last executing test programs:

51.964852604s ago: executing program 3 (id=111):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14) (fail_nth: 2)

51.883200915s ago: executing program 3 (id=113):
r0 = socket(0xa, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, 0x0, &(0x7f0000000800))
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x10, 0x0)

51.882180325s ago: executing program 3 (id=114):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})

51.851264845s ago: executing program 3 (id=115):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
shutdown(0xffffffffffffffff, 0x1)
r1 = syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$pokeuser(0x6, r1, 0x358, 0xffff888237c1b950)
pipe2(&(0x7f0000001cc0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0xffffff7c, 0x67f, 0x6, 0x18002, r2, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x3, 0x8, @value=r3, @void, @value=r3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x7, 0x9)
r6 = syz_io_uring_setup(0xa9, &(0x7f0000000480)={0x0, 0x4, 0x400, 0x4, 0x117}, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x0, @fd_index=0x3, 0x7fffffffffffffff, 0x0})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r9}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000540)=@base={0xd, 0x4, 0x4, 0x5c, 0x8000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @value=r2, @void, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
close(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x10)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x149442, 0x40)
pwritev2(r11, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
ioctl$FS_IOC_FIEMAP(r12, 0xc020660b, &(0x7f0000000240)=ANY=[@ANYBLOB="06000000000000000153d3000000000005"])

51.627031098s ago: executing program 3 (id=119):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$vcsn(0x0, 0x7b22, 0x20000)
process_mrelease(r2, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
ustat(0x3, &(0x7f0000000000))
process_madvise(r2, &(0x7f00000006c0)=[{&(0x7f00000004c0)="3958adb9c933fd3ec605f71ff83c86f041210a00bb828dfa66bd9d77721f2fbbd8e317e878903ffcab9c465cbf9b28500af961c556b19f717e0683bc1df7728af9606f7cf5ff562992af1d56165f58a6afdd70a123fecd417f4fc49e98abcf04f51a81daf5400c44327f3aaa96b586e1e24cbce71eb8f9dd5a8e1065b7200ba79e0c12db2e0194749c99a0cb4f75faf059b5e172eee9d3659b2b21b94bc63cb0442c645639b032165b8dc9733d9f36bc50f530e17a4b3aae20247c8e6000521496fb7e5445782668a49a92", 0xcb}, {&(0x7f0000000400)="709af6b2e392fa2bb626932366c6ee393251fc2287a142367c5a8bd5ca18dcaebb8fa5a92b8d4a77a58c1ad268acb65bb742742ee4f79f8b7b592cc300e02b747697fb29d348ef0e95988819565ee377c208a979efd5abfaa179678c9900f488949e38e332720fae938397614f24faef77b61ae1e5", 0x75}, {&(0x7f0000001300)="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", 0x1000}, {&(0x7f00000005c0)="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", 0xfc}], 0x4, 0x9, 0x0)

51.093188276s ago: executing program 3 (id=133):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000001ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

51.066936086s ago: executing program 32 (id=133):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18)
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000001ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)

38.659384169s ago: executing program 5 (id=270):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2100, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000000), 0xf00)

38.527188811s ago: executing program 5 (id=271):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000c0, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000001740)='./bus\x00', 0x81)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x86602, 0x330269f53da8c4ce)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x50000, 0x0, 0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000008c0)=@newqdisc={0x64, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x2, 0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x34, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x9}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME_EXTENSION={0xff74, 0x9, 0xf98}]}}]}, 0x64}}, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x6, &(0x7f0000000380)={@mcast2}, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newvlan={0x28, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r8}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0x4, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x3000000}}}]}, 0x28}}, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000400)={0x0, @multicast2}, &(0x7f0000000440)=0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000540)={'syztnl0\x00', &(0x7f00000004c0)={'sit0\x00', 0x0, 0x700, 0x700, 0x9, 0x269, {{0xc, 0x4, 0x3, 0x18, 0x30, 0x65, 0x0, 0x7, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@rr={0x7, 0xb, 0x54, [@local, @remote]}, @noop, @ssrr={0x89, 0xb, 0xde, [@empty, @rand_addr=0x64010102]}, @ra={0x94, 0x4}]}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)

38.406785233s ago: executing program 5 (id=272):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=@newlink={0x5c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}, @IFLA_GRE_OKEY={0x8, 0x5, 0x3}, @IFLA_GRE_LOCAL={0x14, 0x6, @empty}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x5c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1808000004000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000008510000003000000180000000700000000000000010000009500000000000000950085ff00000000914ef0815ef8c189dae91e3e264992702ca815f3258814c5cfb91d06fe4038d8f819c7db0b4f781d96dd12a927762bc9539020cf1dca079d260800aa6fb1272d9678ca85a0342ebb2f07fbfc3aa3b4b37b9a2e4b0c3fa345b4"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbb2, @void, @value}, 0x94)

37.051157592s ago: executing program 5 (id=285):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2, 0x0, 0xffffffffffffffff}, 0x32)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@link_local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @local, @empty=0xe0000001}, {0x0, 0x17c1, 0x8}}}}}, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x800, &(0x7f0000000140)={0xa, 0x4e20, 0x208, @mcast2, 0x7}, 0x1c)
futex(0x0, 0x84, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x1d, &(0x7f00000001c0), 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = socket$l2tp(0x2, 0x2, 0x73)
r6 = socket$l2tp(0x2, 0x2, 0x73)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8, &(0x7f0000000240)={[{@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xa}}, {@user_xattr}]}, 0x1, 0x429, &(0x7f0000000740)="$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")
r7 = open(&(0x7f0000000040)='./file2\x00', 0x141042, 0x70)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r8}, 0x18)
fallocate(r7, 0x3, 0x4, 0x2328)
bind$l2tp(r6, &(0x7f00000001c0)={0x2, 0x0, @empty}, 0x10)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='gadgetfs\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x14, 0xf, &(0x7f0000000680)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x10, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="910100000000000000604000f0ffff"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)

36.922702694s ago: executing program 5 (id=286):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000000)=0x659f, 0x4)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, 'hugetlb.2MB.rsvd.max_usage_in_bytes\x00'}]}, 0x30)
recvmmsg(r1, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x40002000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r3}, 0x10)
r4 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2000)
r5 = fcntl$dupfd(r4, 0x0, r4)
pwritev(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}], 0x1, 0x800000, 0x0)
sendmsg$AUDIT_GET_FEATURE(r5, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x10, 0x3fb, 0x10, 0x70bd2d, 0x25dfdbfb}, 0x10}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000011)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ppoll(&(0x7f0000000d40)=[{}], 0x25, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000300)='ns\x00')
openat$cgroup_ro(r9, &(0x7f0000000500)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x2)
r10 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0x4c, r10, 0x6, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8e6}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xc4}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffff}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd2d, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x0, 0x3}, {}, {0x3, 0xffe0}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x40, 0x6, 0xffffffffffffffff, 0xea, 0x100004}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x1}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt(r0, 0x8fdc, 0x0, &(0x7f0000000380)="710c20b2a7c19257f95f45f715caf0dd0b1f454a1a58fafbdd2f43b8519b8e3088903918b169", 0x26)

36.734906456s ago: executing program 5 (id=289):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x106}}, 0x20)
r2 = epoll_create1(0x80000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r3, &(0x7f0000001980)=""/179, 0xb3)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="344cfb8181e6a2", @ANYRES16=r4, @ANYBLOB="00022cbd7000fbdbdf25010000000500050007000000080002000200000008000300020000000800040007000000"], 0x34}, 0x1, 0x0, 0x0, 0x8800}, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x12, &(0x7f0000000100)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280)={<r7=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000200)={0xe, 0x18, 0xfa00, @id_tos={0x0, r7, 0x3000000, 0x0, 0x4000}}, 0x20)
sendto$inet(r5, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x11, 0x0, 0x0)
recvmsg(r5, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
syz_io_uring_setup(0x39, &(0x7f0000001800)={0x0, 0x0, 0x10100}, &(0x7f0000000240), &(0x7f0000001880))
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r9}, 0x10)

36.734606936s ago: executing program 33 (id=289):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x106}}, 0x20)
r2 = epoll_create1(0x80000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r3, &(0x7f0000001980)=""/179, 0xb3)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="344cfb8181e6a2", @ANYRES16=r4, @ANYBLOB="00022cbd7000fbdbdf25010000000500050007000000080002000200000008000300020000000800040007000000"], 0x34}, 0x1, 0x0, 0x0, 0x8800}, 0x4)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x12, &(0x7f0000000100)=0x7b, 0x4)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280)={<r7=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000200)={0xe, 0x18, 0xfa00, @id_tos={0x0, r7, 0x3000000, 0x0, 0x4000}}, 0x20)
sendto$inet(r5, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x11, 0x0, 0x0)
recvmsg(r5, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
syz_io_uring_setup(0x39, &(0x7f0000001800)={0x0, 0x0, 0x10100}, &(0x7f0000000240), &(0x7f0000001880))
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r9}, 0x10)

8.633580579s ago: executing program 2 (id=650):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r1, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0000000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e06018000020000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8) (async)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, &(0x7f0000002100)=""/4096}, 0x20)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) (async, rerun: 32)
io_uring_register$IORING_REGISTER_RESIZE_RINGS(0xffffffffffffffff, 0x21, &(0x7f0000000280)={0x0, 0x9fd, 0x8380, 0x2, 0xef}, 0x1) (rerun: 32)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}) (rerun: 64)
sendmsg$inet(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x800) (async)
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000580)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce81ea031100fe08000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = fcntl$dupfd(r8, 0x0, r8)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xb8, 0x5002004a, 0xb, 0x0, 0xea02, 0x150, 0x3c8, 0x3c8, 0x150, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)

8.476933981s ago: executing program 2 (id=654):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
timer_create(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
syz_io_uring_setup(0x100293f, &(0x7f0000001400)={0x0, 0x2000004, 0x10, 0xfffffffc}, &(0x7f0000000080), &(0x7f00000014c0))

7.348094507s ago: executing program 2 (id=664):
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x40)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x48, &(0x7f0000000280)=ANY=[@ANYRES64=r2, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r4, 0x0, 0x200000000000006}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r6], 0x270}}, 0x0)
r8 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r9 = openat$selinux_policy(0xffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r9, 0x0)
write$selinux_load(r8, &(0x7f0000000000)=ANY=[], 0x2000)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r10, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r10, 0x3)
setsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r0, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, 0x0, 0x42002)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff"], 0x48)
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
gettid()

4.560210026s ago: executing program 6 (id=690):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x22020600)
r0 = socket$inet(0xa, 0x801, 0x84)
poll(&(0x7f0000000180)=[{r0, 0x8001}], 0x1, 0x80000001)

4.162378851s ago: executing program 4 (id=693):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=@newlink={0x5c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}, @IFLA_GRE_OKEY={0x8, 0x5, 0x3}, @IFLA_GRE_LOCAL={0x14, 0x6, @empty}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x5c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbb2, @void, @value}, 0x94)

3.630728809s ago: executing program 6 (id=695):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
timer_create(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
syz_io_uring_setup(0x100293f, &(0x7f0000001400)={0x0, 0x2000004, 0x10, 0xfffffffc}, &(0x7f0000000080), &(0x7f00000014c0))

3.274129054s ago: executing program 1 (id=699):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000140)='lp\x00', 0x3)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setresgid(0x0, 0xee01, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="30e01b3981ddca"], 0x1000f)
r2 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2b, 0x0, 0x108)

3.183294985s ago: executing program 1 (id=701):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r2, &(0x7f0000003a40)=[{{&(0x7f0000000440)={0x2, 0x1, @remote}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000540)="a9050000000074000000000035528c2771cc874d997efa5ff0850d2cf1bde5c064c60000", 0x24}], 0x1}}, {{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000080)="ba0ac9697c3a940000edd9bb9449bfe71847200b", 0x14}], 0x1}}], 0x2, 0x840)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)

3.182700155s ago: executing program 1 (id=702):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000c0, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f0000000600)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000001740)='./bus\x00', 0x81)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x86602, 0x330269f53da8c4ce)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x50000, 0x0, 0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000008c0)=@newqdisc={0x64, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x2, 0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x34, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x9}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME_EXTENSION={0xff74, 0x9, 0xf98}]}}]}, 0x64}}, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x6, &(0x7f0000000380)={@mcast2}, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newvlan={0x28, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r8}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0x4, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x3000000}}}]}, 0x28}}, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000400)={0x0, @multicast2}, &(0x7f0000000440)=0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000540)={'syztnl0\x00', &(0x7f00000004c0)={'sit0\x00', 0x0, 0x700, 0x700, 0x9, 0x269, {{0x5, 0x4, 0x3, 0x18, 0x14, 0x65, 0x0, 0x7, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)

2.81210377s ago: executing program 4 (id=704):
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
syz_io_uring_setup(0x100293f, 0x0, &(0x7f0000000080), &(0x7f00000014c0))

2.270893948s ago: executing program 1 (id=705):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
unshare(0x22020600)
r0 = socket$inet(0xa, 0x801, 0x84)
poll(&(0x7f0000000180)=[{r0, 0x8001}], 0x1, 0x80000001)

2.11776834s ago: executing program 6 (id=706):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000540)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x100000001}, 0x18)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x40c0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000"], 0xfc}}, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000100)="f257a8ea7bc273dfaeab96854305", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r6, 0x11, 0x6, @broadcast}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001b00)=@getchain={0x54, 0x11, 0x1, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x10}, {0x0, 0x6}}, [{0x8, 0xb, 0x5}, {0x8, 0xb, 0x1b}, {0x8, 0xb, 0xb}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x7}, {0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x20008050)

1.992536202s ago: executing program 6 (id=710):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003500)=ANY=[@ANYRESDEC=r0, @ANYRES16=r0, @ANYRES16, @ANYRES8, @ANYBLOB="b2508a998848b5b05571dba8dc128f526d2fc8389d4e6cccaf47fe44834685ba3d26f196249a1f6fabb02d", @ANYBLOB, @ANYBLOB="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"], 0x48)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000140)='lp\x00', 0x3)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setresgid(0x0, 0xee01, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
write$cgroup_int(r3, &(0x7f0000000000)=0xfe8e, 0x12)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="30e01b3981ddca"], 0x1000f)
socket(0x80000000000000a, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00'}, 0x18)

1.625867867s ago: executing program 4 (id=714):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r2, &(0x7f0000003a40)=[{{&(0x7f0000000440)={0x2, 0x1, @remote}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000540)="a9050000000074000000000035528c2771cc874d997efa5ff0850d2cf1bde5c064c60000", 0x24}], 0x1}}, {{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000080)="ba0ac9697c3a940000edd9bb9449bfe71847200b", 0x14}], 0x1}}], 0x2, 0x840)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)

1.558101378s ago: executing program 4 (id=715):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=@newlink={0x5c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}, @IFLA_GRE_OKEY={0x8, 0x5, 0x3}, @IFLA_GRE_LOCAL={0x14, 0x6, @empty}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x5c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbb2, @void, @value}, 0x94)

