last executing test programs:

2.292336309s ago: executing program 4 (id=707):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000140)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYRES8=0x0], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

2.263789429s ago: executing program 4 (id=709):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
pipe2(&(0x7f0000001cc0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000140), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800849e10d80000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (async)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000040000000c"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='mm_page_alloc\x00', r7}, 0x10) (async)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f00000000c0)={0x0, 0xd18c9b60, &(0x7f0000000080)=[{&(0x7f0000000100)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0) (async)
setsockopt$MRT_PIM(r5, 0x0, 0xcf, &(0x7f0000000000)=0x4, 0x4)

2.23383969s ago: executing program 3 (id=710):
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0xfffffffffffffdc6, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10}]}}]}, 0xa4}}, 0x0)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r3, 0x0, 0x0, 0xfe44, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
rmdir(0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000b, 0x5d031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.160067411s ago: executing program 3 (id=712):
syz_emit_ethernet(0x4e, &(0x7f00000002c0)={@multicast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f4adf7", 0x18, 0x2c, 0x0, @dev, @mcast2, {[@hopopts={0x3c}, @fragment={0x33, 0x0, 0xfb, 0x0, 0x0, 0x0, 0x67}], @echo_reply={0x81, 0x0, 0x0, 0x0, 0x3}}}}}}, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = io_uring_setup(0x6b3, &(0x7f0000000000)={0x0, 0xf324, 0x100, 0xfffffefe, 0xb9})
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000300)={&(0x7f0000002000)={[{0x0, 0x0, 0x2}, {0x0}, {0x0, 0x0, 0x3}, {0x0}]}, 0x4, 0x1}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f00000075c0)={0x0, 0x0, 0x1}, 0x1)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
r2 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d0000fc13000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000000000000000000000000200000008000380040003800900020073797a30001207144b5bf7f6e7c37a3000000000140000001100010000000000000000000300000a00000a00"/92], 0x5c}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r2, 0x58, &(0x7f00000002c0)}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe0}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x12, 0x0, 0x27)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000003dbd83af9900ccd8d4652696583e0000"], 0x14}}, 0x0)
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x3c, 0x24, 0xf0b, 0x400004, 0x2, {0x0, 0x0, 0x12, r8, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x5e, 0x2, [@TCA_CAKE_FLOW_MODE={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24060804}, 0x4)

2.125337611s ago: executing program 4 (id=715):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
setsockopt$MRT_DEL_VIF(r1, 0x0, 0xcb, &(0x7f0000000040)={0x0, 0x8, 0xf7, 0x2, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000001c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="4000000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000010240000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r6], 0x40}}, 0x4000)

2.055420532s ago: executing program 3 (id=717):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB], 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r2}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
open(&(0x7f0000000240)='./file1\x00', 0x105142, 0x44)
socket(0x80000000000000a, 0x2, 0x0)
socket$inet6(0xa, 0x3, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x400007882, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000180)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000000040000000800000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00 \x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r4}, &(0x7f0000001c00), &(0x7f0000001c40)=r5}, 0x20)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffd000/0x3000)=nil)
r6 = socket$kcm(0x10, 0x2, 0x0)
semget$private(0x0, 0x4000000009, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.621107358s ago: executing program 3 (id=723):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x600000000000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.557931799s ago: executing program 3 (id=726):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r0 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000010007b8a"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0xc, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000280), 0x84, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000200)='kfree_skb\x00', r4}, 0x18)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x74, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, @perf_config_ext={0x400000000000000, 0x1}, 0x115428, 0x1, 0x0, 0x0, 0x5f4d, 0x10000001}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newqdisc={0x54, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x24, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}, [@TCA_NETEM_DELAY_DIST={0x5, 0xd, "85"}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x8080)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)
write$selinux_context(r0, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)

1.378906081s ago: executing program 4 (id=733):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x0, 0x2)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0xe4)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000240)={0x3920e, r1, 0x18, 0x0, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="5400000010000104000000000000000100000000", @ANYRES32=0x0, @ANYBLOB="fff00000000000002c0012800e00010069703667726574617000000018000280140007002001001000000000000000000000000208000a00f0"], 0x54}}, 0x0)

1.219144453s ago: executing program 4 (id=738):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@getqdisc={0x24, 0x26, 0x10, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x1, 0x5}, {0x10, 0xd}, {0x3, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20040000)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x28, 0x0, 0x0, 0xfffff024}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVid:De', 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x18)
r8 = socket$kcm(0x10, 0x2, 0x0)
keyctl$update(0x2, r5, &(0x7f00000004c0)="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", 0xfd)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000140)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)
socket(0x2b, 0x80801, 0x1)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r9}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r10, 0x400, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r11}, 0xc)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000340), r0)

1.217944483s ago: executing program 2 (id=739):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f00000015c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sys_enter\x00', r1}, 0x10)
getpgid(0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffff63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$igmp(0x2, 0x3, 0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_pidfd_open(r6, 0x0)
ioctl$EXT4_IOC_MIGRATE(r7, 0xff0a)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x66, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000}, 0x194a8, 0x5, 0x0, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(0x0, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
r8 = syz_open_procfs(0x0, 0x0)
setsockopt$XDP_UMEM_REG(r8, 0x11b, 0x4, 0x0, 0x0)
munlock(&(0x7f00007fe000/0x800000)=nil, 0x800000)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={0xffffffffffffffff, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000080)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6, &(0x7f0000000140)=[0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r10=>0x0, 0xcd, &(0x7f00000001c0)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0xc9, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0x12, &(0x7f0000000340)=@raw=[@map_idx={0x18, 0x0, 0x5, 0x0, 0x8}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xffffffffffffffff}, @map_fd={0x18, 0x5, 0x1, 0x0, r4}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}], &(0x7f0000000200)='syzkaller\x00', 0x2, 0xd1, &(0x7f0000000640)=""/209, 0x41000, 0x1, '\x00', 0x0, @fallback=0xf, r8, 0x8, &(0x7f0000000280)={0xa, 0x1}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x5, 0xcfdf, 0x4fd}, 0x10, r10, 0xffffffffffffffff, 0x7, &(0x7f00000004c0)=[r4, r4, r8], &(0x7f0000000740)=[{0x0, 0x1, 0x0, 0x5}, {0x2, 0x4, 0xa, 0x5}, {0x4, 0x2, 0x0, 0x5}, {0x5, 0x5, 0x6, 0x4}, {0x1, 0x4, 0x6, 0x5}, {0x4, 0x4, 0x8, 0x3}, {0x2, 0x2, 0x0, 0x6}], 0x10, 0x10001, @void, @value}, 0x94)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x4, 0x3f, 0x3202, @vifc_lcl_addr=@private=0xa010102, @remote}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000030000000000000000000000850000008700000085000000050000009500000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x46)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r11, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9557ed387dbe8abc89b6d5bec", 0x0, 0xa71f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, &(0x7f0000000040)={0x1, 0x8, 0x5, 0x5, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, 0x10)

1.161620494s ago: executing program 1 (id=740):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r4}, 0x10)
write$selinux_user(r2, &(0x7f0000000080)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t r'], 0x27)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x38, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xac}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

1.099421865s ago: executing program 4 (id=741):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = memfd_create(&(0x7f0000000f80)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'e\xe5\x8f\xf8\xd2\x1c\xc0\xfb\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6\x03\x00\x00\x00A\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\xfe@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xf2\xde\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\x91\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7yn\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xefCGa\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcas\xf4D\xd4\xd0s\r3\xcb\x9a&\xdf+(\xc9S\x9eL5\x84\xb1\x90pN\xe7/\r\b\x9a\xf13Q\xf9\xdf\x7fX\xa0\xafK\xefh\xbfOv\x9bh\xb3\xc0\xf5\x80\xba\"@\'\x02\xafi\xeaE\xa6a6F\xde\xd4\xfa\x84\xe4+A\xb7\xa2\x8f\xc9\xee|xxn\xefw\x93]%\xd0\x19\x132\x86\xabn\xfe\x91\xb6Cl\xcf\x04\x1cq\xc1\x1d~\x8d\x01\x83\x93_\x83\x8a`v\xb0K,|S\xe4\xba\xb1\f\xc8`\xa6s\xad\x11\xd4wG\x80u\x87u\xff\x87\xee\xf2e\x14]j\xd8A\xd8%\xfc\x1f\xed\xb3~\x1aj\t', 0x2)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x940a, 0x1000007})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000000206050000000000fffe0000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x8d0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x4008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0xbe, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r3, 0x0, 0x20044084)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, 0x0, 0x20000014)

837.128208ms ago: executing program 2 (id=742):
syz_read_part_table(0x1041, &(0x7f0000000000)="$eJzszrENgWEYBOD7Efkq+UagNsWrVassYQSJWTQmsY1CpZCIXkUh+fM89V3uwp/Nvmptn4d7clyucqpJ0pKh5fqonvNmnUVP9u9YTXOreYb+eWd3+fU9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIzBKwAA//9Jhgpz") (fail_nth: 5)

836.728818ms ago: executing program 1 (id=743):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)

785.886849ms ago: executing program 2 (id=744):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0xfffffffe)
r4 = eventfd2(0x9, 0x80800)
io_setup(0x6, &(0x7f0000000140)=<r5=>0x0)
io_submit(r5, 0x2, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r3, 0x0, 0x0, 0x0, 0x0, 0x3, r4}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
r6 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000001540)={&(0x7f0000000580)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x80, 0x0}, 0x0)
eventfd(0x6)

758.398109ms ago: executing program 1 (id=745):
shutdown(0xffffffffffffffff, 0x1)
setsockopt(0xffffffffffffffff, 0x84, 0x7f, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
sendmsg$NFT_BATCH(r1, 0x0, 0x8800)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r2, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000580)=ANY=[@ANYBLOB="6802000000050104000000000000000000000000540201"], 0x268}}, 0x28)

688.49464ms ago: executing program 1 (id=746):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x654a, 0x4)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x408, @dev={0xac, 0x14, 0x14, 0x44}}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$sock_int(r0, 0x1, 0xc, &(0x7f0000000000)=0x1, 0x4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x2000000)

684.96366ms ago: executing program 3 (id=747):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0e000000047f0000046918000500000000000010", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
epoll_create(0x4)
r1 = semget$private(0x0, 0x1, 0x4ac0c2fc29e33682)
semtimedop(r1, &(0x7f0000000100)=[{0x0, 0x1000, 0x1000}], 0x1, 0x0)
lstat(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000580))
getpriority(0x2, 0xffffffffffffffff)
fstat(r0, &(0x7f0000000280))
fstat(r0, &(0x7f0000000300))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1600000000000000040000000300000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="120000000800000004000000b47c000000000000", @ANYRES32, @ANYBLOB="00006218f799c0c6b20000000000000000001400", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x1, './file1\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000380)={@ipv4={""/10, ""/2, @dev}, <r8=>0x0}, &(0x7f00000004c0)=0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x3, &(0x7f0000000040)=ANY=[], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', r8, @fallback=0x1, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
socket(0xa, 0x3, 0x3a)

642.944701ms ago: executing program 0 (id=748):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb8, 0x19, 0x1, 0x70bd26, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffffffffffb}}}, 0xb8}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x10000, 0x0, 0x0, 0x0, 0x2, 0x1}})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'syz_tun\x00'})
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0x26, &(0x7f0000000100)=0x9, 0x4)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCFLSH(r5, 0x5608, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x18, 0x140d, 0x0, 0x70bd27, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0x20004080}, 0x200c09c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x18, &(0x7f00000000c0)=[@in6={0xa, 0x4e20, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000150001000000000000000000e00000020000000000000000f7ffffff0000000000000000000000000000000100000000000000000a00100000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000001000000000000000000000000000000000000000000000000000000000000000300000000000000ffffffdf000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000b56b6e000000000000000000"], 0xb8}}, 0x20000100)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="b700000081000000bfa30000000000000703000003feffff720af0fff8ffffff71a4f0ff0000000072030000000000001d400500000000004704000001ed000072030200000000001d440000000000006b0a00fe000000007303000000000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f1ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c107571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d1abf3cb17b40ac9b10968f38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130bc01a2d61f3b39c64307f9c82b2807c9ff4a269841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67a41b9e320146ee9f566a28"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

529.251253ms ago: executing program 2 (id=749):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000001000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)

344.488845ms ago: executing program 0 (id=750):
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0xffffffff, 0x0, 0x10040, 0x8f})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x29, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

319.162075ms ago: executing program 0 (id=751):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x18) (async, rerun: 64)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50) (async, rerun: 64)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x2}, 0x8)
sendto$inet6(r3, &(0x7f0000000080)="be", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
r4 = syz_clone(0x0, &(0x7f0000000880)="df811201a8c05b6a8cc18672ec3ea8a6ce4403bfeeb33689ec786bae9b507b335786d4ce3ff5651557953bba33da703bd53a19a620baa03a5d3d78d361fe2ce3d246303852ac8cc620f2ad1323e5913e8fe53a1737ddc8ab3d4b51ac91166cceeb20145513814b884e822ba5ff0e7b04101b4c6334bbce0f5beb5efc7fd010bb98c608538f1bbf7d8df324fd61bbc1656068b408435b530c0ea0d6f0d455594d3dd32cc1cef3de62194d2b733eb98721874e5389746672660a3bec057c0ceaa69c05b53bb3897a268f893973bc9803b7127c62454aae427c9f98c1ddde9075e6732c2da5a23f5f171a8876a94f", 0xed, &(0x7f00000004c0), &(0x7f0000000780), &(0x7f0000000a00)="868adb690c0cd9215d89789ed7e6ae211edc09de7d38771baa07635a379669ed94dddb28bd753b7930672c9f24c5f644903237fa6a59e86ecfc7907d32060947497b728bc0d1dd6b13eb64a17858ea0fb6c1f8a0c5843324d5e4c7a58e690feef21a590dfe9b414c3f7a7dc4e3e0fa5b1e044db672918a7c50cf38e18a290183dc76e3814d052fc92e930d7eb4d2106e65bcc1c42feb53170507d47f5764b68af46e3bd657")
fstat(r1, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = socket(0x10, 0x3, 0xfffffffe)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r7)
r8 = getegid()
getgroups(0x2, &(0x7f0000000000)=[r7, r8]) (async)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000b00)="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", 0x112}, {&(0x7f00000005c0)="d234f901151755ebb830e29e6fda2241904c5f92629cea2bf4f09bc7be349fd439dc6e30d5feeea81aec6f2c2dcf8ae2dc446c7fd3f531340db7bd927e2291eaa007468cdf22b4639f1fab930662a5d03e83b9db406d3af0fca7aa7492b9d4fd9fdd9e530905e88b6977679afaba983ea305c6586df7cd481b04eb039e76aed60d0b3c9db73445862365acde136a35a969681695adf0c53787c7cd62ef9fb3b35dd235ccd7758cc5bdd13879539f8723fb95387c706c6fa7f86139af1b47e20bbffc882c115fe9b8b1a9e3871e5b37f87993f86736b9e4b2a20f4e2468426784290c4b7c049fc829c66ecbc781950c8114c06075ba58", 0xf6}, {&(0x7f00000006c0)="652b9b71add4d3940e4f5c75b0e4cbf6b07f768834057d8d84e01c4347b8fca54befdbe0e2d69603578d79e75e2a71d96dd7946509583952e8c268931af8e3d5c6a8b26986de3aa0a42dbd67b97d2c7fba51333544e15581257a71e487046867cce78771a983ef0eddcb5ee56eadba76f7ca12413675118f8d38ab323cd02cb05556cdb24f7a5affcc9fd8979059", 0x8e}], 0x3, &(0x7f0000000980)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, r7}}}], 0x20, 0x4000010}, 0xd4)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10, 0x0, 0x4}, 0x18)
sendmsg$nl_route_sched(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x2, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {0x0, 0x7}, {0x8}, {}, {0x6, 0xfe}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x0, 0x0, 0x0, 0xfffffff7}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x24000004}, 0x0) (async, rerun: 64)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='damon_aggregated\x00', r11}, 0x18)
shutdown(r3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r12 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_mreqn(r12, 0x0, 0x24, &(0x7f0000000300)={@local, @multicast1}, 0xc) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000008, &(0x7f00000003c0), 0x0, 0x52e, &(0x7f0000000f00)="$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")

