last executing test programs:

1m36.199392964s ago: executing program 2 (id=6243):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = io_uring_setup(0x6b3, &(0x7f0000000000)={0x0, 0xf324, 0x800, 0x2, 0xb9})
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000140)={&(0x7f0000001000)={[{0x0}]}, 0x1}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f00000075c0)={0x0}, 0x1)

1m36.093775565s ago: executing program 2 (id=6245):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000009c0000000b"], 0x50)
r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa46041, 0x0, 0x1, 0x0, &(0x7f0000000040))
socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000000)=ANY=[], 0x3, 0x7ec, &(0x7f0000002780)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16, @ANYBLOB="0000000087072a940100000090ff00010000b70800000000e7057b00000000bfa2000000291eace9f4373800000007020000f8ffffffb703000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000a40)=ANY=[@ANYBLOB='-memory -nes \x00\x00\x00\x00'], 0x11)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r4}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000b80)='jbd2_shrink_checkpoint_list\x00', r5, 0x0, 0x2}, 0x18)
r6 = inotify_init1(0x0)
inotify_add_watch(r6, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r6, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="1400000076007f27c8fdc6000000000000000000", 0x14}], 0x1}, 0x0)

1m35.959151858s ago: executing program 2 (id=6249):
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x40, 0x1, 0xfe, 0x0, 0x0, 0x0, 0x2000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x102202, 0x0, 0x0, 0x0, 0x40}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0a0000008400000000010000010000000000", @ANYBLOB], 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x8, 0x3, &(0x7f0000000080)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x61, 0x54}}, &(0x7f0000281ffc)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="5cdd3086ddffff6633c9bbac88a8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="461165c5000000031e000047"], 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110c230000)
ioctl$TUNSETOFFLOAD(r3, 0x40047440, 0xf0ff1f00000000)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000000)={'veth1_to_bridge\x00', 0xd00})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000000)=0x8ce)
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1m35.496999026s ago: executing program 2 (id=6257):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = io_uring_setup(0x6b3, &(0x7f0000000000)={0x0, 0xf324, 0x800, 0x2, 0xb9})
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000140)={&(0x7f0000001000)={[{0x0}]}, 0x1}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f00000075c0)={0x0}, 0x1)

1m35.436674296s ago: executing program 2 (id=6258):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x2, 0x0, 0x1, 0xf63, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000440)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r4}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r5}, &(0x7f0000000000), &(0x7f00000005c0)=r6}, 0x20)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000080)={0x8})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={0xffffffffffffffff, 0xe0, &(0x7f0000001e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000680)=[0x0, 0x0], ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x3, 0x6, &(0x7f00000006c0)=[0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xe, &(0x7f0000000740)=[{}, {}], 0x10, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x73, 0x8, 0x8, &(0x7f0000000800)}}, 0x10)
r9 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000880)='.log\x00', 0x300e00, 0x1)
r10 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000001f80)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_ext={0x1c, 0x2f, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x800}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@tail_call, @ldst={0x2, 0x0, 0x3, 0x5, 0xa, 0x8, 0x4}, @jmp={0x5, 0x0, 0x7, 0x3, 0x7, 0xfffffffffffffffc, 0xffffffffffffffff}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @map_fd={0x18, 0x0, 0x1, 0x0, r5}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0xff}, @map_fd={0x18, 0x2, 0x1, 0x0, r7}, @generic={0x43, 0x5, 0x2, 0x5, 0x101}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000600)='GPL\x00', 0x5, 0x1000, &(0x7f0000000e40)=""/4096, 0x41000, 0x58, '\x00', r8, 0x0, r9, 0x8, &(0x7f0000001f40)={0x3, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x2f302, r10, 0x5, 0x0, &(0x7f0000001fc0)=[{0x2, 0x2, 0x1, 0x8}, {0x1, 0x5, 0x9, 0x7}, {0x5, 0x2, 0x6, 0x7}, {0x1, 0x1, 0x4, 0x5}, {0x1, 0x4, 0x6, 0xc}], 0x10, 0x1e07, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r11}, 0x10)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000000)={[{@dioread_lock}, {@noquota}, {@errors_remount}, {@noblock_validity}]}, 0xfc, 0x564, &(0x7f00000008c0)="$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")
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0)

1m35.358165497s ago: executing program 2 (id=6259):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000019c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)

1m20.380621477s ago: executing program 32 (id=6259):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000019c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)

2.717532775s ago: executing program 1 (id=8017):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0xc41, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x24a000, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r1)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mq_open(&(0x7f0000000100)=' \x01\x9c\x147\xb3\xcf\xfc\xc3\xa2W)\xebs\x93\xa7\xc7-\xeb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00AWK\n\x8b!Q\x8f\xf6\xec\xa5fs\xf5l{T\x87r\xd2)r\xa7\xd6\bO\x9a\x98\xf52:\"\xf4\x12\xc0T+\xcd\x9fv|\x8d\xd5\xb2Dvc\x8e\x93\xd8\xd6\xa0\xc56\xd2x\xe3g:', 0x41, 0x80, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x1943, 0x10100, 0x2002}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x60, 0x1, r3, 0x0, 0x0, 0x0, 0x61, 0x1, {0x1}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r4, 0x7330, 0x0, 0x0, 0x0, 0x0)

2.601013167s ago: executing program 1 (id=8020):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='irq_handler_exit\x00', r3, 0x0, 0xfffffffeffffffff}, 0x18)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
r4 = socket$kcm(0x10, 0x2, 0x4)
close(r4)
socket$kcm(0x10, 0x2, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x163042, 0xfc)
ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f00000002c0))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r6 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r7=>0x0, &(0x7f00000000c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r6, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x18)
r10 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r10, &(0x7f00000008c0)=""/49, 0x31)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)
chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef)
lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00)
open(&(0x7f0000000140)='./control\x00', 0x551a01, 0x408)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x835, 0x1)

2.517143178s ago: executing program 3 (id=8022):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x47, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="440000001000030428b57000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="a100000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x44}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)

2.4596205s ago: executing program 1 (id=8023):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8fff, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x5}, 0x18)
mount_setattr(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1800, &(0x7f0000000200), 0x20)
io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
fstatfs(r3, &(0x7f0000000500)=""/186)

2.38828285s ago: executing program 3 (id=8024):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)}}], 0x1, 0x9200000000000000)
r3 = dup3(r1, r0, 0x0)
recvmmsg(r3, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

2.317607481s ago: executing program 1 (id=8025):
r0 = socket$inet(0x4, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRES64=r0], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES8], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="86ec2fa8845d91c8aba00eafccb752d18fdce36fc9a5ba77f7d7113a3cedd5c12df5c868ce3790f9f802c0978676efa4080b52432c2357960675", @ANYRES16=r8, @ANYBLOB="010f2bbd7000fcdbdf2510000000"], 0x14}, 0x1, 0x0, 0x0, 0x1021}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x18)
unshare(0x2040400)
r9 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
fsmount(r9, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x0, @perf_bp={&(0x7f0000000400), 0x5}, 0x45ff5eb5c5b446aa, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f00000004c0)={{}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)