1.287020252s ago: executing program 1 (id=717):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
timer_create(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$eJzs3M9rG2caAOB3JlacH96VF/awe8kuJJBAiGzHl+RU91J6CQQCvabGHhvjsRUsObXdQJzeCoU0vrSlUNp7j70WQvoH9FYCLfTWQ6G0qXtoe1GRLCuJIylKYkeJ+zww1veNvpn3fWfkzzPgUQB/W/+v/0gihiLiYkQUm+vTiDjYaB2KWN8at3nv2lR9SaJWu/RzUt8sNmvF1r6S5uvRaGwS/4mIO4WI0+88GreyujY/mefZUrM/Ul24MlJZXTsztzA5m81mi2Pj50fPjY+fGx3ftVpPvHH+8K2vX9vY+OaL6s1jA2eSmGjUHc3adi3QA7aOSSEmdqxf3ItgfZT0MGbgOeQBAEB39ev8A81rs0IU40C3qzQXcAAAAPBSqg3WevVHzyMBAACAF0wS/c4AAAAA2Fvb/wew/WzvXj0H28lPr0bEcLv4A41niCMORSEijmwmDz1+kGxtBs9k/UZE3J5o8/nr5Ynm7kbvNw/vzh7Zbbfr889Eu/knbc0/0Wb+Gdj+7oRn1Hn+ux//QIf572KPMb785L+FjvFvVFbePdYuftKKn3SI/2aP8W9uvHer03u1zyJOtv37kzwUq8v3Q4zMzOXtfrVa6d7589TdzvVHHHkkfpI0oibd67/SY/1vb/46v94l/qnj3c//VvzBh7arfybeb+aRRsSt5mu9v7EjxvGFb796NHKyvh1/usPxb3/+X2/V/2mP9X//+eBKj0MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgIY2IoUjSUqudpqVSxNGI+HccSfNypXp6pry8OF1/L2I4CunMXJ6NRkRxq5/U+2ON9v3+2R398Yj413eHt4LO5VlpqpxP97t4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWo5GxFAkaSki0oj4rZimpVK/swIAAAB23XC/EwAAAAD2nPt/AAAA2P+e9v4/2eU8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgH3t4oUL9aW2ee/aVL0/fXV1eb589cx0VpkvLSxPlabKS1dKs+XybJ6VpsoLj9tfGhFj52N5ZaSaVaojldW1ywvl5cXq5bmFydnsclZ4LlUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwpIYaS5KWIiJttNO0VIr4R0QMRyGZmcuz0Yj4Z0TcLRYG6/2xficNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADArqusrs1P5nm29HI3avurnJ4bkUS8AGl0aHzUPCvdxiTrEXn2Q3Nkn1JNm+GfZT9Plvz1xxyWfjf+14e5CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/qusrs1P5nm2VOl3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPRX+mMSEfXlZPHE0M53Dya/FxuvEfHWx5c+WJmsVpfG6ut/aa2vfthcf/aBDa8/zxoAAABg33vlSQZv36dv38cDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0qrK6Nj+Z59nSHjbiRr+rBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnsZfAQAA//9bFLc7")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
syz_io_uring_setup(0x100293f, &(0x7f0000001400)={0x0, 0x2000004, 0x10, 0xfffffffc}, &(0x7f0000000080), &(0x7f00000014c0))

1.116446624s ago: executing program 6 (id=718):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES32=<r3=>0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000600000000000000008500000007000000450000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
dup(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x5a, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r5, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff, 0x80000001})
r6 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x1, 0x1, 0x1}}]}}]}, 0x44}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001b00)=ANY=[@ANYBLOB="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"], 0x114}}, 0x0)
r9 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x3c1, 0x3, 0x390, 0x1b8, 0x12, 0x60a, 0x1b8, 0x202, 0x2c0, 0x2e8, 0x2e8, 0x2c0, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00', {}, {0xff}}, 0x0, 0x190, 0x1b8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x3, 0x7, 'kmp\x00', "ac072d587a25cf11c2177e91f873695f0f388bcca4278a139bdadc8372a99355e041aed79619dc886e9965584f1644594932bb89045702e8330dfc88d05698900000342524529ae9b4c97e4841b9ef81c330fa45d445a68455e2430267bf0b94a70c185cf2a3f456165d34cc6a76446fdc173039d5dc5f2e9e02bff4acffce4a", 0x0, 0x2, {0x5}}}, @common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0x0, 0xf5}}}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f0)
r10 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00')
preadv(r10, &(0x7f0000000280), 0x0, 0x1f2, 0x1)
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x2, 0x0)
r11 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile(r11, r11, 0x0, 0x40000f63c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='rxrpc_conn\x00', r1}, 0x18)

1.011222056s ago: executing program 0 (id=719):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
recvmmsg(0xffffffffffffffff, &(0x7f0000006940)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/10, 0xa}], 0x1}, 0x5}], 0x1, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$sock(r1, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
recvfrom(r2, &(0x7f0000000040)=""/60, 0x3c, 0x40, 0x0, 0x0)

834.703388ms ago: executing program 0 (id=720):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@getqdisc={0x38, 0x26, 0x10, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0xd, 0x10}, {0x7, 0xfff2}, {0x6, 0x10}}, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa)
r5 = socket(0x840000000002, 0x3, 0xff)
sendmmsg$inet(r5, &(0x7f0000000440)=[{{&(0x7f00000003c0)={0x2, 0x1, @multicast1}, 0x10, &(0x7f0000001980)=[{0x0}, {&(0x7f0000000100)="174640b6d80fb2eedc81ba60ccbb9df1", 0x10}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000340)="5825be57aff9352b356be67ca2746357d1787935589db15a23319e3f64fdf5f8", 0x20}], 0x1}}], 0x2, 0x840)
r6 = socket(0x10, 0x3, 0x0)
connect$netlink(r6, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0x898, 0x30, 0xffff, 0x0, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0xb}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x894e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x4, 0x0, 0x0, 0x0, 0x0, 0xff}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x898}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000e00)=@newtaction={0x18, 0x30, 0x71d, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20044801}, 0x0)
sendmsg$inet(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000c40)="02", 0x1}], 0x1}, 0x40488c4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(r5, 0x65, 0x2, &(0x7f0000000c00)=0x100, 0x4)

817.898378ms ago: executing program 0 (id=721):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000540)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x100000001}, 0x18)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x40c0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000"], 0xfc}}, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000100)="f257a8ea7bc273dfaeab96854305", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r6=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r6, 0x11, 0x6, @broadcast}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001b00)=@getchain={0x54, 0x11, 0x1, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x10}, {0x0, 0x6}}, [{0x8, 0xb, 0x5}, {0x8, 0xb, 0x1b}, {0x8, 0xb, 0xb}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x7}, {0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x20008050)

625.465791ms ago: executing program 0 (id=722):
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)

534.999212ms ago: executing program 0 (id=723):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000140)='lp\x00', 0x3)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setresgid(0x0, 0xee01, 0x0)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="30e01b3981ddca"], 0x1000f)
r2 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2b, 0x0, 0x108)

525.801942ms ago: executing program 0 (id=724):
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
syz_io_uring_setup(0x100293f, 0x0, &(0x7f0000000080), &(0x7f00000014c0))

445.839983ms ago: executing program 2 (id=725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r2, &(0x7f0000003a40)=[{{&(0x7f0000000440)={0x2, 0x1, @remote}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000540)="a9050000000074000000000035528c2771cc874d997efa5ff0850d2cf1bde5c064c60000", 0x24}], 0x1}}, {{&(0x7f0000000000)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000080)="ba0ac9697c3a940000edd9bb9449bfe71847200b", 0x14}], 0x1}}], 0x2, 0x840)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)

386.192434ms ago: executing program 2 (id=726):
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xfe, 0x2ae, &(0x7f0000000a40)="$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")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0xfffffffffffffffb)
sendfile(r0, r1, 0x0, 0x800000009)

252.085166ms ago: executing program 6 (id=727):
socket$isdn_base(0x22, 0x3, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xb, &(0x7f0000000280)=ANY=[@ANYRES8=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETPERSIST(r2, 0x400454cb, 0x1)
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x7, 0x40000000, 0x0, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000680)=ANY=[@ANYRESHEX, @ANYBLOB="62e1db6e4ec385284a077cc716b75aba7432d96af6194344e6ad3a11a21c4c5d86249398925a0106e172df0553e473737ce4a8d79788bba829c85545d09f9fbafdfccd9bef817c16198d77d2eced4d0fec09ed3ba2e912fc6f8bb243887a2d797d579709a25d1f505e8b541a66e302c74f8b3c7599f5612355d8eebf92e4f34905863d", @ANYBLOB="0000000000000000b708000000e900007b8af8ff00000000bfa200000000000007020000f8ff00ffb703000000000000ff07000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r5, 0x0, 0x9}, 0x18)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES8=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x1008002, &(0x7f0000000d00), 0x3, 0x5f5, &(0x7f0000001040)="$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")
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpeername(0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCSWINSZ(r7, 0x5414, &(0x7f0000000180)={0xb, 0x0, 0x3, 0x7fff})
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020300000b0000000000000000000000030006000000000002000000e000000100000000000000000200010000001c000000fb18000000000300050000000000020000007f0000010000000000000000010018"], 0x58}, 0x1, 0x7}, 0x0)
setgid(0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000000)=0x8, 0x4)

165.253947ms ago: executing program 2 (id=728):
open(&(0x7f0000000180)='./bus\x00', 0x14127f, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x7ffff000)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

85.468888ms ago: executing program 4 (id=729):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r0 = socket(0x2, 0x3, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000100)=0x599, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
r1 = socket(0x10, 0x3, 0x9)
unshare(0x2040600)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}, 0x1c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0106000000000000000009000000240004801300010062726f6164636173742d6c696e6b00000c000780080005000200000013daa03bf6f183b93123f73121d48ce9e0f9d065b6"], 0x38}}, 0x0)
sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010080000000fedbdf250f0000000c00078008000200070000001c000380080001000900000008000300ff0f000008000300080000002c000780080002008a060000080001006cfb2082ea407899df8f25030000000c000300c3000000000000000c"], 0x68}, 0x1, 0x0, 0x0, 0x2805}, 0x0)

14.451139ms ago: executing program 4 (id=730):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000c0, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f0000000600)="$eJzs3U1oHOUbAPBnZrPtv23+pgUFlR6KChVKN0k/tHpKr2Kh0IPgpS6bbQjZZEN2U5uQQ3ovYkFR6aXe9OBR8eBBvHj06kXxLIgGhaYHiUx2N/1Isq61ydbO7wezfT+GPu+bmWey7zBDAsitI9lHGvFMRJxPIobu6huIdueR1n6rK0uV2ytLlSTW1i78mkQSEbdWliqd/ZP2vwciYjkino6Ib4oRx9LNcRsLi1PlWq06164PN6dnhxsLi8cnp8sT1YnqzMmXXzl95tTp0ROjD22u1368/s617167ef3Tzw4vV94vJzEWg+2+u+fxMLV+JsUYu6/91E4E66Ok3wPggRTaeV6MiKdiKArtrAcef2t7I9aAnErkP+RU53tAtv7tbLv5/eOXs60FSBZ3tb21egZa9ybif+trk/2/J/esTLL15sHdHCiPpeWrETEyMLD5/E/a59+DG3kYA2RHfX22daA2H/904/oTW1x/Bjv3Tv+lzvVvddP17078wjbXv/M9xvjzzZ8+2jb+1Yhnt4yfbMRPtoifRsRbPca/8caXZ7brW/s44mhsHb8j6X5/ePjSZK060vrcMsZXRw+/2m3++7eJP9Zl/lnbbI/z/+Lbz59b7hL/xee7H/+t4u+LiHd7jH/o1ievb9eXxR/fZv7d4mdtN3uM/9LYkR963BUAAAAAAAAAAPgH0vVn2ZK0tFFO01Kp9Q7vk7E/rdUbzWOX6vMz461n3g5GMe08aTXUqidZfbT9PG6nfuK++smIOBQR7xX2rddLlXptvN+TBwAAAAAAAAAAAAAAAAAAgEfEgfve//+j0Hr/H8gJf/Ib8kv+Q37dm/9J38YB7D6//yG/5D/kl/yH/JL/kF/yH/JL/kN+yX/IL/kPAAAAAAAAAAAAAAAAAAAAAAAAAAA74vy5c9m2dntlqZLVxy8vzE/VLx8frzamStPzlVKlPjdbmqjXJ2rVUqU+/Xf/X61enx2Jmfkrw81qozncWFi8OF2fn2lenJwuT1QvVou7MisAAAAAAAAAAAAAAAAAAAD4bxlc35K0FBHpejlNS6WI/0fEwSgmlyZr1ZGIeCIivi8U92b10X4PGgAAAAAAAAAAAAAAAAAAAB4zjYXFqXKtVp1T2FyIiOVHYBgKCn05+QEAAAAAAAAAAAAAAAAAgF1156Xffo8EAAAAAAAAAAAAAAAAAAAA8iz9OYmIbDs69MLg3T17I2JPslrIynsi4u0bFz64Um4250az9t822psftttP9GsOQC86edrJYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCOxsLiVLlWq87tYKHfcwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4EH8FAAD//46R2W8=")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000001740)='./bus\x00', 0x81)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x86602, 0x330269f53da8c4ce)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x50000, 0x0, 0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000008c0)=@newqdisc={0x64, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x2, 0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x34, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x9}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME_EXTENSION={0xff74, 0x9, 0xf98}]}}]}, 0x64}}, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x6, &(0x7f0000000380)={@mcast2}, &(0x7f00000003c0)=0x14)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00'})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newvlan={0x28, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r8}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0x4, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x3000000}}}]}, 0x28}}, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000400)={0x0, @multicast2}, &(0x7f0000000440)=0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000540)={'syztnl0\x00', &(0x7f00000004c0)={'sit0\x00', 0x0, 0x700, 0x700, 0x9, 0x269, {{0x5, 0x4, 0x3, 0x18, 0x14, 0x65, 0x0, 0x7, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x7fffffff, 0x0, 0xfffffffd, 0x100000}}]}]}}}]}, 0x68}}, 0x0)