287.333985ms ago: executing program 2 (id=752):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba350000003b0000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b8002944291189"], 0xfdef)

100.004288ms ago: executing program 0 (id=753):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='cgroup\x00')
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), 0xffffffffffffffff, r1}}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000002480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

98.052378ms ago: executing program 1 (id=754):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000002900000007"], 0x30}}], 0x1, 0x4008804)

12.368959ms ago: executing program 2 (id=755):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0], 0x48)
r1 = socket$inet6(0xa, 0x3, 0xff)
r2 = dup2(r1, r1)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
sendmmsg$unix(r2, &(0x7f0000002480)=[{{&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, 0x0, 0x0, &(0x7f0000000600)=[@rights={{0x10}}, @cred={{0x1c}}], 0x30, 0x4004801}}], 0x1, 0x4008890)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x10103, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
pipe2(&(0x7f0000001cc0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xddb<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}})

10.807779ms ago: executing program 0 (id=756):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000900)=@mangle={'mangle\x00', 0x44, 0x6, 0x510, 0x3a8, 0x210, 0x210, 0x0, 0x138, 0x478, 0x478, 0x478, 0x478, 0x478, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x1100, {}, [@common=@unspec=@connlimit={{0x40}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@loopback, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x570)

3.646729ms ago: executing program 0 (id=757):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="58010000100001000000000000000000fe8000000000000000000000000000bbff01000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x158}}, 0x0)

0s ago: executing program 1 (id=758):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af00000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000161000/0x4000)=nil, 0x4000, 0x10)
lstat(0x0, &(0x7f0000000b40))
getresgid(&(0x7f0000000c00), &(0x7f0000000c40), 0x0)
setgroups(0x0, 0x0)
readv(r0, 0x0, 0x0)
socket$caif_seqpacket(0x25, 0x5, 0x5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000001010000fc7f0000cc00000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)

kernel console output (not intermixed with test programs):

