0x1ff, 0x8}, {0x7, 0x6, 0x3, 0x8f, 0x1, 0x1}, {0xbb, 0x8001, 0x5, 0xbd, 0x1, 0x8}, {0xfffffffe, 0x1, 0x5, 0x9, 0x89, 0x5}, {0x0, 0xa, 0x9, 0x5, 0x7, 0x3}, {0x7, 0x402, 0x9, 0x7fffffff, 0xe, 0x100}, {0x3ff, 0xb2f5, 0xfffffff8, 0x6, 0x3, 0x2}, {0x0, 0x9, 0x2, 0xfffffffa, 0xffff0000, 0x8}, {0x10, 0x1, 0x10, 0x5, 0x7, 0x8}, {0x9, 0x7, 0x7ce, 0xfffffffc, 0x81, 0x1}, {0x4, 0x80000000, 0x3, 0x618, 0x5, 0x400}, {0xe, 0x401, 0x7, 0x284, 0xfffffffb, 0x6}, {0xe, 0x4, 0xabcb, 0x8, 0x7, 0x7fff}, {0x0, 0x3, 0x87, 0x4bd, 0x8, 0x9}, {0x5ec00000, 0x7, 0x0, 0x7, 0x9, 0x2}, {0x8, 0x7, 0xe, 0x1, 0x3, 0x83e}, {0xfffffff8, 0x5, 0x5, 0x2000000, 0x620d, 0x7}, {0x6, 0x6, 0x7, 0x3ff, 0xdbf, 0xe1}, {0x1, 0x40, 0x3, 0x400, 0x4, 0x7}, {0x7790a4, 0x0, 0x3, 0x4a, 0xfffffffe, 0xd4d4de7}, {0xe, 0x401, 0x4, 0x7, 0xda67, 0x4}, {0x1b46, 0x0, 0x3, 0x10000, 0x8, 0x8}, {0x0, 0x100, 0x9, 0x7fff, 0x800, 0xd7da}, {0xfffffffe, 0xe4e6, 0x3, 0x132, 0x8, 0x4}, {0x1ff, 0x7f, 0x3, 0x1, 0x9, 0x6}, {0x10, 0x8000, 0x51, 0x2, 0x1}, {0x0, 0x3, 0x7, 0x7fff, 0x2, 0x9}, {0x5, 0x9, 0x56dc, 0x0, 0xe25, 0x5}, {0x7f, 0x6, 0x3131, 0x9, 0x0, 0x6}, {0x295f, 0x6ad, 0x9, 0x0, 0x4}, {0x9, 0x8, 0x9, 0x9, 0x3, 0x2}, {0x9, 0xa75b, 0x4, 0x6, 0x57cd, 0xc2}, {0x4, 0xb7, 0x4, 0x2, 0x3, 0xc2}, {0x80000001, 0x1000, 0x1, 0x1a24, 0x1, 0x3}, {0x56, 0x0, 0xffff8001, 0x5, 0x8001, 0xf}, {0x2, 0x2000, 0x6800000, 0x4e, 0x3, 0xdf}, {0x1, 0x3, 0x5, 0x0, 0xed52, 0x401}, {0x5, 0xffffffff, 0x4, 0x7, 0x1, 0x9}, {0x9, 0x7, 0x4, 0xfffffffb, 0x0, 0x1}, {0xffff0000, 0x100, 0x6, 0x995, 0xc, 0x9}, {0x9, 0x100, 0x7, 0x1, 0x81, 0x6}, {0x0, 0xade, 0xf73, 0x4000008, 0xb, 0x2}, {0x80, 0x4, 0x7, 0x6, 0x6, 0x7}, {0x7fd, 0xedb, 0x5, 0x101, 0x10, 0x8}, {0x2, 0x0, 0xd6, 0x5ad, 0x8, 0x8}, {0x400, 0x40, 0x78, 0x0, 0x100, 0x8}, {0x7ff, 0xe5, 0x80000000, 0x401, 0x2}, {0x2, 0x3, 0x5, 0x3ff, 0x9, 0x8}, {0xfff, 0x4, 0x401, 0x121, 0x80000001, 0x6854}, {0x1, 0x4, 0x9, 0x1, 0x80, 0x9}, {0x2, 0x0, 0x6, 0x9, 0xfffff1a2, 0x8}, {0x9, 0x3, 0x42, 0x7aa1, 0x7, 0xfffffff7}, {0x7, 0x6, 0x800, 0x53, 0x3, 0x9}, {0xf, 0xd, 0x9, 0x9ed, 0xfff, 0xfffffd1d}, {0x7fffffff, 0xfffffff8, 0x4, 0x2, 0x7, 0xf}, {0x9, 0x8, 0x5, 0x9, 0x800, 0xb4}, {0x615, 0x1, 0xa0000000, 0x4, 0x7fff00, 0x1}, {0xc7f, 0x100, 0x9, 0x6, 0x59, 0x2}, {0x6216, 0xfffffffc, 0x4, 0x4, 0x1, 0x2}, {0x8, 0x3941, 0x0, 0x101, 0xadac, 0xe19}, {0x2, 0xe94, 0xd, 0xa576, 0x3, 0xfffffff8}, {0x2000, 0x8000, 0xffff7fff, 0x1, 0xd, 0x800}, {0x2, 0x80000001, 0x0, 0x7, 0x6, 0xffffffff}, {0x5, 0x2, 0x3, 0x1, 0x3, 0x1}, {0xfffffffd, 0x7, 0x1, 0x69a, 0x2, 0x9}, {0xf6, 0x6, 0x200, 0x6, 0x4, 0xfff}, {0x8, 0x10001, 0x9, 0x1aa, 0x7ff, 0x2}, {0x3, 0x0, 0x7fffffff, 0x9, 0xe8b, 0xe8f}, {0xffffffff, 0x401, 0x2, 0xfffffffb, 0x48, 0xfff}, {0x80000001, 0xfffffff8, 0x2, 0x78786fbd, 0x6, 0x6}, {0x2, 0xbf, 0x200, 0x2, 0x7, 0x4f5}, {0x41d, 0x7fffffff, 0xfffffff7, 0x401, 0x5, 0x4}, {0xfffffffe, 0x5, 0x8af0, 0x6, 0x1, 0x100}, {0xa9, 0xffff, 0x3, 0x1, 0x1, 0x4}, {0x8, 0x5, 0xe, 0x5, 0x7}, {0xd6, 0x8, 0xff, 0x2, 0x8, 0x7}, {0x8000, 0x5, 0xb74, 0x9, 0x4, 0xffff}, {0x9, 0xfffffa7c, 0x1000, 0x3ff, 0x3ff, 0x2}, {0x1, 0x8, 0x860, 0x7fff, 0x7, 0x11ca31c8}, {0x1, 0x0, 0x3, 0x5, 0x80000001, 0x9}, {0xff, 0x800, 0x5, 0xe, 0x9, 0x80000000}, {0x83, 0xcd, 0x401, 0xfffffffe, 0x32, 0x4}, {0x8, 0x1, 0xc, 0x2, 0xfffffe00, 0x7}, {0x0, 0x7, 0x80000000, 0x87, 0x1, 0xfff}, {0x8, 0x69, 0x9, 0x5e34, 0x0, 0x2}, {0x5e2, 0x7ff, 0x0, 0x101, 0x1, 0x6afd}, {0x8, 0x10000, 0x8, 0x100, 0x5, 0x3}, {0x0, 0x9, 0x1, 0x9, 0x7, 0x8}, {0xa, 0x200e, 0x0, 0x0, 0x7fffffff, 0x3}, {0x7684b0e, 0xfff, 0x6, 0xfb, 0x2, 0x2}, {0x8001, 0x3ff, 0x3af, 0xe51, 0x200, 0x7}, {0x77, 0x80, 0x3, 0x2, 0x5, 0xd1}, {0x81, 0x5, 0x3, 0xde3b, 0x7, 0x8}, {0x10001, 0x9, 0x23b, 0x8, 0xf, 0x2}, {0x1a, 0x400, 0xffffffff, 0x2, 0x73284025, 0x6f0c}, {0x7ff, 0xfffffff8, 0x6, 0x1, 0x800, 0x4}, {0x7f, 0x64e711c2, 0xa, 0x8, 0x8, 0x40}, {0x8, 0x1, 0x0, 0xc, 0x8, 0x7}], [{0x3}, {}, {0x3, 0x1}, {}, {0x4}, {0x3, 0x1}, {0x278f368abc85dbb6, 0x1}, {0x3, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x4, 0x1}, {0xdfe08ac3f89e5f13}, {0x5, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2}, {0x3}, {0x4}, {0x2, 0x1}, {0x2}, {0x3, 0x1}, {}, {0x2}, {0x2, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x5}, {0x3, 0x1}, {0x5}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x2}, {0x1, 0x1}, {0x1}, {}, {0x4, 0x1}, {0x0, 0x1}, {0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x6, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x4ab62d5eed333453, 0x19c9da1097a52c8d}, {0x5}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {}, {0x4, 0x1}, {0x2}, {0x5497fac8595ca4ae}, {0x4, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {}, {0x2}, {0x3, 0x1}, {0x4}, {0x3, 0x1}, {0x0, 0x1}, {0x4}, {0x3}, {0x2, 0x1}, {0x5}, {0x1, 0x1}, {0x1}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {0x3}, {}, {0x3}, {0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x5, 0x1}, {0x1}, {0x3}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x3}, {0x2, 0x1}, {0x2}, {0x4}, {0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {}, {0x0, 0x1}, {}, {0x1, 0x1}, {0x2}, {}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {}, {0x5, 0x1}, {0x5}, {0x3}, {0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x3}, {0x4}], 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xeb0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='rss_stat\x00', r1}, 0x18)
syz_clone(0x2c9a4080, 0x0, 0x500, 0x0, 0x0, 0xfffffffffffffffc)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

660.865307ms ago: executing program 4 (id=1467):
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
pwritev(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0xfffffffc, 0x3)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001f80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000300), 0x4)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000040)=0x1800, 0x4)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d3000003fa157aaa58dbe1951b64b1210c56ff35bc376f48b582b2a6b61ef251fa6d8945c33232c54711a4bce2354942e4d4a74fbea66b933eccd9acdca21355822d26a07285ea73577733907ce26e1caa6f189b70c650689411963280c894d7dd991d86a3789c6627946"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)

599.610642ms ago: executing program 1 (id=1468):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000001180)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x818, &(0x7f00000008c0)={[{@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@dax}, {@errors_remount}, {@data_err_abort, 0x0}, {@journal_path={'journal_path', 0x3d, './file0'}}, {@nouser_xattr}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}, {@block_validity}, {@nobh}, {@noquota}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@usrquota}], [{@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@fsuuid={'fsuuid', 0x3d, {[0x63, 0x39, 0x0, 0x61, 0x50, 0x31, 0x63, 0x36], 0x2d, [0x63, 0xffcfaaaacf53540f, 0x30, 0x32], 0x2d, [0x31, 0x37, 0x35, 0x31], 0x2d, [0x64, 0x30, 0x33, 0x61], 0x2d, [0x37, 0x30, 0x36, 0x64, 0x65, 0x35, 0x31, 0x32]}}}, {@measure}, {@smackfsfloor}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}], 0x2c}, 0x0, 0x4ee, &(0x7f0000000a40)="$eJzs3U1vVFUfAPD/3La0fYCn8/D4xotSRWPjC6XldaELjSZsTEw0Bpe1LQQpYGhNgDS2usDERA2fwJediZ/AlW6MutK41bg1JsR0A7ow19yZe8uU6bQdOm2h8/slA+feuXfO+d9zzvSce7glgLbVn/1RitgWEb9ERF91c+EB/dW/bsxNj/41Nz1aijR95c9S5bjrc9OjxaHFeVvzjYEkIumO2L1IvpOXLp8ZmZgYv5BvD04leersyKnxU+Pnho8dO3Sw9+iR4cMtiTMr0/Vd75zfs/P461dfGj1x9Y3vv8zKm+bv18ZRVW4yh466Pf3Rv/Ba1nisyU+/022vSZc6N7AgNCVrtVl1dVX6f190xM3K64sX39vQwgFrKk3TtLtu7/zPstm0VqlUPQHYJEor79LZmHhNywKsp+IH/fW5bKY6PVo/D97crj0XlRlQFveN/FV9pzOSbA5frs6NutYo/3si4sTs359kr6i7D7FWuQIA7ezrbPzzVHXcUbyq7yRxX81x/83XhsoR8b+I2BER/8/HL/dGVI69PyIeiC3z52Qjyvp7Swv137JdP/78qXeVIS4pG/89k69tLRz/FetRUe7It7ZX4u8qnTw9MX4gvyYD0dWdbQ/VffLFZ4vUNy/8/HGj/Ptrxn/ZK8u/GAvm5fij85aLODYyNbLqwHPX3q1M6Wfq4y/NrwRk9bgzInat5AN7atJFU3jiiz2NDl8+/o8a59WCdab0s4jHq/U/G7fEX4RQqqxPnn1rcPLS5adP165PDh09Mnx4sCcmxg8MFq2i3g8/Xnk5T9YN6JePf21l9f+fRdv//MpluVS7XjvZfB5Xfn2/4Zzydtv/ltKrlXRWPx9mvW1kaurCUMSW0uz8/ij2D9889+JI7839Q9X4B/Yt3v93RPzzaX7e7ojIGvGDEfFQROzNy/5wRDwSEfuWiP+75x99s9Fk7k6o/7Gm6r/5RMeZb7+qy/iD/hXGn9X/oUpqIN8zNjLVs1xcKy3gqi8gAAAA3AX2RsS2KCX7q/c405mIZP/+iK3zd1Amp548ef7tc2PVZwTK0ZUUd7r6au6HDuX3hrPt7KzhiM5yzfsHK/eN0zRNe7PtbP4+sX1jQ4e2t7UmnVS+C5JK/8/8Xv9IC7DZNLWO1uiJNuCudPvr6GlLywGsP89rQ/vS/6F9rbj/ex4NNp3F+v9MxI0NKAqwzhbr/69tQDmA9Wf+D+1L/4f21ekf9UA7Ws1z/Usldhxf4phS59pk2jiRxNK/BaAcUewpvguX/sDfkojWlLCjpZH2rqBOe6IVeUWy7DGdTfwihjxR/N8BLbkaSUSDek/Wt/ktneiOiGVa73xjmykSl9e6YJVq+HwDv5oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABa4t8AAAD//53lzBs=")

578.065283ms ago: executing program 3 (id=1469):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='kfree\x00', r6}, 0x10)
r7 = syz_open_dev$sg(&(0x7f0000000c40), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r7, 0x2275, &(0x7f00000000c0)=0x7fffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)={0x2c, r3, 0xc4fc9e906872338b, 0x70bd2c, 0x0, {{0x5}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x2c}}, 0x4c002)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @multicast1, @empty}, 0xc)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r2)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r2, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f0000000a00)={0x200, r8, 0x2, 0x70bd28, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x1}, {0x8, 0x13, 0x3}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x8}, {0x8, 0x13, 0xfffffffe}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x10}, {0x8, 0x13, 0xb}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3c7}, {0x6, 0x11, 0x2}, {0x8, 0x13, 0x400}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x10}, {0x6, 0x11, 0x8}, {0x8, 0x13, 0x7}, {0x5, 0x14, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xae}, {0x6, 0x11, 0xfff9}, {0x8, 0x13, 0x10000}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x8}, {0x8, 0x13, 0x1}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x8}, {0x8, 0x13, 0x5}, {0x5}}]}, 0x200}, 0x1, 0x0, 0x0, 0x240008c1}, 0x844)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r11 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r11, &(0x7f0000000100)={&(0x7f0000000240)={0x24, @none={0x0, 0xffff}}, 0x14, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x240049c4}, 0x20008884)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYRES32=r11], &(0x7f0000000240)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r13, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x54, 0x2, 0x6, 0x201, 0x0, 0x6000, {0x0, 0x0, 0xfffc}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x54}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r12}, 0x18)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)

556.014895ms ago: executing program 3 (id=1470):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

527.247458ms ago: executing program 4 (id=1471):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB='\x00'/16, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x4f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102)

526.513667ms ago: executing program 1 (id=1472):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="0200000004000000080000"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

481.238611ms ago: executing program 3 (id=1473):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="001800"/17, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0xc}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