0s ago: executing program 1 (id=731):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
recvmmsg(0xffffffffffffffff, &(0x7f0000006940)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/10, 0xa}], 0x1}, 0x5}], 0x1, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$sock(r1, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
recvfrom(r2, &(0x7f0000000040)=""/60, 0x3c, 0x40, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.915621][ T3851] netlink: 36 bytes leftover after parsing attributes in process `syz.1.106'.
[   44.958181][ T3843] wireguard0: entered promiscuous mode
[   44.963803][ T3843] wireguard0: entered allmulticast mode
[   45.352032][ T3875] loop3: detected capacity change from 0 to 128
[   45.375430][ T3875] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   45.399062][ T3875] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   45.492519][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024
[   45.508743][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192
[   45.524426][ T3318] EXT4-fs error (device loop3): ext4_empty_dir:3105: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   45.539752][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024
[   45.556915][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192
[   45.578759][ T3318] EXT4-fs error (device loop3): ext4_empty_dir:3105: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   45.594701][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024
[   45.623678][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 8192
[   45.638108][ T3318] EXT4-fs error (device loop3): ext4_empty_dir:3105: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   45.663943][ T3318] EXT4-fs error (device loop3): ext4_readdir:224: inode #11: comm syz-executor: path (unknown): directory fails checksum at offset 1024
[   45.883138][ T3876] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   45.885240][ T3906] SELinux: failed to load policy
[   45.916059][ T3913] program syz.2.130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   46.079156][   T31] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.153624][   T31] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.207370][   T31] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.218140][ T3935] loop4: detected capacity change from 0 to 512
[   46.224829][ T3935] EXT4-fs: Ignoring removed bh option
[   46.232132][ T3935] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   46.244134][   T31] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.256136][ T3935] EXT4-fs (loop4): 1 truncate cleaned up
[   46.263057][ T3935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.278424][ T3935] cgroup: noprefix used incorrectly
[   46.298894][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.378820][ T3007] udevd[3007]: worker [3486] terminated by signal 33 (Unknown signal 33)
[   46.393240][ T3920] chnl_net:caif_netlink_parms(): no params data found
[   46.400383][ T3007] udevd[3007]: worker [3486] failed while handling '/devices/netdevsim3/net/eth2'
[   46.413418][ T3007] udevd[3007]: worker [3311] terminated by signal 33 (Unknown signal 33)
[   46.416836][   T31] bridge_slave_1: left allmulticast mode
[   46.422000][ T3007] udevd[3007]: worker [3311] failed while handling '/devices/virtual/block/loop4'
[   46.427621][   T31] bridge_slave_1: left promiscuous mode
[   46.427784][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.465133][   T31] bridge_slave_0: left allmulticast mode
[   46.470857][   T31] bridge_slave_0: left promiscuous mode
[   46.476589][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.542834][   T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   46.552840][   T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   46.562538][   T31] bond0 (unregistering): Released all slaves
[   46.604997][   T31] hsr_slave_0: left promiscuous mode
[   46.610787][   T31] hsr_slave_1: left promiscuous mode
[   46.616418][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   46.624010][   T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[   46.631600][   T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   46.638995][   T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[   46.648667][   T31] veth1_macvtap: left promiscuous mode
[   46.654167][   T31] veth0_macvtap: left promiscuous mode
[   46.660042][   T31] veth1_vlan: left promiscuous mode
[   46.665514][   T31] veth0_vlan: left promiscuous mode
[   46.726383][   T31] team0 (unregistering): Port device team_slave_1 removed
[   46.735747][   T31] team0 (unregistering): Port device team_slave_0 removed
[   46.764887][ T3948] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   46.872139][ T3969] netlink: 'syz.1.146': attribute type 10 has an invalid length.
[   46.881080][ T3947] tipc: Resetting bearer <eth:syzkaller0>
[   46.894090][ T3947] tipc: Disabling bearer <eth:syzkaller0>
[   46.902595][ T3969] team0: Device hsr_slave_0 failed to register rx_handler
[   46.911444][ T3920] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.918598][ T3920] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.926080][ T3920] bridge_slave_0: entered allmulticast mode
[   46.932638][ T3920] bridge_slave_0: entered promiscuous mode
[   46.943315][ T3920] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.950456][ T3920] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.982192][ T3920] bridge_slave_1: entered allmulticast mode
[   46.989419][ T3920] bridge_slave_1: entered promiscuous mode
[   47.011772][ T3974] loop4: detected capacity change from 0 to 512
[   47.020469][ T3969] syz.1.146 (3969) used greatest stack depth: 9696 bytes left
[   47.049903][ T3974] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   47.063238][ T3920] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.091503][ T3974] loop4: detected capacity change from 0 to 164
[   47.098462][ T3920] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.112129][ T3974] iso9660: Unknown parameter 'äptõäùáeÊøæùŸ?®Ò½‹öÕÏÿòG^~5'
[   47.152431][ T3920] team0: Port device team_slave_0 added
[   47.175396][ T3920] team0: Port device team_slave_1 added
[   47.234430][ T3920] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.241546][ T3920] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.267692][ T3920] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.290788][ T3920] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.297782][ T3920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.323829][ T3920] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.360346][ T3920] hsr_slave_0: entered promiscuous mode
[   47.366848][ T3920] hsr_slave_1: entered promiscuous mode
[   47.478396][ T3920] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   47.487945][ T3920] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   47.497495][ T3920] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   47.508905][ T3920] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   47.554540][ T3920] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.572807][ T3920] 8021q: adding VLAN 0 to HW filter on device team0
[   47.583158][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.590280][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.604141][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.611340][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.679687][   T29] kauditd_printk_skb: 508 callbacks suppressed
[   47.679748][   T29] audit: type=1326 audit(1748590848.916:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f97aa735927 code=0x7ffc0000
[   47.735551][ T3920] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.737611][   T29] audit: type=1326 audit(1748590848.916:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97aa6dab39 code=0x7ffc0000
[   47.765630][   T29] audit: type=1326 audit(1748590848.916:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   47.789001][   T29] audit: type=1326 audit(1748590848.926:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f97aa735927 code=0x7ffc0000
[   47.812248][   T29] audit: type=1326 audit(1748590848.926:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97aa6dab39 code=0x7ffc0000
[   47.835507][   T29] audit: type=1326 audit(1748590848.926:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   47.859179][   T29] audit: type=1326 audit(1748590848.936:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f97aa735927 code=0x7ffc0000
[   47.882483][   T29] audit: type=1326 audit(1748590848.936:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f97aa6dab39 code=0x7ffc0000
[   47.905809][   T29] audit: type=1326 audit(1748590848.936:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   47.929181][   T29] audit: type=1326 audit(1748590848.946:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.4.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f97aa735927 code=0x7ffc0000
[   48.019057][ T3920] veth0_vlan: entered promiscuous mode
[   48.028292][ T3920] veth1_vlan: entered promiscuous mode
[   48.061056][ T3920] veth0_macvtap: entered promiscuous mode
[   48.077875][ T4018] serio: Serial port ptm0
[   48.088018][ T3920] veth1_macvtap: entered promiscuous mode
[   48.115979][ T3920] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.125320][ T3920] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.156221][ T3920] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.165199][ T3920] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.173962][ T3920] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.182936][ T3920] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.223247][ T4020] loop4: detected capacity change from 0 to 512
[   48.389151][ T4032] loop5: detected capacity change from 0 to 2048
[   48.398670][ T4037] loop2: detected capacity change from 0 to 2048
[   48.441237][ T4037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.462652][ T4037] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.490543][ T4037] futex_wake_op: syz.2.162 tries to shift op by -1; fix this program
[   48.598472][ T4049] netlink: 592 bytes leftover after parsing attributes in process `syz.5.164'.
[   48.679820][ T4049] SELinux: ebitmap: truncated map
[   48.693281][ T4049] SELinux: failed to load policy
[   49.181301][ T4076] futex_wake_op: syz.4.175 tries to shift op by -1; fix this program
[   49.541206][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.563846][ T4091] loop2: detected capacity change from 0 to 512
[   49.570860][ T4091] EXT4-fs: Ignoring removed mblk_io_submit option
[   49.577422][ T4091] EXT4-fs: Ignoring removed bh option
[   49.584378][ T4091] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   49.600115][ T4093] loop5: detected capacity change from 0 to 128
[   49.608597][ T4091] EXT4-fs (loop2): 1 truncate cleaned up
[   49.615176][ T4091] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.673927][ T4099] loop5: detected capacity change from 0 to 1024
[   49.684524][ T4099] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.767692][ T3920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.140780][ T4129] netlink: 592 bytes leftover after parsing attributes in process `syz.0.188'.
[   50.190819][ T4129] SELinux: ebitmap: truncated map
[   50.196582][ T4129] SELinux: failed to load policy
[   50.234435][ T4135] loop4: detected capacity change from 0 to 1024
[   50.250723][ T4133] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   50.286063][ T4135] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.311795][ T4135] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.391014][ T4146] netlink: 12 bytes leftover after parsing attributes in process `syz.4.191'.
[   50.427560][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.479486][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.498324][ T4152] loop2: detected capacity change from 0 to 512
[   50.525115][ T4152] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.570591][ T4152] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.588114][ T4160] netlink: 1224 bytes leftover after parsing attributes in process `syz.1.199'.
[   50.593400][ T4152] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.610509][ T4152] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.195: corrupted xattr block 19: overlapping e_value 
[   50.625490][ T4152] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   50.635359][ T4152] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.195: corrupted xattr block 19: overlapping e_value 
[   50.655554][ T4152] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   50.688321][ T4152] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.195: corrupted xattr block 19: overlapping e_value 
[   50.709502][ T4163] futex_wake_op: syz.1.200 tries to shift op by -1; fix this program
[   50.722001][ T4161] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.195: corrupted xattr block 19: overlapping e_value 
[   50.764828][ T4161] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   50.790070][ T4161] EXT4-fs error (device loop2): ext4_xattr_block_find:1869: inode #15: comm syz.2.195: corrupted xattr block 19: overlapping e_value 
[   50.844189][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.003273][ T4181] loop2: detected capacity change from 0 to 1024
[   51.019447][ T4183] loop5: detected capacity change from 0 to 512
[   51.042775][ T4181] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.066445][ T4181] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.079814][ T4183] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.093808][ T4183] ext4 filesystem being mounted at /16/file3 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.107552][ T4183] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.209: corrupted xattr block 32: bad e_name length
[   51.134708][ T4183] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   51.154841][ T4183] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.209: corrupted xattr block 32: bad e_name length
[   51.183320][ T4188] netlink: 12 bytes leftover after parsing attributes in process `syz.2.208'.
[   51.200805][ T4183] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   51.219073][ T4189] netlink: 132 bytes leftover after parsing attributes in process `syz.5.209'.
[   51.253053][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.280925][ T3920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.297817][    C0] hrtimer: interrupt took 45942 ns
[   51.395155][ T4197] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[   51.401944][ T4197] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   51.409780][ T4197] vhci_hcd vhci_hcd.0: Device attached
[   51.451804][ T4197] loop4: detected capacity change from 0 to 2048
[   51.459808][ T4197] EXT4-fs: Ignoring removed mblk_io_submit option
[   51.469970][ T4197] ext4: Unknown parameter 'appraise_type'
[   51.495431][ T4197] loop4: detected capacity change from 0 to 512
[   51.533786][ T4197] EXT4-fs (loop4): 1 orphan inode deleted
[   51.546754][ T4197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.560497][   T31] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[   51.572423][ T4197] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.660207][   T36] usb 9-1: new high-speed USB device number 2 using vhci_hcd
[   52.199322][ T4213] netlink: 48 bytes leftover after parsing attributes in process `wÞ£ÿ'.
[   52.227047][ T4198] vhci_hcd: connection reset by peer
[   52.242408][   T31] vhci_hcd: stop threads
[   52.246709][   T31] vhci_hcd: release socket
[   52.251196][   T31] vhci_hcd: disconnect device
[   52.537456][ T4226] loop5: detected capacity change from 0 to 1024
[   52.568670][ T4226] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.595885][ T4226] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.643341][ T4231] netlink: 36 bytes leftover after parsing attributes in process `syz.0.221'.
[   52.657976][ T4231] netlink: 28 bytes leftover after parsing attributes in process `syz.0.221'.
[   52.681923][ T4231] loop0: detected capacity change from 0 to 512
[   52.703305][ T4231] EXT4-fs (loop0): 1 orphan inode deleted
[   52.709569][ T4231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.723773][  T383] __quota_error: 401 callbacks suppressed
[   52.723789][  T383] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   52.738922][ T4231] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.739383][  T383] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   52.763188][ T4234] netlink: 12 bytes leftover after parsing attributes in process `syz.5.220'.
[   52.785918][ T4231] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   52.786426][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.804954][  T383] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   52.814769][  T383] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   52.841582][ T3920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.868503][   T29] audit: type=1400 audit(1748590854.106:1543): avc:  denied  { connect } for  pid=4237 comm="syz.5.223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   52.903637][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.969633][ T4243] futex_wake_op: syz.0.225 tries to shift op by -1; fix this program
[   53.438857][ T4255] loop2: detected capacity change from 0 to 512
