last executing test programs:

4m40.518887521s ago: executing program 1 (id=234):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000002380)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x30, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x8080}, 0x2000c800)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x69000}], 0x1)

4m40.339259874s ago: executing program 1 (id=237):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93", 0xd2}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

4m40.328917914s ago: executing program 1 (id=238):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
sendfile(r0, r0, 0x0, 0x800000009)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40100, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
lsetxattr$security_selinux(&(0x7f00000012c0)='.\x00', &(0x7f0000001280), &(0x7f0000001240)='system_u:object_r:fsadm_exec_t:s0\x00', 0x15, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000240000"], &(0x7f0000000ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r5}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)

4m40.047326048s ago: executing program 1 (id=244):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xfd, 0x1bf, &(0x7f0000000480)="$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")
getgroups(0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000019240)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="78040000000000000d01000005000000ece538e8b62831eafcd9056be7c8a4f36891e0bd363476ba635f8d61e20221d10831df051097c214cf0e5f4345fa2c1eff6b0f8eedd3687f41fdd27b53aabf690ef80b8953b86b7943136212b1ec5c95809bc5d24c84f1ea4c6a1ff8b0dfc20e9b15115ddad4e233132bb07ee1577ae158a9ec4de6171ac0a7542ea221a3d97d80e7bed34fde3c64661a751d33a6d102ec5e611cee97f445ff21d4d3b360a17a83b7594ad811751ceb59ea8b5cde9525ac5679cf2e35907c0abbb85a25c776a98af56eff37c6627d00c51fd572f6113013d16a54d005b0f833f3c9cde6b897172b7ddc1b063781f822e06890c08ad3025e80b4a550a680e58053a8c33d2e1858f971a40788f6b287baa082a334140c0091f5f2d232ecbc86218a477e468e5be1b48d7787071b5c891cc3efde21a3b0337adeaa6a41ce8fd6edf1b0a47ca0cd6d785cc2c1c3803dde4d9749a10e21d489531efca60760b4ff2061dd7800c4f23c3d1e2bcd694fcc87261a2fdfee6baaa701c7083e9675a75b8d530f09f72d8d3fed4ed848ba18d11635893b52c84a6f0fdc9711b63cba52c9e33ac701261d5459b6ff53be036549b6d0e617d125a6a758370d0671f5f956918db7c4d0afb4f7369bad2a1cf0b7bcf130464bb031b092392a72e8234c1cc1d41190dad660bd1d9283d7d4c7f7410c83f6cfbd25b438097f3e5fd4a23e56c1995179797f03c6dfc5e8be4515fbc72ef9ecbb7cd80d4e71d2ac2f31396081eb9fee4b5d633aee32775a004f7aee9f33d81f9e469a1bef0a995ca8d50c2d853bfb1ebaf301d0c649b74827ae650b6a3bec85e2e9fd45e33bdd8c29cb0692d78a73700daf8eaff8efc06f8c07b3ce384ab1d925cdc440a4b85ace1edb6202df092fe6b37c11e10f3cb3d9e0cc19d55989766aec965403244c8dabfcdcc51c2297131307048ffc88b47d07e821656fa73395dd464d79ee82b3d4f47bd29f42f44f9521efdec7b0e8b5436d496ae046d72d69bc3d35a62829954fdf87fa10330a7864465ee86c540b2e1320e8453701898027ef86ad0d7c31c009f0e5f4c35eeb870ba4caa3708656b38c3797aaadb4b372acf23c05d55d98eb8c1c628e744a6a4439b5a515a2a083f8fbc71a2e6800c3ffec640d21d05a4b1f4548c5541f809e9766cce96b2c53b220361638c4dc43af7d5edb874bb48ca3c8a837fdccff0c8b50bc402da6262c5e3b344f313153fd455e4414f2b0e4a2bcf881b5615e399f8bbe6c3c20a314539b856de845a6e37e5f6925f3d5929eb59243b792834b0de7643077681b9113f5d192c4e96ebea0465901e5aa5da812b0d112089c048e29c523a753f7babe4e3de0bff0f220493bef0e7b76b051cecc325a8fb60a76880155ed33bbbccb472dd3b568829eb7cfb4280521adee82b1b1b7c31b0baa329f81f254526461b787d32bd18a760944a3f728a8a257f2bb9bc9172daeeb9a3d099fa60a440063b70cb48a54cf8739467f7e2b075b74800056475332bd226daf3e7a85c198107c3fe4818e78dda31d1d8c4c618c218e368a0e20655c325f95ebdb03320448cfd754064e7a6b69b1677d12a5c6000000"], 0x478}, 0x0, 0xe3d08660d3cd4684})
io_uring_enter(0xffffffffffffffff, 0x92, 0x0, 0x0, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x4004944)
sendmsg$NFT_BATCH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = gettid()
r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
read$ptp(r3, 0x0, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r4=>0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r5, &(0x7f0000000000)='map_files\x00')
mq_notify(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x16, 0x0, @tid=r5})
timer_settime(r4, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
pread64(r6, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
r7 = dup(0xffffffffffffffff)
write$P9_RLERRORu(r7, &(0x7f00000000c0)=ANY=[@ANYBLOB='S\x00\x00\x00\a\x00', @ANYBLOB="fe4cecb210"], 0x53)
memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000, &(0x7f0000019200)=ANY=[@ANYBLOB='{\x00\x00\x00\x00\x00\x00\x00,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno', @ANYBLOB])

4m38.848025057s ago: executing program 1 (id=260):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93", 0xd2}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

4m38.615192201s ago: executing program 1 (id=268):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0xa120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000300)='cpu<02||!')
r4 = open(&(0x7f0000000540)='./file0\x00', 0x60840, 0x81)
fcntl$setlease(r4, 0x400, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendmsg$nl_route_sched(r2, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xff2e)
r6 = syz_open_pts(r1, 0x0)
r7 = dup3(r6, r1, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r9}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240))
r10 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r10, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r10, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r11 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r10, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x1a, &(0x7f0000000440)=ANY=[@ANYBLOB="18110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7020000000000008500000086000000183a0000030000000000000000000000b7080000000000007b8af8ff00000000b70800006dae00007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000955b3000ffffffff1845000007000000000000000000000018210000", @ANYRES32, @ANYBLOB="00000000e500000018100000", @ANYRES32=0x1, @ANYBLOB="ec45060900000000"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x85, &(0x7f0000000280)=""/133, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x1, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r11, 0x89f2, &(0x7f00000006c0)={'syztnl0\x00', &(0x7f0000000640)={'syztnl2\x00', 0x0, 0x4, 0x80, 0x5, 0xff, 0x13, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, 0x28, 0x8, 0xcda, 0x6}})

4m38.613156591s ago: executing program 32 (id=268):
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0xa120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000300)='cpu<02||!')
r4 = open(&(0x7f0000000540)='./file0\x00', 0x60840, 0x81)
fcntl$setlease(r4, 0x400, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00'})
sendmsg$nl_route_sched(r2, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xff2e)
r6 = syz_open_pts(r1, 0x0)
r7 = dup3(r6, r1, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r9}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240))
r10 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r10, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r10, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r11 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r10, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x1a, &(0x7f0000000440)=ANY=[@ANYBLOB="18110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7020000000000008500000086000000183a0000030000000000000000000000b7080000000000007b8af8ff00000000b70800006dae00007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000955b3000ffffffff1845000007000000000000000000000018210000", @ANYRES32, @ANYBLOB="00000000e500000018100000", @ANYRES32=0x1, @ANYBLOB="ec45060900000000"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x85, &(0x7f0000000280)=""/133, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x1, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r11, 0x89f2, &(0x7f00000006c0)={'syztnl0\x00', &(0x7f0000000640)={'syztnl2\x00', 0x0, 0x4, 0x80, 0x5, 0xff, 0x13, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, 0x28, 0x8, 0xcda, 0x6}})

4m36.039055662s ago: executing program 4 (id=292):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffb}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x8, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
writev(r5, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1}, 0x50)
close(0x3)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r9, 0x0, 0x0}, 0x20)
close(0xffffffffffffffff)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000180), 0x72, r8}, 0x38)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r10}, 0x10)
r11 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r11}, 0x2c, {[], [], 0x6b}})
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000000, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000b00)={0x8, {"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", 0x1000}}, 0x1006)

4m35.696214897s ago: executing program 4 (id=296):
socket(0xa, 0x3, 0xff)
pipe2$watch_queue(&(0x7f0000000040), 0x80)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
kexec_load(0x4, 0xa, 0x0, 0x0)

4m35.52319518s ago: executing program 4 (id=298):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)

4m35.5119974s ago: executing program 4 (id=299):
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x11, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffefffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES32=0x0, @ANYRES32], 0x40}}, 0x4008080)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x5b1, &(0x7f0000000a00)="$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")
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0xf4ff)
write$binfmt_register(r3, &(0x7f0000000140)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, '\r', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$int_in(r6, 0x5421, &(0x7f0000000040)=0xdc7d)
bind$bt_sco(r6, &(0x7f0000000740)={0x1f, @none}, 0x8)
listen(r6, 0x2)
accept4(r6, 0x0, 0x0, 0x80800)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000140)=@nat={'nat\x00', 0x670, 0x5, 0x350, 0x150, 0x210, 0xfeffffff, 0xa8, 0xa8, 0x2b8, 0x2b8, 0xffffffff, 0x2b8, 0x2b8, 0x5, 0x0, {[{{@ip={@loopback, @broadcast, 0x0, 0x0, 'dvmrp1\x00', 'vlan1\x00'}, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x13, @rand_addr, @empty, @port, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x13, @broadcast, @loopback}}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@ttl={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, 0x0, 0x0, 'batadv_slave_1\x00', 'xfrm0\x00'}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @rand_addr, @remote}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3b0)
read(r5, 0x0, 0x0)
getpriority(0x7, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

4m34.791318471s ago: executing program 4 (id=306):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0xfffb, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe88000000000000000000000000000100000000000000000100"], 0x88}}, 0x0)

4m34.510790045s ago: executing program 4 (id=310):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
ppoll(0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)

4m34.506934795s ago: executing program 33 (id=310):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
ppoll(0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)

1m5.646270796s ago: executing program 2 (id=4806):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000001cc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@dioread_lock}, {@data_err_ignore}, {@journal_checksum}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@noacl}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

1m5.592104246s ago: executing program 2 (id=4810):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0xc3072, 0xffffffffffffffff, 0x0)

1m5.559886467s ago: executing program 2 (id=4812):
r0 = socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000000)='./file0\x00', 0x2, &(0x7f00000002c0)=ANY=[], 0x1, 0x5b1, &(0x7f0000001000)="$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")
r1 = socket$unix(0x1, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffff9]}, 0x0, 0x8)
r4 = gettid()
r5 = gettid()
tkill(r4, 0x1)
tkill(r5, 0x14)
bind$unix(r1, 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a04", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)

1m5.256542302s ago: executing program 2 (id=4818):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000040)=ANY=[], 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0x7000000) (fail_nth: 3)

1m5.204539942s ago: executing program 2 (id=4819):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_resuseaddr={0x0}}, 0x20)
read$usbmon(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), r1)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r1)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)={0x58, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa, 0x0, 0xfffc}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_MASK={0x4}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @local}}}]}]}, 0x58}}, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000002c0)=0x20)
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x2000, 0xffff4a9c0080ffff, &(0x7f0000000240))
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r2, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f8d7843e40108804400208024000100000000000100000000000000fdffff01000000000000000000000000000000001400040003000000ac1414bb00000000000000000600050000000000000100802400020073e591ec06154031d3954ac0e16752e72640f08b5281a8461d17d26d12f2bbb6060005000021000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39228c00098028000080060001000a0000001400020020010000000000000000000002000001050003000000000088000080060001000a000000140002002001000000f800000000000000000002050003000000001003800080060001008c0e000008000200ac1414aa05000300000000001c000080060001000200000008000200ac1414bb0500030000000000200004000e00000000000000fe800000000000000000000000000000000000009c0000802400020073961633df6dc9cb418b15afd0bae7b90f1e6cfed8bb423cf9285c474163154908000a00010000002400010000000000000000000000000000000000000000000000000000000000000000004800098028000080060001000a00000014000200fe8000000000000000000000000000bb05000300000000001c00008006000100020000000800020000000000050003000000000008000500", @ANYRES32], 0x22c}}, 0x0)

1m5.154304813s ago: executing program 2 (id=4821):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0xa}}]}, 0x40}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f00000007c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa01800d0000000800450000b000000000001190cbcb2878000000000000000000004e20ff9c907801000000000000007b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584c010049a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b9649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544af6e8dafe09"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
ftruncate(0xffffffffffffffff, 0x51a9497)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='sys_enter\x00', r7}, 0x10)
get_robust_list(0x0, &(0x7f0000000380)=&(0x7f0000000340), &(0x7f00000003c0)=0x18)

49.685846897s ago: executing program 34 (id=4821):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0xa}}]}, 0x40}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f00000007c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa01800d0000000800450000b000000000001190cbcb2878000000000000000000004e20ff9c907801000000000000007b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584c010049a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b9649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544af6e8dafe09"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
ftruncate(0xffffffffffffffff, 0x51a9497)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='sys_enter\x00', r7}, 0x10)
get_robust_list(0x0, &(0x7f0000000380)=&(0x7f0000000340), &(0x7f00000003c0)=0x18)

2.002790858s ago: executing program 3 (id=5970):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYRES8, @ANYRESDEC, @ANYBLOB="741caa2d3ad9858f47e9ba6f5cfd2c1a78134fedbd2378a51b6c1dd455c508a3fbe132d96e3954217aca90d89f37c531ca3c9d070d4dcd3c74199e570b70490341cb18eb9d42f9996642a7c3bf3b1bca934754a46e77796f050e00a5d0c2104aad52e29ffa09a772a7c27fc31efdf52e3e3d14a5ba1bbf763a1548882f3a4514a8e5a7d46bad2c98fdf7589bac5e4d3bd834b8107225d24a8d5794b2de708c84e2f1830f5b3bd0e3cf29fabfc411dbe69907d6a21b081603aea4de4e811011d1f5919ba1ed17cf7b2757c45845a2b05d94e51c791d49145e2879c66d16a095f9a6ec357d8b11a240e433d1", @ANYRESDEC, @ANYRES32], 0x0, 0x36, 0x0, 0x1, 0x7fff}, 0x28)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
unshare(0x22020400)
r1 = syz_io_uring_setup(0xcd8, &(0x7f0000000200)={0x0, 0x465e, 0x400, 0x3, 0x40234}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file0\x00'})
io_uring_enter(r1, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x3, 0x1, 0x3, 0x3, 0x5, 0x81, 0x6, 0x152, 0x1})
r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000980)={0x0, 0x1, 0x5, 0x6})
r5 = socket$nl_route(0x10, 0x3, 0x0)
io_uring_enter(r1, 0x9af, 0xd9f0, 0x20, &(0x7f00000000c0)={[0x5]}, 0x8)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES64=r6, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000580)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af}, 0x94)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r10=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'tunl0\x00', &(0x7f0000000400)={'ip_vti0\x00', r10, 0x8000, 0x20, 0xd, 0x80000000, {{0xe, 0x4, 0x0, 0x3, 0x38, 0x66, 0x0, 0xd, 0x2f, 0x0, @empty, @loopback, {[@noop, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @timestamp_addr={0x44, 0x14, 0x8c, 0x1, 0xd, [{@broadcast, 0x80}, {@local, 0x9}]}, @generic={0x94, 0x6, "45297eaa"}]}}}}})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r10, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r8}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1e00000000800800000000000010000000000000", @ANYRES32=0x1, @ANYBLOB='\n\x00'/20, @ANYRES32=r7, @ANYRES32=r0, @ANYBLOB="0200000002000000080000000300"/28], 0x50)
fdatasync(0xffffffffffffffff)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1d00000001040000800000000800000000100000", @ANYRES32, @ANYBLOB="001000"/20, @ANYRES32=r7, @ANYRES32=r12, @ANYBLOB="010000000400000005000000000000001600"/28], 0x50)
pwrite64(r12, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

1.949966829s ago: executing program 0 (id=5971):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000feffffff000100000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)

1.8511428s ago: executing program 0 (id=5972):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xcb83, 0x0, 0x2, 0x288}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r1, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}})
io_uring_enter(r2, 0x3516, 0x0, 0x4, 0x0, 0x3d)

1.826180721s ago: executing program 0 (id=5975):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000500)=@filename='./file0\x00', 0x0, &(0x7f0000000680)='./file0/../file0\x00')

1.793803851s ago: executing program 0 (id=5976):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
setrlimit(0x9, &(0x7f0000000000))
io_setup(0x2004, &(0x7f0000001280))

1.733140822s ago: executing program 0 (id=5978):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r6, 0x0, 0x13, 0x0, &(0x7f0000000180)="5486bbac43bbf8e44dcdd0e6b689f0ca471909", 0xfffffffffffffffd, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r3)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000023c0)={0x28, r7, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x2001}, 0x4010000)

1.567626455s ago: executing program 3 (id=5981):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = syz_pidfd_open(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setns(r2, 0x24020000)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000001400)='.\x00', &(0x7f0000001440), 0x800, &(0x7f00000000c0)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@sq={'sq', 0x3d, 0x10000}}, {@timeout={'timeout', 0x3d, 0x3}}]}})
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
read(r5, &(0x7f0000003e40)=""/248, 0xf8)

1.522247046s ago: executing program 5 (id=5983):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000840)=0x2000000, &(0x7f0000000880)}, 0x20)