4] wireguard0: entered allmulticast mode
[   38.004550][ T3672] netlink: 'syz.4.76': attribute type 21 has an invalid length.
[   38.027930][ T3674] netlink: 'syz.2.78': attribute type 10 has an invalid length.
[   38.079692][ T3668] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.111454][ T3678] netlink: 'syz.1.80': attribute type 10 has an invalid length.
[   38.134560][ T3674] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[   38.151578][ T3678] ipvlan0: entered allmulticast mode
[   38.156889][ T3678] veth0_vlan: entered allmulticast mode
[   38.169168][ T3678] team0: Device ipvlan0 failed to register rx_handler
[   38.268681][ T3668] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.353386][ T3668] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.559525][ T3691] loop4: detected capacity change from 0 to 512
[   38.574214][ T3668] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.578240][   T29] kauditd_printk_skb: 272 callbacks suppressed
[   38.578275][   T29] audit: type=1400 audit(1745785763.836:385): avc:  denied  { setopt } for  pid=3690 comm="syz.4.85" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   38.594679][ T3693] loop1: detected capacity change from 0 to 512
[   38.619150][ T3691] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   38.628344][ T3691] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   38.638234][ T3691] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   38.647746][ T3691] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   38.656669][ T3691] System zones: 0-2, 18-18, 34-34
[   38.667491][ T3693] EXT4-fs (loop1): 1 orphan inode deleted
[   38.680152][  T337] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   38.689976][  T337] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   38.705226][ T3668] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.714701][ T3693] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.729605][ T3691] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   38.733095][ T3693] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.746967][ T3691] EXT4-fs (loop4): 1 truncate cleaned up
[   38.760977][ T3691] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.778332][   T29] audit: type=1400 audit(1745785764.076:386): avc:  denied  { write } for  pid=3692 comm="syz.1.86" name="cgroup.controllers" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.803367][ T3668] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.814343][   T29] audit: type=1400 audit(1745785764.106:387): avc:  denied  { read write } for  pid=3699 comm="syz.3.87" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   38.837458][   T29] audit: type=1400 audit(1745785764.106:388): avc:  denied  { open } for  pid=3699 comm="syz.3.87" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   38.844341][ T3668] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.860381][   T29] audit: type=1400 audit(1745785764.106:389): avc:  denied  { ioctl } for  pid=3699 comm="syz.3.87" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   38.897068][   T29] audit: type=1400 audit(1745785764.146:390): avc:  denied  { setattr } for  pid=3690 comm="syz.4.85" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   38.903152][ T3691] dccp_invalid_packet: P.Data Offset(0) too small
[   38.919223][   T29] audit: type=1326 audit(1745785764.196:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3699 comm="syz.3.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   38.948986][   T29] audit: type=1326 audit(1745785764.196:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3699 comm="syz.3.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   38.972327][   T29] audit: type=1326 audit(1745785764.196:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3699 comm="syz.3.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   38.997211][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.045026][ T3668] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.089376][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.114910][ T3710] loop1: detected capacity change from 0 to 128
[   39.229293][ T3724] loop3: detected capacity change from 0 to 128
[   39.302231][ T3730] loop1: detected capacity change from 0 to 512
[   39.323201][ T3730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.343956][ T3730] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.451051][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.554452][ T3747] loop0: detected capacity change from 0 to 512
[   39.633187][ T3747] EXT4-fs (loop0): 1 orphan inode deleted
[   39.666055][ T3747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.692496][ T3751] Invalid ELF header type: 2 != 1
[   39.711584][ T3753] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   39.745094][ T3747] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   39.756565][ T3753] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   39.773917][ T1769] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1
[   39.813408][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.821175][ T3751] netlink: 'syz.3.108': attribute type 4 has an invalid length.
[   39.899693][ T3762] loop0: detected capacity change from 0 to 128
[   39.941877][ T3388] lo speed is unknown, defaulting to 1000
[   39.947908][ T3388] syz2: Port: 1 Link DOWN
[   40.299100][ T3814] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   40.305661][ T3814] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   40.313216][ T3807] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(5)
[   40.319732][ T3807] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   40.327449][ T3807] vhci_hcd vhci_hcd.0: Device attached
[   40.327468][ T3814] vhci_hcd vhci_hcd.0: Device attached
[   40.337685][ T3815] vhci_hcd: unknown pdu 2
[   40.343856][ T2094] vhci_hcd: stop threads
[   40.348170][ T2094] vhci_hcd: release socket
[   40.352745][ T2094] vhci_hcd: disconnect device
[   40.369469][ T3816] vhci_hcd: connection closed
[   40.370788][ T2094] vhci_hcd: stop threads
[   40.379765][ T2094] vhci_hcd: release socket
[   40.384249][ T2094] vhci_hcd: disconnect device
[   40.412748][ T3825] loop3: detected capacity change from 0 to 2048
[   40.432034][ T3825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.448575][ T3825] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.517978][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.546743][ T3847] FAULT_INJECTION: forcing a failure.
[   40.546743][ T3847] name failslab, interval 1, probability 0, space 0, times 0
[   40.559559][ T3847] CPU: 0 UID: 0 PID: 3847 Comm: syz.2.139 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   40.559587][ T3847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   40.559600][ T3847] Call Trace:
[   40.559606][ T3847]  <TASK>
[   40.559613][ T3847]  __dump_stack+0x1d/0x30
[   40.559638][ T3847]  dump_stack_lvl+0xe8/0x140
[   40.559661][ T3847]  dump_stack+0x15/0x1b
[   40.559681][ T3847]  should_fail_ex+0x265/0x280
[   40.559720][ T3847]  should_failslab+0x8c/0xb0
[   40.559756][ T3847]  kmem_cache_alloc_noprof+0x50/0x310
[   40.559797][ T3847]  ? mas_alloc_nodes+0x265/0x520
[   40.559836][ T3847]  mas_alloc_nodes+0x265/0x520
[   40.559871][ T3847]  mas_preallocate+0x456/0x680
[   40.559901][ T3847]  vma_link+0x8b/0x220
[   40.559941][ T3847]  insert_vm_struct+0x177/0x210
[   40.559979][ T3847]  alloc_bprm+0x42c/0x660
[   40.560008][ T3847]  do_execveat_common+0x12e/0x750
[   40.560043][ T3847]  __x64_sys_execve+0x5c/0x70
[   40.560071][ T3847]  x64_sys_call+0x13ab/0x2fb0
[   40.560096][ T3847]  do_syscall_64+0xd0/0x1a0
[   40.560118][ T3847]  ? clear_bhb_loop+0x25/0x80
[   40.560138][ T3847]  ? clear_bhb_loop+0x25/0x80
[   40.560157][ T3847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.560180][ T3847] RIP: 0033:0x7f7decdae969
[   40.560198][ T3847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.560218][ T3847] RSP: 002b:00007f7deb417038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   40.560240][ T3847] RAX: ffffffffffffffda RBX: 00007f7decfd5fa0 RCX: 00007f7decdae969
[   40.560255][ T3847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[   40.560270][ T3847] RBP: 00007f7deb417090 R08: 0000000000000000 R09: 0000000000000000
[   40.560285][ T3847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.560299][ T3847] R13: 0000000000000000 R14: 00007f7decfd5fa0 R15: 00007ffd8e518588
[   40.560321][ T3847]  </TASK>
[   40.561535][ T3849] __nla_validate_parse: 9 callbacks suppressed
[   40.561551][ T3849] netlink: 232 bytes leftover after parsing attributes in process `syz.3.138'.
[   40.771170][ T3854] netlink: 12 bytes leftover after parsing attributes in process `syz.3.138'.
[   40.813247][ T3854] netlink: 12 bytes leftover after parsing attributes in process `syz.3.138'.
[   40.852363][ T3875] loop4: detected capacity change from 0 to 512
[   40.865147][ T3854] netlink: 12 bytes leftover after parsing attributes in process `syz.3.138'.
[   40.901110][ T3875] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   40.955062][ T3875] EXT4-fs (loop4): invalid journal inode
[   40.962479][ T3881] FAULT_INJECTION: forcing a failure.
[   40.962479][ T3881] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   40.975727][ T3881] CPU: 1 UID: 0 PID: 3881 Comm: syz.3.149 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   40.975833][ T3881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   40.975845][ T3881] Call Trace:
[   40.975852][ T3881]  <TASK>
[   40.975859][ T3881]  __dump_stack+0x1d/0x30
[   40.975882][ T3881]  dump_stack_lvl+0xe8/0x140
[   40.975905][ T3881]  dump_stack+0x15/0x1b
[   40.975923][ T3881]  should_fail_ex+0x265/0x280
[   40.975957][ T3881]  should_fail+0xb/0x20
[   40.976012][ T3881]  should_fail_usercopy+0x1a/0x20
[   40.976131][ T3881]  _copy_from_user+0x1c/0xb0
[   40.976150][ T3881]  simple_transaction_get+0xe2/0x130
[   40.976172][ T3881]  selinux_transaction_write+0x9d/0x110
[   40.976215][ T3881]  ? __pfx_selinux_transaction_write+0x10/0x10
[   40.976359][ T3881]  vfs_write+0x266/0x8d0
[   40.976386][ T3881]  ? __rcu_read_unlock+0x4f/0x70
[   40.976411][ T3881]  ? __fget_files+0x184/0x1c0
[   40.976441][ T3881]  ksys_write+0xda/0x1a0
[   40.976520][ T3881]  __x64_sys_write+0x40/0x50
[   40.976551][ T3881]  x64_sys_call+0x2cdd/0x2fb0
[   40.976574][ T3881]  do_syscall_64+0xd0/0x1a0
[   40.976631][ T3881]  ? clear_bhb_loop+0x25/0x80
[   40.976650][ T3881]  ? clear_bhb_loop+0x25/0x80
[   40.976732][ T3881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.976797][ T3881] RIP: 0033:0x7f9746ece969
[   40.976820][ T3881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.976841][ T3881] RSP: 002b:00007f9745537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   40.976862][ T3881] RAX: ffffffffffffffda RBX: 00007f97470f5fa0 RCX: 00007f9746ece969
[   40.976876][ T3881] RDX: 000000000000001d RSI: 0000200000000340 RDI: 0000000000000004
[   40.976891][ T3881] RBP: 00007f9745537090 R08: 0000000000000000 R09: 0000000000000000
[   40.976949][ T3881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.976963][ T3881] R13: 0000000000000000 R14: 00007f97470f5fa0 R15: 00007ffe0bda1298
[   40.977042][ T3881]  </TASK>
[   40.978967][ T3875] EXT4-fs (loop4): can't get journal size
[   41.197007][ T3875] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[   41.219776][ T3887] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   41.246226][ T3875] System zones: 1-12, 13-13
[   41.254210][ T3875] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.144: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   41.277000][ T3875] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.144: couldn't read orphan inode 15 (err -117)
[   41.277359][ T3889] loop3: detected capacity change from 0 to 512
[   41.303097][ T3875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.332171][ T3895] netlink: 4 bytes leftover after parsing attributes in process `syz.1.153'.
[   41.373046][ T3889] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   41.390880][ T3898] capability: warning: `syz.0.155' uses 32-bit capabilities (legacy support in use)
[   41.401483][ T3889] EXT4-fs (loop3): mount failed
[   41.421294][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.465356][ T3905] FAULT_INJECTION: forcing a failure.
[   41.465356][ T3905] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   41.478521][ T3905] CPU: 1 UID: 0 PID: 3905 Comm: syz.3.158 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   41.478553][ T3905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   41.478569][ T3905] Call Trace:
[   41.478577][ T3905]  <TASK>
[   41.478586][ T3905]  __dump_stack+0x1d/0x30
[   41.478611][ T3905]  dump_stack_lvl+0xe8/0x140
[   41.478707][ T3905]  dump_stack+0x15/0x1b
[   41.478726][ T3905]  should_fail_ex+0x265/0x280
[   41.478765][ T3905]  should_fail+0xb/0x20
[   41.478803][ T3905]  should_fail_usercopy+0x1a/0x20
[   41.478876][ T3905]  _copy_from_user+0x1c/0xb0
[   41.478897][ T3905]  ___sys_sendmsg+0xc1/0x1d0
[   41.478931][ T3905]  __x64_sys_sendmsg+0xd4/0x160
[   41.478954][ T3905]  x64_sys_call+0x2999/0x2fb0
[   41.478975][ T3905]  do_syscall_64+0xd0/0x1a0
[   41.479018][ T3905]  ? clear_bhb_loop+0x25/0x80
[   41.479040][ T3905]  ? clear_bhb_loop+0x25/0x80
[   41.479112][ T3905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.479134][ T3905] RIP: 0033:0x7f9746ece969
[   41.479198][ T3905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.479217][ T3905] RSP: 002b:00007f9745537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.479236][ T3905] RAX: ffffffffffffffda RBX: 00007f97470f5fa0 RCX: 00007f9746ece969
[   41.479248][ T3905] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[   41.479260][ T3905] RBP: 00007f9745537090 R08: 0000000000000000 R09: 0000000000000000
[   41.479272][ T3905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.479284][ T3905] R13: 0000000000000000 R14: 00007f97470f5fa0 R15: 00007ffe0bda1298
[   41.479303][ T3905]  </TASK>
[   41.655733][ T3910] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[   41.655733][ T3910]    program syz.1.156 not setting count and/or reply_len properly
[   41.673195][ T3909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.159'.
[   41.745076][ T3920] netlink: 4 bytes leftover after parsing attributes in process `syz.0.162'.
[   41.762653][ T3910] netlink: '+}[@': attribute type 10 has an invalid length.
[   41.768897][ T3925] loop2: detected capacity change from 0 to 1024
[   41.774337][ T3910] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.778527][ T3925] EXT4-fs: Ignoring removed orlov option
[   41.789705][ T3910] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   41.818355][ T3925] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.832362][ T3920] bond0: (slave bond_slave_0): Releasing backup interface
[   41.914084][ T3935] loop0: detected capacity change from 0 to 512
[   41.923934][ T3935] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   41.942249][ T3935] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.166: Failed to acquire dquot type 0
[   41.945499][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.954022][ T3935] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   41.979042][ T3935] EXT4-fs (loop0): 1 truncate cleaned up
[   41.985171][ T3935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.011665][ T3943] loop2: detected capacity change from 0 to 512
[   42.026248][ T3941] netlink: 96 bytes leftover after parsing attributes in process `syz.0.166'.
[   42.035389][ T3935] netlink: 96 bytes leftover after parsing attributes in process `syz.0.166'.
[   42.050897][ T3943] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.064024][ T3943] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.115605][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.136445][ T3954] netlink: 4 bytes leftover after parsing attributes in process `syz.0.169'.
[   42.153889][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.174047][ T3954] 9pnet_fd: Insufficient options for proto=fd
[   42.284352][ T3965] loop2: detected capacity change from 0 to 8192
[   42.300032][ T3973] netlink: 'syz.0.177': attribute type 1 has an invalid length.
[   42.359319][ T3973] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   42.368267][ T3973] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   42.377136][ T3973] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   42.386072][ T3973] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   42.396308][ T3977] loop1: detected capacity change from 0 to 8192
[   42.409096][ T3973] bond1: (slave geneve2): making interface the new active one
[   42.418377][ T3973] bond1: (slave geneve2): Enslaving as an active interface with an up link
[   42.504751][ T3988] lo speed is unknown, defaulting to 1000
[   42.528866][ T3986] loop3: detected capacity change from 0 to 1024
[   42.621809][ T4000] loop4: detected capacity change from 0 to 512
[   42.622606][ T4001] loop1: detected capacity change from 0 to 128
[   42.651241][ T3988] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[   42.659657][ T4004] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   42.670535][ T3988] usb usb7: usbfs: process 3988 (syz.0.184) did not claim interface 0 before use
[   42.696264][ T4000] EXT4-fs (loop4): 1 orphan inode deleted
[   42.703827][ T4000] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.716849][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   42.757146][ T4000] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.786721][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.809755][   T29] kauditd_printk_skb: 429 callbacks suppressed
[   77.809772][   T29] audit: type=1326 audit(1745785803.106:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.854912][ T4016] __nla_validate_parse: 2 callbacks suppressed
[   77.854928][ T4016] netlink: 8 bytes leftover after parsing attributes in process `syz.0.193'.
[   77.871928][   T29] audit: type=1326 audit(1745785803.146:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.895280][   T29] audit: type=1326 audit(1745785803.146:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.918470][   T29] audit: type=1326 audit(1745785803.146:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.941780][   T29] audit: type=1326 audit(1745785803.146:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.942055][ T4019] loop3: detected capacity change from 0 to 128
[   77.965017][   T29] audit: type=1326 audit(1745785803.146:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.965131][   T29] audit: type=1326 audit(1745785803.146:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.975681][ T4022] netlink: 'syz.4.197': attribute type 1 has an invalid length.