2.247855733s ago: executing program 4 (id=8027):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='irq_handler_exit\x00', r2, 0x0, 0xfffffffeffffffff}, 0x18)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x10, 0x2, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x163042, 0xfc)
ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f00000002c0))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
io_uring_enter(0xffffffffffffffff, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x18)
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f00000008c0)=""/49, 0x31)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)
chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef)
lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00)

2.207234953s ago: executing program 4 (id=8029):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0e0000000300000008000000e1aa57dc009efb8b32f480b0d920c38dfc4bc8939d41e840b9ae24a05fe308a2274e0566447934366b0587a0e1641ed7e3499f5793e57ecf1e3070225807c4d5c214d9475e479920f9c20d3ca6a74172c0a20bc99de5e042b7786b57d1906f37d7f9239f4e029290fb0db1f81d256ed8da42f2470bcbb0897234b7e4c240513ca01163afec74bb80d6d0b1fbe440698c67294c94099e1c75c721c51b37ac2b6bc6bb36fc849428fed337365bc263", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='sched_switch\x00', r1}, 0x18)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)
r2 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r3 = memfd_create(&(0x7f0000001500)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\x99\xe6\x9a-[\x13\x95\xcf\x8d\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\xac\xd3j\xefT\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2\xc3?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x06\xe0\xc1g}\xae\b\x00\x00\x00\x00\x00\x00\x00\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xe9zI\xec\xa7\x8a\x94\x94\xdf\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x114\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xd24\xcbk\x1d.\xa6\xd2apE\x16a\x1dB^\n/\xc5\x98\x16\xd06\xc1\f\xfbd3F\x9e\x86K\xeby\x0e(\\\x8al\x9a\x1e\xf1\xde2+=\x87~\n\xd3~\xb7M\xca\xe1\t?\x00\xb7\xa7\xef\xcc\x15\xc9AL\xb4A\xcf\vD\xb6e\xa5E\xed~\xc6u\x8b\f\x80np\xe2\xc6;M\xd7\x80a\ax\x1f$\xbc{^\x8c\xbc\x0f\xffz\xa4\xdc\x8c\xb9\xae\xdd.\x92\xe4\x06\b\x12H\x914\x93\r\xd5\xb0\xf3cf\xce\xa9\x14\xb9\xda\x94\xdd\x89\xd8\xd7U\xa9\xec\x01o\xfb\vC/\x8c\x9cEB\tB\x85\xc7\xa1\xa9\x97_\xa2au\x8f\xd7\xeb\x97\x18\xce]c:*+o\x01\xd0\xca\xca\x19\xa7\xad\xc4\xfau\xf0\xfd\xda\xc1\xfb+\xc8\x8f\tJs\xea\xeb\x1c\xd3\xa3F\xa6\xb2\x14\xdf\x87\x9f\xb1\xe0d\xe4c\xa4jMd\xc8\xd2N\x8b\"8\xa36\x118\x96\xfd\xe0\xe6\xc6\x98\x987\xf2\xa5\xf8\xd5\xaew\xf1\xcb`\xcd*f\r\xb0\x9ba*O\xdflT\x11\x82a', 0x6)
pwritev(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r2, r2, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_io_uring_setup(0x2d64, &(0x7f0000000780)={0x0, 0x100577, 0x9001, 0x0, 0x42}, &(0x7f0000013000), &(0x7f0000000400))
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
mount$nfs(&(0x7f0000000200)='syz1\x00', 0x0, &(0x7f0000000300), 0x200000, &(0x7f0000000700)=ANY=[@ANYBLOB='uid=', @ANYRESDEC, @ANYBLOB="2c7375626a5f757365723d6e6673232c646566636f6e746578743d73797374656d5f752c736d61636b56c564d32e8444578bbfe16bd666736861744d2f646576"])
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x44)
sendfile(r7, r7, 0x0, 0x800000009)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)=ANY=[@ANYBLOB='.\x00\x00\f7'])
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f0000000280)={0x17c04, 0xffffffffffffffff, 0x7, 0x100000001, 0x6, 0x8021})

1.989228967s ago: executing program 5 (id=8031):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8fff, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x5}, 0x18)
mount_setattr(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1800, &(0x7f0000000200), 0x20)
r5 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r6=>0x0})
sendto$packet(r2, &(0x7f0000000a00)="10200003", 0x4, 0x4, &(0x7f0000000940)={0x11, 0x8100, r6, 0x1, 0x9, 0x6, @random="ec7336c86934"}, 0x14)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000023c0)={'veth1_to_batadv\x00'})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000640)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x6, 0x0, 0x7ffc1ffa}]})
fstatfs(r7, &(0x7f0000000500)=""/186)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000740)={0x0, 0x5c, &(0x7f00000006c0)=[@in6={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xe}, @in={0x2, 0x4e23, @rand_addr=0x64010100}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x19}}, @in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e22, @broadcast}]}, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x9, 0x1ec)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

1.867897339s ago: executing program 5 (id=8033):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0xc41, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x24a000, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
dup(0xffffffffffffffff)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mq_open(&(0x7f0000000100)=' \x01\x9c\x147\xb3\xcf\xfc\xc3\xa2W)\xebs\x93\xa7\xc7-\xeb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00AWK\n\x8b!Q\x8f\xf6\xec\xa5fs\xf5l{T\x87r\xd2)r\xa7\xd6\bO\x9a\x98\xf52:\"\xf4\x12\xc0T+\xcd\x9fv|\x8d\xd5\xb2Dvc\x8e\x93\xd8\xd6\xa0\xc56\xd2x\xe3g:', 0x41, 0x80, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x1943, 0x10100, 0x2002}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x60, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x61, 0x1, {0x1}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x7330, 0x0, 0x0, 0x0, 0x0)

1.834497849s ago: executing program 5 (id=8034):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x3, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r0, @ANYRES32, @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x4c, 0x200008d4, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @local}, 0xfe8b)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000711000/0x3000)=nil)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000940)}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='xprtrdma_err_unrecognized\x00', r1, 0x0, 0xe1}, 0x18)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f00000008c0)={0x0, 0x3, [@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}, @empty]})
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000001d40)={0xa, 0x4}, 0xc)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@journal_dev={'journal_dev', 0x3d, 0x2d353}}, {@nobh}]}, 0x1, 0x512, &(0x7f0000000380)="$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")
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r5, 0xc004743e, 0x110e22fff6)