1.427337247s ago: executing program 5 (id=5984):
sched_yield()
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@jmp={0x5, 0x0, 0xb, 0x6, 0x7, 0x30, 0xfffffffffffffff0}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='GPL\x00', 0xb, 0x53, &(0x7f00000002c0)=""/83, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x2, 0xd, 0x401, 0x3}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='svcsock_tcp_state\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0x2439, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x224}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x10, 0x0, r1, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000180)=[{0x0}, {0x0}], 0x2, 0x0, 0x530}, 0x0, 0x1000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000711221000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
pivot_root(0x0, &(0x7f0000000180)='./file0/../file0/../file0\x00')
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000080)=0x636e, 0x4)
io_uring_enter(r1, 0x47f8, 0x1e43, 0x0, 0x0, 0x0)

1.189425121s ago: executing program 6 (id=5991):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_submit(0x0, 0x1, &(0x7f0000000540)=[0x0])
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r5, 0x0, 0x4}, 0x18)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000008c0)=@newtfilter={0x74, 0x28, 0xd27, 0x1003ffd, 0x0, {0x0, 0x0, 0x0, r6, {0xd, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x44, 0x2, [@TCA_CGROUP_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x5, 0xfeb3, 0x0, 0x80000000, {0x5e, 0x0, 0x0, 0x6, 0x800, 0x2}, {0xe, 0x1, 0x2, 0xf001, 0xa, 0x6}, 0x8a, 0x28a, 0x7}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x810}, 0x200008c0)

1.181993071s ago: executing program 3 (id=5992):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, 0x0)
r1 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e24, 0x4, @loopback}], 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x1}, 0x8)
unshare(0x22020600)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = syz_io_uring_setup(0x239, &(0x7f0000000580)={0x0, 0x3415, 0x10100, 0x0, 0x100000}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x2def, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f00000000c0)=0x23fc0, 0x4)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000000)=0x3, 0x4)
sendto$inet6(r1, &(0x7f0000000040)="00d8", 0x20000, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
r5 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0, <r7=>0x0}, &(0x7f00000005c0)=0xc)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000540)={{0x0, r6, r7, r6, r7, 0x5, 0x3ff}, 0x5e, 0x101, 0x80000001, 0xffffffff, 0x0, 0x0, 0x7})
quotactl_fd$Q_QUOTAOFF(r0, 0xffffffff80000302, r6, 0x0)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r8, 0x112, 0xb, 0x0, &(0x7f0000000580)=0xfffffffffffffceb)

1.140377472s ago: executing program 6 (id=5993):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0xc3072, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

1.085649742s ago: executing program 5 (id=5994):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') (async)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r0, &(0x7f0000000580)=[{&(0x7f0000000040)=""/103, 0x67}], 0x1000000000000212, 0xc002a0, 0xcbea)
syz_open_dev$usbfs(0x0, 0x205, 0x2581)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000180)={<r1=>0x0}, &(0x7f0000000340)=0x8)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000380)={r1, 0xfff, 0x9}, 0x8)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000000)={@rand_addr, @initdev}, 0x0) (async)
getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000000)={@rand_addr, @initdev}, 0x0)
socket$can_raw(0x1d, 0x3, 0x1) (async)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
io_uring_setup(0x4663, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0) (async)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0e000000040000"], 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x2}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x2}, 0x18)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) (async)
r6 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r6, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
sendmsg$SMC_PNETID_DEL(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r6, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x20000005)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff00000000030000000000000000000000020000000000000000000000000000040300"], 0x0, 0x56, 0x0, 0x3}, 0x28)
write$selinux_user(r4, &(0x7f00000002c0)={'system_u:object_r:fixed_disk_device_t:s0', 0x20, 'user_u\x00'}, 0x30)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
pipe2(&(0x7f0000000000), 0x0)
gettid()

1.067541983s ago: executing program 6 (id=5995):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0) (fail_nth: 4)

971.193175ms ago: executing program 6 (id=5996):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000"], 0x50)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000400000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000240)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000f00030001332564aaee7b1d58b9a64411f6bbf44d", 0x39}], 0x1)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff})
sendmsg$tipc(r7, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8010}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003380)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000006cfa000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9, 0x0, 0xfffffffffffffffe}, 0x18)
r10 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r11 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01000000000000000d000200000014000200626f6e643000000000000000fff200000900010073797a30000000000900030673797a31000000002e2d2665cb64e40055c4b15ae8e476fe383850cbfa86cb7680d0a0060f388954b3a4390505c239ada979bc7ea8228cbe19c71ec383d7c449b59620f8"], 0x43}}, 0x0)
sendmsg$SMC_PNETID_DEL(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r10, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)

904.168665ms ago: executing program 5 (id=5997):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xcb83, 0x0, 0x2, 0x288}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x40, 0x0, r1, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}})
io_uring_enter(r2, 0x3516, 0x0, 0x4, 0x0, 0x3d)

860.191886ms ago: executing program 5 (id=5998):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x11f002, 0x0)
r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x3}, 0x50)
r4 = socket(0x400000000010, 0x3, 0x0)
syz_io_uring_setup(0x40a94, &(0x7f0000000400)={0x0, 0x0, 0xa059}, 0x0, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe84, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x810, 0x4, 0x5}, {0x2, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x97, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x1, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x3, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x3, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x2, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x6}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0xbf, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0xe, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x201, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0x9, 0x4}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0x7}, {0x80000000, 0x4, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0xffff, 0x8}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x6, 0x1000, 0x9, 0x9}, {0xa, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0x2, 0x8, 0xfffffff7, 0x1, 0x6, 0xa}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x80, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0x8, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x3, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x5, 0x5, 0x3, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x7, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0xc}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0xd9, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x8f000000, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x0, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0xfce, 0x80000001, 0x5, 0x4, 0x1ff}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x100, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x0, 0x3, 0x6, 0x800, 0x3}, {0x0, 0x0, 0x3, 0x8, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0xb4, 0x5, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffff9, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x6}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x6, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x2, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe71, 0xc5c3, 0x3, 0x1}, {0x7, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0xce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0x6}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x5, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159, 0x1}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {}, {0x2, 0x1}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1, 0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe84}, 0x1, 0x0, 0x0, 0x81}, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r8 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r7}, &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r7, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r8, 0x44fd, 0x3, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r8, 0xf, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)}, 0x20)
r11 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r11}, &(0x7f0000bbdffc)=<r12=>0x0)
timer_settime(r12, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r13 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r13, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)
ioctl$EVIOCGABS20(r3, 0x80184560, &(0x7f0000000680)=""/179)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0x20, &(0x7f00000004c0)={&(0x7f0000000a80)=""/4096, 0x1000, <r14=>0x0, &(0x7f0000000440)=""/71, 0x47}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x1b, &(0x7f00000002c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf}}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xe}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}, @map_fd={0x18, 0xa, 0x1, 0x0, r2}, @map_fd={0x18, 0xb, 0x1, 0x0, r3}], &(0x7f00000000c0)='GPL\x00', 0x170, 0xa2, &(0x7f00000001c0)=""/162, 0x40f00, 0x2c, '\x00', r6, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x2, 0x3, 0xac, 0xfffffffc}, 0x10, r14, 0xffffffffffffffff, 0x4, &(0x7f0000000540), &(0x7f0000000580)=[{0x1, 0x5, 0x8}, {0x1, 0x5, 0x6, 0x8}, {0x3, 0x3, 0xa, 0x17}, {0x1, 0x4, 0x10, 0x2}]}, 0x94)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r0, &(0x7f0000006340)=[{{0x0, 0x0, 0x0}}], 0x1, 0xf00)

832.507316ms ago: executing program 0 (id=5999):
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001dc0)={0xfa86c5142d67d525, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x3793784eefc0c44c, '\x00', 0x0, @fallback=0x14}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000200)='initcall_start\x00', r0}, 0x18)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x501580)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x0, 0x0, 0x8000008, 0x4, 0x2, 0x1, 0x0, 0x7cce8c743ee810df})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000000c0)={0x800080, 0x80, 0xffffffbc, 0x7, 0x0, 0x55a})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x67)
close(r2)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="000000009e3c83", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x24000080, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000580), 0x1, 0x503, &(0x7f0000000880)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f00000004c0), 0x208e24b)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0x6, 0x2, 0x0, &(0x7f0000002840))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010080030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000050000000060a010400000000000000000100000008000b40fffffffc28000480240001800c000100626974778973650014000280080003400000000208000140000000140900010073797a3000000000140000001100010000000000000000000700000a"], 0xc4}}, 0x0)
fchdir(0xffffffffffffffff)
symlinkat(&(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00')

374.706304ms ago: executing program 7 (id=6001):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
fsetxattr$security_selinux(r0, &(0x7f0000000240), 0x0, 0x0, 0x3)

374.220014ms ago: executing program 7 (id=6002):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0xb4, @local}, 0x10)

373.656704ms ago: executing program 7 (id=6003):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
r2 = syz_pidfd_open(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$lock(r4, 0x6, &(0x7f0000002000)={0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setns(r2, 0x24020000)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000001400)='.\x00', &(0x7f0000001440), 0x800, &(0x7f00000000c0)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@sq={'sq', 0x3d, 0x10000}}, {@timeout={'timeout', 0x3d, 0x3}}]}})
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xffffffff}, 0x1320, 0x0, 0x3, 0x5, 0x0, 0x800001, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
read(r5, &(0x7f0000003e40)=""/248, 0xf8)

243.588846ms ago: executing program 3 (id=6004):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_submit(0x0, 0x1, &(0x7f0000000540)=[0x0])
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r5, 0x0, 0x4}, 0x18)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000008c0)=@newtfilter={0x74, 0x28, 0xd27, 0x1003ffd, 0x0, {0x0, 0x0, 0x0, r6, {0xd, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x44, 0x2, [@TCA_CGROUP_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x5, 0xfeb3, 0x0, 0x80000000, {0x5e, 0x0, 0x0, 0x6, 0x800, 0x2}, {0xe, 0x1, 0x2, 0xf001, 0xa, 0x6}, 0x8a, 0x28a, 0x7}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x810}, 0x200008c0)

242.884106ms ago: executing program 3 (id=6005):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0xc3072, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

226.223136ms ago: executing program 3 (id=6006):
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x11f002, 0x0)
r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x3}, 0x50)
r3 = socket(0x400000000010, 0x3, 0x0)
syz_io_uring_setup(0x40a94, &(0x7f0000000400)={0x0, 0x0, 0xa059}, 0x0, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r6 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r5}, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r6, 0x44fd, 0x3, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r6, 0xf, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
r9 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc)=<r10=>0x0)
timer_settime(r10, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r11 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r11, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)
ioctl$EVIOCGABS20(r2, 0x80184560, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0x20, &(0x7f00000004c0)={&(0x7f0000000a80)=""/4096, 0x1000, <r12=>0x0, &(0x7f0000000440)=""/71, 0x47}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x1b, &(0x7f00000002c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf}}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x7}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xe}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}, @map_fd={0x18, 0xa, 0x1, 0x0, r1}, @map_fd={0x18, 0xb, 0x1, 0x0, r2}], &(0x7f00000000c0)='GPL\x00', 0x170, 0xa2, &(0x7f00000001c0)=""/162, 0x40f00, 0x2c, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x2, 0x3, 0xac, 0xfffffffc}, 0x10, r12, 0xffffffffffffffff, 0x4, &(0x7f0000000540), &(0x7f0000000580)=[{0x1, 0x5, 0x8}, {0x1, 0x5, 0x6, 0x8}, {0x3, 0x3, 0xa, 0x17}, {0x1, 0x4, 0x10, 0x2}]}, 0x94)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)

196.927146ms ago: executing program 7 (id=6007):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x16, &(0x7f00000009c0)=ANY=[@ANYBLOB="180000000080ffff000000000500000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000000d00000083000000bf0900000000000055090100000000009500000000000000850000006000000018110000f4faae9ea122195a29642dc82fd19b3f174b71765a3091315e521288a140ff24a8eae364e9e42fc9292b0a138a258e7b210f2a321c65559248f10c58ccce580429854749b2a83cb6c88eae89c1803cba1d6ba9a084371f6e8800cefc0ce8aea24e14bf6213106a4106cf1a85e08cf823d56a7f5a91", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000000000000850000008600000018100000", @ANYRES32=0x1, @ANYBLOB="0000000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000800)='GPL\x00', 0x871, 0x1000, &(0x7f0000000c80)=""/4096, 0x40f00, 0x22, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000840)={0x2, 0x5, 0x6, 0x3}, 0x10, 0x1ab94, 0xffffffffffffffff, 0x4, &(0x7f0000000880)=[0x1, 0xffffffffffffffff], &(0x7f00000008c0)=[{0x0, 0x3, 0x5}, {0x0, 0x1, 0x10, 0x3}, {0x4, 0x5, 0xc}, {0x4, 0x4, 0x3, 0xa}], 0x10, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000c00)={[], [{@smackfsroot={'smackfsroot', 0x3d, ')'}}, {@uid_lt}, {@audit}, {@context={'context', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, 'GPL\x00'}}]}, 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
syz_open_dev$mouse(&(0x7f0000000000), 0xfff, 0x640000)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1e, 0x3)

149.608677ms ago: executing program 7 (id=6008):
syz_mount_image$ext4(&(0x7f00000003c0)='ext2\x00', &(0x7f0000000480)='./file2\x00', 0x2214820, &(0x7f00000007c0)={[], [{@obj_user={'obj_user', 0x3d, 'permit_directio'}}, {@smackfsdef={'smackfsdef', 0x3d, 'nouid32'}}, {@uid_eq}, {@obj_type={'obj_type', 0x3d, 'f\x00\a\x00O\xd9\xfa\xbd{D0@\xd7\xd7w\b\xb3mi\xfc0\x1au\xad>\xd1\xb00p\xec\x0e[1\x10\x9a\xf5\xa4Lf\xcf\xa9w\xd3\v\xeb\xcfw\x1d?\t)\xd5\xf9\xaa\f)\xe2Z\xda%\x05vT\fH@\xf9\xae_\xd3;\xf0x\x8e\x00\x95\xec\xcd\\\xed\xefG\xad\xc3\x10\x97\xbe\x81\xe7\xb4:\xe25\xac\xe1\x9e\x9aK\x896\xc8\xfa\xc0\x18)F\xdcw\x18\x1c1=\x98&\xbcZ\x14\xa1\xcd\xeaJ\xf4,/>P\x8aS\x1dM'}}]}, 0xfc, 0x5a3, &(0x7f0000002d80)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
epoll_create1(0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000400)='ns/pid\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYRES64=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x818000, &(0x7f0000000280)={[{@nouid32}]}, 0x1, 0x722, &(0x7f0000002640)="$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")
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000180)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x6000000, 0x2000000000c0, 0x2000000000f0, 0x200000000120], 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff400023d100000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff00000000"]}, 0x108)
socket$packet(0x11, 0x3, 0x300)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendto$packet(r4, 0x0, 0x0, 0x4000051, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000440)="2e0000002e00810804fb7fec598f866b0a9a59", 0x13}, {&(0x7f0000001440)="f6e14ee68a9418", 0x7}], 0x2}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
futex(0x0, 0xa, 0x301, 0x0, 0x0, 0x2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)=@newqdisc={0x2cf23eeebe259815, 0x24, 0x800, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0xffe0}, {0xffff, 0x1}, {0x2}}, [@TCA_RATE={0x6, 0x5, {0xff, 0xfe}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x8000)
socket$inet6(0xa, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000240))
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x2005000, &(0x7f00000008c0)={[{@delalloc}, {}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@prjquota}, {@nouid32}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@noblock_validity}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@user_xattr}, {@bh}, {@dioread_nolock}], [{@measure}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@subj_role={'subj_role', 0x3d, ':*#'}}, {@euid_eq}, {@subj_type={'subj_type', 0x3d, 'dax=always'}}, {@fowner_lt}, {@obj_user={'obj_user', 0x3d, 'dax=always'}}, {@obj_type}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@permit_directio}, {@flag='nomand'}, {@smackfshat={'smackfshat', 0x3d, '++}$\'/'}}, {@obj_role={'obj_role', 0x3d, '\\{\x0f}'}}, {@fsmagic={'fsmagic', 0x3d, 0xf1}}]}, 0x1, 0x567, &(0x7f0000001080)="$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")

99.377008ms ago: executing program 6 (id=6009):
r0 = memfd_create(&(0x7f0000000040)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\xff\x0f\x00\x00\x00\x00\x00\x00\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&e\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96\x00\xfb\xc9z\xb1E~.\xcdm\xf2w\xd0\xc0\xe9\x810g\xceL\xbf3K\xbeI\xe0\xf4I\xa1\x92\x94\xcb\xac\xd9\xd8\xf5\x8c[b\x8fF\xefE\xb3il\xab\x86\xe4\xc7\xd8\xc1\xa0*;\xd6w\xe5\x9d\v;a\xfe\x9a\'\xcb\x82h.\xbb\xac#\xcc\xa4p&[\xf5', 0x6)
fsetxattr$security_selinux(r0, &(0x7f0000000480), 0x0, 0x0, 0x3)

98.271218ms ago: executing program 6 (id=6010):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x11f002, 0x0)
openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'syzkaller0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r2 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r1}, &(0x7f0000000040)=<r3=>0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r1, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r2, 0x44fd, 0x3, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)}, 0x20)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)

61.735509ms ago: executing program 7 (id=6011):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x11f002, 0x0)
openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'syzkaller0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x157]}, 0x8)
r2 = syz_io_uring_setup(0x6934, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xffffffff, 0x100000, 0x0, r1}, &(0x7f0000000040)=<r3=>0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r1, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
io_uring_enter(r2, 0x44fd, 0x3, 0x1, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)}, 0x20)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r6, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)