480.500041ms ago: executing program 4 (id=1474):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x4a, 0x0, &(0x7f00000002c0))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x1d, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000092d067c0cfbdb5de1000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a5000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000001240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0xe, 0x0, &(0x7f0000000500)="3d25ab555b19c4cbd00170850800", 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70c0000000008009500000000000000916340ec064fa979d04f0703957c0c3f4df0925a782ac375a0104672d0ee27c8da4296ae8534ea5d953588b957c3317bf746a79cd1d53dc0bbca968a9502ed81346178f12132ac1cb090b94e12c3a44f5b1e728272c759d5d7494ef843c421f21807ed00ff00000000000000000000000000f5722c474b1a785a0a"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r5}, 0x18)
syz_open_dev$loop(&(0x7f0000000080), 0x2, 0xb8000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10c}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f0000000380)={[{@nodioread_nolock}, {@minixdf}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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")
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r7, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xa, "0062ba7d82000000160000000000f738096304"})
sendmsg$NFT_BATCH(r6, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000440)={&(0x7f0000001280)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELSET={0x24, 0xb, 0xa, 0x204, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x178c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1758, 0x3, 0x0, 0x1, [{0x188, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x90, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xd3ace598c5bf2034}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VALUE={0x4d, 0x1, "3ef5c5be26c09865746bad2dc613144c530be984c2e873cd894770b18bc9e81347a0b1211a9de1ef458e6c795555d05954b4b48bcdc1b04ad34ff5a3d07994556da37015c93793685d"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}]}, @NFTA_SET_ELEM_USERDATA={0xf4, 0x6, 0x1, 0x0, "0b348283b41147c060479001c28fc0f4614cf61f6886cc896c728c0617804fc5ab2eeb1ff6a10a152e1c7af530d6ec610e48fa688c998689e9c55de3c2cb7059c1e90468c7683025ed823e278bdb519db777efe4f6a12ee356e6907142f99253345e92ef40bf3cb2eb6e4882fbafefaa149582c756a4a2330b303b07d37e615a06ed8de081c541b7457adb2826378ed065d6fffebbbb6b1f12fae55740e38d042da92b184e4ca160c0f88443629f7e690949ff79904b78348d95c1db589f815630840ca7b52a53d78ea50df398bc1e811469e448d91dc21390535850e9e91e59bb4532ca1018e0e10ab7710aabdf9556"}]}, {0x158, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_KEY_END={0x13c, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0xf0, 0x1, "ce55507e712357419e2df28f5763b3ffd124d36b7c773b6239464a9fd5d0d18f498f5dbf4de2b9006db536d8535525e561ca2cda71df1f8d19fa79d7bb5853130af23faaa0075bb12cdf5c667c1166765a077c2bd4b495e3eaec6854a01a6e361dd9449870a539309edac26375191ce2e5ae4137841801699f813fcff36ec69e08adfa990e19fb2ff2435ca4046a36319258dfdd5504131cafef2d65a41038fcae3d7a1bb5ab95883635e0b727647942ea91b79cabbce0bfcd918a23ba692497c3f91eef14154d3bc4899cf22b7481f429ef3481d729dd159beb6ffd556ff2183e8da36b104f59b0a77232c9"}, @NFTA_DATA_VALUE={0x45, 0x1, "de2f197294a4c9b6d4a1d102515ec5d77d86bb25f5ae0ce61e4f8c7ea09e817e235c26f0506632592e47274c31e63c21cbb3f7421ab3cf0738a7be5840374e11fc"}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}, {0x1e0, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPRESSIONS={0x14, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @reject={{0xb}, @void}}]}, @NFTA_SET_ELEM_EXPRESSIONS={0x10c, 0xb, 0x0, 0x1, [{0x108, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0xf8, 0x2, 0x0, 0x1, [@NFTA_BITWISE_MASK={0xe4, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x8b, 0x1, "a1c7dc7364b55873abe0c9a19639d6bce962b10bfdab51b1ee9f6d9261391384efc46f53fe0d323f8be24e17edd652378f36e45f6bfdbefb629d1e8e09d3fd99c37dcc5f932b9ef8018ce5dc94f52f9edc21d001451dd781c8891415ba53ba012744a30bf43fdc6fbc3c9eb83d317a3b652d2920501c20b925e3a3dfb95503ba6aa67afbb25204"}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}]}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x22bb19fed2246da6}, @NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x100}]}}}]}, @NFTA_SET_ELEM_USERDATA={0xaf, 0x6, 0x1, 0x0, "d6f459e83e9d2d72b25f174bc33dada4f327518e9e3c9df3f0c525c1172915cb4dfe653e5b0d4354aec6ee9fbe4ab699722683651aa8b093c4fd1906e7c7f3c3b8469addb0ca354f738b272cb8639ea76b00e0457739d6ecbb1c299d58c91a2ff47f2d0515ef5181f577168b60562cff4aca1208e37592763b76bcb1442cff2d319c3868425ec8bc0c5dde5daf8b2f0d7edc392836ff3b421c7f0e6415cae80e16eae85b9948fc7e0fcf02"}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x3}]}, {0xa8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz1\x00'}, @NFTA_SET_ELEM_KEY_END={0x90, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x89, 0x1, "be7c4d5b085e8288cf6bda470e683fdbc82d211f69b8c5d7eb8168c4558d4f45fe552ddadf4980d4924d30b3a223d299a86945ab5f003a76ceb6e15991ab61922e5e0c787f56e660e05397d7ce35ba3065c4595267616bfd6a12ca2c4592a8d0b1fb638e4457f87ff05e5061fd343b870a0e04866e6195f5d765090fdaaa7494614de9c292"}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}, {0x11ec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x168, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x9f, 0x1, "2f81be3d6853b0dff83d6fe1d653b6b0fa3ab9e662529b5b7c2663fd97722d7a495a330e5bf6083939bc6614551972fe8256cb51fa322cfaa38768389bdf3dfdcb4e76d649e19acdd151a6991e933af925a8712211007c31eddc0f3ac320991058ec718bb118284c62dc1147117d25eda80c23c46ae9bc86a1a51b28458d3b930f72447677a60122d1f262012552f16c56cddea40e1dc4178b0234"}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x4}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY_END={0x1074, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0x20, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}]}, @NFTA_DATA_VALUE={0x17, 0x1, "1498b9b0f46cac80be2ba7ad5727efd6e99a81"}]}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0xe4, 0x3, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_CHAIN_USERDATA={0x80, 0xc, "793b822ad17029628d1b447d4e8fcb98c0eacc0a81cbe890ab01e8226da81824dda092f8c97ff4cc5074139bba0e34040acc443a18225b3c6c74c7f3df421bf688ccb41200f442994e6ad146b6b66b7f4758d5d69d26db2926fd3058b7ffe002c806e0f3801e00a8d4e86bfb9f33d4c6a1025793dff2859b95f60378"}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x80000001}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8000000000000000}]}, @NFTA_CHAIN_FLAGS={0x8}, @NFTA_CHAIN_HOOK={0xc, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x517420e6}]}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x48, 0x16, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x9c, 0x6, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @dynset={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}, {0xc, 0x1, 0x0, 0x1, @fib={{0x8}, @void}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}, {0x24, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x303, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x19d0}, 0x1, 0x0, 0x0, 0x20040002}, 0x4000804)
r8 = syz_open_pts(r7, 0x900)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r9, 0x0, 0x3}, 0x18)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x4)
dup3(r8, r7, 0x80000)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)

380.323529ms ago: executing program 3 (id=1475):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x100002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVed:\xc4e', 0x0)
ustat(0xd, &(0x7f0000000680))
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r5, 0x0, 0x6}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000001580)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES64=0x0, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed300444000f8ac89758d3a070000000000000096a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRESOCT, @ANYRESHEX], 0x3, 0x7dc, &(0x7f0000000d80)="$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")
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl2\x00', &(0x7f00000002c0)={'gretap0\x00', <r8=>0x0, 0x40, 0x700, 0x10000000, 0x400, {{0x23, 0x4, 0x1, 0x7, 0x8c, 0x64, 0x0, 0x4, 0x29, 0x0, @rand_addr=0x64010102, @remote, {[@ssrr={0x89, 0x13, 0x49, [@remote, @loopback, @rand_addr=0x64010101, @multicast2]}, @noop, @lsrr={0x83, 0x7, 0x35, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @lsrr={0x83, 0xf, 0x6a, [@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, @local]}, @timestamp_prespec={0x44, 0x4c, 0x2f, 0x3, 0x4, [{@private=0xa010100, 0x3}, {@multicast1, 0x2}, {@rand_addr=0x64010101}, {@loopback}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}, {@multicast2, 0x7b2}, {@multicast2, 0x6}, {@broadcast, 0x1}, {@remote, 0x3}]}, @end]}}}}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r7, 0x89f8, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000380)={'erspan0\x00', r8, 0x7800, 0x1, 0x7f, 0x1, {{0x11, 0x4, 0x2, 0x6, 0x44, 0x65, 0x0, 0xf4, 0x2f, 0x0, @multicast1, @private=0xa010100, {[@timestamp={0x44, 0x1c, 0x94, 0x0, 0xc, [0x0, 0x8, 0x822f, 0x6, 0x7d, 0x10]}, @timestamp_addr={0x44, 0xc, 0xf5, 0x1, 0x2, [{@broadcast, 0x9358}]}, @rr={0x7, 0x7, 0x1e, [@private=0xa010102]}, @end]}}}}})
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
pipe2(0x0, 0x800)
stat(&(0x7f0000001c40)='./file0\x00', 0x0)
r9 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f0000000580)=@proc={0x10, 0x0, 0x25dfdbfd, 0x200}, 0xc, 0x0, 0x0, &(0x7f0000000780)=ANY=[@ANYRESDEC, @ANYRES32, @ANYRES32=<r10=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES32, @ANYBLOB="516d769c39dc2c3beda68a7e0afa19727afbdfa00c63a2251758449e0760c35cd4c4ed2fd8ed391d29402c3fa567122c2ce16dbd4d1970dab6f5ee387d779328d1d173c17bff5e8aa859ba8e43209c1d8a8e604cdbd7aa9280d237d0089b336ed5051fe758b774335dc0335902988557c2d19aa01f", @ANYRESOCT, @ANYRES32=<r11=>0xffffffffffffffff, @ANYRES16=<r12=>0xffffffffffffffff, @ANYRESOCT, @ANYRES16], 0x50, 0x24040094}, 0x80)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000b80)=ANY=[@ANYRESDEC=r12, @ANYRES32=0x0, @ANYBLOB="020002", @ANYRES32=0x0, @ANYRES32, @ANYBLOB, @ANYRES64, @ANYRESOCT, @ANYBLOB="02000300", @ANYRES8, @ANYBLOB="02000200", @ANYRESDEC=r10, @ANYBLOB="7de0de6148d7d44c4d01eeff92df69b773e9c6727f8fbda7576c2a15", @ANYRESDEC=r11, @ANYRESDEC, @ANYRES64, @ANYBLOB="00000800000000000000aa8f3fa177eab6b2334f0df8"], 0x94, 0x1)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002000)={&(0x7f00000004c0)=@kern={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001f00)=[{&(0x7f0000001780)={0x460, 0x31, 0x20, 0x70bd2a, 0x25dfdbfd, "", [@nested={0x165, 0x1a, 0x0, 0x1, [@generic="0909058836d04415b089bc03e795a5e660d0ab0333d8335921b93d4854ad383adc2623becaf679d5cd2391b04d58e60bb517e9aecd6e2f58dfd27e25a2b0f3b59f81349325053150480a1388a6be9c6eba3c8a3793d281d6433ca774c7a084f9103a12c56548c9d1e2c4e36667b158", @generic="e46749dd29cdb49fc2a3c21e557486e1383df59e15e4f2bdebadfa788c626b95f749bf522e52c110bf7dfef718b88b6ed50709fccc0b5106ca86bc68c6d4c39922a1b410cc4a2536a1271636d81e10bc11a0314d465d9b28db44ea1afba2712f945ee7df4b6da14b5ff6f9864a2a5dada7610da41fbeb196549764ce5634b7e1dc31673b21592e70ea7f29eb6f78bc0d19991b1cd8a56626902b0155502a637a4c7b1c180e6422d4d6c7d1e499c01125dabd0bec9ae0bd78fe72710313d83b883a0d9b0db1196447ffd2fcb691b6f3430c9c01d5d17c663abec2bd18e91fd0ae665bd4a15ab7dcdb6e2214398b0042af2813"]}, @nested={0x1a6, 0xe8, 0x0, 0x1, [@nested={0x4, 0xab}, @nested={0x4, 0x31}, @typed={0x4, 0x13b}, @nested={0x4, 0x70}, @generic="5e134d9bbe6d6b182c95c30ebc2a0a982fb6d8d624b32fca2a1bbc4cc469dd5fff354c869337d478d5c0f1087854705328231803a57e5a667b454742785ac25f80fc31d2dc1aacd34564caa41372091418f7965abc96e9181ba119ed9ea74c7bcdd72dbd95d58a75cc2f2560d06b14b8a1ef14acc7ccf841f0cb9f3f349d6a3cacba029fac27229f6b4f72a85390bdc5e70ff80ee3ef209a5b42b69d38e185c58c928030a540eacce5", @nested={0x4, 0x76}, @typed={0xc, 0xd9, 0x0, 0x0, @str='ethtool\x00'}, @nested={0x4, 0x104}, @generic="eeb25bec6c9ec4ea3a48cff3b45414323cac837374b5df9617c49bb6c729b3676a1b66665f9e7ac05c3d59b039408fb5e712bdf68df32eeda624448e7a82b10329e0f2e6ce7102aa128df3354807cc651d5e95fea1a80778123192cd15603f5bc2c64813755347d6971b98df477dfe36a8901dc22ee7973c461375bed3a5e3efbaa83f4e60259d2a6c50435ce35c9ee0de1c21f463660d9cb39ed809e0c262406e1c81e8f908ba0b2c9ce366fe7ee0272559d33d5b0963f5d486dae69ae2a5cdff9a939a4e0c4e73819564d5bdd3b03d65", @nested={0x4, 0x16}]}, @typed={0x8, 0xde, 0x0, 0x0, @uid}, @nested={0xc5, 0xcd, 0x0, 0x1, [@generic="3a7dd8df1761b039507a3111abacbe48874d5c3de9adb9d3078c8f9d6c494890258d192695eac152477e1cf674061c3b38dc05b47e1ffa729958113d1c43e75f5045d00a5bc9397d1a7ac5602b3d1a3789006f022659090d6d541fbb1d9a597510132e1ac77011afcb65e1abf4baf78ead63315f8d976222ce7a317dce99ecc0a8107b32d916f289b59a448d4ecef5db0dce90b657011451180d67370f94f4f8191696d8c7cf5b24ce4aa0c13fa469087b30dd33e1", @typed={0xa, 0x4c, 0x0, 0x0, @str='{-^-+\x00'}]}, @typed={0x8, 0xc8, 0x0, 0x0, @uid}, @nested={0x66, 0xe9, 0x0, 0x1, [@typed={0x8, 0xaf, 0x0, 0x0, @u32=0x1}, @generic="552affca78356678e60ca67e63c437a5a7b6", @typed={0x14, 0x122, 0x0, 0x0, @ipv6=@private1}, @typed={0x8, 0x32, 0x0, 0x0, @pid}, @typed={0x1c, 0x6f, 0x0, 0x0, @binary="908c907ab4d7fe22571da46c0c679e6e6d40b5c44c0f78a3"}, @typed={0x8, 0x66, 0x0, 0x0, @ipv4=@private=0xa010100}, @nested={0x4, 0x4c}, @nested={0x4, 0xc6}]}]}, 0x460}, {&(0x7f0000000a40)={0x17c, 0x36, 0x100, 0x70bd25, 0x25dfdbfd, "", [@generic="f58d8812211dba1d8241e5616b70eead97", @nested={0x3f, 0x17, 0x0, 0x1, [@typed={0x5, 0x111, 0x0, 0x0, @str='\x00'}, @generic="af3c922c3d1e9c1fed6ebd99", @nested={0x4, 0x13b}, @nested={0x4, 0x80}, @nested={0x4, 0xc0}, @generic="e6f9f638c86fa97def3b9ecb99ead16dcf17f761d2d0b1d4338bd3"]}, @generic="1ff3a5b031345c44163f30a0b56d56f5754052e396593332dca2ad9759e0f4739b4c5b77ebe0bf84e159eb909bbfe7d2c7caac87773ec4bc119efc4e58a4b078a08f1ff01aa3a9ce3b56191a0968d666b99a1d801766428d22950bb09c9b4f9a5b5831b02eb4b13bacefbfd06f8d3c07d0332ea16856fa1bcceb27864d5a50cdbf204fd66f6b384c56133aa79eee7711d33431f11a9c4e9850632e734d4ac3dde1e79fb14a516ff324168a55b527581a57268a8e12410ab8d18d076db924c1080274f9dd3dde6c506ea0f97407eb2647673cad70d030e317529554a38a70f1aed8d4180618ada95b55685df4ecc8b5ab0d", @typed={0x8, 0x4d, 0x0, 0x0, @ipv4=@local}, @typed={0x14, 0x8b, 0x0, 0x0, @ipv6=@mcast1}, @nested={0xc, 0xe9, 0x0, 0x1, [@nested={0x4, 0x19}, @nested={0x4, 0x11a}]}]}, 0x17c}, {&(0x7f0000001c00)={0x58, 0x1e, 0x400, 0x70bd26, 0x25dfdbfb, "", [@nested={0x8, 0x79, 0x0, 0x1, [@nested={0x4, 0xbf}]}, @generic="17ac365cf6840d7d3358e6b24d93ae8a43d78e1739814d4dc96052cd332a8c7722bfd9b4eafcb285dad64bfebdbda83d06c18287f9dec60d38af13100b012442"]}, 0x58}, {&(0x7f0000000640)={0x1c, 0x19, 0x4, 0x70bd27, 0x25dfdbfd, "", [@generic="f20ae8c580be44177f"]}, 0x1c}, {0x0}, {&(0x7f00000006c0)=ANY=[@ANYBLOB="10000000360000012bbd7000fcdbdf256e481437b6b18f65e18bfbca29ee80d783ea9b06c20048b23fc98fd4e3126b39a4db077e1bfb3ce3049c9018846214d279fb7c8f43cd6886da2fe440713a40220c26cc6a00000000"], 0x10}], 0x6, &(0x7f0000001f80)=[@rights={{0x2c, 0x1, 0x1, [r3, r6, r6, r3, r3, r1, 0xffffffffffffffff]}}], 0x30, 0x4004}, 0x4010)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x320, 0x0, 0x3, 0x1, 0xffffffffffffffff, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r13 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r6)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r13, @ANYBLOB="010326bd6000000000002d9300000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)