[   53.493553][ T4255] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   53.542960][ T4255] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.557357][ T4255] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.613594][   T29] audit: type=1400 audit(1748590854.856:1544): avc:  denied  { setattr } for  pid=4254 comm="syz.2.229" path="/38/bus/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   53.731599][   T29] audit: type=1326 audit(1748590854.966:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   53.780366][   T29] audit: type=1326 audit(1748590854.976:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   53.803866][   T29] audit: type=1326 audit(1748590854.976:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   53.827334][   T29] audit: type=1326 audit(1748590854.976:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   53.851575][   T29] audit: type=1326 audit(1748590854.976:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   53.874998][   T29] audit: type=1326 audit(1748590854.976:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4259 comm="syz.4.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f97aa73e969 code=0x7ffc0000
[   54.089133][ T4265] loop5: detected capacity change from 0 to 512
[   54.131819][ T4265] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.142852][ T4266] SELinux: ebitmap: truncated map
[   54.151326][ T4266] SELinux: failed to load policy
[   54.172343][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.194276][ T4265] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.225010][ T4265] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.286901][ T4275] FAULT_INJECTION: forcing a failure.
[   54.286901][ T4275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.300068][ T4275] CPU: 1 UID: 0 PID: 4275 Comm: syz.4.235 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   54.300139][ T4275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.300159][ T4275] Call Trace:
[   54.300167][ T4275]  <TASK>
[   54.300211][ T4275]  __dump_stack+0x1d/0x30
[   54.300303][ T4275]  dump_stack_lvl+0xe8/0x140
[   54.300357][ T4275]  dump_stack+0x15/0x1b
[   54.300378][ T4275]  should_fail_ex+0x265/0x280
[   54.300408][ T4275]  should_fail+0xb/0x20
[   54.300433][ T4275]  should_fail_usercopy+0x1a/0x20
[   54.300545][ T4275]  _copy_from_iter+0xcf/0xe40
[   54.300582][ T4275]  ? __build_skb_around+0x1a0/0x200
[   54.300659][ T4275]  ? __alloc_skb+0x223/0x320
[   54.300685][ T4275]  netlink_sendmsg+0x471/0x6b0
[   54.300721][ T4275]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.300808][ T4275]  __sock_sendmsg+0x145/0x180
[   54.300843][ T4275]  ____sys_sendmsg+0x31e/0x4e0
[   54.300928][ T4275]  ___sys_sendmsg+0x17b/0x1d0
[   54.301008][ T4275]  __x64_sys_sendmsg+0xd4/0x160
[   54.301043][ T4275]  x64_sys_call+0x2999/0x2fb0
[   54.301119][ T4275]  do_syscall_64+0xd2/0x200
[   54.301197][ T4275]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.301222][ T4275]  ? clear_bhb_loop+0x40/0x90
[   54.301242][ T4275]  ? clear_bhb_loop+0x40/0x90
[   54.301266][ T4275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.301324][ T4275] RIP: 0033:0x7f97aa73e969
[   54.301343][ T4275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.301364][ T4275] RSP: 002b:00007f97a8d86038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.301386][ T4275] RAX: ffffffffffffffda RBX: 00007f97aa966080 RCX: 00007f97aa73e969
[   54.301398][ T4275] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[   54.301413][ T4275] RBP: 00007f97a8d86090 R08: 0000000000000000 R09: 0000000000000000
[   54.301427][ T4275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.301481][ T4275] R13: 0000000000000000 R14: 00007f97aa966080 R15: 00007ffcd3ceafc8
[   54.301503][ T4275]  </TASK>
[   54.511171][ T4265] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.232: corrupted xattr block 19: overlapping e_value 
[   54.548543][ T4265] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   54.576783][ T4265] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.232: corrupted xattr block 19: overlapping e_value 
[   54.592825][ T4265] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   54.603633][ T4265] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.232: corrupted xattr block 19: overlapping e_value 
[   54.627517][ T4279] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.232: corrupted xattr block 19: overlapping e_value 
[   54.652422][ T4279] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[   54.664282][ T4279] EXT4-fs error (device loop5): ext4_xattr_block_find:1869: inode #15: comm syz.5.232: corrupted xattr block 19: overlapping e_value 
[   54.691762][ T3920] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.116043][ T4298] futex_wake_op: syz.0.241 tries to shift op by -1; fix this program
[   55.263795][ T4305] loop2: detected capacity change from 0 to 128
[   55.272535][ T4305] vfat: Unknown parameter '00000000000000000005'
[   55.316560][ T4305] loop2: detected capacity change from 0 to 1024
[   55.323524][ T4305] EXT4-fs: test_dummy_encryption option not supported
[   55.340454][ T4305] loop2: detected capacity change from 0 to 1024
[   55.351016][ T4305] ext4: Unknown parameter 'subj_user'
[   55.383928][ T4308] veth0: entered promiscuous mode
[   55.395456][ T4308] veth0: left promiscuous mode
[   55.422299][ T4310] loop2: detected capacity change from 0 to 1024
[   55.434694][ T4310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.459834][ T4310] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.531873][ T4315] __nla_validate_parse: 2 callbacks suppressed
[   55.531904][ T4315] netlink: 12 bytes leftover after parsing attributes in process `syz.2.246'.
[   55.542535][ T4314] loop4: detected capacity change from 0 to 1024
[   55.590674][ T4314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.625899][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.703654][ T4322] random: crng reseeded on system resumption
[   55.792464][ T4329] netlink: 16 bytes leftover after parsing attributes in process `syz.1.250'.
[   55.808404][ T4327] loop2: detected capacity change from 0 to 1024
[   55.818762][ T4327] EXT4-fs: Ignoring removed i_version option
[   55.837637][ T4327] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.837794][ T4329] can: request_module (can-proto-4) failed.
[   55.868870][ T4327] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   55.904121][ T4327] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   55.921796][ T4327] EXT4-fs (loop2): orphan cleanup on readonly fs
[   55.929640][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.934914][ T4327] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #3: comm syz.2.248: iget: bad i_size value: 1407374883559424
[   55.962212][ T4327] EXT4-fs (loop2): Remounting filesystem read-only
[   55.968799][ T4327] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   55.983761][ T4327] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   56.030812][ T4327] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.083875][ T4343] SELinux: ebitmap: truncated map
[   56.106858][ T4343] SELinux: failed to load policy
[   56.217143][ T4348] loop0: detected capacity change from 0 to 512
[   56.227788][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.251931][ T4348] EXT4-fs: Ignoring removed nomblk_io_submit option
[   56.281986][ T4348] EXT4-fs: Ignoring removed mblk_io_submit option
[   56.310041][ T4348] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   56.328231][ T4348] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   56.359228][ T4348] EXT4-fs (loop0): 1 truncate cleaned up
[   56.386419][ T4348] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.462407][ T4348] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #2: block 4: comm syz.0.253: lblock 0 mapped to illegal pblock 4 (length 1)
[   56.522230][ T4348] EXT4-fs (loop0): Remounting filesystem read-only
[   56.554513][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.600536][ T4357] netlink: 24 bytes leftover after parsing attributes in process `syz.0.255'.
[   56.634223][ T4357] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=48 sclass=netlink_audit_socket pid=4357 comm=syz.0.255
[   56.673623][ T4357] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4357 comm=syz.0.255
[   56.840353][   T36] vhci_hcd: vhci_device speed not set
[   57.060672][ T4365] netlink: 24 bytes leftover after parsing attributes in process `syz.0.258'.
[   57.235369][ T4368] loop2: detected capacity change from 0 to 1024
[   57.283192][ T4368] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.370365][ T4368] ext4 filesystem being mounted at /46/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.500812][ T4371] netlink: 12 bytes leftover after parsing attributes in process `syz.2.259'.
[   57.583686][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.663267][ T4375] loop2: detected capacity change from 0 to 1024
[   57.699364][ T4375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.720421][ T4379] netlink: 104 bytes leftover after parsing attributes in process `syz.1.263'.
[   57.733782][   T29] kauditd_printk_skb: 170 callbacks suppressed
[   57.733800][   T29] audit: type=1400 audit(1748590858.966:1721): avc:  denied  { nlmsg_read } for  pid=4378 comm="syz.1.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   57.777427][ T4385] futex_wake_op: syz.0.264 tries to shift op by -1; fix this program
[   58.198361][   T29] audit: type=1400 audit(1748590859.436:1722): avc:  denied  { read } for  pid=4409 comm="syz.2.268" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   58.222538][   T29] audit: type=1400 audit(1748590859.436:1723): avc:  denied  { open } for  pid=4409 comm="syz.2.268" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   58.396748][   T29] audit: type=1400 audit(1748590859.636:1724): avc:  denied  { ioctl } for  pid=4409 comm="syz.2.268" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   58.518501][ T4416] loop5: detected capacity change from 0 to 512
[   58.533174][ T4416] EXT4-fs (loop5): 1 orphan inode deleted
[   58.539866][ T4416] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.552589][  T383] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   58.562373][  T383] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   58.601751][ T4420] loop5: detected capacity change from 0 to 1024
[   58.627376][ T4420] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.714938][ T4420] netlink: 12 bytes leftover after parsing attributes in process `syz.5.271'.
[   58.954142][   T29] audit: type=1400 audit(1748590860.196:1725): avc:  denied  { setopt } for  pid=4426 comm="syz.0.273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   59.005153][   T29] audit: type=1400 audit(1748590860.196:1726): avc:  denied  { read write } for  pid=4426 comm="syz.0.273" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   59.011606][ T4427] netlink: 4 bytes leftover after parsing attributes in process `b'.
[   59.028864][   T29] audit: type=1400 audit(1748590860.196:1727): avc:  denied  { open } for  pid=4426 comm="syz.0.273" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   59.060455][ T4427] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.068019][ T4427] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.077774][ T4427] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.085348][ T4427] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.135316][ T4438] loop2: detected capacity change from 0 to 512
[   59.151568][ T4438] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.186714][ T4438] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.221746][ T4438] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.275: corrupted xattr block 19: overlapping e_value 
[   59.273845][ T4438] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   59.295719][ T4443] loop0: detected capacity change from 0 to 1024
[   59.316103][ T4438] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.275: corrupted xattr block 19: overlapping e_value 
[   59.366778][ T4438] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   59.390016][ T4438] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.275: corrupted xattr block 19: overlapping e_value 
[   59.731696][    C0] IPv4: Oversized IP packet from 172.20.20.24
[   59.740243][   T29] audit: type=1400 audit(1748590860.976:1728): avc:  denied  { write } for  pid=4463 comm="syz.0.278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   59.853774][   T29] audit: type=1326 audit(1748590861.096:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4472 comm="syz.1.282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfdb02e969 code=0x7ffc0000
[   59.895936][ T4475] futex_wake_op: syz.0.283 tries to shift op by -1; fix this program
[   60.134019][ T4482] loop5: detected capacity change from 0 to 512
[   60.152965][ T4482] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.285: bg 0: block 425: padding at end of block bitmap is not set
[   60.167815][ T4482] EXT4-fs (loop5): Remounting filesystem read-only
[   60.365584][ T4488] loop2: detected capacity change from 0 to 1024
[   60.388048][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.412017][ T4488] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.497905][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.519952][ T4488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.288'.
[   60.564126][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.634138][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.712697][   T12] bridge_slave_1: left allmulticast mode
[   60.718366][   T12] bridge_slave_1: left promiscuous mode
[   60.724194][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.732172][   T12] bridge_slave_0: left allmulticast mode
[   60.737843][   T12] bridge_slave_0: left promiscuous mode
[   60.743590][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.796194][ T4516] netlink: 4 bytes leftover after parsing attributes in process `syz.4.295'.
[   60.805062][ T4516] netlink: 24 bytes leftover after parsing attributes in process `syz.4.295'.
[   60.851687][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   60.874903][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   60.891087][   T12] bond0 (unregistering): Released all slaves
[   60.933556][ T4492] chnl_net:caif_netlink_parms(): no params data found
[   60.955271][   T12] hsr_slave_0: left promiscuous mode
[   60.962147][   T12] hsr_slave_1: left promiscuous mode
[   60.969592][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   60.977157][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   60.988072][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.995651][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   61.013259][   T12] veth1_macvtap: left promiscuous mode
[   61.032060][   T12] veth0_macvtap: left promiscuous mode
[   61.037691][   T12] veth1_vlan: left promiscuous mode
[   61.052082][ T4537] loop4: detected capacity change from 0 to 1024
[   61.063040][   T12] veth0_vlan: left promiscuous mode
[   61.072762][ T4535] SELinux: ebitmap: truncated map
[   61.078210][ T4535] SELinux: failed to load policy
[   61.080753][ T4537] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.229977][   T12] team0 (unregistering): Port device team_slave_1 removed
[   61.250214][   T12] team0 (unregistering): Port device team_slave_0 removed
[   61.261654][ T4547] loop2: detected capacity change from 0 to 512
[   61.287160][ T4547] EXT4-fs (loop2): 1 orphan inode deleted
[   61.301371][   T52] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[   61.313893][ T4547] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.337398][ T4537] netlink: 12 bytes leftover after parsing attributes in process `syz.4.302'.
[   61.383146][ T4555] sch_fq: defrate 4294967295 ignored.
[   61.424567][ T4492] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.431736][ T4492] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.462693][ T4492] bridge_slave_0: entered allmulticast mode
[   61.469339][ T4492] bridge_slave_0: entered promiscuous mode
[   61.479771][ T4492] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.486955][ T4492] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.583006][ T4492] bridge_slave_1: entered allmulticast mode
[   61.621371][ T4492] bridge_slave_1: entered promiscuous mode
[   61.712589][ T4492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.783906][ T4492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.903253][ T4492] team0: Port device team_slave_0 added
[   61.925526][ T4492] team0: Port device team_slave_1 added
[   62.001399][ T4492] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.008431][ T4492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.034486][ T4492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.052459][ T4492] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.059632][ T4492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.085663][ T4492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.098612][ T4571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.309'.
[   62.125059][ T4571] team0 (unregistering): Port device team_slave_0 removed
[   62.143126][ T4573] futex_wake_op: syz.2.310 tries to shift op by -1; fix this program
[   62.152793][ T4571] team0 (unregistering): Port device team_slave_1 removed
[   62.186202][ T4492] hsr_slave_0: entered promiscuous mode
[   62.192518][ T4492] hsr_slave_1: entered promiscuous mode