0s ago: executing program 5 (id=6012):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = io_uring_setup(0x756c, &(0x7f0000000140)={0x0, 0x49fd, 0x2, 0x20000001, 0x185})
r2 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e24, 0x4, @loopback}], 0x1c)
setsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={0x0, 0x265}, 0x8)
setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f0000000480)=ANY=[@ANYBLOB="211d00000000000007e6"], 0xf0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f00000000c0)=0x80, 0x4)
sendto$inet6(r2, &(0x7f0000000040)="00d8", 0x20a00, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback={0x200000000000000}, 0xc5f}, 0x1c)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='netlink_extack\x00', r3}, 0x18)
semget$private(0x0, 0x6, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
pipe2$9p(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x6, &(0x7f0000000180))
inotify_init()
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f00000003c0), 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r4}, 0x9)
socket$nl_netfilter(0x10, 0x3, 0xc)

kernel console output (not intermixed with test programs):

indirect mapped block 4294967295 (level 2)
[  297.788864][T19351] EXT4-fs (loop5): 1 truncate cleaned up
[  297.800455][T19351] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.816310][T19351] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.951685][T19383] netlink: 5 bytes leftover after parsing attributes in process `syz.5.5326'.
[  297.960979][T19383] 1��{X��: renamed from 
30��{X�� (while UP)
[  297.968675][T19383] A link change request failed with some changes committed already. Interface 
31��{X�� may have been left with an inconsistent configuration, please check.
[  298.037736][T19388] bond1: entered promiscuous mode
[  298.042835][T19388] bond1: entered allmulticast mode
[  298.048496][T19388] 8021q: adding VLAN 0 to HW filter on device bond1
[  298.057885][T19388] bond1 (unregistering): Released all slaves
[  298.068023][T19390] smc: net device bond0 applied user defined pnetid SYZ0
[  298.076235][T19390] smc: net device bond0 erased user defined pnetid SYZ0
[  298.170694][T19395] FAULT_INJECTION: forcing a failure.
[  298.170694][T19395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  298.183905][T19395] CPU: 0 UID: 0 PID: 19395 Comm: syz.0.5330 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  298.183939][T19395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  298.183954][T19395] Call Trace:
[  298.183962][T19395]  <TASK>
[  298.183973][T19395]  __dump_stack+0x1d/0x30
[  298.183999][T19395]  dump_stack_lvl+0xe8/0x140
[  298.184024][T19395]  dump_stack+0x15/0x1b
[  298.184074][T19395]  should_fail_ex+0x265/0x280
[  298.184111][T19395]  should_fail+0xb/0x20
[  298.184147][T19395]  should_fail_usercopy+0x1a/0x20
[  298.184227][T19395]  _copy_to_user+0x20/0xa0
[  298.184254][T19395]  simple_read_from_buffer+0xb5/0x130
[  298.184376][T19395]  proc_fail_nth_read+0x100/0x140
[  298.184444][T19395]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  298.184475][T19395]  vfs_read+0x19d/0x6f0
[  298.184545][T19395]  ? putname+0xda/0x100
[  298.184564][T19395]  ? __rcu_read_unlock+0x4f/0x70
[  298.184584][T19395]  ? __fget_files+0x184/0x1c0
[  298.184603][T19395]  ksys_read+0xda/0x1a0
[  298.184631][T19395]  __x64_sys_read+0x40/0x50
[  298.184669][T19395]  x64_sys_call+0x2d77/0x2fb0
[  298.184689][T19395]  do_syscall_64+0xd2/0x200
[  298.184705][T19395]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  298.184761][T19395]  ? clear_bhb_loop+0x40/0x90
[  298.184780][T19395]  ? clear_bhb_loop+0x40/0x90
[  298.184876][T19395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.184900][T19395] RIP: 0033:0x7fc53bfed3bc
[  298.184918][T19395] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  298.184941][T19395] RSP: 002b:00007fc53a64f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  298.184967][T19395] RAX: ffffffffffffffda RBX: 00007fc53c215fa0 RCX: 00007fc53bfed3bc
[  298.184983][T19395] RDX: 000000000000000f RSI: 00007fc53a64f0a0 RDI: 0000000000000003
[  298.185077][T19395] RBP: 00007fc53a64f090 R08: 0000000000000000 R09: 0000000000000000
[  298.185089][T19395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  298.185101][T19395] R13: 0000000000000001 R14: 00007fc53c215fa0 R15: 00007ffc2cb121a8
[  298.185122][T19395]  </TASK>
[  298.414646][T19397] loop0: detected capacity change from 0 to 512
[  298.624040][T19400] lo speed is unknown, defaulting to 1000
[  299.354836][T19420] loop3: detected capacity change from 0 to 1024
[  299.364308][T19420] EXT4-fs: Ignoring removed nobh option
[  299.372722][T19420] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  299.390555][T19420] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.5339: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  299.411662][T19420] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.5339: couldn't read orphan inode 11 (err -117)
[  299.424793][T19420] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  299.442196][T19420] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.5339: Invalid block bitmap block 0 in block_group 0
[  299.457476][T19420] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5339: Failed to acquire dquot type 0
[  299.469715][T19420] syz.3.5339 (19420): /proc/19420/oom_adj is deprecated, please use /proc/19420/oom_score_adj instead.
[  299.482965][T19420] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.5339: Invalid inode table block 8589934593 in block_group 0
[  299.512792][T19420] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.5339: Invalid inode table block 8589934593 in block_group 0
[  299.531155][T19420] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.5339: Invalid inode table block 8589934593 in block_group 0
[  299.613116][   T37] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm kworker/u8:2: Invalid inode table block 8589934593 in block_group 0
[  299.640557][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.922521][T19454] smc: net device bond0 applied user defined pnetid SYZ0
[  299.939398][T19454] smc: net device bond0 erased user defined pnetid SYZ0
[  300.111468][T19457] loop0: detected capacity change from 0 to 512
[  300.128348][T19457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.141186][T19457] ext4 filesystem being mounted at /503/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.158855][T19461] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  300.167985][T19461] vhci_hcd: default hub control req: 0200 v0000 i0000 l31125
[  300.436902][T19479] Falling back ldisc for ttyS3.
[  300.693264][T19495] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5361'.
[  300.915023][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.008439][T19511] loop7: detected capacity change from 0 to 2048
[  301.058240][T19511] Alternate GPT is invalid, using primary GPT.
[  301.064648][T19511]  loop7: p2 p3 p7
[  301.078578][   T29] kauditd_printk_skb: 1448 callbacks suppressed
[  301.078610][   T29] audit: type=1326 audit(1753008040.756:78389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53bfe5967 code=0x7ffc0000
[  301.110548][   T29] audit: type=1326 audit(1753008040.786:78390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53bf8ab89 code=0x7ffc0000
[  301.134277][   T29] audit: type=1326 audit(1753008040.786:78391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53bfe5967 code=0x7ffc0000
[  301.157996][   T29] audit: type=1326 audit(1753008040.786:78392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53bf8ab89 code=0x7ffc0000
[  301.181512][   T29] audit: type=1326 audit(1753008040.786:78393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  301.207519][   T29] audit: type=1326 audit(1753008040.866:78394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53bfe5967 code=0x7ffc0000
[  301.231208][   T29] audit: type=1326 audit(1753008040.866:78395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53bf8ab89 code=0x7ffc0000
[  301.254821][   T29] audit: type=1326 audit(1753008040.866:78396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  301.278649][   T29] audit: type=1326 audit(1753008040.866:78397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc53bfe5967 code=0x7ffc0000
[  301.302212][   T29] audit: type=1326 audit(1753008040.866:78398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19504 comm="syz.0.5367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc53bf8ab89 code=0x7ffc0000
[  301.520393][T19518] FAULT_INJECTION: forcing a failure.
[  301.520393][T19518] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  301.533793][T19518] CPU: 0 UID: 0 PID: 19518 Comm: syz.7.5372 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  301.533843][T19518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  301.533863][T19518] Call Trace:
[  301.533870][T19518]  <TASK>
[  301.533882][T19518]  __dump_stack+0x1d/0x30
[  301.533917][T19518]  dump_stack_lvl+0xe8/0x140
[  301.533948][T19518]  dump_stack+0x15/0x1b
[  301.534046][T19518]  should_fail_ex+0x265/0x280
[  301.534091][T19518]  should_fail_alloc_page+0xf2/0x100
[  301.534127][T19518]  __alloc_frozen_pages_noprof+0xff/0x360
[  301.534315][T19518]  alloc_pages_bulk_noprof+0x4b8/0x540
[  301.534350][T19518]  ? __kmalloc_noprof+0x1dd/0x3e0
[  301.534379][T19518]  ? copy_splice_read+0xc2/0x5f0
[  301.534486][T19518]  copy_splice_read+0xf3/0x5f0
[  301.534559][T19518]  ? __pfx_copy_splice_read+0x10/0x10
[  301.534594][T19518]  splice_direct_to_actor+0x26c/0x680
[  301.534623][T19518]  ? __pfx_direct_splice_actor+0x10/0x10
[  301.534703][T19518]  do_splice_direct+0xda/0x150
[  301.534738][T19518]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  301.534776][T19518]  do_sendfile+0x380/0x650
[  301.534834][T19518]  __x64_sys_sendfile64+0x105/0x150
[  301.534932][T19518]  x64_sys_call+0xb39/0x2fb0
[  301.534954][T19518]  do_syscall_64+0xd2/0x200
[  301.534976][T19518]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  301.535010][T19518]  ? clear_bhb_loop+0x40/0x90
[  301.535037][T19518]  ? clear_bhb_loop+0x40/0x90
[  301.535130][T19518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.535214][T19518] RIP: 0033:0x7fbc9309e9a9
[  301.535234][T19518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.535257][T19518] RSP: 002b:00007fbc916bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  301.535282][T19518] RAX: ffffffffffffffda RBX: 00007fbc932c6160 RCX: 00007fbc9309e9a9
[  301.535326][T19518] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[  301.535338][T19518] RBP: 00007fbc916bd090 R08: 0000000000000000 R09: 0000000000000000
[  301.535351][T19518] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000001
[  301.535367][T19518] R13: 0000000000000000 R14: 00007fbc932c6160 R15: 00007ffc1f5f1f98
[  301.535389][T19518]  </TASK>
[  301.833013][T19524] 9pnet_virtio: no channels available for device 127.0.0.1
[  301.869316][T19529] loop5: detected capacity change from 0 to 1024
[  301.889932][T19529] loop5: detected capacity change from 0 to 2048
[  301.920355][T19529] EXT4-fs (loop5): failed to initialize system zone (-117)
[  301.929430][T19529] EXT4-fs (loop5): mount failed
[  301.984246][T19529] __nla_validate_parse: 2 callbacks suppressed
[  301.984265][T19529] netlink: 10 bytes leftover after parsing attributes in process `syz.5.5378'.
[  302.011926][T19529] loop5: detected capacity change from 0 to 1024
[  302.065148][T19541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5382'.
[  302.297396][T19544] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5383'.
[  302.452965][T19550] batman_adv: batadv0: Removing interface: batadv_slave_0
[  302.531455][T19550] batman_adv: batadv0: Removing interface: batadv_slave_1
[  302.606689][T19550] batman_adv: batadv0: Removing interface: ipvlan2
[  302.668238][T19556] 9pnet_virtio: no channels available for device 127.0.0.1
[  302.846221][T19578] batadv_slave_1: entered promiscuous mode
[  302.864736][T19579] batadv_slave_1: left promiscuous mode
[  302.870565][T19558] lo speed is unknown, defaulting to 1000
[  302.912453][T19574] netlink: 4 bytes leftover after parsing attributes in process `��'.
[  302.931739][T19558] loop7: detected capacity change from 0 to 512
[  302.939546][T19558] journal_path: Lookup failure for './file0/../file0'
[  302.946437][T19558] EXT4-fs: error: could not find journal device path
[  302.956218][T19558] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5390'.
[  302.981511][T19594] 9pnet_virtio: no channels available for device 127.0.0.1
[  303.059471][T19602] FAULT_INJECTION: forcing a failure.
[  303.059471][T19602] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.072728][T19602] CPU: 1 UID: 0 PID: 19602 Comm: syz.5.5406 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  303.072778][T19602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  303.072790][T19602] Call Trace:
[  303.072797][T19602]  <TASK>
[  303.072806][T19602]  __dump_stack+0x1d/0x30
[  303.072866][T19602]  dump_stack_lvl+0xe8/0x140
[  303.072891][T19602]  dump_stack+0x15/0x1b
[  303.072923][T19602]  should_fail_ex+0x265/0x280
[  303.072961][T19602]  should_fail+0xb/0x20
[  303.072993][T19602]  should_fail_usercopy+0x1a/0x20
[  303.073069][T19602]  _copy_from_user+0x1c/0xb0
[  303.073092][T19602]  __sys_bpf+0x178/0x790
[  303.073188][T19602]  __x64_sys_bpf+0x41/0x50
[  303.073214][T19602]  x64_sys_call+0x2478/0x2fb0
[  303.073234][T19602]  do_syscall_64+0xd2/0x200
[  303.073252][T19602]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  303.073328][T19602]  ? clear_bhb_loop+0x40/0x90
[  303.073356][T19602]  ? clear_bhb_loop+0x40/0x90
[  303.073384][T19602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.073414][T19602] RIP: 0033:0x7fdb1f69e9a9
[  303.073433][T19602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.073455][T19602] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  303.073479][T19602] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  303.073554][T19602] RDX: 0000000000000090 RSI: 0000200000000200 RDI: 0000000000000005
[  303.073573][T19602] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  303.073605][T19602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.073617][T19602] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  303.073636][T19602]  </TASK>
[  303.474777][T19624] 9pnet_virtio: no channels available for device 127.0.0.1
[  303.838210][T19633] loop7: detected capacity change from 0 to 2048
[  303.929619][T19633] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  303.947047][T19633] EXT4-fs (loop7): shut down requested (0)
[  303.954883][T19633] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=12
[  303.964151][T19633] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop7 ino=12
[  303.985880][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.009049][T19646] bridge: RTM_NEWNEIGH with invalid ether address
[  304.039409][T19652] FAULT_INJECTION: forcing a failure.
[  304.039409][T19652] name failslab, interval 1, probability 0, space 0, times 0
[  304.052258][T19652] CPU: 1 UID: 0 PID: 19652 Comm: syz.7.5424 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  304.052291][T19652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.052315][T19652] Call Trace:
[  304.052322][T19652]  <TASK>
[  304.052331][T19652]  __dump_stack+0x1d/0x30
[  304.052378][T19652]  dump_stack_lvl+0xe8/0x140
[  304.052404][T19652]  dump_stack+0x15/0x1b
[  304.052426][T19652]  should_fail_ex+0x265/0x280
[  304.052489][T19652]  should_failslab+0x8c/0xb0
[  304.052594][T19652]  kmem_cache_alloc_noprof+0x50/0x310
[  304.052626][T19652]  ? getname_flags+0x80/0x3b0
[  304.052702][T19652]  ? kstrtoull+0x111/0x140
[  304.052736][T19652]  getname_flags+0x80/0x3b0
[  304.052764][T19652]  vfs_fstatat+0x43/0x170
[  304.052792][T19652]  __se_sys_newfstatat+0x55/0x260
[  304.052888][T19652]  ? __fget_files+0x184/0x1c0
[  304.052914][T19652]  ? fput+0x8f/0xc0
[  304.052957][T19652]  ? ksys_write+0x192/0x1a0
[  304.052999][T19652]  __x64_sys_newfstatat+0x55/0x70
[  304.053109][T19652]  x64_sys_call+0x2c22/0x2fb0
[  304.053189][T19652]  do_syscall_64+0xd2/0x200
[  304.053206][T19652]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  304.053229][T19652]  ? clear_bhb_loop+0x40/0x90
[  304.053247][T19652]  ? clear_bhb_loop+0x40/0x90
[  304.053278][T19652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.053296][T19652] RIP: 0033:0x7fbc9309e9a9
[  304.053311][T19652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.053328][T19652] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  304.053345][T19652] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  304.053356][T19652] RDX: 0000000000000000 RSI: 0000200000000b00 RDI: ffffffffffffff9c
[  304.053367][T19652] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  304.053378][T19652] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000001
[  304.053389][T19652] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  304.053478][T19652]  </TASK>
[  304.316366][T19658] 9pnet_virtio: no channels available for device 127.0.0.1
[  304.349677][T19662] loop3: detected capacity change from 0 to 1024
[  304.371813][T19662] loop3: detected capacity change from 0 to 2048
[  304.398587][T19662] EXT4-fs (loop3): failed to initialize system zone (-117)
[  304.405983][T19662] EXT4-fs (loop3): mount failed
[  304.442895][T19662] loop3: detected capacity change from 0 to 1024
[  304.472051][T19671] loop3: detected capacity change from 0 to 512
[  304.489194][T19671] EXT4-fs (loop3): orphan cleanup on readonly fs
[  304.498366][T19671] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5431: bg 0: block 248: padding at end of block bitmap is not set
[  304.516919][T19671] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5431: Failed to acquire dquot type 1
[  304.584336][T19671] EXT4-fs (loop3): 1 truncate cleaned up
[  304.765725][T19681] loop7: detected capacity change from 0 to 128
[  304.910692][T19671] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  304.932515][T19671] netlink: 52 bytes leftover after parsing attributes in process `syz.3.5431'.
[  304.935288][T19686] netlink: 52 bytes leftover after parsing attributes in process `syz.7.5437'.
[  304.961666][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.988450][T19685] infiniband syz!: set down
[  304.993038][T19685] infiniband syz!: added team_slave_0
[  305.000338][T19688] 9pnet_virtio: no channels available for device 127.0.0.1
[  305.018995][T19685] RDS/IB: syz!: added
[  305.024365][T19685] smc: adding ib device syz! with port count 1