332.181163ms ago: executing program 1 (id=1476):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, 0x0, 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000840)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="001800"/17, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0xc}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

238.07976ms ago: executing program 1 (id=1477):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x836d9fb164f927b3)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0))
r2 = syz_io_uring_setup(0x3e91, &(0x7f0000000300)={0x0, 0x5aa7, 0x10100, 0x1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000280)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000040)=[{&(0x7f00000003c0)='0', 0x1}, {0x0}], 0x2})
io_uring_enter(r2, 0x5113, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x49, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r7, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r8 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x100002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r9}, &(0x7f0000000180), &(0x7f00000001c0)=r8}, 0x20)
flistxattr(r6, &(0x7f0000000540)=""/49, 0x31)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x6}, 0x18)
socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xfffa}, {}, {0x5, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x6c, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_FLOWER_KEY_ARP_SHA={0xa, 0x3f, @local}, @TCA_FLOWER_KEY_ARP_TIP_MASK={0x8}]}}]}, 0x9c}}, 0x24000000)
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r11, &(0x7f00000002c0), 0x40000000000009f, 0x0)

200.692544ms ago: executing program 2 (id=1478):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x4}, 0x1, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0x200, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
futex_waitv(&(0x7f0000000d00)=[{0xd, 0x0, 0x6}], 0x1, 0x0, 0x0, 0x1)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = socket(0x2, 0x80805, 0x5)
sendmmsg$inet_sctp(r1, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1, 0x0, 0x0, 0x10}], 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000004)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000007c0)={{0x1, 0x1, 0x18, <r4=>r0, {0x5, 0x9}}, './file0\x00'})
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000008, 0x1010, r4, 0x8000000)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0xfe, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c10ade8a05c3a5c90"], 0x30}], 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000002, {0x0, 0x0, 0x0, r7, {0x7, 0xffff}, {0xffff, 0xfff1}, {0x10}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x10100, 0x5, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_JITTER64={0xc, 0xb, 0x5}]}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="a1ab23bd7000fdffffff32000000080017015900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x0)

110.389281ms ago: executing program 1 (id=1479):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)

17.973198ms ago: executing program 2 (id=1480):
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) (async)
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x1103068, &(0x7f0000000100), 0x1, 0x5a3, &(0x7f0000000b00)="$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") (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x2200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="5c6d75113132db"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 32)
ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) (async, rerun: 32)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0) (async, rerun: 32)
io_uring_setup(0x2987, 0x0) (async, rerun: 32)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) (async, rerun: 64)
r3 = socket$tipc(0x1e, 0x2, 0x0) (rerun: 64)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f00000002c0)={0x43, 0x0, 0x3}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0xfffffffc, 0x3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='xen_cpu_set_ldt\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000800000000000000000008500"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0) (async)
sync_file_range(r2, 0xb, 0x3c55, 0x0) (async)
sync()
sync() (async)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, 0xffffffffffffffff, 0x0) (async, rerun: 64)
syz_clone(0x630051c0, 0x0, 0x22, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0}, './file1\x00'})
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)

0s ago: executing program 1 (id=1481):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r3 = getpid()
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="170000005400010026bd70010000000007"], 0x38}}, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, 0x0, 0x0)
pipe(&(0x7f0000000080))

kernel console output (not intermixed with test programs):