[   77.994652][   T29] audit: type=1326 audit(1745785803.146:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.994689][   T29] audit: type=1326 audit(1745785803.146:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   77.994741][   T29] audit: type=1326 audit(1745785803.146:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4018 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   78.026169][ T4019] EXT4-fs: Ignoring removed oldalloc option
[   78.048998][ T4022] netlink: 4 bytes leftover after parsing attributes in process `syz.4.197'.
[   78.110239][ T4019] EXT4-fs: Ignoring removed bh option
[   78.113340][ T4016] SELinux:  Context � is not valid (left unmapped).
[   78.136147][ T4019] EXT4-fs (loop3): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[   78.186253][ T4028] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4028 comm=syz.0.193
[   78.242161][ T4034] loop0: detected capacity change from 0 to 128
[   78.254930][ T4019] lo speed is unknown, defaulting to 1000
[   78.460439][ T4057] netlink: 'syz.4.207': attribute type 7 has an invalid length.
[   78.468170][ T4057] netlink: 8 bytes leftover after parsing attributes in process `syz.4.207'.
[   78.488108][ T4055] lo speed is unknown, defaulting to 1000
[   78.491918][ T4060] pim6reg: entered allmulticast mode
[   78.516658][ T4060] pim6reg: left allmulticast mode
[   78.598490][ T4066] loop3: detected capacity change from 0 to 1024
[   78.620700][ T4066] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   78.633041][ T4066] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   78.654842][ T4066] JBD2: no valid journal superblock found
[   78.671569][ T4066] EXT4-fs (loop3): Could not load journal inode
[   78.702780][ T4075] netlink: 'syz.2.214': attribute type 58 has an invalid length.
[   78.710716][ T4075] netlink: 20 bytes leftover after parsing attributes in process `syz.2.214'.
[   78.837249][ T4085] FAULT_INJECTION: forcing a failure.
[   78.837249][ T4085] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.850492][ T4085] CPU: 1 UID: 0 PID: 4085 Comm: syz.2.216 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   78.850520][ T4085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   78.850532][ T4085] Call Trace:
[   78.850538][ T4085]  <TASK>
[   78.850546][ T4085]  __dump_stack+0x1d/0x30
[   78.850612][ T4085]  dump_stack_lvl+0xe8/0x140
[   78.850631][ T4085]  dump_stack+0x15/0x1b
[   78.850647][ T4085]  should_fail_ex+0x265/0x280
[   78.850679][ T4085]  should_fail+0xb/0x20
[   78.850726][ T4085]  should_fail_usercopy+0x1a/0x20
[   78.850744][ T4085]  copy_page_from_iter_atomic+0x21b/0xff0
[   78.850778][ T4085]  ? shmem_write_begin+0xa8/0x190
[   78.850803][ T4085]  ? shmem_write_begin+0xe1/0x190
[   78.850894][ T4085]  generic_perform_write+0x2c2/0x490
[   78.850929][ T4085]  shmem_file_write_iter+0xc5/0xf0
[   78.850960][ T4085]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   78.851012][ T4085]  vfs_write+0x49d/0x8d0
[   78.851042][ T4085]  ksys_write+0xda/0x1a0
[   78.851067][ T4085]  __x64_sys_write+0x40/0x50
[   78.851141][ T4085]  x64_sys_call+0x2cdd/0x2fb0
[   78.851162][ T4085]  do_syscall_64+0xd0/0x1a0
[   78.851183][ T4085]  ? clear_bhb_loop+0x25/0x80
[   78.851206][ T4085]  ? clear_bhb_loop+0x25/0x80
[   78.851311][ T4085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.851332][ T4085] RIP: 0033:0x7f7decdad41f
[   78.851347][ T4085] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   78.851364][ T4085] RSP: 002b:00007f7deb3f5df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   78.851434][ T4085] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f7decdad41f
[   78.851446][ T4085] RDX: 0000000000040000 RSI: 00007f7de2fd6000 RDI: 0000000000000006
[   78.851461][ T4085] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000004b0
[   78.851474][ T4085] R10: 0000200000000982 R11: 0000000000000293 R12: 0000000000000006
[   78.851486][ T4085] R13: 00007f7deb3f5ef0 R14: 00007f7deb3f5eb0 R15: 00007f7de2fd6000
[   78.851504][ T4085]  </TASK>
[   78.854660][ T4083] loop3: detected capacity change from 0 to 512
[   78.901527][ T4085] loop2: detected capacity change from 0 to 512
[   78.936344][ T4083] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   79.084095][ T4085] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   79.093043][ T4083] EXT4-fs (loop3): 1 truncate cleaned up
[   79.099297][ T4083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.112107][ T4085] EXT4-fs (loop2): invalid journal inode
[   79.117951][ T4085] EXT4-fs (loop2): can't get journal size
[   79.130136][ T4085] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[   79.170504][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.181632][ T4085] System zones: 1-12, 13-13
[   79.189623][ T4085] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.216: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   79.213447][ T4085] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.216: couldn't read orphan inode 15 (err -117)
[   79.234221][ T4085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.322164][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.378539][ T4106] loop0: detected capacity change from 0 to 512
[   79.404080][ T4102] netlink: '+}[@': attribute type 10 has an invalid length.
[   79.417585][ T4106] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.440018][ T4106] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.508588][ T4118] netlink: 24 bytes leftover after parsing attributes in process `syz.4.229'.
[   79.576687][ T4126] FAULT_INJECTION: forcing a failure.
[   79.576687][ T4126] name failslab, interval 1, probability 0, space 0, times 0
[   79.577769][ T4127] netlink: 8 bytes leftover after parsing attributes in process `syz.2.231'.
[   79.589349][ T4126] CPU: 0 UID: 0 PID: 4126 Comm: syz.1.230 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   79.589378][ T4126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.589434][ T4126] Call Trace:
[   79.589443][ T4126]  <TASK>
[   79.589453][ T4126]  __dump_stack+0x1d/0x30
[   79.589480][ T4126]  dump_stack_lvl+0xe8/0x140
[   79.589507][ T4126]  dump_stack+0x15/0x1b
[   79.589597][ T4126]  should_fail_ex+0x265/0x280
[   79.589638][ T4126]  should_failslab+0x8c/0xb0
[   79.589741][ T4126]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   79.589769][ T4126]  ? string_to_context_struct+0x2dc/0x2f0
[   79.589857][ T4126]  ? sidtab_sid2str_get+0xa0/0x130
[   79.589895][ T4126]  kmemdup_noprof+0x2b/0x70
[   79.589919][ T4126]  sidtab_sid2str_get+0xa0/0x130
[   79.590081][ T4126]  security_sid_to_context_core+0x1eb/0x2e0
[   79.590119][ T4126]  security_sid_to_context+0x27/0x40
[   79.590162][ T4126]  sel_write_context+0x12f/0x200
[   79.590248][ T4126]  selinux_transaction_write+0xc3/0x110
[   79.590291][ T4126]  ? __pfx_selinux_transaction_write+0x10/0x10
[   79.590335][ T4126]  vfs_write+0x266/0x8d0
[   79.590431][ T4126]  ? __rcu_read_unlock+0x4f/0x70
[   79.590458][ T4126]  ? __fget_files+0x184/0x1c0
[   79.590495][ T4126]  ksys_write+0xda/0x1a0
[   79.590528][ T4126]  __x64_sys_write+0x40/0x50
[   79.590606][ T4126]  x64_sys_call+0x2cdd/0x2fb0
[   79.590634][ T4126]  do_syscall_64+0xd0/0x1a0
[   79.590662][ T4126]  ? clear_bhb_loop+0x25/0x80
[   79.590701][ T4126]  ? clear_bhb_loop+0x25/0x80
[   79.590728][ T4126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.590828][ T4126] RIP: 0033:0x7f065b02e969
[   79.590848][ T4126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.590872][ T4126] RSP: 002b:00007f0659697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   79.590953][ T4126] RAX: ffffffffffffffda RBX: 00007f065b255fa0 RCX: 00007f065b02e969
[   79.590969][ T4126] RDX: 000000000000001d RSI: 0000200000000340 RDI: 0000000000000004
[   79.590984][ T4126] RBP: 00007f0659697090 R08: 0000000000000000 R09: 0000000000000000
[   79.591005][ T4126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.591020][ T4126] R13: 0000000000000000 R14: 00007f065b255fa0 R15: 00007ffef36d24b8
[   79.591044][ T4126]  </TASK>
[   79.650660][ T4128] loop4: detected capacity change from 0 to 512
[   79.655900][ T4127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.231'.
[   79.693566][ T4104] netlink: 104 bytes leftover after parsing attributes in process `syz.3.224'.
[   79.800971][ T4142] loop2: detected capacity change from 0 to 2048
[   79.821859][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.887489][ T4128] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   79.890014][ T4142] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.931553][ T4128] EXT4-fs (loop4): mount failed
[   80.012666][ T4154] loop1: detected capacity change from 0 to 512
[   80.088452][ T4154] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   80.129534][ T4171] netlink: 168 bytes leftover after parsing attributes in process `+}[@'.
[   80.145383][ T4154] EXT4-fs (loop1): invalid journal inode
[   80.167991][ T4154] EXT4-fs (loop1): can't get journal size
[   80.238976][ T4188] loop3: detected capacity change from 0 to 2048
[   80.244957][ T4154] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[   80.320478][ T4188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.335838][ T4154] System zones: 1-12, 13-13
[   80.362686][ T4188] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.381322][ T4154] EXT4-fs error (device loop1): ext4_iget_extra_inode:4693: inode #15: comm syz.1.235: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   80.399199][ T4204] No such timeout policy "syz0"
[   80.453380][ T4154] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.235: couldn't read orphan inode 15 (err -117)
[   80.497212][ T4212] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.243: bg 0: block 345: padding at end of block bitmap is not set
[   80.519340][ T4154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.522665][ T4217] Zero length message leads to an empty skb
[   80.560763][ T4219] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.243: bg 0: block 345: padding at end of block bitmap is not set
[   80.582467][ T4212] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   80.595188][ T4217] netlink: 14 bytes leftover after parsing attributes in process `syz.0.249'.
[   80.695616][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.727166][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.835790][ T4243] loop2: detected capacity change from 0 to 1764
[   80.899128][ T4252] loop1: detected capacity change from 0 to 512
[   80.947788][ T4257] loop2: detected capacity change from 0 to 1024
[   80.972603][ T4257] EXT4-fs: Ignoring removed orlov option
[   81.013667][ T4252] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.026344][ T4252] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.047939][ T4257] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.124341][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.195530][ T4284] 9pnet_fd: Insufficient options for proto=fd
[   81.245808][ T4219] syz.3.243 (4219) used greatest stack depth: 9496 bytes left
[   81.274921][ T4285] bridge_slave_0: left allmulticast mode
[   81.281111][ T4285] bridge_slave_0: left promiscuous mode
[   81.286823][ T4285] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.342622][ T4285] bridge_slave_1: left allmulticast mode
[   81.348329][ T4285] bridge_slave_1: left promiscuous mode
[   81.354106][ T4285] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.377820][ T4285] bond0: (slave bond_slave_1): Releasing backup interface
[   81.407510][ T4285] team0: Port device team_slave_0 removed
[   81.482828][ T4285] team0: Port device team_slave_1 removed
[   81.493969][ T4309] loop4: detected capacity change from 0 to 512
[   81.524658][ T4309] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.260: bg 0: block 288: padding at end of block bitmap is not set
[   81.552007][ T4285] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.559465][ T4285] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.572436][ T4309] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   81.593488][ T4285] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.601071][ T4285] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.618192][ T4309] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.260: attempt to clear invalid blocks 1024 len 1
[   81.654424][ T4188] syz.3.243 (4188) used greatest stack depth: 6016 bytes left
[   81.662728][ T4309] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.260: invalid indirect mapped block 1819239214 (level 0)
[   81.678397][ T4309] EXT4-fs (loop4): 1 truncate cleaned up
[   81.684753][ T4309] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.684763][ T4285] bond1: (slave geneve2): Releasing active interface
[   81.715135][ T4285] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[   81.724255][ T4285] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[   81.733337][ T4285] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[   81.742630][ T4285] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[   81.753769][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.754541][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.780267][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.816982][ T4347] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[   81.881785][ T4358] loop4: detected capacity change from 0 to 256
[   81.950857][ T4362] loop3: detected capacity change from 0 to 512
[   81.986052][ T4362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.004386][ T4362] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.017626][ T4362] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.270: corrupted inode contents
[   82.033985][ T4370] x_tables: ip6_tables: mh match: only valid for protocol 135
[   82.041943][ T4362] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #2: comm syz.3.270: mark_inode_dirty error
[   82.055773][ T4362] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #2: comm syz.3.270: corrupted inode contents
[   82.123526][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.194622][ T4386] vhci_hcd: invalid port number 236
[   82.206460][ T4388] loop4: detected capacity change from 0 to 128
[   82.224473][ T4388] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.236699][ T4390] loop2: detected capacity change from 0 to 2048
[   82.243984][ T4388] ext4 filesystem being mounted at /50/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   82.288892][ T3305] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.299252][ T4041]  loop2: p1 < > p4
[   82.303897][ T4041] loop2: p4 size 8388608 extends beyond EOD, truncated
[   82.315461][ T4390]  loop2: p1 < > p4
[   82.325390][ T4390] loop2: p4 size 8388608 extends beyond EOD, truncated
[   82.360970][ T4398] xt_CT: You must specify a L4 protocol and not use inversions on it
[   82.522113][ T4416] FAULT_INJECTION: forcing a failure.
[   82.522113][ T4416] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   82.535618][ T4416] CPU: 0 UID: 0 PID: 4416 Comm: syz.3.292 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   82.535696][ T4416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   82.535710][ T4416] Call Trace:
[   82.535718][ T4416]  <TASK>
[   82.535726][ T4416]  __dump_stack+0x1d/0x30
[   82.535751][ T4416]  dump_stack_lvl+0xe8/0x140
[   82.535773][ T4416]  dump_stack+0x15/0x1b
[   82.535792][ T4416]  should_fail_ex+0x265/0x280
[   82.535875][ T4416]  should_fail_alloc_page+0xf2/0x100
[   82.535952][ T4416]  __alloc_frozen_pages_noprof+0xff/0x360
[   82.536010][ T4416]  alloc_pages_mpol+0xb3/0x250
[   82.536039][ T4416]  folio_alloc_mpol_noprof+0x39/0x80
[   82.536065][ T4416]  shmem_get_folio_gfp+0x3cf/0xd40
[   82.536108][ T4416]  shmem_write_begin+0xa8/0x190
[   82.536224][ T4416]  generic_perform_write+0x181/0x490
[   82.536269][ T4416]  shmem_file_write_iter+0xc5/0xf0
[   82.536348][ T4416]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   82.536460][ T4416]  vfs_write+0x49d/0x8d0
[   82.536530][ T4416]  ksys_write+0xda/0x1a0
[   82.536620][ T4416]  __x64_sys_write+0x40/0x50
[   82.536705][ T4416]  x64_sys_call+0x2cdd/0x2fb0
[   82.536753][ T4416]  do_syscall_64+0xd0/0x1a0
[   82.536777][ T4416]  ? clear_bhb_loop+0x25/0x80
[   82.536796][ T4416]  ? clear_bhb_loop+0x25/0x80
[   82.536822][ T4416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.536878][ T4416] RIP: 0033:0x7f9746ecd41f
[   82.536892][ T4416] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   82.536912][ T4416] RSP: 002b:00007f9745536df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   82.536967][ T4416] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f9746ecd41f
[   82.537060][ T4416] RDX: 0000000000040000 RSI: 00007f973d117000 RDI: 0000000000000004
[   82.537071][ T4416] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000050b
[   82.537082][ T4416] R10: 00000000000003c8 R11: 0000000000000293 R12: 0000000000000004
[   82.537095][ T4416] R13: 00007f9745536ef0 R14: 00007f9745536eb0 R15: 00007f973d117000
[   82.537118][ T4416]  </TASK>
[   82.638537][ T4411] loop1: detected capacity change from 0 to 512
[   82.656126][ T4404] infiniband syz!: set active
[   82.722557][ T4411] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   82.728041][ T4404] infiniband syz!: added team_slave_0
[   82.757268][ T4411] EXT4-fs (loop1): orphan cleanup on readonly fs
[   82.772567][ T4404] RDS/IB: syz!: added
[   82.786881][ T4404] smc: adding ib device syz! with port count 1
[   82.793190][ T4404] smc:    ib device syz! port 1 has pnetid 
[   82.809305][ T4411] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.287: bg 0: block 248: padding at end of block bitmap is not set
[   82.825670][ T4411] __quota_error: 174 callbacks suppressed
[   82.825683][ T4411] Quota error (device loop1): write_blk: dquota write failed
[   82.838900][ T4411] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   82.841277][ T4041] udevd[4041]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   82.848839][ T4411] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.287: Failed to acquire dquot type 1
[   82.862550][ T4427] loop3: detected capacity change from 0 to 512
[   82.885843][ T4419] loop4: detected capacity change from 0 to 512
[   82.901979][ T4411] EXT4-fs (loop1): 1 truncate cleaned up
[   82.909909][ T4419] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   82.922039][ T4411] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   82.935762][ T4427] ext4: Unknown parameter 'audit'
[   82.943173][ T4419] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   82.963892][ T4419] EXT4-fs (loop4): 1 truncate cleaned up
[   82.972964][ T4419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.052229][ T4411] smc: net device bond0 applied user defined pnetid SYZ2
[   83.063141][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.075399][   T29] audit: type=1400 audit(1745785808.376:1001): avc:  denied  { read write } for  pid=4435 comm="syz.0.298" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   83.101919][   T29] audit: type=1400 audit(1745785808.376:1002): avc:  denied  { open } for  pid=4435 comm="syz.0.298" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   83.142187][ T4440] netlink: 'syz.4.299': attribute type 32 has an invalid length.