[  305.032598][T19685] smc:    ib device syz! port 1 has pnetid 
[  305.040137][T19695] loop7: detected capacity change from 0 to 128
[  305.052599][T19695] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.070787][T19695] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.101764][T19699] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.5442' sets config #1
[  305.193747][T18508] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.278757][T19711] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5446'.
[  305.290363][T19708] loop5: detected capacity change from 0 to 256
[  305.300931][T19711] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5446'.
[  305.327664][T19711] netlink: 156 bytes leftover after parsing attributes in process `syz.3.5446'.
[  305.353260][T19711] lo speed is unknown, defaulting to 1000
[  305.379206][T19715] loop5: detected capacity change from 0 to 128
[  305.416709][T19719] 9pnet_virtio: no channels available for device 127.0.0.1
[  305.692606][T19747] loop7: detected capacity change from 0 to 512
[  305.721379][T19747] EXT4-fs: Invalid want_extra_isize 5
[  305.738120][T19747] program syz.7.5464 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  305.803399][T19758] SELinux: failed to load policy
[  305.824675][T19756] lo speed is unknown, defaulting to 1000
[  306.036998][T19780] loop5: detected capacity change from 0 to 1024
[  306.061376][T19780] loop5: detected capacity change from 0 to 2048
[  306.076302][T19780] EXT4-fs (loop5): failed to initialize system zone (-117)
[  306.083891][T19780] EXT4-fs (loop5): mount failed
[  306.089866][   T29] kauditd_printk_skb: 1084 callbacks suppressed
[  306.089879][   T29] audit: type=1326 audit(1753008045.756:79481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbc93095967 code=0x7ffc0000
[  306.119826][   T29] audit: type=1326 audit(1753008045.756:79482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbc9303ab89 code=0x7ffc0000
[  306.143436][   T29] audit: type=1326 audit(1753008045.756:79483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fbc9309e9a9 code=0x7ffc0000
[  306.167079][   T29] audit: type=1326 audit(1753008045.766:79484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbc93095967 code=0x7ffc0000
[  306.190863][   T29] audit: type=1326 audit(1753008045.766:79485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbc9303ab89 code=0x7ffc0000
[  306.214471][   T29] audit: type=1326 audit(1753008045.766:79486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19781 comm="syz.7.5478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fbc9309e9a9 code=0x7ffc0000
[  306.241076][   T29] audit: type=1326 audit(1753008045.766:79487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.3.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6741875967 code=0x7ffc0000
[  306.264666][   T29] audit: type=1326 audit(1753008045.766:79488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.3.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f674181ab89 code=0x7ffc0000
[  306.264762][   T29] audit: type=1326 audit(1753008045.766:79489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.3.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  306.264792][   T29] audit: type=1326 audit(1753008045.776:79490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19765 comm="syz.3.5471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6741875967 code=0x7ffc0000
[  306.351491][T19780] loop5: detected capacity change from 0 to 1024
[  306.399838][T19801] FAULT_INJECTION: forcing a failure.
[  306.399838][T19801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  306.413145][T19801] CPU: 1 UID: 0 PID: 19801 Comm: syz.5.5482 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  306.413230][T19801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  306.413243][T19801] Call Trace:
[  306.413250][T19801]  <TASK>
[  306.413258][T19801]  __dump_stack+0x1d/0x30
[  306.413279][T19801]  dump_stack_lvl+0xe8/0x140
[  306.413299][T19801]  dump_stack+0x15/0x1b
[  306.413350][T19801]  should_fail_ex+0x265/0x280
[  306.413382][T19801]  should_fail+0xb/0x20
[  306.413417][T19801]  should_fail_usercopy+0x1a/0x20
[  306.413449][T19801]  _copy_from_iter+0xcf/0xe40
[  306.413514][T19801]  ? __build_skb_around+0x1a0/0x200
[  306.413544][T19801]  ? __alloc_skb+0x223/0x320
[  306.413590][T19801]  netlink_sendmsg+0x471/0x6b0
[  306.413612][T19801]  ? __pfx_netlink_sendmsg+0x10/0x10
[  306.413632][T19801]  __sock_sendmsg+0x142/0x180
[  306.413808][T19801]  ____sys_sendmsg+0x31e/0x4e0
[  306.413885][T19801]  ___sys_sendmsg+0x17b/0x1d0
[  306.413987][T19801]  __x64_sys_sendmsg+0xd4/0x160
[  306.414025][T19801]  x64_sys_call+0x2999/0x2fb0
[  306.414047][T19801]  do_syscall_64+0xd2/0x200
[  306.414070][T19801]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  306.414131][T19801]  ? clear_bhb_loop+0x40/0x90
[  306.414152][T19801]  ? clear_bhb_loop+0x40/0x90
[  306.414174][T19801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.414260][T19801] RIP: 0033:0x7fdb1f69e9a9
[  306.414275][T19801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  306.414294][T19801] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  306.414313][T19801] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  306.414326][T19801] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[  306.414338][T19801] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  306.414351][T19801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.414363][T19801] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  306.414461][T19801]  </TASK>
[  306.627630][T19797] loop0: detected capacity change from 0 to 512
[  306.634356][T19797] EXT4-fs: Ignoring removed i_version option
[  306.642600][T19797] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  306.651832][T19797] EXT4-fs (loop0): orphan cleanup on readonly fs
[  306.660104][T19803] sd 0:0:1:0: device reset
[  306.660232][T19797] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5481: bg 0: block 248: padding at end of block bitmap is not set
[  306.680252][T19797] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.5481: Failed to acquire dquot type 1
[  306.692343][T19797] EXT4-fs (loop0): 1 truncate cleaned up
[  306.700035][T19797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  306.714342][T19797] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  306.746288][T19797] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  306.755321][T19797] ext4 filesystem being remounted at /526/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  306.849821][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.998846][T19833] lo speed is unknown, defaulting to 1000
[  307.109890][T19828] __nla_validate_parse: 7 callbacks suppressed
[  307.109908][T19828] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5493'.
[  307.164638][T19840] 9pnet_virtio: no channels available for device 127.0.0.1
[  307.210817][T19844] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5498'.
[  307.362857][T19857] loop5: detected capacity change from 0 to 512
[  307.377088][T19857] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  307.389745][T19857] ext4 filesystem being mounted at /428/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.404620][T19857] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5503'.
[  307.488470][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  307.604726][T19865] netlink: 124 bytes leftover after parsing attributes in process `syz.5.5505'.
[  307.634069][T19869] FAULT_INJECTION: forcing a failure.
[  307.634069][T19869] name failslab, interval 1, probability 0, space 0, times 0
[  307.646874][T19869] CPU: 1 UID: 0 PID: 19869 Comm: syz.5.5506 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  307.646910][T19869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  307.646926][T19869] Call Trace:
[  307.646935][T19869]  <TASK>
[  307.646944][T19869]  __dump_stack+0x1d/0x30
[  307.646965][T19869]  dump_stack_lvl+0xe8/0x140
[  307.646985][T19869]  dump_stack+0x15/0x1b
[  307.647070][T19869]  should_fail_ex+0x265/0x280
[  307.647100][T19869]  should_failslab+0x8c/0xb0
[  307.647127][T19869]  kmem_cache_alloc_noprof+0x50/0x310
[  307.647184][T19869]  ? getname_flags+0x80/0x3b0
[  307.647203][T19869]  ? __rcu_read_unlock+0x4f/0x70
[  307.647227][T19869]  getname_flags+0x80/0x3b0
[  307.647254][T19869]  io_renameat_prep+0x105/0x1b0
[  307.647286][T19869]  io_submit_sqes+0x5e5/0xfd0
[  307.647343][T19869]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  307.647387][T19869]  ? 0xffffffff81000000
[  307.647401][T19869]  ? __rcu_read_unlock+0x4f/0x70
[  307.647422][T19869]  ? get_pid_task+0x96/0xd0
[  307.647446][T19869]  ? proc_fail_nth_write+0x12d/0x160
[  307.647581][T19869]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  307.647620][T19869]  ? vfs_write+0x75e/0x8e0
[  307.647659][T19869]  ? __rcu_read_unlock+0x4f/0x70
[  307.647686][T19869]  ? __fget_files+0x184/0x1c0
[  307.647769][T19869]  ? fput+0x8f/0xc0
[  307.647800][T19869]  __x64_sys_io_uring_enter+0x78/0x90
[  307.647839][T19869]  x64_sys_call+0x28c8/0x2fb0
[  307.647867][T19869]  do_syscall_64+0xd2/0x200
[  307.647919][T19869]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  307.647994][T19869]  ? clear_bhb_loop+0x40/0x90
[  307.648022][T19869]  ? clear_bhb_loop+0x40/0x90
[  307.648042][T19869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.648060][T19869] RIP: 0033:0x7fdb1f69e9a9
[  307.648074][T19869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.648090][T19869] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  307.648154][T19869] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  307.648165][T19869] RDX: 00000000000096f0 RSI: 0000000010007b0f RDI: 0000000000000005
[  307.648229][T19869] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  307.648241][T19869] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  307.648251][T19869] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  307.648330][T19869]  </TASK>
[  307.919740][T19872] 9pnet_virtio: no channels available for device 127.0.0.1
[  308.117322][T19879] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  308.174042][T19883] netlink: 96 bytes leftover after parsing attributes in process `syz.6.5511'.
[  308.205658][T19892] loop7: detected capacity change from 0 to 4096
[  308.226794][T19892] /dev/loop7: Can't open blockdev
[  308.251135][T19898] loop0: detected capacity change from 0 to 1024
[  308.284822][T19898] loop0: detected capacity change from 0 to 2048
[  308.311078][T19898] EXT4-fs (loop0): failed to initialize system zone (-117)
[  308.324526][T19898] EXT4-fs (loop0): mount failed
[  308.352212][T19898] loop0: detected capacity change from 0 to 1024
[  308.394162][T19910] 9pnet_virtio: no channels available for device 127.0.0.1
[  308.468765][T19925] netlink: 5 bytes leftover after parsing attributes in process `syz.0.5530'.
[  308.479810][T19925] 1��{X��: renamed from 
30��{X�� (while UP)
[  308.488666][T19925] A link change request failed with some changes committed already. Interface 
31��{X�� may have been left with an inconsistent configuration, please check.
[  308.521698][T19931] FAULT_INJECTION: forcing a failure.
[  308.521698][T19931] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.534979][T19931] CPU: 1 UID: 0 PID: 19931 Comm: syz.3.5529 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  308.535077][T19931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  308.535093][T19931] Call Trace:
[  308.535100][T19931]  <TASK>
[  308.535149][T19931]  __dump_stack+0x1d/0x30
[  308.535169][T19931]  dump_stack_lvl+0xe8/0x140
[  308.535197][T19931]  dump_stack+0x15/0x1b
[  308.535295][T19931]  should_fail_ex+0x265/0x280
[  308.535331][T19931]  should_fail+0xb/0x20
[  308.535440][T19931]  should_fail_usercopy+0x1a/0x20
[  308.535479][T19931]  _copy_from_user+0x1c/0xb0
[  308.535503][T19931]  core_sys_select+0x1ce/0x6e0
[  308.535556][T19931]  ? set_user_sigmask+0x84/0x190
[  308.535681][T19931]  __se_sys_pselect6+0x216/0x280
[  308.535756][T19931]  __x64_sys_pselect6+0x78/0x90
[  308.535795][T19931]  x64_sys_call+0x1caa/0x2fb0
[  308.535821][T19931]  do_syscall_64+0xd2/0x200
[  308.535901][T19931]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  308.535929][T19931]  ? clear_bhb_loop+0x40/0x90
[  308.535956][T19931]  ? clear_bhb_loop+0x40/0x90
[  308.535983][T19931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.536019][T19931] RIP: 0033:0x7f674187e9a9
[  308.536033][T19931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.536051][T19931] RSP: 002b:00007f673febe038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  308.536142][T19931] RAX: ffffffffffffffda RBX: 00007f6741aa6080 RCX: 00007f674187e9a9
[  308.536159][T19931] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000040
[  308.536175][T19931] RBP: 00007f673febe090 R08: 0000000000000000 R09: 0000000000000000
[  308.536291][T19931] R10: 0000200000000240 R11: 0000000000000246 R12: 0000000000000001
[  308.536306][T19931] R13: 0000000000000001 R14: 00007f6741aa6080 R15: 00007ffebdfbe9c8
[  308.536326][T19931]  </TASK>
[  308.725673][T19933] smc: net device bond0 applied user defined pnetid SYZ0
[  308.733622][T19933] smc: net device bond0 erased user defined pnetid SYZ0
[  308.903150][T19939] loop7: detected capacity change from 0 to 1024
[  308.920420][T19939] loop7: detected capacity change from 0 to 2048
[  308.936681][T19939] EXT4-fs (loop7): failed to initialize system zone (-117)
[  308.944031][T19939] EXT4-fs (loop7): mount failed
[  308.960201][T19939] loop7: detected capacity change from 0 to 1024
[  309.036790][T19947] 9pnet: Could not find request transport: rd�	
[  309.062199][T19954] FAULT_INJECTION: forcing a failure.
[  309.062199][T19954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.075422][T19954] CPU: 0 UID: 0 PID: 19954 Comm: syz.7.5540 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  309.075457][T19954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.075472][T19954] Call Trace:
[  309.075478][T19954]  <TASK>
[  309.075486][T19954]  __dump_stack+0x1d/0x30
[  309.075537][T19954]  dump_stack_lvl+0xe8/0x140
[  309.075562][T19954]  dump_stack+0x15/0x1b
[  309.075692][T19954]  should_fail_ex+0x265/0x280
[  309.075810][T19954]  should_fail+0xb/0x20
[  309.075857][T19954]  should_fail_usercopy+0x1a/0x20
[  309.075896][T19954]  _copy_from_iter+0xcf/0xe40
[  309.075948][T19954]  ? __build_skb_around+0x1a0/0x200
[  309.075987][T19954]  ? __alloc_skb+0x223/0x320
[  309.076086][T19954]  netlink_sendmsg+0x471/0x6b0
[  309.076115][T19954]  ? __pfx_netlink_sendmsg+0x10/0x10
[  309.076140][T19954]  __sock_sendmsg+0x142/0x180
[  309.076189][T19954]  ____sys_sendmsg+0x31e/0x4e0
[  309.076236][T19954]  ___sys_sendmsg+0x17b/0x1d0
[  309.076304][T19954]  __x64_sys_sendmsg+0xd4/0x160
[  309.076352][T19954]  x64_sys_call+0x2999/0x2fb0
[  309.076379][T19954]  do_syscall_64+0xd2/0x200
[  309.076406][T19954]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  309.076440][T19954]  ? clear_bhb_loop+0x40/0x90
[  309.076466][T19954]  ? clear_bhb_loop+0x40/0x90
[  309.076558][T19954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.076583][T19954] RIP: 0033:0x7fbc9309e9a9
[  309.076602][T19954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.076624][T19954] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  309.076649][T19954] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  309.076715][T19954] RDX: 000000003000c81c RSI: 0000200000000000 RDI: 0000000000000003
[  309.076730][T19954] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  309.076746][T19954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.076761][T19954] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  309.076788][T19954]  </TASK>
[  309.118598][T19958] tipc: Started in network mode
[  309.118646][T19958] tipc: Node identity 9e0d7dc691df, cluster identity 4711
[  309.118682][T19958] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  309.133482][T19957] tipc: Disabling bearer <eth:syzkaller0>
[  309.331088][T19961] loop3: detected capacity change from 0 to 512
[  309.339656][T19961] ext4: Unknown parameter 'pcr'
[  309.433419][T19986] 9pnet: Could not find request transport: rd�	
[  309.456285][T19992] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5554'.
[  309.480183][T19998] FAULT_INJECTION: forcing a failure.
[  309.480183][T19998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.493368][T19998] CPU: 0 UID: 0 PID: 19998 Comm: +}[@ Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  309.493494][T19998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.493522][T19998] Call Trace:
[  309.493529][T19998]  <TASK>
[  309.493537][T19998]  __dump_stack+0x1d/0x30
[  309.493560][T19998]  dump_stack_lvl+0xe8/0x140
[  309.493585][T19998]  dump_stack+0x15/0x1b
[  309.493605][T19998]  should_fail_ex+0x265/0x280
[  309.493704][T19998]  should_fail+0xb/0x20
[  309.493736][T19998]  should_fail_usercopy+0x1a/0x20
[  309.493831][T19998]  _copy_from_user+0x1c/0xb0
[  309.493857][T19998]  __sys_bpf+0x178/0x790
[  309.493976][T19998]  __x64_sys_bpf+0x41/0x50
[  309.494007][T19998]  x64_sys_call+0x2478/0x2fb0
[  309.494053][T19998]  do_syscall_64+0xd2/0x200
[  309.494100][T19998]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  309.494125][T19998]  ? clear_bhb_loop+0x40/0x90
[  309.494167][T19998]  ? clear_bhb_loop+0x40/0x90
[  309.494189][T19998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.494218][T19998] RIP: 0033:0x7fbc9309e9a9
[  309.494240][T19998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.494263][T19998] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  309.494288][T19998] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  309.494351][T19998] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000012
[  309.494363][T19998] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  309.494407][T19998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.494422][T19998] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  309.494446][T19998]  </TASK>
[  309.828576][T20015] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=20015 comm=syz.7.5559
[  309.856363][T20013] loop7: detected capacity change from 0 to 4096
[  309.864985][T20013] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.879909][T20013] EXT4-fs error (device loop7): ext4_get_first_dir_block:3545: inode #12: block 80: comm syz.7.5559: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  309.900566][T20013] EXT4-fs (loop7): Remounting filesystem read-only
[  310.224322][T20024] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5563'.