 from 0 to 512
[   59.683556][ T4579] EXT4-fs: dax option not supported
[   59.920978][ T4605] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=4605 comm=syz.2.485
[   59.940751][   T29] kauditd_printk_skb: 672 callbacks suppressed
[   59.940765][   T29] audit: type=1326 audit(1755485422.139:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4603 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   59.970347][   T29] audit: type=1326 audit(1755485422.139:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4603 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   59.993627][   T29] audit: type=1326 audit(1755485422.139:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4603 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.016983][   T29] audit: type=1326 audit(1755485422.139:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4603 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.040310][   T29] audit: type=1326 audit(1755485422.139:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4603 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.064090][   T29] audit: type=1326 audit(1755485422.219:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4607 comm="syz.2.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.087503][   T29] audit: type=1326 audit(1755485422.219:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4607 comm="syz.2.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.094044][ T4604] __nla_validate_parse: 45 callbacks suppressed
[   60.094064][ T4604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.484'.
[   60.110851][   T29] audit: type=1326 audit(1755485422.219:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4607 comm="syz.2.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.110887][   T29] audit: type=1326 audit(1755485422.219:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4607 comm="syz.2.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.110916][   T29] audit: type=1326 audit(1755485422.219:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4607 comm="syz.2.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf7354ebe9 code=0x7ffc0000
[   60.166079][ T4615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.482'.
[   60.173066][ T4604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.484'.
[   60.213990][ T4615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.482'.
[   60.282190][ T4609] loop2: detected capacity change from 0 to 512
[   60.296058][ T4621] loop4: detected capacity change from 0 to 512
[   60.299312][ T4619] loop3: detected capacity change from 0 to 1024
[   60.309489][ T4609] EXT4-fs: dax option not supported
[   60.319157][ T4621] EXT4-fs: dax option not supported
[   60.378101][ T4619] EXT4-fs (loop3): VFS: Can't find ext4 filesystem
[   60.423882][ T4619] loop3: detected capacity change from 0 to 512
[   60.425726][ T4630] netlink: 12 bytes leftover after parsing attributes in process `syz.1.492'.
[   60.440893][ T4630] netlink: 304 bytes leftover after parsing attributes in process `syz.1.492'.
[   60.449480][ T4619] EXT4-fs: Ignoring removed bh option
[   60.483701][ T4619] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.485834][ T4633] netlink: 8 bytes leftover after parsing attributes in process `syz.4.496'.
[   60.492290][ T4619] EXT4-fs (loop3): fragment/cluster size (4096) != block size (2048)
[   60.501976][ T4629] netlink: 8 bytes leftover after parsing attributes in process `syz.0.495'.
[   60.903393][ T4648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.502'.
[   60.912312][ T4648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.502'.
[   60.958512][ T4653] loop4: detected capacity change from 0 to 512
[   60.965851][ T4653] EXT4-fs: dax option not supported
[   60.996332][ T4658] loop1: detected capacity change from 0 to 1024
[   61.016583][ T4658] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[   61.110154][ T4665] loop4: detected capacity change from 0 to 512
[   61.120352][ T4665] EXT4-fs: dax option not supported
[   61.192280][ T4669] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=4669 comm=syz.4.511
[   61.379679][ T4702] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=4702 comm=syz.2.519
[   61.619081][ T4723] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4723 comm=syz.2.527
[   61.631526][ T4723] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4723 comm=syz.2.527
[   61.658062][ T4723] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4723 comm=syz.2.527
[   61.790541][ T4729] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4729 comm=syz.2.527
[   62.140870][ T4759] 9pnet_fd: Insufficient options for proto=fd
[   62.250949][ T4771] loop3: detected capacity change from 0 to 1024
[   62.258381][ T4771] EXT4-fs: inline encryption not supported
[   62.264260][ T4771] EXT4-fs: Ignoring removed i_version option
[   62.295737][ T4771] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   62.341773][ T4771] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.546: lblock 1 mapped to illegal pblock 1 (length 1)
[   62.373817][ T4771] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.546: Failed to acquire dquot type 0
[   62.391505][ T4771] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.546: Freeing blocks not in datazone - block = 0, count = 4096
[   62.408311][ T4771] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.546: Invalid inode bitmap blk 0 in block_group 0
[   62.422185][ T4771] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   62.431245][ T4771] EXT4-fs (loop3): 1 orphan inode deleted
[   62.432217][ T3465] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[   62.437491][ T4771] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.478772][ T3465] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0
[   62.551151][ T4791] 9pnet_fd: Insufficient options for proto=fd
[   62.601022][ T4796] loop0: detected capacity change from 0 to 512
[   62.618797][ T4796] EXT4-fs: dax option not supported
[   62.770159][ T4810] loop9: detected capacity change from 0 to 7
[   62.776955][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.785089][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.785157][ T4812] loop0: detected capacity change from 0 to 512
[   62.792985][ T3296]  loop9: unable to read partition table
[   62.815283][ T4810] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.816656][ T4812] EXT4-fs: dax option not supported
[   62.846274][ T4810] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.854193][ T4810]  loop9: unable to read partition table
[   62.863283][ T4817] 9pnet_fd: Insufficient options for proto=fd
[   62.881767][ T4810] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[   62.881767][ T4810] 
) failed (rc=-5)
[   62.895605][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.908146][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.929224][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.940518][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   62.948918][ T3296] Buffer I/O error on dev loop9, logical block 0, async page read
[   63.062198][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.160984][ T4844] loop1: detected capacity change from 0 to 512
[   63.179051][ T4837] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   63.196561][ T4849] 9pnet_fd: Insufficient options for proto=fd
[   63.197896][ T4844] EXT4-fs: dax option not supported
[   63.366570][ T4865] loop3: detected capacity change from 0 to 128
[   63.427254][ T4865] EXT4-fs: Ignoring removed nobh option
[   63.442727][ T4865] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   63.458105][ T4865] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   63.500601][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   63.550730][ T4870] loop1: detected capacity change from 0 to 1024
[   63.594806][ T4870] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[   63.635451][ T4870] loop1: detected capacity change from 0 to 512
[   63.676054][ T4870] EXT4-fs: Ignoring removed bh option
[   63.693088][ T4870] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.701752][ T4870] EXT4-fs (loop1): fragment/cluster size (4096) != block size (2048)
[   63.722103][ T4874] 9pnet_fd: Insufficient options for proto=fd
[   63.768950][ T4876] loop4: detected capacity change from 0 to 1024
[   63.777468][ T4876] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   63.822138][ T4876] loop4: detected capacity change from 0 to 512
[   63.862791][ T4876] EXT4-fs: Ignoring removed bh option
[   63.893459][ T4876] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.902048][ T4876] EXT4-fs (loop4): fragment/cluster size (4096) != block size (2048)
[   63.960977][ T4898] netlink: 'syz.1.599': attribute type 6 has an invalid length.
[   64.003943][ T4903] 9pnet_fd: Insufficient options for proto=fd
[   64.036294][ T4905] 9pnet_fd: Insufficient options for proto=fd
[   64.327574][ T4918] FAULT_INJECTION: forcing a failure.
[   64.327574][ T4918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.340717][ T4918] CPU: 0 UID: 0 PID: 4918 Comm: syz.1.608 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   64.340784][ T4918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.340802][ T4918] Call Trace:
[   64.340849][ T4918]  <TASK>
[   64.340863][ T4918]  __dump_stack+0x1d/0x30
[   64.340889][ T4918]  dump_stack_lvl+0xe8/0x140
[   64.340914][ T4918]  dump_stack+0x15/0x1b
[   64.340947][ T4918]  should_fail_ex+0x265/0x280
[   64.340973][ T4918]  should_fail+0xb/0x20
[   64.340995][ T4918]  should_fail_usercopy+0x1a/0x20
[   64.341022][ T4918]  _copy_from_user+0x1c/0xb0
[   64.341094][ T4918]  __sys_sendto+0x19e/0x330
[   64.341224][ T4918]  __x64_sys_sendto+0x76/0x90
[   64.341309][ T4918]  x64_sys_call+0x2d05/0x2ff0
[   64.341336][ T4918]  do_syscall_64+0xd2/0x200
[   64.341368][ T4918]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.341397][ T4918]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.341428][ T4918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.341472][ T4918] RIP: 0033:0x7fb1e73cebe9
[   64.341496][ T4918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.341519][ T4918] RSP: 002b:00007fb1e5e37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   64.341546][ T4918] RAX: ffffffffffffffda RBX: 00007fb1e75f5fa0 RCX: 00007fb1e73cebe9
[   64.341562][ T4918] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   64.341588][ T4918] RBP: 00007fb1e5e37090 R08: 00002000000002c0 R09: 0000000000000014
[   64.341600][ T4918] R10: 000000000004c001 R11: 0000000000000246 R12: 0000000000000001
[   64.341614][ T4918] R13: 00007fb1e75f6038 R14: 00007fb1e75f5fa0 R15: 00007fff49144cb8
[   64.341639][ T4918]  </TASK>
[   64.552017][ T4922] loop1: detected capacity change from 0 to 512
[   64.561284][ T4922] EXT4-fs: dax option not supported
[   64.566134][ T4924] loop2: detected capacity change from 0 to 1024
[   64.573722][ T4924] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[   64.588854][ T4924] loop2: detected capacity change from 0 to 512
[   64.595494][ T4924] EXT4-fs: Ignoring removed bh option
[   64.601428][ T4924] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.609923][ T4924] EXT4-fs (loop2): fragment/cluster size (4096) != block size (2048)
[   64.630812][ T4927] netlink: 'syz.1.613': attribute type 6 has an invalid length.
[   64.845662][ T4941] SELinux: security policydb version 17 (MLS) not backwards compatible
[   64.854104][ T4941] SELinux: failed to load policy
[   65.017657][   T29] kauditd_printk_skb: 471 callbacks suppressed
[   65.017673][   T29] audit: type=1400 audit(1755485427.219:3007): avc:  denied  { read open } for  pid=4956 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   65.065626][   T29] audit: type=1400 audit(1755485427.249:3008): avc:  denied  { getattr } for  pid=4956 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   65.090989][   T29] audit: type=1326 audit(1755485427.259:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.114455][   T29] audit: type=1326 audit(1755485427.259:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.138097][   T29] audit: type=1326 audit(1755485427.259:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.139163][ T4957] loop3: detected capacity change from 0 to 512
[   65.161514][   T29] audit: type=1326 audit(1755485427.259:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.191263][   T29] audit: type=1326 audit(1755485427.259:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.214631][   T29] audit: type=1326 audit(1755485427.259:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.237956][   T29] audit: type=1326 audit(1755485427.259:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.241897][ T4958] __nla_validate_parse: 59 callbacks suppressed
[   65.241916][ T4958] netlink: 176 bytes leftover after parsing attributes in process `syz.4.623'.
[   65.261372][   T29] audit: type=1326 audit(1755485427.259:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4955 comm="syz.3.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   65.303361][ T4957] EXT4-fs: dax option not supported
[   65.309470][ T4958] netlink: 16 bytes leftover after parsing attributes in process `syz.4.623'.
[   65.428253][ T4968] netlink: 'syz.2.626': attribute type 6 has an invalid length.
[   65.442021][ T4966] loop0: detected capacity change from 0 to 1024
[   65.481921][ T4966] EXT4-fs: inline encryption not supported
[   65.487900][ T4966] EXT4-fs: Ignoring removed i_version option
[   65.499899][ T4977] loop3: detected capacity change from 0 to 1024
[   65.524880][ T4977] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.544360][ T4966] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   65.626456][ T4966] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #3: block 1: comm syz.0.625: lblock 1 mapped to illegal pblock 1 (length 1)
[   65.663430][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.686176][ T4999] 9pnet_fd: Insufficient options for proto=fd
[   65.703144][ T4966] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.625: Failed to acquire dquot type 0
[   65.763907][ T4966] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.625: Freeing blocks not in datazone - block = 0, count = 4096
[   65.816390][ T5006] netlink: 8 bytes leftover after parsing attributes in process `syz.4.636'.
[   65.824288][ T4966] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.625: Invalid inode bitmap blk 0 in block_group 0
[   65.838557][   T37] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   65.868437][   T37] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   65.885039][ T4966] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   65.886462][ T5008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.637'.
[   65.905225][ T4966] EXT4-fs (loop0): 1 orphan inode deleted
[   65.925927][ T4988] loop1: detected capacity change from 0 to 764
[   65.939028][ T4966] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.006209][ T4988] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   66.039549][ T5017] loop3: detected capacity change from 0 to 164
[   66.076625][ T5017] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   66.271672][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.309478][ T5026] netlink: 40 bytes leftover after parsing attributes in process `syz.3.642'.
[   66.383233][ T5031] netlink: 8 bytes leftover after parsing attributes in process `syz.4.646'.
[   66.392884][ T5031] netlink: 8 bytes leftover after parsing attributes in process `syz.4.646'.
[   66.408451][ T5031] netlink: 176 bytes leftover after parsing attributes in process `syz.4.646'.
[   66.417613][ T5031] netlink: 16 bytes leftover after parsing attributes in process `syz.4.646'.
[   66.629621][ T5055] loop4: detected capacity change from 0 to 512
[   66.637666][ T5055] EXT4-fs: dax option not supported
[   66.702174][ T5061] netlink: 40 bytes leftover after parsing attributes in process `syz.0.656'.
[   66.811467][ T5073] loop0: detected capacity change from 0 to 1024
[   66.864615][ T5073] EXT4-fs (loop0): VFS: Can't find ext4 filesystem
[   66.879651][ T5075] 9pnet_fd: Insufficient options for proto=fd
[   66.910418][ T5073] loop0: detected capacity change from 0 to 512
[   66.934237][ T5073] EXT4-fs: Ignoring removed bh option
[   66.981713][ T5073] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   66.990236][ T5073] EXT4-fs (loop0): fragment/cluster size (4096) != block size (2048)
[   67.056448][ T5069] loop4: detected capacity change from 0 to 764
[   67.091649][ T5069] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   67.159708][ T5084] FAULT_INJECTION: forcing a failure.
[   67.159708][ T5084] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.172955][ T5084] CPU: 1 UID: 0 PID: 5084 Comm: syz.0.668 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   67.172992][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   67.173007][ T5084] Call Trace:
[   67.173029][ T5084]  <TASK>
[   67.173035][ T5084]  __dump_stack+0x1d/0x30
[   67.173060][ T5084]  dump_stack_lvl+0xe8/0x140
[   67.173084][ T5084]  dump_stack+0x15/0x1b
[   67.173105][ T5084]  should_fail_ex+0x265/0x280
[   67.173191][ T5084]  should_fail+0xb/0x20
[   67.173213][ T5084]  should_fail_usercopy+0x1a/0x20
[   67.173240][ T5084]  _copy_from_user+0x1c/0xb0
[   67.173266][ T5084]  ___sys_sendmsg+0xc1/0x1d0
[   67.173324][ T5084]  __x64_sys_sendmsg+0xd4/0x160
[   67.173428][ T5084]  x64_sys_call+0x191e/0x2ff0
[   67.173498][ T5084]  do_syscall_64+0xd2/0x200
[   67.173528][ T5084]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.173556][ T5084]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   67.173583][ T5084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.173606][ T5084] RIP: 0033:0x7f415158ebe9
[   67.173641][ T5084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.173660][ T5084] RSP: 002b:00007f414ffef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.173680][ T5084] RAX: ffffffffffffffda RBX: 00007f41517b5fa0 RCX: 00007f415158ebe9
[   67.173702][ T5084] RDX: 0000000004000010 RSI: 0000200000000140 RDI: 0000000000000003
[   67.173715][ T5084] RBP: 00007f414ffef090 R08: 0000000000000000 R09: 0000000000000000
[   67.173728][ T5084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.173740][ T5084] R13: 00007f41517b6038 R14: 00007f41517b5fa0 R15: 00007fff1d4e5538
[   67.173818][ T5084]  </TASK>
[   67.404825][ T5088] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65535 sclass=netlink_xfrm_socket pid=5088 comm=syz.0.671
[   67.448024][ T5092] SELinux: security policydb version 17 (MLS) not backwards compatible
[   67.459780][ T5092] SELinux: failed to load policy
[   67.541404][ T5101] loop2: detected capacity change from 0 to 1024
[   67.548789][ T5101] EXT4-fs: inline encryption not supported
[   67.554687][ T5101] EXT4-fs: Ignoring removed i_version option
[   67.591591][ T5101] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.625812][ T5101] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.676: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.661724][ T5113] x_tables: ip_tables: udp match: only valid for protocol 17
[   67.675173][ T5101] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.676: Failed to acquire dquot type 0
[   67.723819][ T5101] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.676: Freeing blocks not in datazone - block = 0, count = 4096
[   67.778567][ T5101] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.676: Invalid inode bitmap blk 0 in block_group 0
[   67.798305][ T5101] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   67.807961][ T5101] EXT4-fs (loop2): 1 orphan inode deleted
[   67.814076][ T5101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.825886][ T1380] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.871996][ T1380] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   67.969563][ T5132] netlink: 'syz.3.687': attribute type 6 has an invalid length.
[   68.130736][ T5124] loop4: detected capacity change from 0 to 764
[   68.172592][ T5124] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   68.293187][ T5160] loop4: detected capacity change from 0 to 512
[   68.300506][ T5160] EXT4-fs: dax option not supported
[   68.374621][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.511452][ T5177] loop0: detected capacity change from 0 to 1024
[   68.542236][ T5177] EXT4-fs (loop0): VFS: Can't find ext4 filesystem
[   68.726808][ T5188] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   68.766941][ T5186] FAULT_INJECTION: forcing a failure.
[   68.766941][ T5186] name failslab, interval 1, probability 0, space 0, times 0
[   68.779761][ T5186] CPU: 0 UID: 0 PID: 5186 Comm: syz.2.708 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   68.779848][ T5186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.779874][ T5186] Call Trace:
[   68.779882][ T5186]  <TASK>
[   68.779891][ T5186]  __dump_stack+0x1d/0x30
[   68.779915][ T5186]  dump_stack_lvl+0xe8/0x140
[   68.779937][ T5186]  dump_stack+0x15/0x1b
[   68.779955][ T5186]  should_fail_ex+0x265/0x280
[   68.780037][ T5186]  should_failslab+0x8c/0xb0
[   68.780063][ T5186]  kmem_cache_alloc_node_noprof+0x57/0x320