[   62.302560][ T4492] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   62.313497][ T4492] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   62.329357][ T4576] capability: warning: `syz.1.311' uses 32-bit capabilities (legacy support in use)
[   62.341551][ T4492] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   62.364726][ T4492] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   62.411769][ T4492] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.425042][ T4492] 8021q: adding VLAN 0 to HW filter on device team0
[   62.446809][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.454029][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.476461][ T4492] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   62.486978][ T4492] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   62.517664][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.524828][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.651894][ T4602] loop0: detected capacity change from 0 to 2048
[   62.656550][ T4492] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.692737][ T4602] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.708158][ T4602] futex_wake_op: syz.0.319 tries to shift op by -1; fix this program
[   62.844621][ T4492] veth0_vlan: entered promiscuous mode
[   62.853714][ T4492] veth1_vlan: entered promiscuous mode
[   62.869712][ T4492] veth0_macvtap: entered promiscuous mode
[   62.878042][ T4492] veth1_macvtap: entered promiscuous mode
[   62.888682][ T4492] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.899136][ T4492] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.908306][ T4492] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.917104][ T4492] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.925935][ T4492] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.934781][ T4492] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.330851][   T29] kauditd_printk_skb: 83 callbacks suppressed
[   63.330869][   T29] audit: type=1400 audit(1748590864.576:1812): avc:  denied  { create } for  pid=4624 comm="syz.2.320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   63.378450][   T29] audit: type=1400 audit(1748590864.576:1813): avc:  denied  { setopt } for  pid=4624 comm="syz.2.320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   63.640227][   T29] audit: type=1400 audit(1748590864.876:1814): avc:  denied  { unmount } for  pid=3323 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   63.700258][   T29] audit: type=1400 audit(1748590864.886:1815): avc:  denied  { read write } for  pid=3324 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   63.725010][   T29] audit: type=1400 audit(1748590864.886:1816): avc:  denied  { open } for  pid=3324 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   63.749651][   T29] audit: type=1400 audit(1748590864.886:1817): avc:  denied  { ioctl } for  pid=3324 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   63.775454][   T29] audit: type=1400 audit(1748590864.896:1818): avc:  denied  { create } for  pid=4633 comm="syz.2.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   63.795124][   T29] audit: type=1400 audit(1748590864.896:1819): avc:  denied  { prog_load } for  pid=4633 comm="syz.2.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.797935][ T4638] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   63.814252][   T29] audit: type=1400 audit(1748590864.896:1820): avc:  denied  { bpf } for  pid=4633 comm="syz.2.324" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   63.814291][   T29] audit: type=1400 audit(1748590864.896:1821): avc:  denied  { perfmon } for  pid=4633 comm="syz.2.324" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   63.866306][ T4638] SELinux: failed to load policy
[   63.952553][ T4640] loop4: detected capacity change from 0 to 128
[   64.099785][ T4653] loop6: detected capacity change from 0 to 1024
[   64.412711][ T4675] mmap: syz.6.333 (4675): VmData 29069312 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data.
[   64.597359][ T4680] loop6: detected capacity change from 0 to 2048
[   64.649012][ T4680] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.710523][ T4680] futex_wake_op: syz.6.334 tries to shift op by -1; fix this program
[   64.778484][ T4688] netlink: 8 bytes leftover after parsing attributes in process `syz.4.336'.
[   64.962319][ T4695] loop4: detected capacity change from 0 to 512
[   65.012972][ T4695] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.729256][ T4714] loop4: detected capacity change from 0 to 1024
[   65.768159][ T4714] EXT4-fs mount: 24 callbacks suppressed
[   65.768176][ T4714] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.778137][ T4719] loop2: detected capacity change from 0 to 1024
[   65.833198][ T4719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.863837][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.872022][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.880238][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.910258][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.918406][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.926564][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.960269][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.968608][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.976778][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.984950][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   65.993087][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.001361][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.009609][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.017798][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.026082][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.026669][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.034252][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.034278][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.034301][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.034327][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.034416][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.083906][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.092091][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.092116][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.108397][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.116624][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.124813][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.132983][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.141157][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.149302][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unknown main item tag 0x0
[   66.157437][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: unbalanced collection at end of report description
[   66.174294][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.207278][ T3397] hid-generic FFFF:FFFFFFFC:20000001.0002: probe with driver hid-generic failed with error -22
[   66.224312][ T4740] netlink: 592 bytes leftover after parsing attributes in process `syz.6.349'.
[   66.252472][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.291349][ T4740] SELinux: ebitmap: truncated map
[   66.296853][ T4740] SELinux: failed to load policy
[   66.862897][ T4762] loop0: detected capacity change from 0 to 128
[   66.894981][ T4762] batadv_slave_0: entered promiscuous mode
[   66.913650][ T4762] netlink: 76 bytes leftover after parsing attributes in process `syz.0.357'.
[   66.941750][ T4762] batadv_slave_0 (unregistering): left promiscuous mode
[   67.148625][ T4767] loop0: detected capacity change from 0 to 1024
[   67.171773][ T4767] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.214989][ T4767] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.284871][ T4771] loop4: detected capacity change from 0 to 1024
[   67.337575][ T4773] netlink: 12 bytes leftover after parsing attributes in process `syz.0.359'.
[   67.340172][ T4771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.554768][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.606439][ T4794] netlink: 8 bytes leftover after parsing attributes in process `syz.0.364'.
[   67.615336][ T4794] netlink: 8 bytes leftover after parsing attributes in process `syz.0.364'.
[   67.694358][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.784577][ T4806] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   67.806776][ T4807] loop4: detected capacity change from 0 to 128
[   67.810206][ T4806] SELinux: failed to load policy
[   67.909324][ T4807] syz.4.366: attempt to access beyond end of device
[   67.909324][ T4807] loop4: rw=2049, sector=129, nr_sectors = 8 limit=128
[   67.951457][ T4807] syz.4.366: attempt to access beyond end of device
[   67.951457][ T4807] loop4: rw=2049, sector=145, nr_sectors = 8 limit=128
[   67.998926][ T4807] syz.4.366: attempt to access beyond end of device
[   67.998926][ T4807] loop4: rw=2049, sector=161, nr_sectors = 8 limit=128
[   68.047432][ T4807] syz.4.366: attempt to access beyond end of device
[   68.047432][ T4807] loop4: rw=2049, sector=177, nr_sectors = 8 limit=128
[   68.067699][ T4813] netlink: 20 bytes leftover after parsing attributes in process `syz.1.368'.
[   68.077825][ T4807] syz.4.366: attempt to access beyond end of device
[   68.077825][ T4807] loop4: rw=2049, sector=193, nr_sectors = 8 limit=128
[   68.098312][ T4807] syz.4.366: attempt to access beyond end of device
[   68.098312][ T4807] loop4: rw=2049, sector=209, nr_sectors = 8 limit=128
[   68.125332][ T4807] syz.4.366: attempt to access beyond end of device
[   68.125332][ T4807] loop4: rw=2049, sector=225, nr_sectors = 8 limit=128
[   68.139720][ T4807] syz.4.366: attempt to access beyond end of device
[   68.139720][ T4807] loop4: rw=2049, sector=241, nr_sectors = 8 limit=128
[   68.154269][ T4807] syz.4.366: attempt to access beyond end of device
[   68.154269][ T4807] loop4: rw=2049, sector=257, nr_sectors = 8 limit=128
[   68.179689][ T4807] syz.4.366: attempt to access beyond end of device
[   68.179689][ T4807] loop4: rw=2049, sector=273, nr_sectors = 8 limit=128
[   68.233869][ T4815] batadv_slave_0: entered promiscuous mode
[   68.244127][ T4815] netlink: 76 bytes leftover after parsing attributes in process `syz.1.369'.
[   68.269804][ T4815] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.289604][ T4815] batadv_slave_0 (unregistering): left promiscuous mode
[   68.296862][ T4815] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.520697][   T29] kauditd_printk_skb: 170 callbacks suppressed
[   68.520713][   T29] audit: type=1326 audit(1748590869.766:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4825 comm="syz.1.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfdb02e969 code=0x7ffc0000
[   68.585630][   T29] audit: type=1326 audit(1748590869.766:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4825 comm="syz.1.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfdb02e969 code=0x7ffc0000
[   68.609063][   T29] audit: type=1326 audit(1748590869.766:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4825 comm="syz.1.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfdb02e969 code=0x7ffc0000
[   68.632496][   T29] audit: type=1326 audit(1748590869.766:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.655951][   T29] audit: type=1326 audit(1748590869.766:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.679396][   T29] audit: type=1326 audit(1748590869.766:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.703140][   T29] audit: type=1326 audit(1748590869.766:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.726974][   T29] audit: type=1326 audit(1748590869.766:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.750434][   T29] audit: type=1326 audit(1748590869.766:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.773860][   T29] audit: type=1326 audit(1748590869.766:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4818 comm="syz.2.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc71869e969 code=0x7ffc0000
[   68.869303][ T4832] loop4: detected capacity change from 0 to 1024
[   68.902097][ T4832] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.930221][ T4832] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.943737][ T4835] loop6: detected capacity change from 0 to 1024
[   68.984419][ T4835] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.021854][ T4841] netlink: 12 bytes leftover after parsing attributes in process `syz.4.375'.
[   69.200096][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.239809][ T4862] loop4: detected capacity change from 0 to 128
[   69.265254][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.282249][ T4862] batadv_slave_0: entered promiscuous mode
[   69.302668][ T4861] batadv_slave_0: left promiscuous mode
[   69.399981][ T4877] FAULT_INJECTION: forcing a failure.
[   69.399981][ T4877] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   69.413476][ T4877] CPU: 1 UID: 0 PID: 4877 Comm: syz.6.388 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   69.413585][ T4877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.413599][ T4877] Call Trace:
[   69.413606][ T4877]  <TASK>
[   69.413614][ T4877]  __dump_stack+0x1d/0x30
[   69.413637][ T4877]  dump_stack_lvl+0xe8/0x140
[   69.413738][ T4877]  dump_stack+0x15/0x1b
[   69.413754][ T4877]  should_fail_ex+0x265/0x280
[   69.413783][ T4877]  should_fail_alloc_page+0xf2/0x100
[   69.413812][ T4877]  __alloc_frozen_pages_noprof+0xff/0x360
[   69.413844][ T4877]  __alloc_pages_noprof+0x9/0x20
[   69.413874][ T4877]  pcpu_populate_chunk+0x206/0xa70
[   69.413942][ T4877]  pcpu_alloc_noprof+0xabf/0x1210
[   69.413977][ T4877]  xt_percpu_counter_alloc+0x78/0x110
[   69.414005][ T4877]  translate_table+0x93d/0xf90
[   69.414054][ T4877]  ? should_fail_ex+0xdb/0x280
[   69.414082][ T4877]  ? _copy_from_user+0x89/0xb0
[   69.414104][ T4877]  do_ipt_set_ctl+0x66f/0x820
[   69.414130][ T4877]  nf_setsockopt+0x199/0x1b0
[   69.414159][ T4877]  ip_setsockopt+0x102/0x110
[   69.414279][ T4877]  udp_setsockopt+0x99/0xb0
[   69.414302][ T4877]  sock_common_setsockopt+0x69/0x80
[   69.414325][ T4877]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   69.414347][ T4877]  __sys_setsockopt+0x181/0x200
[   69.414416][ T4877]  __x64_sys_setsockopt+0x64/0x80
[   69.414445][ T4877]  x64_sys_call+0x2bd5/0x2fb0
[   69.414468][ T4877]  do_syscall_64+0xd2/0x200
[   69.414501][ T4877]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.414526][ T4877]  ? clear_bhb_loop+0x40/0x90
[   69.414609][ T4877]  ? clear_bhb_loop+0x40/0x90
[   69.414699][ T4877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.414722][ T4877] RIP: 0033:0x7fad250ce969
[   69.414738][ T4877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.414757][ T4877] RSP: 002b:00007fad23737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   69.414781][ T4877] RAX: ffffffffffffffda RBX: 00007fad252f5fa0 RCX: 00007fad250ce969
[   69.414795][ T4877] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[   69.414807][ T4877] RBP: 00007fad23737090 R08: 0000000000000548 R09: 0000000000000000
[   69.414892][ T4877] R10: 0000200000002480 R11: 0000000000000246 R12: 0000000000000001
[   69.414984][ T4877] R13: 0000000000000000 R14: 00007fad252f5fa0 R15: 00007ffeb20d6f48
[   69.415004][ T4877]  </TASK>
[   69.415039][ T4877] percpu: allocation failed, size=4096 align=4096 atomic=0, failed to populate
[   69.661839][ T4877] CPU: 1 UID: 0 PID: 4877 Comm: syz.6.388 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   69.661868][ T4877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.661880][ T4877] Call Trace:
[   69.661888][ T4877]  <TASK>
[   69.661896][ T4877]  __dump_stack+0x1d/0x30
[   69.661960][ T4877]  dump_stack_lvl+0xe8/0x140
[   69.661978][ T4877]  dump_stack+0x15/0x1b
[   69.662058][ T4877]  pcpu_alloc_noprof+0xe5f/0x1210
[   69.662093][ T4877]  xt_percpu_counter_alloc+0x78/0x110
[   69.662175][ T4877]  translate_table+0x93d/0xf90
[   69.662228][ T4877]  ? should_fail_ex+0xdb/0x280
[   69.662266][ T4877]  ? _copy_from_user+0x89/0xb0
[   69.662287][ T4877]  do_ipt_set_ctl+0x66f/0x820
[   69.662315][ T4877]  nf_setsockopt+0x199/0x1b0
[   69.662343][ T4877]  ip_setsockopt+0x102/0x110
[   69.662365][ T4877]  udp_setsockopt+0x99/0xb0
[   69.662455][ T4877]  sock_common_setsockopt+0x69/0x80
[   69.662504][ T4877]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   69.662574][ T4877]  __sys_setsockopt+0x181/0x200
[   69.662656][ T4877]  __x64_sys_setsockopt+0x64/0x80
[   69.662681][ T4877]  x64_sys_call+0x2bd5/0x2fb0
[   69.662702][ T4877]  do_syscall_64+0xd2/0x200
[   69.662758][ T4877]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.662788][ T4877]  ? clear_bhb_loop+0x40/0x90
[   69.662809][ T4877]  ? clear_bhb_loop+0x40/0x90
[   69.662830][ T4877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.662850][ T4877] RIP: 0033:0x7fad250ce969
[   69.662865][ T4877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.662893][ T4877] RSP: 002b:00007fad23737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   69.662913][ T4877] RAX: ffffffffffffffda RBX: 00007fad252f5fa0 RCX: 00007fad250ce969
[   69.662959][ T4877] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[   69.662971][ T4877] RBP: 00007fad23737090 R08: 0000000000000548 R09: 0000000000000000
[   69.662982][ T4877] R10: 0000200000002480 R11: 0000000000000246 R12: 0000000000000001
