last executing test programs:

54.779532654s ago: executing program 1 (id=2):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x5c}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x20, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000900000000000000e00000009500000000000000b7080000000000007b8af8ff00000000b7080000ffffff7f7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300000875f6c41584339b2d93e43ca6cbd9a593703b8e4eff26fe28fce934b876565679af993a459c3474bae2aed38b459fd64ffc4fc84a", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000018610000770a0000000000000200000085000000c6000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
copy_file_range(r2, 0x0, r5, 0x0, 0xa, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000000)={'team0\x00', <r6=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=@delqdisc={0xf0, 0x25, 0x300, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0x10, 0xfff3}, {0x3, 0x8}, {0x6, 0x7}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x7}, @qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x5, [0x3, 0x7, 0x2, 0x6, 0xa, 0x1, 0x9, 0xa, 0x8, 0x7, 0xe, 0x6, 0xc, 0x2a, 0x1, 0xf], 0x0, [0x3, 0x9, 0x6, 0x4, 0x2, 0x4, 0xb8b8, 0x9, 0x0, 0x6, 0x7, 0x8, 0xfd4, 0x10, 0x31f, 0x7a], [0x97, 0xe350, 0x73, 0x9, 0x3, 0x1, 0x7, 0x0, 0x5, 0xf, 0x6, 0x8, 0x5, 0x10, 0xfff1, 0x50]}}}}, @TCA_RATE={0x6, 0x5, {0x4, 0x8}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_RATE={0x6, 0x5, {0x5, 0xf9}}, @qdisc_kind_options=@q_codel={{0xa}, {0x24, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x8}, @TCA_CODEL_LIMIT={0x8, 0x2, 0xb}, @TCA_CODEL_ECN={0x8}, @TCA_CODEL_TARGET={0x8, 0x1, 0x5}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x7f}}, @TCA_RATE={0x6, 0x5, {0x1, 0x9}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x2}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80d1}, 0x34008098)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r8 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0xc14002, &(0x7f0000000300)=ANY=[], 0x0, 0x729, &(0x7f0000001340)="$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")
sendmmsg(0xffffffffffffffff, &(0x7f0000002340), 0x0, 0x0)
r9 = socket(0x28, 0x5, 0x0)
getsockopt$inet_mreqn(r9, 0x0, 0x24, 0x0, 0x0)
futimesat(r8, &(0x7f0000000000)='./file1\x00', 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0xfe80, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r6, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa9e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r10, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

53.280488377s ago: executing program 1 (id=7):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c000000100001040100"/20, @ANYRES32=0x0, @ANYBLOB="0023000000000000280012800b00010067656e65766500001800028014000700fe8000000000000000000000000000271400030067656e65766531"], 0x5c}, 0x1, 0x0, 0x0, 0x40010}, 0x10)
r1 = socket(0x80000000000000a, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x3, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0xfffffff9, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x9, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000006ffc)=0x203, 0x4)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bind$packet(r2, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
socket$pppl2tp(0x18, 0x1, 0x1)
sendto$inet6(r2, &(0x7f0000000280)="02042c08ec074802010e0200c52cf7c20675e005b02f0800eb2b2ff0dac8897c6b112002faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./bus\x00', 0x210000, &(0x7f0000000200)={[{@inlinecrypt}, {@jqfmt_vfsv1}, {@quota}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@sysvgroups}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}], [{@appraise}]}, 0x1, 0x56f, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hzcpouowmHWsduD24F19kCCIOxD/Adx+H/4B/xUAHQ0bRBxEiN73psjZp2i4z2fL5wG3Pyb23535z7vf2nNyEBDC0jqU/chEvR8Q3ScShlnX5yFYeW9tu9eH1mXRJol7/9M8kkuyx5vZJ9vtAVnkpIn79KuJkbnO71eWV+WK5XFrM6hO1hSsT1eWVU5cWinOludLlqenpM29NT737zts9i/X1839//8ndD898fXz1u5/vH76dxNk4mK1rjeMJ3GitHCv+m5VG4+yGDSd70NggSfp9AOzKSJbno5FeAw7FSJb1wPPvy4ioA0Mqkf8wpJrjgObcvkfz4GfGgw/WJkCN2Mda48+vvTYSextzo/2ryWMzo3S+O96D9tM2fvnjzu10ia1fh9jXpQ6wIzduRsTpfH7z9T/Jrn+7d7rx4vHWNrYxbP9/oJ/upuOfN9qN/3Lr459oM/450CZ3d6N7/ufu96CZjtLx33ttx7/rl67xkaz2QmPMN5pcvFQunY6IFyPiRNS73vo4s3qv3mld6/gvXdL2m2PB7Dju5/c8vs9ssVaMiLFdhvyYBzcjXsm3iz9Z7/+kTf+nz8f5bbZxtHTn1U7rusf/dNV/initbf8/6tZk6/uTE43zYaJ5Vmz2162jv3Vqv9/xp/2/f+v4x5PW+7XVnbfx495/Sp3W7fb8H0s+a5SbSXCtWKstTkaMJR9vfnzq0b7NenP7NP4Tx7e+/rU7/9PJ1+fbjP/WkVsdNx2E/p/dUf/vvHDvoy9+6NT+9vr/zUbpRPZIdv1rLztXtnuAT/r8AQAAAAAAwCDJRcTBSHKF9XIuVyisvb/jSOzPlSvV2smLlaXLs9H4rOx4jOaad7oPtbwfYjJ7P2yzPrWhPh0RhyPi25F9jXphplKe7XfwAAAAAAAAAAAAAAAAAAAAMCAOdPj8f+r3kX4fHfDUNb7YYE+/jwLoh65f+d+Lb3oCBlLX/AeeW/Ifhpf8h+El/2F4yX8YXvIfhpf8h+El/wEAAAAAAAAAAAAAAAAAAAAAAAAAAKCnzp87ly711YfXZ9L67NXlpfnK1VOzpep8YWFppjBTWbxSmKtU5sqlwkxlodvfK1cqVyanYunaRK1UrU1Ul1cuLFSWLtcuXFoozpUulEb/l6gAAAAAAAAAAAAAAAAAAADg2VJdXpkvlsulRYWOhfdjIA7jaQa4Zle75wclCoUOhZtZ9+5srz5elAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/8CAAD//4yLMZo=")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
fallocate(r5, 0x20, 0x0, 0x8)
unshare(0x8000000)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='asymmetric\x00', 0x0, &(0x7f00000002c0)="9fcc", 0x2, r6)
semget$private(0x0, 0x4000, 0x555)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f00000012c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r8, &(0x7f0000004200)='t', 0x1)
fsopen(&(0x7f0000000000)='cpuset\x00', 0x0)
sendfile(r8, r7, 0x0, 0x3ffff)
sendfile(r8, r7, 0x0, 0x7ffff000)
semtimedop(0x0, &(0x7f0000000440)=[{0x0, 0x0, 0x1000}], 0xf, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000340)={0x4, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x0, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffd}}}, 0x108)
syz_emit_ethernet(0x6a, &(0x7f0000000180)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaa008100000086dd60f53a0400303a00fc020000000061513c00000000000000000001ff02000000000000000000000000000102009078000005006050835900b3e6db5d9b2934520000000000000000000000fc0100"/106], 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x40}, 0x1c)

51.82722652s ago: executing program 1 (id=16):
socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000a00)={{0x14}, [@NFT_MSG_DELSET={0x1c, 0xb, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}]}, @NFT_MSG_NEWSET={0x20, 0x9, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x44, 0x16, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x188, 0x6, 0xa, 0x201, 0x0, 0x0, {0x3b2fbf8fa50a416f, 0x0, 0x9}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0xb0, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_XFRM_SPNUM={0x8}]}}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x5c, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0xf}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz0\x00'}, @NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_OBJREF_IMM_TYPE={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_OBJREF_IMM_TYPE={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_OBJREF_IMM_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJREF_SET_ID={0x8, 0x5, 0x1, 0x0, 0x3}, @NFTA_OBJREF_SET_ID={0x8, 0x5, 0x1, 0x0, 0x3}]}}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x60, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_DYNSET_SREG_DATA={0x8, 0x5, 0x1, 0x0, 0x12}]}}}, {0x24, 0x1, 0x0, 0x1, @tproxy={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_REG_ADDR={0x8, 0x2, 0x1, 0x0, 0x12}]}}}, {0x10, 0x1, 0x0, 0x1, @bitwise={{0xc}, @void}}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT={0x24, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88e7}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x62}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x73}]}]}, @NFT_MSG_DELRULE={0x78, 0x8, 0xa, 0x603, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT={0x44, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88e1}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x194c}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2e}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x88be}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}]}, @NFT_MSG_NEWCHAIN={0x1c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_CHAIN_FLAGS={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x40041)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000180)={[{@delalloc}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$eJzs3c9rHFUcAPDvbJKmSauJIGg9BQQNlG5Mja2Ch4oHESwU9Gy7bLahZpMt2U1pQg4tIngRVDwIeunZH/Xm1R9X/S88SEvVtFjxIJHZH+222U03bXY3kM8HXva9mdm89903P97sDDsB7FkT6Z9MxKGI+DiJGKtPTyJiqJobjDhRW+72+lo+TUlsbLz9Z1Jd5tb6Wj6a3pM6UC88HRE/fRBxOLO53vLK6nyuWCws1ctTlYXzU+WV1SPnFnJzhbnC4rHpmZmjx186fmznYv3719WD1z954/lvT/z7/lNXP/o5iRNxsD6vOY6dMhET9c9kKP0I7/H6TlfWZ0m/G8BDSTfNgdpWHodiLAaquTZGetkyAKBbNgCAPSgxBgCAPabxPcCt9bV8I/X3G4neuvFaROyvxd+4vlmbM1i/Zre/eh109FZyz5WRJCLGd6D+iYj48vt3v05T1PvBtTSgFy5djogz4xOb9//JpnsWtuuFrWZuDFdfJu6bvNeOP9BPP6Tjn5dbjf8yd8Y/0WL8M9xi230YD97+M9d2oJq20vHfq033tt1uir9ufKBeeqw65htKzp4rFtJ92+MRMRlDw2l5urpo65Hb5M3/brarv3n899en732V1p++3l0ic21w+N73zOYquUeNu+HG5YhnBlvFn9zp/6TN+PdUh3W8+cqHX7Sbl8afxttIm+Pvro0rEc+17P+7fZlseX/iVHV1mGqsFC1899vno+3qb+7/NKX1N84FeiHt/9Gt4x9Pmu/XLG+/jl+ujP3Ybt6D42+9/u9L3qnm99WnXcxVKkvTEfuStzZPP3r3vY1yY/k0/slnW2//tWpbr//pOeGZDuMfvP7HNw8ff3el8c9uq/+3n7l6e36gXf2d9f9MNTdZn9LJ/q/TBj7KZwcAAAAAAAAAAAAAAAAAAAAAAAAAncpExMFIMtk7+Uwmm609w/vJGM0US+XK4bOl5cXZqD4rezyGMo2fuhxr+j3U6frv4TfKR+8rvxgRT0TEZ8Mj1XI2XyrO9jt4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKg70Ob5/6nfh/vdOgCga/b3uwEAQM85/gPA3rO94/9I19oBAPSO838A2Hs6Pv6f6W47AIDecf4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAl506eTJNG/+sr+XT8uyFleX50oUjs4XyfHZhOZ/Nl5bOZ+dKpbliIZsvLbT9R5dqL8VS6fxMLC5fnKoUypWp8srq6YXS8mLl9LmF3FzhdGGoZ5EBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQOfKK6vzuWKxsCSzZWZkdzRj12QGY1c0Q6Zrmea9xEj/dlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9z/AQAA//+MoS4e")
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r5, 0x0, 0x0, 0x1001f0)
copy_file_range(r5, 0x0, r5, &(0x7f00000000c0)=0xc615, 0x101, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000680)='./file0/../file0/../file0/../file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000500)='./file0\x00', 0x0, 0x11080, 0x0)
chroot(&(0x7f0000000040)='./file0/../file0/../file0/../file0\x00')
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='./file0/../file0/../file0/../file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x2ffffffff}, 0x1904, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
setreuid(0x0, 0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r6)

51.483439366s ago: executing program 1 (id=19):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
futimesat(0xffffffffffffffff, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x31a8eb60}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x6, &(0x7f0000000280)=ANY=[@ANYBLOB="85100000080000003a8108001000000018200000", @ANYRES32=r1, @ANYBLOB="000000a0000005000000ba05810100f0ffffff"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0xc8, &(0x7f0000000740)=""/200, 0x100, 0xc, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000580)={0x3, 0x9, 0x5f02, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000680)=[r1, r1, r1, r1, r1, r1], &(0x7f0000000900)=[{0x0, 0x5, 0x2, 0x4}, {0x0, 0x5, 0xc, 0xc}, {0x4, 0x5, 0x8, 0x8}, {0x3, 0x2, 0x1, 0x1}, {0x3, 0x2, 0x1, 0x3}, {0x3, 0x5, 0x2, 0xc}], 0x10, 0x2, @void, @value}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYRESHEX=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000004c0)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)
pipe2$9p(&(0x7f0000000340)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x21004a, &(0x7f0000000180)=ANY=[@ANYBLOB="0900000000fd00002c7266646e6f", @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB])
perf_event_open(&(0x7f0000000140)={0x2, 0xfffffffffffffc79, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x6, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x5, 0x0, 0x9, 0xfffb, 0x0, 0x2, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(0xffffffffffffffff, 0x118, 0x1, &(0x7f0000000000)=0x677, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000500), 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$lock(r7, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r7, 0x26, &(0x7f00000031c0))
fcntl$lock(r7, 0x26, &(0x7f0000000080))
close_range(r6, 0xffffffffffffffff, 0x0)

51.120587671s ago: executing program 1 (id=22):
perf_event_open(&(0x7f0000000140)={0x2, 0x58, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x2, 0x0, 0x7, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f00000006c0)={[{@grpjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@grpquota}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000001200)="$eJzs3c1rXFUbAPDnTpImTfu+zQsv2LppVloonbQ1tgqCERciWCjo2jZMpiFmkimZSWlCFhYRBBG0uBB049qPunMruvZvcCMiLVXTYsWFjNz5SKb5mHw0k2mb3w9ucs6dc+ecZ+7cc8/MPcwNYM8aTP9kIo5ExIdJxKH6+iQieqqp7oiRWrl7iwu5dEmiUnn996Ra5u7iQi6atkkdqGcOR8T370Ycz6yutzQ3PzlaKORn6vmh8tTlodLc/ImJqdHx/Hh++syp4eHTZ589e2bnYv3zx/mDtz565emvR/5+54kbH/yQxEgcrD/WHMdOGYzB+mvSk76E93l5pyvrsKTTDWBb0kOzq3aUx5E4FF3VFADwOEvP/xUAYI9JnP8BYI9pfA9wd3Eh11g6+43E7rr9UkT01eJvXN+sPdJdv2bXV70O2n83ie76FdHYwetdgxHx2bdvfpku0abrkABreftaRFwcGFzd/yer5ixs1clNlBlckdf/we75Lh3/PLfW+C+zNP6JpfHPst41jt3tGIzY15xfffxnbq654Ys7UHl9/PdCbW5bGmjT+G9p0tpAVz33nzRzNCImCvm0b/tvRByLnt5LE4X8qRZ1HLvzz531Hmse//1x/a0v0vrT/8slMje7e+/fZmy0PPogMTe7fS3iye7luX33VvX/fdWx7sr9n6473+qJjy4nX33+vU/XK5bGn8bbWFbH316VzyOeirXjb0hazk8cSnf/ydrftev45udP+terv3n/p0taf+OzwG5I939/6/gHkub5mqWdrX/j+Nd+/+9L3qimG53H1dFyeeZUxL7ktdXrTy9v28g3yqfx1yJdGX+m5fs//SR4cZMxdt/67avtx7+kLVMs0/jHtrT/t564cW+ya/vxp/t/uJo6Vl+zmf5vsw18kNcOAAAAAAAAAAAAAAAAAAAAAAAAADYrExEHI8lkl9KZTDZbu4f3/6M/UyiWyscvFWenx6J6r+yB6Mk0furyUC2fNH7/dKApf3pF/pmI+F9EfNy7v5rP5oqFsU4HDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB1B9a5/3/q195Otw4AaJu+DUvcyd+XrVQqlTa2BwBov43P/wDA46bF+X//brYDANg9Pv8DwN7j/A8Ae4/zPwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG12/ty5dKn8tbiQS/NjV+ZmJ4tXTozlS5PZqdlcNlecuZwdLxbHC/lsrji10fMVisXLwzE9e3WonC+Vh0pz8xemirPT5QsTU6Pj+Qv5nl2JCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC2pjQ3PzlaKORnHovE+xHxEDSjHYkkHopmdCTxy4mfDrcqc32Dt/HIQxHFI5bodM8EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Gj4NwAA//8PbSWm")
pivot_root(&(0x7f0000001b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_STOP_UNIT(r4, 0x6)

51.120133901s ago: executing program 32 (id=22):
perf_event_open(&(0x7f0000000140)={0x2, 0x58, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x2, 0x0, 0x7, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f00000006c0)={[{@grpjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@grpquota}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000001200)="$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")
pivot_root(&(0x7f0000001b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_STOP_UNIT(r4, 0x6)

2.947962583s ago: executing program 0 (id=1004):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
lsm_get_self_attr(0x68, &(0x7f00000002c0)={0x0, 0x0, 0xd5, 0xb5, ""/181}, &(0x7f0000000040)=0xd5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x0, &(0x7f0000000000)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x768f}}]}, 0x83, 0x5fe, &(0x7f0000001040)="$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")
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r6 = dup(r0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000010000104fcffdfff6d00000600000001", @ANYRES32=0x0, @ANYBLOB="0315000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

2.627788668s ago: executing program 5 (id=1009):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = gettid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4001)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r2, &(0x7f0000001140)=[{&(0x7f0000000700)=""/206, 0x18}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0xa, &(0x7f0000000380)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xcc}}, @map_val={0x18, 0x8, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000200)='syzkaller\x00', 0x80000001, 0xa7, &(0x7f00000004c0)=""/167, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000400)={0x2, 0x7, 0x2, 0x4}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000580)=[r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000005c0)=[{0x0, 0x3, 0x9, 0x9}, {0x1, 0x2, 0x9, 0x7}, {0x0, 0x3, 0xe, 0x1}], 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
open(&(0x7f00000001c0)='.\x00', 0x8000, 0x0)

2.118652657s ago: executing program 3 (id=1015):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$qrtrtun(r0, &(0x7f00000000c0)="e1338d74c8", 0x5)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x3, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 7)

1.933076509s ago: executing program 3 (id=1016):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x117c480, &(0x7f0000000100), 0x1, 0x54e, &(0x7f0000000600)="$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")
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa20000000000"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f00000007c0))
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
r1 = msgget(0x1, 0x2b0)
msgrcv(r1, 0x0, 0x0, 0x2, 0x2000)
msgrcv(r1, 0x0, 0x0, 0x3, 0x2800)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r4, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000340)="b9cd", 0x29}, {&(0x7f0000000380)="9324e48159b6c611b899437a0dabfee7549696767a094563b1ebb726509abd9176a2c1fff3695127c0fc8df9660bba3fa6b08ef1ee51c925e2b756f51de5bc44f43404cbe7b3555a66227a7c2e2dbe53cd8d346d01a02af3b2d8ed57007ba506501d7ec6b59918fc5476ca883e923d1aa837454c74c0"}, {&(0x7f0000000b80)="d00956abb45ae84948aa979b9ecd119422eca67ffedbe2e2734bdf123fdb4c88cd96afa2ce565696ccbfeb602b76ede1b0d5fe1f14f70fc1c500c68457037420b5eb1d15460d1a4178208843dc5ea668daec8d878911caf33cd143c98e4f09352561f46a4162229d42a4c12633eec686f5aefd40dafde6adea719ce4cb136815dcaa97e5854b3b8753b11dc594d889d6fda879cd4e5ed5ee67292faed62d98829e2b15b4fe96b44830510932ec00afd07a59beea3d8f905e521be2b311890e18511575e9bf39ede39d7c0d15eb28dc8d80a31a3973d56ffe70a4561464bd42d92b9ce248ecde435de7"}, {&(0x7f00000004c0)="ccaa5c080ebd9446e564ab14c8950a6e25b61980f61feebe9efbeb73e5eef0b599f7f1c87acf8c61e88c55edc7e6c50fcf26611c847d5327359b07f8a26445a51a8f9e31"}], 0x1}}], 0x1, 0x20008000)
msgctl$IPC_RMID(r1, 0x0)
msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000180)=""/15)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
syz_clone(0x2c9a4080, 0x0, 0x500, 0x0, 0x0, 0xfffffffffffffffc)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

1.826808691s ago: executing program 5 (id=1017):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.807325551s ago: executing program 2 (id=1019):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r1, 0x29, 0x39, 0x0, 0x0)

1.753671332s ago: executing program 0 (id=1020):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_io_uring_setup(0x38a7, &(0x7f0000000300)={0x0, 0x10ef, 0x80}, &(0x7f0000000040), &(0x7f00000006c0)=<r2=>0x0)
io_uring_enter(r1, 0x2044fd, 0x3, 0x1, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYRES64=r2, @ANYBLOB="b3a97039958c43d6175641acc30007315533404a2f871268fe489071f0480ac98d434cf7d82a74d4ddbdfa4661b00b49416b589802cfaab509593b497288cd424bc40cc496f83550d199d9977cee05c2620eeb1eed4eff7d87e9d2c17fef61c5379fc4e4e27723cbccae2e970fa5fe4cf95fc28d2ceb9a7851b5b93f1a6a53c64d52064d5ee0d9a11ae01ace5d7c60752025"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000240), &(0x7f0000000280)=r4}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000880)={{0x1, 0x1, 0x18, <r5=>r0}, './file0/file0\x00'})
socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r6, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000080)=0x5)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000004c0)={r7, @in6={{0xa, 0x4e24, 0x9, @remote, 0x6}}, [0x7, 0x1ff, 0x7f, 0xfffffffffffffffd, 0x5, 0x3, 0xc7, 0xffffffffffff0000, 0x1, 0x8, 0x10001, 0x2, 0x101, 0x5, 0x2]}, &(0x7f0000000700)=0x100)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r9 = openat$cgroup_devices(r8, &(0x7f0000000100)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f0000000000)=ANY=[@ANYBLOB='b *:* rww'], 0x9)
r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), r5)
r13 = syz_open_dev$sg(&(0x7f00000007c0), 0x0, 0x501402)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r11, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000740)={&(0x7f00000005c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x40010)
r14 = fcntl$dupfd(r13, 0x0, r13)
ioctl$SG_IO(r14, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffe, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000200)="672de51a373f", 0x0, 0x0, 0x4, 0x0, 0x0})
read$usbfs(r14, 0x0, 0x0)
write$tun(r14, &(0x7f0000000400)=ANY=[], 0xa2)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYRES64=r2, @ANYRES16=r12, @ANYBLOB="31040dbd700008000700000000801800010600004019000056"], 0x2c}, 0x1, 0x0, 0x0, 0x8005}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r10, 0x40345410, &(0x7f0000000480)={{0x0, 0x1, 0x0, 0x0, 0x1}})
r15 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000840), 0x418000)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x10010, 0xffffffffffffffff, 0x450a2000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r15, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})