1.498828995s ago: executing program 3 (id=8039):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r0, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)=""/127, 0x7f}}], 0x1, 0x10000, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x14)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000015c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r2, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001600)={0x54, r3, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x1}, {0xc, 0x90, 0xfff}}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x4040000)
timer_create(0x1, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000080000000b"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x97, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r5}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa2, 0x7}}, './file0\x00'})
r6 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r6, 0x2284, &(0x7f0000000080))
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa207020000f8ffffffb703000008000000b704000000000000850000000300000095712d79592271d8baa4d2088fdaa008808d3f8d8a835a278e4a7e2f221e06cf5fc9c506fcbd80171f701d4b4b3b93b1c5bc5a561fd23f816b2acedd3400d57c90b38d50a012082482d11ed7ba0a6a22df1f115f4cace1"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='fscache_access\x00', r7}, 0x18)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYRES32=r8, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xe, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000480)='dax_insert_mapping\x00', r9, 0x0, 0x9}, 0xfffffffffffffee5)
r10 = memfd_create(&(0x7f0000001380)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F\x80\x10\xc2\xef\xc7/\x9c\xffN\xa0E\x13\xd6\x0e<T\xf4\x8e(\x1e\xcb3\x9ex\xef%\x95\xef\x1f\x8a%[\xee\xa7\x9f\x86y\xec\xdd\xb8\xb6\xb2$z\xc0(\xe2`\x9b\x1fW/E\x18%\\\xaf%\x9c\xdc%\x1c\xecY7\xe94\x01\x97*d|\x89\x8d8*\xd5\x82\x11\xc8\xc7%o\x9e\xab+lt\\,]\f\xe2N\xd2Y\xbd', 0x0)
write$binfmt_misc(r10, &(0x7f0000000180)="e502", 0x2)
writev(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(0xffffffffffffffff, 0x0, 0x200400c4)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}}, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
syz_open_dev$hiddev(&(0x7f0000000180), 0x280, 0x88200)

1.498228405s ago: executing program 0 (id=8040):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='irq_handler_exit\x00', r1, 0x0, 0xfffffffeffffffff}, 0x18)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
r2 = socket$kcm(0x10, 0x2, 0x4)
close(r2)
socket$kcm(0x10, 0x2, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x163042, 0xfc)
ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f00000002c0))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r4 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r4, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x18)
r8 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r8, &(0x7f00000008c0)=""/49, 0x31)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)
chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef)
lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00)
open(&(0x7f0000000140)='./control\x00', 0x551a01, 0x408)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000100)=ANY=[], 0x835, 0x1)

1.393182507s ago: executing program 1 (id=8041):
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0x1, 0x58, &(0x7f0000000280)}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa8, 0xa8, 0xb, [@restrict={0x8, 0x0, 0x0, 0xb, 0x3}, @enum64={0x10, 0x7, 0x0, 0x13, 0x0, 0x2, [{0xc, 0x7, 0x8}, {0x1, 0x7}, {0x1, 0xfff, 0x2}, {0xf, 0x3, 0x2f}, {0x8, 0x3, 0x1}, {0x10, 0x8000, 0x80000001}, {0x8, 0x6, 0x7}]}, @float={0x3, 0x0, 0x0, 0x10, 0xc}, @volatile={0x0, 0x0, 0x0, 0x9, 0x3}, @func={0x1, 0x0, 0x0, 0xc, 0x1}, @typedef={0x3, 0x0, 0x0, 0x8, 0x3}, @const={0x2, 0x0, 0x0, 0xa, 0x4}]}, {0x0, [0x30, 0x30, 0x0, 0x30, 0x5f, 0x0, 0x30, 0x0, 0x2e]}}, &(0x7f0000000880)=""/80, 0xcb, 0x50, 0x1, 0x9, 0x10000, @value}, 0x28)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20)
sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

1.360323087s ago: executing program 0 (id=8042):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000000)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000080), &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x0, 0x19, &(0x7f0000000240)=[{}, {}], 0x10, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x8a, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f0000010180)=ANY=[], 0x10448)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x1, 0xcc, &(0x7f0000000700)=[{&(0x7f0000000800)=""/215, 0xd7}]}, &(0x7f0000000080)="0000501ef663", 0x0, 0x800004, 0x10030, 0x0, 0x0})
ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f0000000380))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet(0x2, 0xa, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001c00)=@newqdisc={0x5e4, 0x24, 0xf0b, 0x1e, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x544, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "38883e6f68f5f6f6a806ba30c77764f64384e829eaa17d91ef6ab716efb130e5e387bf22efe8d0697fdfa48770b02e3046ce5d558218f68c29513776bc8a9f316d7ffbbc6e4b615fb444f445bc8a729521e694bce3f03e24fa87473542b745a60fde6208f576fec54d0c93cb7384a214a1d33e4209d58f64fd273207fef663cd625385ddbd22fba518b78fc8577f40665e5a298259cce0786c25392c419d22d080bc608399b2c131c0433022ec3b41720ba95c3f6a785d549ca7bcc89a264a14d3a15536a994596a5062ca4b18ac5aae2effb3f786680a705d331adb180c9b1980359f3ffb2a3fcd583320c1983e919a262ad0cb7c6e5f1d2eefc01e689ab2b8"}, @TCA_CHOKE_MAX_P={0x8, 0x3, 0x7}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_STAB={0x104, 0x2, "b5ea6347f65c114efa3a54287e48202e67f4c82a72298c88aab47c99b4dde8956281ee868a014d44e96bc9c87a4e45b2abc5c3c49ad270eae20954883223db214e172e59e9f704aa61b469df5ac15d1f0d6568bef5a040287a8d0dede26a035214a4c070ad24d9cd642a42356c3d4f0ee70b6993fca62a6bd957dcffc7ab3ee3b36eb94f1b219aaab1a72d56d9545e0f284cb7db6e361b79781c095997432317f87dd067f8c618c6c1ed8ca39f8287f1a6adbfe9a167782eafb54db0503f23327907586fefd353c08c32c245021a468fcb4b78d1add9ad3f0b38346070b9b1c9d61ed5a2fcbb238da7513d3c6d1468461797864b52c6cbf5798932345f673d45"}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x3, 0x6, 0xe9, 0x5, 0x20, 0x1f, 0x1}}, @TCA_CHOKE_MAX_P={0x8, 0x3, 0xbb8}, @TCA_CHOKE_MAX_P={0x8, 0x3, 0x4}]}}, @TCA_STAB={0x70, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}, {{0x1c, 0x1, {0x9, 0xd6, 0x1, 0x40000, 0x1, 0x401, 0x0, 0x4}}, {0xc, 0x2, [0xfffe, 0xfffe, 0x2, 0x0]}}, {{0x1c, 0x1, {0x5, 0x7f, 0x7, 0xfffffff8, 0x2, 0x6, 0x4, 0x2}}, {0x8, 0x2, [0x3, 0x92b8]}}]}]}, 0x5e4}}, 0x0)
socket(0x11, 0x3, 0x37)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$xdp(0x2c, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x400000000000004)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f00000004c0)=0x1000000, 0x4)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000000000002a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1)