[   68.780094][ T5186]  ? __alloc_skb+0x101/0x320
[   68.780185][ T5186]  __alloc_skb+0x101/0x320
[   68.780223][ T5186]  ? selinux_file_permission+0x1e4/0x320
[   68.780247][ T5186]  ppp_write+0x87/0x310
[   68.780278][ T5186]  ? vfs_writev+0x3e3/0x8b0
[   68.780312][ T5186]  vfs_writev+0x403/0x8b0
[   68.780341][ T5186]  ? __pfx_ppp_write+0x10/0x10
[   68.780480][ T5186]  __x64_sys_pwritev+0xfd/0x1c0
[   68.780548][ T5186]  x64_sys_call+0x14f8/0x2ff0
[   68.780570][ T5186]  do_syscall_64+0xd2/0x200
[   68.780598][ T5186]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.780743][ T5186]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   68.780775][ T5186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.780798][ T5186] RIP: 0033:0x7faf7354ebe9
[   68.780814][ T5186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.780834][ T5186] RSP: 002b:00007faf71fb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128
[   68.780864][ T5186] RAX: ffffffffffffffda RBX: 00007faf73775fa0 RCX: 00007faf7354ebe9
[   68.780877][ T5186] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000006
[   68.780944][ T5186] RBP: 00007faf71fb7090 R08: 0000000000000800 R09: 0000000000000000
[   68.780957][ T5186] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   68.780970][ T5186] R13: 00007faf73776038 R14: 00007faf73775fa0 R15: 00007ffe30c437a8
[   68.780990][ T5186]  </TASK>
[   69.001277][ T5181] loop3: detected capacity change from 0 to 764
[   69.027046][ T5191] loop0: detected capacity change from 0 to 512
[   69.034021][ T5191] EXT4-fs: dax option not supported
[   69.081368][ T5181] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   69.123947][ T5195] loop1: detected capacity change from 0 to 1024
[   69.137379][ T5195] EXT4-fs: inline encryption not supported
[   69.143244][ T5195] EXT4-fs: Ignoring removed i_version option
[   69.180049][ T5195] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   69.221768][ T5195] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.714: lblock 1 mapped to illegal pblock 1 (length 1)
[   69.258017][ T5195] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.714: Failed to acquire dquot type 0
[   69.280450][ T5195] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.714: Freeing blocks not in datazone - block = 0, count = 4096
[   69.302603][ T5195] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.714: Invalid inode bitmap blk 0 in block_group 0
[   69.336812][ T1380] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   69.355389][ T1380] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   69.368486][ T5195] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   69.377561][ T5195] EXT4-fs (loop1): 1 orphan inode deleted
[   69.437609][ T5195] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.719655][ T5214] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   69.765961][ T5216] loop4: detected capacity change from 0 to 512
[   69.772960][ T5216] EXT4-fs: dax option not supported
[   69.971833][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.031189][   T29] kauditd_printk_skb: 667 callbacks suppressed
[   70.031209][   T29] audit: type=1326 audit(1755485432.229:3675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.072615][   T29] audit: type=1326 audit(1755485432.269:3676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.151340][   T29] audit: type=1326 audit(1755485432.309:3677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.174756][   T29] audit: type=1326 audit(1755485432.309:3678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.198124][   T29] audit: type=1326 audit(1755485432.319:3679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.221993][   T29] audit: type=1326 audit(1755485432.319:3680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.232481][ T5238] loop3: detected capacity change from 0 to 1024
[   70.245702][   T29] audit: type=1326 audit(1755485432.319:3681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.245776][   T29] audit: type=1326 audit(1755485432.319:3682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.245809][   T29] audit: type=1326 audit(1755485432.329:3683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.245918][   T29] audit: type=1326 audit(1755485432.329:3684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5225 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   70.327878][ T5239] loop1: detected capacity change from 0 to 764
[   70.389221][ T5241] tipc: Started in network mode
[   70.394146][ T5241] tipc: Node identity 6610207ed1d3, cluster identity 4711
[   70.401363][ T5241] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.424376][ T5239] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   70.443419][ T5238] EXT4-fs (loop3): VFS: Can't find ext4 filesystem
[   70.452225][ T5244] tipc: Disabling bearer <eth:syzkaller0>
[   70.506825][ T5238] loop3: detected capacity change from 0 to 512
[   70.529936][ T5238] EXT4-fs: Ignoring removed bh option
[   70.541176][ T5238] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.549755][ T5238] EXT4-fs (loop3): fragment/cluster size (4096) != block size (2048)
[   70.580368][ T5249] loop2: detected capacity change from 0 to 128
[   70.609550][ T5252] __nla_validate_parse: 36 callbacks suppressed
[   70.609577][ T5252] netlink: 12 bytes leftover after parsing attributes in process `syz.0.737'.
[   70.628605][ T5249] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   70.632412][ T5252] netlink: 304 bytes leftover after parsing attributes in process `syz.0.737'.
[   70.636566][ T5249] System zones: 1-3, 19-19, 35-36
[   70.661608][ T5249] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   70.665957][ T5255] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5255 comm=syz.3.741
[   70.683430][ T5249] ext4 filesystem being mounted at /141/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   70.751572][ T5257] netlink: 8 bytes leftover after parsing attributes in process `syz.4.740'.
[   70.840898][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   70.891928][ T5272] process 'syz.0.748' launched '/dev/fd/3' with NULL argv: empty string added
[   70.894898][ T5268] loop2: detected capacity change from 0 to 128
[   70.940357][ T5276] tipc: Started in network mode
[   70.945305][ T5276] tipc: Node identity 2a555f1e9fac, cluster identity 4711
[   70.952582][ T5276] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.971479][ T5276] tipc: Disabling bearer <eth:syzkaller0>
[   71.175648][ T5294] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5294 comm=syz.1.756
[   71.224758][ T5282] loop3: detected capacity change from 0 to 764
[   71.234840][ T5284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.753'.
[   71.243738][ T5284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.753'.
[   71.260484][ T5284] netlink: 176 bytes leftover after parsing attributes in process `syz.2.753'.
[   71.277576][ T5282] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   71.285631][ T5302] loop4: detected capacity change from 0 to 512
[   71.287510][ T5284] netlink: 16 bytes leftover after parsing attributes in process `syz.2.753'.
[   71.295253][ T5302] EXT4-fs: dax option not supported
[   71.444585][ T5311] netlink: 40 bytes leftover after parsing attributes in process `syz.4.764'.
[   71.455912][ T5311] netlink: 'syz.4.764': attribute type 6 has an invalid length.
[   71.516898][ T5314] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.535942][ T5314] tipc: Disabling bearer <eth:syzkaller0>
[   71.740675][ T5332] loop1: detected capacity change from 0 to 512
[   71.750144][ T5332] EXT4-fs: dax option not supported
[   71.848765][ T5328] netlink: 8 bytes leftover after parsing attributes in process `syz.3.772'.
[   71.857790][ T5328] netlink: 8 bytes leftover after parsing attributes in process `syz.3.772'.
[   71.864476][ T5342] loop1: detected capacity change from 0 to 1024
[   71.881024][ T5342] EXT4-fs: inline encryption not supported
[   71.886907][ T5342] EXT4-fs: Ignoring removed i_version option
[   71.903901][ T5335] loop4: detected capacity change from 0 to 764
[   71.928914][ T5342] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.961762][ T5335] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   71.964057][ T5342] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.777: lblock 1 mapped to illegal pblock 1 (length 1)
[   71.995855][ T5342] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.777: Failed to acquire dquot type 0
[   72.011820][ T5342] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.777: Freeing blocks not in datazone - block = 0, count = 4096
[   72.026412][ T5342] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.777: Invalid inode bitmap blk 0 in block_group 0
[   72.039127][  T417] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   72.056391][  T417] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   72.069729][ T5342] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   72.079986][ T5342] EXT4-fs (loop1): 1 orphan inode deleted
[   72.086784][ T5342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.181897][ T5359] FAULT_INJECTION: forcing a failure.
[   72.181897][ T5359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.195032][ T5359] CPU: 1 UID: 0 PID: 5359 Comm: syz.4.785 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   72.195115][ T5359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.195127][ T5359] Call Trace:
[   72.195134][ T5359]  <TASK>
[   72.195141][ T5359]  __dump_stack+0x1d/0x30
[   72.195161][ T5359]  dump_stack_lvl+0xe8/0x140
[   72.195182][ T5359]  dump_stack+0x15/0x1b
[   72.195268][ T5359]  should_fail_ex+0x265/0x280
[   72.195294][ T5359]  should_fail+0xb/0x20
[   72.195322][ T5359]  should_fail_usercopy+0x1a/0x20
[   72.195349][ T5359]  _copy_to_user+0x20/0xa0
[   72.195385][ T5359]  simple_read_from_buffer+0xb5/0x130
[   72.195473][ T5359]  proc_fail_nth_read+0x10e/0x150
[   72.195552][ T5359]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.195628][ T5359]  vfs_read+0x1a8/0x770
[   72.195661][ T5359]  ? __rcu_read_unlock+0x4f/0x70
[   72.195680][ T5359]  ? __fget_files+0x184/0x1c0
[   72.195706][ T5359]  ksys_read+0xda/0x1a0
[   72.195731][ T5359]  __x64_sys_read+0x40/0x50
[   72.195752][ T5359]  x64_sys_call+0x27bc/0x2ff0
[   72.195832][ T5359]  do_syscall_64+0xd2/0x200
[   72.195864][ T5359]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.195894][ T5359]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.195925][ T5359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.196018][ T5359] RIP: 0033:0x7f68f633d5fc
[   72.196032][ T5359] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   72.196048][ T5359] RSP: 002b:00007f68f4d9f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.196067][ T5359] RAX: ffffffffffffffda RBX: 00007f68f6565fa0 RCX: 00007f68f633d5fc
[   72.196083][ T5359] RDX: 000000000000000f RSI: 00007f68f4d9f0a0 RDI: 0000000000000006
[   72.196116][ T5359] RBP: 00007f68f4d9f090 R08: 0000000000000000 R09: 0000000000000000
[   72.196127][ T5359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.196138][ T5359] R13: 00007f68f6566038 R14: 00007f68f6565fa0 R15: 00007ffdb202acb8
[   72.196160][ T5359]  </TASK>
[   72.398223][ T5361] loop3: detected capacity change from 0 to 128
[   72.417546][ T5361] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   72.430411][ T5361] ext4 filesystem being mounted at /168/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   72.442451][ T5364] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5364 comm=syz.0.786
[   72.453956][ T5366] loop4: detected capacity change from 0 to 512
[   72.475596][ T5366] EXT4-fs: dax option not supported
[   72.631493][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.697495][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.879497][ T5403] 9pnet_fd: Insufficient options for proto=fd
[   73.354678][ T5422] loop2: detected capacity change from 0 to 764
[   73.634976][ T5422] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   73.663922][ T5434] 9pnet_fd: Insufficient options for proto=fd
[   73.781556][ T5444] loop4: detected capacity change from 0 to 1024
[   73.835342][ T5444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.867937][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.118648][ T5469] 9pnet_fd: Insufficient options for proto=fd
[   74.145451][ T5471] loop4: detected capacity change from 0 to 128
[   74.224704][ T5473] SELinux: security policydb version 17 (MLS) not backwards compatible
[   74.238059][ T5473] SELinux: failed to load policy
[   74.443421][ T5488] netlink: 'syz.2.834': attribute type 30 has an invalid length.
[   74.603973][ T5510] 9pnet_fd: Insufficient options for proto=fd
[   74.737253][ T5522] vlan2: entered allmulticast mode
[   74.929057][ T5549] loop4: detected capacity change from 0 to 128
[   75.299272][ T5565] SELinux: security policydb version 17 (MLS) not backwards compatible
[   75.307839][ T5565] SELinux: failed to load policy
[   75.390142][ T5569] loop3: detected capacity change from 0 to 128
[   75.413778][ T5569] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   75.422708][ T5569] System zones: 1-3, 19-19, 35-36
[   75.429243][ T5569] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   75.448558][ T5569] ext4 filesystem being mounted at /179/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   75.559339][   T29] kauditd_printk_skb: 593 callbacks suppressed
[   75.559354][   T29] audit: type=1400 audit(1755485437.759:4275): avc:  denied  { ioctl } for  pid=5568 comm="syz.3.855" path="/179/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/cpu.stat" dev="loop3" ino=12 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   75.630622][ T5580] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   75.658156][ T5584] loop1: detected capacity change from 0 to 128
[   75.672122][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   75.682103][ T5580] tipc: Disabling bearer <eth:syzkaller0>
[   75.703970][ T5586] IPv6: Can't replace route, no match found
[   75.728319][   T29] audit: type=1400 audit(1755485437.909:4276): avc:  denied  { getopt } for  pid=5585 comm="syz.0.862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   75.797051][ T5593] __nla_validate_parse: 49 callbacks suppressed
[   75.797070][ T5593] netlink: 44 bytes leftover after parsing attributes in process `syz.1.864'.
[   75.820589][   T29] audit: type=1326 audit(1755485438.019:4277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.851245][   T29] audit: type=1326 audit(1755485438.039:4278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.874745][   T29] audit: type=1326 audit(1755485438.039:4279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.897731][   T29] audit: type=1326 audit(1755485438.039:4280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.909952][ T5595] netlink: 8 bytes leftover after parsing attributes in process `syz.4.865'.
[   75.920650][   T29] audit: type=1326 audit(1755485438.039:4281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.920704][   T29] audit: type=1326 audit(1755485438.039:4282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.920736][   T29] audit: type=1326 audit(1755485438.039:4283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.920815][   T29] audit: type=1326 audit(1755485438.039:4284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm=2F0E7F exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   75.969199][ T5597] netlink: 8 bytes leftover after parsing attributes in process `syz.2.867'.
[   76.095653][ T5586] syz.0.862 (5586) used greatest stack depth: 10008 bytes left
[   76.134321][ T5606] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   76.144394][ T5606] tipc: Disabling bearer <eth:syzkaller0>
[   76.160741][ T5602] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'.
[   76.285309][ T5601] netlink: 8 bytes leftover after parsing attributes in process `syz.3.866'.
[   76.294218][ T5601] netlink: 8 bytes leftover after parsing attributes in process `syz.3.866'.
[   76.313492][ T5601] netlink: 176 bytes leftover after parsing attributes in process `syz.3.866'.
[   76.322600][ T5601] netlink: 16 bytes leftover after parsing attributes in process `syz.3.866'.
[   76.398867][ T5617] 9pnet_fd: Insufficient options for proto=fd
[   76.464086][ T5621] netlink: 8 bytes leftover after parsing attributes in process `syz.3.876'.
[   76.480291][ T5619] netlink: 8 bytes leftover after parsing attributes in process `syz.0.875'.
[   76.791859][ T5631] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5631 comm=syz.2.881
[   76.888560][ T5637] loop4: detected capacity change from 0 to 128
[   76.937642][ T5640] 9pnet_fd: Insufficient options for proto=fd
[   76.951842][ T5637] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   76.994985][ T5637] System zones: 1-3, 19-19, 35-36
[   77.006634][ T5637] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   77.058898][ T5637] ext4 filesystem being mounted at /171/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   77.172302][ T3303] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   77.381040][ T5661] tipc: Started in network mode
[   77.385992][ T5661] tipc: Node identity 266900209a34, cluster identity 4711
[   77.393249][ T5661] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   77.408670][ T5665] loop2: detected capacity change from 0 to 512
[   77.415302][ T5665] EXT4-fs: dax option not supported
[   77.433328][ T5661] tipc: Disabling bearer <eth:syzkaller0>
[   77.460372][ T5669] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5669 comm=syz.1.897
[   77.491210][ T5671] netlink: 'syz.2.900': attribute type 6 has an invalid length.
[   77.599663][ T5684] netlink: 'syz.0.906': attribute type 6 has an invalid length.
[   77.712504][ T5700] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   77.744634][ T5700] tipc: Disabling bearer <eth:syzkaller0>
[   77.841738][ T5714] FAULT_INJECTION: forcing a failure.
[   77.841738][ T5714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.854872][ T5714] CPU: 1 UID: 0 PID: 5714 Comm: +}[@ Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   77.854981][ T5714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.854996][ T5714] Call Trace:
[   77.855003][ T5714]  <TASK>
[   77.855012][ T5714]  __dump_stack+0x1d/0x30
[   77.855095][ T5714]  dump_stack_lvl+0xe8/0x140
[   77.855118][ T5714]  dump_stack+0x15/0x1b
[   77.855134][ T5714]  should_fail_ex+0x265/0x280
[   77.855174][ T5714]  should_fail+0xb/0x20
[   77.855213][ T5714]  should_fail_usercopy+0x1a/0x20
[   77.855240][ T5714]  _copy_from_user+0x1c/0xb0
[   77.855317][ T5714]  kstrtouint_from_user+0x69/0xf0
[   77.855349][ T5714]  ? 0xffffffff81000000
[   77.855366][ T5714]  ? selinux_file_permission+0x1e4/0x320
[   77.855393][ T5714]  proc_fail_nth_write+0x50/0x160
[   77.855428][ T5714]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   77.855493][ T5714]  vfs_write+0x269/0x960
[   77.855538][ T5714]  ? vfs_read+0x4e6/0x770
[   77.855671][ T5714]  ? __rcu_read_unlock+0x4f/0x70
[   77.855692][ T5714]  ? __fget_files+0x184/0x1c0
[   77.855714][ T5714]  ? tiocsti+0x19b/0x1d0
[   77.855791][ T5714]  ksys_write+0xda/0x1a0
[   77.855898][ T5714]  __x64_sys_write+0x40/0x50
[   77.855926][ T5714]  x64_sys_call+0x27fe/0x2ff0
[   77.855953][ T5714]  do_syscall_64+0xd2/0x200
[   77.855986][ T5714]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.856026][ T5714]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.856057][ T5714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.856083][ T5714] RIP: 0033:0x7febcaf4d69f
[   77.856101][ T5714] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   77.856240][ T5714] RSP: 002b:00007febc99af030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   77.856264][ T5714] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007febcaf4d69f
[   77.856279][ T5714] RDX: 0000000000000001 RSI: 00007febc99af0a0 RDI: 0000000000000008
[   77.856294][ T5714] RBP: 00007febc99af090 R08: 0000000000000000 R09: 0000000000000000
[   77.856309][ T5714] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   77.856324][ T5714] R13: 00007febcb176038 R14: 00007febcb175fa0 R15: 00007fff40ca2aa8
[   77.856347][ T5714]  </TASK>
[   77.908715][ T5717] loop1: detected capacity change from 0 to 2048
[   78.145548][ T5718] loop4: detected capacity change from 0 to 512
[   78.177936][ T5718] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   78.250841][ T5717]  loop1: p1 < > p4
[   78.274120][ T5718] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   78.282174][ T5718] EXT4-fs (loop4): failed to initialize system zone (-117)
[   78.289784][ T5718] EXT4-fs (loop4): mount failed
[   78.343448][ T5717] loop1: p4 size 722688 extends beyond EOD, truncated
[   78.427713][ T2992]  loop1: p1 < > p4
[   78.462549][ T5719] infiniband syz!: set active
[   78.467375][ T5719] infiniband syz!: added team_slave_0
[   78.474105][ T2992] loop1: p4 size 722688 extends beyond EOD, truncated
[   78.558820][ T5719] RDS/IB: syz!: added
[   78.573077][ T5719] smc: adding ib device syz! with port count 1