1.750209252s ago: executing program 2 (id=1021):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
time(0x0)

1.721138543s ago: executing program 5 (id=1022):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x18)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r2, &(0x7f0000000dc0)=""/4106, 0x100a) (fail_nth: 12)

1.668837383s ago: executing program 2 (id=1023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f0000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000004}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r5, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r2, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

1.656037684s ago: executing program 0 (id=1024):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x159d0682f53ea167, 0x2, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x1}, 0x18)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x1000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000002200)=[@in={0x2, 0x4e20, @remote}]}, &(0x7f0000000180)=0x10)

1.571777455s ago: executing program 5 (id=1025):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
memfd_secret(0x80000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r5}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @typedef={0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x61]}}, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x289c2, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETLINK(r6, 0x400454cd, 0x6)
ioperm(0x7, 0x81, 0x2)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)

1.373427468s ago: executing program 2 (id=1026):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[]) (fail_nth: 4)

1.114249682s ago: executing program 3 (id=1027):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = gettid()
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4001)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r2, &(0x7f0000001140)=[{&(0x7f0000000700)=""/206, 0x18}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0xa, &(0x7f0000000380)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xcc}}, @map_val={0x18, 0x8, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000200)='syzkaller\x00', 0x80000001, 0xa7, &(0x7f00000004c0)=""/167, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000400)={0x2, 0x7, 0x2, 0x4}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000580)=[r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f00000005c0)=[{0x0, 0x3, 0x9, 0x9}, {0x1, 0x2, 0x9, 0x7}, {0x0, 0x3, 0xe, 0x1}], 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10)
open(&(0x7f00000001c0)='.\x00', 0x8000, 0x0)

1.113898472s ago: executing program 2 (id=1028):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)

1.113503812s ago: executing program 0 (id=1029):
unshare(0x26000400)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x3, &(0x7f0000000100)=[{0x5}, {0x45}, {0x6}]})
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000900)="9d8d645e53b6183d874f9e93a18dd009a09560ff682bd07dc3d28385a8f3f9e18418950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bbd9a315544fa0a1622d949faba79788908354e467989e8458e6f5f76e0e4e781bfca4c928c956321dd514877569805db6602f1584a8bd051f13bad882bea021ffb5ce918a1f87f1d439ec93772d6ecaaf8891f7678f2037ccced78ea5c1aa805f1b9f5a2c3974c5124cac5e163d9b6f5b998c1c7263fa2331d1241523986dccbd4e1f32b2f521380a2ea4732132264de6d26ce40177a780df98cbf94b96d900a2dfc5c877db675ebb1d7cbc398ca422ddbadc24ee6f3bf036f62cdb056502a6b657ff95930ea668649ad0003afe9a912179ce61631b3dab94642d2768f1f22299deb9eddb917fc0076b74406149024514d07417c6007e8cd4dc4e2295be71f412044b52b1ce32aac048cad9c413a8c19528dc1b432fe7f9fda7182a47243af427a76ede78aa5c6ef75ea1f48e2e9e9d203d4760a1ff6a0119b39a2458a050f9519d4bbd821684ef8356985e8f5b8d86346f428788fc374e7eaa0c2a2ef8478a13b4a56d0821201c37a0066fb9f5cc583005b9f71b67daa300311066bacbf43630a8388aff734a568a123a48ba1344a5500e5c6f8cef539617cd3970ffb873579a3b76bd529f1626d1f90543b2a0190df38bb1e8b6fc9bfc5c42693814665679e78ed8adce4d23b8725416101ae4113fee000cb92b32c6a74851a6c4af4625f28810ec16834a1589063af1bf0b29aa57e06dddc0fddf408fab63c536d5afd9ba5a71f9e534f99e5ea9c1eaaaad710ef30a37df0f87978894333850f4feac3740a3b010da7c250d060c8046cab40d0527234d4b4b28366bc7d5899948ddbfac66c848ef0f842eab95248e9d064c0ec4247483f0aa0cad7ca970365e474fe73cf79cf8c70fc7a015caa273ce41723453632cf5b809584d227f7e98e8ec41494518b0b8a8adbaf5ead6529451b116fab06529b653bffdd6d98f8322265305bdc0ff69f4a70dea414fcc63d149c564c834f24b8f7495cd9ccafa1e3f652cd3270935800ee0d5598afcaa41c150dac263408d77a61b5c77e2c3644dda1b8c333a36c30ce893140ce133827dde34d896d35c498bf6dda965a27cc77e2872fcedaf9dcb89614c758cf62ad769ac05a4fb9e27b421b82c1761f1322b03cc9ea586d15f7d2ffb6ed63c639cee97d9eea8f3934045e60b15eca5c13ebe002467c09815712165cee2af784f9e5db9f7227701ca9a3de588503c84c490f4986aa26e7b63d4c5a30157cdf82e433a1b64496392a1990b2a46b910d9a16429736308f71d8e78824a26f25f21829546b973c0905b20c2ef751eb0064eaf831874f0b58ef8779cafd02bcf075a212e79e07c73c49fc240d6845877fda649d1ab59ea06b907ec5031299a0e1fa2f8cbc241a8531ad241302b569d4581dcc944f27799f25593b97ea7681ba74d6cde9c8f58840ac4c4be3aa90e6273a64e549c47c7232f423406604c9c210eabe3d6a2343bd6c2ae72ab013ce2af32467bcfa8cbf0769f9156e35424", 0x45c)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da97e22f4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ad0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bff3b89c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c2ed01faa7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497dad64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6fba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd2310801570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb414c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000000000000000000000000000000a0cc2b89ce1525748ce167cbabb881f060599a6a59f645edca1d5c24b2f6b8c997a8f3e1b7679984a566d98d4d31198ee4c5ea7be0d99cf89bba4a6fd0bec12e7792bec3c5038e13b1982f80cdecd07f8908a983a7c9fb81c2ba7f7e87c991f30e50d1b3bbe4cf2a2f5d4571b6568ada51bc121c9139d2a8e0638c84066b1759081802"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='page_pool_state_hold\x00', r4, 0x0, 0x8}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffe}]})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000d80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, [@call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r5, 0xc0a85320, &(0x7f0000000a40)={{0x80}, 'port1\x00', 0x2, 0x4, 0xfffffffc, 0x1, 0xb8, 0x40, 0x2, 0x0, 0x0, 0x9})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r5, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x28, 0x71430, 0x0, 0x4, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x3})
close(r5)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
kexec_load(0x6ef, 0x0, 0x0, 0x3e0000)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.112915772s ago: executing program 4 (id=1030):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0600000004000000080000000600000010000000", @ANYRES32, @ANYRESOCT=r1, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r1], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000600)=ANY=[@ANYRES32=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x4000)
mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
shmdt(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES64=r2], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000003c0)='sctp_probe_path\x00', r5}, 0x18)
r6 = creat(&(0x7f00000009c0)='./file0/file0\x00', 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x80000001, 0x0, 0x0, 0x40f00, 0x56, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0xffffffffffffffcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x94)
write$qrtrtun(r6, &(0x7f0000001880)="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", 0x45c)
r8 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r7, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0), 0x0, 0x0, 0x0, 0x1}}, 0x40)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r8, 0x0, 0x0}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r0, 0x1, 0x0)
r10 = openat$cgroup_int(r9, &(0x7f0000000280)='blkio.throttle.read_iops_device\x00', 0x2, 0x0)
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r11, 0x6, 0x3, &(0x7f0000000b40)=0x3ff, 0x4)
sendmsg$tipc(r10, &(0x7f0000000580)={&(0x7f00000002c0)=@id={0x1e, 0x3, 0x2, {0x4e23, 0x3}}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000340)="b5d0148189e9d88c706f4caf5853dfd58d62ac307953840cbb5c652c0fbf45bb6b038d889282e1f005447e0dda840e50711d44b0e7cf662447ca2500b5f22f46d2ff9b799de3b85a4406f649", 0x4c}, {&(0x7f0000001d00)="a2f714c845ffb6316ed8c6f2185e58a669b078dac2b667a6ff69d642d56c836ee619e94e0739809dda134f285cdb04bd53e41ba5b0d354a9407360ab6d533857543d25517ec9deb959b89ebb2650d51128383b29a8411d2d0fd96736b3b44962ebeacf39ee194b048b965c7a2bc7eda21fe75734a007efb00c0ca3319843e40547168897786915438786db13c8b018fa21d29fd0d16e4180defd3b40ece31a4467e9d31cb169157da58565096c7956bb7e958902386731640d08798d3fb4524e07b97efecb683b728a75d41ae6c24dbd2291268443601e8c13d989a1709f318ee4c0c86cfa9ec27d5d84ab1799e1cffe08b393e7092ee2026f4e5e09011d330068782f56c2e10f5e746e32c0591118f09efb7e0fb9eecdf63ce88f30734b1d1249a325d0ad5301114b98a6c545f8aababc2791222e2765c59bd436a89aaf1d0926bdb80798247b9694120bfea8d38bf76deb3d69e9b5c43d80d200c3af5a4fef7c82fb7e3b622fa1e1b1816701cf5c7f1b99be59db08ab9dfb20fd14725448ffab853d7b18e0ea59c1c72871cfd8fdabe67fa9104a3fc397b72e202fab0676bc1532b17b0b6d02e1baf1335df2701f530a188d47e001365a391e420627d4a20d46f0ed305f5c3f59101184d8c40691f01a54bdd66e9abb656b1dfa8db16d4fe2844ad92ffb316b170b4c8fb67a914ce1e14f6b3d31d57f21b3382ae07037b2cb723e2dfc95cc61f25350dbe51e28147fb6398db1dfabb99bcfe4bbe119acf1ed7d00a8af880d72dab2984ebc3f3291d87d4c31ad622f35f1179017b49fca07fb2cda6b4209fd8e8a0d65f9375e8cde64db255932a57cddd5da9a095513bfb12dee81b48368a0e6321647c519220700b8a0f45dbe35a3092f0bb8f357d4843d429804e7c5925ca686b04b4859f076119ce4c62aed4e6d8a2bcc227395c5073051e80bd127d929f91d4f56ea477f80179ff5515b5abd289b11ba2228e6123bd30a3ed9527b612c05c1f095996ecd1476c1f59e258d374f0c4b65b4431c1ba90cd806a2eb354083de42eb4631c33dca6771b5231aab9d3cb24915468c7c9a94d5b3cab56b1ca6475325a61841975ac6f33161fb406563c6306efaccdd1b9971761c38343759191b1d4311a3fea1a4666a137fa484ec0fa79a85b33b3abe5b71c1759945b82c4b24ac9276c2a7b0956ec810afbfc27571eb00fdd86b6ffb54918d47dc0b7c1b13b4db52440d5b63662cb04f296d916e713697231aa67738643f1a4a5cc5c40a1236b555c7b17d394f7e3ffa6a2a2616edf821415ae6f3e2090d7f37599dcec312c9031e3ed8201c6950ff9d3d2574bbdd9e6679f0501a99a1ce709322f1d097bcecc97dc33c8a29b66ebbeea4fc322d840dc901e1eda90bc216142146321a3e6e22a8ce138e2612f51854f258b0b33575041a96710c75dcc9b4867da3669f2518a01d6c3b48a47eedb9e8dfcc58fd4c1ddda18c44e91f696bfcd33a214e2ba0c1a32040807fa4a2212a619170f60ba6f3d58088610b30b00ff349ef5e58d4801d7abfa5d242f2b450a852a3c40483ea02cb4560caa0a318e8483a3b4edcbb5741d2de544db4508e23691144806abd5cc6cc50aa36ffef740f57192e50d21c1a7be3104abc6862b76bf51898968d72273a4728cce5df651d03577a6bd5d66c30147b822fa7541d526fe8715b5db2cf743fef9fdeb9472d34dc1a7eee1ef2a8dc5bc4d07dc0b5693ca1a28710877faf053ac61cd535b6935eaef4b154f38bc2c58a2a94794c2a469a81d3b2f8e8712068abf84d75f18623eb1a25693cfd2ad78c5f6f216aec5c53f55ce1547bcefec15c4eb4b2d88e632fb6bac0c426b91ed35e78239e9122dd57ec7de2bdc9d947db62efceef86f5c39cc04b2d0367335b2c4b2ad2186ccf92cf6e7a7664fe13790372bccfc4d4ec5ebf8c49255b1d5830212a3155f0ec790b37fddedc799b368f421f1e7241d9212bcfe9ff9a854a78b8c3d677e410614d34a193db7a6b98d3d4be2cc11568c385f727be282d6ab1dd4fbabe4be7d99e8f8c8ffb8ccc672a2a974bde1b15795b9b164f72e4fd304e67d9cde2291a42e3eb15aa93608c6aa85bb0601913f3e8eb2338eecd7cbcece3d64c8ac23bef1be386b3f0e3ddedee1b7e19a2afbeac6cef603f0d50a7010a0c95b7343232ae178b4d11a28c3c1ac3a76171e5b52bc5e911ba07f6f4c3cd74766d9e967d4918317514198de52575af6822ec4c586c4224807fcce81902910404fbf3854a84989d02141bd691d89f1f5c17e691a15045698a78446e992301f40865b29e1c12da3c001d90ddac4631052875557d3e07d2e234d69874a3f9b2179bea612f04c23fb3c158c5cdf014602cf640845fb7acf86d716d7ee5b087246ac9f1a754dca680bb3b0678ac77667bd02fb66139bc899148a43f32a57843c607b606e6ef8db1fa69c610eca473dbf541b0b8243594ae79c478e3db89baea79baba7b78cadcfc233da45485ef59c3945483714973c50964bb00c2ecd0f33a5758c4f1eb49b72b40db13437e927d38195c67bf642b7322d28cd1d37b457ea7bb08e199094e4179fb43a9c7244398964adefcf61ca4d04465ed672ca8773bd9d6caa2f4e5b2d78300bc70aac6666aecb589ed751b5c3143d20d8e883807f1b742db1c86ef73f01171af55e6cb39cb7a777dc207260fedd0c4b2cb634c46986c0a57bf4749b4f662a56404122d85f286b67bf0e3c6c41fd2b1c5a885f485181e18c85f526cd08989c4643c033ded6027ec237d42f41911ab6b55a89ac504f59dc1992860d78b6a12797ec1b0772f8354bd623d4549050efff2d38af2dfd6a30e6140ba697bfbad78bfdb12ad846f643555128e8f39a48bf265e7c39c7c4318862e4632d22c07bface3024b8d52e75cc0a282835c3dc965cca49c762a93f0767a6867c4418d47558e64b578e67d0ea60b12636392fa23613461e766e2b5f2bf54832eb44980dedfbf5f49741a1c8b5428c8f248bc97957083efef1db0b8160d6bf7c21fa4a94e8edf5a5e5aa02bc5430b7ae93d8e6ba49eb6fa836a5ddcbffd98efedea619da45905023ac7e4f1326c0e1c737aac93a120388625e4d0fa4688848aba77e3681049b770b3dac35c865eb73d74df46e30e20cef24fdd8171d610611bf48830e1112bece86b723877714a27a3ea0e7edd16923df4ae5459251a28366b594c9f754dc84db2b42c50bfd0ea043b57803fc832a7a6e53048919235f6899f1f0335e4164b0caea1ee3b48f4a994565dfc930be89051f487417d32cb2b23c75888694bca7a60366bac62ce07cc6cbc1920e87621f6ce53dc99536f37f91fc6cddedc5cd6208572063cecd20fb554a806a0febc46e8447b5f0c60ea0fc6ac818ce433064ec0b15e03339b42354e27c85f8183d01c70606c2c31d6e6a96dfe135c8247ddad1e9af9a44b8fa074564877ece307056de8bff36966705b2c0c43d8bf685f5e6a2421f5f7d0aa3765333d0d782f933f9a541bc5ff3c12cb4d3ea0935afacfbad41f927e4835a8bb3d5187dfdefbae3fcee2f09fb3cfbf7f10de557f62315832d37838a2f8c082de17a0dfb25b3c136495207a125a3a20d6d7ee03cc9baaed0f52bc6c0b2233857ef25ce3ac1c61f84ff6c2b662563bb4403d916b2e7fbed31e76fb0acfb638b8adb61fe985059dd26f59ca6d34c15d8b3872162eac76839be4249ab5a965891ec3d46d4f32545d1881e8c9866c35a2b830eb95e39bdad8cc057bf3cc46c6ec5f4847cf682e04e822fd6c1b654dd52dc68cb9b0b78e8da00eca25abd416e512aee48cb47f6277ee7d6a3ee180826086008160c9d9762c3564e6e52d4708678482fbb055d535207bfff5ceed141012a788c045d12bff2d1dd9e1ce79ae79209f67d80e58b98ad0e96674598b1a16e9a51268b8d64075c93f985399d4e52a6697c0f2eb1efbc8fa0ec4f9520bfe5e86c9bbc8669b2b992a3fa524ad4d912eec1e96a6348f2c77ace18efc2f20afbce8a3a55c8e5478d7354d420a7be2aa22d58fb3268a6535553cfd9be9b1b4efb9240f5dd3d5ec8b42d2a5131f37a67c2160111c5c237651862db54bce8ccb80e5f2f71c54ba5e0c6e3689412eccf477275a71eaacd980ec41976ee3b596cde85488441e2a736a97c0b76e34ec78cc51d0f937fcce58256cd0ae761730c0f4feb1b03982e6deac7b4d41544b538ac35386be4c590f37b571df172af1aacf29a8a615c86f92c15dd6621a54814db57f4c1843adeabd0f6c9a8b81b1edf6512fe6dbabf68611450d6c150d17c61393f384be61784686be014d2d59d145063b58c74e90d6f2edff2ef7ba305a6d2f1e7300f52e300021fca4a9a4c9bd7f3f78c912906affe9e3e5d52287727c9c621cc29ff8f1905ee2ad163356d3e38c10ec6b815df1940ec304e0e4978695306e62e957e879a6ee7474b49fe77ee509a840b1b9d75b80e7f44b2643ec301bc59d8bf9d6a21977750eb09d0a29cf2ed937f08356cd620eb1283e45ae6cff6b8c5ab0a19d9e8c40f1d44a5cf09c5e8add8eb7e500122e85706ee487d2e3544a5a3cca769d643bcefc57532edecfaa5ad5331d11308929777c44a51b504cb7e3306d9d9b706e937410b661298bdb4b3c52ed681bcd21450a3aa36dc6fb272c8f7c13a12646cbed59da12c6c570e4048a8105f51376e54561faa75097777a62bdb72b3382602fd313d2a342d5641735304f3b1d3384139db7f146f228a4d6c1a29e4db927433230d2d7f83c9e5ff370d9f0f5ed36d8889d04f917b9ee8bfd966c3626e5d196e8f4b287fae100a9dea64b8f827a6047ddb2356f5510a04ec9262309b7f5d1dfa6f5f2271c84779eefcebe17f5be3ab5bf45bed4046329753f761239541a9ba52b5c15343c8d739bea6a9b553d0e9f5ac1aee914c7c1d59ec24171a91535330760244be293e4350dff999f19e7074a5b905b5722b6b5609c1459eb89a12794388bfa132456c4925de8bb9b98c73a86eff8b3b29f8420f9ea43498029cababaebc65941d893c8da97a99d44c03c079fd8f6047040b9be4112b1384fde0cc9499a34319e70325dc2778fa554688654db2976f742a5930019377f6cb77e05bb6a4bc8c0877500b28db32587ae98f07d9f02ee28b6e31c05a8b46d0a37ec84e972f43901e48bb718061be4cfdc72727eac2027bee79f8729d9bada39137baef67b56760eb3566cfab9441786a562828008614aa5dfd50cf2a7ff106b6a2133b75e32a74fa3a1811b96804823032325c09bf897c06bd8391c720b22809a0ab7276588d4679c5e887b60bc1da84b1ae9c6ee0b63e10c3f2dba27213e1a5e3da5e0deec7408d166d354c0896c4332237a257e629b99ab3c629c72fe5d5447f54868d7247c39a486e9e0119548cd270ee0afbbcc1a4cc9afbc1a9bbdebf4f8808ab3a50314c501c794e79d11bc0b0d83fb1ef9d2c3abaee2164dae0e2f72d5c20622c54abdea08f806bd8cf583bcbea5e620888b91d2fa2be3c7adb4e0b503c23917c36bef4803c8a9e2758db8f78c3ce1975f573a9afc8cdb4f90817da28607a6f4dfdcf33a918be25c8df0f00a884f98e17b8ef42e00f948949e9005ba25f31ba9c33a911c7cd712aa519a70e95c5f0e6a8fe7d0ab48ba5a6fa79417b55a2908f75683ed494865ba39c551b26d0f1d85186f433a09d7f26e28ca2ae340b20210bba69401550828c4a55817effc3253fcdf959d3233dcd6c9fdc900ff7f7c863d15caaabfb0cee8cad6375d68f8a98504e8c399d2654d6b48be7fd4d7ba77", 0x1000}, {&(0x7f0000000400)="b71bf1652e5d94f2279a578b0edf88d50e355f6b", 0x14}, {&(0x7f00000004c0)="f484b26aa795aeab905684ccd7cf05a6a8aa96c9ca0a9cfd8c12befd6f898c19ffa8d03f03e5895fa10c4fe4d3aa8df4bd5f5752247540cad9f0b96f6088bc87ebf427c508d599052a319489d80b2ee99dc61f26d20b0d5c811e55d335df258bfc940c5da7888d0a032d434f7ca300abd548c417b4521570bbabb162", 0x7c}], 0x4, &(0x7f0000000780)="bb5ebea5a7d6e049815fc8e8b53600d2618b8c63f327cca7b5187d42d5e9cf8f94f49f8ac6e9bd13006ee552ed5f43ec276ce1b089a33482181cf039e02b151a6ba469835a1d660a5a123dedd6d45df2607d122302a2a247d80d626b2b8908043ce25add020260ac697097016fc3d6e7a97b9c7c23d56103311f1afdfda55c17bc1365b5b5c9b3bf66c1823d31d2bb0b3d7df1f69dcb0fd329f3f11e781332a219a607ea11bf5305d5b08ef7a2f5736d2a95f19d6611c6391a6d269bae8367a88f7b4b4b4aa500f36fdd047e70271da424fcb033d28cd1b7fffdf43f38", 0xdd, 0x40090}, 0x4000)
r12 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
r13 = accept4$unix(r9, &(0x7f0000000880)=@abs, &(0x7f0000000900)=0x6e, 0x80000)
connect$unix(r13, &(0x7f0000000940)=@file={0x0, './file0\x00'}, 0x6e)
shmat(r12, &(0x7f0000ff1000/0x3000)=nil, 0x400c)