1.359860568s ago: executing program 4 (id=8043):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000380)={0x0, r1}, 0x8)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRES64=r2, @ANYRES64=r2], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r0}, 0x4)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_read_part_table(0x5c8, &(0x7f0000000600)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
readlinkat(0xffffffffffffffff, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000006c0)=""/198, 0xc6)

1.064112402s ago: executing program 5 (id=8044):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

1.040324142s ago: executing program 0 (id=8045):
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x40, 0x1, 0xfe, 0x0, 0x0, 0x0, 0x2000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x102202, 0x0, 0x0, 0x0, 0x40}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0a0000008400000000010000010000000000", @ANYBLOB], 0x50)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f00000000c0)="5cdd3086ddffff6633c9bbac88a8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="461165c5000000031e000047"], 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110c230000)
ioctl$TUNSETOFFLOAD(r2, 0x40047440, 0xf0ff1f00000000)
ioctl$TUNSETQUEUE(r0, 0x400454d9, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000000)=0x8ce)
ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

953.025604ms ago: executing program 1 (id=8046):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x4, 0x0, 0x0, 0xb1a, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usb_disconnect(0xffffffffffffffff)

910.147685ms ago: executing program 5 (id=8047):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r3 = dup3(r1, r0, 0x0)
recvmmsg(r3, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

877.401256ms ago: executing program 0 (id=8048):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001f7, 0x82)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x18, 0xf, 0x0, 0x2, 0x0})

849.800296ms ago: executing program 0 (id=8049):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1}}], 0x1, 0x9200000000000000)
r3 = dup3(r1, r0, 0x0)
recvmmsg(r3, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

833.009606ms ago: executing program 4 (id=8050):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea4, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1, 0x0, 0x20000000}, 0x18)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xc000, 0x0)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)

813.352366ms ago: executing program 5 (id=8051):
r0 = socket$inet(0x4, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRES64=r0], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES8], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NAME_TABLE_GET(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="86ec2fa8845d91c8aba00eafccb752d18fdce36fc9a5ba77f7d7113a3cedd5c12df5c868ce3790f9f802c0978676efa4080b52432c2357960675", @ANYRES16=r8, @ANYBLOB="010f2bbd7000fcdbdf2510000000"], 0x14}, 0x1, 0x0, 0x0, 0x1021}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x18)
unshare(0x2040400)
r9 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
fsmount(r9, 0x0, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x0, @perf_bp={&(0x7f0000000400), 0x5}, 0x45ff5eb5c5b446aa, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r10 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f00000004c0)={{}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
syz_clone(0x800500, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48)

704.814768ms ago: executing program 4 (id=8052):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x47, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=ANY=[@ANYBLOB="440000001000030428b57000fedbdf2500000000", @ANYRES32=0x0, @ANYBLOB="a100000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x44}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)

678.513749ms ago: executing program 4 (id=8053):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0e0000000300000008000000e1aa57dc009efb8b32f480b0d920c38dfc4bc8939d41e840b9ae24a05fe308a2274e0566447934366b0587a0e1641ed7e3499f5793e57ecf1e3070225807c4d5c214d9475e479920f9c20d3ca6a74172c0a20bc99de5e042b7786b57d1906f37d7f9239f4e029290fb0db1f81d256ed8da42f2470bcbb0897234b7e4c240513ca01163afec74bb80d6d0b1fbe440698c67294c94099e1c75c721c51b37ac2b6bc6bb36fc849428fed337365bc263", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='sched_switch\x00', r1}, 0x18)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)
r2 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r3 = memfd_create(&(0x7f0000001500)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\x99\xe6\x9a-[\x13\x95\xcf\x8d\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\xac\xd3j\xefT\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2\xc3?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x06\xe0\xc1g}\xae\b\x00\x00\x00\x00\x00\x00\x00\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xe9zI\xec\xa7\x8a\x94\x94\xdf\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x114\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xd24\xcbk\x1d.\xa6\xd2apE\x16a\x1dB^\n/\xc5\x98\x16\xd06\xc1\f\xfbd3F\x9e\x86K\xeby\x0e(\\\x8al\x9a\x1e\xf1\xde2+=\x87~\n\xd3~\xb7M\xca\xe1\t?\x00\xb7\xa7\xef\xcc\x15\xc9AL\xb4A\xcf\vD\xb6e\xa5E\xed~\xc6u\x8b\f\x80np\xe2\xc6;M\xd7\x80a\ax\x1f$\xbc{^\x8c\xbc\x0f\xffz\xa4\xdc\x8c\xb9\xae\xdd.\x92\xe4\x06\b\x12H\x914\x93\r\xd5\xb0\xf3cf\xce\xa9\x14\xb9\xda\x94\xdd\x89\xd8\xd7U\xa9\xec\x01o\xfb\vC/\x8c\x9cEB\tB\x85\xc7\xa1\xa9\x97_\xa2au\x8f\xd7\xeb\x97\x18\xce]c:*+o\x01\xd0\xca\xca\x19\xa7\xad\xc4\xfau\xf0\xfd\xda\xc1\xfb+\xc8\x8f\tJs\xea\xeb\x1c\xd3\xa3F\xa6\xb2\x14\xdf\x87\x9f\xb1\xe0d\xe4c\xa4jMd\xc8\xd2N\x8b\"8\xa36\x118\x96\xfd\xe0\xe6\xc6\x98\x987\xf2\xa5\xf8\xd5\xaew\xf1\xcb`\xcd*f\r\xb0\x9ba*O\xdflT\x11\x82a', 0x6)
pwritev(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
sendfile(r2, r2, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
r4 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r4, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x0, 0x3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_io_uring_setup(0x2d64, &(0x7f0000000780)={0x0, 0x100577, 0x9001, 0x0, 0x42}, &(0x7f0000013000), &(0x7f0000000400))
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
mount$nfs(&(0x7f0000000200)='syz1\x00', 0x0, &(0x7f0000000300), 0x200000, &(0x7f0000000700)=ANY=[@ANYBLOB='uid=', @ANYRESDEC, @ANYBLOB="2c7375626a5f757365723d6e6673232c646566636f6e746578743d73797374656d5f752c736d61636b56c564d32e8444578bbfe16bd666736861744d2f646576"])
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x44)
sendfile(r7, r7, 0x0, 0x800000009)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)=ANY=[@ANYBLOB='.\x00\x00\f7'])
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f0000000280)={0x17c04, 0xffffffffffffffff, 0x7, 0x100000001, 0x6, 0x8021})