[   78.579389][ T5719] smc:    ib device syz! port 1 has pnetid 
[   78.679060][ T5742] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   78.695461][ T5742] tipc: Disabling bearer <eth:syzkaller0>
[   78.764836][ T5746] 9pnet_fd: Insufficient options for proto=fd
[   78.822535][ T5750] loop4: detected capacity change from 0 to 512
[   78.844437][ T5750] EXT4-fs: dax option not supported
[   79.086485][ T5769] syzkaller1: entered promiscuous mode
[   79.092091][ T5769] syzkaller1: entered allmulticast mode
[   79.191005][ T5773] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.228323][ T5773] tipc: Disabling bearer <eth:syzkaller0>
[   79.339600][ T5787] loop4: detected capacity change from 0 to 1024
[   79.346474][ T5787] EXT4-fs: inline encryption not supported
[   79.352416][ T5787] EXT4-fs: Ignoring removed i_version option
[   79.366150][ T5787] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   79.388162][ T5787] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.951: lblock 1 mapped to illegal pblock 1 (length 1)
[   79.414360][ T5787] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.951: Failed to acquire dquot type 0
[   79.448721][ T5787] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.951: Freeing blocks not in datazone - block = 0, count = 4096
[   79.468713][ T5787] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.951: Invalid inode bitmap blk 0 in block_group 0
[   79.483099][ T5787] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   79.502177][   T37] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   79.521369][ T5787] EXT4-fs (loop4): 1 orphan inode deleted
[   79.522629][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   79.534322][ T5787] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.617569][ T5811] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.626463][ T5811] tipc: Disabling bearer <eth:syzkaller0>
[   79.750494][ T5820] loop1: detected capacity change from 0 to 128
[   79.763660][ T5820] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   79.774028][ T5820] System zones: 1-3, 19-19, 35-36
[   79.780707][ T5820] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   79.794776][ T5820] ext4 filesystem being mounted at /182/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   79.838906][ T3302] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   80.182250][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.213674][ T5855] SELinux:  Context Ü is not valid (left unmapped).
[   80.406663][ T5886] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=5886 comm=syz.0.992
[   80.435694][ T5889] loop1: detected capacity change from 0 to 1024
[   80.442619][ T5889] EXT4-fs: inline encryption not supported
[   80.448538][ T5889] EXT4-fs: Ignoring removed i_version option
[   80.474509][ T5889] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   80.549270][ T5899] 9pnet_fd: Insufficient options for proto=fd
[   80.566182][ T5889] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.990: lblock 1 mapped to illegal pblock 1 (length 1)
[   80.596104][   T29] kauditd_printk_skb: 266 callbacks suppressed
[   80.596124][   T29] audit: type=1326 audit(1755485442.759:4548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f68f633d69f code=0x7ffc0000
[   80.626943][ T5889] Quota error (device loop1): write_blk: dquota write failed
[   80.634343][ T5889] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   80.645328][ T5889] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.990: Failed to acquire dquot type 0
[   80.663336][ T5889] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.990: Freeing blocks not in datazone - block = 0, count = 4096
[   80.712474][ T5903] netlink: 'syz.0.994': attribute type 6 has an invalid length.
[   80.783190][ T5874] loop4: detected capacity change from 0 to 764
[   80.791063][   T29] audit: type=1326 audit(1755485442.979:4549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f68f633ec77 code=0x7ffc0000
[   80.814576][   T29] audit: type=1326 audit(1755485442.979:4550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f68f633d550 code=0x7ffc0000
[   80.838052][   T29] audit: type=1326 audit(1755485442.979:4551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f68f633e7eb code=0x7ffc0000
[   80.864065][ T5889] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.990: Invalid inode bitmap blk 0 in block_group 0
[   80.891657][  T417] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   80.900080][ T5889] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   80.916177][  T417] Quota error (device loop1): remove_tree: Can't read quota data block 1
[   80.924813][  T417] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   80.937095][   T29] audit: type=1326 audit(1755485443.079:4552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f68f633d84a code=0x7ffc0000
[   80.960722][   T29] audit: type=1326 audit(1755485443.079:4553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f68f633d84a code=0x7ffc0000
[   80.983968][   T29] audit: type=1326 audit(1755485443.079:4554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5873 comm="syz.4.987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f68f633d457 code=0x7ffc0000
[   81.007488][ T5889] EXT4-fs (loop1): 1 orphan inode deleted
[   81.013662][ T5889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.031022][ T5874] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   81.260633][ T5933] __nla_validate_parse: 39 callbacks suppressed
[   81.260652][ T5933] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1003'.
[   81.277452][ T5933] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1003'.
[   81.287410][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.288622][ T5933] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   81.304262][ T5933] SELinux: failed to load policy
[   81.360248][ T5941] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1006'.
[   81.379995][ T5941] netlink: 'syz.2.1006': attribute type 6 has an invalid length.
[   81.403870][ T5944] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1009'.
[   81.412891][ T5944] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1009'.
[   81.455252][ T5952] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1009'.
[   81.483159][ T5952] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1009'.
[   81.521392][ T5954] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1012'.
[   81.947864][ T5964] loop1: detected capacity change from 0 to 128
[   81.972311][ T5964] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   81.998295][ T5964] System zones: 1-3, 19-19, 35-36
[   82.012009][ T5969] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1019'.
[   82.037328][ T5960] loop2: detected capacity change from 0 to 764
[   82.044435][ T5964] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   82.061190][ T5969] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1019'.
[   82.068432][ T5973] SELinux: security policydb version 17 (MLS) not backwards compatible
[   82.084455][ T5964] ext4 filesystem being mounted at /191/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   82.084706][ T5960] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   82.128833][ T5973] SELinux: failed to load policy
[   82.169965][ T3302] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.283949][ T5986] loop1: detected capacity change from 0 to 512
[   82.295520][ T5986] EXT4-fs: dax option not supported
[   82.392804][ T5994] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   82.417551][ T5993] tipc: Disabling bearer <eth:syzkaller0>
[   82.973117][ T6021] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=6021 comm=syz.0.1044
[   83.019812][ T6028] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.051375][ T6025] tipc: Disabling bearer <eth:syzkaller0>
[   83.062175][ T6035] SELinux: security policydb version 17 (MLS) not backwards compatible
[   83.071201][ T6035] SELinux: failed to load policy
[   83.082203][ T6033] loop4: detected capacity change from 0 to 512
[   83.103703][ T6033] EXT4-fs: dax option not supported
[   83.561515][ T6059] loop4: detected capacity change from 0 to 512
[   83.584794][ T6059] EXT4-fs: dax option not supported
[   83.693581][ T6067] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   83.701659][ T6066] tipc: Disabling bearer <eth:syzkaller0>
[   83.799476][ T6077] loop2: detected capacity change from 0 to 512
[   83.809089][ T6077] EXT4-fs: dax option not supported
[   83.834225][ T6079] SELinux: security policydb version 17 (MLS) not backwards compatible
[   83.865288][ T6079] SELinux: failed to load policy
[   84.128770][ T6091] loop3: detected capacity change from 0 to 1024
[   84.159792][ T6091] EXT4-fs: inline encryption not supported
[   84.165675][ T6091] EXT4-fs: Ignoring removed i_version option
[   84.202923][ T6091] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   84.232567][ T6091] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.1076: lblock 1 mapped to illegal pblock 1 (length 1)
[   84.248559][ T6097] FAULT_INJECTION: forcing a failure.
[   84.248559][ T6097] name failslab, interval 1, probability 0, space 0, times 0
[   84.261272][ T6097] CPU: 1 UID: 0 PID: 6097 Comm: syz.0.1078 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   84.261339][ T6097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   84.261383][ T6097] Call Trace:
[   84.261390][ T6097]  <TASK>
[   84.261397][ T6097]  __dump_stack+0x1d/0x30
[   84.261430][ T6097]  dump_stack_lvl+0xe8/0x140
[   84.261481][ T6097]  dump_stack+0x15/0x1b
[   84.261501][ T6097]  should_fail_ex+0x265/0x280
[   84.261528][ T6097]  ? alloc_pipe_info+0xae/0x350
[   84.261621][ T6097]  should_failslab+0x8c/0xb0
[   84.261652][ T6097]  __kmalloc_cache_noprof+0x4c/0x320
[   84.261686][ T6097]  alloc_pipe_info+0xae/0x350
[   84.261717][ T6097]  splice_direct_to_actor+0x592/0x680
[   84.261738][ T6097]  ? kstrtouint_from_user+0x9f/0xf0
[   84.261770][ T6097]  ? __pfx_direct_splice_actor+0x10/0x10
[   84.261795][ T6097]  ? __rcu_read_unlock+0x4f/0x70
[   84.261823][ T6097]  ? get_pid_task+0x96/0xd0
[   84.261865][ T6097]  ? avc_policy_seqno+0x15/0x30
[   84.261927][ T6097]  ? selinux_file_permission+0x1e4/0x320
[   84.261955][ T6097]  do_splice_direct+0xda/0x150
[   84.261974][ T6097]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   84.262068][ T6097]  do_sendfile+0x380/0x650
[   84.262109][ T6097]  __x64_sys_sendfile64+0xb8/0x150
[   84.262141][ T6097]  x64_sys_call+0x2bb0/0x2ff0
[   84.262279][ T6097]  do_syscall_64+0xd2/0x200
[   84.262313][ T6097]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   84.262343][ T6097]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   84.262374][ T6097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.262467][ T6097] RIP: 0033:0x7f415158ebe9
[   84.262485][ T6097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.262507][ T6097] RSP: 002b:00007f414ffef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   84.262528][ T6097] RAX: ffffffffffffffda RBX: 00007f41517b5fa0 RCX: 00007f415158ebe9
[   84.262540][ T6097] RDX: 0000200000000000 RSI: 0000000000000005 RDI: 0000000000000006
[   84.262552][ T6097] RBP: 00007f414ffef090 R08: 0000000000000000 R09: 0000000000000000
[   84.262567][ T6097] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[   84.262618][ T6097] R13: 00007f41517b6038 R14: 00007f41517b5fa0 R15: 00007fff1d4e5538
[   84.262643][ T6097]  </TASK>
[   84.414832][ T6091] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1076: Failed to acquire dquot type 0
[   84.494381][ T6099] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   84.502884][ T6091] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.1076: Freeing blocks not in datazone - block = 0, count = 4096
[   84.522778][ T6091] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1076: Invalid inode bitmap blk 0 in block_group 0
[   84.535534][ T6091] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   84.544323][   T37] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   84.545107][ T6098] tipc: Disabling bearer <eth:syzkaller0>
[   84.558881][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   84.576458][ T6091] EXT4-fs (loop3): 1 orphan inode deleted
[   84.587139][ T6091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.634800][ T6103] loop4: detected capacity change from 0 to 512
[   84.642939][ T6103] EXT4-fs: dax option not supported
[   84.837017][ T6116] netlink: 'syz.2.1087': attribute type 6 has an invalid length.
[   85.097204][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.282019][ T6139] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   85.328110][ T6138] tipc: Disabling bearer <eth:syzkaller0>
[   85.485057][ T6141] FAULT_INJECTION: forcing a failure.
[   85.485057][ T6141] name failslab, interval 1, probability 0, space 0, times 0
[   85.497925][ T6141] CPU: 0 UID: 0 PID: 6141 Comm: syz.1.1096 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   85.497962][ T6141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.497977][ T6141] Call Trace:
[   85.497984][ T6141]  <TASK>
[   85.498045][ T6141]  __dump_stack+0x1d/0x30
[   85.498067][ T6141]  dump_stack_lvl+0xe8/0x140
[   85.498131][ T6141]  dump_stack+0x15/0x1b
[   85.498147][ T6141]  should_fail_ex+0x265/0x280
[   85.498173][ T6141]  should_failslab+0x8c/0xb0
[   85.498236][ T6141]  __kmalloc_node_noprof+0xa9/0x410
[   85.498271][ T6141]  ? qdisc_alloc+0x65/0x440
[   85.498353][ T6141]  qdisc_alloc+0x65/0x440
[   85.498392][ T6141]  ? nla_strcmp+0xc3/0xe0
[   85.498481][ T6141]  qdisc_create+0xf5/0x9e0
[   85.498518][ T6141]  tc_modify_qdisc+0xf2e/0x1420
[   85.498630][ T6141]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   85.498659][ T6141]  rtnetlink_rcv_msg+0x657/0x6d0
[   85.498695][ T6141]  netlink_rcv_skb+0x123/0x220
[   85.498726][ T6141]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   85.498766][ T6141]  rtnetlink_rcv+0x1c/0x30
[   85.498843][ T6141]  netlink_unicast+0x5bd/0x690
[   85.499095][ T6141]  netlink_sendmsg+0x58b/0x6b0
[   85.499123][ T6141]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.499189][ T6141]  __sock_sendmsg+0x142/0x180
[   85.499223][ T6141]  ____sys_sendmsg+0x31e/0x4e0
[   85.499252][ T6141]  ___sys_sendmsg+0x17b/0x1d0
[   85.499291][ T6141]  __x64_sys_sendmsg+0xd4/0x160
[   85.499329][ T6141]  x64_sys_call+0x191e/0x2ff0
[   85.499433][ T6141]  do_syscall_64+0xd2/0x200
[   85.499464][ T6141]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.499493][ T6141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.499516][ T6141] RIP: 0033:0x7fb1e73cebe9
[   85.499536][ T6141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.499599][ T6141] RSP: 002b:00007fb1e5e37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.499622][ T6141] RAX: ffffffffffffffda RBX: 00007fb1e75f5fa0 RCX: 00007fb1e73cebe9
[   85.499684][ T6141] RDX: 0000000000040000 RSI: 00002000000012c0 RDI: 0000000000000003
[   85.499752][ T6141] RBP: 00007fb1e5e37090 R08: 0000000000000000 R09: 0000000000000000
[   85.499767][ T6141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.499782][ T6141] R13: 00007fb1e75f6038 R14: 00007fb1e75f5fa0 R15: 00007fff49144cb8
[   85.499801][ T6141]  </TASK>
[   85.742107][ T6143] loop3: detected capacity change from 0 to 512
[   85.767339][   T29] kauditd_printk_skb: 456 callbacks suppressed
[   85.767355][   T29] audit: type=1326 audit(1755485447.959:5008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f68f633ec77 code=0x7ffc0000
[   85.776752][ T6137] loop4: detected capacity change from 0 to 764
[   85.797001][   T29] audit: type=1326 audit(1755485447.959:5009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f68f633d550 code=0x7ffc0000
[   85.797328][ T6143] EXT4-fs: dax option not supported
[   85.893760][   T29] audit: type=1326 audit(1755485447.969:5010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f68f633e7eb code=0x7ffc0000
[   85.917186][   T29] audit: type=1326 audit(1755485448.009:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f68f633d84a code=0x7ffc0000
[   85.940434][   T29] audit: type=1326 audit(1755485448.009:5012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f68f633d84a code=0x7ffc0000
[   85.963687][   T29] audit: type=1326 audit(1755485448.009:5013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f68f633d457 code=0x7ffc0000
[   85.987336][   T29] audit: type=1326 audit(1755485448.009:5014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.4.1094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f68f634038a code=0x7ffc0000
[   86.010788][   T29] audit: type=1326 audit(1755485448.069:5015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6144 comm="syz.1.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   86.034205][   T29] audit: type=1326 audit(1755485448.069:5016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6144 comm="syz.1.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   86.057491][   T29] audit: type=1326 audit(1755485448.069:5017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6144 comm="syz.1.1097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   86.065982][ T6153] loop1: detected capacity change from 0 to 1024
[   86.089427][ T6137] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   86.114542][ T6153] EXT4-fs: inline encryption not supported
[   86.120548][ T6153] EXT4-fs: Ignoring removed i_version option
[   86.146998][ T6153] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.180523][ T6153] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.1102: lblock 1 mapped to illegal pblock 1 (length 1)
[   86.199075][ T6153] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1102: Failed to acquire dquot type 0
[   86.213129][ T6153] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1102: Freeing blocks not in datazone - block = 0, count = 4096
[   86.269169][ T6153] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.1102: Invalid inode bitmap blk 0 in block_group 0
[   86.287167][   T31] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[   86.302368][ T6153] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   86.329692][   T31] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 0
[   86.355986][ T6153] EXT4-fs (loop1): 1 orphan inode deleted
[   86.374893][ T6153] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.691902][ T6226] loop2: detected capacity change from 0 to 512
[   86.698860][ T6226] EXT4-fs: dax option not supported
[   86.752256][ T6228] FAULT_INJECTION: forcing a failure.
[   86.752256][ T6228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.765457][ T6228] CPU: 1 UID: 0 PID: 6228 Comm: syz.2.1122 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   86.765568][ T6228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.765584][ T6228] Call Trace:
[   86.765593][ T6228]  <TASK>
[   86.765603][ T6228]  __dump_stack+0x1d/0x30
[   86.765628][ T6228]  dump_stack_lvl+0xe8/0x140
[   86.765714][ T6228]  dump_stack+0x15/0x1b
[   86.765733][ T6228]  should_fail_ex+0x265/0x280
[   86.765801][ T6228]  should_fail+0xb/0x20
[   86.765823][ T6228]  should_fail_usercopy+0x1a/0x20
[   86.765908][ T6228]  _copy_to_user+0x20/0xa0
[   86.765943][ T6228]  simple_read_from_buffer+0xb5/0x130
[   86.765979][ T6228]  proc_fail_nth_read+0x10e/0x150
[   86.766012][ T6228]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   86.766114][ T6228]  vfs_read+0x1a8/0x770
[   86.766138][ T6228]  ? __rcu_read_unlock+0x4f/0x70
[   86.766163][ T6228]  ? __fget_files+0x184/0x1c0
[   86.766250][ T6228]  ksys_read+0xda/0x1a0
[   86.766276][ T6228]  __x64_sys_read+0x40/0x50
[   86.766300][ T6228]  x64_sys_call+0x27bc/0x2ff0
[   86.766427][ T6228]  do_syscall_64+0xd2/0x200
[   86.766461][ T6228]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.766522][ T6228]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.766553][ T6228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.766581][ T6228] RIP: 0033:0x7faf7354d5fc
[   86.766599][ T6228] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   86.766619][ T6228] RSP: 002b:00007faf71fb7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   86.766637][ T6228] RAX: ffffffffffffffda RBX: 00007faf73775fa0 RCX: 00007faf7354d5fc
[   86.766700][ T6228] RDX: 000000000000000f RSI: 00007faf71fb70a0 RDI: 000000000000000d
[   86.766713][ T6228] RBP: 00007faf71fb7090 R08: 0000000000000000 R09: 0000000000000000
[   86.766728][ T6228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.766742][ T6228] R13: 00007faf73776038 R14: 00007faf73775fa0 R15: 00007ffe30c437a8
[   86.766765][ T6228]  </TASK>
[   86.989121][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.017157][ T6234] netlink: 'syz.0.1124': attribute type 6 has an invalid length.
[   87.057365][ T6243] FAULT_INJECTION: forcing a failure.
[   87.057365][ T6243] name failslab, interval 1, probability 0, space 0, times 0
[   87.070173][ T6243] CPU: 1 UID: 0 PID: 6243 Comm: syz.1.1126 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   87.070209][ T6243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   87.070225][ T6243] Call Trace:
[   87.070232][ T6243]  <TASK>
[   87.070256][ T6243]  __dump_stack+0x1d/0x30