1.060865563s ago: executing program 2 (id=1031):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
lsm_get_self_attr(0x68, &(0x7f00000002c0)={0x0, 0x0, 0xd5, 0xb5, ""/181}, &(0x7f0000000040)=0xd5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x61680, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f00000005c0)={[{@discard}, {@bh}, {@nomblk_io_submit}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x0, &(0x7f0000000000)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x768f}}]}, 0x83, 0x5fe, &(0x7f0000001040)="$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")
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r6 = dup(r0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000010000104fcffdfff6d00000600000001", @ANYRES32=0x0, @ANYBLOB="0315000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r7], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

1.060405333s ago: executing program 4 (id=1032):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

800.548567ms ago: executing program 4 (id=1033):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
time(0x0)

719.308358ms ago: executing program 4 (id=1034):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb0100180000000000879a04bb73"], 0x0, 0x1a, 0x0, 0x8, 0x0, 0x0, @void, @value}, 0x28)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000f, 0x10, r0, 0xf2de1000)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000340), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000940)=ANY=[@ANYBLOB="18004aa597561f0000160000c6000000001000eb15e94706177fc1f70018130040b6", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r2, 0x0, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000400)={0x13, 0x10, 0xfa00, {&(0x7f0000000a00), 0xffffffffffffffff, 0x2}}, 0x18)
eventfd2(0x7cf0, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
munlock(&(0x7f000077e000/0x1000)=nil, 0x1000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x3c, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000280)={<r4=>r3, 0x7fffffff, 0x8, 0x1})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
sync()
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080)={0x5b8, <r5=>0x0}, 0x8)
chdir(&(0x7f0000000240)='./file0\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1d, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1825f90000170000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000200)='kmem_cache_free\x00', r6}, 0x18)
sendmsg$IPVS_CMD_NEW_SERVICE(r4, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="b4000000", @ANYRES16, @ANYBLOB="00002abd7000fbdbdf25010000004000028006000b000000000014000100fe8000000000000000000000000000aa080007001a00000006000e004e22000006000e004e24000006000b000a0000002c000380060007004e22000008000500e000000105000800090000000800010000000000080001000200000034000280080004000700000006000f000101000008000500040000000800030004000000080003000200000006000e00d6bb61b9aa615047ad4e230000"], 0xb4}, 0x1, 0x0, 0x0, 0x4004000}, 0x8c0)
syz_mount_image$iso9660(&(0x7f0000000fc0), &(0x7f0000000100)='./file1\x00', 0x204440, &(0x7f0000000240)=ANY=[], 0x3, 0x7d7, &(0x7f0000001000)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000780)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {}, {0x9}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x7, 0x1, 0x0, 0x0, {{0x3, 0x8, 0x2}}}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x48c0}, 0x20001880)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000440)=""/146, 0x117, 0x92, 0x1, 0x1, 0x10000, @value}, 0x28)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r8=>0xffffffffffffffff}, 0x2, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r7, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r8}}, 0x18)

354.801624ms ago: executing program 4 (id=1035):
r0 = syz_io_uring_setup(0x2868, &(0x7f0000000080)={0x0, 0x40003, 0x10300, 0x200, 0x3}, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd, 0x0, 0x0, 0xc, 0x9})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='pids.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='/'], 0x118)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0500000004000000080000000c"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r6, &(0x7f0000001bc0)=[{{&(0x7f0000000240)={0xa, 0x4f21, 0x400, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000580)="14d347", 0x3}], 0x1}}], 0x1, 0x931766f6319eed40)
getsockopt$bt_hci(r6, 0x84, 0x80, &(0x7f0000000640)=""/4139, &(0x7f0000000140)=0x102b)
r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r7, 0x4c80, 0x7000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r9}, 0x10)
r10 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000240), r10)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x1fd0, 0xffffffff, 0x0, 0x0, 0x0)

352.573704ms ago: executing program 5 (id=1036):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r0, 0x0, 0x8000000000004}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r4, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

287.530065ms ago: executing program 3 (id=1037):
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000000c0), 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = memfd_create(0x0, 0x5)
fsetxattr$security_selinux(r1, &(0x7f0000000480), 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001000000"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000840)=ANY=[@ANYBLOB, @ANYRES32=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3}, 0x0, &(0x7f00000004c0)=r4}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
setgroups(0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfff1}, {0xf}, {0x10, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x495, 0x200, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f00000001c0)="a3", 0x1}], 0x1)
write$UHID_SET_REPORT_REPLY(r0, &(0x7f00000007c0)=ANY=[], 0xffa0)

285.964295ms ago: executing program 5 (id=1038):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000001140)=ANY=[@ANYBLOB="757466382c626c6f636b3d307830303030303030303030303030323030006e6f726f636b2c63727566742c6d61703d6f66662c646d6f64653d3078303430303030303030303030303063664173657373696f6e3d3078303030303030303030303030303033382c756e686964652c756e686964652c6769643d29e0cd5c372ab078c28fb05c6421428d066455368833565fd726743513f4466efa8d4fba06d57341875f5775ab343c0f6bc59fbde784ec3597e0e286d8d0dbf360afa3bc5c145b6e4f8b0305932fb55ff13f9fcb5035769f5fca33ac02bdeacb24c58103edc3d8b46df7614aa493952584ee662174309b11a4ad19e64dcdeeca1c148170b8d1aaf26082364b0d90d63d8502ffa63dde945e4612ac134315f389af667a04931ad25ff10b9b5107e517dbbcf5dcb60f564f54b344218d9325b53e829c38c96c69adc9e745202923a1b8124333cce0a8f1c748d42a272eb3e5502051090f1ac34fe5e8f038", @ANYRES8, @ANYRESHEX], 0x2, 0x699, &(0x7f0000000140)="$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")
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

152.802047ms ago: executing program 0 (id=1039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x159d0682f53ea167, 0x2, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x1}, 0x18)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x1000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000160a0103000000000000000002000000540003804000038014000100626f6e645f736c6176655f300000000014000100736974300000000000000000000000000400010073697430000000000000000000000000080002400000000008000140000000000900020073797a31000000000900010073797a30"], 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000002200)=[@in={0x2, 0x4e20, @remote}]}, &(0x7f0000000180)=0x10)

141.695787ms ago: executing program 0 (id=1040):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r1, 0x11c, 0x2, 0x0, &(0x7f0000000000))
timer_create(0x0, &(0x7f00000001c0)={0x0, 0x3f, 0x4, @tid=r0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x85}, &(0x7f0000000400)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000300)=[r2], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0x80000001, 0x0})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x5b8a5000)

115.245058ms ago: executing program 3 (id=1041):
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb, @void, @value}, 0x94)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0xc0000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000140)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000100)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x8)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, &(0x7f00000002c0)=""/128)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="0000000000000000ff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b77b8af8ff00000000bfa200000000000007020000f8ffffe6b703000008000001b70400000000000085000000a20000009e00000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.net/syz0\x00', 0x1ff)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000800)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x0, 0x12, 0x60d, 0x1d8, 0x202, 0x2d0, 0x2e8, 0x2e8, 0x2d0, 0x2c0, 0x4, 0x0, {[{{@ipv6={@local, @mcast1, [0x0, 0x0, 0xc0], [0x0, 0xff000000], 'veth1_to_batadv\x00', 'macsec0\x00'}, 0x0, 0x190, 0x1d8, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000165a8c2e0617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f672225d6147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac05a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@mh={{0x28}, {'Yv'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0x0, 0x0, 0x1}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
syz_open_dev$loop(&(0x7f0000000100), 0x2000000, 0xe2001)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/profiling', 0x40042, 0x101)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x20800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x130)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
write$cgroup_pid(r5, &(0x7f00000001c0), 0x12)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_ro(r6, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)

776.61µs ago: executing program 4 (id=1042):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r0, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
syz_mount_image$iso9660(&(0x7f00000003c0), &(0x7f00000005c0)='./file1\x00', 0x1100000, &(0x7f0000000940)=ANY=[@ANYBLOB='map=off,map=acorn,norock,sbsector=0x8000000000000001,uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c686964652c6e6f726f636b2c636865636b3d72656c617865642c756e686964652c696f636861727365743d6370313235302c696f636861727365743d63703836332c6d6f64653d3078303030303030303030303030303038312c696f8cfa9ad40eddb3b5636861727365743d6d61637475726b6973682c7375626a5f726f6c653d292b2c7365636c6162656c2c00b7cefd69cfd5ddcd830ec44718f7f244d502ccc3145c9ecefa770b7685b3f9249698e847a2085508a74367149d52e9d5b734f724aaf0d1c22b95e4ed8cbd155fb50a94d7ade8a075ebc4aa57e2615e8084871e8cd4d4dab6628c4276a1636e69a4c128f416e60b6a0a"], 0x4, 0x3f1, &(0x7f0000001180)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
mkdir(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00'}, 0x10)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000010000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000106608000000000000180000000000000000000000000000009500000000000000360a020000001000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0x4, &(0x7f0000000340)=""/222, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$ITER_CREATE(0x21, &(0x7f0000000800), 0x8)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x6, 0x6, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
syz_clone(0x61801680, 0x0, 0x1f, 0x0, 0x0, 0x0)
unshare(0x40020000)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)
socketpair(0x1, 0x2, 0x0, &(0x7f00000002c0))
socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_open_dev$tty1(0xc, 0x4, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x4000)
getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000140)={{{@in=@remote, @in6=@local}}, {{}, 0x0, @in6=@remote}}, &(0x7f0000000240)=0xe8)

0s ago: executing program 3 (id=1043):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x106, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f0000000100)={0x12, 0x10, 0xfa00, {&(0x7f0000000040), r2}}, 0x18)
fcntl$notify(r0, 0x402, 0x30) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=<r3=>0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000180)={0x1, 0x3, 0x1, 0x8, r3})
r4 = socket$qrtr(0x2a, 0x2, 0x0) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan4\x00', <r6=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r5, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0x0, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40800}, 0x0) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, r7, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x21}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x84}, 0x48010)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x28, r7, 0xd04, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x5, 0x7d}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x55) (async)
pause()
mq_open(&(0x7f0000000580)='\x00', 0x40, 0x82, &(0x7f00000005c0)={0x6, 0x7, 0xfffffffffffffffd, 0x13})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0xb0, &(0x7f0000000600)=0xffff7fff, 0x0, 0x4) (async)
r9 = getpid()
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x4c, r7, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1b}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x28}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1e}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2d}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2c}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x40085) (async)
r10 = syz_open_dev$sg(&(0x7f0000000780), 0x900000000000000, 0x802)
ioctl$SG_GET_SG_TABLESIZE(r10, 0x227f, &(0x7f00000007c0)) (async)
r11 = open_tree(0xffffffffffffffff, &(0x7f0000000800)='./file0\x00', 0x900)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r11, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x58, 0x1412, 0x920, 0x70bd26, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x10000}, 0x20004001) (async)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000980)=@bloom_filter={0x1e, 0x3ff, 0x401, 0x5, 0x335e5ee7c8300b7e, r11, 0x3, '\x00', 0x0, r11, 0x0, 0x4, 0x5, 0x3, @void, @value, @void, @value}, 0x50) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000cc0)={r11, 0xe0, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000a00)=[0x0, 0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x5, 0x1, &(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000a80)=[0x0], 0x0, 0x17, &(0x7f0000000ac0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000b00), &(0x7f0000000b40), 0x8, 0x4d, 0x8, 0x8, &(0x7f0000000b80)}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=@base={0x14, 0xfffffac2, 0x10000, 0x0, 0x800, r12, 0xda, '\x00', r13, r11, 0x3, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r14 = syz_open_procfs(r9, &(0x7f0000000d80)='fd/3\x00')
bind$rds(r14, &(0x7f0000000dc0)={0x2, 0x4e24, @local}, 0x10) (async)
sendmsg$GTP_CMD_NEWPDP(r11, &(0x7f0000000f80)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000f40)={&(0x7f0000000f00)={0x30, 0x0, 0x512, 0x70bd2c, 0x25dfdbfc, {}, [@GTPA_LINK={0x8}, @GTPA_PEER_ADDR6={0x14, 0xb, @loopback}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x20000000)

kernel console output (not intermixed with test programs):