[   69.662994][ T4877] R13: 0000000000000000 R14: 00007fad252f5fa0 R15: 00007ffeb20d6f48
[   69.663012][ T4877]  </TASK>
[   69.669476][ T4878] vlan2: entered allmulticast mode
[   70.036598][ T4895] loop6: detected capacity change from 0 to 1024
[   70.062481][ T4893] SELinux: ebitmap: truncated map
[   70.077912][ T4893] SELinux: failed to load policy
[   70.083660][ T4895] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.105965][ T4895] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.210198][ T4901] netlink: 12 bytes leftover after parsing attributes in process `syz.6.392'.
[   70.369424][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.423566][ T4919] loop6: detected capacity change from 0 to 128
[   70.469959][ T4919] batadv_slave_0: entered promiscuous mode
[   70.498931][ T4918] batadv_slave_0: left promiscuous mode
[   70.629831][ T4932] loop6: detected capacity change from 0 to 8192
[   70.659527][ T4932] sctp: [Deprecated]: syz.6.400 (pid 4932) Use of struct sctp_assoc_value in delayed_ack socket option.
[   70.659527][ T4932] Use struct sctp_sack_info instead
[   70.722919][ T4942] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=4942 comm=syz.6.403
[   70.778984][ T4947] netlink: 596 bytes leftover after parsing attributes in process `syz.0.405'.
[   70.827509][ T4950] loop6: detected capacity change from 0 to 1024
[   70.851528][ T4950] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.880248][ T4950] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.994469][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.257757][ T4982] FAULT_INJECTION: forcing a failure.
[   71.257757][ T4982] name failslab, interval 1, probability 0, space 0, times 0
[   71.270585][ T4982] CPU: 1 UID: 0 PID: 4982 Comm: syz.4.415 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   71.270652][ T4982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.270666][ T4982] Call Trace:
[   71.270675][ T4982]  <TASK>
[   71.270684][ T4982]  __dump_stack+0x1d/0x30
[   71.270708][ T4982]  dump_stack_lvl+0xe8/0x140
[   71.270730][ T4982]  dump_stack+0x15/0x1b
[   71.270750][ T4982]  should_fail_ex+0x265/0x280
[   71.270808][ T4982]  ? slhc_init+0x57/0x390
[   71.270836][ T4982]  should_failslab+0x8c/0xb0
[   71.270938][ T4982]  __kmalloc_cache_noprof+0x4c/0x320
[   71.270969][ T4982]  slhc_init+0x57/0x390
[   71.271062][ T4982]  slip_open+0x54c/0x920
[   71.271087][ T4982]  tty_ldisc_open+0x5d/0xb0
[   71.271116][ T4982]  tty_set_ldisc+0x1db/0x380
[   71.271143][ T4982]  tiocsetd+0x51/0x60
[   71.271218][ T4982]  tty_ioctl+0xa7f/0xb80
[   71.271248][ T4982]  ? __pfx_tty_ioctl+0x10/0x10
[   71.271279][ T4982]  __se_sys_ioctl+0xce/0x140
[   71.271421][ T4982]  __x64_sys_ioctl+0x43/0x50
[   71.271468][ T4982]  x64_sys_call+0x19a8/0x2fb0
[   71.271492][ T4982]  do_syscall_64+0xd2/0x200
[   71.271520][ T4982]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.271583][ T4982]  ? clear_bhb_loop+0x40/0x90
[   71.271636][ T4982]  ? clear_bhb_loop+0x40/0x90
[   71.271660][ T4982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.271717][ T4982] RIP: 0033:0x7f97aa73e969
[   71.271734][ T4982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.271764][ T4982] RSP: 002b:00007f97a8da7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.271784][ T4982] RAX: ffffffffffffffda RBX: 00007f97aa965fa0 RCX: 00007f97aa73e969
[   71.271859][ T4982] RDX: 00002000000002c0 RSI: 0000000000005423 RDI: 0000000000000006
[   71.271872][ T4982] RBP: 00007f97a8da7090 R08: 0000000000000000 R09: 0000000000000000
[   71.271885][ T4982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.271898][ T4982] R13: 0000000000000000 R14: 00007f97aa965fa0 R15: 00007ffcd3ceafc8
[   71.271916][ T4982]  </TASK>
[   71.636175][ T4991] loop2: detected capacity change from 0 to 1024
[   71.666405][ T4991] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[   71.681650][ T4991] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   71.692585][ T4998] SELinux:  policydb string ”÷8?eüg† does not match my string SE Linux
[   71.711419][ T4991] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   71.730894][ T4998] SELinux: failed to load policy
[   71.737460][ T4991] EXT4-fs (loop2): orphan cleanup on readonly fs
[   71.745853][ T4991] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.416: Inode bitmap for bg 0 marked uninitialized
[   71.779344][ T4991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.851681][ T5007] __nla_validate_parse: 1 callbacks suppressed
[   71.851699][ T5007] netlink: 12 bytes leftover after parsing attributes in process `syz.1.421'.
[   71.879421][ T5008] loop4: detected capacity change from 0 to 128
[   71.901112][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.911109][ T5008] batadv_slave_0: entered promiscuous mode
[   71.920609][ T5006] batadv_slave_0: left promiscuous mode
[   72.062717][ T5015] netlink: 12 bytes leftover after parsing attributes in process `syz.2.425'.
[   72.149800][ T5022] loop2: detected capacity change from 0 to 512
[   72.196839][ T5022] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   72.231482][ T5022] EXT4-fs (loop2): invalid journal inode
[   72.279851][ T5022] EXT4-fs (loop2): can't get journal size
[   72.302547][ T5022] EXT4-fs (loop2): 1 truncate cleaned up
[   72.309248][ T5022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.350435][ T5028] loop0: detected capacity change from 0 to 1024
[   72.412863][ T5028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.574309][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.740562][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.851868][ T5052] loop2: detected capacity change from 0 to 128
[   72.900502][ T5052] batadv_slave_0: entered promiscuous mode
[   72.952008][ T5051] batadv_slave_0: left promiscuous mode
[   73.013592][ T5063] loop6: detected capacity change from 0 to 1024
[   73.159857][ T5063] EXT4-fs (loop6): can't mount with both data=journal and delalloc
[   73.411997][ T5077] loop0: detected capacity change from 0 to 1024
[   73.419166][ T5075] loop6: detected capacity change from 0 to 1024
[   73.446527][ T5075] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.472626][ T5077] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.523840][ T5077] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.555806][   T29] kauditd_printk_skb: 270 callbacks suppressed
[   73.555824][   T29] audit: type=1400 audit(1748590874.796:2270): avc:  denied  { setopt } for  pid=5083 comm="syz.1.445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   73.654838][ T5092] netlink: 12 bytes leftover after parsing attributes in process `syz.0.444'.
[   73.748647][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.839608][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.959028][   T29] audit: type=1326 audit(1748590875.196:2271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.011367][ T5111] loop6: detected capacity change from 0 to 128
[   74.013577][   T29] audit: type=1326 audit(1748590875.196:2272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.041174][   T29] audit: type=1326 audit(1748590875.196:2273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.064501][   T29] audit: type=1326 audit(1748590875.196:2274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.087979][   T29] audit: type=1326 audit(1748590875.206:2275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.111701][   T29] audit: type=1326 audit(1748590875.206:2276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.134986][   T29] audit: type=1326 audit(1748590875.206:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.158660][   T29] audit: type=1326 audit(1748590875.206:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.181969][   T29] audit: type=1326 audit(1748590875.206:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5102 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   74.233053][ T5111] batadv_slave_0: entered promiscuous mode
[   74.249962][ T5110] batadv_slave_0: left promiscuous mode
[   74.308222][ T5113] geneve0: entered promiscuous mode
[   74.319372][ T5113] macsec1: entered promiscuous mode
[   74.324750][ T5113] macsec1: entered allmulticast mode
[   74.330088][ T5113] geneve0: entered allmulticast mode
[   74.537095][ T5128] netlink: 12 bytes leftover after parsing attributes in process `syz.1.457'.
[   74.596698][ T5130] loop6: detected capacity change from 0 to 1024
[   74.624815][ T5130] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.657295][ T5136] xt_hashlimit: max too large, truncated to 1048576
[   74.714641][ T5141] loop2: detected capacity change from 0 to 128
[   74.763100][ T5141] batadv_slave_0: entered promiscuous mode
[   74.781039][ T5139] batadv_slave_0: left promiscuous mode
[   74.797196][ T5146] loop0: detected capacity change from 0 to 512
[   74.957281][ T5146] EXT4-fs (loop0): orphan cleanup on readonly fs
[   74.957722][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.980245][ T5146] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.463: bg 0: block 248: padding at end of block bitmap is not set
[   75.006794][ T5146] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.463: Failed to acquire dquot type 1
[   75.037327][ T5146] EXT4-fs (loop0): 1 truncate cleaned up
[   75.078198][ T5146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.164224][ T5146] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   75.201304][ T5146] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   75.305533][ T5146] syz.0.463 (5146) used greatest stack depth: 9224 bytes left
[   75.314155][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.417410][ T5166] netlink: 'syz.0.466': attribute type 5 has an invalid length.
[   75.566485][ T5170] loop0: detected capacity change from 0 to 512
[   75.590597][ T5170] EXT4-fs: Ignoring removed nobh option
[   75.618548][ T5170] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[   75.635359][ T5172] netlink: 28 bytes leftover after parsing attributes in process `syz.1.467'.
[   75.650968][ T5170] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.469: attempt to clear invalid blocks 2 len 1
[   75.680926][ T5170] EXT4-fs (loop0): Remounting filesystem read-only
[   75.688304][ T5170] EXT4-fs (loop0): 1 truncate cleaned up
[   75.697345][ T5170] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.730272][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.750029][ T5175] geneve0: entered promiscuous mode
[   75.764161][ T5175] macsec1: entered promiscuous mode
[   75.769624][ T5175] macsec1: entered allmulticast mode
[   75.775053][ T5175] geneve0: entered allmulticast mode
[   75.825106][ T5183] loop4: detected capacity change from 0 to 128
[   75.854177][ T5183] batadv_slave_0: entered promiscuous mode
[   75.863357][ T5182] batadv_slave_0: left promiscuous mode
[   75.967551][ T5200] loop6: detected capacity change from 0 to 1024
[   75.992540][ T5200] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.007693][ T5200] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.086548][ T5211] netlink: 12 bytes leftover after parsing attributes in process `syz.6.478'.
[   76.158740][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.363504][ T5237] loop2: detected capacity change from 0 to 128
[   76.373881][ T5232] atomic_op ffff88810f86f128 conn xmit_atomic 0000000000000000
[   76.408945][ T5237] batadv_slave_0: entered promiscuous mode
[   76.429919][ T5235] batadv_slave_0: left promiscuous mode
[   76.487755][ T5243] pim6reg: entered allmulticast mode
[   76.531036][ T5243] pim6reg: left allmulticast mode
[   76.544338][ T5243] FAULT_INJECTION: forcing a failure.
[   76.544338][ T5243] name failslab, interval 1, probability 0, space 0, times 0
[   76.557498][ T5243] CPU: 0 UID: 0 PID: 5243 Comm: syz.0.490 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   76.557636][ T5243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.557726][ T5243] Call Trace:
[   76.557734][ T5243]  <TASK>
[   76.557744][ T5243]  __dump_stack+0x1d/0x30
[   76.557805][ T5243]  dump_stack_lvl+0xe8/0x140
[   76.557827][ T5243]  dump_stack+0x15/0x1b
[   76.557848][ T5243]  should_fail_ex+0x265/0x280
[   76.557886][ T5243]  should_failslab+0x8c/0xb0
[   76.557909][ T5243]  __kmalloc_noprof+0xa5/0x3e0
[   76.557941][ T5243]  ? unregister_netdevice_many_notify+0x4cf/0x1690
[   76.557973][ T5243]  ? unlist_netdevice+0x2cc/0x320
[   76.558068][ T5243]  unregister_netdevice_many_notify+0x4cf/0x1690
[   76.558102][ T5243]  ? mif6_delete+0x38d/0x410
[   76.558128][ T5243]  unregister_netdevice_many+0x19/0x20
[   76.558280][ T5243]  mroute_clean_tables+0x166/0x610
[   76.558311][ T5243]  ip6_mroute_setsockopt+0x8b0/0xa70
[   76.558413][ T5243]  do_ipv6_setsockopt+0x323/0x22e0
[   76.558452][ T5243]  ? _parse_integer+0x27/0x40
[   76.558480][ T5243]  ? kstrtoull+0x111/0x140
[   76.558504][ T5243]  ? __rcu_read_unlock+0x4f/0x70
[   76.558524][ T5243]  ? avc_has_perm_noaudit+0x1b1/0x200
[   76.558627][ T5243]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   76.558666][ T5243]  ipv6_setsockopt+0x59/0x130
[   76.558695][ T5243]  rawv6_setsockopt+0x1d2/0x420
[   76.558788][ T5243]  sock_common_setsockopt+0x69/0x80
[   76.558807][ T5243]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   76.558830][ T5243]  __sys_setsockopt+0x181/0x200
[   76.558860][ T5243]  __x64_sys_setsockopt+0x64/0x80
[   76.558939][ T5243]  x64_sys_call+0x2bd5/0x2fb0
[   76.558960][ T5243]  do_syscall_64+0xd2/0x200
[   76.558986][ T5243]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.559024][ T5243]  ? clear_bhb_loop+0x40/0x90
[   76.559044][ T5243]  ? clear_bhb_loop+0x40/0x90
[   76.559098][ T5243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.559119][ T5243] RIP: 0033:0x7fe46987e969
[   76.559227][ T5243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.559248][ T5243] RSP: 002b:00007fe467ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   76.559267][ T5243] RAX: ffffffffffffffda RBX: 00007fe469aa5fa0 RCX: 00007fe46987e969
[   76.559279][ T5243] RDX: 00000000000000d4 RSI: 0000000000000029 RDI: 0000000000000003
[   76.559291][ T5243] RBP: 00007fe467ee7090 R08: 0000000000000004 R09: 0000000000000000
[   76.559304][ T5243] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000002
[   76.559317][ T5243] R13: 0000000000000000 R14: 00007fe469aa5fa0 R15: 00007fffbcc47fb8
[   76.559383][ T5243]  </TASK>
[   76.844466][ T5248] loop2: detected capacity change from 0 to 1024
[   76.870017][ T5245] loop6: detected capacity change from 0 to 2048
[   76.904408][ T5251] loop4: detected capacity change from 0 to 1024
[   76.913513][ T5248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.926977][ T3951]  loop6: p1 < > p4
[   76.946437][ T3951] loop6: p4 size 8388608 extends beyond EOD, truncated
[   76.963460][ T5245]  loop6: p1 < > p4
[   76.963553][ T5251] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.979641][ T5245] loop6: p4 size 8388608 extends beyond EOD, truncated
[   76.999900][ T5251] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.068623][ T5245] loop6: detected capacity change from 0 to 512
[   77.118992][ T3952] udevd[3952]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[   77.130432][ T3951] udevd[3951]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[   77.174465][ T5272] netlink: 12 bytes leftover after parsing attributes in process `syz.4.492'.
[   77.203923][ T3952] udevd[3952]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[   77.205286][ T3951] udevd[3951]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[   77.255057][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.430374][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.501005][ T5287] FAULT_INJECTION: forcing a failure.
[   77.501005][ T5287] name failslab, interval 1, probability 0, space 0, times 0
[   77.513829][ T5287] CPU: 0 UID: 0 PID: 5287 Comm: syz.4.499 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   77.513877][ T5287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   77.513891][ T5287] Call Trace:
[   77.513897][ T5287]  <TASK>
[   77.513905][ T5287]  __dump_stack+0x1d/0x30
[   77.513927][ T5287]  dump_stack_lvl+0xe8/0x140
[   77.513970][ T5287]  dump_stack+0x15/0x1b
[   77.513985][ T5287]  should_fail_ex+0x265/0x280
[   77.514017][ T5287]  should_failslab+0x8c/0xb0
[   77.514041][ T5287]  kmem_cache_alloc_noprof+0x50/0x310
[   77.514110][ T5287]  ? __se_sys_mbind+0x3d7/0xac0
[   77.514137][ T5287]  __se_sys_mbind+0x3d7/0xac0
[   77.514170][ T5287]  ? schedule+0x5f/0xd0
[   77.514313][ T5287]  __x64_sys_mbind+0x78/0x90
[   77.514341][ T5287]  x64_sys_call+0x14af/0x2fb0
[   77.514361][ T5287]  do_syscall_64+0xd2/0x200
[   77.514401][ T5287]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.514431][ T5287]  ? clear_bhb_loop+0x40/0x90
[   77.514456][ T5287]  ? clear_bhb_loop+0x40/0x90
[   77.514479][ T5287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.514507][ T5287] RIP: 0033:0x7f97aa73e969
[   77.514525][ T5287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.514603][ T5287] RSP: 002b:00007f97a8da7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[   77.514626][ T5287] RAX: ffffffffffffffda RBX: 00007f97aa965fa0 RCX: 00007f97aa73e969
[   77.514641][ T5287] RDX: 0000000000000004 RSI: 0000000000800000 RDI: 0000200000001000
[   77.514656][ T5287] RBP: 00007f97a8da7090 R08: 0000000000000000 R09: 0000000000000000