[   87.070282][ T6243]  dump_stack_lvl+0xe8/0x140
[   87.070358][ T6243]  dump_stack+0x15/0x1b
[   87.070378][ T6243]  should_fail_ex+0x265/0x280
[   87.070403][ T6243]  ? __se_sys_mount+0xef/0x2e0
[   87.070430][ T6243]  should_failslab+0x8c/0xb0
[   87.070517][ T6243]  __kmalloc_cache_noprof+0x4c/0x320
[   87.070554][ T6243]  ? memdup_user+0x99/0xd0
[   87.070637][ T6243]  __se_sys_mount+0xef/0x2e0
[   87.070662][ T6243]  ? fput+0x8f/0xc0
[   87.070695][ T6243]  ? ksys_write+0x192/0x1a0
[   87.070716][ T6243]  __x64_sys_mount+0x67/0x80
[   87.070782][ T6243]  x64_sys_call+0x2b4d/0x2ff0
[   87.070839][ T6243]  do_syscall_64+0xd2/0x200
[   87.070870][ T6243]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.070969][ T6243]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.070994][ T6243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.071017][ T6243] RIP: 0033:0x7fb1e73cebe9
[   87.071035][ T6243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.071056][ T6243] RSP: 002b:00007fb1e5e37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   87.071079][ T6243] RAX: ffffffffffffffda RBX: 00007fb1e75f5fa0 RCX: 00007fb1e73cebe9
[   87.071104][ T6243] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000000
[   87.071120][ T6243] RBP: 00007fb1e5e37090 R08: 0000200000000140 R09: 0000000000000000
[   87.071133][ T6243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.071175][ T6243] R13: 00007fb1e75f6038 R14: 00007fb1e75f5fa0 R15: 00007fff49144cb8
[   87.071198][ T6243]  </TASK>
[   87.318739][ T6254] loop2: detected capacity change from 0 to 512
[   87.329404][ T6254] EXT4-fs: dax option not supported
[   87.371714][ T6257] loop3: detected capacity change from 0 to 128
[   87.389073][ T6257] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   87.404380][ T6264] SELinux: security policydb version 17 (MLS) not backwards compatible
[   87.413071][ T6264] SELinux: failed to load policy
[   87.419969][ T6263] FAULT_INJECTION: forcing a failure.
[   87.419969][ T6263] name failslab, interval 1, probability 0, space 0, times 0
[   87.429585][ T6257] System zones: 1-3, 19-19, 35-36
[   87.432800][ T6263] CPU: 1 UID: 0 PID: 6263 Comm: syz.0.1138 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   87.432829][ T6263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   87.432966][ T6263] Call Trace:
[   87.432975][ T6263]  <TASK>
[   87.432987][ T6263]  __dump_stack+0x1d/0x30
[   87.433051][ T6263]  dump_stack_lvl+0xe8/0x140
[   87.433078][ T6263]  dump_stack+0x15/0x1b
[   87.433161][ T6263]  should_fail_ex+0x265/0x280
[   87.433189][ T6263]  should_failslab+0x8c/0xb0
[   87.433221][ T6263]  __kmalloc_noprof+0xa5/0x3e0
[   87.433276][ T6263]  ? ethnl_default_set_doit+0xf0/0x6c0
[   87.433307][ T6263]  ? __nla_parse+0x40/0x60
[   87.433439][ T6263]  ethnl_default_set_doit+0xf0/0x6c0
[   87.433470][ T6263]  ? genl_family_rcv_msg_attrs_parse+0x13b/0x190
[   87.433509][ T6263]  ? genl_family_rcv_msg_attrs_parse+0x184/0x190
[   87.433555][ T6263]  genl_family_rcv_msg_doit+0x143/0x1b0
[   87.433599][ T6263]  genl_rcv_msg+0x422/0x460
[   87.433634][ T6263]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   87.433726][ T6263]  netlink_rcv_skb+0x123/0x220
[   87.433751][ T6263]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.433792][ T6263]  genl_rcv+0x28/0x40
[   87.433888][ T6263]  netlink_unicast+0x5bd/0x690
[   87.434014][ T6263]  netlink_sendmsg+0x58b/0x6b0
[   87.434109][ T6263]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.434145][ T6263]  __sock_sendmsg+0x142/0x180
[   87.434182][ T6263]  ____sys_sendmsg+0x31e/0x4e0
[   87.434213][ T6263]  ___sys_sendmsg+0x17b/0x1d0
[   87.434264][ T6263]  __x64_sys_sendmsg+0xd4/0x160
[   87.434297][ T6263]  x64_sys_call+0x191e/0x2ff0
[   87.434326][ T6263]  do_syscall_64+0xd2/0x200
[   87.434438][ T6263]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.434497][ T6263]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.434531][ T6263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.434560][ T6263] RIP: 0033:0x7f415158ebe9
[   87.434605][ T6263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.434629][ T6263] RSP: 002b:00007f414ffef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.434654][ T6263] RAX: ffffffffffffffda RBX: 00007f41517b5fa0 RCX: 00007f415158ebe9
[   87.434671][ T6263] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[   87.434686][ T6263] RBP: 00007f414ffef090 R08: 0000000000000000 R09: 0000000000000000
[   87.434733][ T6263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.434750][ T6263] R13: 00007f41517b6038 R14: 00007f41517b5fa0 R15: 00007fff1d4e5538
[   87.434772][ T6263]  </TASK>
[   87.689254][ T6257] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   87.709067][ T6257] ext4 filesystem being mounted at /228/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   87.760743][ T6279] __nla_validate_parse: 18 callbacks suppressed
[   87.760783][ T6279] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1143'.
[   87.802845][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.906260][ T6289] loop4: detected capacity change from 0 to 512
[   87.918441][ T6289] EXT4-fs: dax option not supported
[   87.947427][ T6292] SELinux: security policydb version 17 (MLS) not backwards compatible
[   87.963084][ T6292] SELinux: failed to load policy
[   88.104284][ T6305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1154'.
[   88.179100][ T6311] loop3: detected capacity change from 0 to 128
[   88.214281][ T6311] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   88.223378][ T6311] System zones: 1-3, 19-19, 35-36
[   88.229238][ T6311] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   88.242978][ T6311] ext4 filesystem being mounted at /234/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   88.292841][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   88.380326][ T6313] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1157'.
[   88.380496][ T6324] loop2: detected capacity change from 0 to 512
[   88.389328][ T6313] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1157'.
[   88.405391][ T6313] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1157'.
[   88.407856][ T6324] EXT4-fs: dax option not supported
[   88.414538][ T6313] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1157'.
[   88.472104][ T6330] SELinux: security policydb version 17 (MLS) not backwards compatible
[   88.481267][ T6330] SELinux: failed to load policy
[   88.488011][ T6331] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1158'.
[   88.497023][ T6331] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1158'.
[   88.503247][ T6333] 9pnet_fd: Insufficient options for proto=fd
[   88.512935][ T6318] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1158'.
[   88.522121][ T6318] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1158'.
[   88.583999][ T6340] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   88.592652][ T6339] tipc: Disabling bearer <eth:syzkaller0>
[   88.615304][ T6345] loop3: detected capacity change from 0 to 128
[   88.624133][ T6345] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   88.647805][ T6345] System zones: 1-3, 19-19, 35-36
[   88.653539][ T6345] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   88.666845][ T6345] ext4 filesystem being mounted at /237/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   88.752202][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.087493][ T6370] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   89.098778][ T6369] tipc: Disabling bearer <eth:syzkaller0>
[   89.240271][ T6376] loop1: detected capacity change from 0 to 512
[   89.257155][ T6376] EXT4-fs: dax option not supported
[   89.506436][ T6384] 9pnet_fd: Insufficient options for proto=fd
[   89.526679][ T6378] loop2: detected capacity change from 0 to 764
[   89.545750][ T6386] FAULT_INJECTION: forcing a failure.
[   89.545750][ T6386] name failslab, interval 1, probability 0, space 0, times 0
[   89.558496][ T6386] CPU: 0 UID: 0 PID: 6386 Comm: syz.0.1188 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   89.558593][ T6386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.558608][ T6386] Call Trace:
[   89.558616][ T6386]  <TASK>
[   89.558625][ T6386]  __dump_stack+0x1d/0x30
[   89.558648][ T6386]  dump_stack_lvl+0xe8/0x140
[   89.558672][ T6386]  dump_stack+0x15/0x1b
[   89.558712][ T6386]  should_fail_ex+0x265/0x280
[   89.558742][ T6386]  should_failslab+0x8c/0xb0
[   89.558766][ T6386]  __kmalloc_node_noprof+0xa9/0x410
[   89.558822][ T6386]  ? qdisc_alloc+0x65/0x440
[   89.558856][ T6386]  qdisc_alloc+0x65/0x440
[   89.558895][ T6386]  ? nla_strcmp+0xc3/0xe0
[   89.558924][ T6386]  qdisc_create+0xf5/0x9e0
[   89.558960][ T6386]  tc_modify_qdisc+0xf2e/0x1420
[   89.559091][ T6386]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   89.559118][ T6386]  rtnetlink_rcv_msg+0x657/0x6d0
[   89.559156][ T6386]  netlink_rcv_skb+0x123/0x220
[   89.559215][ T6386]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   89.559257][ T6386]  rtnetlink_rcv+0x1c/0x30
[   89.559287][ T6386]  netlink_unicast+0x5bd/0x690
[   89.559418][ T6386]  netlink_sendmsg+0x58b/0x6b0
[   89.559495][ T6386]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.559523][ T6386]  __sock_sendmsg+0x142/0x180
[   89.559556][ T6386]  ____sys_sendmsg+0x31e/0x4e0
[   89.559587][ T6386]  ___sys_sendmsg+0x17b/0x1d0
[   89.559676][ T6386]  __x64_sys_sendmsg+0xd4/0x160
[   89.559711][ T6386]  x64_sys_call+0x191e/0x2ff0
[   89.559745][ T6386]  do_syscall_64+0xd2/0x200
[   89.559824][ T6386]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.559853][ T6386]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.559884][ T6386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.559909][ T6386] RIP: 0033:0x7f415158ebe9
[   89.559927][ T6386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.560021][ T6386] RSP: 002b:00007f414ffef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.560045][ T6386] RAX: ffffffffffffffda RBX: 00007f41517b5fa0 RCX: 00007f415158ebe9
[   89.560060][ T6386] RDX: 0000000000040000 RSI: 00002000000012c0 RDI: 0000000000000003
[   89.560089][ T6386] RBP: 00007f414ffef090 R08: 0000000000000000 R09: 0000000000000000
[   89.560105][ T6386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.560120][ T6386] R13: 00007f41517b6038 R14: 00007f41517b5fa0 R15: 00007fff1d4e5538
[   89.560139][ T6386]  </TASK>
[   89.841178][ T6378] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   89.860731][ T6397] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   89.869096][ T6397] SELinux: failed to load policy
[   89.992085][ T6408] loop3: detected capacity change from 0 to 512
[   89.999396][ T6408] EXT4-fs: dax option not supported
[   90.103469][ T6417] SELinux: security policydb version 17 (MLS) not backwards compatible
[   90.113352][ T6417] SELinux: failed to load policy
[   90.186326][ T6426] SELinux: security policydb version 17 (MLS) not backwards compatible
[   90.194770][ T6426] SELinux: failed to load policy
[   90.215273][ T6428] FAULT_INJECTION: forcing a failure.
[   90.215273][ T6428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.228543][ T6428] CPU: 1 UID: 0 PID: 6428 Comm: syz.2.1205 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   90.228580][ T6428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.228594][ T6428] Call Trace:
[   90.228602][ T6428]  <TASK>
[   90.228610][ T6428]  __dump_stack+0x1d/0x30
[   90.228635][ T6428]  dump_stack_lvl+0xe8/0x140
[   90.228659][ T6428]  dump_stack+0x15/0x1b
[   90.228702][ T6428]  should_fail_ex+0x265/0x280
[   90.228725][ T6428]  should_fail+0xb/0x20
[   90.228746][ T6428]  should_fail_usercopy+0x1a/0x20
[   90.228773][ T6428]  _copy_from_user+0x1c/0xb0
[   90.228806][ T6428]  ___sys_sendmsg+0xc1/0x1d0
[   90.228842][ T6428]  __x64_sys_sendmsg+0xd4/0x160
[   90.228972][ T6428]  x64_sys_call+0x191e/0x2ff0
[   90.228996][ T6428]  do_syscall_64+0xd2/0x200
[   90.229021][ T6428]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.229112][ T6428]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   90.229143][ T6428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.229164][ T6428] RIP: 0033:0x7faf7354ebe9
[   90.229181][ T6428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.229205][ T6428] RSP: 002b:00007faf71fb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.229299][ T6428] RAX: ffffffffffffffda RBX: 00007faf73775fa0 RCX: 00007faf7354ebe9
[   90.229311][ T6428] RDX: 0000000004000010 RSI: 0000200000000140 RDI: 0000000000000003
[   90.229323][ T6428] RBP: 00007faf71fb7090 R08: 0000000000000000 R09: 0000000000000000
[   90.229334][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.229349][ T6428] R13: 00007faf73776038 R14: 00007faf73775fa0 R15: 00007ffe30c437a8
[   90.229372][ T6428]  </TASK>
[   90.459544][ T6437] loop1: detected capacity change from 0 to 512
[   90.466284][ T6437] EXT4-fs: dax option not supported
[   90.553035][ T6451] SELinux: security policydb version 17 (MLS) not backwards compatible
[   90.562774][ T6451] SELinux: failed to load policy
[   90.779246][ T6473] netlink: 'syz.1.1225': attribute type 6 has an invalid length.
[   90.931209][   T29] kauditd_printk_skb: 227 callbacks suppressed
[   90.931228][   T29] audit: type=1400 audit(1755485453.129:5242): avc:  denied  { write } for  pid=6482 comm="syz.0.1232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   90.986746][   T29] audit: type=1400 audit(1755485453.179:5243): avc:  denied  { module_request } for  pid=6482 comm="syz.0.1232" kmod="block-major-1-201" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   91.014515][   T29] audit: type=1400 audit(1755485453.209:5244): avc:  denied  { create } for  pid=6493 comm="syz.3.1236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   91.069501][ T6499] netlink: 'syz.4.1237': attribute type 6 has an invalid length.
[   91.130498][ T6508] 9pnet_fd: Insufficient options for proto=fd
[   91.130614][   T29] audit: type=1400 audit(1755485453.329:5245): avc:  denied  { mounton } for  pid=6506 comm="syz.0.1240" path="/263/file0" dev="tmpfs" ino=1440 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   91.176777][   T29] audit: type=1400 audit(1755485453.369:5246): avc:  denied  { bind } for  pid=6493 comm="syz.3.1236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   91.196154][   T29] audit: type=1400 audit(1755485453.369:5247): avc:  denied  { write } for  pid=6493 comm="syz.3.1236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   91.222369][ T6515] loop1: detected capacity change from 0 to 128
[   91.238642][ T6515] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   91.246619][ T6515] System zones: 1-3, 19-19, 35-36
[   91.253099][ T6515] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   91.281445][ T6515] ext4 filesystem being mounted at /247/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.366404][ T3302] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   91.408502][   T29] audit: type=1326 audit(1755485453.609:5248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6523 comm="syz.1.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   91.440470][   T29] audit: type=1326 audit(1755485453.629:5249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6523 comm="syz.1.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[   91.931563][ T6545] loop3: detected capacity change from 0 to 128
[   91.944913][ T6545] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   91.968117][ T6545] System zones: 1-3, 19-19, 35-36
[   91.975623][ T6545] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   91.991460][ T6545] ext4 filesystem being mounted at /250/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   92.042636][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   92.089040][   T29] audit: type=1326 audit(1755485454.279:5250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6552 comm="syz.4.1259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f633ebe9 code=0x7ffc0000
[   92.112579][   T29] audit: type=1326 audit(1755485454.279:5251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6552 comm="syz.4.1259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68f633ebe9 code=0x7ffc0000
[   92.138817][ T6553] loop4: detected capacity change from 0 to 512
[   92.145295][ T6551] loop3: detected capacity change from 0 to 1024
[   92.152689][ T6553] EXT4-fs: dax option not supported
[   92.159452][ T6551] EXT4-fs: inline encryption not supported
[   92.165324][ T6551] EXT4-fs: Ignoring removed i_version option
[   92.188643][ T6551] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   92.208224][ T6551] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.1260: lblock 1 mapped to illegal pblock 1 (length 1)
[   92.231571][ T6558] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   92.240035][ T6551] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1260: Failed to acquire dquot type 0
[   92.253903][ T6558] tipc: Disabling bearer <eth:syzkaller0>
[   92.262113][ T6551] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.1260: Freeing blocks not in datazone - block = 0, count = 4096
[   92.283015][ T6551] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1260: Invalid inode bitmap blk 0 in block_group 0
[   92.296005][ T6551] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   92.306249][ T6551] EXT4-fs (loop3): 1 orphan inode deleted
[   92.312084][   T31] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[   92.312411][ T6551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.327747][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 0
[   92.351602][ T6560] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=6560 comm=syz.1.1263
[   92.536607][ T6580] syz.0.1270 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   92.910013][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.949323][ T6584] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   92.959161][ T6584] tipc: Disabling bearer <eth:syzkaller0>
[   93.044382][ T6586] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=6586 comm=syz.3.1276
[   93.088846][ T6588] __nla_validate_parse: 30 callbacks suppressed
[   93.088868][ T6588] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1277'.
[   93.379558][ T6596] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   93.444523][ T6602] loop1: detected capacity change from 0 to 128
[   93.469013][ T6602] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   93.476914][ T6602] FAT-fs (loop1): Filesystem has been set read-only
[   93.490475][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.490475][ T6602] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   93.509275][ T6604] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   93.532046][ T6607] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1285'.
[   93.558120][ T6602] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   93.565985][ T6602] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[   93.575212][ T6604] tipc: Disabling bearer <eth:syzkaller0>
[   93.586920][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.586920][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.601834][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.601834][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.632267][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.632267][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.668883][ T6611] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   93.694543][ T6611] bridge0: port 3(macsec1) entered blocking state
[   93.701138][ T6611] bridge0: port 3(macsec1) entered disabled state
[   93.729487][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.729487][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.791186][ T6611] macsec1: entered allmulticast mode
[   93.811340][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.811340][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.847770][ T6611] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   93.862546][ T6611] macsec1: entered promiscuous mode
[   93.876823][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.876823][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.914690][ T6615] loop4: detected capacity change from 0 to 512
[   93.920500][ T6611] bridge0: port 3(macsec1) entered blocking state
[   93.927545][ T6611] bridge0: port 3(macsec1) entered forwarding state
[   93.927971][ T6615] EXT4-fs: dax option not supported
[   93.956800][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.956800][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   93.998282][ T6602] syz.1.1283: attempt to access beyond end of device
[   93.998282][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.055242][ T6602] syz.1.1283: attempt to access beyond end of device
[   94.055242][ T6602] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[   94.107090][ T6621] 9pnet_fd: Insufficient options for proto=fd
[   94.179380][ T6628] loop3: detected capacity change from 0 to 128
[   94.191764][ T6628] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   94.293919][ T6628] System zones: 1-3, 19-19, 35-36