.369671][ T5065] loop2: detected capacity change from 0 to 1024
[   57.373769][ T5063] EXT4-fs: Ignoring removed bh option
[   57.381055][ T5065] ext4: Bad value for 'debug_want_extra_isize'
[   57.385216][ T5063] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.451139][ T5065] loop2: detected capacity change from 0 to 2048
[   57.501539][ T5072] vhci_hcd: invalid port number 224
[   57.548301][ T5083] netlink: 40 bytes leftover after parsing attributes in process `syz.5.605'.
[   57.563687][ T5079] loop3: detected capacity change from 0 to 1024
[   57.571786][ T5081] loop2: detected capacity change from 0 to 128
[   57.595529][ T5063] macvlan2: entered promiscuous mode
[   57.596202][ T5079] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   57.600927][ T5063] bridge0: entered promiscuous mode
[   57.601429][ T5063] bridge0: port 3(macvlan2) entered blocking state
[   57.614552][ T5087] loop5: detected capacity change from 0 to 128
[   57.614937][ T5063] bridge0: port 3(macvlan2) entered disabled state
[   57.634389][ T5063] macvlan2: entered allmulticast mode
[   57.639961][ T5063] bridge0: entered allmulticast mode
[   57.646066][ T5063] macvlan2: left allmulticast mode
[   57.651258][ T5063] bridge0: left allmulticast mode
[   57.656938][ T5063] bridge0: left promiscuous mode
[   57.782302][ T5092] loop3: detected capacity change from 0 to 164
[   57.790054][ T5092] syz.3.608: attempt to access beyond end of device
[   57.790054][ T5092] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   57.803885][ T5092] syz.3.608: attempt to access beyond end of device
[   57.803885][ T5092] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.849209][ T5104] netlink: 24 bytes leftover after parsing attributes in process `syz.3.611'.
[   57.906711][ T5114] netlink: 40 bytes leftover after parsing attributes in process `syz.3.616'.
[   57.921826][ T5111] vhci_hcd: invalid port number 224
[   57.936050][ T5118] loop0: detected capacity change from 0 to 1024
[   57.945513][   T29] kauditd_printk_skb: 59 callbacks suppressed
[   57.945531][   T29] audit: type=1326 audit(1749890356.495:3127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   57.976109][   T29] audit: type=1326 audit(1749890356.495:3128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.003459][   T29] audit: type=1326 audit(1749890356.535:3129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.026867][   T29] audit: type=1326 audit(1749890356.535:3130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.050471][   T29] audit: type=1326 audit(1749890356.535:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.073962][   T29] audit: type=1326 audit(1749890356.535:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.091623][ T5118] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   58.097298][   T29] audit: type=1326 audit(1749890356.535:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.097353][   T29] audit: type=1326 audit(1749890356.535:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.097379][   T29] audit: type=1326 audit(1749890356.535:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.097409][   T29] audit: type=1326 audit(1749890356.535:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5115 comm="syz.5.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1edafe929 code=0x7ffc0000
[   58.136037][ T5122] loop4: detected capacity change from 0 to 128
[   58.188809][ T5123] loop3: detected capacity change from 0 to 1024
[   58.189153][ T5123] EXT4-fs: Ignoring removed bh option
[   58.189176][ T5123] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.196296][ T5128] loop5: detected capacity change from 0 to 128
[   58.352216][ T5143] macvlan2: entered promiscuous mode
[   58.357787][ T5143] bridge0: entered promiscuous mode
[   58.375009][ T5143] bridge0: port 3(macvlan2) entered blocking state
[   58.381882][ T5143] bridge0: port 3(macvlan2) entered disabled state
[   58.398247][ T5143] macvlan2: entered allmulticast mode
[   58.403766][ T5143] bridge0: entered allmulticast mode
[   58.415199][ T5143] macvlan2: left allmulticast mode
[   58.420464][ T5143] bridge0: left allmulticast mode
[   58.426023][ T5146] netlink: 24 bytes leftover after parsing attributes in process `syz.0.627'.
[   58.436195][ T5143] bridge0: left promiscuous mode
[   58.493193][ T5152] netlink: 40 bytes leftover after parsing attributes in process `syz.0.630'.
[   58.503304][ T5152] selinux_netlink_send: 3 callbacks suppressed
[   58.503320][ T5152] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5152 comm=syz.0.630
[   58.530888][ T5150] vhci_hcd: invalid port number 224
[   58.577476][ T5162] program syz.4.635 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.588348][ T5162] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   58.603710][ T5165] loop2: detected capacity change from 0 to 1024
[   58.632935][ T5171] loop4: detected capacity change from 0 to 128
[   58.637764][ T5165] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   58.649172][ T5161] loop0: detected capacity change from 0 to 128
[   58.681331][ T5176] netlink: 24 bytes leftover after parsing attributes in process `syz.3.641'.
[   58.690470][ T5177] loop2: detected capacity change from 0 to 256
[   58.697388][ T5177] msdos: Unknown parameter 'dttq'
[   58.721200][ T5182] netlink: 40 bytes leftover after parsing attributes in process `syz.2.642'.
[   58.730999][ T5182] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5182 comm=syz.2.642
[   58.784076][ T5193] loop2: detected capacity change from 0 to 1024
[   58.790940][ T5193] EXT4-fs: Ignoring removed bh option
[   58.796368][ T5193] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.883248][ T5200] program syz.0.649 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.893409][ T5200] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   58.933528][ T5204] macvlan2: entered promiscuous mode
[   58.940483][ T5204] bridge0: entered promiscuous mode
[   58.946627][ T5204] bridge0: port 3(macvlan2) entered blocking state
[   58.953246][ T5204] bridge0: port 3(macvlan2) entered disabled state
[   58.961186][ T5204] macvlan2: entered allmulticast mode
[   58.966622][ T5204] bridge0: entered allmulticast mode
[   58.973235][ T5204] macvlan2: left allmulticast mode
[   58.978434][ T5204] bridge0: left allmulticast mode
[   58.987846][ T5207] loop4: detected capacity change from 0 to 256
[   58.994547][ T5208] loop0: detected capacity change from 0 to 1024
[   58.995782][ T5207] msdos: Unknown parameter 'dttq'
[   59.001900][ T5204] bridge0: left promiscuous mode
[   59.055813][ T5208] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   59.145022][ T5216] loop0: detected capacity change from 0 to 128
[   59.154119][ T5220] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5220 comm=syz.2.655
[   59.224453][ T5224] loop2: detected capacity change from 0 to 128
[   59.285180][ T5233] program syz.4.661 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.295768][ T5233] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   59.336448][ T5238] loop4: detected capacity change from 0 to 256
[   59.343853][ T5238] msdos: Unknown parameter 'dttq'
[   59.351142][ T5240] program syz.0.674 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.371290][ T5240] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   59.406302][ T5248] loop0: detected capacity change from 0 to 1024
[   59.446654][ T5248] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   59.481155][ T5255] loop2: detected capacity change from 0 to 1024
[   59.488324][ T5255] EXT4-fs: Ignoring removed bh option
[   59.493044][ T5258] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5258 comm=syz.0.669
[   59.493978][ T5255] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.533995][ T5263] loop0: detected capacity change from 0 to 128
[   59.581685][ T5244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.590279][ T5244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.664763][ T5267] macvlan2: entered promiscuous mode
[   59.670182][ T5267] bridge0: entered promiscuous mode
[   59.676127][ T5267] bridge0: port 3(macvlan2) entered blocking state
[   59.682808][ T5267] bridge0: port 3(macvlan2) entered disabled state
[   59.695230][ T5267] macvlan2: entered allmulticast mode
[   59.700799][ T5267] bridge0: entered allmulticast mode
[   59.713932][ T5267] macvlan2: left allmulticast mode
[   59.719110][ T5267] bridge0: left allmulticast mode
[   59.726853][ T5267] bridge0: left promiscuous mode
[   59.901760][ T5283] loop0: detected capacity change from 0 to 1024
[   60.376584][ T5290] loop5: detected capacity change from 0 to 1024
[   60.414464][ T5290] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   60.429993][ T5288] loop2: detected capacity change from 0 to 128
[   60.479545][ T5296] loop5: detected capacity change from 0 to 164
[   60.486810][ T5296] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   60.496610][ T5296] __nla_validate_parse: 5 callbacks suppressed
[   60.496624][ T5296] netlink: 12 bytes leftover after parsing attributes in process `syz.5.684'.
[   60.513684][ T5296] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   60.522427][ T5296] Symlink component flag not implemented
[   60.528270][ T5296] Symlink component flag not implemented
[   60.535027][ T5296] Symlink component flag not implemented (7)
[   60.541048][ T5296] Symlink component flag not implemented (116)
[   60.594505][ T5300] netlink: 56 bytes leftover after parsing attributes in process `syz.5.685'.
[   60.643550][ T5304] validate_nla: 7 callbacks suppressed
[   60.643568][ T5304] netlink: 'syz.5.687': attribute type 4 has an invalid length.
[   60.679233][ T5306] loop2: detected capacity change from 0 to 128
[   60.690881][ T5308] netlink: 24 bytes leftover after parsing attributes in process `syz.5.689'.
[   60.754264][ T5312] netlink: 'syz.5.691': attribute type 13 has an invalid length.
[   60.816191][ T5315] loop0: detected capacity change from 0 to 1024
[   60.824327][ T5315] EXT4-fs: Ignoring removed bh option
[   60.829853][ T5315] EXT4-fs: Ignoring removed nomblk_io_submit option
[   61.026740][ T5324] loop5: detected capacity change from 0 to 1024
[   61.094724][ T5319] macvlan2: entered promiscuous mode
[   61.100218][ T5319] bridge0: entered promiscuous mode
[   61.120311][ T5319] bridge0: port 3(macvlan2) entered blocking state
[   61.126999][ T5319] bridge0: port 3(macvlan2) entered disabled state
[   61.177000][ T5319] macvlan2: entered allmulticast mode
[   61.182581][ T5319] bridge0: entered allmulticast mode
[   61.214555][ T5319] macvlan2: left allmulticast mode
[   61.219802][ T5319] bridge0: left allmulticast mode
[   61.229450][ T5319] bridge0: left promiscuous mode
[   61.246563][ T5324] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   61.302649][ T5334] netlink: 40 bytes leftover after parsing attributes in process `syz.5.697'.
[   61.367613][ T5332] infiniband syz!: set down
[   61.372278][ T5332] infiniband syz!: added team_slave_0
[   61.403513][ T5332] RDS/IB: syz!: added
[   61.407611][ T5332] smc: adding ib device syz! with port count 1
[   61.415076][ T5332] smc:    ib device syz! port 1 has pnetid 
[   61.679119][ T5337] loop5: detected capacity change from 0 to 164
[   61.690111][ T5337] syz.5.698: attempt to access beyond end of device
[   61.690111][ T5337] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   61.704257][ T5337] syz.5.698: attempt to access beyond end of device
[   61.704257][ T5337] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   61.738890][ T5343] netlink: 'syz.2.700': attribute type 13 has an invalid length.
[   61.753049][ T5341] loop0: detected capacity change from 0 to 128
[   61.796528][ T5345] netlink: 24 bytes leftover after parsing attributes in process `syz.5.701'.
[   62.063675][ T5351] loop5: detected capacity change from 0 to 164
[   62.073091][ T5358] loop2: detected capacity change from 0 to 256
[   62.080815][ T5358] msdos: Unknown parameter 'dttq'
[   62.088396][ T5351] syz.5.704: attempt to access beyond end of device
[   62.088396][ T5351] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   62.119410][ T5351] syz.5.704: attempt to access beyond end of device
[   62.119410][ T5351] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   62.152793][ T5360] loop0: detected capacity change from 0 to 128
[   62.186756][ T5362] loop2: detected capacity change from 0 to 1024
[   62.194593][ T5362] ext4: Bad value for 'debug_want_extra_isize'
[   62.223568][ T5364] loop5: detected capacity change from 0 to 1024
[   62.230367][ T5364] ext4: Bad value for 'debug_want_extra_isize'
[   62.253512][ T5362] loop2: detected capacity change from 0 to 2048
[   62.276587][ T5364] loop5: detected capacity change from 0 to 2048
[   62.301936][ T5362] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5362 comm=syz.2.707
[   62.339840][ T5368] loop0: detected capacity change from 0 to 1024
[   62.347175][ T5368] EXT4-fs: Ignoring removed bh option
[   62.350384][ T5364] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5364 comm=syz.5.708
[   62.352792][ T5368] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.387658][ T5373] bridge2: entered promiscuous mode
[   62.392980][ T5373] bridge2: entered allmulticast mode
[   62.401307][ T5368] macvlan2: entered promiscuous mode
[   62.406645][ T5368] bridge0: entered promiscuous mode
[   62.412153][ T5368] bridge0: port 3(macvlan2) entered blocking state
[   62.418775][ T5368] bridge0: port 3(macvlan2) entered disabled state
[   62.425629][ T5368] macvlan2: entered allmulticast mode
[   62.431046][ T5368] bridge0: entered allmulticast mode
[   62.437047][ T5368] macvlan2: left allmulticast mode
[   62.442294][ T5368] bridge0: left allmulticast mode
[   62.447857][ T5368] bridge0: left promiscuous mode
[   62.450089][ T5375] netlink: 'syz.5.712': attribute type 13 has an invalid length.
[   62.505412][ T5377] FAULT_INJECTION: forcing a failure.
[   62.505412][ T5377] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   62.518490][ T5377] CPU: 0 UID: 0 PID: 5377 Comm: syz.5.713 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   62.518525][ T5377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   62.518531][ T5377] Call Trace:
[   62.518535][ T5377]  <TASK>
[   62.518539][ T5377]  __dump_stack+0x1d/0x30
[   62.518552][ T5377]  dump_stack_lvl+0xe8/0x140
[   62.518627][ T5377]  dump_stack+0x15/0x1b
[   62.518635][ T5377]  should_fail_ex+0x265/0x280
[   62.518683][ T5377]  should_fail+0xb/0x20
[   62.518697][ T5377]  should_fail_usercopy+0x1a/0x20
[   62.518708][ T5377]  _copy_from_user+0x1c/0xb0
[   62.518720][ T5377]  memdup_user+0x5e/0xd0
[   62.518744][ T5377]  update_filter+0xbe/0x510
[   62.518765][ T5377]  __tun_chr_ioctl+0xe2c/0x14c0
[   62.518855][ T5377]  ? __pfx_tun_chr_ioctl+0x10/0x10
[   62.518896][ T5377]  tun_chr_ioctl+0x27/0x40
[   62.518910][ T5377]  __se_sys_ioctl+0xcb/0x140
[   62.518925][ T5377]  __x64_sys_ioctl+0x43/0x50
[   62.518965][ T5377]  x64_sys_call+0x19a8/0x2fb0
[   62.518981][ T5377]  do_syscall_64+0xd2/0x200
[   62.519032][ T5377]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.519045][ T5377]  ? clear_bhb_loop+0x40/0x90
[   62.519056][ T5377]  ? clear_bhb_loop+0x40/0x90
[   62.519066][ T5377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.519095][ T5377] RIP: 0033:0x7fc1edafe929
[   62.519104][ T5377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.519114][ T5377] RSP: 002b:00007fc1ec167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.519141][ T5377] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafe929
[   62.519148][ T5377] RDX: 0000200000000380 RSI: 00000000400454d1 RDI: 0000000000000003
[   62.519225][ T5377] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   62.519231][ T5377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.519237][ T5377] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   62.519246][ T5377]  </TASK>
[   62.742757][ T5379] netlink: 24 bytes leftover after parsing attributes in process `syz.3.714'.
[   62.767655][ T5381] loop0: detected capacity change from 0 to 256
[   62.774379][ T5381] msdos: Unknown parameter 'dttq'
[   62.802689][ T5387] loop2: detected capacity change from 0 to 128
[   62.815157][ T5387] ext4 filesystem being mounted at /147/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   62.829365][ T5384] netlink: 'syz.3.717': attribute type 4 has an invalid length.
[   62.829752][ T5386] loop5: detected capacity change from 0 to 128
[   62.845348][ T5389] loop0: detected capacity change from 0 to 128
[   62.858970][   T10] IPVS: starting estimator thread 0...
[   62.865029][ T5387] ./file0: Can't lookup blockdev
[   62.872111][ T5393] loop3: detected capacity change from 0 to 1024
[   62.879206][ T5393] ext4: Bad value for 'debug_want_extra_isize'
[   62.950741][ T5393] loop3: detected capacity change from 0 to 2048
[   62.957506][ T5391] IPVS: using max 3600 ests per chain, 180000 per kthread
[   63.052400][ T5393] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5393 comm=syz.3.720
[   63.214474][ T5415] netlink: 'syz.0.723': attribute type 13 has an invalid length.
[   63.253233][ T5418] netlink: 180 bytes leftover after parsing attributes in process `syz.5.724'.
[   63.273708][ T5417] loop3: detected capacity change from 0 to 1024
[   63.287138][ T5417] EXT4-fs: Ignoring removed bh option
[   63.292625][ T5417] EXT4-fs: Ignoring removed nomblk_io_submit option
[   63.428152][ T5424] netlink: 24 bytes leftover after parsing attributes in process `syz.2.728'.
[   63.440545][ T5403] loop4: detected capacity change from 0 to 164
[   63.450690][ T5403] syz.4.722: attempt to access beyond end of device
[   63.450690][ T5403] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   63.452615][ T5417] macvlan2: entered promiscuous mode
[   63.465464][ T5403] syz.4.722: attempt to access beyond end of device
[   63.465464][ T5403] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   63.469779][ T5417] bridge0: entered promiscuous mode
[   63.493010][ T5417] bridge0: port 3(macvlan2) entered blocking state
[   63.499621][ T5417] bridge0: port 3(macvlan2) entered disabled state
[   63.506791][ T5417] macvlan2: entered allmulticast mode
[   63.512293][ T5417] bridge0: entered allmulticast mode
[   63.518588][ T5417] macvlan2: left allmulticast mode
[   63.523774][ T5417] bridge0: left allmulticast mode
[   63.529382][ T5417] bridge0: left promiscuous mode
[   63.558807][ T5435] netlink: 28 bytes leftover after parsing attributes in process `syz.4.731'.
[   63.569334][ T5435] netlink: 8 bytes leftover after parsing attributes in process `syz.4.731'.
[   63.597523][ T5437] loop2: detected capacity change from 0 to 128
[   63.606613][ T5439] netlink: 'syz.4.733': attribute type 4 has an invalid length.
[   63.637474][ T5441] loop3: detected capacity change from 0 to 128
[   63.638445][ T5443] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5443 comm=syz.0.735
[   63.680757][ T5448] netlink: 'syz.0.737': attribute type 13 has an invalid length.
[   63.692619][ T5450] netem: change failed
[   63.697132][   T29] kauditd_printk_skb: 84 callbacks suppressed
[   63.697144][   T29] audit: type=1400 audit(1749890362.245:3221): avc:  denied  { write } for  pid=5449 comm="syz.4.738" name="udplite" dev="proc" ino=4026532650 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   63.746339][   T29] audit: type=1400 audit(1749890362.295:3222): avc:  denied  { write } for  pid=5449 comm="syz.4.738" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   63.774297][ T5454] loop0: detected capacity change from 0 to 1024
[   63.781737][ T5454] ext4: Bad value for 'debug_want_extra_isize'
[   63.789812][ T5456] FAULT_INJECTION: forcing a failure.
[   63.789812][ T5456] name failslab, interval 1, probability 0, space 0, times 1
[   63.802639][ T5456] CPU: 0 UID: 0 PID: 5456 Comm: syz.2.740 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   63.802671][ T5456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.802684][ T5456] Call Trace:
[   63.802691][ T5456]  <TASK>
[   63.802699][ T5456]  __dump_stack+0x1d/0x30
[   63.802720][ T5456]  dump_stack_lvl+0xe8/0x140
[   63.802758][ T5456]  dump_stack+0x15/0x1b
[   63.802776][ T5456]  should_fail_ex+0x265/0x280
[   63.802807][ T5456]  should_failslab+0x8c/0xb0
[   63.802832][ T5456]  __kvmalloc_node_noprof+0x123/0x4e0
[   63.802878][ T5456]  ? alloc_netdev_mqs+0xa1/0xab0
[   63.802901][ T5456]  alloc_netdev_mqs+0xa1/0xab0
[   63.802984][ T5456]  ? __pfx_ipip_tunnel_setup+0x10/0x10
[   63.803019][ T5456]  ? avc_has_perm_noaudit+0x1b1/0x200
[   63.803081][ T5456]  rtnl_create_link+0x239/0x710
[   63.803105][ T5456]  rtnl_newlink_create+0x14c/0x620
[   63.803145][ T5456]  ? security_capable+0x83/0x90
[   63.803180][ T5456]  rtnl_newlink+0xf29/0x12d0
[   63.803218][ T5456]  ? xa_load+0xb1/0xe0
[   63.803242][ T5456]  ? __rcu_read_unlock+0x4f/0x70
[   63.803273][ T5456]  ? avc_has_perm_noaudit+0x1b1/0x200
[   63.803308][ T5456]  ? selinux_capable+0x1f9/0x270
[   63.803347][ T5456]  ? security_capable+0x83/0x90
[   63.803386][ T5456]  ? ns_capable+0x7d/0xb0
[   63.803459][ T5456]  ? __pfx_rtnl_newlink+0x10/0x10
[   63.803487][ T5456]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   63.803516][ T5456]  ? avc_has_perm_noaudit+0x1b1/0x200
[   63.803551][ T5456]  netlink_rcv_skb+0x123/0x220
[   63.803641][ T5456]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   63.803675][ T5456]  rtnetlink_rcv+0x1c/0x30
[   63.803699][ T5456]  netlink_unicast+0x5a1/0x670
[   63.803784][ T5456]  netlink_sendmsg+0x58b/0x6b0
[   63.803871][ T5456]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.803895][ T5456]  __sock_sendmsg+0x145/0x180
[   63.804001][ T5456]  ____sys_sendmsg+0x31e/0x4e0
[   63.804027][ T5456]  ___sys_sendmsg+0x17b/0x1d0
[   63.804135][ T5456]  __x64_sys_sendmsg+0xd4/0x160
[   63.804162][ T5456]  x64_sys_call+0x2999/0x2fb0
[   63.804186][ T5456]  do_syscall_64+0xd2/0x200
[   63.804330][ T5456]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.804366][ T5456]  ? clear_bhb_loop+0x40/0x90
[   63.804389][ T5456]  ? clear_bhb_loop+0x40/0x90
[   63.804412][ T5456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.804453][ T5456] RIP: 0033:0x7fe0ef61e929
[   63.804471][ T5456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.804490][ T5456] RSP: 002b:00007fe0edc87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.804512][ T5456] RAX: ffffffffffffffda RBX: 00007fe0ef845fa0 RCX: 00007fe0ef61e929
[   63.804598][ T5456] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[   63.804611][ T5456] RBP: 00007fe0edc87090 R08: 0000000000000000 R09: 0000000000000000
[   63.804624][ T5456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.804636][ T5456] R13: 0000000000000000 R14: 00007fe0ef845fa0 R15: 00007ffddd341cb8
[   63.804656][ T5456]  </TASK>
[   64.122404][ T5459] netlink: 'syz.4.741': attribute type 196 has an invalid length.
[   64.142473][ T5454] loop0: detected capacity change from 0 to 2048
[   64.156423][ T5462] loop2: detected capacity change from 0 to 1024
[   64.163961][ T5462] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   64.183573][ T5454] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5454 comm=syz.0.739
[   64.215048][ T5474] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5474 comm=syz.3.747