[  310.362261][T20040] 9pnet: Could not find request transport: rd�	
[  310.413349][T20042] loop0: detected capacity change from 0 to 512
[  310.419158][T20050] FAULT_INJECTION: forcing a failure.
[  310.419158][T20050] name failslab, interval 1, probability 0, space 0, times 0
[  310.432579][T20050] CPU: 1 UID: 0 PID: 20050 Comm: syz.5.5574 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  310.432678][T20050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.432693][T20050] Call Trace:
[  310.432701][T20050]  <TASK>
[  310.432717][T20050]  __dump_stack+0x1d/0x30
[  310.432742][T20050]  dump_stack_lvl+0xe8/0x140
[  310.432764][T20050]  dump_stack+0x15/0x1b
[  310.432783][T20050]  should_fail_ex+0x265/0x280
[  310.432880][T20050]  should_failslab+0x8c/0xb0
[  310.432906][T20050]  __kvmalloc_node_noprof+0x123/0x4e0
[  310.432936][T20050]  ? alloc_netdev_mqs+0x8b7/0xab0
[  310.433023][T20050]  ? __kmalloc_cache_noprof+0x22e/0x320
[  310.433056][T20050]  alloc_netdev_mqs+0x8b7/0xab0
[  310.433250][T20050]  rtnl_create_link+0x239/0x710
[  310.433292][T20050]  rtnl_newlink_create+0x14c/0x620
[  310.433326][T20050]  ? security_capable+0x83/0x90
[  310.433387][T20050]  ? netlink_ns_capable+0x86/0xa0
[  310.433419][T20050]  rtnl_newlink+0xf29/0x12d0
[  310.433451][T20050]  ? xas_load+0x413/0x430
[  310.433512][T20050]  ? __rcu_read_unlock+0x4f/0x70
[  310.433537][T20050]  ? xa_load+0xb1/0xe0
[  310.433558][T20050]  ? __rcu_read_unlock+0x4f/0x70
[  310.433580][T20050]  ? avc_has_perm_noaudit+0x1b1/0x200
[  310.433611][T20050]  ? selinux_capable+0x1f9/0x270
[  310.433718][T20050]  ? security_capable+0x83/0x90
[  310.433763][T20050]  ? ns_capable+0x7d/0xb0
[  310.433839][T20050]  ? __pfx_rtnl_newlink+0x10/0x10
[  310.433867][T20050]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  310.433953][T20050]  ? avc_has_perm_noaudit+0x1b1/0x200
[  310.433990][T20050]  netlink_rcv_skb+0x120/0x220
[  310.434021][T20050]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  310.434120][T20050]  rtnetlink_rcv+0x1c/0x30
[  310.434146][T20050]  netlink_unicast+0x5a5/0x680
[  310.434206][T20050]  netlink_sendmsg+0x58b/0x6b0
[  310.434232][T20050]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.434282][T20050]  __sock_sendmsg+0x142/0x180
[  310.434313][T20050]  ____sys_sendmsg+0x31e/0x4e0
[  310.434406][T20050]  ___sys_sendmsg+0x17b/0x1d0
[  310.434513][T20050]  __x64_sys_sendmsg+0xd4/0x160
[  310.434552][T20050]  x64_sys_call+0x2999/0x2fb0
[  310.434635][T20050]  do_syscall_64+0xd2/0x200
[  310.434653][T20050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  310.434731][T20050]  ? clear_bhb_loop+0x40/0x90
[  310.434762][T20050]  ? clear_bhb_loop+0x40/0x90
[  310.434800][T20050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.434821][T20050] RIP: 0033:0x7fdb1f69e9a9
[  310.434837][T20050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.434856][T20050] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.434945][T20050] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  310.434958][T20050] RDX: 0000000000000040 RSI: 0000200000000340 RDI: 0000000000000003
[  310.434982][T20050] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  310.434995][T20050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  310.435057][T20050] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  310.435077][T20050]  </TASK>
[  310.438069][T20051] loop3: detected capacity change from 0 to 164
[  310.791620][T20042] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.804356][T20042] ext4 filesystem being mounted at /537/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.834776][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.838875][T20067] loop5: detected capacity change from 0 to 512
[  310.855462][T20067] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  310.868980][T20067] EXT4-fs (loop5): 1 truncate cleaned up
[  310.876274][T20067] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.942299][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.137008][T20088] 9pnet_fd: Insufficient options for proto=fd
[  311.202422][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.257454][T20081] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5586'.
[  311.270225][   T29] kauditd_printk_skb: 1402 callbacks suppressed
[  311.270245][   T29] audit: type=1326 audit(1753008050.946:80891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.313141][   T29] audit: type=1326 audit(1753008050.946:80892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.319808][T20096] loop5: detected capacity change from 0 to 128
[  311.336835][   T29] audit: type=1326 audit(1753008050.946:80893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.367026][   T29] audit: type=1326 audit(1753008050.946:80894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.390808][   T29] audit: type=1326 audit(1753008050.946:80895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.392720][T20096] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (52844!=39978)
[  311.414656][   T29] audit: type=1326 audit(1753008050.956:80896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.426838][T20102] FAULT_INJECTION: forcing a failure.
[  311.426838][T20102] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  311.448313][   T29] audit: type=1326 audit(1753008050.956:80897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.461505][T20102] CPU: 0 UID: 0 PID: 20102 Comm: syz.7.5595 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  311.461605][T20102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  311.461623][T20102] Call Trace:
[  311.461710][T20102]  <TASK>
[  311.461722][T20102]  __dump_stack+0x1d/0x30
[  311.461751][T20102]  dump_stack_lvl+0xe8/0x140
[  311.461797][T20102]  dump_stack+0x15/0x1b
[  311.461821][T20102]  should_fail_ex+0x265/0x280
[  311.461864][T20102]  should_fail_alloc_page+0xf2/0x100
[  311.461897][T20102]  __alloc_frozen_pages_noprof+0xff/0x360
[  311.461973][T20102]  alloc_pages_mpol+0xb3/0x250
[  311.462148][T20102]  vma_alloc_folio_noprof+0x1aa/0x300
[  311.462192][T20102]  handle_mm_fault+0xec2/0x2be0
[  311.462225][T20102]  ? mas_walk+0xf2/0x120
[  311.462276][T20102]  do_user_addr_fault+0x636/0x1090
[  311.462353][T20102]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  311.462468][T20102]  exc_page_fault+0x62/0xa0
[  311.462578][T20102]  asm_exc_page_fault+0x26/0x30
[  311.462605][T20102] RIP: 0033:0x7fbc92f60ca3
[  311.462626][T20102] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  311.462709][T20102] RSP: 002b:00007fbc916fe4a0 EFLAGS: 00010202
[  311.462731][T20102] RAX: 000000000000a000 RBX: 00007fbc916fe540 RCX: 00007fbc892df000
[  311.462747][T20102] RDX: 00007fbc916fe6e0 RSI: 0000000000000000 RDI: 00007fbc916fe5e0
[  311.462765][T20102] RBP: 0000000000000050 R08: 0000000000000006 R09: 0000000000000011
[  311.462782][T20102] R10: 000000000000001c R11: 00007fbc916fe540 R12: 0000000000000001
[  311.462871][T20102] R13: 00007fbc9313c7c0 R14: 0000000000000001 R15: 00007fbc916fe5e0
[  311.462926][T20102]  </TASK>
[  311.462939][T20102] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  311.485213][   T29] audit: type=1326 audit(1753008050.956:80898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.501760][T20102] loop7: detected capacity change from 0 to 164
[  311.507773][   T29] audit: type=1326 audit(1753008050.956:80899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm="syz.0.5591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.507802][   T29] audit: type=1326 audit(1753008050.956:80900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20097 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  311.572045][T20096] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a803c018, mo2=0002]
[  311.749879][T20096] System zones: 1-3, 19-19, 35-36
[  311.755739][T20096] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  311.779309][T20096] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5593'.
[  311.819649][T14166] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  311.966617][T20126] loop7: detected capacity change from 0 to 1024
[  311.998742][T20126] loop7: detected capacity change from 0 to 2048
[  312.017607][T20126] EXT4-fs (loop7): failed to initialize system zone (-117)
[  312.025011][T20126] EXT4-fs (loop7): mount failed
[  312.054086][T20126] loop7: detected capacity change from 0 to 1024
[  312.054661][T20138] 9pnet: Could not find request transport: rd
[  312.097688][T20144] tipc: Cannot configure node identity twice
[  312.548771][T20173] FAULT_INJECTION: forcing a failure.
[  312.548771][T20173] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.561955][T20173] CPU: 0 UID: 0 PID: 20173 Comm: syz.0.5621 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  312.562039][T20173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  312.562056][T20173] Call Trace:
[  312.562063][T20173]  <TASK>
[  312.562073][T20173]  __dump_stack+0x1d/0x30
[  312.562096][T20173]  dump_stack_lvl+0xe8/0x140
[  312.562115][T20173]  dump_stack+0x15/0x1b
[  312.562134][T20173]  should_fail_ex+0x265/0x280
[  312.562250][T20173]  should_fail+0xb/0x20
[  312.562280][T20173]  should_fail_usercopy+0x1a/0x20
[  312.562389][T20173]  _copy_from_user+0x1c/0xb0
[  312.562415][T20173]  ___sys_recvmsg+0xaa/0x370
[  312.562434][T20173]  ? _parse_integer+0x27/0x40
[  312.562471][T20173]  do_recvmmsg+0x1ef/0x540
[  312.562503][T20173]  ? fput+0x8f/0xc0
[  312.562608][T20173]  __x64_sys_recvmmsg+0xe5/0x170
[  312.562629][T20173]  x64_sys_call+0x1c6a/0x2fb0
[  312.562650][T20173]  do_syscall_64+0xd2/0x200
[  312.562667][T20173]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  312.562720][T20173]  ? clear_bhb_loop+0x40/0x90
[  312.562748][T20173]  ? clear_bhb_loop+0x40/0x90
[  312.562775][T20173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.562795][T20173] RIP: 0033:0x7fc53bfee9a9
[  312.562810][T20173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.562926][T20173] RSP: 002b:00007fc53a62e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  312.562997][T20173] RAX: ffffffffffffffda RBX: 00007fc53c216080 RCX: 00007fc53bfee9a9
[  312.563010][T20173] RDX: 0000000000000001 RSI: 0000200000004580 RDI: 0000000000000003
[  312.563022][T20173] RBP: 00007fc53a62e090 R08: 0000000000000000 R09: 0000000000000000
[  312.563033][T20173] R10: 0000000040000001 R11: 0000000000000246 R12: 0000000000000001
[  312.563083][T20173] R13: 0000000000000000 R14: 00007fc53c216080 R15: 00007ffc2cb121a8
[  312.563106][T20173]  </TASK>
[  312.787362][T20177] __nla_validate_parse: 2 callbacks suppressed
[  312.787380][T20177] netlink: 5 bytes leftover after parsing attributes in process `syz.7.5623'.
[  312.807692][T20177] 0��{X��: renamed from gretap0 (while UP)
[  312.816974][T20177] 0��{X��: entered allmulticast mode
[  312.825102][T20177] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  312.911491][T20182] smc: net device bond0 applied user defined pnetid SYZ0
[  312.920764][T20182] smc: net device bond0 erased user defined pnetid SYZ0
[  313.159880][T20200] FAULT_INJECTION: forcing a failure.
[  313.159880][T20200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.173154][T20200] CPU: 0 UID: 0 PID: 20200 Comm: syz.5.5630 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  313.173184][T20200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  313.173262][T20200] Call Trace:
[  313.173268][T20200]  <TASK>
[  313.173275][T20200]  __dump_stack+0x1d/0x30
[  313.173295][T20200]  dump_stack_lvl+0xe8/0x140
[  313.173314][T20200]  dump_stack+0x15/0x1b
[  313.173333][T20200]  should_fail_ex+0x265/0x280
[  313.173397][T20200]  should_fail+0xb/0x20
[  313.173456][T20200]  should_fail_usercopy+0x1a/0x20
[  313.173488][T20200]  copy_to_user_nofault+0x7f/0x120
[  313.173526][T20200]  bpf_probe_write_user+0x83/0xc0
[  313.173578][T20200]  bpf_prog_19072b5a3fcf5d64+0x41/0x49
[  313.173596][T20200]  bpf_trace_run3+0x199/0x1d0
[  313.173623][T20200]  __bpf_trace_mmap_lock_acquire_returned+0x28/0x40
[  313.173703][T20200]  lock_mm_and_find_vma+0x36d/0x400
[  313.173742][T20200]  do_user_addr_fault+0x278/0x1090
[  313.173793][T20200]  ? mod_memcg_state+0x1eb/0x2c0
[  313.173845][T20200]  exc_page_fault+0x62/0xa0
[  313.173879][T20200]  asm_exc_page_fault+0x26/0x30
[  313.173902][T20200] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  313.173929][T20200] Code: f1 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 0f f1 01 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  313.173967][T20200] RSP: 0018:ffffc90001267c90 EFLAGS: 00050206
[  313.173982][T20200] RAX: ffff888118bf4b98 RBX: 0000000000000068 RCX: 0000000000000068
[  313.173998][T20200] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900015a5048
[  313.174013][T20200] RBP: 0000000000000000 R08: 0000000000000409 R09: 0000000000000000
[  313.174029][T20200] R10: 0001c900015a5048 R11: 0001c900015a50af R12: ffffc900015a5048
[  313.174046][T20200] R13: ffffc900015a5000 R14: ffffc900015a5048 R15: 0000000000000000
[  313.174074][T20200]  _copy_from_user+0x6f/0xb0
[  313.174095][T20200]  copy_from_bpfptr+0x5c/0x90
[  313.174133][T20200]  bpf_prog_load+0x74a/0x1070
[  313.174182][T20200]  ? security_bpf+0x2b/0x90
[  313.174205][T20200]  __sys_bpf+0x51d/0x790
[  313.174283][T20200]  __x64_sys_bpf+0x41/0x50
[  313.174316][T20200]  x64_sys_call+0x2478/0x2fb0
[  313.174339][T20200]  do_syscall_64+0xd2/0x200
[  313.174356][T20200]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  313.174427][T20200]  ? clear_bhb_loop+0x40/0x90
[  313.174453][T20200]  ? clear_bhb_loop+0x40/0x90
[  313.174478][T20200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.174497][T20200] RIP: 0033:0x7fdb1f69e9a9
[  313.174512][T20200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.174535][T20200] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  313.174568][T20200] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  313.174584][T20200] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000005
[  313.174599][T20200] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  313.174611][T20200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.174622][T20200] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  313.174697][T20200]  </TASK>
[  313.563092][T20208] netlink: 5 bytes leftover after parsing attributes in process `syz.5.5634'.
[  313.572390][T20208] 0��{X��: renamed from 
31��{X�� (while UP)
[  313.580694][T20208] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  313.797657][T20217] smc: net device bond0 applied user defined pnetid SYZ0
[  313.804870][T20223] smc: net device bond0 erased user defined pnetid SYZ0
[  314.005741][T20241] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5648'.
[  314.019320][T20241] bridge0: port 1(macvlan2) entered blocking state
[  314.026074][T20241] bridge0: port 1(macvlan2) entered disabled state
[  314.042324][T20241] macvlan2: entered allmulticast mode
[  314.047846][T20241] bridge0: entered allmulticast mode
[  314.055019][T20241] macvlan2: left allmulticast mode
[  314.060288][T20241] bridge0: left allmulticast mode
[  314.106930][T20245] loop7: detected capacity change from 0 to 128
[  314.115538][T20245] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  314.123396][T20245] FAT-fs (loop7): Filesystem has been set read-only
[  314.131267][T20245] syz.7.5649: attempt to access beyond end of device
[  314.131267][T20245] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  314.174627][T20245] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  314.182561][T20245] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  314.191817][T20242] syz.7.5649: attempt to access beyond end of device
[  314.191817][T20242] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.205259][ T3414] IPVS: starting estimator thread 0...
[  314.210839][T20245] syz.7.5649: attempt to access beyond end of device
[  314.210839][T20245] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.256869][T20245] syz.7.5649: attempt to access beyond end of device
[  314.256869][T20245] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.285278][T20242] syz.7.5649: attempt to access beyond end of device
[  314.285278][T20242] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.306212][T20247] IPVS: using max 2352 ests per chain, 117600 per kthread
[  314.314419][T20245] syz.7.5649: attempt to access beyond end of device
[  314.314419][T20245] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.329710][T20242] syz.7.5649: attempt to access beyond end of device
[  314.329710][T20242] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.357411][T20245] syz.7.5649: attempt to access beyond end of device
[  314.357411][T20245] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.386494][T20242] syz.7.5649: attempt to access beyond end of device
[  314.386494][T20242] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.410367][T20245] syz.7.5649: attempt to access beyond end of device
[  314.410367][T20245] loop7: rw=0, sector=2065, nr_sectors = 8 limit=128
[  314.746301][T20271] netlink: 5 bytes leftover after parsing attributes in process `syz.5.5661'.
[  314.763325][T20271] 1��{X��: renamed from 
30��{X�� (while UP)
[  314.794445][T20271] A link change request failed with some changes committed already. Interface 
31��{X�� may have been left with an inconsistent configuration, please check.
[  314.899829][T20272] smc: net device bond0 applied user defined pnetid SYZ0
[  314.910584][T20272] smc: net device bond0 erased user defined pnetid SYZ0
[  315.116922][T20283] loop0: detected capacity change from 0 to 512
[  315.158427][T20283] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  315.186043][T20283] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.5664: invalid indirect mapped block 2683928664 (level 1)
[  315.201312][T20283] EXT4-fs (loop0): Remounting filesystem read-only
[  315.219117][T20283] EXT4-fs (loop0): 1 truncate cleaned up
[  315.237406][T20283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.433518][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.604400][T20301] 9pnet: Could not find request transport: rd
[  315.633921][T20305] loop5: detected capacity change from 0 to 512
[  315.674166][T20305] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  315.712587][T20305] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.761269][T20305] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  315.782352][T20305] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.5674: corrupted xattr block 19: overlapping e_value 