[   94.303402][ T6628] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   94.348130][ T6628] ext4 filesystem being mounted at /262/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   94.416921][ T6639] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=6639 comm=syz.1.1300
[   94.432439][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.490025][ T6642] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1301'.
[   94.517772][ T6645] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1295'.
[   94.526738][ T6645] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1295'.
[   94.554279][ T6645] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1295'.
[   94.568960][ T6645] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1295'.
[   94.852295][ T6654] loop3: detected capacity change from 0 to 512
[   94.863711][ T6654] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1304: casefold flag without casefold feature
[   94.884159][ T6654] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1304: couldn't read orphan inode 15 (err -117)
[   94.898265][ T6654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.913657][ T6654] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6654 comm=syz.3.1304
[   94.939288][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.005722][ T6659] 9pnet_fd: Insufficient options for proto=fd
[   95.071998][ T6663] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1307'.
[   95.320465][ T6671] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=6671 comm=syz.3.1312
[   95.519359][ T6678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1315'.
[   95.553738][ T6682] 9pnet_fd: Insufficient options for proto=fd
[   95.804860][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1320'.
[   95.905586][ T6689] loop3: detected capacity change from 0 to 764
[   95.937233][   T29] kauditd_printk_skb: 139 callbacks suppressed
[   95.937251][   T29] audit: type=1326 audit(1755485458.139:5388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7febcaf4d457 code=0x7ffc0000
[   95.973762][ T6689] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   96.046133][   T29] audit: type=1326 audit(1755485458.139:5389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7febcaf5038a code=0x7ffc0000
[   96.069635][   T29] audit: type=1326 audit(1755485458.189:5390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febcaf4d550 code=0x7ffc0000
[   96.093159][   T29] audit: type=1326 audit(1755485458.189:5391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7febcaf4d937 code=0x7ffc0000
[   96.116506][   T29] audit: type=1326 audit(1755485458.189:5392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febcaf4d550 code=0x7ffc0000
[   96.139977][   T29] audit: type=1326 audit(1755485458.189:5393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   96.163443][   T29] audit: type=1326 audit(1755485458.189:5394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   96.186848][   T29] audit: type=1326 audit(1755485458.199:5395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   96.210276][   T29] audit: type=1326 audit(1755485458.199:5396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   96.233607][   T29] audit: type=1326 audit(1755485458.199:5397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6688 comm="syz.3.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febcaf4ebe9 code=0x7ffc0000
[   97.825700][ T6740] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   97.866151][ T6740] tipc: Disabling bearer <eth:syzkaller0>
[   98.097988][ T6752] __nla_validate_parse: 11 callbacks suppressed
[   98.098008][ T6752] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1343'.
[   98.113253][ T6752] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1343'.
[   98.150478][ T6752] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1343'.
[   98.167855][ T6752] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1343'.
[   98.275866][ T6770] SELinux: security policydb version 17 (MLS) not backwards compatible
[   98.289719][ T6770] SELinux: failed to load policy
[   98.360720][ T6775] loop2: detected capacity change from 0 to 128
[   98.384553][ T6775] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   98.414697][ T6775] System zones: 1-3, 19-19, 35-36
[   98.425294][ T6775] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   98.448036][ T6775] ext4 filesystem being mounted at /255/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   98.499163][ T6765] loop3: detected capacity change from 0 to 764
[   98.568516][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   98.583426][ T6765] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   98.657193][ T6792] FAULT_INJECTION: forcing a failure.
[   98.657193][ T6792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.670313][ T6792] CPU: 1 UID: 0 PID: 6792 Comm: syz.2.1351 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[   98.670368][ T6792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.670384][ T6792] Call Trace:
[   98.670391][ T6792]  <TASK>
[   98.670401][ T6792]  __dump_stack+0x1d/0x30
[   98.670427][ T6792]  dump_stack_lvl+0xe8/0x140
[   98.670453][ T6792]  dump_stack+0x15/0x1b
[   98.670473][ T6792]  should_fail_ex+0x265/0x280
[   98.670532][ T6792]  should_fail+0xb/0x20
[   98.670554][ T6792]  should_fail_usercopy+0x1a/0x20
[   98.670582][ T6792]  _copy_from_iter+0xcf/0xe40
[   98.670643][ T6792]  ? __build_skb_around+0x1a0/0x200
[   98.670696][ T6792]  ? __alloc_skb+0x223/0x320
[   98.670744][ T6792]  netlink_sendmsg+0x471/0x6b0
[   98.670775][ T6792]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.670807][ T6792]  __sock_sendmsg+0x142/0x180
[   98.670884][ T6792]  __sys_sendto+0x268/0x330
[   98.670937][ T6792]  __x64_sys_sendto+0x76/0x90
[   98.670960][ T6792]  x64_sys_call+0x2d05/0x2ff0
[   98.671058][ T6792]  do_syscall_64+0xd2/0x200
[   98.671089][ T6792]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.671175][ T6792]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.671274][ T6792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.671298][ T6792] RIP: 0033:0x7faf73550a7c
[   98.671382][ T6792] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[   98.671405][ T6792] RSP: 002b:00007faf71fb5ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[   98.671428][ T6792] RAX: ffffffffffffffda RBX: 00007faf71fb5fc0 RCX: 00007faf73550a7c
[   98.671444][ T6792] RDX: 000000000000001c RSI: 00007faf71fb6010 RDI: 0000000000000004
[   98.671460][ T6792] RBP: 0000000000000000 R08: 00007faf71fb5f14 R09: 000000000000000c
[   98.671474][ T6792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[   98.671505][ T6792] R13: 00007faf71fb5f68 R14: 00007faf71fb6010 R15: 0000000000000000
[   98.671529][ T6792]  </TASK>
[   98.914448][ T6794] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   98.928167][ T6794] tipc: Disabling bearer <eth:syzkaller0>
[   98.998534][ T6798] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   99.009647][ T6798] SELinux: failed to load policy
[   99.070869][ T6805] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1357'.
[   99.345456][ T6816] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1359'.
[   99.725430][ T6823] loop3: detected capacity change from 0 to 128
[   99.747914][ T6823] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[   99.776789][ T6823] System zones: 1-3, 19-19, 35-36
[   99.783067][ T6823] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[   99.837485][ T6823] ext4 filesystem being mounted at /285/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   99.897266][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   99.984569][ T6840] netlink: 'syz.4.1362': attribute type 6 has an invalid length.
[  100.070646][ T6850] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  100.080404][ T6850] tipc: Disabling bearer <eth:syzkaller0>
[  100.119756][ T6854] loop2: detected capacity change from 0 to 1024
[  100.126902][ T6854] EXT4-fs: inline encryption not supported
[  100.132768][ T6854] EXT4-fs: Ignoring removed i_version option
[  100.141007][ T6854] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.163123][ T6842] loop3: detected capacity change from 0 to 764
[  100.175088][ T6854] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.1365: lblock 1 mapped to illegal pblock 1 (length 1)
[  100.202967][ T6842] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  100.238986][ T6854] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1365: Failed to acquire dquot type 0
[  100.281351][ T6854] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.1365: Freeing blocks not in datazone - block = 0, count = 4096
[  100.329126][ T6854] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.1365: Invalid inode bitmap blk 0 in block_group 0
[  100.350668][   T51] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  100.387070][ T6854] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  100.396853][ T6854] EXT4-fs (loop2): 1 orphan inode deleted
[  100.403065][ T6854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.420885][   T51] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 0
[  100.671460][ T6873] loop4: detected capacity change from 0 to 128
[  100.681909][ T6873] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  100.691145][ T6873] System zones: 1-3, 19-19, 35-36
[  100.700802][ T6873] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  100.714605][ T6873] ext4 filesystem being mounted at /279/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  100.759460][ T3303] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.778447][ T6876] SELinux: security policydb version 17 (MLS) not backwards compatible
[  100.788773][ T6876] SELinux: failed to load policy
[  100.899935][ T6880] netlink: 'syz.4.1376': attribute type 6 has an invalid length.
[  100.955760][ T6882] netlink: 'syz.4.1377': attribute type 6 has an invalid length.
[  100.962436][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.107282][ T6888] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1380'.
[  101.129565][ T6895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1382'.
[  101.138530][ T6895] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1382'.
[  101.149327][ T6895] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1382'.
[  101.183640][ T6899] loop2: detected capacity change from 0 to 128
[  101.191802][ T6899] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  101.199835][ T6899] System zones: 1-3, 19-19, 35-36
[  101.205427][   T29] kauditd_printk_skb: 187 callbacks suppressed
[  101.205444][   T29] audit: type=1400 audit(1755485463.399:5582): avc:  denied  { setcurrent } for  pid=6896 comm="syz.1.1384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  101.205646][ T6899] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  101.212259][   T29] audit: type=1401 audit(1755485463.409:5583): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  101.241653][ T6899] ext4 filesystem being mounted at /266/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  101.345489][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  101.430847][ T6906] SELinux: security policydb version 17 (MLS) not backwards compatible
[  101.455630][ T6906] SELinux: failed to load policy
[  101.520145][   T29] audit: type=1400 audit(1755485463.719:5584): avc:  denied  { create } for  pid=6909 comm="syz.3.1390" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  101.673641][ T6925] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  101.681969][ T6925] tipc: Disabling bearer <eth:syzkaller0>
[  101.745326][ T6929] loop2: detected capacity change from 0 to 128
[  101.755852][ T6929] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  101.828316][ T6929] System zones: 1-3, 19-19, 35-36
[  101.834073][ T6929] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  101.916578][ T6929] ext4 filesystem being mounted at /270/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  101.940413][ T6940] SELinux: security policydb version 17 (MLS) not backwards compatible
[  101.988999][ T6940] SELinux: failed to load policy
[  102.081674][   T29] audit: type=1326 audit(1755485464.279:5585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6941 comm="syz.4.1404" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f68f633ebe9 code=0x0
[  102.117585][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.137906][ T6944] capability: warning: `syz.4.1404' uses deprecated v2 capabilities in a way that may be insecure
[  102.195648][   T29] audit: type=1400 audit(1755485464.389:5586): avc:  denied  { setopt } for  pid=6941 comm="syz.4.1404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  102.257937][   T29] audit: type=1326 audit(1755485464.439:5587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[  102.281590][   T29] audit: type=1326 audit(1755485464.439:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[  102.305335][   T29] audit: type=1326 audit(1755485464.449:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[  102.328832][   T29] audit: type=1326 audit(1755485464.449:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[  102.352316][   T29] audit: type=1326 audit(1755485464.449:5591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6950 comm="syz.1.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1e73cebe9 code=0x7ffc0000
[  102.368624][ T6956] loop1: detected capacity change from 0 to 764
[  102.406828][ T6956] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  102.470608][ T6966] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  102.486313][ T6966] tipc: Disabling bearer <eth:syzkaller0>
[  102.552721][ T6970] loop3: detected capacity change from 0 to 128
[  102.580110][ T6970] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  102.588211][ T6970] System zones: 1-3, 19-19, 35-36
[  102.589184][ T6972] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[  102.601451][ T6970] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  102.630063][ T6976] 9pnet_fd: Insufficient options for proto=fd
[  102.656927][ T6972] SELinux: failed to load policy
[  102.693875][ T6970] ext4 filesystem being mounted at /296/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  102.793160][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.864601][ T6988] loop1: detected capacity change from 0 to 512
[  102.872231][ T6988] EXT4-fs: dax option not supported
[  102.940409][ T6997] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  102.948928][ T6997] tipc: Disabling bearer <eth:syzkaller0>
[  103.000563][ T7004] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[  103.018123][ T7005] 9pnet_fd: Insufficient options for proto=fd
[  103.027344][ T7004] SELinux: failed to load policy
[  103.043669][ T7007] 9pnet_fd: Insufficient options for proto=fd
[  103.109375][ T7015] netlink: 'syz.1.1435': attribute type 6 has an invalid length.
[  103.142736][ T7019] geneve2: entered promiscuous mode
[  103.261574][ T7034] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  103.276225][ T7034] tipc: Disabling bearer <eth:syzkaller0>
[  103.313629][ T7039] 9pnet_fd: Insufficient options for proto=fd
[  103.329945][ T7041] 9pnet_fd: Insufficient options for proto=fd
[  103.405031][ T7049] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[  103.431245][ T7049] SELinux: failed to load policy
[  103.456576][ T7053] FAULT_INJECTION: forcing a failure.
[  103.456576][ T7053] name failslab, interval 1, probability 0, space 0, times 0
[  103.469328][ T7053] CPU: 0 UID: 0 PID: 7053 Comm: syz.4.1453 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[  103.469429][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.469490][ T7053] Call Trace:
[  103.469498][ T7053]  <TASK>
[  103.469549][ T7053]  __dump_stack+0x1d/0x30
[  103.469576][ T7053]  dump_stack_lvl+0xe8/0x140
[  103.469601][ T7053]  dump_stack+0x15/0x1b
[  103.469678][ T7053]  should_fail_ex+0x265/0x280
[  103.469705][ T7053]  should_failslab+0x8c/0xb0
[  103.469736][ T7053]  kmem_cache_alloc_noprof+0x50/0x310
[  103.469778][ T7053]  ? fcntl_dirnotify+0x1b9/0x590
[  103.469862][ T7053]  fcntl_dirnotify+0x1b9/0x590
[  103.469890][ T7053]  ? vfs_write+0x7e8/0x960
[  103.469920][ T7053]  do_fcntl+0x53b/0xdf0
[  103.470061][ T7053]  ? selinux_file_fcntl+0x1b4/0x1e0
[  103.470140][ T7053]  __se_sys_fcntl+0xb1/0x120
[  103.470178][ T7053]  __x64_sys_fcntl+0x43/0x50
[  103.470216][ T7053]  x64_sys_call+0x29a0/0x2ff0
[  103.470272][ T7053]  do_syscall_64+0xd2/0x200
[  103.470333][ T7053]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  103.470363][ T7053]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  103.470404][ T7053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.470432][ T7053] RIP: 0033:0x7f68f633ebe9
[  103.470476][ T7053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.470499][ T7053] RSP: 002b:00007f68f4d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  103.470562][ T7053] RAX: ffffffffffffffda RBX: 00007f68f6565fa0 RCX: 00007f68f633ebe9
[  103.470578][ T7053] RDX: 000000008000003d RSI: 0000000000000402 RDI: 0000000000000006
[  103.470593][ T7053] RBP: 00007f68f4d9f090 R08: 0000000000000000 R09: 0000000000000000
[  103.470609][ T7053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.470624][ T7053] R13: 00007f68f6566038 R14: 00007f68f6565fa0 R15: 00007ffdb202acb8
[  103.470648][ T7053]  </TASK>
[  103.691006][ T7059] loop4: detected capacity change from 0 to 512
[  103.698050][ T7059] EXT4-fs: dax option not supported
[  103.822942][ T7068] 9pnet_fd: Insufficient options for proto=fd
[  103.891887][ T7076] 9pnet_fd: Insufficient options for proto=fd
[  103.956942][ T7082] __nla_validate_parse: 10 callbacks suppressed
[  103.956960][ T7082] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1465'.
[  104.057062][ T7091] loop1: detected capacity change from 0 to 512
[  104.066358][ T7091] EXT4-fs: dax option not supported
[  104.199628][ T7102] 9pnet_fd: Insufficient options for proto=fd
[  104.305850][ T7105] loop4: detected capacity change from 0 to 1024
[  104.312820][ T7105] EXT4-fs: inline encryption not supported
[  104.318768][ T7105] EXT4-fs: Ignoring removed i_version option
[  104.336883][ T7105] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.353852][ T7105] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.1474: lblock 1 mapped to illegal pblock 1 (length 1)
[  104.377048][ T7105] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1474: Failed to acquire dquot type 0
[  104.427894][ T7105] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.1474: Freeing blocks not in datazone - block = 0, count = 4096
[  104.481203][ T7105] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.1474: Invalid inode bitmap blk 0 in block_group 0
[  104.502741][ T1380] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  104.533870][ T1380] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[  104.546629][ T7105] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  104.559550][ T7106] loop3: detected capacity change from 0 to 764
[  104.566986][ T7105] EXT4-fs (loop4): 1 orphan inode deleted
[  104.576475][ T7105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.609326][ T7106] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  104.658075][ T7121] ==================================================================
[  104.666324][ T7121] BUG: KCSAN: data-race in mas_replace_node / mas_state_walk
[  104.673744][ T7121] 
[  104.676078][ T7121] write to 0xffff88810420f000 of 8 bytes by task 7120 on cpu 1:
[  104.683733][ T7121]  mas_replace_node+0x1a6/0x410
[  104.688631][ T7121]  mas_wr_store_entry+0x2406/0x2b50
[  104.693868][ T7121]  mas_store_prealloc+0x74d/0x9e0
[  104.698911][ T7121]  vma_iter_store_new+0x1c5/0x200
[  104.703960][ T7121]  vma_complete+0x125/0x580
[  104.708477][ T7121]  __split_vma+0x5d9/0x650
[  104.712922][ T7121]  vma_modify+0x3f2/0xc80
[  104.717287][ T7121]  vma_modify_flags+0x101/0x130
[  104.722171][ T7121]  mprotect_fixup+0x2cc/0x570
[  104.726863][ T7121]  do_mprotect_pkey+0x6d6/0x980
[  104.731747][ T7121]  __x64_sys_mprotect+0x48/0x60
[  104.736631][ T7121]  x64_sys_call+0x274e/0x2ff0
[  104.741327][ T7121]  do_syscall_64+0xd2/0x200
[  104.745879][ T7121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.751785][ T7121] 
[  104.754128][ T7121] read to 0xffff88810420f000 of 8 bytes by task 7121 on cpu 0:
[  104.761694][ T7121]  mas_state_walk+0x485/0x650
[  104.761728][ T7121]  mas_walk+0x60/0x150
[  104.770477][ T7121]  lock_vma_under_rcu+0x8d/0x160
[  104.775452][ T7121]  do_user_addr_fault+0x233/0x1090
[  104.780606][ T7121]  exc_page_fault+0x62/0xa0
[  104.785181][ T7121]  asm_exc_page_fault+0x26/0x30
[  104.790060][ T7121] 
[  104.792395][ T7121] value changed: 0xffff888119f7c10e -> 0xffff88810420f000
[  104.799523][ T7121] 
[  104.801863][ T7121] Reported by Kernel Concurrency Sanitizer on:
[  104.808030][ T7121] CPU: 0 UID: 0 PID: 7121 Comm: syz.2.1480 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(voluntary) 
[  104.820545][ T7121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  104.830709][ T7121] ==================================================================
[  105.145760][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.