[   64.232847][   T29] audit: type=1400 audit(1749890362.785:3223): avc:  denied  { mount } for  pid=5461 comm="syz.2.742" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   64.235693][ T5462] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   64.254605][   T29] audit: type=1400 audit(1749890362.785:3224): avc:  denied  { setattr } for  pid=5461 comm="syz.2.742" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   64.291906][ T5477] loop4: detected capacity change from 0 to 128
[   64.295760][ T5480] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.742: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[   64.320582][ T5479] loop0: detected capacity change from 0 to 1024
[   64.327448][ T5479] ext4: Bad value for 'debug_want_extra_isize'
[   64.340505][   T29] audit: type=1400 audit(1749890362.835:3225): avc:  denied  { map } for  pid=5472 comm="syz.4.746" path="socket:[11214]" dev="sockfs" ino=11214 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   64.364248][   T29] audit: type=1400 audit(1749890362.835:3226): avc:  denied  { accept } for  pid=5472 comm="syz.4.746" path="socket:[11214]" dev="sockfs" ino=11214 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   64.388233][   T29] audit: type=1400 audit(1749890362.845:3227): avc:  denied  { rename } for  pid=5461 comm="syz.2.742" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   64.415479][   T29] audit: type=1400 audit(1749890362.895:3228): avc:  denied  { unmount } for  pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   64.442563][ T5483] netlink: 'syz.3.750': attribute type 13 has an invalid length.
[   64.465746][ T5479] loop0: detected capacity change from 0 to 2048
[   64.506192][ T5487] loop3: detected capacity change from 0 to 128
[   64.506667][   T29] audit: type=1326 audit(1749890363.055:3229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5484 comm="syz.2.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0ef61e929 code=0x7ffc0000
[   64.535931][   T29] audit: type=1326 audit(1749890363.055:3230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5484 comm="syz.2.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0ef61e929 code=0x7ffc0000
[   64.543224][ T5479] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5479 comm=syz.0.748
[   64.645342][ T5496] loop0: detected capacity change from 0 to 128
[   64.663824][ T5498] 9pnet_fd: Insufficient options for proto=fd
[   64.671713][ T5498] loop3: detected capacity change from 0 to 164
[   64.855163][ T5508] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5508 comm=syz.3.760
[   64.913135][ T5512] loop3: detected capacity change from 0 to 1024
[   64.919909][ T5512] EXT4-fs: Ignoring removed bh option
[   64.925415][ T5512] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.953827][ T5512] macvlan2: entered promiscuous mode
[   64.959147][ T5512] bridge0: entered promiscuous mode
[   64.964916][ T5512] bridge0: port 3(macvlan2) entered blocking state
[   64.971484][ T5512] bridge0: port 3(macvlan2) entered disabled state
[   64.978109][ T5512] macvlan2: entered allmulticast mode
[   64.983564][ T5512] bridge0: entered allmulticast mode
[   64.989188][ T5512] macvlan2: left allmulticast mode
[   64.994396][ T5512] bridge0: left allmulticast mode
[   64.999867][ T5512] bridge0: left promiscuous mode
[   65.083965][ T5516] loop3: detected capacity change from 0 to 1024
[   65.091141][ T5516] ext4: Bad value for 'debug_want_extra_isize'
[   65.161867][ T5516] loop3: detected capacity change from 0 to 2048
[   65.220929][ T5516] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5516 comm=syz.3.762
[   65.269496][ T5527] FAULT_INJECTION: forcing a failure.
[   65.269496][ T5527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.282688][ T5527] CPU: 0 UID: 0 PID: 5527 Comm: syz.0.766 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   65.282719][ T5527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.282732][ T5527] Call Trace:
[   65.282740][ T5527]  <TASK>
[   65.282748][ T5527]  __dump_stack+0x1d/0x30
[   65.282772][ T5527]  dump_stack_lvl+0xe8/0x140
[   65.282839][ T5527]  dump_stack+0x15/0x1b
[   65.282857][ T5527]  should_fail_ex+0x265/0x280
[   65.282892][ T5527]  should_fail+0xb/0x20
[   65.282922][ T5527]  should_fail_usercopy+0x1a/0x20
[   65.283020][ T5527]  _copy_from_user+0x1c/0xb0
[   65.283072][ T5527]  kstrtouint_from_user+0x69/0xf0
[   65.283104][ T5527]  ? 0xffffffff81000000
[   65.283126][ T5527]  ? selinux_file_permission+0x1e4/0x320
[   65.283198][ T5527]  proc_fail_nth_write+0x50/0x160
[   65.283221][ T5527]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   65.283244][ T5527]  vfs_write+0x269/0x8e0
[   65.283263][ T5527]  ? vfs_read+0x47f/0x6f0
[   65.283281][ T5527]  ? __rcu_read_unlock+0x4f/0x70
[   65.283322][ T5527]  ? __fget_files+0x184/0x1c0
[   65.283346][ T5527]  ksys_write+0xda/0x1a0
[   65.283399][ T5527]  __x64_sys_write+0x40/0x50
[   65.283421][ T5527]  x64_sys_call+0x2cdd/0x2fb0
[   65.283443][ T5527]  do_syscall_64+0xd2/0x200
[   65.283497][ T5527]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.283524][ T5527]  ? clear_bhb_loop+0x40/0x90
[   65.283558][ T5527]  ? clear_bhb_loop+0x40/0x90
[   65.283625][ T5527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.283648][ T5527] RIP: 0033:0x7f91fcead3df
[   65.283665][ T5527] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   65.283684][ T5527] RSP: 002b:00007f91fb517030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   65.283747][ T5527] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f91fcead3df
[   65.283762][ T5527] RDX: 0000000000000001 RSI: 00007f91fb5170a0 RDI: 0000000000000007
[   65.283782][ T5527] RBP: 00007f91fb517090 R08: 0000000000000000 R09: 0000000000000000
[   65.283795][ T5527] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   65.283809][ T5527] R13: 0000000000000000 R14: 00007f91fd0d5fa0 R15: 00007ffd1206bea8
[   65.283896][ T5527]  </TASK>
[   65.284213][ T5529] FAULT_INJECTION: forcing a failure.
[   65.284213][ T5529] name failslab, interval 1, probability 0, space 0, times 0
[   65.331211][ T5520] loop4: detected capacity change from 0 to 164
[   65.335249][ T5529] CPU: 0 UID: 0 PID: 5529 Comm: syz.3.767 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   65.335346][ T5529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.335358][ T5529] Call Trace:
[   65.335365][ T5529]  <TASK>
[   65.335373][ T5529]  __dump_stack+0x1d/0x30
[   65.335404][ T5529]  dump_stack_lvl+0xe8/0x140
[   65.335424][ T5529]  dump_stack+0x15/0x1b
[   65.335457][ T5529]  should_fail_ex+0x265/0x280
[   65.335520][ T5529]  should_failslab+0x8c/0xb0
[   65.335543][ T5529]  kmem_cache_alloc_noprof+0x50/0x310
[   65.335614][ T5529]  ? alloc_empty_file+0x76/0x200
[   65.335639][ T5529]  alloc_empty_file+0x76/0x200
[   65.335666][ T5529]  alloc_file_pseudo+0xc6/0x160
[   65.335736][ T5529]  anon_inode_getfd+0xc1/0x150
[   65.335762][ T5529]  __se_sys_fsopen+0x193/0x1e0
[   65.335784][ T5529]  __x64_sys_fsopen+0x31/0x40
[   65.335805][ T5529]  x64_sys_call+0x2a54/0x2fb0
[   65.335866][ T5529]  do_syscall_64+0xd2/0x200
[   65.335887][ T5529]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.335913][ T5529]  ? clear_bhb_loop+0x40/0x90
[   65.335934][ T5529]  ? clear_bhb_loop+0x40/0x90
[   65.336025][ T5529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.336115][ T5529] RIP: 0033:0x7f59bff5e929
[   65.336131][ T5529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.336149][ T5529] RSP: 002b:00007f59be5c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[   65.336169][ T5529] RAX: ffffffffffffffda RBX: 00007f59c0185fa0 RCX: 00007f59bff5e929
[   65.336185][ T5529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000003c0
[   65.336198][ T5529] RBP: 00007f59be5c7090 R08: 0000000000000000 R09: 0000000000000000
[   65.336210][ T5529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.336222][ T5529] R13: 0000000000000001 R14: 00007f59c0185fa0 R15: 00007fff5e2b3488
[   65.336241][ T5529]  </TASK>
[   65.617508][ T5534] loop2: detected capacity change from 0 to 128
[   65.631136][ T5538] loop0: detected capacity change from 0 to 1024
[   65.703153][ T5520] syz.4.764: attempt to access beyond end of device
[   65.703153][ T5520] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   65.751007][ T5520] syz.4.764: attempt to access beyond end of device
[   65.751007][ T5520] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   65.775498][ T5538] 9pnet_fd: Insufficient options for proto=fd
[   65.784073][ T5540] loop3: detected capacity change from 0 to 1024
[   65.802183][ T5540] EXT4-fs: Ignoring removed bh option
[   65.807654][ T5540] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.907984][ T5546] validate_nla: 1 callbacks suppressed
[   65.907999][ T5546] netlink: 'syz.0.773': attribute type 13 has an invalid length.
[   65.930863][ T5540] macvlan2: entered promiscuous mode
[   65.936243][ T5540] bridge0: entered promiscuous mode
[   65.946118][ T5540] bridge0: port 3(macvlan2) entered blocking state
[   65.952823][ T5540] bridge0: port 3(macvlan2) entered disabled state
[   65.959869][ T5550] vhci_hcd: invalid port number 96
[   65.965085][ T5550] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   65.977674][ T5540] macvlan2: entered allmulticast mode
[   65.983302][ T5540] bridge0: entered allmulticast mode
[   65.991679][ T5540] macvlan2: left allmulticast mode
[   65.996893][ T5540] bridge0: left allmulticast mode
[   66.002917][ T5540] bridge0: left promiscuous mode
[   66.055453][ T5556] loop2: detected capacity change from 0 to 1024
[   66.071134][ T5556] ext4: Bad value for 'debug_want_extra_isize'
[   66.094492][ T3323] EXT4-fs unmount: 81 callbacks suppressed
[   66.094511][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.114271][ T5556] loop2: detected capacity change from 0 to 2048
[   66.132092][ T5559] __nla_validate_parse: 9 callbacks suppressed
[   66.132110][ T5559] netlink: 40 bytes leftover after parsing attributes in process `syz.3.778'.
[   66.147285][ T5560] loop0: detected capacity change from 0 to 1024
[   66.155699][ T5560] ext4: Bad value for 'debug_want_extra_isize'
[   66.165425][ T5559] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5559 comm=syz.3.778
[   66.212957][ T5562] loop5: detected capacity change from 0 to 128
[   66.229815][ T5564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.780'.
[   66.239950][ T5556] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5556 comm=syz.2.777
[   66.276406][ T5560] loop0: detected capacity change from 0 to 2048
[   66.321932][ T5569] netlink: 'syz.2.783': attribute type 4 has an invalid length.
[   66.334580][ T5560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5560 comm=syz.0.779
[   66.428344][ T5577] loop3: detected capacity change from 0 to 1024
[   66.455922][ T5577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.564806][ T5577] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   66.597914][ T5592] loop5: detected capacity change from 0 to 1024
[   66.629150][ T5592] EXT4-fs: Ignoring removed bh option
[   66.634686][ T5592] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.644462][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.671010][ T5592] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.717152][ T5592] macvlan2: entered promiscuous mode
[   66.722602][ T5592] bridge0: entered promiscuous mode
[   66.729328][ T5592] bridge0: port 3(macvlan2) entered blocking state
[   66.735935][ T5592] bridge0: port 3(macvlan2) entered disabled state
[   66.743970][ T5592] macvlan2: entered allmulticast mode
[   66.749399][ T5592] bridge0: entered allmulticast mode
[   66.755808][ T5599] netlink: 180 bytes leftover after parsing attributes in process `syz.3.791'.
[   66.779524][ T5592] macvlan2: left allmulticast mode
[   66.784759][ T5592] bridge0: left allmulticast mode
[   66.794697][ T5601] loop4: detected capacity change from 0 to 512
[   66.801959][ T5592] bridge0: left promiscuous mode
[   66.807920][ T5601] EXT4-fs: Ignoring removed mblk_io_submit option
[   66.828572][ T5601] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   66.838856][ T5601] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.792: iget: bad extended attribute block 1
[   66.852704][ T5601] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.792: couldn't read orphan inode 15 (err -117)
[   66.866761][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.893591][ T3555] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.905150][ T5601] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[   66.934603][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.976417][ T5607] netlink: 'syz.5.795': attribute type 4 has an invalid length.
[   66.989325][ T5609] loop4: detected capacity change from 0 to 1024
[   67.006354][ T5609] ext4: Bad value for 'debug_want_extra_isize'
[   67.124670][ T5609] loop4: detected capacity change from 0 to 2048
[   67.162153][ T5609] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5609 comm=syz.4.794
[   67.510008][ T5619] loop2: detected capacity change from 0 to 1024
[   67.835776][ T5623] loop4: detected capacity change from 0 to 128
[   68.073418][ T5631] FAULT_INJECTION: forcing a failure.
[   68.073418][ T5631] name failslab, interval 1, probability 0, space 0, times 0
[   68.086130][ T5631] CPU: 0 UID: 0 PID: 5631 Comm: syz.4.803 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   68.086170][ T5631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.086180][ T5631] Call Trace:
[   68.086186][ T5631]  <TASK>
[   68.086266][ T5631]  __dump_stack+0x1d/0x30
[   68.086288][ T5631]  dump_stack_lvl+0xe8/0x140
[   68.086312][ T5631]  dump_stack+0x15/0x1b
[   68.086328][ T5631]  should_fail_ex+0x265/0x280
[   68.086411][ T5631]  ? nf_tables_newflowtable+0x5c0/0x1200
[   68.086504][ T5631]  should_failslab+0x8c/0xb0
[   68.086545][ T5631]  __kmalloc_cache_noprof+0x4c/0x320
[   68.086592][ T5631]  nf_tables_newflowtable+0x5c0/0x1200
[   68.086628][ T5631]  nfnetlink_rcv+0xb99/0x1690
[   68.086682][ T5631]  netlink_unicast+0x5a1/0x670
[   68.086714][ T5631]  netlink_sendmsg+0x58b/0x6b0
[   68.086782][ T5631]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.086807][ T5631]  __sock_sendmsg+0x145/0x180
[   68.086839][ T5631]  ____sys_sendmsg+0x31e/0x4e0
[   68.086873][ T5631]  ___sys_sendmsg+0x17b/0x1d0
[   68.086912][ T5631]  __x64_sys_sendmsg+0xd4/0x160
[   68.086939][ T5631]  x64_sys_call+0x2999/0x2fb0
[   68.086988][ T5631]  do_syscall_64+0xd2/0x200
[   68.087011][ T5631]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   68.087086][ T5631]  ? clear_bhb_loop+0x40/0x90
[   68.087113][ T5631]  ? clear_bhb_loop+0x40/0x90
[   68.087133][ T5631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.087158][ T5631] RIP: 0033:0x7fd3f7cae929
[   68.087176][ T5631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.087214][ T5631] RSP: 002b:00007fd3f6317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.087233][ T5631] RAX: ffffffffffffffda RBX: 00007fd3f7ed5fa0 RCX: 00007fd3f7cae929
[   68.087245][ T5631] RDX: 0000000000008050 RSI: 00002000000003c0 RDI: 0000000000000005
[   68.087258][ T5631] RBP: 00007fd3f6317090 R08: 0000000000000000 R09: 0000000000000000
[   68.087272][ T5631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.087389][ T5631] R13: 0000000000000000 R14: 00007fd3f7ed5fa0 R15: 00007fff00410318
[   68.087410][ T5631]  </TASK>
[   68.397612][ T5636] loop4: detected capacity change from 0 to 1024
[   68.408943][ T5634] loop0: detected capacity change from 0 to 128
[   68.421012][ T5636] EXT4-fs: Ignoring removed bh option
[   68.426792][ T5636] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.435909][ T5636] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.463624][ T5636] macvlan2: entered promiscuous mode
[   68.469015][ T5636] bridge0: entered promiscuous mode
[   68.474630][ T5636] bridge0: port 3(macvlan2) entered blocking state
[   68.481364][ T5636] bridge0: port 3(macvlan2) entered disabled state
[   68.489130][ T5636] macvlan2: entered allmulticast mode
[   68.494589][ T5636] bridge0: entered allmulticast mode
[   68.501655][ T5636] macvlan2: left allmulticast mode
[   68.506812][ T5636] bridge0: left allmulticast mode
[   68.512405][ T5636] bridge0: left promiscuous mode
[   68.599258][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.635556][ T5646] loop0: detected capacity change from 0 to 2048
[   68.646732][ T5642] loop5: detected capacity change from 0 to 164
[   68.655594][ T5642] syz.5.805: attempt to access beyond end of device
[   68.655594][ T5642] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   68.669853][ T5642] syz.5.805: attempt to access beyond end of device
[   68.669853][ T5642] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   68.671557][ T5646] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   68.755435][   T29] kauditd_printk_skb: 28 callbacks suppressed
[   68.755450][   T29] audit: type=1326 audit(1749890367.305:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.785217][   T29] audit: type=1326 audit(1749890367.305:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.808648][   T29] audit: type=1326 audit(1749890367.305:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.831960][   T29] audit: type=1326 audit(1749890367.305:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.855327][   T29] audit: type=1326 audit(1749890367.305:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.878685][   T29] audit: type=1326 audit(1749890367.305:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.902091][   T29] audit: type=1326 audit(1749890367.305:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.925494][   T29] audit: type=1326 audit(1749890367.305:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f91fcea58e7 code=0x7ffc0000
[   68.948975][   T29] audit: type=1326 audit(1749890367.305:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f91fce4ab19 code=0x7ffc0000
[   68.972373][   T29] audit: type=1326 audit(1749890367.305:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5645 comm="syz.0.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91fceae929 code=0x7ffc0000
[   68.997875][ T5644] loop4: detected capacity change from 0 to 164
[   69.007418][ T5644] syz.4.806: attempt to access beyond end of device
[   69.007418][ T5644] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   69.022772][ T5644] syz.4.806: attempt to access beyond end of device
[   69.022772][ T5644] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[   69.088302][ T5659] FAULT_INJECTION: forcing a failure.
[   69.088302][ T5659] name failslab, interval 1, probability 0, space 0, times 0
[   69.101092][ T5659] CPU: 0 UID: 0 PID: 5659 Comm: syz.5.810 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   69.101120][ T5659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.101131][ T5659] Call Trace:
[   69.101140][ T5659]  <TASK>
[   69.101149][ T5659]  __dump_stack+0x1d/0x30
[   69.101242][ T5659]  dump_stack_lvl+0xe8/0x140
[   69.101264][ T5659]  dump_stack+0x15/0x1b
[   69.101282][ T5659]  should_fail_ex+0x265/0x280
[   69.101367][ T5659]  should_failslab+0x8c/0xb0
[   69.101409][ T5659]  kmem_cache_alloc_noprof+0x50/0x310
[   69.101439][ T5659]  ? getname_kernel+0x3c/0x1f0
[   69.101466][ T5659]  ? __pfx_resume_store+0x10/0x10
[   69.101490][ T5659]  getname_kernel+0x3c/0x1f0
[   69.101511][ T5659]  kern_path+0x23/0x130
[   69.101567][ T5659]  ? __pfx_resume_store+0x10/0x10
[   69.101592][ T5659]  lookup_bdev+0x66/0x150
[   69.101665][ T5659]  resume_store+0x10b/0x3d0
[   69.101688][ T5659]  ? _copy_from_iter+0x16d/0xe40
[   69.101711][ T5659]  ? should_fail_ex+0xdb/0x280
[   69.101773][ T5659]  ? __pfx_resume_store+0x10/0x10
[   69.101796][ T5659]  kobj_attr_store+0x47/0x70
[   69.101867][ T5659]  ? __pfx_kobj_attr_store+0x10/0x10
[   69.101890][ T5659]  sysfs_kf_write+0xfb/0x120
[   69.101989][ T5659]  ? __pfx_sysfs_kf_write+0x10/0x10
[   69.102021][ T5659]  kernfs_fop_write_iter+0x1be/0x2d0
[   69.102046][ T5659]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   69.102155][ T5659]  vfs_write+0x49d/0x8e0
[   69.102181][ T5659]  ksys_write+0xda/0x1a0
[   69.102204][ T5659]  __x64_sys_write+0x40/0x50
[   69.102257][ T5659]  x64_sys_call+0x2cdd/0x2fb0
[   69.102281][ T5659]  do_syscall_64+0xd2/0x200
[   69.102304][ T5659]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.102345][ T5659]  ? clear_bhb_loop+0x40/0x90
[   69.102444][ T5659]  ? clear_bhb_loop+0x40/0x90
[   69.102466][ T5659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.102487][ T5659] RIP: 0033:0x7fc1edafe929
[   69.102504][ T5659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.102525][ T5659] RSP: 002b:00007fc1ec167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   69.102548][ T5659] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafe929
[   69.102570][ T5659] RDX: 000000000001000a RSI: 00002000000109c0 RDI: 0000000000000006
[   69.102583][ T5659] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   69.102597][ T5659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.102617][ T5659] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   69.102644][ T5659]  </TASK>
[   69.360178][ T5660] netlink: 40 bytes leftover after parsing attributes in process `syz.2.809'.
[   69.372133][ T5660] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5660 comm=syz.2.809
[   69.409169][ T5664] loop4: detected capacity change from 0 to 1024
[   69.427698][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[   69.443318][ T5666] loop5: detected capacity change from 0 to 128
[   69.678979][ T5679] loop5: detected capacity change from 0 to 1024
[   69.685598][ T5679] EXT4-fs: Ignoring removed bh option
[   69.691196][ T5679] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.707905][ T5679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.730370][ T5682] netlink: 'syz.3.817': attribute type 13 has an invalid length.
[   69.735511][ T5679] macvlan2: entered promiscuous mode
[   69.743624][ T5679] bridge0: entered promiscuous mode
[   69.750233][ T5679] bridge0: port 3(macvlan2) entered blocking state
[   69.756870][ T5679] bridge0: port 3(macvlan2) entered disabled state
[   69.764801][ T5679] macvlan2: entered allmulticast mode
[   69.770241][ T5679] bridge0: entered allmulticast mode
[   69.776504][ T5679] macvlan2: left allmulticast mode
[   69.781734][ T5679] bridge0: left allmulticast mode
[   69.788084][ T5679] bridge0: left promiscuous mode
[   69.801042][ T5686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.819'.
[   69.852886][ T5688] loop0: detected capacity change from 0 to 128
[   69.865394][ T5688] netlink: 28 bytes leftover after parsing attributes in process `syz.0.819'.
[   69.874383][ T5688] netlink: 28 bytes leftover after parsing attributes in process `syz.0.819'.
[   69.916223][ T3555] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.942022][ T5692] loop5: detected capacity change from 0 to 164
[   69.950504][ T5692] syz.5.821: attempt to access beyond end of device
[   69.950504][ T5692] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   69.964503][ T5692] syz.5.821: attempt to access beyond end of device
[   69.964503][ T5692] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   69.992774][ T5697] netlink: 40 bytes leftover after parsing attributes in process `syz.5.823'.