[  315.837939][T20305] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  315.847150][T20324] loop3: detected capacity change from 0 to 512
[  315.849772][T20305] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.5674: corrupted xattr block 19: overlapping e_value 
[  315.853987][T20324] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  315.882805][T20305] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=15
[  315.913946][T20324] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5679'.
[  315.922791][T20305] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.5674: corrupted xattr block 19: overlapping e_value 
[  315.943028][T20324] bridge0: port 2(macvlan2) entered blocking state
[  315.949739][T20324] bridge0: port 2(macvlan2) entered disabled state
[  315.958103][T20324] macvlan2: entered allmulticast mode
[  315.963575][T20324] bridge0: entered allmulticast mode
[  315.969561][T20324] macvlan2: left allmulticast mode
[  315.974695][T20324] bridge0: left allmulticast mode
[  315.982998][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.051935][T20328] SELinux: failed to load policy
[  316.227762][T20340] loop5: detected capacity change from 0 to 2048
[  316.231814][T20343] loop0: detected capacity change from 0 to 1024
[  316.266975][T20343] loop0: detected capacity change from 0 to 2048
[  316.276438][T20345] loop3: detected capacity change from 0 to 512
[  316.284677][T20340] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.305359][T20340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.311316][T20343] EXT4-fs (loop0): failed to initialize system zone (-117)
[  316.324910][T20345] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.337614][T20345] ext4 filesystem being mounted at /538/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.353109][T20343] EXT4-fs (loop0): mount failed
[  316.363223][T20339] tmpfs: Bad value for 'mpol'
[  316.383127][   T29] kauditd_printk_skb: 451 callbacks suppressed
[  316.383154][   T29] audit: type=1326 audit(1753008056.056:81352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.419891][T20343] loop0: detected capacity change from 0 to 1024
[  316.436296][   T29] audit: type=1326 audit(1753008056.086:81353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.460133][   T29] audit: type=1326 audit(1753008056.086:81354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.483864][   T29] audit: type=1326 audit(1753008056.086:81355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.507512][   T29] audit: type=1326 audit(1753008056.086:81356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.531196][   T29] audit: type=1326 audit(1753008056.086:81357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc53bfee9a9 code=0x7ffc0000
[  316.555098][   T29] audit: type=1326 audit(1753008056.086:81358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc53bfee9e3 code=0x7ffc0000
[  316.578540][   T29] audit: type=1326 audit(1753008056.096:81359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc53bfed45f code=0x7ffc0000
[  316.601974][   T29] audit: type=1326 audit(1753008056.096:81360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc53bfeea37 code=0x7ffc0000
[  316.625498][   T29] audit: type=1326 audit(1753008056.096:81361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20342 comm="syz.0.5686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc53bfed310 code=0x7ffc0000
[  316.683922][T20357] netlink: 3 bytes leftover after parsing attributes in process `syz.0.5689'.
[  316.693321][T20357] 0�X���: renamed from caif0
[  316.700360][T20357] 0�X���: entered allmulticast mode
[  316.705660][T20357] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  316.750533][T20357] loop0: detected capacity change from 0 to 512
[  316.757358][T20357] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  316.783798][T20363] netlink: 5 bytes leftover after parsing attributes in process `syz.7.5692'.
[  316.792839][T20363] 1��{X��: renamed from 
30��{X�� (while UP)
[  316.803569][T20363] A link change request failed with some changes committed already. Interface 
31��{X�� may have been left with an inconsistent configuration, please check.
[  316.865089][T20367] netlink: 5 bytes leftover after parsing attributes in process `syz.0.5694'.
[  316.885519][T20367] 0��{X��: renamed from 
31��{X�� (while UP)
[  316.894062][T20367] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  316.911079][T20370] smc: net device bond0 applied user defined pnetid SYZ0
[  316.919609][T20370] smc: net device bond0 erased user defined pnetid SYZ0
[  316.987506][T20372] smc: net device bond0 applied user defined pnetid SYZ0
[  316.998584][T20372] smc: net device bond0 erased user defined pnetid SYZ0
[  317.007120][T20375] sctp: [Deprecated]: syz.5.5697 (pid 20375) Use of struct sctp_assoc_value in delayed_ack socket option.
[  317.007120][T20375] Use struct sctp_sack_info instead
[  317.084488][T20379] loop5: detected capacity change from 0 to 2048
[  317.092495][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.111073][T20379] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.131084][T20379] EXT4-fs (loop5): can't enable nombcache during remount
[  317.200242][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.220251][T20384] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5701'.
[  317.236080][T20384] loop3: detected capacity change from 0 to 512
[  317.244385][T20384] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  317.258777][T20386] loop5: detected capacity change from 0 to 512
[  317.266207][T20386] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  317.278539][T20384] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  317.286653][T20384] EXT4-fs (loop3): failed to initialize system zone (-117)
[  317.294178][T20384] EXT4-fs (loop3): mount failed
[  317.311512][T20386] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5700'.
[  317.323543][T20386] bridge0: port 3(macvlan2) entered blocking state
[  317.330260][T20386] bridge0: port 3(macvlan2) entered disabled state
[  317.345351][T20386] macvlan2: entered allmulticast mode
[  317.350809][T20386] bridge0: entered allmulticast mode
[  317.366108][T20386] macvlan2: left allmulticast mode
[  317.371478][T20386] bridge0: left allmulticast mode
[  317.402852][T20388] SELinux: failed to load policy
[  317.606890][T20415] loop3: detected capacity change from 0 to 1024
[  317.650767][T20415] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.776909][T20415] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.5712: Allocating blocks 449-513 which overlap fs metadata
[  317.823959][T20432] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.867035][T20432] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.892100][T20442] loop7: detected capacity change from 0 to 1024
[  317.927067][T20432] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.946016][T20442] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  318.164678][T20432] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.259709][T20432] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  318.275828][T20432] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  318.291508][T20432] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  318.305934][T20432] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  318.410342][T20458] loop5: detected capacity change from 0 to 512
[  318.441462][T20414] EXT4-fs (loop3): pa ffff888106e529a0: logic 48, phys. 177, len 21
[  318.449567][T20414] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  318.461128][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.486509][T20458] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.535404][T20458] ext4 filesystem being mounted at /492/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.549408][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.602425][T20476] IPVS: lblc: SCTP 172.20.20.187:0 - no destination available
[  318.631745][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.857859][T20498] loop0: detected capacity change from 0 to 512
[  318.866317][T20498] EXT4-fs: Ignoring removed nobh option
[  318.888514][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm syz.0.5739: corrupted inode contents
[  318.901180][T20498] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #3: comm syz.0.5739: mark_inode_dirty error
[  318.913507][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm syz.0.5739: corrupted inode contents
[  318.925857][T20498] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.5739: mark_inode_dirty error
[  318.939400][T20498] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.5739: Failed to acquire dquot type 0
[  318.952184][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.5739: corrupted inode contents
[  318.964591][T20498] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #16: comm syz.0.5739: mark_inode_dirty error
[  318.977052][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.5739: corrupted inode contents
[  318.989990][T20498] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.5739: mark_inode_dirty error
[  319.002058][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.5739: corrupted inode contents
[  319.016459][T20498] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  319.025937][T20498] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.5739: corrupted inode contents
[  319.038669][T20498] EXT4-fs error (device loop0): ext4_truncate:4597: inode #16: comm syz.0.5739: mark_inode_dirty error
[  319.050605][T20498] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  319.061298][T20498] EXT4-fs (loop0): 1 truncate cleaned up
[  319.068131][T20498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.081516][T20498] ext4 filesystem being mounted at /569/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.109894][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.123297][T20509] 9pnet_fd: Insufficient options for proto=fd
[  319.166893][T20515] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5746'.
[  319.199290][T20519] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5648 sclass=netlink_xfrm_socket pid=20519 comm=wޣ�
[  319.268153][T20526] loop0: detected capacity change from 0 to 1024
[  319.302395][T20526] loop0: detected capacity change from 0 to 2048
[  319.327681][T20526] EXT4-fs (loop0): failed to initialize system zone (-117)
[  319.335032][T20526] EXT4-fs (loop0): mount failed
[  319.353872][T20526] loop0: detected capacity change from 0 to 1024
[  319.385725][T20535] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5754'.
[  319.614855][T20553] loop7: detected capacity change from 0 to 164
[  319.629864][T20553] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  319.639510][T20556] loop0: detected capacity change from 0 to 512
[  319.646825][T20556] EXT4-fs: Ignoring removed mblk_io_submit option
[  319.655077][T20556] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  319.683180][T20556] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.698787][T20556] ext4 filesystem being mounted at /575/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.744868][T20571] loop7: detected capacity change from 0 to 512
[  319.754115][T20571] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  319.763268][T20571] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  319.772211][T12813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.773035][T20571] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended
[  319.791810][T20571] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  319.801326][T20571] System zones: 0-2, 18-18, 34-34
[  319.807038][T20571] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.5766: couldn't read orphan inode 15 (err -116)
[  319.819838][T20571] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.858261][T20571] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5766: bg 0: block 80: padding at end of block bitmap is not set
[  319.864052][T20577] loop0: detected capacity change from 0 to 2048
[  319.879871][T20579] loop5: detected capacity change from 0 to 128
[  319.890746][T20579] netlink: 'syz.5.5770': attribute type 10 has an invalid length.
[  319.902660][T20577] Alternate GPT is invalid, using primary GPT.
[  319.909018][T20577]  loop0: p1 p2 p3
[  319.941501][T20581] netlink: 176 bytes leftover after parsing attributes in process `syz.5.5771'.
[  320.066829][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.459474][T20617] FAULT_INJECTION: forcing a failure.
[  320.459474][T20617] name failslab, interval 1, probability 0, space 0, times 0
[  320.472396][T20617] CPU: 0 UID: 0 PID: 20617 Comm: syz.7.5786 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  320.472432][T20617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  320.472523][T20617] Call Trace:
[  320.472530][T20617]  <TASK>
[  320.472540][T20617]  __dump_stack+0x1d/0x30
[  320.472566][T20617]  dump_stack_lvl+0xe8/0x140
[  320.472588][T20617]  dump_stack+0x15/0x1b
[  320.472608][T20617]  should_fail_ex+0x265/0x280
[  320.472720][T20617]  should_failslab+0x8c/0xb0
[  320.472785][T20617]  kmem_cache_alloc_noprof+0x50/0x310
[  320.472815][T20617]  ? skb_clone+0x151/0x1f0
[  320.472840][T20617]  skb_clone+0x151/0x1f0
[  320.472863][T20617]  nfnetlink_rcv+0x305/0x1690
[  320.472895][T20617]  ? __kfree_skb+0x109/0x150
[  320.472965][T20617]  ? nlmon_xmit+0x4f/0x60
[  320.473027][T20617]  ? nlmon_xmit+0x4f/0x60
[  320.473048][T20617]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  320.473271][T20617]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  320.473464][T20617]  ? __dev_queue_xmit+0x182/0x1fb0
[  320.473544][T20617]  ? ref_tracker_free+0x37d/0x3e0
[  320.473688][T20617]  netlink_unicast+0x5a5/0x680
[  320.473721][T20617]  netlink_sendmsg+0x58b/0x6b0
[  320.473743][T20617]  ? __pfx_netlink_sendmsg+0x10/0x10
[  320.473822][T20617]  __sock_sendmsg+0x142/0x180
[  320.473848][T20617]  ____sys_sendmsg+0x31e/0x4e0
[  320.473962][T20617]  ___sys_sendmsg+0x17b/0x1d0
[  320.474066][T20617]  __x64_sys_sendmsg+0xd4/0x160
[  320.474104][T20617]  x64_sys_call+0x2999/0x2fb0
[  320.474128][T20617]  do_syscall_64+0xd2/0x200
[  320.474150][T20617]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  320.474229][T20617]  ? clear_bhb_loop+0x40/0x90
[  320.474254][T20617]  ? clear_bhb_loop+0x40/0x90
[  320.474276][T20617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.474297][T20617] RIP: 0033:0x7fbc9309e9a9
[  320.474317][T20617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.474401][T20617] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.474425][T20617] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  320.474437][T20617] RDX: 0000000024040880 RSI: 0000200000000140 RDI: 0000000000000003
[  320.474453][T20617] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  320.474468][T20617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.474484][T20617] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  320.474509][T20617]  </TASK>
[  320.778453][T20627] loop5: detected capacity change from 0 to 512
[  320.809223][T20628] SELinux:  policydb magic number 0xc709ab40 does not match expected magic number 0xf97cff8c
[  320.823289][T20628] SELinux: failed to load policy
[  320.829573][T20627] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.842565][T20627] ext4 filesystem being mounted at /507/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.379126][T20648] loop0: detected capacity change from 0 to 128
[  321.385501][   T29] kauditd_printk_skb: 755 callbacks suppressed
[  321.385646][   T29] audit: type=1326 audit(1753008061.056:82115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f674187e9e3 code=0x7ffc0000
[  321.415454][   T29] audit: type=1326 audit(1753008061.056:82116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f674187e9e3 code=0x7ffc0000
[  321.439245][   T29] audit: type=1326 audit(1753008061.056:82117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.450732][T20648] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  321.462917][   T29] audit: type=1326 audit(1753008061.056:82118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.495609][   T29] audit: type=1326 audit(1753008061.056:82119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.520236][   T29] audit: type=1326 audit(1753008061.066:82120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.544063][   T29] audit: type=1326 audit(1753008061.066:82121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.546074][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.568075][   T29] audit: type=1326 audit(1753008061.066:82122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.600669][   T29] audit: type=1326 audit(1753008061.066:82123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.624311][   T29] audit: type=1326 audit(1753008061.066:82124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20639 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f674187e9a9 code=0x7ffc0000
[  321.677762][T20656] loop7: detected capacity change from 0 to 512
[  321.701553][T20656] EXT4-fs error (device loop7): ext4_ext_check_inode:523: inode #3: comm syz.7.5801: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  321.721002][T20656] EXT4-fs error (device loop7): ext4_quota_enable:7127: comm syz.7.5801: Bad quota inode: 3, type: 0
[  321.736795][T20656] EXT4-fs warning (device loop7): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  321.752065][T20656] EXT4-fs (loop7): mount failed
[  321.782707][T20669] FAULT_INJECTION: forcing a failure.
[  321.782707][T20669] name failslab, interval 1, probability 0, space 0, times 0
[  321.795438][T20669] CPU: 1 UID: 0 PID: 20669 Comm: syz.0.5806 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  321.795603][T20669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  321.795620][T20669] Call Trace:
[  321.795629][T20669]  <TASK>
[  321.795639][T20669]  __dump_stack+0x1d/0x30
[  321.795699][T20669]  dump_stack_lvl+0xe8/0x140
[  321.795725][T20669]  dump_stack+0x15/0x1b
[  321.795754][T20669]  should_fail_ex+0x265/0x280
[  321.795823][T20669]  ? nf_tables_newtable+0x375/0xea0
[  321.795914][T20669]  should_failslab+0x8c/0xb0
[  321.796014][T20669]  __kmalloc_cache_noprof+0x4c/0x320
[  321.796049][T20669]  ? __nla_validate_parse+0x1652/0x1d00
[  321.796172][T20669]  nf_tables_newtable+0x375/0xea0
[  321.796221][T20669]  nfnetlink_rcv+0xb96/0x1690
[  321.796279][T20669]  netlink_unicast+0x5a5/0x680
[  321.796371][T20669]  netlink_sendmsg+0x58b/0x6b0
[  321.796399][T20669]  ? __pfx_netlink_sendmsg+0x10/0x10
[  321.796453][T20669]  __sock_sendmsg+0x142/0x180
[  321.796485][T20669]  ____sys_sendmsg+0x31e/0x4e0