[   77.514670][ T5287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.514684][ T5287] R13: 0000000000000000 R14: 00007f97aa965fa0 R15: 00007ffcd3ceafc8
[   77.514718][ T5287]  </TASK>
[   77.651654][ T5297] loop2: detected capacity change from 0 to 128
[   77.796374][ T5297] batadv_slave_0: entered promiscuous mode
[   77.804932][ T5297] netlink: 4 bytes leftover after parsing attributes in process `syz.2.502'.
[   77.834194][ T5297] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.879432][ T5297] batadv_slave_0 (unregistering): left promiscuous mode
[   77.903462][ T5297] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.178239][ T5312] loop2: detected capacity change from 0 to 1024
[   78.204598][ T5312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.401243][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.498785][ T5333] loop2: detected capacity change from 0 to 1024
[   78.533518][ T5333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.570242][ T5333] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.647882][   T29] kauditd_printk_skb: 529 callbacks suppressed
[   78.647900][   T29] audit: type=1326 audit(1748590879.886:2806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.657085][ T5339] loop0: detected capacity change from 0 to 128
[   78.710953][ T5340] netlink: 12 bytes leftover after parsing attributes in process `syz.2.510'.
[   78.727573][ T3319] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   78.738553][ T3319] CPU: 0 UID: 0 PID: 3319 Comm: syz-executor Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   78.738612][ T3319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.738623][ T3319] Call Trace:
[   78.738638][ T3319]  <TASK>
[   78.738647][ T3319]  __dump_stack+0x1d/0x30
[   78.738670][ T3319]  dump_stack_lvl+0xe8/0x140
[   78.738690][ T3319]  dump_stack+0x15/0x1b
[   78.738742][ T3319]  dump_header+0x81/0x220
[   78.738776][ T3319]  oom_kill_process+0x334/0x3f0
[   78.738807][ T3319]  out_of_memory+0x979/0xb80
[   78.738834][ T3319]  ? css_next_descendant_pre+0x138/0x160
[   78.738885][ T3319]  mem_cgroup_out_of_memory+0x13d/0x190
[   78.738915][ T3319]  try_charge_memcg+0x5e2/0x870
[   78.738989][ T3319]  charge_memcg+0x51/0xc0
[   78.739022][ T3319]  __mem_cgroup_charge+0x28/0xb0
[   78.739053][ T3319]  filemap_add_folio+0x4e/0x1b0
[   78.739139][ T3319]  __filemap_get_folio+0x31e/0x650
[   78.739177][ T3319]  filemap_fault+0x41d/0xb40
[   78.739203][ T3319]  __do_fault+0xbc/0x200
[   78.739224][ T3319]  handle_mm_fault+0xf55/0x2c00
[   78.739304][ T3319]  ? mas_walk+0xf2/0x120
[   78.739332][ T3319]  do_user_addr_fault+0x636/0x1090
[   78.739438][ T3319]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.739467][ T3319]  exc_page_fault+0x62/0xa0
[   78.739488][ T3319]  asm_exc_page_fault+0x26/0x30
[   78.739507][ T3319] RIP: 0033:0x7f97aa615994
[   78.739617][ T3319] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 08 fe e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d 19 fd e7 00 48 01 d1
[   78.739638][ T3319] RSP: 002b:00007ffcd3ceb350 EFLAGS: 00010202
[   78.739720][ T3319] RAX: 0000001b33020000 RBX: 0000000000000103 RCX: 00000000000130b0
[   78.739737][ T3319] RDX: 000000000ab0d1fa RSI: 00007ffcd3ceb3e0 RDI: 0000000000000001
[   78.739752][ T3319] RBP: 00007ffcd3ceb38c R08: 0000000028c82403 R09: 7fffffffffffffff
[   78.739766][ T3319] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   78.739780][ T3319] R13: 00000000000927c0 R14: 0000000000013022 R15: 00007ffcd3ceb3e0
[   78.739870][ T3319]  </TASK>
[   78.739877][ T3319] memory: usage 307200kB, limit 307200kB, failcnt 274
[   78.818984][   T29] audit: type=1326 audit(1748590879.886:2807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.821288][ T3319] memory+swap: usage 307348kB, limit 9007199254740988kB, failcnt 0
[   78.821306][ T3319] kmem: usage 307156kB, limit 9007199254740988kB, failcnt 0
[   78.826164][   T29] audit: type=1326 audit(1748590879.886:2808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.826192][   T29] audit: type=1326 audit(1748590879.886:2809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.831324][ T3319] Memory cgroup stats for /syz4:
[   78.955660][ T3319] cache 0
[   78.973940][   T29] audit: type=1326 audit(1748590879.886:2810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.974024][   T29] audit: type=1326 audit(1748590879.886:2811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.974052][   T29] audit: type=1326 audit(1748590879.886:2812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   78.981990][ T3319] rss 4096
[   78.982001][ T3319] shmem 0
[   78.989269][   T29] audit: type=1326 audit(1748590879.886:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   79.012567][ T3319] mapped_file 0
[   79.012577][ T3319] dirty 0
[   79.036011][   T29] audit: type=1326 audit(1748590879.886:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   79.040979][ T3319] writeback 32768
[   79.043906][   T29] audit: type=1326 audit(1748590879.886:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5338 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   79.067174][ T3319] workingset_refault_anon 3
[   79.067184][ T3319] workingset_refault_file 3
[   79.067192][ T3319] swap 151552
[   79.067199][ T3319] swapcached 45056
[   79.067206][ T3319] nr_memmap_boot_pages 36289
[   79.067213][ T3319] pgpgin 36278
[   79.224915][ T3319] pglazyfree 63603
[   79.228647][ T3319] pgfault 9
[   79.231866][ T3319] a_other 45056
[   79.235352][ T3319] inactive_anon 0
[   79.238988][ T3319] active_anon 0
[   79.242481][ T3319] inactive_file 0
[   79.246177][ T3319] active_file 0
[   79.249641][ T3319] hierarchical_memory_limit 314572800
[   79.255183][ T3319] hierarchical_memsw_limit 9223372036854771712
[   79.261377][ T3319] total_cache 0
[   79.264845][ T3319] total_rss 4096
[   79.268418][ T3319] total_shmem 0
[   79.272017][ T3319] total_mapped_file 0
[   79.276020][ T3319] total_dirty 0
[   79.279582][ T3319] total_writeback 32768
[   79.283803][ T3319] total_workingset_refault_anon 3
[   79.288920][ T3319] total_workingset_refault_file 3
[   79.294079][ T3319] total_swap 151552
[   79.297890][ T3319] total_swapcached 45056
[   79.302293][ T3319] total_nr_memmap_boot_pages 36289
[   79.307432][ T3319] total_pgpgin 36278
[   79.311378][ T3319] total_pglazyfree 63603
[   79.315630][ T3319] total_pgfault 9
[   79.319330][ T3319] total_a_other 45056
[   79.323371][ T3319] total_inactive_anon 0
[   79.327552][ T3319] total_active_anon 0
[   79.331560][ T3319] total_inactive_file 0
[   79.335718][ T3319] total_active_file 0
[   79.339717][ T3319] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.504,pid=5300,uid=0
[   79.354390][ T3319] Memory cgroup out of memory: Killed process 5300 (syz.4.504) total-vm:93748kB, anon-rss:936kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   79.389832][ T5345] loop6: detected capacity change from 0 to 256
[   79.427727][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.455386][ T5347] ALSA: seq fatal error: cannot create timer (-19)
[   79.492864][ T5352] loop2: detected capacity change from 0 to 128
[   79.586123][ T5354] loop0: detected capacity change from 0 to 1024
[   79.596849][ T5361] netlink: 4 bytes leftover after parsing attributes in process `syz.2.516'.
[   79.627682][ T5354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.939800][ T5399] loop6: detected capacity change from 0 to 1024
[   79.955760][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.998384][ T5399] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.058901][ T5399] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.175606][ T5418] netlink: 12 bytes leftover after parsing attributes in process `syz.6.527'.
[   80.241521][ T5420] loop0: detected capacity change from 0 to 128
[   80.355840][ T5424] netlink: 4 bytes leftover after parsing attributes in process `syz.0.532'.
[   80.381012][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.466561][ T5426] loop6: detected capacity change from 0 to 512
[   80.515636][ T5426] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   80.587525][ T5431] loop0: detected capacity change from 0 to 1024
[   80.628043][ T5426] EXT4-fs warning (device loop6): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   80.649467][ T5431] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.691941][ T5426] EXT4-fs (loop6): 1 truncate cleaned up
[   80.726669][ T5426] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.818136][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.880489][ T5446] loop2: detected capacity change from 0 to 1024
[   80.893934][ T5446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.908962][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.079887][ T5470] loop6: detected capacity change from 0 to 1024
[   81.103538][ T5470] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.137537][ T5470] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.149693][ T5471] netlink: 68 bytes leftover after parsing attributes in process `syz.1.545'.
[   81.182578][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.255771][ T5484] loop2: detected capacity change from 0 to 512
[   81.263752][ T5485] netlink: 12 bytes leftover after parsing attributes in process `syz.6.544'.
[   81.283791][ T5484] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.308470][ T5492] loop4: detected capacity change from 0 to 512
[   81.315374][ T5484] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.326559][ T5492] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.353346][ T5492] EXT4-fs (loop4): 1 truncate cleaned up
[   81.361937][ T5492] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.400428][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.420254][ T5492] loop4: detected capacity change from 512 to 64
[   81.452683][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.494890][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.586841][ T5506] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   81.611044][ T5506] SELinux: failed to load policy
[   81.628737][ T5510] loop4: detected capacity change from 0 to 1024
[   81.651117][ T5510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.674106][ T5514] loop6: detected capacity change from 0 to 128
[   81.698163][ T5514] batadv_slave_0: entered promiscuous mode
[   81.726550][ T5514] netlink: 68 bytes leftover after parsing attributes in process `syz.6.557'.
[   81.767558][ T5514] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.813199][ T5514] batadv_slave_0 (unregistering): left promiscuous mode
[   81.838453][ T5514] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.941537][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.042439][ T5536] loop6: detected capacity change from 0 to 1024
[   82.077254][ T5536] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.100780][ T5536] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.190662][ T5547] netlink: 12 bytes leftover after parsing attributes in process `syz.6.561'.
[   82.241764][ T5553] veth0_virt_wifi: entered promiscuous mode
[   82.283995][ T5555] program syz.4.565 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   82.321769][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.338102][ T5555] netlink: 33912 bytes leftover after parsing attributes in process `syz.4.565'.
[   82.377713][ T5559] netlink: 16 bytes leftover after parsing attributes in process `syz.1.568'.
[   82.495971][ T5568] loop6: detected capacity change from 0 to 2048
[   82.536983][ T5570] loop4: detected capacity change from 0 to 1024
[   82.554938][ T5568] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.663599][ T5578] FAULT_INJECTION: forcing a failure.
[   82.663599][ T5578] name failslab, interval 1, probability 0, space 0, times 0
[   82.676419][ T5578] CPU: 1 UID: 0 PID: 5578 Comm: syz.6.570 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   82.676526][ T5578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.676559][ T5578] Call Trace:
[   82.676566][ T5578]  <TASK>
[   82.676577][ T5578]  __dump_stack+0x1d/0x30
[   82.676598][ T5578]  dump_stack_lvl+0xe8/0x140
[   82.676618][ T5578]  dump_stack+0x15/0x1b
[   82.676638][ T5578]  should_fail_ex+0x265/0x280
[   82.676702][ T5578]  should_failslab+0x8c/0xb0
[   82.676723][ T5578]  kmem_cache_alloc_noprof+0x50/0x310
[   82.676746][ T5578]  ? alloc_vfsmnt+0x2d/0x360
[   82.676850][ T5578]  alloc_vfsmnt+0x2d/0x360
[   82.676873][ T5578]  clone_mnt+0x41/0x750
[   82.676905][ T5578]  copy_tree+0xb7/0x820
[   82.676993][ T5578]  ? proc_alloc_inum+0x4f/0x70
[   82.677020][ T5578]  copy_mnt_ns+0x120/0x5e0
[   82.677054][ T5578]  ? kmem_cache_alloc_noprof+0x220/0x310
[   82.677091][ T5578]  ? create_new_namespaces+0x3c/0x3d0
[   82.677133][ T5578]  create_new_namespaces+0x83/0x3d0
[   82.677164][ T5578]  unshare_nsproxy_namespaces+0xe8/0x120
[   82.677203][ T5578]  ksys_unshare+0x3d0/0x6d0
[   82.677272][ T5578]  ? ksys_write+0x192/0x1a0
[   82.677310][ T5578]  __x64_sys_unshare+0x1f/0x30
[   82.677339][ T5578]  x64_sys_call+0x2d4b/0x2fb0
[   82.677414][ T5578]  do_syscall_64+0xd2/0x200
[   82.677509][ T5578]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.677538][ T5578]  ? clear_bhb_loop+0x40/0x90
[   82.677560][ T5578]  ? clear_bhb_loop+0x40/0x90
[   82.677583][ T5578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.677606][ T5578] RIP: 0033:0x7fad250ce969
[   82.677686][ T5578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.677705][ T5578] RSP: 002b:00007fad23716038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   82.677728][ T5578] RAX: ffffffffffffffda RBX: 00007fad252f6080 RCX: 00007fad250ce969
[   82.677741][ T5578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c020400
[   82.677753][ T5578] RBP: 00007fad23716090 R08: 0000000000000000 R09: 0000000000000000
[   82.677765][ T5578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.677780][ T5578] R13: 0000000000000000 R14: 00007fad252f6080 R15: 00007ffeb20d6f48
[   82.677876][ T5578]  </TASK>
[   82.925959][ T5574] netlink: 60 bytes leftover after parsing attributes in process `syz.1.572'.
[   83.153249][ T5600] loop4: detected capacity change from 0 to 128
[   83.257941][ T5602] bond1: entered promiscuous mode
[   83.263170][ T5602] bond1: entered allmulticast mode
[   83.294608][ T5602] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.330393][ T5606] SELinux: syz.4.577 (5606) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   83.355650][ T2206] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   83.381503][ T5602] bond1 (unregistering): Released all slaves
[   83.397259][ T2206] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   83.409979][ T2206] EXT4-fs (loop6): This should not happen!! Data will be lost
[   83.409979][ T2206] 
[   83.419712][ T2206] EXT4-fs (loop6): Total free blocks count 0
[   83.425747][ T2206] EXT4-fs (loop6): Free/Dirty block details
[   83.431688][ T2206] EXT4-fs (loop6): free_blocks=2415919504
[   83.437458][ T2206] EXT4-fs (loop6): dirty_blocks=10176
[   83.442873][ T2206] EXT4-fs (loop6): Block reservation details
[   83.448866][ T2206] EXT4-fs (loop6): i_reserved_data_blocks=636
[   83.538032][ T5620] loop4: detected capacity change from 0 to 128
[   83.542093][  T383] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   83.558612][ T5620] batadv_slave_0: entered promiscuous mode
[   83.569085][ T5620] netlink: 60 bytes leftover after parsing attributes in process `syz.4.583'.
[   83.588017][ T5620] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.605339][ T5620] batadv_slave_0 (unregistering): left promiscuous mode
[   83.613228][ T5620] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.703901][   T29] kauditd_printk_skb: 217 callbacks suppressed
[   83.703918][   T29] audit: type=1326 audit(1748590884.946:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.733667][   T29] audit: type=1326 audit(1748590884.946:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.816567][   T29] audit: type=1326 audit(1748590884.996:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.840095][   T29] audit: type=1326 audit(1748590884.996:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.863904][   T29] audit: type=1326 audit(1748590884.996:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.879051][ T5634] loop6: detected capacity change from 0 to 1024
[   83.887374][   T29] audit: type=1326 audit(1748590885.006:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.917130][   T29] audit: type=1326 audit(1748590885.006:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.928098][ T5635] loop0: detected capacity change from 0 to 1024
[   83.940706][   T29] audit: type=1326 audit(1748590885.006:3040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.970317][   T29] audit: type=1326 audit(1748590885.006:3041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   83.993871][   T29] audit: type=1326 audit(1748590885.006:3042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5621 comm="syz.0.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   84.123703][ T5634] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.203580][ T5648] netlink: 12 bytes leftover after parsing attributes in process `syz.6.578'.
[   84.355999][ T5661] SET target dimension over the limit!
[   84.445176][ T5671] loop0: detected capacity change from 0 to 128