[   70.002884][ T5697] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5697 comm=syz.5.823
[   70.073323][ T5704] loop5: detected capacity change from 0 to 128
[   70.259161][ T5710] loop4: detected capacity change from 0 to 164
[   70.287077][ T5712] netlink: 'syz.4.829': attribute type 4 has an invalid length.
[   70.305217][ T5715] netlink: 180 bytes leftover after parsing attributes in process `syz.2.827'.
[   70.323706][ T5717] loop4: detected capacity change from 0 to 1024
[   70.330990][ T5717] EXT4-fs: Ignoring removed bh option
[   70.336708][ T5717] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.339967][ T5721] netlink: 8 bytes leftover after parsing attributes in process `syz.5.833'.
[   70.346458][ T5717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.358257][ T5721] macvtap1: entered promiscuous mode
[   70.370143][ T5721] hsr0: entered promiscuous mode
[   70.375609][ T5721] macvtap1: entered allmulticast mode
[   70.381109][ T5721] hsr0: entered allmulticast mode
[   70.386118][ T5721] hsr_slave_0: entered allmulticast mode
[   70.392054][ T5721] hsr_slave_1: entered allmulticast mode
[   70.398305][ T5721] hsr0: left allmulticast mode
[   70.403103][ T5721] hsr_slave_0: left allmulticast mode
[   70.408567][ T5721] hsr_slave_1: left allmulticast mode
[   70.413997][ T5721] hsr0: left promiscuous mode
[   70.422500][ T5717] macvlan2: entered promiscuous mode
[   70.427858][ T5717] bridge0: entered promiscuous mode
[   70.433388][ T5717] bridge0: port 3(macvlan2) entered blocking state
[   70.440053][ T5717] bridge0: port 3(macvlan2) entered disabled state
[   70.446960][ T5717] macvlan2: entered allmulticast mode
[   70.452434][ T5717] bridge0: entered allmulticast mode
[   70.458212][ T5717] macvlan2: left allmulticast mode
[   70.463373][ T5717] bridge0: left allmulticast mode
[   70.468699][ T5717] bridge0: left promiscuous mode
[   70.493407][ T5727] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5727 comm=syz.5.834
[   70.519756][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.536133][ T5729] loop5: detected capacity change from 0 to 1024
[   70.553433][ T5729] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.573838][ T5729] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   70.637036][ T5737] loop4: detected capacity change from 0 to 1024
[   70.652594][ T3555] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.857626][ T5746] loop3: detected capacity change from 0 to 128
[   70.913515][ T5749] SELinux: ebitmap: truncated map
[   70.919504][ T5749] SELinux: failed to load policy
[   70.950150][ T5752] wireguard0: entered promiscuous mode
[   70.955865][ T5752] wireguard0: entered allmulticast mode
[   70.992487][ T5756] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   71.006307][ T5756] batadv_slave_0: entered promiscuous mode
[   71.013062][ T5755] batadv_slave_0: left promiscuous mode
[   71.073608][ T5765] batadv_slave_0: entered promiscuous mode
[   71.079979][ T5764] batadv_slave_0: left promiscuous mode
[   71.156085][ T5771] loop0: detected capacity change from 0 to 1024
[   71.175264][ T5773] loop5: detected capacity change from 0 to 2048
[   71.182777][ T5771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.202090][ T5773] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   71.215638][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.233620][ T5780] loop0: detected capacity change from 0 to 1024
[   71.252292][ T5780] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.278370][ T5780] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   71.294403][ T5784] FAULT_INJECTION: forcing a failure.
[   71.294403][ T5784] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.307561][ T5784] CPU: 1 UID: 0 PID: 5784 Comm: syz.3.847 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   71.307591][ T5784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.307603][ T5784] Call Trace:
[   71.307610][ T5784]  <TASK>
[   71.307618][ T5784]  __dump_stack+0x1d/0x30
[   71.307648][ T5784]  dump_stack_lvl+0xe8/0x140
[   71.307709][ T5784]  dump_stack+0x15/0x1b
[   71.307727][ T5784]  should_fail_ex+0x265/0x280
[   71.307757][ T5784]  should_fail+0xb/0x20
[   71.307852][ T5784]  should_fail_usercopy+0x1a/0x20
[   71.307871][ T5784]  _copy_from_iter+0xcf/0xe40
[   71.307892][ T5784]  ? __build_skb_around+0x1a0/0x200
[   71.307921][ T5784]  ? __alloc_skb+0x223/0x320
[   71.307950][ T5784]  netlink_sendmsg+0x471/0x6b0
[   71.308066][ T5784]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.308086][ T5784]  __sock_sendmsg+0x145/0x180
[   71.308110][ T5784]  ____sys_sendmsg+0x31e/0x4e0
[   71.308134][ T5784]  ___sys_sendmsg+0x17b/0x1d0
[   71.308163][ T5784]  __x64_sys_sendmsg+0xd4/0x160
[   71.308199][ T5784]  x64_sys_call+0x2999/0x2fb0
[   71.308329][ T5784]  do_syscall_64+0xd2/0x200
[   71.308402][ T5784]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.308446][ T5784]  ? clear_bhb_loop+0x40/0x90
[   71.308471][ T5784]  ? clear_bhb_loop+0x40/0x90
[   71.308543][ T5784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.308566][ T5784] RIP: 0033:0x7f59bff5e929
[   71.308584][ T5784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.308626][ T5784] RSP: 002b:00007f59be585038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.308647][ T5784] RAX: ffffffffffffffda RBX: 00007f59c0186160 RCX: 00007f59bff5e929
[   71.308659][ T5784] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000007
[   71.308673][ T5784] RBP: 00007f59be585090 R08: 0000000000000000 R09: 0000000000000000
[   71.308700][ T5784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.308714][ T5784] R13: 0000000000000000 R14: 00007f59c0186160 R15: 00007fff5e2b3488
[   71.308735][ T5784]  </TASK>
[   71.571345][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.637791][ T5783] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   71.658264][ T5783] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   71.670958][ T5783] EXT4-fs (loop5): This should not happen!! Data will be lost
[   71.670958][ T5783] 
[   71.680732][ T5783] EXT4-fs (loop5): Total free blocks count 0
[   71.686755][ T5783] EXT4-fs (loop5): Free/Dirty block details
[   71.692720][ T5783] EXT4-fs (loop5): free_blocks=2415919104
[   71.698486][ T5783] EXT4-fs (loop5): dirty_blocks=2624
[   71.703812][ T5783] EXT4-fs (loop5): Block reservation details
[   71.709859][ T5783] EXT4-fs (loop5): i_reserved_data_blocks=164
[   71.776363][   T41] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   71.799509][ T5794] FAULT_INJECTION: forcing a failure.
[   71.799509][ T5794] name failslab, interval 1, probability 0, space 0, times 0
[   71.812215][ T5794] CPU: 1 UID: 0 PID: 5794 Comm: syz.5.853 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   71.812239][ T5794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.812250][ T5794] Call Trace:
[   71.812256][ T5794]  <TASK>
[   71.812269][ T5794]  __dump_stack+0x1d/0x30
[   71.812287][ T5794]  dump_stack_lvl+0xe8/0x140
[   71.812322][ T5794]  dump_stack+0x15/0x1b
[   71.812339][ T5794]  should_fail_ex+0x265/0x280
[   71.812366][ T5794]  should_failslab+0x8c/0xb0
[   71.812386][ T5794]  kmem_cache_alloc_noprof+0x50/0x310
[   71.812407][ T5794]  ? security_file_alloc+0x32/0x100
[   71.812470][ T5794]  security_file_alloc+0x32/0x100
[   71.812481][ T5794]  init_file+0x5c/0x1d0
[   71.812494][ T5794]  alloc_empty_file+0x8b/0x200
[   71.812507][ T5794]  path_openat+0x68/0x2170
[   71.812602][ T5794]  ? ttwu_queue_wakelist+0xb8/0xd0
[   71.812614][ T5794]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   71.812709][ T5794]  ? try_to_wake_up+0x3df/0x630
[   71.812730][ T5794]  ? __list_del_entry_valid_or_report+0x65/0x130
[   71.812748][ T5794]  ? audit_log_end+0x1d7/0x1f0
[   71.812794][ T5794]  ? kmem_cache_free+0xdf/0x300
[   71.812811][ T5794]  ? audit_log_end+0x1d7/0x1f0
[   71.812832][ T5794]  do_filp_open+0x109/0x230
[   71.812929][ T5794]  do_sys_openat2+0xa6/0x110
[   71.812986][ T5794]  __x64_sys_open+0xe6/0x110
[   71.813004][ T5794]  x64_sys_call+0x14d4/0x2fb0
[   71.813018][ T5794]  do_syscall_64+0xd2/0x200
[   71.813031][ T5794]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.813115][ T5794]  ? clear_bhb_loop+0x40/0x90
[   71.813126][ T5794]  ? clear_bhb_loop+0x40/0x90
[   71.813137][ T5794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.813148][ T5794] RIP: 0033:0x7fc1edafe929
[   71.813159][ T5794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.813168][ T5794] RSP: 002b:00007fc1ec167038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   71.813179][ T5794] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafe929
[   71.813186][ T5794] RDX: 0000000000000080 RSI: 0000000000143142 RDI: 0000200000000040
[   71.813192][ T5794] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   71.813199][ T5794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.813205][ T5794] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   71.813295][ T5794]  </TASK>
[   72.063485][ T5796] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[   72.091137][ T5798] SELinux: syz.5.855 (5798) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   72.121174][ T5800] __nla_validate_parse: 2 callbacks suppressed
[   72.121188][ T5800] netlink: 112 bytes leftover after parsing attributes in process `syz.3.856'.
[   72.247288][ T5804] loop3: detected capacity change from 0 to 128
[   72.263203][ T5806] FAULT_INJECTION: forcing a failure.
[   72.263203][ T5806] name failslab, interval 1, probability 0, space 0, times 0
[   72.275924][ T5806] CPU: 1 UID: 0 PID: 5806 Comm: syz.5.859 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   72.275957][ T5806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.275969][ T5806] Call Trace:
[   72.275978][ T5806]  <TASK>
[   72.275987][ T5806]  __dump_stack+0x1d/0x30
[   72.276053][ T5806]  dump_stack_lvl+0xe8/0x140
[   72.276071][ T5806]  dump_stack+0x15/0x1b
[   72.276112][ T5806]  should_fail_ex+0x265/0x280
[   72.276148][ T5806]  ? audit_log_d_path+0x8d/0x150
[   72.276183][ T5806]  should_failslab+0x8c/0xb0
[   72.276207][ T5806]  __kmalloc_cache_noprof+0x4c/0x320
[   72.276297][ T5806]  audit_log_d_path+0x8d/0x150
[   72.276317][ T5806]  audit_log_d_path_exe+0x42/0x70
[   72.276341][ T5806]  audit_log_task+0x1e9/0x250
[   72.276397][ T5806]  audit_seccomp+0x61/0x100
[   72.276476][ T5806]  ? __seccomp_filter+0x68c/0x10d0
[   72.276488][ T5806]  __seccomp_filter+0x69d/0x10d0
[   72.276499][ T5806]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   72.276541][ T5806]  ? vfs_write+0x75e/0x8e0
[   72.276550][ T5806]  ? __rcu_read_unlock+0x4f/0x70
[   72.276562][ T5806]  ? __fget_files+0x184/0x1c0
[   72.276574][ T5806]  __secure_computing+0x82/0x150
[   72.276662][ T5806]  syscall_trace_enter+0xcf/0x1e0
[   72.276673][ T5806]  do_syscall_64+0xac/0x200
[   72.276684][ T5806]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.276696][ T5806]  ? clear_bhb_loop+0x40/0x90
[   72.276733][ T5806]  ? clear_bhb_loop+0x40/0x90
[   72.276744][ T5806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.276817][ T5806] RIP: 0033:0x7fc1edafd33c
[   72.276831][ T5806] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   72.276840][ T5806] RSP: 002b:00007fc1ec167030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.276851][ T5806] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafd33c
[   72.276858][ T5806] RDX: 000000000000000f RSI: 00007fc1ec1670a0 RDI: 0000000000000006
[   72.276870][ T5806] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   72.276876][ T5806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.276883][ T5806] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   72.276892][ T5806]  </TASK>
[   72.528043][ T5813] netlink: 96 bytes leftover after parsing attributes in process `syz.5.862'.
[   72.536979][ T5813] FAULT_INJECTION: forcing a failure.
[   72.536979][ T5813] name failslab, interval 1, probability 0, space 0, times 0
[   72.549684][ T5813] CPU: 1 UID: 0 PID: 5813 Comm: syz.5.862 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   72.549709][ T5813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.549720][ T5813] Call Trace:
[   72.549726][ T5813]  <TASK>
[   72.549779][ T5813]  __dump_stack+0x1d/0x30
[   72.549797][ T5813]  dump_stack_lvl+0xe8/0x140
[   72.549813][ T5813]  dump_stack+0x15/0x1b
[   72.549825][ T5813]  should_fail_ex+0x265/0x280
[   72.549906][ T5813]  should_failslab+0x8c/0xb0
[   72.549923][ T5813]  __kmalloc_noprof+0xa5/0x3e0
[   72.549941][ T5813]  ? ___neigh_create+0x4c9/0x1290
[   72.549974][ T5813]  ___neigh_create+0x4c9/0x1290
[   72.549993][ T5813]  ? __rcu_read_unlock+0x4f/0x70
[   72.550009][ T5813]  ? neigh_lookup+0x1a0/0x1d0
[   72.550025][ T5813]  neigh_add+0x874/0x8f0
[   72.550052][ T5813]  ? __pfx_neigh_add+0x10/0x10
[   72.550077][ T5813]  rtnetlink_rcv_msg+0x65a/0x6d0
[   72.550134][ T5813]  ? avc_has_perm_noaudit+0x1b1/0x200
[   72.550161][ T5813]  netlink_rcv_skb+0x123/0x220
[   72.550196][ T5813]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   72.550217][ T5813]  rtnetlink_rcv+0x1c/0x30
[   72.550233][ T5813]  netlink_unicast+0x5a1/0x670
[   72.550318][ T5813]  netlink_sendmsg+0x58b/0x6b0
[   72.550346][ T5813]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.550367][ T5813]  __sock_sendmsg+0x145/0x180
[   72.550449][ T5813]  __sys_sendto+0x268/0x330
[   72.550491][ T5813]  __x64_sys_sendto+0x76/0x90
[   72.550527][ T5813]  x64_sys_call+0x2eb6/0x2fb0
[   72.550626][ T5813]  do_syscall_64+0xd2/0x200
[   72.550647][ T5813]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.550676][ T5813]  ? clear_bhb_loop+0x40/0x90
[   72.550699][ T5813]  ? clear_bhb_loop+0x40/0x90
[   72.550716][ T5813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.550795][ T5813] RIP: 0033:0x7fc1edafe929
[   72.550878][ T5813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.550890][ T5813] RSP: 002b:00007fc1ec167038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   72.550905][ T5813] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafe929
[   72.550913][ T5813] RDX: 0000000000000090 RSI: 00002000000000c0 RDI: 0000000000000004
[   72.550922][ T5813] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   72.550930][ T5813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.551033][ T5813] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   72.551042][ T5813]  </TASK>
[   72.820295][ T5817] loop0: detected capacity change from 0 to 1024
[   72.878537][ T5824] loop3: detected capacity change from 0 to 164
[   72.891706][ T5827] loop5: detected capacity change from 0 to 128
[   72.913174][ T5811] loop4: detected capacity change from 0 to 736
[   72.919731][ T5811] iso9660: Unknown parameter 'c/�/�����ԅ9���(WD
[   72.919731][ T5811] '
[   73.202312][ T5845] Cannot find add_set index 0 as target
[   73.385028][ T5850] loop2: detected capacity change from 0 to 164
[   73.393299][ T5850] syz.2.875: attempt to access beyond end of device
[   73.393299][ T5850] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   73.415333][ T5850] syz.2.875: attempt to access beyond end of device
[   73.415333][ T5850] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   73.500973][ T5855] loop2: detected capacity change from 0 to 128
[   73.686223][ T5869] loop0: detected capacity change from 0 to 128
[   73.896951][ T5886] netlink: 'syz.0.886': attribute type 4 has an invalid length.
[   73.926066][   T29] kauditd_printk_skb: 1128 callbacks suppressed
[   73.926085][   T29] audit: type=1400 audit(1749890372.475:4397): avc:  denied  { mount } for  pid=5887 comm="syz.0.887" name="/" dev="configfs" ino=860 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   73.973732][ T5892] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   73.989394][ T5892] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.001188][ T5896] netlink: 4 bytes leftover after parsing attributes in process `syz.4.890'.
[   74.019550][ T5898] loop0: detected capacity change from 0 to 1024
[   74.056118][ T5903] loop4: detected capacity change from 0 to 128
[   74.070212][ T5905] loop3: detected capacity change from 0 to 1024
[   74.077084][ T5905] ext4: Bad value for 'debug_want_extra_isize'
[   74.139689][ T5905] loop3: detected capacity change from 0 to 2048
[   74.182646][ T5905] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5905 comm=syz.3.894
[   74.224975][ T5910] loop3: detected capacity change from 0 to 1024
[   74.245175][ T5910] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.265557][ T5910] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   74.304289][ T5915] loop4: detected capacity change from 0 to 128
[   74.333353][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.346933][ T5919] netlink: 'syz.0.898': attribute type 4 has an invalid length.
[   74.431881][ T5923] netlink: 'syz.0.900': attribute type 1 has an invalid length.
[   74.439620][ T5923] netlink: 224 bytes leftover after parsing attributes in process `syz.0.900'.
[   74.450519][ T5923] FAULT_INJECTION: forcing a failure.
[   74.450519][ T5923] name failslab, interval 1, probability 0, space 0, times 0
[   74.463224][ T5923] CPU: 1 UID: 0 PID: 5923 Comm: syz.0.900 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   74.463248][ T5923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.463259][ T5923] Call Trace:
[   74.463265][ T5923]  <TASK>
[   74.463272][ T5923]  __dump_stack+0x1d/0x30
[   74.463291][ T5923]  dump_stack_lvl+0xe8/0x140
[   74.463316][ T5923]  dump_stack+0x15/0x1b
[   74.463330][ T5923]  should_fail_ex+0x265/0x280
[   74.463365][ T5923]  should_failslab+0x8c/0xb0
[   74.463382][ T5923]  kmem_cache_alloc_node_noprof+0x57/0x320
[   74.463421][ T5923]  ? __alloc_skb+0x101/0x320
[   74.463508][ T5923]  __alloc_skb+0x101/0x320
[   74.463572][ T5923]  rtmsg_ifinfo_build_skb+0x5f/0x1b0
[   74.463596][ T5923]  ? mac802154_slave_close+0x18f/0x1f0
[   74.463691][ T5923]  rtmsg_ifinfo+0x6d/0x110
[   74.463715][ T5923]  dev_close_many+0x14d/0x240
[   74.463746][ T5923]  unregister_netdevice_many_notify+0x441/0x1690
[   74.463774][ T5923]  ? complete+0x1a/0x80
[   74.463813][ T5923]  ? flush_workqueue_prep_pwqs+0x299/0x2d0
[   74.463836][ T5923]  unregister_netdevice_queue+0x1f5/0x220
[   74.463857][ T5923]  ieee802154_remove_interfaces+0xe5/0x130
[   74.463885][ T5923]  ieee802154_unregister_hw+0x43/0x90
[   74.463940][ T5923]  hwsim_del+0x1bf/0x1e0
[   74.464029][ T5923]  hwsim_del_radio_nl+0x9e/0xc0
[   74.464092][ T5923]  genl_family_rcv_msg_doit+0x143/0x1b0
[   74.464164][ T5923]  genl_rcv_msg+0x422/0x460
[   74.464181][ T5923]  ? __pfx_hwsim_del_radio_nl+0x10/0x10
[   74.464225][ T5923]  netlink_rcv_skb+0x123/0x220
[   74.464237][ T5923]  ? __pfx_genl_rcv_msg+0x10/0x10
[   74.464259][ T5923]  genl_rcv+0x28/0x40
[   74.464274][ T5923]  netlink_unicast+0x5a1/0x670
[   74.464296][ T5923]  netlink_sendmsg+0x58b/0x6b0
[   74.464346][ T5923]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.464361][ T5923]  __sock_sendmsg+0x145/0x180
[   74.464379][ T5923]  ____sys_sendmsg+0x31e/0x4e0
[   74.464395][ T5923]  ___sys_sendmsg+0x17b/0x1d0
[   74.464542][ T5923]  __x64_sys_sendmsg+0xd4/0x160
[   74.464559][ T5923]  x64_sys_call+0x2999/0x2fb0
[   74.464573][ T5923]  do_syscall_64+0xd2/0x200
[   74.464650][ T5923]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.464667][ T5923]  ? clear_bhb_loop+0x40/0x90
[   74.464680][ T5923]  ? clear_bhb_loop+0x40/0x90
[   74.464694][ T5923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.464729][ T5923] RIP: 0033:0x7f91fceae929
[   74.464741][ T5923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.464753][ T5923] RSP: 002b:00007f91fb517038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.464767][ T5923] RAX: ffffffffffffffda RBX: 00007f91fd0d5fa0 RCX: 00007f91fceae929
[   74.464786][ T5923] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 000000000000000b
[   74.464792][ T5923] RBP: 00007f91fb517090 R08: 0000000000000000 R09: 0000000000000000
[   74.464799][ T5923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.464805][ T5923] R13: 0000000000000000 R14: 00007f91fd0d5fa0 R15: 00007ffd1206bea8
[   74.464832][ T5923]  </TASK>
[   74.786781][ T5926] loop0: detected capacity change from 0 to 512
[   74.799088][ T5926] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.900: bg 0: block 393: padding at end of block bitmap is not set
[   74.815984][   T29] audit: type=1400 audit(1749890373.365:4398): avc:  denied  { read write } for  pid=5931 comm="syz.4.902" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   74.839677][   T29] audit: type=1400 audit(1749890373.365:4399): avc:  denied  { open } for  pid=5931 comm="syz.4.902" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   74.863655][ T5926] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   74.876407][ T5926] EXT4-fs (loop0): 2 truncates cleaned up
[   74.882728][ T5926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.883068][ T5935] netlink: 4 bytes leftover after parsing attributes in process `syz.2.903'.
[   74.905722][   T29] audit: type=1400 audit(1749890373.455:4400): avc:  denied  { ioctl } for  pid=5931 comm="syz.4.902" path="/dev/virtual_nci" dev="devtmpfs" ino=132 ioctlcmd=0x0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   74.934227][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.964051][ T5946] loop4: detected capacity change from 0 to 1024
[   75.026811][ T5948] loop2: detected capacity change from 0 to 1024
[   75.054357][ T5948] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   75.066565][ T5929] netlink: 'syz.5.901': attribute type 13 has an invalid length.
[   75.074444][ T5948] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   75.095354][ T5929] gretap0: refused to change device tx_queue_len
[   75.101981][ T5929] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   75.180174][ T5948] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   75.258900][ T5948] EXT4-fs (loop2): orphan cleanup on readonly fs
[   75.290182][ T5954] loop0: detected capacity change from 0 to 128
[   75.302063][ T5948] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.905: Invalid inode table block 0 in block_group 0
[   75.331649][ T5959] loop3: detected capacity change from 0 to 1024
[   75.352493][ T5948] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.372809][ T5959] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.394937][ T5959] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   75.416257][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.436281][ T5964] netlink: 'syz.3.910': attribute type 4 has an invalid length.
[   75.444466][ T5948] EXT4-fs error (device loop2): ext4_quota_write:7322: inode #3: comm syz.2.905: mark_inode_dirty error
[   75.466005][ T5948] Quota error (device loop2): write_blk: dquota write failed
[   75.473534][ T5948] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   75.483660][ T5948] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.905: Failed to acquire dquot type 0
[   75.520734][ T5948] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.905: Invalid inode table block 0 in block_group 0
[   75.540023][ T5948] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.549733][ T5948] EXT4-fs error (device loop2): ext4_ext_truncate:4475: inode #15: comm syz.2.905: mark_inode_dirty error