677.982998ms ago: executing program 3 (id=8054):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x9752333b9a87418, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000340)='cpu\t~0&&\t')

586.11368ms ago: executing program 3 (id=8055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000099000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='irq_handler_exit\x00', r3, 0x0, 0xfffffffeffffffff}, 0x18)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
socket$kcm(0x10, 0x2, 0x4)
socket$kcm(0x10, 0x2, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x163042, 0xfc)
ioctl$TIOCGPTLCK(r4, 0x80045439, &(0x7f00000002c0))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
io_uring_enter(0xffffffffffffffff, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x18)
r6 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f00000008c0)=""/49, 0x31)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)
chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef)
lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00)

548.572541ms ago: executing program 3 (id=8056):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='irq_handler_exit\x00', r3, 0x0, 0xfffffffeffffffff}, 0x18)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
r4 = socket$kcm(0x10, 0x2, 0x4)
close(r4)
socket$kcm(0x10, 0x2, 0x0)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x163042, 0xfc)
ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f00000002c0))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r6 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r7=>0x0, &(0x7f00000000c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r6, 0x567, 0x1000a387, 0x0, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xb, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x18)
r10 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r10, &(0x7f00000008c0)=""/49, 0x31)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)
chmod(&(0x7f0000000940)='./control\x00', 0x9c32f69e6caa24ef)
lchown(&(0x7f0000000000)='./control\x00', 0x0, 0xee00)
open(&(0x7f0000000140)='./control\x00', 0x551a01, 0x408)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000100)=ANY=[], 0x835, 0x1)

0s ago: executing program 0 (id=8057):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="16000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x8, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
socket(0x1f, 0x3, 0xfffffffd)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
r4 = socket$packet(0x11, 0x2, 0x300)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0xa, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r5=>0x0, 0x4c, &(0x7f0000000240)=[{}, {}], 0x10, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x55, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x13, 0x6, &(0x7f00000000c0)=ANY=[@ANYRES64=r4], &(0x7f0000000140)='GPL\x00', 0x5, 0xba, &(0x7f000000cf3d)=""/186, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, r5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100), 0x4)
r6 = syz_open_dev$evdev(&(0x7f00000000c0), 0x1, 0x109480)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fb, 0x0, 0x32, 0x0, 0x3}, 0x9c)
bind$inet6(r7, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xd, @loopback}, 0x1c)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r7, 0x1)
ioctl$EVIOCGABS2F(r6, 0x8018456f, &(0x7f0000000280)=""/98)
sendmmsg$inet6(r7, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="af", 0x34000}], 0x1}}], 0x1, 0x0)
sendmmsg$unix(r0, &(0x7f0000000440)=[{{0x0, 0x19, 0x0, 0x0, &(0x7f0000000080)=[@cred], 0x81, 0x4000080}}], 0x1, 0x40000)

kernel console output (not intermixed with test programs):