[  321.796531][T20669]  ___sys_sendmsg+0x17b/0x1d0
[  321.796653][T20669]  __x64_sys_sendmsg+0xd4/0x160
[  321.796775][T20669]  x64_sys_call+0x2999/0x2fb0
[  321.796866][T20669]  do_syscall_64+0xd2/0x200
[  321.796891][T20669]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  321.797032][T20669]  ? clear_bhb_loop+0x40/0x90
[  321.797053][T20669]  ? clear_bhb_loop+0x40/0x90
[  321.797145][T20669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.797173][T20669] RIP: 0033:0x7fc53bfee9a9
[  321.797192][T20669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.797215][T20669] RSP: 002b:00007fc53a64f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.797259][T20669] RAX: ffffffffffffffda RBX: 00007fc53c215fa0 RCX: 00007fc53bfee9a9
[  321.797276][T20669] RDX: 0000000004000024 RSI: 0000200000000040 RDI: 0000000000000003
[  321.797293][T20669] RBP: 00007fc53a64f090 R08: 0000000000000000 R09: 0000000000000000
[  321.797310][T20669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.797326][T20669] R13: 0000000000000000 R14: 00007fc53c215fa0 R15: 00007ffc2cb121a8
[  321.797395][T20669]  </TASK>
[  322.081661][T20681] loop5: detected capacity change from 0 to 1024
[  322.103983][T20681] loop5: detected capacity change from 0 to 2048
[  322.128172][T20681] EXT4-fs (loop5): failed to initialize system zone (-117)
[  322.135641][T20681] EXT4-fs (loop5): mount failed
[  322.149124][T20695] FAULT_INJECTION: forcing a failure.
[  322.149124][T20695] name failslab, interval 1, probability 0, space 0, times 0
[  322.162267][T20695] CPU: 1 UID: 0 PID: 20695 Comm: syz.7.5816 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  322.162304][T20695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  322.162320][T20695] Call Trace:
[  322.162329][T20695]  <TASK>
[  322.162372][T20695]  __dump_stack+0x1d/0x30
[  322.162399][T20695]  dump_stack_lvl+0xe8/0x140
[  322.162419][T20695]  dump_stack+0x15/0x1b
[  322.162506][T20681] loop5: detected capacity change from 0 to 1024
[  322.162435][T20695]  should_fail_ex+0x265/0x280
[  322.162539][T20695]  should_failslab+0x8c/0xb0
[  322.162566][T20695]  __kmalloc_noprof+0xa5/0x3e0
[  322.162616][T20695]  ? trace_probe_init+0x5c/0x280
[  322.162651][T20695]  trace_probe_init+0x5c/0x280
[  322.162712][T20695]  alloc_trace_uprobe+0x8b/0x1e0
[  322.162803][T20695]  create_local_trace_uprobe+0xb5/0x2c0
[  322.162843][T20695]  perf_uprobe_init+0xc0/0x150
[  322.162940][T20695]  perf_uprobe_event_init+0xc4/0x140
[  322.162972][T20695]  perf_try_init_event+0xd9/0x540
[  322.163006][T20695]  ? perf_event_alloc+0xb1c/0x1680
[  322.163044][T20695]  perf_event_alloc+0xb27/0x1680
[  322.163087][T20695]  __se_sys_perf_event_open+0x615/0x11c0
[  322.163164][T20695]  ? __rcu_read_unlock+0x4f/0x70
[  322.163214][T20695]  __x64_sys_perf_event_open+0x67/0x80
[  322.163252][T20695]  x64_sys_call+0x27ec/0x2fb0
[  322.163285][T20695]  do_syscall_64+0xd2/0x200
[  322.163312][T20695]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  322.163348][T20695]  ? clear_bhb_loop+0x40/0x90
[  322.163469][T20695]  ? clear_bhb_loop+0x40/0x90
[  322.163500][T20695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.163524][T20695] RIP: 0033:0x7fbc9309e9a9
[  322.163539][T20695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.163557][T20695] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  322.163643][T20695] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  322.163719][T20695] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  322.163737][T20695] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  322.163754][T20695] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  322.163771][T20695] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  322.163798][T20695]  </TASK>
[  322.163812][T20695] trace_uprobe: Failed to allocate trace_uprobe.(-12)
[  322.362812][T20701] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5818'.
[  322.417209][T20701] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5818'.
[  322.531889][T20715] netlink: 'syz.7.5824': attribute type 10 has an invalid length.
[  322.542263][T20715] team0: Device hsr_slave_0 failed to register rx_handler
[  322.587523][T20716] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5825'.
[  322.687696][T20734] Option '                                   ˴��-]' to dns_resolver key: bad/missing value
[  322.709656][T20734] IPVS: length: 70 != 24
[  322.718569][T20737] sit0: entered promiscuous mode
[  322.723701][T20737] netlink: 'syz.5.5833': attribute type 1 has an invalid length.
[  322.731575][T20737] netlink: 1 bytes leftover after parsing attributes in process `syz.5.5833'.
[  322.878230][T20748] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5838'.
[  323.007588][T20758] loop0: detected capacity change from 0 to 1024
[  323.028106][T20758] loop0: detected capacity change from 0 to 2048
[  323.047485][T20758] EXT4-fs (loop0): failed to initialize system zone (-117)
[  323.054838][T20758] EXT4-fs (loop0): mount failed
[  323.073072][T20758] loop0: detected capacity change from 0 to 1024
[  323.433491][T20782] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5851'.
[  323.492157][T20786] 9pnet: Could not find request transport: rd�	
[  323.540495][T20793] FAULT_INJECTION: forcing a failure.
[  323.540495][T20793] name failslab, interval 1, probability 0, space 0, times 0
[  323.553377][T20793] CPU: 1 UID: 0 PID: 20793 Comm: syz.3.5856 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  323.553414][T20793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  323.553429][T20793] Call Trace:
[  323.553437][T20793]  <TASK>
[  323.553446][T20793]  __dump_stack+0x1d/0x30
[  323.553503][T20793]  dump_stack_lvl+0xe8/0x140
[  323.553552][T20793]  dump_stack+0x15/0x1b
[  323.553574][T20793]  should_fail_ex+0x265/0x280
[  323.553608][T20793]  should_failslab+0x8c/0xb0
[  323.553711][T20793]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  323.553779][T20793]  ? sock_alloc_inode+0x34/0xa0
[  323.553855][T20793]  ? __pfx_sock_alloc_inode+0x10/0x10
[  323.553886][T20793]  sock_alloc_inode+0x34/0xa0
[  323.553912][T20793]  alloc_inode+0x3d/0x170
[  323.554004][T20793]  __sock_create+0x122/0x5b0
[  323.554037][T20793]  ? xas_load+0x413/0x430
[  323.554076][T20793]  sock_create_kern+0x38/0x50
[  323.554110][T20793]  udp_sock_create6+0x68/0x3d0
[  323.554154][T20793]  fou_nl_add_doit+0xd8/0x410
[  323.554197][T20793]  genl_family_rcv_msg_doit+0x140/0x1b0
[  323.554276][T20793]  genl_rcv_msg+0x422/0x460
[  323.554306][T20793]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  323.554338][T20793]  netlink_rcv_skb+0x120/0x220
[  323.554402][T20793]  ? __pfx_genl_rcv_msg+0x10/0x10
[  323.554442][T20793]  genl_rcv+0x28/0x40
[  323.554470][T20793]  netlink_unicast+0x5a5/0x680
[  323.554504][T20793]  netlink_sendmsg+0x58b/0x6b0
[  323.554578][T20793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.554603][T20793]  __sock_sendmsg+0x142/0x180
[  323.554631][T20793]  ____sys_sendmsg+0x31e/0x4e0
[  323.554739][T20793]  ___sys_sendmsg+0x17b/0x1d0
[  323.554790][T20793]  __x64_sys_sendmsg+0xd4/0x160
[  323.554925][T20793]  x64_sys_call+0x2999/0x2fb0
[  323.554953][T20793]  do_syscall_64+0xd2/0x200
[  323.554977][T20793]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  323.555040][T20793]  ? clear_bhb_loop+0x40/0x90
[  323.555062][T20793]  ? clear_bhb_loop+0x40/0x90
[  323.555083][T20793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.555107][T20793] RIP: 0033:0x7f674187e9a9
[  323.555122][T20793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.555271][T20793] RSP: 002b:00007f673fedf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  323.555296][T20793] RAX: ffffffffffffffda RBX: 00007f6741aa5fa0 RCX: 00007f674187e9a9
[  323.555318][T20793] RDX: 0000000020040000 RSI: 0000200000000480 RDI: 0000000000000004
[  323.555333][T20793] RBP: 00007f673fedf090 R08: 0000000000000000 R09: 0000000000000000
[  323.555345][T20793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.555428][T20793] R13: 0000000000000000 R14: 00007f6741aa5fa0 R15: 00007ffebdfbe9c8
[  323.555453][T20793]  </TASK>
[  323.824244][T20793] socket: no more sockets
[  324.125442][T20808] loop3: detected capacity change from 0 to 512
[  324.287861][T20808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.300594][T20808] ext4 filesystem being mounted at /569/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  324.476990][T20812] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5863'.
[  324.641012][T20817] 9pnet: Could not find request transport: rd�	
[  324.870366][T20823] loop5: detected capacity change from 0 to 512
[  324.906919][T20823] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.969148][T20823] ext4 filesystem being mounted at /529/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  325.163264][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.274632][T20844] xt_hashlimit: size too large, truncated to 1048576
[  325.423414][T20849] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5875'.
[  325.451667][T20849] loop7: detected capacity change from 0 to 128
[  325.472842][T20849] FAT-fs (loop7): Directory bread(block 32) failed
[  325.487297][T20849] FAT-fs (loop7): Directory bread(block 33) failed
[  325.504132][T20849] FAT-fs (loop7): Directory bread(block 34) failed
[  325.523451][T20849] FAT-fs (loop7): Directory bread(block 35) failed
[  325.532533][T20849] FAT-fs (loop7): Directory bread(block 36) failed
[  325.585393][T20849] FAT-fs (loop7): Directory bread(block 37) failed
[  325.596374][T20849] FAT-fs (loop7): Directory bread(block 38) failed
[  325.605848][T20849] FAT-fs (loop7): Directory bread(block 39) failed
[  325.619232][T20849] FAT-fs (loop7): Directory bread(block 40) failed
[  325.626724][T20849] FAT-fs (loop7): Directory bread(block 41) failed
[  325.732926][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.852324][T20874] loop3: detected capacity change from 0 to 1024
[  325.862171][T20874] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  325.874871][T20874] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  326.004857][T20889] FAULT_INJECTION: forcing a failure.
[  326.004857][T20889] name failslab, interval 1, probability 0, space 0, times 0
[  326.017700][T20889] CPU: 0 UID: 0 PID: 20889 Comm: syz.5.5892 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  326.017734][T20889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.017750][T20889] Call Trace:
[  326.017759][T20889]  <TASK>
[  326.017792][T20889]  __dump_stack+0x1d/0x30
[  326.017820][T20889]  dump_stack_lvl+0xe8/0x140
[  326.017846][T20889]  dump_stack+0x15/0x1b
[  326.017868][T20889]  should_fail_ex+0x265/0x280
[  326.017969][T20889]  should_failslab+0x8c/0xb0
[  326.017998][T20889]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  326.018055][T20889]  ? sidtab_sid2str_get+0xa0/0x130
[  326.018087][T20889]  kmemdup_noprof+0x2b/0x70
[  326.018116][T20889]  sidtab_sid2str_get+0xa0/0x130
[  326.018185][T20889]  security_sid_to_context_core+0x1eb/0x2e0
[  326.018216][T20889]  security_sid_to_context+0x27/0x40
[  326.018252][T20889]  avc_audit_post_callback+0x9d/0x520
[  326.018278][T20889]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  326.018305][T20889]  common_lsm_audit+0x1bb/0x230
[  326.018382][T20889]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  326.018420][T20889]  slow_avc_audit+0x104/0x140
[  326.018457][T20889]  avc_has_perm+0x128/0x150
[  326.018487][T20889]  selinux_file_open+0x2df/0x330
[  326.018575][T20889]  security_file_open+0x36/0x70
[  326.018597][T20889]  do_dentry_open+0x204/0xa20
[  326.018630][T20889]  vfs_open+0x37/0x1e0
[  326.018668][T20889]  path_openat+0x1c5e/0x2170
[  326.018703][T20889]  ? _parse_integer_limit+0x170/0x190
[  326.018734][T20889]  ? _parse_integer+0x27/0x40
[  326.018764][T20889]  do_filp_open+0x109/0x230
[  326.018804][T20889]  do_sys_openat2+0xa6/0x110
[  326.018908][T20889]  __x64_sys_creat+0x65/0x90
[  326.018969][T20889]  x64_sys_call+0x114d/0x2fb0
[  326.018995][T20889]  do_syscall_64+0xd2/0x200
[  326.019016][T20889]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  326.019040][T20889]  ? clear_bhb_loop+0x40/0x90
[  326.019060][T20889]  ? clear_bhb_loop+0x40/0x90
[  326.019180][T20889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.019208][T20889] RIP: 0033:0x7fdb1f69e9a9
[  326.019228][T20889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.019252][T20889] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  326.019276][T20889] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  326.019362][T20889] RDX: 0000000000000000 RSI: 0000000000000036 RDI: 00002000000003c0
[  326.019379][T20889] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  326.019394][T20889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  326.019409][T20889] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  326.019434][T20889]  </TASK>
[  326.329335][T20898] can0: slcan on ptm0.
[  326.395269][   T29] kauditd_printk_skb: 728 callbacks suppressed
[  326.395287][   T29] audit: type=1326 audit(1753008066.066:82853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20906 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14cd75e9a9 code=0x7ffc0000
[  326.401621][T20886] lo speed is unknown, defaulting to 1000
[  326.435284][   T29] audit: type=1326 audit(1753008066.076:82854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbc93095967 code=0x7ffc0000
[  326.459369][   T29] audit: type=1326 audit(1753008066.076:82855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbc9303ab89 code=0x7ffc0000
[  326.483144][   T29] audit: type=1326 audit(1753008066.076:82856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fbc9309e9a9 code=0x7ffc0000
[  326.506948][   T29] audit: type=1326 audit(1753008066.076:82857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbc93095967 code=0x7ffc0000
[  326.530586][   T29] audit: type=1326 audit(1753008066.076:82858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbc9303ab89 code=0x7ffc0000
[  326.554467][   T29] audit: type=1326 audit(1753008066.076:82859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fbc9309e9a9 code=0x7ffc0000
[  326.578519][   T29] audit: type=1326 audit(1753008066.076:82860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbc93095967 code=0x7ffc0000
[  326.602211][   T29] audit: type=1326 audit(1753008066.076:82861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbc9303ab89 code=0x7ffc0000
[  326.626102][   T29] audit: type=1326 audit(1753008066.076:82862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20881 comm="syz.7.5890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fbc9309e9a9 code=0x7ffc0000
[  326.626466][T20918] FAULT_INJECTION: forcing a failure.
[  326.626466][T20918] name failslab, interval 1, probability 0, space 0, times 0
[  326.662522][T20918] CPU: 0 UID: 0 PID: 20918 Comm: syz.5.5900 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  326.662553][T20918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.662567][T20918] Call Trace:
[  326.662576][T20918]  <TASK>
[  326.662586][T20918]  __dump_stack+0x1d/0x30
[  326.662611][T20918]  dump_stack_lvl+0xe8/0x140
[  326.662636][T20918]  dump_stack+0x15/0x1b
[  326.662657][T20918]  should_fail_ex+0x265/0x280
[  326.662696][T20918]  should_failslab+0x8c/0xb0
[  326.662718][T20918]  kmem_cache_alloc_noprof+0x50/0x310
[  326.662743][T20918]  ? vm_area_dup+0x33/0x2c0
[  326.662776][T20918]  vm_area_dup+0x33/0x2c0
[  326.662810][T20918]  __split_vma+0xe9/0x650
[  326.662838][T20918]  vma_modify+0x3f2/0xc80
[  326.662860][T20918]  ? path_openat+0x1bf8/0x2170
[  326.662895][T20918]  vma_modify_flags+0x101/0x130
[  326.662928][T20918]  mprotect_fixup+0x2cc/0x570
[  326.662961][T20918]  do_mprotect_pkey+0x6d6/0x980
[  326.663009][T20918]  __x64_sys_mprotect+0x48/0x60
[  326.663038][T20918]  x64_sys_call+0x2794/0x2fb0
[  326.663065][T20918]  do_syscall_64+0xd2/0x200
[  326.663088][T20918]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  326.663121][T20918]  ? clear_bhb_loop+0x40/0x90
[  326.663148][T20918]  ? clear_bhb_loop+0x40/0x90
[  326.663175][T20918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.663200][T20918] RIP: 0033:0x7fdb1f69e9a9
[  326.663219][T20918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.663242][T20918] RSP: 002b:00007fdb1dcde038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a
[  326.663265][T20918] RAX: ffffffffffffffda RBX: 00007fdb1f8c6080 RCX: 00007fdb1f69e9a9
[  326.663280][T20918] RDX: 0000000000000001 RSI: 000000000000f000 RDI: 0000200000000000
[  326.663295][T20918] RBP: 00007fdb1dcde090 R08: 0000000000000000 R09: 0000000000000000
[  326.663310][T20918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.663325][T20918] R13: 0000000000000000 R14: 00007fdb1f8c6080 R15: 00007fffe925aab8
[  326.663349][T20918]  </TASK>
[  327.042466][T20886] chnl_net:caif_netlink_parms(): no params data found
[  327.129688][T20940] netlink: 5 bytes leftover after parsing attributes in process `syz.5.5907'.
[  327.247012][ T6289] bond0 (unregistering): Released all slaves
[  327.263925][T20940] 0��{X��: renamed from 
31��{X�� (while UP)
[  327.273214][T20940] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  327.294694][T20937] smc: net device bond0 applied user defined pnetid SYZ0
[  327.304336][T20937] smc: net device bond0 erased user defined pnetid SYZ0
[  327.325582][T20897] can0 (unregistered): slcan off ptm0.
[  327.352319][ T6289] hsr_slave_0: left promiscuous mode
[  327.358739][ T6289] hsr_slave_1: left promiscuous mode
[  327.395209][T20956] xt_CT: No such helper "netbios-ns"
[  327.405319][   T31] smc: removing ib device syz!
[  327.444628][T20886] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.452027][T20886] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.455086][T20961] loop7: detected capacity change from 0 to 1024
[  327.460267][T20886] bridge_slave_0: entered allmulticast mode
[  327.472143][T20886] bridge_slave_0: entered promiscuous mode
[  327.479038][T20886] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.486171][T20886] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.493527][T20886] bridge_slave_1: entered allmulticast mode
[  327.502705][T20886] bridge_slave_1: entered promiscuous mode
[  327.537108][T20961] loop7: detected capacity change from 0 to 2048
[  327.547454][T20886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  327.561247][T20961] EXT4-fs (loop7): failed to initialize system zone (-117)
[  327.566780][T20886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  327.573635][T20961] EXT4-fs (loop7): mount failed