[   84.529515][ T5671] netlink: 52 bytes leftover after parsing attributes in process `syz.0.597'.
[   84.600554][ T5680] loop0: detected capacity change from 0 to 512
[   84.629144][ T5680] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   84.710542][ T5680] EXT4-fs (loop0): 1 truncate cleaned up
[   84.785504][ T5680] EXT4-fs error (device loop0): ext4_append:79: inode #2: comm syz.0.601: Logical block already allocated
[   84.809791][ T5680] EXT4-fs (loop0): Remounting filesystem read-only
[   85.024693][ T5693] loop2: detected capacity change from 0 to 1024
[   85.052376][ T5693] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.127735][ T5696] netlink: 12 bytes leftover after parsing attributes in process `syz.2.604'.
[   85.179454][ T5698] loop4: detected capacity change from 0 to 1024
[   85.258482][ T5707] loop2: detected capacity change from 0 to 512
[   85.272946][ T5707] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   85.292918][ T5707] EXT4-fs (loop2): 1 truncate cleaned up
[   85.307319][ T5707] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.607: Logical block already allocated
[   85.338641][ T5707] EXT4-fs (loop2): Remounting filesystem read-only
[   85.396104][ T5722] loop6: detected capacity change from 0 to 512
[   85.414395][ T5722] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.437584][ T5707] FAULT_INJECTION: forcing a failure.
[   85.437584][ T5707] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.450763][ T5707] CPU: 0 UID: 0 PID: 5707 Comm: syz.2.607 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   85.450797][ T5707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   85.450811][ T5707] Call Trace:
[   85.450818][ T5707]  <TASK>
[   85.450827][ T5707]  __dump_stack+0x1d/0x30
[   85.450915][ T5707]  dump_stack_lvl+0xe8/0x140
[   85.450991][ T5707]  dump_stack+0x15/0x1b
[   85.451009][ T5707]  should_fail_ex+0x265/0x280
[   85.451046][ T5707]  should_fail+0xb/0x20
[   85.451079][ T5707]  should_fail_usercopy+0x1a/0x20
[   85.451176][ T5707]  copy_fpstate_to_sigframe+0x628/0x7d0
[   85.451233][ T5707]  ? copy_fpstate_to_sigframe+0xe6/0x7d0
[   85.451264][ T5707]  ? x86_task_fpu+0x36/0x60
[   85.451290][ T5707]  get_sigframe+0x34d/0x490
[   85.451366][ T5707]  ? get_signal+0xdc8/0xf70
[   85.451447][ T5707]  x64_setup_rt_frame+0xa8/0x580
[   85.451471][ T5707]  arch_do_signal_or_restart+0x27c/0x480
[   85.451499][ T5707]  exit_to_user_mode_loop+0x7a/0x100
[   85.451527][ T5707]  do_syscall_64+0x1d6/0x200
[   85.451589][ T5707]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.451615][ T5707]  ? clear_bhb_loop+0x40/0x90
[   85.451640][ T5707]  ? clear_bhb_loop+0x40/0x90
[   85.451664][ T5707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.451776][ T5707] RIP: 0033:0x7fc71869e967
[   85.451795][ T5707] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[   85.451820][ T5707] RSP: 002b:00007fc716d07038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   85.451841][ T5707] RAX: 000000000000012b RBX: 00007fc7188c5fa0 RCX: 00007fc71869e969
[   85.451853][ T5707] RDX: 0000000000000001 RSI: 0000200000003c40 RDI: 0000000000000009
[   85.451864][ T5707] RBP: 00007fc716d07090 R08: 0000000000000000 R09: 0000000000000000
[   85.451954][ T5707] R10: 0000000060010002 R11: 0000000000000246 R12: 0000000000000001
[   85.451969][ T5707] R13: 0000000000000000 R14: 00007fc7188c5fa0 R15: 00007ffccf957a08
[   85.451990][ T5707]  </TASK>
[   85.667267][ T5722] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.610: corrupted inode contents
[   85.685087][ T5722] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.610: mark_inode_dirty error
[   85.698828][ T5722] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.610: corrupted inode contents
[   85.720820][ T5729] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.610: corrupted inode contents
[   85.736122][ T5727] loop4: detected capacity change from 0 to 512
[   85.745805][ T5729] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.610: mark_inode_dirty error
[   85.746916][ T5730] 9pnet_fd: Insufficient options for proto=fd
[   85.767921][ T5729] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.610: corrupted inode contents
[   85.768200][ T5722] SELinux: failed to load policy
[   85.786216][ T5727] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   85.801935][ T5735] loop0: detected capacity change from 0 to 128
[   85.818572][ T5729] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.610: mark_inode_dirty error
[   85.820030][ T5727] EXT4-fs (loop4): 1 truncate cleaned up
[   85.857148][ T5729] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.610: corrupted inode contents
[   85.876532][ T5729] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.610: mark_inode_dirty error
[   85.889486][ T5727] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.611: Logical block already allocated
[   85.915542][ T5735] netlink: 52 bytes leftover after parsing attributes in process `syz.0.612'.
[   85.936509][ T5727] EXT4-fs (loop4): Remounting filesystem read-only
[   85.950884][ T5743] netlink: 32 bytes leftover after parsing attributes in process `syz.4.611'.
[   85.982684][ T5744] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   86.021026][ T5744] SELinux: failed to load policy
[   86.069268][ T5748] loop0: detected capacity change from 0 to 1024
[   86.160728][ T5748] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.574287][ T5770] loop0: detected capacity change from 0 to 1024
[   86.996688][ T5804] loop0: detected capacity change from 0 to 128
[   87.166240][ T5814] loop4: detected capacity change from 0 to 512
[   87.178409][ T5816] loop0: detected capacity change from 0 to 1024
[   87.190738][ T5814] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.231140][ T5816] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.340865][ T5828] __nla_validate_parse: 3 callbacks suppressed
[   87.340881][ T5828] netlink: 12 bytes leftover after parsing attributes in process `syz.0.631'.
[   87.570783][ T5844] loop4: detected capacity change from 0 to 2048
[   87.637470][ T5858] loop6: detected capacity change from 0 to 128
[   87.664714][ T5861] SELinux:  Context system_u:object_r:file_context_t:s0 is not valid (left unmapped).
[   87.745873][ T5869] netlink: 52 bytes leftover after parsing attributes in process `syz.6.642'.
[   87.895002][ T5876] loop6: detected capacity change from 0 to 256
[   87.923780][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   87.951955][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   87.968984][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   87.989179][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.010300][ T5877] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.037340][ T5877] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.060261][ T5877] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.067520][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.087301][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.096864][ T5876] FAT-fs (loop6): Directory bread(block 1285) failed
[   88.381906][ T5886] loop6: detected capacity change from 0 to 1024
[   88.416099][ T5886] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.580209][ T5886] netlink: 12 bytes leftover after parsing attributes in process `syz.6.649'.
[   88.702862][ T5902] loop2: detected capacity change from 0 to 2048
[   88.735487][ T5902] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.769180][ T5902] futex_wake_op: syz.2.654 tries to shift op by -1; fix this program
[   88.881749][ T5917] loop0: detected capacity change from 0 to 256
[   88.922313][ T5917] vfat: Bad value for 'uid'
[   88.926908][ T5917] vfat: Bad value for 'uid'
[   89.658190][ T5844] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   89.673137][ T5844] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   89.685875][ T5844] EXT4-fs (loop4): This should not happen!! Data will be lost
[   89.685875][ T5844] 
[   89.687965][ T5928] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   89.695600][ T5844] EXT4-fs (loop4): Total free blocks count 0
[   89.708726][ T5844] EXT4-fs (loop4): Free/Dirty block details
[   89.714669][ T5844] EXT4-fs (loop4): free_blocks=2415919504
[   89.720484][ T5844] EXT4-fs (loop4): dirty_blocks=32784
[   89.725892][ T5844] EXT4-fs (loop4): Block reservation details
[   89.731926][ T5844] EXT4-fs (loop4): i_reserved_data_blocks=2049
[   89.764630][  T383] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   89.777501][  T383] EXT4-fs (loop4): This should not happen!! Data will be lost
[   89.777501][  T383] 
[   89.796472][   T29] kauditd_printk_skb: 295 callbacks suppressed
[   89.796491][   T29] audit: type=1326 audit(1748590891.036:3338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.826212][   T29] audit: type=1326 audit(1748590891.036:3339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.860263][   T29] audit: type=1326 audit(1748590891.036:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.883808][   T29] audit: type=1326 audit(1748590891.036:3341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.907313][   T29] audit: type=1326 audit(1748590891.036:3342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.930768][   T29] audit: type=1326 audit(1748590891.086:3343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.954195][   T29] audit: type=1326 audit(1748590891.096:3344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   89.977620][   T29] audit: type=1326 audit(1748590891.096:3345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   90.001139][   T29] audit: type=1326 audit(1748590891.096:3346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   90.024650][   T29] audit: type=1326 audit(1748590891.096:3347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5929 comm="syz.0.662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe46987e969 code=0x7ffc0000
[   90.058820][ T5932] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   90.068966][ T5932] SELinux: failed to load policy
[   90.304209][ T5942] loop6: detected capacity change from 0 to 128
[   90.388081][ T5942] netlink: 52 bytes leftover after parsing attributes in process `syz.6.666'.
[   90.486100][ T5954] netlink: 'syz.6.667': attribute type 12 has an invalid length.
[   90.584973][ T5961] loop6: detected capacity change from 0 to 1024
[   90.652477][ T5961] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.804243][ T5970] netlink: 12 bytes leftover after parsing attributes in process `syz.6.668'.
[   90.923987][ T5977] futex_wake_op: syz.4.663 tries to shift op by -1; fix this program
[   91.076159][ T5980] loop0: detected capacity change from 0 to 2048
[   91.118419][ T5980] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.149778][ T5980] futex_wake_op: syz.0.675 tries to shift op by -1; fix this program
[   91.921883][ T5994] loop4: detected capacity change from 0 to 128
[   91.994814][ T5994] netlink: 52 bytes leftover after parsing attributes in process `syz.4.678'.
[   92.033285][ T6000] loop6: detected capacity change from 0 to 1024
[   92.291193][ T6025] netlink: 12 bytes leftover after parsing attributes in process `syz.1.685'.
[   92.389483][ T6032] futex_wake_op: syz.0.688 tries to shift op by -1; fix this program
[   92.878361][ T6041] futex_wake_op: syz.1.692 tries to shift op by -1; fix this program
[   93.493817][ T6048] loop0: detected capacity change from 0 to 128
[   93.537712][ T6050] loop6: detected capacity change from 0 to 2048
[   93.584885][ T6050] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.586667][ T6056] netlink: 52 bytes leftover after parsing attributes in process `syz.0.694'.
[   93.627963][ T6050] futex_wake_op: syz.6.695 tries to shift op by -1; fix this program
[   93.909307][ T6067] loop0: detected capacity change from 0 to 1024
[   94.082892][ T6082] netlink: 12 bytes leftover after parsing attributes in process `syz.1.702'.
[   94.366866][ T6092] futex_wake_op: syz.4.704 tries to shift op by -1; fix this program
[   95.070994][ T6097] loop6: detected capacity change from 0 to 128
[   95.140314][ T6097] netlink: 52 bytes leftover after parsing attributes in process `syz.6.706'.
[   95.283486][ T6114] loop0: detected capacity change from 0 to 1024
[   95.292410][   T29] kauditd_printk_skb: 276 callbacks suppressed
[   95.292426][   T29] audit: type=1326 audit(1748590896.536:3624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.322491][   T29] audit: type=1326 audit(1748590896.536:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.395625][   T29] audit: type=1326 audit(1748590896.536:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.419433][   T29] audit: type=1326 audit(1748590896.536:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.443054][   T29] audit: type=1326 audit(1748590896.536:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.466594][   T29] audit: type=1326 audit(1748590896.536:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.490033][   T29] audit: type=1326 audit(1748590896.536:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.514051][   T29] audit: type=1326 audit(1748590896.536:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.539117][   T29] audit: type=1326 audit(1748590896.536:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.562449][   T29] audit: type=1326 audit(1748590896.536:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6106 comm="syz.6.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad250ce969 code=0x7ffc0000
[   95.794627][ T3323] EXT4-fs unmount: 44 callbacks suppressed
[   95.794645][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.871145][ T6137] futex_wake_op: syz.1.717 tries to shift op by -1; fix this program
[   95.881665][ T6139] loop0: detected capacity change from 0 to 1024
[   95.913644][ T6139] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.942927][ T6139] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.035628][ T6142] netlink: 12 bytes leftover after parsing attributes in process `syz.0.716'.
[   96.154713][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.383201][ T6153] loop0: detected capacity change from 0 to 128
[   96.494454][ T6156] netlink: 52 bytes leftover after parsing attributes in process `syz.0.721'.
[   96.657859][ T6162] futex_wake_op: syz.0.724 tries to shift op by -1; fix this program
[   96.816727][ T6166] loop2: detected capacity change from 0 to 256
[   96.832207][ T6166] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   96.856116][ T6166] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[   96.864727][ T6166] FAT-fs (loop2): Filesystem has been set read-only
[   96.942303][ T6169] loop6: detected capacity change from 0 to 1024
[   96.968051][ T6169] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.104986][ T6183] netlink: 24 bytes leftover after parsing attributes in process `syz.4.729'.
[   97.182475][ T6191] loop4: detected capacity change from 0 to 1024
[   97.200145][ T3007] ==================================================================
[   97.208279][ T3007] BUG: KCSAN: data-race in set_nlink / set_nlink
[   97.214635][ T3007] 
[   97.216982][ T3007] read to 0xffff8881068bc518 of 4 bytes by task 3952 on cpu 0:
[   97.224586][ T3007]  set_nlink+0x29/0xb0
[   97.228684][ T3007]  kernfs_iop_permission+0x1e2/0x220
[   97.234009][ T3007]  inode_permission+0x1ca/0x310
[   97.238887][ T3007]  link_path_walk+0x162/0x900
[   97.243705][ T3007]  path_openat+0x1de/0x2170
[   97.248243][ T3007]  do_filp_open+0x109/0x230
[   97.252776][ T3007]  do_sys_openat2+0xa6/0x110
[   97.257397][ T3007]  __x64_sys_openat+0xf2/0x120
[   97.262196][ T3007]  x64_sys_call+0x1af/0x2fb0
[   97.266811][ T3007]  do_syscall_64+0xd2/0x200
[   97.271340][ T3007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.277332][ T3007] 
[   97.279658][ T3007] write to 0xffff8881068bc518 of 4 bytes by task 3007 on cpu 1:
[   97.287297][ T3007]  set_nlink+0x99/0xb0
[   97.291377][ T3007]  kernfs_iop_permission+0x1e2/0x220
[   97.296680][ T3007]  inode_permission+0x1ca/0x310
[   97.301543][ T3007]  link_path_walk+0x162/0x900
[   97.306228][ T3007]  path_lookupat+0x63/0x2a0
[   97.310741][ T3007]  filename_lookup+0x147/0x340
[   97.315604][ T3007]  vfs_statx+0x9d/0x390
[   97.319777][ T3007]  vfs_fstatat+0x115/0x170
[   97.324216][ T3007]  __se_sys_newfstatat+0x55/0x260
[   97.329355][ T3007]  __x64_sys_newfstatat+0x55/0x70
[   97.334402][ T3007]  x64_sys_call+0x2c22/0x2fb0
[   97.339095][ T3007]  do_syscall_64+0xd2/0x200
[   97.343617][ T3007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.349522][ T3007] 
[   97.351879][ T3007] value changed: 0x00000008 -> 0x00000009
[   97.357614][ T3007] 
[   97.359958][ T3007] Reported by Kernel Concurrency Sanitizer on:
[   97.366116][ T3007] CPU: 1 UID: 0 PID: 3007 Comm: udevd Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(voluntary) 
[   97.377760][ T3007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   97.387821][ T3007] ==================================================================
[   97.419897][ T6191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.436637][ T6191] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.437291][ T4492] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.509420][ T6191] netlink: 12 bytes leftover after parsing attributes in process `syz.4.730'.
[   97.536042][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.