75] CPU: 1 UID: 0 PID: 22775 Comm: syz.0.6927 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  408.619963][T22775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  408.620020][T22775] Call Trace:
[  408.620026][T22775]  <TASK>
[  408.620033][T22775]  dump_stack_lvl+0xf6/0x150
[  408.620056][T22775]  dump_stack+0x15/0x1a
[  408.620073][T22775]  should_fail_ex+0x261/0x270
[  408.620103][T22775]  should_fail_alloc_page+0xfd/0x110
[  408.620143][T22775]  __alloc_frozen_pages_noprof+0x11d/0x360
[  408.620267][T22775]  alloc_pages_mpol+0xb6/0x260
[  408.620320][T22775]  vma_alloc_folio_noprof+0x19c/0x300
[  408.620352][T22775]  handle_mm_fault+0xdda/0x2e80
[  408.620407][T22775]  ? mas_walk+0x204/0x320
[  408.620442][T22775]  ? __rcu_read_unlock+0x4e/0x70
[  408.620485][T22775]  exc_page_fault+0x3b9/0x6a0
[  408.620539][T22775]  asm_exc_page_fault+0x26/0x30
[  408.620605][T22775] RIP: 0033:0x7f59f7fa0be3
[  408.620619][T22775] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  408.620675][T22775] RSP: 002b:00007f59f67254a0 EFLAGS: 00010206
[  408.620694][T22775] RAX: 0000000000002000 RBX: 00007f59f6725540 RCX: 00007f59ee306000
[  408.620709][T22775] RDX: 00007f59f67256e0 RSI: 0000000000000001 RDI: 00007f59f67255e0
[  408.620724][T22775] RBP: 0000000000000043 R08: 0000000000000009 R09: 00000000000001a6
[  408.620755][T22775] R10: 00000000000001b2 R11: 00007f59f6725540 R12: 0000000000000001
[  408.620769][T22775] R13: 00007f59f817bf40 R14: 00000000000000ed R15: 00007f59f67255e0
[  408.620852][T22775]  </TASK>
[  408.620862][T22775] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  409.113911][T22767] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6924'.
[  409.123168][T22767] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6924'.
[  410.515260][   T29] kauditd_printk_skb: 151 callbacks suppressed
[  410.515275][   T29] audit: type=1326 audit(1744767409.506:13317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.590979][   T29] audit: type=1326 audit(1744767409.536:13318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.614730][   T29] audit: type=1326 audit(1744767409.536:13319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.638430][   T29] audit: type=1326 audit(1744767409.536:13320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.662008][   T29] audit: type=1326 audit(1744767409.536:13321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.685637][   T29] audit: type=1326 audit(1744767409.536:13322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.709260][   T29] audit: type=1326 audit(1744767409.536:13323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.732976][   T29] audit: type=1326 audit(1744767409.536:13324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.756609][   T29] audit: type=1326 audit(1744767409.536:13325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  410.780287][   T29] audit: type=1326 audit(1744767409.536:13326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22866 comm="syz.3.6963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  411.633755][T22905] SELinux: syz.5.6979 (22905) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  411.925452][T22908] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6980'.
[  412.052063][T22936] SELinux: syz.3.6992 (22936) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  412.099128][T22936] loop3: detected capacity change from 0 to 8192
[  412.105980][T22936] vfat: Unknown parameter 'b>ÓŠè�$áK@#GVÝοº/‡’[ú˨1	u?T:Ð'íÖ�Iî™î¼o}mÔ®Ô¯áôLË臛p§	'
[  412.131536][T22938] loop5: detected capacity change from 0 to 1024
[  412.140678][T22938] EXT4-fs: Ignoring removed bh option
[  412.157337][T22938] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.191547][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.323968][T22951] loop5: detected capacity change from 0 to 1024
[  412.330778][T22951] EXT4-fs: Ignoring removed bh option
[  412.349355][T22951] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.411382][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.577999][T22968] SELinux: syz.3.7004 (22968) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  412.713157][T22962] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7002'.
[  413.078539][T22980] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7009'.
[  413.088057][T22980] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7009'.
[  413.447356][T23008] loop5: detected capacity change from 0 to 1024
[  413.457421][T23008] EXT4-fs: Ignoring removed bh option
[  413.470225][T23008] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.523104][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.560974][T20823] block device autoloading is deprecated and will be removed.
[  413.734526][T23035] SELinux: syz.3.7030 (23035) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  414.527658][T23047] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7034'.
[  414.555492][T23060] loop1: detected capacity change from 0 to 1024
[  414.562340][T23060] EXT4-fs: Ignoring removed bh option
[  414.592857][T23060] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.644925][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.755786][T23071] loop5: detected capacity change from 0 to 1024
[  414.782149][T23071] EXT4-fs: Ignoring removed bh option
[  414.804728][T23071] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.853600][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.955026][T23090] SELinux:  policydb string length 50331656 does not match expected length 8
[  414.992976][T23090] SELinux: failed to load policy
[  415.175655][T23106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7047'.
[  415.834622][T23105] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7057'.
[  416.444184][   T29] kauditd_printk_skb: 253 callbacks suppressed
[  416.444200][   T29] audit: type=1400 audit(1744767415.436:13580): avc:  denied  { setattr } for  pid=23160 comm="syz.4.7076" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  416.580912][   T29] audit: type=1400 audit(1744767415.566:13581): avc:  denied  { name_bind } for  pid=23160 comm="syz.4.7076" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  416.602898][   T29] audit: type=1400 audit(1744767415.566:13582): avc:  denied  { node_bind } for  pid=23160 comm="syz.4.7076" saddr=224.0.0.2 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  416.603200][T23163] loop5: detected capacity change from 0 to 1024
[  416.691182][T23163] EXT4-fs: Ignoring removed bh option
[  416.706309][T23163] EXT4-fs: Ignoring removed oldalloc option
[  416.734075][T23166] loop1: detected capacity change from 0 to 512
[  416.750724][T23166] EXT4-fs: Ignoring removed nobh option
[  416.760321][T23163] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.808008][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #3: comm syz.1.7078: corrupted inode contents
[  416.855249][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.865535][T23166] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #3: comm syz.1.7078: mark_inode_dirty error
[  416.885907][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #3: comm syz.1.7078: corrupted inode contents
[  416.904169][T23166] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #3: comm syz.1.7078: mark_inode_dirty error
[  416.923106][T23166] Quota error (device loop1): write_blk: dquota write failed
[  416.931169][T23166] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  416.943677][T23166] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.7078: Failed to acquire dquot type 0
[  416.973933][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.7078: corrupted inode contents
[  416.991345][T23166] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #16: comm syz.1.7078: mark_inode_dirty error
[  417.014681][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.7078: corrupted inode contents
[  417.041051][T23166] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #16: comm syz.1.7078: mark_inode_dirty error
[  417.060305][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.7078: corrupted inode contents
[  417.097927][T23166] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  417.121445][T23181] loop5: detected capacity change from 0 to 1024