[   75.561247][ T5948] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.905: Invalid inode table block 0 in block_group 0
[   75.581151][ T5948] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.600990][ T5948] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   75.626317][ T5948] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.905: Invalid inode table block 0 in block_group 0
[   75.653330][ T5948] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   75.664259][ T5948] EXT4-fs error (device loop2): ext4_truncate:4597: inode #15: comm syz.2.905: mark_inode_dirty error
[   75.687262][ T5948] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   75.719631][ T5948] EXT4-fs (loop2): 1 truncate cleaned up
[   75.727536][ T5948] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.742810][ T5967] loop3: detected capacity change from 0 to 164
[   75.762702][   T29] audit: type=1400 audit(1749890374.315:4401): avc:  denied  { mount } for  pid=5966 comm="syz.3.911" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   75.785414][ T5967] syz.3.911: attempt to access beyond end of device
[   75.785414][ T5967] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   75.802477][   T29] audit: type=1400 audit(1749890374.315:4402): avc:  denied  { execute } for  pid=5966 comm="syz.3.911" dev="tmpfs" ino=225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   75.823928][   T29] audit: type=1400 audit(1749890374.315:4403): avc:  denied  { execute_no_trans } for  pid=5966 comm="syz.3.911" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   75.888980][ T5979] netlink: 4 bytes leftover after parsing attributes in process `syz.4.915'.
[   75.908589][ T5967] syz.3.911: attempt to access beyond end of device
[   75.908589][ T5967] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   75.921086][ T5978] macvlan2: entered promiscuous mode
[   75.927479][ T5978] bridge0: entered promiscuous mode
[   75.955884][ T5978] bridge0: port 3(macvlan2) entered blocking state
[   75.962538][ T5978] bridge0: port 3(macvlan2) entered disabled state
[   76.037064][ T5978] macvlan2: entered allmulticast mode
[   76.042630][ T5978] bridge0: entered allmulticast mode
[   76.091429][ T5985] netlink: 24 bytes leftover after parsing attributes in process `syz.0.918'.
[   76.109477][   T29] audit: type=1326 audit(1749890374.655:4404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5986 comm="syz.4.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd3f7ca58e7 code=0x7ffc0000
[   76.133998][ T5978] macvlan2: left allmulticast mode
[   76.139227][ T5978] bridge0: left allmulticast mode
[   76.157221][ T5990] loop3: detected capacity change from 0 to 1024
[   76.164066][ T5978] bridge0: left promiscuous mode
[   76.173334][ T5990] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.182306][ T5990] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   76.196576][ T5987] loop4: detected capacity change from 0 to 256
[   76.209990][ T5990] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[   76.240468][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.250103][ T5987] FAULT_INJECTION: forcing a failure.
[   76.250103][ T5987] name failslab, interval 1, probability 0, space 0, times 0
[   76.262825][ T5987] CPU: 1 UID: 0 PID: 5987 Comm: syz.4.919 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   76.262913][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.262924][ T5987] Call Trace:
[   76.262931][ T5987]  <TASK>
[   76.262939][ T5987]  __dump_stack+0x1d/0x30
[   76.262960][ T5987]  dump_stack_lvl+0xe8/0x140
[   76.262979][ T5987]  dump_stack+0x15/0x1b
[   76.263022][ T5987]  should_fail_ex+0x265/0x280
[   76.263057][ T5987]  ? audit_log_d_path+0x8d/0x150
[   76.263128][ T5987]  should_failslab+0x8c/0xb0
[   76.263148][ T5987]  __kmalloc_cache_noprof+0x4c/0x320
[   76.263217][ T5987]  audit_log_d_path+0x8d/0x150
[   76.263251][ T5987]  audit_log_d_path_exe+0x42/0x70
[   76.263319][ T5987]  audit_log_task+0x1e9/0x250
[   76.263351][ T5987]  audit_seccomp+0x61/0x100
[   76.263442][ T5987]  ? __seccomp_filter+0x68c/0x10d0
[   76.263464][ T5987]  __seccomp_filter+0x69d/0x10d0
[   76.263490][ T5987]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   76.263547][ T5987]  ? vfs_write+0x75e/0x8e0
[   76.263569][ T5987]  ? __rcu_read_unlock+0x4f/0x70
[   76.263590][ T5987]  ? __fget_files+0x184/0x1c0
[   76.263616][ T5987]  __secure_computing+0x82/0x150
[   76.263641][ T5987]  syscall_trace_enter+0xcf/0x1e0
[   76.263758][ T5987]  do_syscall_64+0xac/0x200
[   76.263780][ T5987]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.263816][ T5987]  ? clear_bhb_loop+0x40/0x90
[   76.263840][ T5987]  ? clear_bhb_loop+0x40/0x90
[   76.263864][ T5987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.263884][ T5987] RIP: 0033:0x7fd3f7cae929
[   76.263936][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.264024][ T5987] RSP: 002b:00007fd3f6317038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   76.264047][ T5987] RAX: ffffffffffffffda RBX: 00007fd3f7ed5fa0 RCX: 00007fd3f7cae929
[   76.264062][ T5987] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000007
[   76.264074][ T5987] RBP: 00007fd3f6317090 R08: 0000000000000000 R09: 0000000000000000
[   76.264102][ T5987] R10: 00000000001001f0 R11: 0000000000000246 R12: 0000000000000001
[   76.264114][ T5987] R13: 0000000000000000 R14: 00007fd3f7ed5fa0 R15: 00007fff00410318
[   76.264129][ T5987]  </TASK>
[   76.267317][ T5994] loop0: detected capacity change from 0 to 1024
[   76.319177][ T5987] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   76.324570][ T5990] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.920: lblock 2 mapped to illegal pblock 2 (length 1)
[   76.405882][ T5994] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.415713][ T5990] EXT4-fs (loop3): Remounting filesystem read-only
[   76.464193][ T5998] syz.5.923 uses obsolete (PF_INET,SOCK_PACKET)
[   76.500509][ T5994] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   76.508252][ T5990] EXT4-fs (loop3): 1 orphan inode deleted
[   76.508683][ T5990] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.574554][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.585040][ T6008] 9pnet_fd: Insufficient options for proto=fd
[   76.605967][ T6003] loop5: detected capacity change from 0 to 512
[   76.615827][ T6003] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   76.631707][ T6011] netlink: 'syz.4.926': attribute type 13 has an invalid length.
[   76.640720][ T5990] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.656181][ T6013] capability: warning: `syz.0.925' uses 32-bit capabilities (legacy support in use)
[   76.677994][ T6003] EXT4-fs (loop5): 1 truncate cleaned up
[   76.694008][ T6003] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.711204][ T5996] netlink: 96 bytes leftover after parsing attributes in process `+}[@'.
[   76.792959][ T3555] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.833523][ T5990] loop3: detected capacity change from 0 to 512
[   76.891680][ T5990] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.920: Failed to acquire dquot type 1
[   76.915201][ T5990] EXT4-fs (loop3): 1 truncate cleaned up
[   76.929491][ T6039] netlink: 24 bytes leftover after parsing attributes in process `syz.2.932'.
[   76.956855][ T5990] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.976410][ T5990] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.041654][ T5990] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.246475][ T6054] loop5: detected capacity change from 0 to 1024
[   77.254925][ T6054] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   77.266328][ T6045] netlink: 16 bytes leftover after parsing attributes in process `syz.0.934'.
[   77.276542][ T6055] netlink: 16 bytes leftover after parsing attributes in process `syz.0.934'.
[   77.285793][ T6054] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.305331][ T6054] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   77.326674][ T6054] EXT4-fs (loop5): orphan cleanup on readonly fs
[   77.338061][ T6054] EXT4-fs error (device loop5): __ext4_get_inode_loc:4792: comm syz.5.937: Invalid inode table block 0 in block_group 0
[   77.357502][ T6054] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   77.367163][ T6054] EXT4-fs error (device loop5): ext4_quota_write:7322: inode #3: comm syz.5.937: mark_inode_dirty error
[   77.379419][ T6054] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.937: Failed to acquire dquot type 0
[   77.391793][ T6054] EXT4-fs error (device loop5): __ext4_get_inode_loc:4792: comm syz.5.937: Invalid inode table block 0 in block_group 0
[   77.405149][ T6054] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   77.416159][ T6054] EXT4-fs error (device loop5): ext4_ext_truncate:4475: inode #15: comm syz.5.937: mark_inode_dirty error
[   77.427809][ T6054] EXT4-fs error (device loop5): __ext4_get_inode_loc:4792: comm syz.5.937: Invalid inode table block 0 in block_group 0
[   77.441950][ T6054] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   77.451724][ T6054] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   77.461704][ T6054] EXT4-fs error (device loop5): __ext4_get_inode_loc:4792: comm syz.5.937: Invalid inode table block 0 in block_group 0
[   77.474618][ T6054] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   77.485355][ T6054] EXT4-fs error (device loop5): ext4_truncate:4597: inode #15: comm syz.5.937: mark_inode_dirty error
[   77.496667][ T6054] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   77.506885][ T6054] EXT4-fs (loop5): 1 truncate cleaned up
[   77.513174][ T6054] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.591584][ T6058] macvlan2: entered promiscuous mode
[   77.597024][ T6058] bridge0: entered promiscuous mode
[   77.603008][ T6058] bridge0: port 3(macvlan2) entered blocking state
[   77.609675][ T6058] bridge0: port 3(macvlan2) entered disabled state
[   77.616607][ T6058] macvlan2: entered allmulticast mode
[   77.622085][ T6058] bridge0: entered allmulticast mode
[   77.629125][ T6058] macvlan2: left allmulticast mode
[   77.634321][ T6058] bridge0: left allmulticast mode
[   77.640225][ T6058] bridge0: left promiscuous mode
[   77.765521][ T6062] netlink: 'syz.4.939': attribute type 13 has an invalid length.
[   77.809282][ T6064] netlink: 'syz.4.940': attribute type 4 has an invalid length.
[   77.856151][ T6066] loop4: detected capacity change from 0 to 2048
[   77.867385][ T6066] EXT4-fs: Ignoring removed i_version option
[   77.876277][ T6068] FAULT_INJECTION: forcing a failure.
[   77.876277][ T6068] name failslab, interval 1, probability 0, space 0, times 0
[   77.889016][ T6068] CPU: 0 UID: 0 PID: 6068 Comm: syz.2.942 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   77.889048][ T6068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   77.889062][ T6068] Call Trace:
[   77.889070][ T6068]  <TASK>
[   77.889080][ T6068]  __dump_stack+0x1d/0x30
[   77.889155][ T6068]  dump_stack_lvl+0xe8/0x140
[   77.889178][ T6068]  dump_stack+0x15/0x1b
[   77.889195][ T6068]  should_fail_ex+0x265/0x280
[   77.889230][ T6068]  should_failslab+0x8c/0xb0
[   77.889257][ T6068]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   77.889350][ T6068]  ? sidtab_sid2str_get+0xa0/0x130
[   77.889375][ T6068]  kmemdup_noprof+0x2b/0x70
[   77.889448][ T6068]  sidtab_sid2str_get+0xa0/0x130
[   77.889478][ T6068]  security_sid_to_context_core+0x1eb/0x2e0
[   77.889517][ T6068]  security_sid_to_context+0x27/0x40
[   77.889617][ T6068]  selinux_lsmprop_to_secctx+0x67/0xf0
[   77.889641][ T6068]  security_lsmprop_to_secctx+0x43/0x80
[   77.889674][ T6068]  audit_log_task_context+0x77/0x190
[   77.889713][ T6068]  audit_log_task+0xf4/0x250
[   77.889740][ T6068]  audit_seccomp+0x61/0x100
[   77.889767][ T6068]  ? __seccomp_filter+0x68c/0x10d0
[   77.889788][ T6068]  __seccomp_filter+0x69d/0x10d0
[   77.889888][ T6068]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   77.889914][ T6068]  ? vfs_write+0x75e/0x8e0
[   77.889938][ T6068]  __secure_computing+0x82/0x150
[   77.889959][ T6068]  syscall_trace_enter+0xcf/0x1e0
[   77.889983][ T6068]  do_syscall_64+0xac/0x200
[   77.890020][ T6068]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.890046][ T6068]  ? clear_bhb_loop+0x40/0x90
[   77.890065][ T6068]  ? clear_bhb_loop+0x40/0x90
[   77.890160][ T6068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.890181][ T6068] RIP: 0033:0x7fe0ef61e929
[   77.890226][ T6068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.890246][ T6068] RSP: 002b:00007fe0edc87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   77.890274][ T6068] RAX: ffffffffffffffda RBX: 00007fe0ef845fa0 RCX: 00007fe0ef61e929
[   77.890286][ T6068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000001c40
[   77.890301][ T6068] RBP: 00007fe0edc87090 R08: 0000000000000000 R09: 0000000000000000
[   77.890355][ T6068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.890369][ T6068] R13: 0000000000000000 R14: 00007fe0ef845fa0 R15: 00007ffddd341cb8
[   77.890388][ T6068]  </TASK>
[   78.190393][ T6075] netlink: 24 bytes leftover after parsing attributes in process `syz.2.944'.
[   78.225755][ T6066] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[   78.321408][ T6084] loop4: detected capacity change from 0 to 1024
[   78.344545][ T3555] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.374611][ T6084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.413555][ T6084] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   78.472119][ T6073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.488991][ T6073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.577326][ T6073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.606710][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.814125][ T6073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.829268][ T6101] netlink: 'syz.4.951': attribute type 13 has an invalid length.
[   78.832168][ T6073] netlink: 'syz.3.945': attribute type 1 has an invalid length.
[   78.844768][ T6073] netlink: 199824 bytes leftover after parsing attributes in process `syz.3.945'.
[   78.862939][ T6073] loop3: detected capacity change from 0 to 1024
[   78.869839][ T6073] EXT4-fs: Ignoring removed bh option
[   78.875522][ T6073] EXT4-fs: inline encryption not supported
[   78.890354][ T6073] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   78.902907][ T6073] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   78.913413][ T6073] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.945: lblock 2 mapped to illegal pblock 2 (length 1)
[   78.928268][ T6073] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.945: lblock 0 mapped to illegal pblock 48 (length 1)
[   78.944749][ T6073] __quota_error: 3296 callbacks suppressed
[   78.944767][ T6073] Quota error (device loop3): v2_write_file_info: Can't write info structure
[   78.959520][ T6073] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.945: Failed to acquire dquot type 0
[   78.963523][ T6108] loop4: detected capacity change from 0 to 256
[   78.980008][ T6073] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   78.989797][ T6108] msdos: Unknown parameter 'dttq'
[   78.990864][ T6073] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.945: mark_inode_dirty error
[   79.012113][ T6073] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   79.022496][ T6073] EXT4-fs (loop3): 1 orphan inode deleted
[   79.031132][ T6073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.050427][  T311] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[   79.068007][ T6073] netlink: 56 bytes leftover after parsing attributes in process `syz.3.945'.
[   79.079961][ T6110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.956'.
[   79.090150][  T311] Quota error (device loop3): remove_tree: Can't read quota data block 1
[   79.098810][  T311] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0
[   79.121830][ T6110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.956'.
[   79.141052][ T6110] FAULT_INJECTION: forcing a failure.
[   79.141052][ T6110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.154310][ T6110] CPU: 1 UID: 0 PID: 6110 Comm: syz.4.956 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   79.154342][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.154355][ T6110] Call Trace:
[   79.154362][ T6110]  <TASK>
[   79.154369][ T6110]  __dump_stack+0x1d/0x30
[   79.154462][ T6110]  dump_stack_lvl+0xe8/0x140
[   79.154483][ T6110]  dump_stack+0x15/0x1b
[   79.154501][ T6110]  should_fail_ex+0x265/0x280
[   79.154537][ T6110]  should_fail+0xb/0x20
[   79.154645][ T6110]  should_fail_usercopy+0x1a/0x20
[   79.154668][ T6110]  fpu__restore_sig+0x12d/0xaa0
[   79.154700][ T6110]  ? probe_sched_wakeup+0x85/0xa0
[   79.154765][ T6110]  ? should_fail_ex+0xdb/0x280
[   79.154807][ T6110]  __ia32_sys_rt_sigreturn+0x29f/0x350
[   79.154890][ T6110]  x64_sys_call+0x2e8a/0x2fb0
[   79.154910][ T6110]  do_syscall_64+0xd2/0x200
[   79.154932][ T6110]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.154961][ T6110]  ? clear_bhb_loop+0x40/0x90
[   79.155030][ T6110]  ? clear_bhb_loop+0x40/0x90
[   79.155050][ T6110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.155071][ T6110] RIP: 0033:0x7fd3f7cae929
[   79.155088][ T6110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.155108][ T6110] RSP: 002b:00007fd3f6317038 EFLAGS: 00000246
[   79.155140][ T6110] RAX: 0000000000000064 RBX: 00007fd3f7ed5fa0 RCX: 00007fd3f7cae929
[   79.155155][ T6110] RDX: 0000000000000000 RSI: 0000200000000d80 RDI: 0000000000000003
[   79.155170][ T6110] RBP: 00007fd3f6317090 R08: 0000000000000000 R09: 0000000000000000
[   79.155183][ T6110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.155196][ T6110] R13: 0000000000000000 R14: 00007fd3f7ed5fa0 R15: 00007fff00410318
[   79.155215][ T6110]  </TASK>
[   79.158098][ T6115] netlink: 4 bytes leftover after parsing attributes in process `syz.5.958'.
[   79.210140][ T6117] loop0: detected capacity change from 0 to 1024
[   79.353867][ T6117] ext4: Bad value for 'debug_want_extra_isize'
[   79.372956][ T6120] netlink: 'syz.4.960': attribute type 4 has an invalid length.
[   79.414064][ T6124] loop4: detected capacity change from 0 to 128
[   79.427403][ T6117] loop0: detected capacity change from 0 to 2048
[   79.492426][ T6117] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6117 comm=syz.0.959
[   79.548898][ T6128] loop0: detected capacity change from 0 to 8192
[   79.595148][ T6134] netlink: 'syz.0.965': attribute type 13 has an invalid length.
[   79.608586][ T6136] loop4: detected capacity change from 0 to 256
[   79.615450][ T6136] msdos: Unknown parameter 'dttq'
[   79.661450][ T6142] loop0: detected capacity change from 0 to 512
[   79.673664][   T29] audit: type=1326 audit(1749890378.225:7693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.697539][   T29] audit: type=1326 audit(1749890378.225:7694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.707467][ T6144] netlink: 4 bytes leftover after parsing attributes in process `syz.4.970'.
[   79.721122][   T29] audit: type=1326 audit(1749890378.225:7695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.732498][ T6142] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.753317][   T29] audit: type=1326 audit(1749890378.225:7696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.753351][   T29] audit: type=1326 audit(1749890378.225:7697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.767295][ T6142] ext4 filesystem being mounted at /222/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.789227][   T29] audit: type=1326 audit(1749890378.225:7698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.823737][ T6142] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.969: corrupted inode contents
[   79.846187][   T29] audit: type=1326 audit(1749890378.245:7699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.859201][ T6142] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #2: comm syz.0.969: mark_inode_dirty error
[   79.881251][   T29] audit: type=1326 audit(1749890378.245:7700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6143 comm="syz.4.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3f7cae929 code=0x7ffc0000
[   79.920960][ T6142] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.969: corrupted inode contents
[   79.934072][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.936705][ T6142] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.969: mark_inode_dirty error
[   79.955427][ T3323] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   79.971405][ T3323] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   79.984403][ T3323] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   80.013201][ T6152] netlink: 24 bytes leftover after parsing attributes in process `syz.2.973'.
[   80.016599][ T6142] EXT4-fs warning (device loop0): ext4_empty_dir:3086: inode #18: comm syz.0.969: directory missing '.'
[   80.051627][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.108437][ T6164] FAULT_INJECTION: forcing a failure.
[   80.108437][ T6164] name failslab, interval 1, probability 0, space 0, times 0
[   80.121250][ T6164] CPU: 0 UID: 0 PID: 6164 Comm: syz.4.977 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   80.121292][ T6164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.121352][ T6164] Call Trace:
[   80.121359][ T6164]  <TASK>
[   80.121367][ T6164]  __dump_stack+0x1d/0x30
[   80.121388][ T6164]  dump_stack_lvl+0xe8/0x140
[   80.121408][ T6164]  dump_stack+0x15/0x1b
[   80.121426][ T6164]  should_fail_ex+0x265/0x280
[   80.121461][ T6164]  should_failslab+0x8c/0xb0
[   80.121548][ T6164]  __kmalloc_noprof+0xa5/0x3e0
[   80.121577][ T6164]  ? genl_family_rcv_msg_attrs_parse+0x75/0x190
[   80.121612][ T6164]  genl_family_rcv_msg_attrs_parse+0x75/0x190
[   80.121637][ T6164]  ? selinux_capable+0x1f9/0x270
[   80.121732][ T6164]  genl_family_rcv_msg_doit+0x48/0x1b0
[   80.121758][ T6164]  ? security_capable+0x83/0x90
[   80.121824][ T6164]  ? ns_capable+0x7d/0xb0
[   80.121842][ T6164]  genl_rcv_msg+0x422/0x460
[   80.121866][ T6164]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   80.121898][ T6164]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[   80.121918][ T6164]  ? __pfx_nl80211_post_doit+0x10/0x10
[   80.122014][ T6164]  netlink_rcv_skb+0x123/0x220
[   80.122032][ T6164]  ? __pfx_genl_rcv_msg+0x10/0x10
[   80.122060][ T6164]  genl_rcv+0x28/0x40
[   80.122137][ T6164]  netlink_unicast+0x5a1/0x670
[   80.122168][ T6164]  netlink_sendmsg+0x58b/0x6b0
[   80.122203][ T6164]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.122227][ T6164]  __sock_sendmsg+0x145/0x180
[   80.122260][ T6164]  ____sys_sendmsg+0x31e/0x4e0
[   80.122300][ T6164]  ___sys_sendmsg+0x17b/0x1d0
[   80.122338][ T6164]  __x64_sys_sendmsg+0xd4/0x160
[   80.122364][ T6164]  x64_sys_call+0x2999/0x2fb0
[   80.122387][ T6164]  do_syscall_64+0xd2/0x200
[   80.122410][ T6164]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.122508][ T6164]  ? clear_bhb_loop+0x40/0x90
[   80.122533][ T6164]  ? clear_bhb_loop+0x40/0x90
[   80.122557][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.122582][ T6164] RIP: 0033:0x7fd3f7cae929
[   80.122597][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.122676][ T6164] RSP: 002b:00007fd3f6317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.122698][ T6164] RAX: ffffffffffffffda RBX: 00007fd3f7ed5fa0 RCX: 00007fd3f7cae929