[   83.165149][ T4441] loop2: detected capacity change from 0 to 512
[   83.212781][ T4441] EXT4-fs error (device loop2): ext4_quota_enable:7122: comm syz.2.296: Bad quota inum: 4294934529, type: 0
[   83.217762][ T4446] __nla_validate_parse: 6 callbacks suppressed
[   83.217780][ T4446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.301'.
[   83.224843][   T29] audit: type=1326 audit(1745785808.516:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.240412][ T4441] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=4294934529). Please run e2fsck to fix.
[   83.263065][   T29] audit: type=1326 audit(1745785808.516:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.289330][ T4441] EXT4-fs (loop2): mount failed
[   83.302017][   T29] audit: type=1326 audit(1745785808.516:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.330336][   T29] audit: type=1326 audit(1745785808.516:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.330366][   T29] audit: type=1326 audit(1745785808.516:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.330391][   T29] audit: type=1326 audit(1745785808.516:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4445 comm="syz.4.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc6f28e969 code=0x7ffc0000
[   83.438106][ T4455] loop3: detected capacity change from 0 to 1024
[   83.438666][ T4455] ext4: Bad value for 'debug_want_extra_isize'
[   83.439842][ T4455] 9p: Unknown Cache mode or invalid value mm�
[   83.499205][ T4459] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   83.514305][ T4455] loop3: detected capacity change from 0 to 1024
[   83.528935][ T4455] EXT4-fs: Ignoring removed nobh option
[   83.548476][ T4455] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.574326][ T4455] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #11: comm syz.3.303: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   83.611345][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.633219][ T4455] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.303: couldn't read orphan inode 11 (err -117)
[   83.677848][ T4455] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.699522][ T4455] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.303: Invalid block bitmap block 0 in block_group 0
[   83.701243][ T4475] program syz.0.311 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.713103][ T4455] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.303: Failed to acquire dquot type 0
[   83.741385][ T4455] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm syz.3.303: Invalid inode table block 8589934593 in block_group 0
[   83.745627][ T4477] netlink: 156 bytes leftover after parsing attributes in process `syz.1.312'.
[   83.766327][ T4477] netlink: 24 bytes leftover after parsing attributes in process `syz.1.312'.
[   83.782270][ T4336] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm kworker/u8:14: Invalid inode table block 8589934593 in block_group 0
[   83.819134][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.845006][ T4481] loop2: detected capacity change from 0 to 512
[   83.861398][ T4483] 
@�: renamed from bond_slave_0 (while UP)
[   83.873067][ T4481] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   83.889626][ T4481] EXT4-fs (loop2): mount failed
[   83.979116][ T4498] loop4: detected capacity change from 0 to 2048
[   84.050679][ T4498]  loop4: p1 < > p4
[   84.060820][ T4498] loop4: p4 size 8388608 extends beyond EOD, truncated
[   84.094791][ T4509] loop3: detected capacity change from 0 to 764
[   84.181095][ T4524] netlink: 16 bytes leftover after parsing attributes in process `syz.0.328'.
[   84.212814][ T4526] SELinux:  policydb version 0 does not match my version range 15-34
[   84.222046][ T4526] SELinux: failed to load policy
[   84.243914][ T4530] netlink: 268 bytes leftover after parsing attributes in process `syz.0.331'.
[   84.296413][ T4534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.333'.
[   84.324556][ T4540] FAULT_INJECTION: forcing a failure.
[   84.324556][ T4540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.337725][ T4540] CPU: 1 UID: 0 PID: 4540 Comm: syz.3.336 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   84.337760][ T4540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.337775][ T4540] Call Trace:
[   84.337782][ T4540]  <TASK>
[   84.337789][ T4540]  __dump_stack+0x1d/0x30
[   84.337809][ T4540]  dump_stack_lvl+0xe8/0x140
[   84.337840][ T4540]  dump_stack+0x15/0x1b
[   84.337931][ T4540]  should_fail_ex+0x265/0x280
[   84.337967][ T4540]  should_fail+0xb/0x20
[   84.338002][ T4540]  should_fail_usercopy+0x1a/0x20
[   84.338024][ T4540]  copy_page_from_iter_atomic+0x21b/0xff0
[   84.338078][ T4540]  ? shmem_write_begin+0xa8/0x190
[   84.338111][ T4540]  ? shmem_write_begin+0xe1/0x190
[   84.338199][ T4540]  generic_perform_write+0x2c2/0x490
[   84.338241][ T4540]  shmem_file_write_iter+0xc5/0xf0
[   84.338273][ T4540]  do_iter_readv_writev+0x41e/0x4c0
[   84.338342][ T4540]  vfs_writev+0x2c9/0x870
[   84.338382][ T4540]  __se_sys_pwritev2+0xfc/0x1c0
[   84.338412][ T4540]  __x64_sys_pwritev2+0x67/0x80
[   84.338509][ T4540]  x64_sys_call+0x1cea/0x2fb0
[   84.338530][ T4540]  do_syscall_64+0xd0/0x1a0
[   84.338614][ T4540]  ? clear_bhb_loop+0x25/0x80
[   84.338635][ T4540]  ? clear_bhb_loop+0x25/0x80
[   84.338701][ T4540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.338722][ T4540] RIP: 0033:0x7f9746ece969
[   84.338736][ T4540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.338753][ T4540] RSP: 002b:00007f9745537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   84.338772][ T4540] RAX: ffffffffffffffda RBX: 00007f97470f5fa0 RCX: 00007f9746ece969
[   84.338784][ T4540] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[   84.338822][ T4540] RBP: 00007f9745537090 R08: 0000000000000000 R09: 0000000000000003
[   84.338833][ T4540] R10: 0000000000007c00 R11: 0000000000000246 R12: 0000000000000002
[   84.338845][ T4540] R13: 0000000000000000 R14: 00007f97470f5fa0 R15: 00007ffe0bda1298
[   84.338864][ T4540]  </TASK>
[   84.357149][ T4544] loop2: detected capacity change from 0 to 2048
[   84.577222][ T4557] netlink: 56 bytes leftover after parsing attributes in process `syz.4.342'.
[   84.591310][ T4544]  loop2: p1 < > p4
[   84.592672][ T4553] netlink: 92 bytes leftover after parsing attributes in process `syz.0.341'.
[   84.610342][ T4544] loop2: p4 size 8388608 extends beyond EOD, truncated
[   84.651879][ T4567] loop3: detected capacity change from 0 to 128
[   84.669377][ T4567] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   84.688676][ T4567] ext4 filesystem being mounted at /91/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   84.705651][ T4544] vlan2: entered allmulticast mode
[   84.753577][ T4585] netlink: 'syz.0.346': attribute type 1 has an invalid length.
[   84.762497][ T4583] xt_hashlimit: max too large, truncated to 1048576
[   84.775180][ T4592] loop1: detected capacity change from 0 to 1024
[   84.782856][ T4592] ext4: Unknown parameter 'permit_directio'
[   84.794406][ T4585] 8021q: adding VLAN 0 to HW filter on device bond2
[   84.829017][ T4585] vlan2: entered allmulticast mode
[   84.834394][ T4585] bond2: entered allmulticast mode
[   84.843381][ T3308] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   84.864725][ T4604] loop1: detected capacity change from 0 to 512
[   84.902748][ T4604] EXT4-fs (loop1): 1 orphan inode deleted
[   84.915221][ T4604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.915671][ T4615] netlink: 8 bytes leftover after parsing attributes in process `syz.3.352'.
[   84.928210][ T4336] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:14: Failed to release dquot type 1
[   84.950874][ T4604] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.966481][ T4618] xt_hashlimit: max too large, truncated to 1048576
[   85.006173][ T4624] loop3: detected capacity change from 0 to 512
[   85.025261][ T4624] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   85.026004][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.043571][ T4624] EXT4-fs (loop3): orphan cleanup on readonly fs
[   85.051644][ T4629] loop4: detected capacity change from 0 to 164
[   85.058501][ T4624] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   85.076022][ T4629] ISOFS: unable to read i-node block
[   85.081457][ T4629] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   85.105923][ T4624] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   85.118459][ T4640] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   85.126485][ T4624] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.355: bg 0: block 40: padding at end of block bitmap is not set
[   85.162944][ T4624] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   85.189455][ T4652] netlink: 4 bytes leftover after parsing attributes in process `syz.1.362'.
[   85.200670][ T4624] EXT4-fs (loop3): 1 truncate cleaned up
[   85.207662][ T4624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   85.214327][ T4649] lo speed is unknown, defaulting to 1000
[   85.274049][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.369750][ T4663] loop1: detected capacity change from 0 to 512
[   85.381022][ T4666] xt_hashlimit: size too large, truncated to 1048576
[   85.390523][ T4670] loop0: detected capacity change from 0 to 1024
[   85.397340][ T4670] ext4: Unknown parameter 'data�'
[   85.402577][ T4668] xt_CT: No such helper "syz0"
[   85.431532][ T4663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.443605][ T4670] loop0: detected capacity change from 0 to 1024
[   85.451014][ T4670] ext4: Unknown parameter 'data�'
[   85.474362][ T4663] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.487495][ T4663] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.367: corrupted inode contents
[   85.507082][ T4677] loop2: detected capacity change from 0 to 1024
[   85.520280][ T4663] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #2: comm syz.1.367: mark_inode_dirty error
[   85.559838][ T4670] loop0: detected capacity change from 0 to 1024
[   85.566544][ T4670] ext4: Unknown parameter 'data�'
[   85.573765][ T4677] EXT4-fs: Ignoring removed bh option
[   85.579205][ T4677] EXT4-fs: inline encryption not supported
[   85.585197][ T4677] EXT4-fs: Ignoring removed i_version option
[   85.595152][ T4679] loop3: detected capacity change from 0 to 128
[   85.595353][ T4663] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #2: comm syz.1.367: corrupted inode contents
[   85.602138][ T4679] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   85.630175][ T4679] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   85.633825][ T4670] loop0: detected capacity change from 0 to 1024
[   85.652958][ T4677] EXT4-fs (loop2): invalid first ino: 3
[   85.661544][ T4670] ext4: Unknown parameter 'data�'
[   85.726508][ T4670] loop0: detected capacity change from 0 to 1024
[   85.736277][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.749810][ T4670] ext4: Unknown parameter 'data�'
[   85.857577][ T4670] loop0: detected capacity change from 0 to 1024
[   85.917194][ T4670] ext4: Unknown parameter 'data�'
[   85.947438][ T4708] netlink: 'syz.4.380': attribute type 15 has an invalid length.
[   85.968358][ T4670] loop0: detected capacity change from 0 to 1024
[   86.013695][ T4670] ext4: Unknown parameter 'data�'
[   86.041879][ T4703] loop3: detected capacity change from 0 to 256
[   86.059731][ T4670] loop0: detected capacity change from 0 to 1024
[   86.108309][ T4670] ext4: Unknown parameter 'data�'
[   86.135114][ T4670] loop0: detected capacity change from 0 to 1024
[   86.144106][ T4721] loop3: detected capacity change from 0 to 512
[   86.161171][ T4721] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   86.170349][ T4670] ext4: Unknown parameter 'data�'
[   86.207267][ T4721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.221323][ T4670] loop0: detected capacity change from 0 to 1024
[   86.228174][ T4670] ext4: Unknown parameter 'data�'
[   86.240023][ T4670] loop0: detected capacity change from 0 to 1024
[   86.242812][ T4721] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.246985][ T4670] ext4: Unknown parameter 'data�'
[   86.267671][ T4670] loop0: detected capacity change from 0 to 1024
[   86.274350][ T4670] ext4: Unknown parameter 'data�'
[   86.274882][ T4727] xt_hashlimit: max too large, truncated to 1048576
[   86.285744][ T4670] loop0: detected capacity change from 0 to 1024
[   86.292678][ T4670] ext4: Unknown parameter 'data�'
[   86.304862][ T4670] loop0: detected capacity change from 0 to 1024
[   86.311759][ T4670] ext4: Unknown parameter 'data�'
[   86.322836][ T4670] loop0: detected capacity change from 0 to 1024
[   86.329446][ T4670] ext4: Unknown parameter 'data�'
[   86.333246][ T4721] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   86.341221][ T4670] loop0: detected capacity change from 0 to 1024
[   86.350628][ T4670] ext4: Unknown parameter 'data�'
[   86.361548][ T4670] loop0: detected capacity change from 0 to 1024
[   86.375056][ T4721] EXT4-fs error (device loop3): __ext4_new_inode:1279: comm syz.3.384: failed to insert inode 16: doubly allocated?
[   86.380039][ T4670] ext4: Unknown parameter 'data�'
[   86.398369][ T4670] loop0: detected capacity change from 0 to 1024
[   86.405110][ T4670] ext4: Unknown parameter 'data�'
[   86.416126][ T4670] loop0: detected capacity change from 0 to 1024
[   86.429137][ T4734] loop1: detected capacity change from 0 to 512
[   86.438320][ T4670] ext4: Unknown parameter 'data�'
[   86.450802][ T4670] loop0: detected capacity change from 0 to 1024
[   86.457566][ T4670] ext4: Unknown parameter 'data�'
[   86.468345][ T4670] loop0: detected capacity change from 0 to 1024
[   86.475027][ T4670] ext4: Unknown parameter 'data�'
[   86.486027][ T4670] loop0: detected capacity change from 0 to 1024
[   86.488313][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.492649][ T4670] ext4: Unknown parameter 'data�'
[   86.512719][ T4670] loop0: detected capacity change from 0 to 1024
[   86.515048][ T4734] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.519276][ T4670] ext4: Unknown parameter 'data�'
[   86.542785][ T4670] loop0: detected capacity change from 0 to 1024
[   86.549428][ T4670] ext4: Unknown parameter 'data�'
[   86.559489][ T4734] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.582697][ T4743] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   86.586273][ T4670] loop0: detected capacity change from 0 to 1024
[   86.600821][ T4743] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   86.601894][ T4670] ext4: Unknown parameter 'data�'
[   86.621593][ T4670] loop0: detected capacity change from 0 to 1024
[   86.628203][ T4670] ext4: Unknown parameter 'data�'
[   86.640904][ T4670] loop0: detected capacity change from 0 to 1024
[   86.647723][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.670062][ T4670] ext4: Unknown parameter 'data�'
[   86.701197][ T4670] loop0: detected capacity change from 0 to 1024
[   86.707844][ T4670] ext4: Unknown parameter 'data�'
[   86.748197][ T4670] loop0: detected capacity change from 0 to 1024
[   86.758222][ T4764] syz.3.391 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   86.798979][ T4769] netlink: 'syz.1.395': attribute type 3 has an invalid length.
[   86.808186][ T4769] netlink: 'syz.1.395': attribute type 1 has an invalid length.
[   86.819438][ T4670] ext4: Unknown parameter 'data�'
[   86.830170][ T4764] loop3: detected capacity change from 0 to 1024
[   86.845155][ T4769] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.845301][ T4670] loop0: detected capacity change from 0 to 1024
[   86.868826][ T4764] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.391: Failed to acquire dquot type 0
[   86.882995][ T4764] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   86.920206][ T4670] ext4: Unknown parameter 'data�'
[   86.940733][ T4670] loop0: detected capacity change from 0 to 1024
[   86.947214][ T4764] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.391: corrupted inode contents
[   86.979713][ T4670] ext4: Unknown parameter 'data�'
[   86.985066][ T4764] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #13: comm syz.3.391: mark_inode_dirty error
[   87.020162][ T4670] loop0: detected capacity change from 0 to 1024
[   87.040006][ T4764] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.391: corrupted inode contents
[   87.072220][ T4670] ext4: Unknown parameter 'data�'
[   87.082150][ T4764] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.391: mark_inode_dirty error
[   87.116698][ T4764] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.391: corrupted inode contents
[   87.133268][ T4670] loop0: detected capacity change from 0 to 1024
[   87.160081][ T4764] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   87.179023][ T4764] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.391: corrupted inode contents
[   87.220109][ T4670] ext4: Unknown parameter 'data�'
[   87.247397][ T4764] EXT4-fs error (device loop3): ext4_truncate:4255: inode #13: comm syz.3.391: mark_inode_dirty error
[   87.283609][ T4764] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   87.293454][ T4764] EXT4-fs (loop3): 1 truncate cleaned up
[   87.309642][ T4764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.375176][ T4764] EXT4-fs: Ignoring removed orlov option
[   87.442552][ T4764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.463763][ T4764] EXT4-fs (loop3): can't enable nombcache during remount
[   87.534549][ T4764] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.562315][ T4764] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.993954][ T4868] loop0: detected capacity change from 0 to 2048
[   88.060719][ T4868]  loop0: p1 < > p4
[   88.088424][ T4868] loop0: p4 size 8388608 extends beyond EOD, truncated
[   88.106201][   T29] kauditd_printk_skb: 579 callbacks suppressed
[   88.106227][   T29] audit: type=1400 audit(1745785813.406:1581): avc:  denied  { read write } for  pid=4841 comm="syz.0.404" name="loop0p4" dev="devtmpfs" ino=593 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   88.197969][   T29] audit: type=1400 audit(1745785813.406:1582): avc:  denied  { open } for  pid=4841 comm="syz.0.404" path="/dev/loop0p4" dev="devtmpfs" ino=593 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   88.221249][   T29] audit: type=1326 audit(1745785813.486:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.244772][   T29] audit: type=1326 audit(1745785813.486:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.268177][   T29] audit: type=1326 audit(1745785813.486:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.291509][   T29] audit: type=1326 audit(1745785813.496:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.314942][   T29] audit: type=1326 audit(1745785813.496:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.338275][   T29] audit: type=1326 audit(1745785813.496:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.361649][   T29] audit: type=1326 audit(1745785813.496:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.384994][   T29] audit: type=1326 audit(1745785813.496:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7decdae969 code=0x7ffc0000