[  327.609881][T20967] 9pnet: Could not find request transport: rd�	
[  327.625046][T20886] team0: Port device team_slave_0 added
[  327.642616][T20961] loop7: detected capacity change from 0 to 1024
[  327.644629][T20886] team0: Port device team_slave_1 added
[  327.707376][T20886] batman_adv: batadv0: Adding interface: batadv_slave_0
[  327.714532][T20886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  327.740621][T20886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  327.763358][T20886] batman_adv: batadv0: Adding interface: batadv_slave_1
[  327.770470][T20886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  327.796646][T20886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  327.799746][T20977] FAULT_INJECTION: forcing a failure.
[  327.799746][T20977] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.820545][T20977] CPU: 1 UID: 0 PID: 20977 Comm: syz.7.5921 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  327.820582][T20977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.820597][T20977] Call Trace:
[  327.820603][T20977]  <TASK>
[  327.820610][T20977]  __dump_stack+0x1d/0x30
[  327.820685][T20977]  dump_stack_lvl+0xe8/0x140
[  327.820710][T20977]  dump_stack+0x15/0x1b
[  327.820731][T20977]  should_fail_ex+0x265/0x280
[  327.820845][T20977]  should_fail+0xb/0x20
[  327.820871][T20977]  should_fail_usercopy+0x1a/0x20
[  327.820904][T20977]  strncpy_from_user+0x25/0x230
[  327.820966][T20977]  ? kmem_cache_alloc_noprof+0x186/0x310
[  327.821059][T20977]  ? getname_flags+0x80/0x3b0
[  327.821082][T20977]  getname_flags+0xae/0x3b0
[  327.821107][T20977]  io_renameat_prep+0x135/0x1b0
[  327.821137][T20977]  io_submit_sqes+0x5e5/0xfd0
[  327.821211][T20977]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  327.821241][T20977]  ? 0xffffffff81000000
[  327.821254][T20977]  ? __rcu_read_unlock+0x4f/0x70
[  327.821276][T20977]  ? get_pid_task+0x96/0xd0
[  327.821299][T20977]  ? proc_fail_nth_write+0x12d/0x160
[  327.821392][T20977]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  327.821434][T20977]  ? vfs_write+0x75e/0x8e0
[  327.821535][T20977]  ? kmem_cache_free+0xdf/0x300
[  327.821568][T20977]  ? putname+0xda/0x100
[  327.821599][T20977]  __x64_sys_io_uring_enter+0x78/0x90
[  327.821634][T20977]  x64_sys_call+0x28c8/0x2fb0
[  327.821728][T20977]  do_syscall_64+0xd2/0x200
[  327.821746][T20977]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  327.821769][T20977]  ? clear_bhb_loop+0x40/0x90
[  327.821788][T20977]  ? clear_bhb_loop+0x40/0x90
[  327.821836][T20977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.821855][T20977] RIP: 0033:0x7fbc9309e9a9
[  327.821869][T20977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.821950][T20977] RSP: 002b:00007fbc916ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  327.821966][T20977] RAX: ffffffffffffffda RBX: 00007fbc932c5fa0 RCX: 00007fbc9309e9a9
[  327.821977][T20977] RDX: 0000000000000217 RSI: 00000000000040f9 RDI: 0000000000000003
[  327.821988][T20977] RBP: 00007fbc916ff090 R08: 0000000000000000 R09: 0000000000000000
[  327.821999][T20977] R10: 00000000000000a5 R11: 0000000000000246 R12: 0000000000000001
[  327.822009][T20977] R13: 0000000000000000 R14: 00007fbc932c5fa0 R15: 00007ffc1f5f1f98
[  327.822027][T20977]  </TASK>
[  328.143080][T20886] hsr_slave_0: entered promiscuous mode
[  328.164228][T20886] hsr_slave_1: entered promiscuous mode
[  328.176897][T20886] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  328.186588][T20886] Cannot create hsr debugfs directory
[  328.192190][T20977] bridge: RTM_NEWNEIGH with invalid ether address
[  328.219166][ T6289] IPVS: stop unused estimator thread 0...
[  328.277917][T20992] lo speed is unknown, defaulting to 1000
[  328.309531][T20984] loop3: detected capacity change from 0 to 512
[  328.326961][T20984] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5920: bg 0: block 248: padding at end of block bitmap is not set
[  328.343447][T20984] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5920: Failed to acquire dquot type 1
[  328.355490][T20984] EXT4-fs (loop3): 1 truncate cleaned up
[  328.361601][T20984] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.374183][T20984] ext4 filesystem being mounted at /580/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.446792][T20997] netlink: 'syz.5.5924': attribute type 8 has an invalid length.
[  328.485167][T21001] loop5: detected capacity change from 0 to 512
[  328.486784][T20886] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  328.493367][T21001] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c11c, mo2=0002]
[  328.506530][T21001] System zones: 1-12
[  328.509039][T20886] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  328.519365][T21001] EXT4-fs error (device loop5): ext4_xattr_inode_iget:442: comm syz.5.5925: error while reading EA inode 32 err=-116
[  328.520875][T20886] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  328.532927][T21001] EXT4-fs error (device loop5): ext4_xattr_inode_iget:442: comm syz.5.5925: error while reading EA inode 32 err=-116
[  328.551218][T21001] EXT4-fs (loop5): 1 orphan inode deleted
[  328.553673][T20886] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  328.558897][T21001] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.594377][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.603763][T20984] syz.3.5920 (20984) used greatest stack depth: 9096 bytes left
[  328.649924][T12490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.653249][T20886] 8021q: adding VLAN 0 to HW filter on device bond0
[  328.665963][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[  328.670835][T20886] 8021q: adding VLAN 0 to HW filter on device team0
[  328.700155][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.707403][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  328.736308][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.743505][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  328.891130][T21030] loop3: detected capacity change from 0 to 1024
[  328.900763][T21030] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  328.914532][T21030] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  328.934312][T21036] FAULT_INJECTION: forcing a failure.
[  328.934312][T21036] name failslab, interval 1, probability 0, space 0, times 0
[  328.947055][T21036] CPU: 1 UID: 0 PID: 21036 Comm: syz.5.5935 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  328.947090][T21036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  328.947107][T21036] Call Trace:
[  328.947115][T21036]  <TASK>
[  328.947124][T21036]  __dump_stack+0x1d/0x30
[  328.947185][T21036]  dump_stack_lvl+0xe8/0x140
[  328.947211][T21036]  dump_stack+0x15/0x1b
[  328.947272][T21036]  should_fail_ex+0x265/0x280
[  328.947314][T21036]  should_failslab+0x8c/0xb0
[  328.947343][T21036]  kmem_cache_alloc_noprof+0x50/0x310
[  328.947438][T21036]  ? __inet_hash_connect+0xbdf/0x1350
[  328.947479][T21036]  __inet_hash_connect+0xbdf/0x1350
[  328.947532][T21036]  inet_hash_connect+0xd1/0xf0
[  328.947599][T21036]  tcp_v4_connect+0x776/0xac0
[  328.947636][T21036]  __inet_stream_connect+0x169/0x7e0
[  328.947680][T21036]  ? _raw_spin_unlock_bh+0x36/0x40
[  328.947712][T21036]  ? lock_sock_nested+0x112/0x140
[  328.947760][T21036]  inet_stream_connect+0x44/0x70
[  328.947799][T21036]  kernel_connect+0x9c/0xf0
[  328.947832][T21036]  smc_connect+0x4f3/0x670
[  328.947858][T21036]  ? __pfx_smc_connect+0x10/0x10
[  328.947887][T21036]  __sys_connect+0x1ef/0x2b0
[  328.948008][T21036]  __x64_sys_connect+0x3f/0x50
[  328.948045][T21036]  x64_sys_call+0x1daa/0x2fb0
[  328.948070][T21036]  do_syscall_64+0xd2/0x200
[  328.948092][T21036]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  328.948163][T21036]  ? clear_bhb_loop+0x40/0x90
[  328.948188][T21036]  ? clear_bhb_loop+0x40/0x90
[  328.948213][T21036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.948239][T21036] RIP: 0033:0x7fdb1f69e9a9
[  328.948259][T21036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.948283][T21036] RSP: 002b:00007fdb1dcff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  328.948371][T21036] RAX: ffffffffffffffda RBX: 00007fdb1f8c5fa0 RCX: 00007fdb1f69e9a9
[  328.948389][T21036] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  328.948405][T21036] RBP: 00007fdb1dcff090 R08: 0000000000000000 R09: 0000000000000000
[  328.948422][T21036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  328.948438][T21036] R13: 0000000000000000 R14: 00007fdb1f8c5fa0 R15: 00007fffe925aab8
[  328.948465][T21036]  </TASK>
[  329.184194][T20886] 8021q: adding VLAN 0 to HW filter on device batadv0
[  329.209315][T21040] loop3: detected capacity change from 0 to 1024
[  329.228391][T21040] loop3: detected capacity change from 0 to 2048
[  329.243119][T21033] loop7: detected capacity change from 0 to 1024
[  329.250393][T21033] EXT4-fs: Ignoring removed orlov option
[  329.263010][T21033] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.276383][T21040] EXT4-fs (loop3): failed to initialize system zone (-117)
[  329.283706][T21040] EXT4-fs (loop3): mount failed
[  329.326815][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.372767][T21040] loop3: detected capacity change from 0 to 1024
[  329.405646][T20886] veth0_vlan: entered promiscuous mode
[  329.420433][T20886] veth1_vlan: entered promiscuous mode
[  329.447109][T21066] loop5: detected capacity change from 0 to 512
[  329.455537][T21066] EXT4-fs: Ignoring removed i_version option
[  329.467577][T21066] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  329.490035][T20886] veth0_macvtap: entered promiscuous mode
[  329.499150][T21066] EXT4-fs (loop5): orphan cleanup on readonly fs
[  329.514863][T20886] veth1_macvtap: entered promiscuous mode
[  329.531201][T21066] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5945: bg 0: block 248: padding at end of block bitmap is not set
[  329.551597][T20886] batman_adv: batadv0: Interface activated: batadv_slave_0
[  329.576794][T21066] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.5945: Failed to acquire dquot type 1
[  329.592164][T20886] batman_adv: batadv0: Interface activated: batadv_slave_1
[  329.602747][T20886] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  329.611580][T20886] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  329.620366][T20886] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  329.629136][T20886] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  329.640597][T21066] EXT4-fs (loop5): 1 truncate cleaned up
[  329.650479][T21066] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  329.666640][T21081] 9pnet: Could not find request transport: rd�	
[  329.699410][T21066] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  329.727560][T21091] loop0: detected capacity change from 0 to 2048
[  329.747551][T21066] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  329.761304][T21066] ext4 filesystem being remounted at /547/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  329.764264][T21098] netlink: 5 bytes leftover after parsing attributes in process `syz.6.5958'.
[  329.788841][T21098] 1��{X��: renamed from 
30��{X�� (while UP)
[  329.806939][T21091] Alternate GPT is invalid, using primary GPT.
[  329.813327][T21091]  loop0: p2 p3 p7
[  329.817806][T21098] A link change request failed with some changes committed already. Interface 
31��{X�� may have been left with an inconsistent configuration, please check.
[  329.856182][T21066] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.5945: deleted inode referenced: 12
[  329.870540][T21066] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.5945: deleted inode referenced: 12
[  329.874912][T21091] loop9: detected capacity change from 0 to 7
[  329.889081][T21066] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz.5.5945: deleted inode referenced: 12
[  329.891302][T21091] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.911860][T21091] Buffer I/O error on dev loop9, logical block 0, async page read
[  329.920141][T21091]  loop9: unable to read partition table
[  329.931349][T21091] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  329.931349][T21091] 
) failed (rc=-5)
[  329.964181][T21114] dummy0: left allmulticast mode
[  329.971120][T21114] bridge0: port 1(dummy0) entered disabled state
[  330.003338][T21114] vlan0: entered promiscuous mode
[  330.021001][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.039948][T21114] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  330.101670][T21126] loop5: detected capacity change from 0 to 512
[  330.118216][T21126] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  330.146460][T21126] EXT4-fs (loop5): 1 truncate cleaned up
[  330.158868][T21126] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.192659][T21128] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5970'.
[  330.209295][T21128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5970'.
[  330.275909][T14166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.322031][T21140] loop5: detected capacity change from 0 to 1024
[  330.324516][T21142] loop7: detected capacity change from 0 to 1024
[  330.345989][T21140] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  330.380309][T21142] loop7: detected capacity change from 0 to 2048
[  330.420324][T21142] EXT4-fs (loop7): failed to initialize system zone (-117)
[  330.427781][T21142] EXT4-fs (loop7): mount failed
[  330.476945][T21142] loop7: detected capacity change from 0 to 1024
[  330.555040][T21156] loop7: detected capacity change from 0 to 512
[  330.588702][T21156] EXT4-fs (loop7): orphan cleanup on readonly fs
[  330.609015][T21156] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5982: bg 0: block 248: padding at end of block bitmap is not set
[  330.645387][T21156] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.5982: Failed to acquire dquot type 1
[  330.680050][T21156] EXT4-fs (loop7): 1 truncate cleaned up
[  330.712946][T21156] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  330.805943][T18508] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.888090][T21178] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5991'.
[  331.093411][T21185] smc: net device bond0 applied user defined pnetid SYZ0
[  331.111238][T21190] netlink: 5 bytes leftover after parsing attributes in process `syz.6.5996'.
[  331.111689][T21185] smc: net device bond0 erased user defined pnetid SYZ0
[  331.127731][T21190] 0��{X��: renamed from 
31��{X�� (while UP)
[  331.144441][T21190] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  331.271476][T21201] loop0: detected capacity change from 0 to 512
[  331.288235][T21201] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.301070][T21201] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.409333][   T29] kauditd_printk_skb: 558 callbacks suppressed
[  331.409347][   T29] audit: type=1326 audit(1753008071.086:83414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb1f695967 code=0x7ffc0000
[  331.439299][   T29] audit: type=1326 audit(1753008071.086:83415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb1f63ab89 code=0x7ffc0000
[  331.462913][   T29] audit: type=1326 audit(1753008071.086:83416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fdb1f69e9a9 code=0x7ffc0000
[  331.486507][   T29] audit: type=1326 audit(1753008071.096:83417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb1f695967 code=0x7ffc0000
[  331.510008][   T29] audit: type=1326 audit(1753008071.096:83418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb1f63ab89 code=0x7ffc0000
[  331.533578][   T29] audit: type=1326 audit(1753008071.096:83419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fdb1f69e9a9 code=0x7ffc0000
[  331.557165][   T29] audit: type=1326 audit(1753008071.106:83420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb1f695967 code=0x7ffc0000
[  331.580801][   T29] audit: type=1326 audit(1753008071.106:83421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb1f63ab89 code=0x7ffc0000
[  331.604491][   T29] audit: type=1326 audit(1753008071.106:83422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fdb1f69e9a9 code=0x7ffc0000
[  331.628363][   T29] audit: type=1326 audit(1753008071.116:83423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21196 comm="syz.5.5998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb1f695967 code=0x7ffc0000
[  331.824375][T21220] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6004'.
[  331.903656][T21226] loop7: detected capacity change from 0 to 1024
[  331.910712][T21226] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  331.921380][T21226] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  331.952964][T21229] loop7: detected capacity change from 0 to 1024
[  331.973212][T21229] loop7: detected capacity change from 0 to 2048
[  331.986520][T21229] EXT4-fs (loop7): failed to initialize system zone (-117)
[  331.993988][T21229] EXT4-fs (loop7): mount failed
[  332.010662][T21229] loop7: detected capacity change from 0 to 1024
[  332.101040][T21240] ==================================================================
[  332.109188][T21240] BUG: KCSAN: data-race in getrusage / vms_clear_ptes
[  332.115996][T21240] 
[  332.118339][T21240] write to 0xffff88810a3be400 of 8 bytes by task 21239 on cpu 0:
[  332.126081][T21240]  vms_clear_ptes+0x18f/0x2d0
[  332.130791][T21240]  mmap_region+0x6e8/0x1580
[  332.135320][T21240]  do_mmap+0x9b3/0xbe0
[  332.139430][T21240]  vm_mmap_pgoff+0x17a/0x2e0
[  332.144059][T21240]  ksys_mmap_pgoff+0xc2/0x310
[  332.148774][T21240]  x64_sys_call+0x1602/0x2fb0
[  332.153471][T21240]  do_syscall_64+0xd2/0x200
[  332.157991][T21240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.163906][T21240] 
[  332.166240][T21240] read to 0xffff88810a3be400 of 8 bytes by task 21240 on cpu 1:
[  332.173882][T21240]  getrusage+0xa52/0xbb0
[  332.178146][T21240]  io_sq_thread+0x5dd/0x1180
[  332.182755][T21240]  ret_from_fork+0xda/0x150
[  332.187277][T21240]  ret_from_fork_asm+0x1a/0x30
[  332.192060][T21240] 
[  332.194399][T21240] value changed: 0x00000000000014ed -> 0x00000000000016b7
[  332.201514][T21240] 
[  332.203846][T21240] Reported by Kernel Concurrency Sanitizer on:
[  332.210007][T21240] CPU: 1 UID: 0 PID: 21240 Comm: iou-sqp-21239 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  332.222798][T21240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  332.232868][T21240] ==================================================================
[  332.257118][T20886] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.