[  417.128162][T23166] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #16: comm syz.1.7078: corrupted inode contents
[  417.154573][T23181] EXT4-fs: Ignoring removed bh option
[  417.164306][T23166] EXT4-fs error (device loop1): ext4_truncate:4255: inode #16: comm syz.1.7078: mark_inode_dirty error
[  417.184393][T23166] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  417.198220][T23166] EXT4-fs (loop1): 1 truncate cleaned up
[  417.208206][T23166] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.224809][T23181] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.235303][T23166] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  417.391892][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.515927][T23189] FAULT_INJECTION: forcing a failure.
[  417.515927][T23189] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  417.529068][T23189] CPU: 1 UID: 0 PID: 23189 Comm: syz.5.7086 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  417.529100][T23189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  417.529115][T23189] Call Trace:
[  417.529123][T23189]  <TASK>
[  417.529131][T23189]  dump_stack_lvl+0xf6/0x150
[  417.529155][T23189]  dump_stack+0x15/0x1a
[  417.529174][T23189]  should_fail_ex+0x261/0x270
[  417.529273][T23189]  should_fail+0xb/0x10
[  417.529388][T23189]  should_fail_usercopy+0x1a/0x20
[  417.529469][T23189]  _copy_from_user+0x1c/0xa0
[  417.529508][T23189]  move_addr_to_kernel+0x8c/0x130
[  417.529543][T23189]  copy_msghdr_from_user+0x280/0x2b0
[  417.529584][T23189]  __sys_sendmmsg+0x1eb/0x4b0
[  417.529672][T23189]  __x64_sys_sendmmsg+0x57/0x70
[  417.529705][T23189]  x64_sys_call+0x2b53/0x2e10
[  417.529731][T23189]  do_syscall_64+0xc9/0x1c0
[  417.529799][T23189]  ? clear_bhb_loop+0x25/0x80
[  417.529818][T23189]  ? clear_bhb_loop+0x25/0x80
[  417.529837][T23189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.529858][T23189] RIP: 0033:0x7f8e0abbe169
[  417.529874][T23189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.529893][T23189] RSP: 002b:00007f8e09227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  417.529991][T23189] RAX: ffffffffffffffda RBX: 00007f8e0ade5fa0 RCX: 00007f8e0abbe169
[  417.530004][T23189] RDX: 0000000000000001 RSI: 0000200000004980 RDI: 0000000000000003
[  417.530017][T23189] RBP: 00007f8e09227090 R08: 0000000000000000 R09: 0000000000000000
[  417.530030][T23189] R10: 0000000020008000 R11: 0000000000000246 R12: 0000000000000001
[  417.530043][T23189] R13: 0000000000000000 R14: 00007f8e0ade5fa0 R15: 00007fff55fb8fa8
[  417.530063][T23189]  </TASK>
[  417.740033][   T29] audit: type=1326 audit(1744767416.706:13583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23191 comm="syz.4.7087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  417.763643][   T29] audit: type=1326 audit(1744767416.716:13584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23191 comm="syz.4.7087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  417.787242][   T29] audit: type=1326 audit(1744767416.716:13585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23191 comm="syz.4.7087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  417.811201][   T29] audit: type=1326 audit(1744767416.716:13586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23191 comm="syz.4.7087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  417.834935][   T29] audit: type=1326 audit(1744767416.716:13587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23191 comm="syz.4.7087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  417.956875][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.389145][T23228] loop3: detected capacity change from 0 to 1024
[  418.398501][T23230] FAULT_INJECTION: forcing a failure.
[  418.398501][T23230] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  418.404919][T23228] EXT4-fs: Ignoring removed bh option
[  418.411756][T23230] CPU: 0 UID: 0 PID: 23230 Comm: syz.1.7101 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  418.411792][T23230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  418.411809][T23230] Call Trace:
[  418.411877][T23230]  <TASK>
[  418.411886][T23230]  dump_stack_lvl+0xf6/0x150
[  418.411917][T23230]  dump_stack+0x15/0x1a
[  418.411939][T23230]  should_fail_ex+0x261/0x270
[  418.411974][T23230]  should_fail_alloc_page+0xfd/0x110
[  418.412016][T23230]  __alloc_frozen_pages_noprof+0x11d/0x360
[  418.412083][T23230]  alloc_pages_mpol+0xb6/0x260
[  418.412115][T23230]  alloc_pages_noprof+0xe8/0x130
[  418.412216][T23230]  pte_alloc_one+0x2f/0x110
[  418.412312][T23230]  __pte_alloc+0x36/0x2b0
[  418.412347][T23230]  handle_mm_fault+0x1d69/0x2e80
[  418.412422][T23230]  ? mt_find+0x735/0x8a0
[  418.412522][T23230]  __get_user_pages+0xf4e/0x2340
[  418.412563][T23230]  __gup_longterm_locked+0x943/0xfb0
[  418.412593][T23230]  ? kernelmode_fixup_or_oops+0x58/0xb0
[  418.412653][T23230]  ? kernelmode_fixup_or_oops+0x58/0xb0
[  418.412733][T23230]  ? exc_page_fault+0x527/0x6a0
[  418.412765][T23230]  gup_fast_fallback+0x1561/0x1f70
[  418.412841][T23230]  get_user_pages_fast+0x64/0xa0
[  418.412865][T23230]  __se_sys_get_mempolicy+0x3ca/0xdd0
[  418.412918][T23230]  __x64_sys_get_mempolicy+0x67/0x80
[  418.412942][T23230]  x64_sys_call+0x6bc/0x2e10
[  418.413004][T23230]  do_syscall_64+0xc9/0x1c0
[  418.413035][T23230]  ? clear_bhb_loop+0x25/0x80
[  418.413058][T23230]  ? clear_bhb_loop+0x25/0x80
[  418.413129][T23230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.413146][T23230] RIP: 0033:0x7f20fb8ce169
[  418.413162][T23230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.413201][T23230] RSP: 002b:00007f20f9f37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ef
[  418.413222][T23230] RAX: ffffffffffffffda RBX: 00007f20fbaf5fa0 RCX: 00007f20fb8ce169
[  418.413236][T23230] RDX: 0000000000007fff RSI: 0000000000000000 RDI: 0000000000000000
[  418.413249][T23230] RBP: 00007f20f9f37090 R08: 0000000000000003 R09: 0000000000000000
[  418.413262][T23230] R10: 0000200000ffb000 R11: 0000000000000246 R12: 0000000000000001
[  418.413323][T23230] R13: 0000000000000000 R14: 00007f20fbaf5fa0 R15: 00007ffe00d74cd8
[  418.413343][T23230]  </TASK>
[  418.512381][T23233] loop5: detected capacity change from 0 to 1024
[  418.657258][T23233] EXT4-fs: Ignoring removed bh option
[  418.664458][T23228] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.681964][T23233] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.865259][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.879681][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.244548][T23256] dvmrp0: entered allmulticast mode
[  419.260307][T23256] dvmrp0: left allmulticast mode
[  419.818937][T23325] serio: Serial port ptm0
[  420.389684][T23351] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7150'.
[  420.400545][T23351] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7150'.
[  420.497844][T23393] loop3: detected capacity change from 0 to 512
[  420.525649][T23393] 9pnet_fd: Insufficient options for proto=fd
[  420.818414][T23420] FAULT_INJECTION: forcing a failure.
[  420.818414][T23420] name failslab, interval 1, probability 0, space 0, times 0
[  420.831130][T23420] CPU: 1 UID: 0 PID: 23420 Comm: syz.4.7173 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  420.831162][T23420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  420.831174][T23420] Call Trace:
[  420.831180][T23420]  <TASK>
[  420.831187][T23420]  dump_stack_lvl+0xf6/0x150
[  420.831271][T23420]  dump_stack+0x15/0x1a
[  420.831285][T23420]  should_fail_ex+0x261/0x270
[  420.831313][T23420]  should_failslab+0x8f/0xb0
[  420.831342][T23420]  __kvmalloc_node_noprof+0x12c/0x520
[  420.831368][T23420]  ? traverse+0x9f/0x3c0
[  420.831387][T23420]  ? mntput+0x49/0x70
[  420.831409][T23420]  traverse+0x9f/0x3c0
[  420.831490][T23420]  ? path_openat+0x1ab2/0x2000
[  420.831538][T23420]  seq_read_iter+0x89f/0x970
[  420.831597][T23420]  ? _parse_integer+0x27/0x30
[  420.831619][T23420]  ? kstrtoull+0x115/0x140
[  420.831686][T23420]  proc_reg_read_iter+0x118/0x190
[  420.831717][T23420]  do_iter_readv_writev+0x40d/0x4b0
[  420.831763][T23420]  vfs_readv+0x1e1/0x660
[  420.831841][T23420]  __x64_sys_preadv+0xf9/0x1c0
[  420.831881][T23420]  x64_sys_call+0x1410/0x2e10
[  420.831908][T23420]  do_syscall_64+0xc9/0x1c0