[   88.414995][ T4902] __nla_validate_parse: 8 callbacks suppressed
[   88.415015][ T4902] netlink: 12 bytes leftover after parsing attributes in process `syz.1.406'.
[   88.466593][ T4911] loop0: detected capacity change from 0 to 512
[   88.480242][ T4911] EXT4-fs: Ignoring removed i_version option
[   88.502492][ T4911] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.517713][ T4919] lo speed is unknown, defaulting to 1000
[   88.525131][ T4925] loop1: detected capacity change from 0 to 256
[   88.530025][ T4911] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.626285][ T4919] netlink: 24 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.725902][ T4919] netlink: 28 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.734924][ T4919] netlink: 108 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.753276][ T4919] netlink: 28 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.764080][ T4919] netlink: 108 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.773143][ T4919] netlink: 84 bytes leftover after parsing attributes in process `syz.2.409'.
[   88.810697][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.933251][ T4965] netlink: 20 bytes leftover after parsing attributes in process `syz.4.417'.
[   88.942250][ T4965] netlink: 24 bytes leftover after parsing attributes in process `syz.4.417'.
[   88.966857][ T4960] loop0: detected capacity change from 0 to 512
[   89.006246][ T4960] EXT4-fs: Ignoring removed nobh option
[   89.011877][ T4960] EXT4-fs: Ignoring removed oldalloc option
[   89.041173][ T4975] sch_tbf: burst 2 is lower than device ip6tnl0 mtu (1452) !
[   89.052431][ T4960] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.416: Parent and EA inode have the same ino 15
[   89.144780][ T4987] sd 0:0:1:0: device reset
[   89.151499][ T4960] EXT4-fs (loop0): 1 orphan inode deleted
[   89.212397][ T4960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.337760][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.432755][ T5010] netlink: 76 bytes leftover after parsing attributes in process `syz.3.433'.
[   89.512816][ T5018] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.614593][ T5022] netlink: 'syz.4.434': attribute type 10 has an invalid length.
[   89.628238][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.648103][ T5022] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[   89.694245][ T5018] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.782838][ T5018] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.844333][ T5018] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.932052][ T5018] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.992557][ T5018] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.042534][ T5018] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.054501][ T5018] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.137667][ T5036] sg_write: data in/out 122/10 bytes for SCSI command 0xe4-- guessing data in;
[   90.137667][ T5036]    program syz.2.440 not setting count and/or reply_len properly
[   90.224507][ T5052] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   90.272842][ T5057] siw: device registration error -23
[   90.326647][ T5066] IPv6: sit1: Disabled Multicast RS
[   90.345082][ T5066] sit1: entered allmulticast mode
[   90.416986][ T5073] loop4: detected capacity change from 0 to 512
[   90.434380][ T5073] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.448507][ T5073] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.487658][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.500349][ T5082] FAULT_INJECTION: forcing a failure.
[   90.500349][ T5082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.513575][ T5082] CPU: 1 UID: 0 PID: 5082 Comm: syz.3.452 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   90.513602][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   90.513613][ T5082] Call Trace:
[   90.513620][ T5082]  <TASK>
[   90.513662][ T5082]  __dump_stack+0x1d/0x30
[   90.513686][ T5082]  dump_stack_lvl+0xe8/0x140
[   90.513709][ T5082]  dump_stack+0x15/0x1b
[   90.513727][ T5082]  should_fail_ex+0x265/0x280
[   90.513838][ T5082]  should_fail+0xb/0x20
[   90.513904][ T5082]  should_fail_usercopy+0x1a/0x20
[   90.513925][ T5082]  copy_page_from_iter_atomic+0x21b/0xff0
[   90.513950][ T5082]  ? shmem_write_begin+0xa8/0x190
[   90.513975][ T5082]  ? shmem_write_begin+0xe1/0x190
[   90.514084][ T5082]  generic_perform_write+0x2c2/0x490
[   90.514210][ T5082]  shmem_file_write_iter+0xc5/0xf0
[   90.514284][ T5082]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   90.514312][ T5082]  vfs_write+0x49d/0x8d0
[   90.514421][ T5082]  ksys_write+0xda/0x1a0
[   90.514453][ T5082]  __x64_sys_write+0x40/0x50
[   90.514483][ T5082]  x64_sys_call+0x2cdd/0x2fb0
[   90.514509][ T5082]  do_syscall_64+0xd0/0x1a0
[   90.514559][ T5082]  ? clear_bhb_loop+0x25/0x80
[   90.514586][ T5082]  ? clear_bhb_loop+0x25/0x80
[   90.514656][ T5082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.514680][ T5082] RIP: 0033:0x7f9746ecd41f
[   90.514698][ T5082] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   90.514722][ T5082] RSP: 002b:00007f9745515df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   90.514883][ T5082] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f9746ecd41f
[   90.514895][ T5082] RDX: 0000000000040000 RSI: 00007f973d0f6000 RDI: 0000000000000006
[   90.514911][ T5082] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000004b0
[   90.514922][ T5082] R10: 0000200000000982 R11: 0000000000000293 R12: 0000000000000006
[   90.514935][ T5082] R13: 00007f9745515ef0 R14: 00007f9745515eb0 R15: 00007f973d0f6000
[   90.514954][ T5082]  </TASK>
[   90.517761][ T5084] loop1: detected capacity change from 0 to 128
[   90.562500][ T5082] loop3: detected capacity change from 0 to 512
[   90.574245][ T5084] FAT-fs (loop1): Directory bread(block 162) failed
[   90.635001][ T5082] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   90.638812][ T5084] FAT-fs (loop1): Directory bread(block 163) failed
[   90.697777][ T5082] EXT4-fs (loop3): invalid journal inode
[   90.700726][ T5084] FAT-fs (loop1): Directory bread(block 164) failed
[   90.757360][ T5082] EXT4-fs (loop3): can't get journal size
[   90.759536][ T5084] FAT-fs (loop1): Directory bread(block 165) failed
[   90.778447][ T5084] FAT-fs (loop1): Directory bread(block 166) failed
[   90.785251][ T5084] FAT-fs (loop1): Directory bread(block 167) failed
[   90.801569][ T5084] FAT-fs (loop1): Directory bread(block 168) failed
[   90.812583][ T5082] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[   90.816020][ T5084] FAT-fs (loop1): Directory bread(block 169) failed
[   90.846651][ T5082] System zones: 1-12, 13-13
[   90.889113][ T5102] loop0: detected capacity change from 0 to 512
[   90.912120][ T5102] EXT4-fs (loop0): Invalid log cluster size: 65535
[   90.919105][ T5082] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.452: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   90.958505][ T5084] FAT-fs (loop1): Directory bread(block 162) failed
[   90.965369][ T5084] FAT-fs (loop1): Directory bread(block 163) failed
[   90.972975][ T5084] syz.1.456: attempt to access beyond end of device
[   90.972975][ T5084] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[   90.986365][ T5084] syz.1.456: attempt to access beyond end of device
[   90.986365][ T5084] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[   91.026580][ T5082] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.452: couldn't read orphan inode 15 (err -117)
[   91.043468][ T5110] loop0: detected capacity change from 0 to 512
[   91.074896][ T5110] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   91.095782][ T5115] FAULT_INJECTION: forcing a failure.
[   91.095782][ T5115] name failslab, interval 1, probability 0, space 0, times 0
[   91.108599][ T5115] CPU: 1 UID: 0 PID: 5115 Comm: syz.1.465 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   91.108663][ T5115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.108678][ T5115] Call Trace:
[   91.108685][ T5115]  <TASK>
[   91.108693][ T5115]  __dump_stack+0x1d/0x30
[   91.108763][ T5115]  dump_stack_lvl+0xe8/0x140
[   91.108812][ T5115]  dump_stack+0x15/0x1b
[   91.108833][ T5115]  should_fail_ex+0x265/0x280
[   91.108878][ T5115]  should_failslab+0x8c/0xb0
[   91.108912][ T5115]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   91.108955][ T5115]  ? string_to_context_struct+0x2dc/0x2f0
[   91.108983][ T5115]  ? sidtab_sid2str_get+0xa0/0x130
[   91.109015][ T5115]  kmemdup_noprof+0x2b/0x70
[   91.109102][ T5115]  sidtab_sid2str_get+0xa0/0x130
[   91.109153][ T5115]  security_sid_to_context_core+0x1eb/0x2e0
[   91.109233][ T5115]  security_sid_to_context+0x27/0x40
[   91.109267][ T5115]  sel_write_context+0x12f/0x200
[   91.109353][ T5115]  selinux_transaction_write+0xc3/0x110
[   91.109448][ T5115]  ? __pfx_selinux_transaction_write+0x10/0x10
[   91.109596][ T5115]  vfs_write+0x266/0x8d0
[   91.109618][ T5115]  ? __rcu_read_unlock+0x4f/0x70
[   91.109707][ T5115]  ? __fget_files+0x184/0x1c0
[   91.109734][ T5115]  ksys_write+0xda/0x1a0
[   91.109758][ T5115]  __x64_sys_write+0x40/0x50
[   91.109817][ T5115]  x64_sys_call+0x2cdd/0x2fb0
[   91.109850][ T5115]  do_syscall_64+0xd0/0x1a0
[   91.109873][ T5115]  ? clear_bhb_loop+0x25/0x80
[   91.109895][ T5115]  ? clear_bhb_loop+0x25/0x80
[   91.109981][ T5115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.110001][ T5115] RIP: 0033:0x7f065b02e969
[   91.110015][ T5115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.110076][ T5115] RSP: 002b:00007f0659697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   91.110099][ T5115] RAX: ffffffffffffffda RBX: 00007f065b255fa0 RCX: 00007f065b02e969
[   91.110121][ T5115] RDX: 000000000000001d RSI: 0000200000000340 RDI: 0000000000000004
[   91.110136][ T5115] RBP: 00007f0659697090 R08: 0000000000000000 R09: 0000000000000000
[   91.110151][ T5115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.110205][ T5115] R13: 0000000000000000 R14: 00007f065b255fa0 R15: 00007ffef36d24b8
[   91.110231][ T5115]  </TASK>
[   91.271615][ T5082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.350976][ T5110] EXT4-fs (loop0): 1 truncate cleaned up
[   91.357200][ T5110] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.501978][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.548475][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.594706][ T5132] bond0: (slave bond_slave_0): Releasing backup interface
[   91.597732][ T5134] loop0: detected capacity change from 0 to 512
[   91.612549][ T5136] FAULT_INJECTION: forcing a failure.
[   91.612549][ T5136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.625711][ T5136] CPU: 1 UID: 0 PID: 5136 Comm: syz.3.473 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   91.625738][ T5136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.625833][ T5136] Call Trace:
[   91.625846][ T5136]  <TASK>
[   91.625855][ T5136]  __dump_stack+0x1d/0x30
[   91.625877][ T5136]  dump_stack_lvl+0xe8/0x140
[   91.625895][ T5136]  dump_stack+0x15/0x1b
[   91.625990][ T5136]  should_fail_ex+0x265/0x280
[   91.626024][ T5136]  should_fail+0xb/0x20
[   91.626058][ T5136]  should_fail_usercopy+0x1a/0x20
[   91.626141][ T5136]  copy_to_user_nofault+0x7f/0x120
[   91.626179][ T5136]  bpf_probe_write_user+0x83/0xc0
[   91.626230][ T5136]  bpf_prog_6303d92f98284ad8+0x44/0x48
[   91.626247][ T5136]  bpf_trace_run2+0x104/0x1c0
[   91.626344][ T5136]  ? security_context_to_sid_core+0x2fc/0x3b0
[   91.626382][ T5136]  ? security_context_to_sid_core+0x2fc/0x3b0
[   91.626485][ T5136]  __traceiter_kfree+0x2b/0x50
[   91.626516][ T5136]  ? security_context_to_sid_core+0x2fc/0x3b0
[   91.626550][ T5136]  kfree+0x26f/0x310
[   91.626586][ T5136]  ? string_to_context_struct+0x2dc/0x2f0
[   91.626667][ T5136]  security_context_to_sid_core+0x2fc/0x3b0
[   91.626702][ T5136]  security_context_to_sid+0x2e/0x40
[   91.626736][ T5136]  sel_write_context+0xf8/0x200
[   91.626852][ T5136]  selinux_transaction_write+0xc3/0x110
[   91.626894][ T5136]  ? __pfx_selinux_transaction_write+0x10/0x10
[   91.626965][ T5136]  vfs_write+0x266/0x8d0
[   91.626995][ T5136]  ? __rcu_read_unlock+0x4f/0x70
[   91.627049][ T5136]  ? __fget_files+0x184/0x1c0
[   91.627079][ T5136]  ksys_write+0xda/0x1a0
[   91.627105][ T5136]  __x64_sys_write+0x40/0x50
[   91.627128][ T5136]  x64_sys_call+0x2cdd/0x2fb0
[   91.627206][ T5136]  do_syscall_64+0xd0/0x1a0
[   91.627227][ T5136]  ? clear_bhb_loop+0x25/0x80
[   91.627257][ T5136]  ? clear_bhb_loop+0x25/0x80
[   91.627350][ T5136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.627373][ T5136] RIP: 0033:0x7f9746ece969
[   91.627411][ T5136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.627433][ T5136] RSP: 002b:00007f9745537038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   91.627454][ T5136] RAX: ffffffffffffffda RBX: 00007f97470f5fa0 RCX: 00007f9746ece969
[   91.627469][ T5136] RDX: 000000000000001d RSI: 0000200000000340 RDI: 0000000000000006
[   91.627484][ T5136] RBP: 00007f9745537090 R08: 0000000000000000 R09: 0000000000000000
[   91.627499][ T5136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.627510][ T5136] R13: 0000000000000000 R14: 00007f97470f5fa0 R15: 00007ffe0bda1298
[   91.627527][ T5136]  </TASK>
[   91.642107][ T5134] EXT4-fs warning (device loop0): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   91.798879][ T5143] loop1: detected capacity change from 0 to 2048
[   91.870355][ T5134] EXT4-fs (loop0): mount failed
[   91.934526][ T5150] FAULT_INJECTION: forcing a failure.
[   91.934526][ T5150] name failslab, interval 1, probability 0, space 0, times 0
[   91.947326][ T5150] CPU: 0 UID: 0 PID: 5150 Comm: syz.2.477 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   91.947358][ T5150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.947373][ T5150] Call Trace:
[   91.947379][ T5150]  <TASK>
[   91.947387][ T5150]  __dump_stack+0x1d/0x30
[   91.947410][ T5150]  dump_stack_lvl+0xe8/0x140
[   91.947482][ T5150]  dump_stack+0x15/0x1b
[   91.947501][ T5150]  should_fail_ex+0x265/0x280
[   91.947536][ T5150]  should_failslab+0x8c/0xb0
[   91.947650][ T5150]  kmem_cache_alloc_noprof+0x50/0x310
[   91.947738][ T5150]  ? security_inode_alloc+0x37/0x100
[   91.947841][ T5150]  security_inode_alloc+0x37/0x100
[   91.947890][ T5150]  inode_init_always_gfp+0x4b7/0x500
[   91.947921][ T5150]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   91.948009][ T5150]  alloc_inode+0x58/0x170
[   91.948035][ T5150]  new_inode+0x1d/0xe0
[   91.948072][ T5150]  shmem_get_inode+0x244/0x750
[   91.948147][ T5150]  __shmem_file_setup+0x122/0x1f0
[   91.948236][ T5150]  shmem_file_setup+0x3b/0x50
[   91.948258][ T5150]  __se_sys_memfd_create+0x2c3/0x590
[   91.948289][ T5150]  __x64_sys_memfd_create+0x31/0x40
[   91.948332][ T5150]  x64_sys_call+0x122f/0x2fb0
[   91.948358][ T5150]  do_syscall_64+0xd0/0x1a0
[   91.948407][ T5150]  ? clear_bhb_loop+0x25/0x80
[   91.948427][ T5150]  ? clear_bhb_loop+0x25/0x80
[   91.948451][ T5150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.948551][ T5150] RIP: 0033:0x7f7decdae969
[   91.948565][ T5150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.948585][ T5150] RSP: 002b:00007f7deb416d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   91.948607][ T5150] RAX: ffffffffffffffda RBX: 0000000000001041 RCX: 00007f7decdae969
[   91.948679][ T5150] RDX: 00007f7deb416dec RSI: 0000000000000000 RDI: 00007f7dece31444
[   91.948695][ T5150] RBP: 0000200000000000 R08: 00007f7deb416b07 R09: 0000000000000000
[   91.948708][ T5150] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   91.948726][ T5150] R13: 00007f7deb416dec R14: 00007f7deb416df0 R15: 00007ffd8e518588
[   91.948745][ T5150]  </TASK>
[   91.952095][ T5143]  loop1: p1 < > p3 p4 < >
[   92.171929][ T5143] loop1: p3 start 4284289 is beyond EOD, truncated
[   92.188054][ T5159] loop3: detected capacity change from 0 to 1024
[   92.213981][ T5159] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.479: Failed to acquire dquot type 0
[   92.228307][ T5162] 9pnet_fd: Insufficient options for proto=fd
[   92.245618][ T5159] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   92.309627][ T5159] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.479: corrupted inode contents
[   92.326907][ T5167] xt_NFQUEUE: number of total queues is 0
[   92.362929][ T5159] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #13: comm syz.3.479: mark_inode_dirty error
[   92.422437][ T5159] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.479: corrupted inode contents
[   92.445618][ T5176] netlink: 'syz.0.487': attribute type 4 has an invalid length.
[   92.448382][ T5159] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.479: mark_inode_dirty error
[   92.497101][ T5159] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.479: corrupted inode contents
[   92.509520][ T5159] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   92.519664][ T5159] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.479: corrupted inode contents
[   92.533124][ T5159] EXT4-fs error (device loop3): ext4_truncate:4255: inode #13: comm syz.3.479: mark_inode_dirty error
[   92.565315][ T5159] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   92.575777][ T5159] EXT4-fs (loop3): 1 truncate cleaned up
[   92.583721][ T5185] x_tables: ip6_tables: mh match: only valid for protocol 135
[   92.640433][ T5183] loop0: detected capacity change from 0 to 8192
[   92.647310][ T5159] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.681333][ T5183]  loop0: p1 p3 p4
[   92.685249][ T5183] loop0: p1 size 3506438656 extends beyond EOD, truncated
[   92.701293][ T5200] loop1: detected capacity change from 0 to 256
[   92.702143][ T5183] loop0: p3 start 218103808 is beyond EOD, truncated
[   92.714454][ T5183] loop0: p4 size 50331648 extends beyond EOD, truncated
[   92.736500][ T5202] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   92.738326][ T5176] ALSA: seq fatal error: cannot create timer (-22)
[   92.766012][ T5176] netlink: 'syz.0.487': attribute type 4 has an invalid length.
[   92.849429][ T5209] vhci_hcd: invalid port number 96