[   80.122713][ T6164] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000005
[   80.122726][ T6164] RBP: 00007fd3f6317090 R08: 0000000000000000 R09: 0000000000000000
[   80.122740][ T6164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.122802][ T6164] R13: 0000000000000000 R14: 00007fd3f7ed5fa0 R15: 00007fff00410318
[   80.122821][ T6164]  </TASK>
[   80.124950][ T6160] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[   80.214483][ T6172] netlink: 'syz.4.979': attribute type 13 has an invalid length.
[   80.267744][ T6171] tipc: Started in network mode
[   80.413967][ T6171] tipc: Node identity 76d81772f346, cluster identity 4711
[   80.421112][ T6171] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   80.432019][ T6169] tipc: Resetting bearer <eth:syzkaller0>
[   80.435908][ T6174] loop9: detected capacity change from 0 to 7
[   80.467404][ T6174] Buffer I/O error on dev loop9, logical block 0, async page read
[   80.476000][ T6169] tipc: Disabling bearer <eth:syzkaller0>
[   80.476459][ T6174] Buffer I/O error on dev loop9, logical block 0, async page read
[   80.489902][ T6174]  loop9: unable to read partition table
[   80.495692][ T6174] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[   80.495692][ T6174] 
) failed (rc=-5)
[   80.534762][ T6181] FAULT_INJECTION: forcing a failure.
[   80.534762][ T6181] name failslab, interval 1, probability 0, space 0, times 0
[   80.547567][ T6181] CPU: 0 UID: 0 PID: 6181 Comm: syz.4.984 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   80.547661][ T6181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.547674][ T6181] Call Trace:
[   80.547682][ T6181]  <TASK>
[   80.547690][ T6181]  __dump_stack+0x1d/0x30
[   80.547715][ T6181]  dump_stack_lvl+0xe8/0x140
[   80.547737][ T6181]  dump_stack+0x15/0x1b
[   80.547760][ T6181]  should_fail_ex+0x265/0x280
[   80.547798][ T6181]  should_failslab+0x8c/0xb0
[   80.547864][ T6181]  kmem_cache_alloc_node_noprof+0x57/0x320
[   80.547979][ T6181]  ? __alloc_skb+0x101/0x320
[   80.548074][ T6181]  __alloc_skb+0x101/0x320
[   80.548126][ T6181]  netlink_dump+0x148/0x7f0
[   80.548147][ T6181]  ? xa_load+0xb1/0xe0
[   80.548174][ T6181]  __netlink_dump_start+0x43e/0x520
[   80.548198][ T6181]  unix_diag_handler_dump+0xdb/0x4f0
[   80.548295][ T6181]  ? avc_has_perm+0xd3/0x150
[   80.548333][ T6181]  ? __pfx_unix_diag_dump+0x10/0x10
[   80.548358][ T6181]  ? __pfx_unix_diag_handler_dump+0x10/0x10
[   80.548426][ T6181]  sock_diag_rcv_msg+0x285/0x2c0
[   80.548450][ T6181]  netlink_rcv_skb+0x123/0x220
[   80.548472][ T6181]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   80.548499][ T6181]  sock_diag_rcv+0x1c/0x30
[   80.548524][ T6181]  netlink_unicast+0x5a1/0x670
[   80.548561][ T6181]  netlink_sendmsg+0x58b/0x6b0
[   80.548628][ T6181]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.548653][ T6181]  __sock_sendmsg+0x145/0x180
[   80.548698][ T6181]  sock_write_iter+0x165/0x1b0
[   80.548729][ T6181]  ? __pfx_sock_write_iter+0x10/0x10
[   80.548755][ T6181]  vfs_write+0x49d/0x8e0
[   80.548849][ T6181]  ksys_write+0xda/0x1a0
[   80.548871][ T6181]  __x64_sys_write+0x40/0x50
[   80.548935][ T6181]  x64_sys_call+0x2cdd/0x2fb0
[   80.548959][ T6181]  do_syscall_64+0xd2/0x200
[   80.548982][ T6181]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.549010][ T6181]  ? clear_bhb_loop+0x40/0x90
[   80.549074][ T6181]  ? clear_bhb_loop+0x40/0x90
[   80.549098][ T6181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.549121][ T6181] RIP: 0033:0x7fd3f7cae929
[   80.549138][ T6181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.549158][ T6181] RSP: 002b:00007fd3f6317038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   80.549180][ T6181] RAX: ffffffffffffffda RBX: 00007fd3f7ed5fa0 RCX: 00007fd3f7cae929
[   80.549240][ T6181] RDX: 0000000000000029 RSI: 00002000000002c0 RDI: 0000000000000006
[   80.549255][ T6181] RBP: 00007fd3f6317090 R08: 0000000000000000 R09: 0000000000000000
[   80.549269][ T6181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.549283][ T6181] R13: 0000000000000000 R14: 00007fd3f7ed5fa0 R15: 00007fff00410318
[   80.549371][ T6181]  </TASK>
[   80.829088][ T6185] FAULT_INJECTION: forcing a failure.
[   80.829088][ T6185] name failslab, interval 1, probability 0, space 0, times 0
[   80.829169][ T6185] CPU: 1 UID: 0 PID: 6185 Comm: syz.2.985 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   80.829195][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.829287][ T6185] Call Trace:
[   80.829293][ T6185]  <TASK>
[   80.829299][ T6185]  __dump_stack+0x1d/0x30
[   80.829319][ T6185]  dump_stack_lvl+0xe8/0x140
[   80.829382][ T6185]  dump_stack+0x15/0x1b
[   80.829401][ T6185]  should_fail_ex+0x265/0x280
[   80.829431][ T6185]  should_failslab+0x8c/0xb0
[   80.829451][ T6185]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   80.829505][ T6185]  ? sidtab_sid2str_get+0xa0/0x130
[   80.829540][ T6185]  kmemdup_noprof+0x2b/0x70
[   80.829585][ T6185]  sidtab_sid2str_get+0xa0/0x130
[   80.829629][ T6185]  security_sid_to_context_core+0x1eb/0x2e0
[   80.829653][ T6185]  security_sid_to_context+0x27/0x40
[   80.829673][ T6185]  selinux_lsmprop_to_secctx+0x67/0xf0
[   80.829696][ T6185]  security_lsmprop_to_secctx+0x43/0x80
[   80.829781][ T6185]  audit_log_task_context+0x77/0x190
[   80.829911][ T6185]  audit_log_task+0xf4/0x250
[   80.829950][ T6185]  audit_seccomp+0x61/0x100
[   80.829973][ T6185]  ? __seccomp_filter+0x68c/0x10d0
[   80.830005][ T6185]  __seccomp_filter+0x69d/0x10d0
[   80.830026][ T6185]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.830055][ T6185]  ? vfs_write+0x75e/0x8e0
[   80.830084][ T6185]  __secure_computing+0x82/0x150
[   80.830104][ T6185]  syscall_trace_enter+0xcf/0x1e0
[   80.830179][ T6185]  do_syscall_64+0xac/0x200
[   80.830198][ T6185]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.830220][ T6185]  ? clear_bhb_loop+0x40/0x90
[   80.830238][ T6185]  ? clear_bhb_loop+0x40/0x90
[   80.830293][ T6185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.830312][ T6185] RIP: 0033:0x7fe0ef61e929
[   80.830326][ T6185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.830409][ T6185] RSP: 002b:00007fe0edc87038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   80.830428][ T6185] RAX: ffffffffffffffda RBX: 00007fe0ef845fa0 RCX: 00007fe0ef61e929
[   80.830439][ T6185] RDX: 0000000000000015 RSI: 0000000000600003 RDI: 0000200000000000
[   80.830450][ T6185] RBP: 00007fe0edc87090 R08: 0000000000000000 R09: 0000000000000000
[   80.830461][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.830472][ T6185] R13: 0000000000000000 R14: 00007fe0ef845fa0 R15: 00007ffddd341cb8
[   80.830488][ T6185]  </TASK>
[   80.982979][ T6203] loop3: detected capacity change from 0 to 1024
[   81.170275][ T6205] netlink: 'syz.4.994': attribute type 12 has an invalid length.
[   81.180581][ T6207] geneve0: entered allmulticast mode
[   81.189087][ T6205] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   81.202685][ T6205] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   81.212066][ T6203] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.236217][ T6205] wg2: entered promiscuous mode
[   81.241240][ T6205] wg2: entered allmulticast mode
[   81.266735][ T6203] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   81.300781][ T6220] loop5: detected capacity change from 0 to 1024
[   81.323543][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.369129][ T6231] loop0: detected capacity change from 0 to 1024
[   81.375900][ T6231] EXT4-fs: Ignoring removed bh option
[   81.381482][ T6231] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.441355][ T6231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.661428][ T6251] macvlan2: entered promiscuous mode
[   81.667018][ T6251] bridge0: entered promiscuous mode
[   81.672479][ T6255] loop4: detected capacity change from 0 to 1024
[   81.679962][ T6251] bridge0: port 3(macvlan2) entered blocking state
[   81.686697][ T6251] bridge0: port 3(macvlan2) entered disabled state
[   81.693974][ T6251] macvlan2: entered allmulticast mode
[   81.699403][ T6251] bridge0: entered allmulticast mode
[   81.704865][ T6255] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   81.716016][ T6255] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   81.726915][ T6255] JBD2: no valid journal superblock found
[   81.726942][ T6251] macvlan2: left allmulticast mode
[   81.732686][ T6255] EXT4-fs (loop4): Could not load journal inode
[   81.744199][ T6251] bridge0: left allmulticast mode
[   81.749696][ T6257] netlink: 'syz.2.1010': attribute type 4 has an invalid length.
[   81.758566][ T6251] bridge0: left promiscuous mode
[   81.838246][ T6266] FAULT_INJECTION: forcing a failure.
[   81.838246][ T6266] name failslab, interval 1, probability 0, space 0, times 0
[   81.851119][ T6266] CPU: 0 UID: 0 PID: 6266 Comm: syz.3.1013 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   81.851148][ T6266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   81.851167][ T6266] Call Trace:
[   81.851251][ T6266]  <TASK>
[   81.851262][ T6266]  __dump_stack+0x1d/0x30
[   81.851287][ T6266]  dump_stack_lvl+0xe8/0x140
[   81.851306][ T6266]  dump_stack+0x15/0x1b
[   81.851321][ T6266]  should_fail_ex+0x265/0x280
[   81.851381][ T6266]  should_failslab+0x8c/0xb0
[   81.851407][ T6266]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   81.851435][ T6266]  ? proc_alloc_inode+0x34/0x90
[   81.851459][ T6266]  ? __pfx_proc_alloc_inode+0x10/0x10
[   81.851492][ T6266]  proc_alloc_inode+0x34/0x90
[   81.851516][ T6266]  alloc_inode+0x3d/0x170
[   81.851534][ T6266]  new_inode+0x1d/0xe0
[   81.851553][ T6266]  proc_pid_make_inode+0x1f/0xd0
[   81.851586][ T6266]  proc_map_files_instantiate+0x81/0x130
[   81.851676][ T6266]  proc_fill_cache+0x1c1/0x240
[   81.851700][ T6266]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[   81.851730][ T6266]  proc_map_files_readdir+0x500/0x680
[   81.851841][ T6266]  iterate_dir+0x114/0x330
[   81.851955][ T6266]  ? mutex_lock+0xd/0x30
[   81.851991][ T6266]  __se_sys_getdents+0x88/0x1b0
[   81.852031][ T6266]  ? __pfx_filldir+0x10/0x10
[   81.852104][ T6266]  __x64_sys_getdents+0x43/0x50
[   81.852136][ T6266]  x64_sys_call+0x292b/0x2fb0
[   81.852160][ T6266]  do_syscall_64+0xd2/0x200
[   81.852187][ T6266]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   81.852223][ T6266]  ? clear_bhb_loop+0x40/0x90
[   81.852246][ T6266]  ? clear_bhb_loop+0x40/0x90
[   81.852272][ T6266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.852297][ T6266] RIP: 0033:0x7f59bff5e929
[   81.852316][ T6266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.852404][ T6266] RSP: 002b:00007f59be5c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[   81.852483][ T6266] RAX: ffffffffffffffda RBX: 00007f59c0185fa0 RCX: 00007f59bff5e929
[   81.852497][ T6266] RDX: 000000000000100a RSI: 0000200000000dc0 RDI: 0000000000000006
[   81.852509][ T6266] RBP: 00007f59be5c7090 R08: 0000000000000000 R09: 0000000000000000
[   81.852520][ T6266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   81.852532][ T6266] R13: 0000000000000000 R14: 00007f59c0185fa0 R15: 00007fff5e2b3488
[   81.852615][ T6266]  </TASK>
[   82.128624][ T6271] FAULT_INJECTION: forcing a failure.
[   82.128624][ T6271] name failslab, interval 1, probability 0, space 0, times 0
[   82.141388][ T6271] CPU: 1 UID: 0 PID: 6271 Comm: syz.3.1015 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   82.141449][ T6271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.141462][ T6271] Call Trace:
[   82.141470][ T6271]  <TASK>
[   82.141479][ T6271]  __dump_stack+0x1d/0x30
[   82.141504][ T6271]  dump_stack_lvl+0xe8/0x140
[   82.141525][ T6271]  dump_stack+0x15/0x1b
[   82.141544][ T6271]  should_fail_ex+0x265/0x280
[   82.141581][ T6271]  should_failslab+0x8c/0xb0
[   82.141613][ T6271]  __kmalloc_noprof+0xa5/0x3e0
[   82.141640][ T6271]  ? trace_probe_init+0x5c/0x280
[   82.141666][ T6271]  trace_probe_init+0x5c/0x280
[   82.141717][ T6271]  alloc_trace_uprobe+0x8b/0x1e0
[   82.141744][ T6271]  create_local_trace_uprobe+0xb5/0x2c0
[   82.141772][ T6271]  perf_uprobe_init+0xc0/0x150
[   82.141804][ T6271]  perf_uprobe_event_init+0xea/0x150
[   82.141877][ T6271]  perf_try_init_event+0xd6/0x540
[   82.141925][ T6271]  ? perf_event_alloc+0xb1c/0x1680
[   82.141955][ T6271]  perf_event_alloc+0xb27/0x1680
[   82.142063][ T6271]  __se_sys_perf_event_open+0x615/0x11c0
[   82.142093][ T6271]  ? __rcu_read_unlock+0x4f/0x70
[   82.142123][ T6271]  __x64_sys_perf_event_open+0x67/0x80
[   82.142185][ T6271]  x64_sys_call+0x27ec/0x2fb0
[   82.142208][ T6271]  do_syscall_64+0xd2/0x200
[   82.142286][ T6271]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.142314][ T6271]  ? clear_bhb_loop+0x40/0x90
[   82.142337][ T6271]  ? clear_bhb_loop+0x40/0x90
[   82.142380][ T6271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.142405][ T6271] RIP: 0033:0x7f59bff5e929
[   82.142424][ T6271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.142457][ T6271] RSP: 002b:00007f59be5c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   82.142479][ T6271] RAX: ffffffffffffffda RBX: 00007f59c0185fa0 RCX: 00007f59bff5e929
[   82.142494][ T6271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[   82.142559][ T6271] RBP: 00007f59be5c7090 R08: 0000000000000000 R09: 0000000000000000
[   82.142573][ T6271] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   82.142588][ T6271] R13: 0000000000000000 R14: 00007f59c0185fa0 R15: 00007fff5e2b3488
[   82.142614][ T6271]  </TASK>
[   82.142637][ T6271] trace_uprobe: Failed to allocate trace_uprobe.(-12)
[   82.287999][ T6269] tipc: Started in network mode
[   82.380401][ T6269] tipc: Node identity ac14140f, cluster identity 4711
[   82.400790][ T6269] tipc: New replicast peer: 0.0.255.255
[   82.406489][ T6269] tipc: Enabled bearer <udp:see>, priority 10
[   82.410801][ T6273] loop3: detected capacity change from 0 to 1024
[   82.548236][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.593891][ T6286] FAULT_INJECTION: forcing a failure.
[   82.593891][ T6286] name failslab, interval 1, probability 0, space 0, times 0
[   82.606638][ T6286] CPU: 1 UID: 0 PID: 6286 Comm: syz.5.1022 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   82.606668][ T6286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.606702][ T6286] Call Trace:
[   82.606710][ T6286]  <TASK>
[   82.606719][ T6286]  __dump_stack+0x1d/0x30
[   82.606740][ T6286]  dump_stack_lvl+0xe8/0x140
[   82.606761][ T6286]  dump_stack+0x15/0x1b
[   82.606781][ T6286]  should_fail_ex+0x265/0x280
[   82.606897][ T6286]  should_failslab+0x8c/0xb0
[   82.606924][ T6286]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   82.606965][ T6286]  ? proc_alloc_inode+0x34/0x90
[   82.606987][ T6286]  ? __pfx_proc_alloc_inode+0x10/0x10
[   82.607012][ T6286]  proc_alloc_inode+0x34/0x90
[   82.607038][ T6286]  alloc_inode+0x3d/0x170
[   82.607116][ T6286]  new_inode+0x1d/0xe0
[   82.607135][ T6286]  proc_pid_make_inode+0x1f/0xd0
[   82.607206][ T6286]  proc_map_files_instantiate+0x81/0x130
[   82.607228][ T6286]  proc_fill_cache+0x1c1/0x240
[   82.607252][ T6286]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[   82.607319][ T6286]  proc_map_files_readdir+0x500/0x680
[   82.607351][ T6286]  iterate_dir+0x114/0x330
[   82.607376][ T6286]  ? mutex_lock+0xd/0x30
[   82.607417][ T6286]  __se_sys_getdents+0x88/0x1b0
[   82.607453][ T6286]  ? __pfx_filldir+0x10/0x10
[   82.607490][ T6286]  __x64_sys_getdents+0x43/0x50
[   82.607525][ T6286]  x64_sys_call+0x292b/0x2fb0
[   82.607579][ T6286]  do_syscall_64+0xd2/0x200
[   82.607602][ T6286]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.607627][ T6286]  ? clear_bhb_loop+0x40/0x90
[   82.607713][ T6286]  ? clear_bhb_loop+0x40/0x90
[   82.607732][ T6286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.607759][ T6286] RIP: 0033:0x7fc1edafe929
[   82.607778][ T6286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.607797][ T6286] RSP: 002b:00007fc1ec167038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[   82.607817][ T6286] RAX: ffffffffffffffda RBX: 00007fc1edd25fa0 RCX: 00007fc1edafe929
[   82.607855][ T6286] RDX: 000000000000100a RSI: 0000200000000dc0 RDI: 0000000000000006
[   82.607871][ T6286] RBP: 00007fc1ec167090 R08: 0000000000000000 R09: 0000000000000000
[   82.607885][ T6286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   82.607899][ T6286] R13: 0000000000000000 R14: 00007fc1edd25fa0 R15: 00007ffc6b6fe7d8
[   82.607916][ T6286]  </TASK>
[   82.619745][ T6288] netlink: 'syz.2.1023': attribute type 4 has an invalid length.
[   82.925890][ T6296] FAULT_INJECTION: forcing a failure.
[   82.925890][ T6296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.939134][ T6296] CPU: 0 UID: 0 PID: 6296 Comm: syz.2.1026 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   82.939168][ T6296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.939182][ T6296] Call Trace:
[   82.939189][ T6296]  <TASK>
[   82.939198][ T6296]  __dump_stack+0x1d/0x30
[   82.939222][ T6296]  dump_stack_lvl+0xe8/0x140
[   82.939323][ T6296]  dump_stack+0x15/0x1b
[   82.939342][ T6296]  should_fail_ex+0x265/0x280
[   82.939380][ T6296]  should_fail+0xb/0x20
[   82.939420][ T6296]  should_fail_usercopy+0x1a/0x20
[   82.939444][ T6296]  _copy_from_user+0x1c/0xb0
[   82.939469][ T6296]  __se_sys_mount+0x10d/0x2e0
[   82.939491][ T6296]  ? fput+0x8f/0xc0
[   82.939514][ T6296]  ? ksys_write+0x192/0x1a0
[   82.939679][ T6296]  __x64_sys_mount+0x67/0x80
[   82.939704][ T6296]  x64_sys_call+0xd36/0x2fb0
[   82.939725][ T6296]  do_syscall_64+0xd2/0x200
[   82.939747][ T6296]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.939777][ T6296]  ? clear_bhb_loop+0x40/0x90
[   82.939838][ T6296]  ? clear_bhb_loop+0x40/0x90
[   82.939858][ T6296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.939929][ T6296] RIP: 0033:0x7fe0ef61e929
[   82.939948][ T6296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.939969][ T6296] RSP: 002b:00007fe0edc87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   82.939993][ T6296] RAX: ffffffffffffffda RBX: 00007fe0ef845fa0 RCX: 00007fe0ef61e929
[   82.940005][ T6296] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 0000000000000000
[   82.940017][ T6296] RBP: 00007fe0edc87090 R08: 0000200000000080 R09: 0000000000000000
[   82.940028][ T6296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.940042][ T6296] R13: 0000000000000000 R14: 00007fe0ef845fa0 R15: 00007ffddd341cb8
[   82.940064][ T6296]  </TASK>
[   83.206652][ T6307] loop2: detected capacity change from 0 to 1024
[   83.213518][ T6307] EXT4-fs: Ignoring removed bh option
[   83.218965][ T6307] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.729596][    T9] tipc: Node number set to 2886997007
[   83.824562][ T6307] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.843627][ T6323] loop4: detected capacity change from 0 to 764
[   83.850217][ T6323] iso9660: Unknown parameter './file0'
[   83.947433][ T6327] netlink: 'syz.5.1036': attribute type 4 has an invalid length.
[   84.036562][ T6332] macvlan2: entered promiscuous mode
[   84.042020][ T6332] bridge0: entered promiscuous mode
[   84.047644][ T6332] bridge0: port 3(macvlan2) entered blocking state
[   84.054631][ T6332] bridge0: port 3(macvlan2) entered disabled state
[   84.067850][ T6331] netlink: 'syz.3.1037': attribute type 13 has an invalid length.
[   84.076067][ T6332] macvlan2: entered allmulticast mode
[   84.081596][ T6332] bridge0: entered allmulticast mode
[   84.087789][ T6332] macvlan2: left allmulticast mode
[   84.093137][ T6332] bridge0: left allmulticast mode
[   84.102853][ T6332] bridge0: left promiscuous mode
[   84.233019][ T6339] x_tables: ip6_tables: mh match: only valid for protocol 135
[   84.274754][   T29] kauditd_printk_skb: 371 callbacks suppressed
[   84.274776][   T29] audit: type=1400 audit(1749890638.824:8071): avc:  denied  { lock } for  pid=6345 comm="syz.3.1043" path="socket:[14908]" dev="sockfs" ino=14908 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   84.305515][ T6307] ==================================================================
[   84.313634][ T6307] BUG: KCSAN: data-race in __mark_inode_dirty / generic_buffers_fsync_noflush
[   84.322540][ T6307] 
[   84.324882][ T6307] write to 0xffff888106b8a008 of 4 bytes by task 6326 on cpu 1:
[   84.332624][ T6307]  __mark_inode_dirty+0x240/0x760
[   84.337669][ T6307]  file_modified_flags+0x324/0x350
[   84.342798][ T6307]  file_modified+0x17/0x20
[   84.347229][ T6307]  ext4_buffered_write_iter+0x1d0/0x3c0
[   84.352793][ T6307]  ext4_file_write_iter+0x383/0xf00
[   84.358022][ T6307]  iter_file_splice_write+0x5f2/0x970
[   84.363445][ T6307]  direct_splice_actor+0x153/0x2a0
[   84.368590][ T6307]  splice_direct_to_actor+0x30f/0x680
[   84.373999][ T6307]  do_splice_direct+0xda/0x150
[   84.378794][ T6307]  do_sendfile+0x380/0x650
[   84.383229][ T6307]  __x64_sys_sendfile64+0x105/0x150
[   84.388466][ T6307]  x64_sys_call+0xb39/0x2fb0
[   84.393071][ T6307]  do_syscall_64+0xd2/0x200
[   84.397586][ T6307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.403499][ T6307] 
[   84.405835][ T6307] read to 0xffff888106b8a008 of 4 bytes by task 6307 on cpu 0:
[   84.415047][ T6307]  generic_buffers_fsync_noflush+0x80/0x120
[   84.420972][ T6307]  ext4_sync_file+0x1ab/0x690
[   84.425666][ T6307]  vfs_fsync_range+0x10d/0x130
[   84.430438][ T6307]  ext4_buffered_write_iter+0x34f/0x3c0
[   84.435998][ T6307]  ext4_file_write_iter+0x383/0xf00
[   84.441208][ T6307]  iter_file_splice_write+0x5f2/0x970
[   84.446601][ T6307]  direct_splice_actor+0x153/0x2a0
[   84.451727][ T6307]  splice_direct_to_actor+0x30f/0x680
[   84.457118][ T6307]  do_splice_direct+0xda/0x150
[   84.461902][ T6307]  do_sendfile+0x380/0x650
[   84.466331][ T6307]  __x64_sys_sendfile64+0x105/0x150
[   84.471688][ T6307]  x64_sys_call+0xb39/0x2fb0
[   84.476394][ T6307]  do_syscall_64+0xd2/0x200
[   84.480916][ T6307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.486824][ T6307] 
[   84.489151][ T6307] value changed: 0x00000000 -> 0x00000028
[   84.494871][ T6307] 
[   84.497198][ T6307] Reported by Kernel Concurrency Sanitizer on:
[   84.503351][ T6307] CPU: 0 UID: 0 PID: 6307 Comm: syz.2.1031 Not tainted 6.16.0-rc1-syzkaller-00157-g02adc1490e6d #0 PREEMPT(voluntary) 
[   84.515773][ T6307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   84.525835][ T6307] ==================================================================
[   84.563830][ T6349] loop4: detected capacity change from 0 to 136
[   84.570316][   T29] audit: type=1400 audit(1749890639.094:8072): avc:  denied  { ioctl } for  pid=6345 comm="syz.3.1043" path="socket:[14909]" dev="sockfs" ino=14909 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   84.605060][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.617461][ T6333] loop5: detected capacity change from 0 to 164
[   84.625753][ T6333] syz.5.1038: attempt to access beyond end of device
[   84.625753][ T6333] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   84.644628][ T6333] syz.5.1038: attempt to access beyond end of device
[   84.644628][ T6333] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164