[   92.854675][ T5209] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   92.896448][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.924189][ T5216] xt_CT: You must specify a L4 protocol and not use inversions on it
[   93.065560][ T5231] lo speed is unknown, defaulting to 1000
[   93.194664][   T29] kauditd_printk_skb: 273 callbacks suppressed
[   93.194684][   T29] audit: type=1400 audit(1745785818.496:1861): avc:  denied  { read } for  pid=5254 comm="syz.3.515" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.231493][   T29] audit: type=1400 audit(1745785818.506:1862): avc:  denied  { open } for  pid=5254 comm="syz.3.515" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.255094][   T29] audit: type=1400 audit(1745785818.536:1863): avc:  denied  { ioctl } for  pid=5254 comm="syz.3.515" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   93.256249][ T5259] loop2: detected capacity change from 0 to 512
[   93.256614][ T5259] ext4: Unknown parameter 'audit'
[   93.281133][ T5262] bond3: entered promiscuous mode
[   93.318163][ T5262] bond3: entered allmulticast mode
[   93.323959][ T5262] 8021q: adding VLAN 0 to HW filter on device bond3
[   93.334579][ T5262] bond3 (unregistering): Released all slaves
[   93.347676][   T29] audit: type=1400 audit(1745785818.646:1864): avc:  denied  { associate } for  pid=5260 comm="syz.2.519" name="0" dev="devpts" ino=3 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   93.373552][   T29] audit: type=1400 audit(1745785818.676:1865): avc:  denied  { unmount } for  pid=3308 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   93.424608][   T29] audit: type=1400 audit(1745785818.726:1866): avc:  denied  { read write } for  pid=5273 comm="syz.0.524" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   93.466737][   T29] audit: type=1400 audit(1745785818.756:1867): avc:  denied  { open } for  pid=5273 comm="syz.0.524" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   93.495790][ T5274] loop2: detected capacity change from 0 to 512
[   93.510652][ T5277] __nla_validate_parse: 13 callbacks suppressed
[   93.510686][ T5277] netlink: 232 bytes leftover after parsing attributes in process `syz.0.525'.
[   93.517860][   T29] audit: type=1400 audit(1745785818.806:1868): avc:  denied  { nlmsg_read } for  pid=5276 comm="syz.0.525" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   93.549563][   T29] audit: type=1400 audit(1745785818.846:1869): avc:  denied  { bind } for  pid=5276 comm="syz.0.525" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   93.568942][   T29] audit: type=1400 audit(1745785818.846:1870): avc:  denied  { name_bind } for  pid=5276 comm="syz.0.525" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   93.594776][ T5274] EXT4-fs warning (device loop2): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   93.612459][ T5274] EXT4-fs (loop2): mount failed
[   93.684059][ T5295] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   93.693439][ T5297] loop3: detected capacity change from 0 to 164
[   93.715442][ T5299] FAULT_INJECTION: forcing a failure.
[   93.715442][ T5299] name failslab, interval 1, probability 0, space 0, times 0
[   93.728207][ T5299] CPU: 0 UID: 0 PID: 5299 Comm: wޣ� Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   93.728238][ T5299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   93.728253][ T5299] Call Trace:
[   93.728260][ T5299]  <TASK>
[   93.728269][ T5299]  __dump_stack+0x1d/0x30
[   93.728294][ T5299]  dump_stack_lvl+0xe8/0x140
[   93.728318][ T5299]  dump_stack+0x15/0x1b
[   93.728338][ T5299]  should_fail_ex+0x265/0x280
[   93.728377][ T5299]  should_failslab+0x8c/0xb0
[   93.728412][ T5299]  kmem_cache_alloc_noprof+0x50/0x310
[   93.728453][ T5299]  ? vm_area_dup+0x32/0x260
[   93.728479][ T5299]  vm_area_dup+0x32/0x260
[   93.728505][ T5299]  copy_mm+0x72c/0x1310
[   93.728561][ T5299]  copy_process+0xcf1/0x1f90
[   93.728600][ T5299]  kernel_clone+0x16c/0x5b0
[   93.728631][ T5299]  ? vfs_write+0x75e/0x8d0
[   93.728663][ T5299]  __x64_sys_clone+0xe6/0x120
[   93.728702][ T5299]  x64_sys_call+0x2c59/0x2fb0
[   93.728725][ T5299]  do_syscall_64+0xd0/0x1a0
[   93.728750][ T5299]  ? clear_bhb_loop+0x25/0x80
[   93.728776][ T5299]  ? clear_bhb_loop+0x25/0x80
[   93.728802][ T5299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.728826][ T5299] RIP: 0033:0x7f609ecee969
[   93.728844][ T5299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.728864][ T5299] RSP: 002b:00007f609d356fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   93.728883][ T5299] RAX: ffffffffffffffda RBX: 00007f609ef15fa0 RCX: 00007f609ecee969
[   93.728895][ T5299] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000000004021400
[   93.728909][ T5299] RBP: 00007f609d357090 R08: 0000000000000000 R09: 0000000000000000
[   93.728922][ T5299] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   93.728942][ T5299] R13: 0000000000000000 R14: 00007f609ef15fa0 R15: 00007ffdfdeadd68
[   93.728962][ T5299]  </TASK>
[   93.949676][ T5309] tipc: Started in network mode
[   93.954688][ T5309] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[   93.964359][ T5309] tipc: Enabled bearer <udp:s>, priority 10
[   93.966928][ T5307] netlink: 8 bytes leftover after parsing attributes in process `syz.2.537'.
[   94.003631][ T5311] loop0: detected capacity change from 0 to 1024
[   94.013314][ T5311] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.539: Failed to acquire dquot type 0
[   94.016000][ T5315] netlink: 40 bytes leftover after parsing attributes in process `syz.2.541'.
[   94.026733][ T5311] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   94.049923][ T5311] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.539: corrupted inode contents
[   94.063073][ T5311] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #13: comm syz.0.539: mark_inode_dirty error
[   94.064456][ T5315] x_tables: unsorted entry at hook 3
[   94.074722][ T5311] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.539: corrupted inode contents
[   94.092944][ T5311] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #13: comm syz.0.539: mark_inode_dirty error
[   94.104949][ T5311] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.539: corrupted inode contents
[   94.118102][ T5311] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   94.126880][ T5311] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.539: corrupted inode contents
[   94.141462][ T5311] EXT4-fs error (device loop0): ext4_truncate:4255: inode #13: comm syz.0.539: mark_inode_dirty error
[   94.147965][ T5319] loop3: detected capacity change from 0 to 2048
[   94.159375][ T5311] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   94.185694][ T5311] EXT4-fs (loop0): 1 truncate cleaned up
[   94.197200][ T5311] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.213162][ T5329] netlink: 12 bytes leftover after parsing attributes in process `syz.1.546'.
[   94.242130][ T5319] Alternate GPT is invalid, using primary GPT.
[   94.248613][ T5319]  loop3: p2 p3 p7
[   94.259637][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.260973][ T5333] loop1: detected capacity change from 0 to 2048
[   94.276712][ T5333] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   94.323697][ T5335] tipc: Started in network mode
[   94.328882][ T5335] tipc: Node identity ac14140f, cluster identity 4711
[   94.336191][ T5335] tipc: New replicast peer: 255.0.0.255
[   94.341889][ T5335] tipc: Enabled bearer <udp:s>, priority 10
[   94.373003][ T5343] tipc: Started in network mode
[   94.378166][ T5343] tipc: Node identity _, cluster identity 4711
[   94.411327][ T5350] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   94.455737][ T5359] FAULT_INJECTION: forcing a failure.
[   94.455737][ T5359] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   94.469115][ T5359] CPU: 1 UID: 0 PID: 5359 Comm: syz.3.560 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[   94.469150][ T5359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.469162][ T5359] Call Trace:
[   94.469168][ T5359]  <TASK>
[   94.469175][ T5359]  __dump_stack+0x1d/0x30
[   94.469196][ T5359]  dump_stack_lvl+0xe8/0x140
[   94.469284][ T5359]  dump_stack+0x15/0x1b
[   94.469305][ T5359]  should_fail_ex+0x265/0x280
[   94.469340][ T5359]  should_fail_alloc_page+0xf2/0x100
[   94.469377][ T5359]  __alloc_frozen_pages_noprof+0xff/0x360
[   94.469519][ T5359]  alloc_pages_mpol+0xb3/0x250
[   94.469548][ T5359]  alloc_pages_noprof+0x90/0x130
[   94.469576][ T5359]  pte_alloc_one+0x2a/0x110
[   94.469599][ T5359]  __pte_alloc+0x32/0x290
[   94.469670][ T5359]  handle_mm_fault+0x1d74/0x2ae0
[   94.469705][ T5359]  ? mas_walk+0xf2/0x120
[   94.469735][ T5359]  do_user_addr_fault+0x636/0x1090
[   94.469777][ T5359]  exc_page_fault+0x54/0xc0
[   94.469836][ T5359]  asm_exc_page_fault+0x26/0x30
[   94.469863][ T5359] RIP: 0033:0x7f9746d90d66
[   94.469881][ T5359] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[   94.469902][ T5359] RSP: 002b:00007f97455364a0 EFLAGS: 00010246
[   94.469928][ T5359] RAX: 0000000000000001 RBX: 00007f9745536540 RCX: 0000000000000101
[   94.469947][ T5359] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00007f97455365e0
[   94.469962][ T5359] RBP: 0000000000000102 R08: 00007f973d117000 R09: 0000000000000000
[   94.470026][ T5359] R10: 0000000000000000 R11: 00007f9745536550 R12: 0000000000000001
[   94.470041][ T5359] R13: 00007f9746f6bfc0 R14: 0000000000000000 R15: 00007f97455365e0
[   94.470063][ T5359]  </TASK>
[   94.642736][ T5359] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   94.643812][ T5361] loop1: detected capacity change from 0 to 128
[   94.687581][ T5359] loop3: detected capacity change from 0 to 512
[   94.803990][ T5359] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.560: Failed to acquire dquot type 1
[   94.815959][ T5359] EXT4-fs (loop3): 1 truncate cleaned up
[   94.823246][ T5359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.846802][ T5359] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.885185][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.060001][ T3384] tipc: Node number set to 4269801488
[   95.382287][ T4342] tipc: Node number set to 2886997007
[   95.536318][ T5398] loop2: detected capacity change from 0 to 512
[   95.545616][ T5396] loop0: detected capacity change from 0 to 4096
[   95.554629][ T5396] ext2: Unknown parameter 'obj_type'
[   95.565829][ T5398] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.573: Parent and EA inode have the same ino 15
[   95.617689][ T5398] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.573: Parent and EA inode have the same ino 15
[   95.644257][ T5398] EXT4-fs (loop2): 1 orphan inode deleted
[   95.654540][ T5398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.667845][ T5398] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.686879][ T5411] xt_connbytes: Forcing CT accounting to be enabled
[   95.694695][ T5412] xt_CT: You must specify a L4 protocol and not use inversions on it
[   95.703544][ T5411] Cannot find add_set index 0 as target
[   95.726208][ T5398] loop2: detected capacity change from 0 to 512
[   95.741173][ T5415] netlink: 'syz.4.578': attribute type 21 has an invalid length.
[   95.749119][ T5415] netlink: 132 bytes leftover after parsing attributes in process `syz.4.578'.
[   95.770250][ T5398] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   95.818030][ T5398] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.573: invalid block
[   95.858949][ T5398] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.573: invalid indirect mapped block 4294967295 (level 1)
[   95.875744][ T5425] loop0: detected capacity change from 0 to 512
[   95.891670][ T5425] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.899353][ T5426] xt_hashlimit: max too large, truncated to 1048576
[   95.921248][ T5398] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.573: invalid indirect mapped block 4294967295 (level 1)
[   95.949311][ T5425] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.971263][ T5398] EXT4-fs (loop2): 2 truncates cleaned up
[   95.990843][ T5398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.004971][ T5425] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[   96.021891][ T5398] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.031126][ T5425] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[   96.091529][ T5425] EXT4-fs (loop0): 1 truncate cleaned up
[   96.108014][ T5425] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.258039][ T5438] netlink: 68 bytes leftover after parsing attributes in process `syz.3.586'.
[   96.308390][ T5440] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   96.358370][ T5442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.588'.
[   96.369813][ T5442] 9pnet_fd: Insufficient options for proto=fd
[   96.419812][ T5449] SELinux:  Context system_u:object_r:kmsg_device_t:s0 is not valid (left unmapped).
[   96.555509][ T5456] loop2: detected capacity change from 0 to 128
[   96.609216][ T5453] lo speed is unknown, defaulting to 1000
[   96.763779][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.792543][ T5471] xt_CT: No such helper "syz0"
[   96.860310][ T5477] netlink: 56 bytes leftover after parsing attributes in process `wޣ�'.
[   96.868950][ T5477] netlink: 56 bytes leftover after parsing attributes in process `wޣ�'.
[   96.896876][ T5480] loop2: detected capacity change from 0 to 512
[   96.913289][ T5480] EXT4-fs (loop2): 1 orphan inode deleted
[   96.919775][ T5480] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.931550][ T4337] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:15: Failed to release dquot type 1
[   96.973157][ T5484] vlan2: entered allmulticast mode
[   96.978512][ T5484] bond0: entered allmulticast mode
[   96.983801][ T5484] bond_slave_1: entered allmulticast mode
[   97.076422][ T5486] SELinux:  Context system_u:object_r:dbusd_exec_t:s0 is not valid (left unmapped).
[   97.201606][ T5490] loop4: detected capacity change from 0 to 128
[   97.208972][ T5490] vfat: Unknown parameter '���-G����>��48�U'�<��i(k�]|I
j`�k����l��I���QLˡPwn��D�]��l?��:H'
[   97.342003][ T5496] netlink: 32 bytes leftover after parsing attributes in process `syz.4.606'.
[   97.388743][ T5501] loop3: detected capacity change from 0 to 128
[   97.418469][ T5501] ext4 filesystem being mounted at /141/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   97.451617][ T5505] loop4: detected capacity change from 0 to 512
[   97.458960][ T5505] journal_path: Non-blockdev passed as './bus'
[   97.465188][ T5505] EXT4-fs: error: could not find journal device path
[   97.499085][ T4336] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:14: Failed to release dquot type 1
[   97.618256][ T5514] bond1: entered promiscuous mode
[   97.623042][ T5517] loop2: detected capacity change from 0 to 164
[   97.623612][ T5514] bond1: entered allmulticast mode
[   97.646389][ T5514] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.661123][ T5514] bond1 (unregistering): Released all slaves
[   97.672231][ T5521] loop0: detected capacity change from 0 to 512
[   97.674984][ T5517] iso9660: Corrupted directory entry in block 4 of inode 1792
[   97.687052][ T5521] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.699936][ T5517] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[   97.709068][ T5521] EXT4-fs warning (device loop0): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop0.
[   97.729429][ T5517] iso9660: Corrupted directory entry in block 4 of inode 1792
[   97.762862][ T5527] loop0: detected capacity change from 0 to 512
[   97.775438][ T5527] EXT4-fs (loop0): orphan cleanup on readonly fs
[   97.784021][ T5529] loop4: detected capacity change from 0 to 128
[   97.797708][ T5534] netlink: 'syz.1.620': attribute type 3 has an invalid length.
[   97.802784][ T5527] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.618: bg 0: block 248: padding at end of block bitmap is not set
[   97.807816][ T5534] netlink: 'syz.1.620': attribute type 1 has an invalid length.
[   97.820409][ T5527] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.618: Failed to acquire dquot type 1
[   97.839338][ T5527] EXT4-fs (loop0): 1 truncate cleaned up
[   97.858148][ T5534] 8021q: adding VLAN 0 to HW filter on device bond3
[   97.872559][ T5536] netlink: 'syz.4.619': attribute type 2 has an invalid length.
[   97.964865][ T5551] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   98.026914][ T5557] loop2: detected capacity change from 0 to 164
[   98.034118][ T5557] isofs_fill_super: get root inode failed
[   98.058681][ T5572] xt_hashlimit: max too large, truncated to 1048576
[   98.209746][ T5556] loop3: detected capacity change from 0 to 2048
[   98.235913][ T5609] bridge_slave_1: left allmulticast mode
[   98.236820][ T5607] loop4: detected capacity change from 0 to 2048
[   98.241723][ T5609] bridge_slave_1: left promiscuous mode
[   98.254166][ T5609] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.262035][ T5609] bridge_slave_0: left allmulticast mode
[   98.267684][ T5609] bridge_slave_0: left promiscuous mode
[   98.273651][ T5609] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.281683][ T5556]  loop3: p1 < > p4
[   98.286241][ T5556] loop3: p4 size 8388608 extends beyond EOD, truncated
[   98.384673][   T29] kauditd_printk_skb: 465 callbacks suppressed
[   98.384692][   T29] audit: type=1400 audit(1745785823.686:2327): avc:  denied  { nlmsg_write } for  pid=5617 comm="syz.4.651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   98.517436][ T5621] bridge_slave_0: left allmulticast mode
[   98.523368][ T5621] bridge_slave_0: left promiscuous mode
[   98.529109][ T5621] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.532009][ T5624] __nla_validate_parse: 5 callbacks suppressed
[   98.532030][ T5624] netlink: 28 bytes leftover after parsing attributes in process `syz.3.653'.
[   98.563294][   T29] audit: type=1400 audit(1745785823.866:2328): avc:  denied  { ioctl } for  pid=5619 comm="syz.1.652" path="socket:[11297]" dev="sockfs" ino=11297 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   98.590484][ T5621] bridge_slave_1: left allmulticast mode
[   98.596171][ T5621] bridge_slave_1: left promiscuous mode
[   98.601912][ T5621] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.671740][ T5621] bond0: (slave bond_slave_1): Releasing backup interface
[   98.690259][   T29] audit: type=1400 audit(1745785823.986:2329): avc:  denied  { write } for  pid=5623 comm="syz.3.653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   98.721513][ T5621] bond_slave_1: left allmulticast mode
[   98.755568][ T5628] netlink: 'syz.3.653': attribute type 1 has an invalid length.
[   98.758492][ T5621] team0: Port device team_slave_0 removed
[   98.789606][ T5621] team0: Port device team_slave_1 removed
[   98.796848][ T5621] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.804468][ T5621] batman_adv: batadv0: Removing interface: batadv_slave_0
[   98.813374][ T5621] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   98.820916][ T5621] batman_adv: batadv0: Removing interface: batadv_slave_1
[   98.864710][ T5628] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.879929][ T5631] bond1: (slave ip6gretap1): making interface the new active one
[   98.888421][ T5631] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   98.896249][ T5631] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   98.907304][ T5631] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   98.941086][   T29] audit: type=1400 audit(1745785824.246:2330): avc:  denied  { setopt } for  pid=5642 comm="syz.2.658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   98.960944][ T4341] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   98.973147][ T5648] netlink: 12 bytes leftover after parsing attributes in process `syz.1.659'.
[   98.980992][ T5650] loop2: detected capacity change from 0 to 128
[   98.983280][   T29] audit: type=1400 audit(1745785824.256:2331): avc:  denied  { read } for  pid=5642 comm="syz.2.658" path="socket:[11329]" dev="sockfs" ino=11329 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   99.011429][   T29] audit: type=1400 audit(1745785824.256:2332): avc:  denied  { bind } for  pid=5642 comm="syz.2.658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   99.036639][ T5650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.660'.
[   99.045742][ T5650] netlink: 4 bytes leftover after parsing attributes in process `syz.2.660'.
[   99.098834][ T5663] netlink: 12 bytes leftover after parsing attributes in process `syz.3.664'.
[   99.133034][ T5658] netlink: 'syz.0.662': attribute type 1 has an invalid length.
[   99.140789][ T5658] netlink: 92 bytes leftover after parsing attributes in process `syz.0.662'.
[   99.193269][ T5671] loop1: detected capacity change from 0 to 512
[   99.216088][ T5676] lo speed is unknown, defaulting to 1000
[   99.229997][ T4342] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   99.254377][ T5671] EXT4-fs (loop1): 1 orphan inode deleted
[   99.269340][ T5683] netlink: 24 bytes leftover after parsing attributes in process `syz.3.667'.
[   99.279711][   T51] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   99.289601][   T51] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   99.305430][ T5671] ext4 filesystem being mounted at /107/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.323446][ T5661] loop2: detected capacity change from 0 to 1024
[   99.330492][ T5676] netlink: 28 bytes leftover after parsing attributes in process `syz.3.667'.
[   99.332651][   T29] audit: type=1326 audit(1745785824.626:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5672 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   99.339402][ T5676] netlink: 108 bytes leftover after parsing attributes in process `syz.3.667'.
[   99.362712][   T29] audit: type=1326 audit(1745785824.626:2334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5672 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   99.371792][ T5676] netlink: 28 bytes leftover after parsing attributes in process `syz.3.667'.
[   99.394942][   T29] audit: type=1326 audit(1745785824.626:2335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5672 comm="syz.3.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9746ece969 code=0x7ffc0000
[   99.438780][ T5661] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0
[   99.463939][ T5661] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   99.508880][ T5661] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm +}[@: corrupted inode contents
[   99.552416][   T51] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   99.577735][ T5661] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #13: comm +}[@: mark_inode_dirty error
[   99.612480][ T5661] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm +}[@: corrupted inode contents
[   99.633535][ T5661] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #13: comm +}[@: mark_inode_dirty error
[   99.651755][ T5661] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm +}[@: corrupted inode contents
[   99.651892][ T4336] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:14: Failed to release dquot type 1
[   99.685160][ T5661] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   99.705743][ T5661] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #13: comm +}[@: corrupted inode contents
[   99.717885][ T5661] EXT4-fs error (device loop2): ext4_truncate:4255: inode #13: comm +}[@: mark_inode_dirty error
[   99.736841][ T5712] loop0: detected capacity change from 0 to 512
[   99.753935][ T5661] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   99.768251][ T5712] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.780745][ T5661] EXT4-fs (loop2): 1 truncate cleaned up
[   99.787914][ T5709] sch_tbf: burst 2 is lower than device ip6tnl0 mtu (1452) !
[   99.842322][ T5661] EXT4-fs: Ignoring removed orlov option
[   99.849521][ T5661] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   99.860325][ T5661] EXT4-fs (loop2): can't enable nombcache during remount
[   99.877460][ T5731] loop0: detected capacity change from 0 to 512
[   99.894880][ T5733] loop1: detected capacity change from 0 to 1024
[   99.902989][ T5733] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.917782][ T5731] EXT4-fs (loop0): 1 orphan inode deleted
[   99.929958][   T57] EXT4-fs error (device loop0): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[   99.942022][ T5731] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.958481][ T5733] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #3: comm b9�: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0)
[   99.981536][ T5733] EXT4-fs error (device loop1): ext4_quota_enable:7129: comm b9�: Bad quota inode: 3, type: 0
[   99.992367][ T5733] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  100.008907][ T5733] EXT4-fs (loop1): mount failed
[  100.010392][   T57] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  100.063985][ T5754] netlink: 'syz.3.681': attribute type 7 has an invalid length.
[  100.071760][ T5754] netlink: 'syz.3.681': attribute type 8 has an invalid length.
[  100.089178][ T5754] netlink: 'syz.3.681': attribute type 7 has an invalid length.
[  100.096928][ T5754] netlink: 'syz.3.681': attribute type 8 has an invalid length.
[  100.121884][ T5767] bond3: entered promiscuous mode
[  100.127057][ T5767] bond3: entered allmulticast mode
[  100.132574][ T5767] 8021q: adding VLAN 0 to HW filter on device bond3
[  100.150979][ T5767] bond3 (unregistering): Released all slaves
[  100.194686][ T5781] loop3: detected capacity change from 0 to 512
[  100.242746][ T5781] EXT4-fs (loop3): 1 orphan inode deleted
[  100.254748][ T5781] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.271050][ T4337] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:15: Failed to release dquot type 1
[  100.395328][ T5810] loop3: detected capacity change from 0 to 128
[  100.501946][ T5831] lo speed is unknown, defaulting to 1000
[  100.513727][ T5835] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[  100.630219][ T4337] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  100.638487][ T4337] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  100.684907][ T5862] vlan2: entered allmulticast mode
[  100.690121][ T5862] syz_tun: entered allmulticast mode
[  100.706759][ T5863] lo speed is unknown, defaulting to 1000
[  100.775992][ T5868] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  100.785926][ T5868] usb usb7: usbfs: process 5868 (syz.1.705) did not claim interface 0 before use
[  101.139945][   T57] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  101.157257][ T5929] validate_nla: 3 callbacks suppressed
[  101.157275][ T5929] netlink: '+}[@': attribute type 39 has an invalid length.
[  101.173256][ T5937] netlink: 'syz.4.715': attribute type 1 has an invalid length.
[  101.226277][ T5939] FAULT_INJECTION: forcing a failure.
[  101.226277][ T5939] name failslab, interval 1, probability 0, space 0, times 0
[  101.228707][ T5937] 8021q: adding VLAN 0 to HW filter on device bond1
[  101.238951][ T5939] CPU: 1 UID: 0 PID: 5939 Comm: syz.0.721 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[  101.238986][ T5939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.239068][ T5939] Call Trace:
[  101.239076][ T5939]  <TASK>
[  101.239088][ T5939]  __dump_stack+0x1d/0x30
[  101.239207][ T5939]  dump_stack_lvl+0xe8/0x140
[  101.239231][ T5939]  dump_stack+0x15/0x1b
[  101.239253][ T5939]  should_fail_ex+0x265/0x280
[  101.239294][ T5939]  should_failslab+0x8c/0xb0
[  101.239406][ T5939]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  101.239434][ T5939]  ? sidtab_sid2str_get+0xa0/0x130
[  101.239474][ T5939]  kmemdup_noprof+0x2b/0x70
[  101.239506][ T5939]  sidtab_sid2str_get+0xa0/0x130
[  101.239543][ T5939]  security_sid_to_context_core+0x1eb/0x2e0
[  101.239620][ T5939]  security_sid_to_context+0x27/0x40
[  101.239654][ T5939]  selinux_lsmprop_to_secctx+0x67/0xf0
[  101.239693][ T5939]  security_lsmprop_to_secctx+0x43/0x80
[  101.239758][ T5939]  audit_log_task_context+0x77/0x190
[  101.239799][ T5939]  audit_log_task+0xf4/0x250
[  101.239935][ T5939]  audit_seccomp+0x61/0x100
[  101.239965][ T5939]  ? __seccomp_filter+0x68c/0x10d0
[  101.239992][ T5939]  __seccomp_filter+0x69d/0x10d0
[  101.240020][ T5939]  ? up_write+0x18/0x60
[  101.240046][ T5939]  ? shmem_file_write_iter+0xd0/0xf0
[  101.240099][ T5939]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  101.240158][ T5939]  ? vfs_write+0x75e/0x8d0
[  101.240195][ T5939]  __secure_computing+0x82/0x150
[  101.240221][ T5939]  syscall_trace_enter+0xcf/0x1e0
[  101.240252][ T5939]  do_syscall_64+0xaa/0x1a0
[  101.240305][ T5939]  ? clear_bhb_loop+0x25/0x80
[  101.240341][ T5939]  ? clear_bhb_loop+0x25/0x80
[  101.240391][ T5939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.240418][ T5939] RIP: 0033:0x7f609eced37c
[  101.240438][ T5939] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  101.240461][ T5939] RSP: 002b:00007f609d357030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  101.240486][ T5939] RAX: ffffffffffffffda RBX: 00007f609ef15fa0 RCX: 00007f609eced37c
[  101.240503][ T5939] RDX: 000000000000000f RSI: 00007f609d3570a0 RDI: 0000000000000006
[  101.240520][ T5939] RBP: 00007f609d357090 R08: 0000000000000000 R09: 0000000000000000
[  101.240588][ T5939] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  101.240602][ T5939] R13: 0000000000000000 R14: 00007f609ef15fa0 R15: 00007ffdfdeadd68
[  101.240627][ T5939]  </TASK>
[  101.350054][ T3384] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  101.512100][ T5942] 8021q: adding VLAN 0 to HW filter on device bond1
[  101.540089][ T5942] bond1: (slave wireguard1): The slave device specified does not support setting the MAC address
[  101.552117][ T5942] bond1: (slave wireguard1): Error -95 calling set_mac_address
[  101.596978][ T5953] loop2: detected capacity change from 0 to 512
[  101.613641][ T5954] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  101.644376][ T5953] journal_path: Non-blockdev passed as './bus'
[  101.650743][ T5953] EXT4-fs: error: could not find journal device path
[  101.657715][ T5956] xt_hashlimit: size too large, truncated to 1048576
[  101.806023][ T5972] loop0: detected capacity change from 0 to 1024
[  101.828262][ T5972] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  101.840571][ T5972] EXT4-fs (loop0): group descriptors corrupted!
[  101.936508][ T5984] loop2: detected capacity change from 0 to 1764
[  101.981257][ T5988] IPv6: Can't replace route, no match found
[  101.992853][ T5990] pimreg: entered allmulticast mode
[  101.993395][ T5993] loop0: detected capacity change from 0 to 512
[  102.006195][ T5990] pimreg: left allmulticast mode
[  102.023110][ T5993] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  102.035371][ T5993] EXT4-fs (loop0): invalid journal inode
[  102.041467][ T5993] EXT4-fs (loop0): can't get journal size
[  102.047852][ T5993] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c119, mo2=0002]
[  102.056364][ T5996] SELinux: syz.1.740 (5996) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  102.056744][ T5993] System zones: 1-12, 13-13
[  102.095418][ T5993] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.737: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  102.120621][ T6001] FAULT_INJECTION: forcing a failure.
[  102.120621][ T6001] name failslab, interval 1, probability 0, space 0, times 0
[  102.133357][ T6001] CPU: 0 UID: 0 PID: 6001 Comm: syz.2.742 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[  102.133389][ T6001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  102.133444][ T6001] Call Trace:
[  102.133451][ T6001]  <TASK>
[  102.133460][ T6001]  __dump_stack+0x1d/0x30
[  102.133485][ T6001]  dump_stack_lvl+0xe8/0x140
[  102.133544][ T6001]  dump_stack+0x15/0x1b
[  102.133572][ T6001]  should_fail_ex+0x265/0x280
[  102.133602][ T6001]  should_failslab+0x8c/0xb0
[  102.133681][ T6001]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  102.133722][ T6001]  ? __d_alloc+0x3d/0x350
[  102.133775][ T6001]  __d_alloc+0x3d/0x350
[  102.133805][ T6001]  ? mpol_shared_policy_init+0xbd/0x4c0
[  102.133833][ T6001]  d_alloc_pseudo+0x1e/0x80
[  102.133899][ T6001]  alloc_file_pseudo+0x71/0x160
[  102.133972][ T6001]  __shmem_file_setup+0x1b9/0x1f0
[  102.133997][ T6001]  shmem_file_setup+0x3b/0x50
[  102.134024][ T6001]  __se_sys_memfd_create+0x2c3/0x590
[  102.134054][ T6001]  __x64_sys_memfd_create+0x31/0x40
[  102.134107][ T6001]  x64_sys_call+0x122f/0x2fb0
[  102.134132][ T6001]  do_syscall_64+0xd0/0x1a0
[  102.134157][ T6001]  ? clear_bhb_loop+0x25/0x80
[  102.134182][ T6001]  ? clear_bhb_loop+0x25/0x80
[  102.134234][ T6001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.134257][ T6001] RIP: 0033:0x7f7decdae969
[  102.134274][ T6001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.134319][ T6001] RSP: 002b:00007f7deb416d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  102.134337][ T6001] RAX: ffffffffffffffda RBX: 0000000000001041 RCX: 00007f7decdae969
[  102.134348][ T6001] RDX: 00007f7deb416dec RSI: 0000000000000000 RDI: 00007f7dece31444
[  102.134362][ T6001] RBP: 0000200000000000 R08: 00007f7deb416b07 R09: 0000000000000000
[  102.134450][ T6001] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  102.134513][ T6001] R13: 00007f7deb416dec R14: 00007f7deb416df0 R15: 00007ffd8e518588
[  102.134534][ T6001]  </TASK>
[  102.343587][ T5993] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.737: couldn't read orphan inode 15 (err -117)
[  103.153052][ T6037] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  103.183028][ T6006] ==================================================================
[  103.191143][ T6006] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[  103.198953][ T6006] 
[  103.201273][ T6006] write to 0xffffea0004140018 of 8 bytes by task 5998 on cpu 1:
[  103.208898][ T6006]  __filemap_remove_folio+0x1a5/0x2a0
[  103.214298][ T6006]  filemap_remove_folio+0x6d/0x1d0
[  103.219410][ T6006]  truncate_inode_folio+0x42/0x50
[  103.224444][ T6006]  shmem_undo_range+0x244/0xa80
[  103.229301][ T6006]  shmem_evict_inode+0x134/0x520
[  103.234263][ T6006]  evict+0x2e0/0x550
[  103.238157][ T6006]  iput+0x447/0x5b0
[  103.241976][ T6006]  dentry_unlink_inode+0x24f/0x260
[  103.247090][ T6006]  __dentry_kill+0x18d/0x4b0
[  103.251688][ T6006]  dput+0x5e/0xd0
[  103.255329][ T6006]  __fput+0x444/0x650
[  103.259309][ T6006]  ____fput+0x1c/0x30
[  103.263306][ T6006]  task_work_run+0x12e/0x1a0
[  103.267901][ T6006]  resume_user_mode_work+0x6a/0x70
[  103.273013][ T6006]  syscall_exit_to_user_mode+0x77/0xb0
[  103.278487][ T6006]  do_syscall_64+0xdd/0x1a0
[  103.282995][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.288904][ T6006] 
[  103.291229][ T6006] read to 0xffffea0004140018 of 8 bytes by task 6006 on cpu 0:
[  103.298771][ T6006]  folio_mapping+0xa1/0x120
[  103.303297][ T6006]  evict_folios+0xdb9/0x33d0
[  103.307888][ T6006]  try_to_shrink_lruvec+0x45a/0x7e0
[  103.313090][ T6006]  shrink_lruvec+0x22e/0x1a40
[  103.317792][ T6006]  shrink_node+0x686/0x2110
[  103.322296][ T6006]  do_try_to_free_pages+0x3f6/0xcd0
[  103.327504][ T6006]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  103.333409][ T6006]  try_charge_memcg+0x3ab/0x870
[  103.338267][ T6006]  obj_cgroup_charge_pages+0xb7/0x1a0
[  103.343641][ T6006]  __memcg_kmem_charge_page+0x9f/0x170
[  103.349138][ T6006]  __alloc_frozen_pages_noprof+0x188/0x360
[  103.354950][ T6006]  alloc_pages_mpol+0xb3/0x250
[  103.359716][ T6006]  alloc_pages_noprof+0x90/0x130
[  103.364674][ T6006]  __vmalloc_node_range_noprof+0x6a4/0xdf0
[  103.370486][ T6006]  __kvmalloc_node_noprof+0x2f3/0x4d0
[  103.375874][ T6006]  ip_set_alloc+0x1f/0x30
[  103.380219][ T6006]  hash_netiface_create+0x282/0x740
[  103.385434][ T6006]  ip_set_create+0x3c9/0x960
[  103.390041][ T6006]  nfnetlink_rcv_msg+0x4c3/0x590
[  103.394993][ T6006]  netlink_rcv_skb+0x120/0x220
[  103.399802][ T6006]  nfnetlink_rcv+0x16b/0x1690
[  103.404482][ T6006]  netlink_unicast+0x59e/0x670
[  103.409253][ T6006]  netlink_sendmsg+0x58b/0x6b0
[  103.414038][ T6006]  __sock_sendmsg+0x142/0x180
[  103.418718][ T6006]  ____sys_sendmsg+0x31e/0x4e0
[  103.423494][ T6006]  ___sys_sendmsg+0x17b/0x1d0
[  103.428181][ T6006]  __x64_sys_sendmsg+0xd4/0x160
[  103.433038][ T6006]  x64_sys_call+0x2999/0x2fb0
[  103.437714][ T6006]  do_syscall_64+0xd0/0x1a0
[  103.442215][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.448107][ T6006] 
[  103.450424][ T6006] value changed: 0xffff88812804c7c0 -> 0x0000000000000000
[  103.457524][ T6006] 
[  103.459842][ T6006] Reported by Kernel Concurrency Sanitizer on:
[  103.465987][ T6006] CPU: 0 UID: 0 PID: 6006 Comm: syz.4.741 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(voluntary) 
[  103.478318][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.488389][ T6006] ==================================================================
[  103.950362][ T4334] ip6_tnl_xmit_ctl: 1 callbacks suppressed
[  103.950376][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  104.879964][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  105.070011][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  106.180090][   T57] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  107.279988][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  108.399912][ T4332] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  109.519979][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  110.620006][ T4332] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  111.739952][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  112.870045][ T4334] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!