[  420.831956][T23420]  ? clear_bhb_loop+0x25/0x80
[  420.831977][T23420]  ? clear_bhb_loop+0x25/0x80
[  420.832002][T23420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.832051][T23420] RIP: 0033:0x7fd5c6c2e169
[  420.832069][T23420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.832088][T23420] RSP: 002b:00007fd5c5297038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  420.832109][T23420] RAX: ffffffffffffffda RBX: 00007fd5c6e55fa0 RCX: 00007fd5c6c2e169
[  420.832123][T23420] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000005
[  420.832138][T23420] RBP: 00007fd5c5297090 R08: 0000000000000006 R09: 0000000000000000
[  420.832152][T23420] R10: 0000000000008002 R11: 0000000000000246 R12: 0000000000000001
[  420.832177][T23420] R13: 0000000000000000 R14: 00007fd5c6e55fa0 R15: 00007ffc246c7738
[  420.832196][T23420]  </TASK>
[  421.392112][T23458] loop5: detected capacity change from 0 to 1024
[  421.399261][T23458] EXT4-fs: Ignoring removed bh option
[  421.415734][T23458] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.452050][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.481576][T23464] loop3: detected capacity change from 0 to 512
[  421.488210][   T29] kauditd_printk_skb: 373 callbacks suppressed
[  421.488224][   T29] audit: type=1400 audit(1744767420.476:13961): avc:  denied  { mounton } for  pid=23463 comm="syz.3.7189" path="/195/bus" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  421.517934][T23464] journal_path: Lookup failure for './file0/../file0'
[  421.524730][T23464] EXT4-fs: error: could not find journal device path
[  421.555784][   T29] audit: type=1400 audit(1744767420.546:13962): avc:  denied  { setattr } for  pid=23463 comm="syz.3.7189" name="loop3" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  421.654116][   T29] audit: type=1326 audit(1744767420.646:13963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.682684][   T29] audit: type=1326 audit(1744767420.646:13964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.706522][   T29] audit: type=1326 audit(1744767420.646:13965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.730117][   T29] audit: type=1326 audit(1744767420.666:13966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.753791][   T29] audit: type=1326 audit(1744767420.666:13967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.777399][   T29] audit: type=1326 audit(1744767420.666:13968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.801003][   T29] audit: type=1326 audit(1744767420.666:13969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.824554][   T29] audit: type=1326 audit(1744767420.666:13970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23466 comm="syz.5.7190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  421.862834][T23469] loop3: detected capacity change from 0 to 512
[  421.869597][T23469] journal_path: Lookup failure for './file0/../file0'
[  421.876434][T23469] EXT4-fs: error: could not find journal device path
[  421.930628][T23473] loop5: detected capacity change from 0 to 512
[  421.938205][T23473] EXT4-fs: Ignoring removed nobh option
[  421.959661][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7192: corrupted inode contents
[  421.975103][T23473] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #3: comm syz.5.7192: mark_inode_dirty error
[  421.988066][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7192: corrupted inode contents
[  422.003423][T23473] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #3: comm syz.5.7192: mark_inode_dirty error
[  422.020820][T23473] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.7192: Failed to acquire dquot type 0
[  422.045406][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7192: corrupted inode contents
[  422.067635][T23473] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #16: comm syz.5.7192: mark_inode_dirty error
[  422.079796][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7192: corrupted inode contents
[  422.094506][T23473] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.7192: mark_inode_dirty error
[  422.107289][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7192: corrupted inode contents
[  422.123506][T23473] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  422.133492][T23473] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7192: corrupted inode contents
[  422.149358][T23491] FAULT_INJECTION: forcing a failure.
[  422.149358][T23491] name failslab, interval 1, probability 0, space 0, times 0
[  422.153554][T23473] EXT4-fs error (device loop5): ext4_truncate:4255: inode #16: comm syz.5.7192: mark_inode_dirty error
[  422.162036][T23491] CPU: 1 UID: 0 PID: 23491 Comm: syz.4.7200 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  422.162070][T23491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  422.162086][T23491] Call Trace:
[  422.162092][T23491]  <TASK>
[  422.162101][T23491]  dump_stack_lvl+0xf6/0x150
[  422.162186][T23491]  dump_stack+0x15/0x1a
[  422.162207][T23491]  should_fail_ex+0x261/0x270
[  422.162241][T23491]  should_failslab+0x8f/0xb0
[  422.162280][T23491]  __kmalloc_cache_noprof+0x55/0x320
[  422.162334][T23491]  ? ip_ra_control+0xd0/0x2c0
[  422.162375][T23491]  ? __pfx_mrtsock_destruct+0x10/0x10
[  422.162404][T23491]  ip_ra_control+0xd0/0x2c0
[  422.162492][T23491]  ? __pfx_mrtsock_destruct+0x10/0x10
[  422.162534][T23491]  ip_mroute_setsockopt+0x370/0x950
[  422.162572][T23491]  do_ip_setsockopt+0xd06/0x22a0
[  422.162695][T23491]  ip_setsockopt+0x63/0x100
[  422.162719][T23491]  raw_setsockopt+0x10f/0x170
[  422.162746][T23491]  sock_common_setsockopt+0x64/0x80
[  422.162771][T23491]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  422.162795][T23491]  __sys_setsockopt+0x187/0x200
[  422.162828][T23491]  __x64_sys_setsockopt+0x66/0x80
[  422.162858][T23491]  x64_sys_call+0x2a09/0x2e10
[  422.162884][T23491]  do_syscall_64+0xc9/0x1c0
[  422.162918][T23491]  ? clear_bhb_loop+0x25/0x80
[  422.162943][T23491]  ? clear_bhb_loop+0x25/0x80
[  422.163015][T23491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.163070][T23491] RIP: 0033:0x7fd5c6c2e169
[  422.163087][T23491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.163107][T23491] RSP: 002b:00007fd5c5297038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  422.163128][T23491] RAX: ffffffffffffffda RBX: 00007fd5c6e55fa0 RCX: 00007fd5c6c2e169
[  422.163143][T23491] RDX: 00000000000000c8 RSI: 0000000000000000 RDI: 0000000000000003
[  422.163157][T23491] RBP: 00007fd5c5297090 R08: 0000000000000004 R09: 0000000000000000
[  422.163171][T23491] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  422.163196][T23491] R13: 0000000000000000 R14: 00007fd5c6e55fa0 R15: 00007ffc246c7738
[  422.163217][T23491]  </TASK>
[  422.211435][   T47] unregister_netdevice: waiting for batadv0 to become free. Usage count = 3
[  422.358701][T23473] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  422.412942][T23473] EXT4-fs (loop5): 1 truncate cleaned up
[  422.422296][T23473] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.458926][T23508] syz_tun: entered allmulticast mode
[  422.482002][T23473] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.630188][T23524] FAULT_INJECTION: forcing a failure.
[  422.630188][T23524] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  422.643293][T23524] CPU: 0 UID: 0 PID: 23524 Comm: syz.0.7213 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  422.643375][T23524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  422.643387][T23524] Call Trace:
[  422.643392][T23524]  <TASK>
[  422.643398][T23524]  dump_stack_lvl+0xf6/0x150
[  422.643418][T23524]  dump_stack+0x15/0x1a
[  422.643483][T23524]  should_fail_ex+0x261/0x270
[  422.643526][T23524]  should_fail+0xb/0x10
[  422.643546][T23524]  should_fail_usercopy+0x1a/0x20
[  422.643643][T23524]  strncpy_from_user+0x25/0x230
[  422.643661][T23524]  ? getname_flags+0x81/0x3b0
[  422.643679][T23524]  getname_flags+0xb0/0x3b0
[  422.643696][T23524]  __se_sys_newstat+0x4c/0x280
[  422.643772][T23524]  ? fput+0x99/0xd0
[  422.643790][T23524]  ? ksys_write+0x180/0x1b0
[  422.643856][T23524]  __x64_sys_newstat+0x31/0x40
[  422.643874][T23524]  x64_sys_call+0x6f3/0x2e10
[  422.643892][T23524]  do_syscall_64+0xc9/0x1c0
[  422.643917][T23524]  ? clear_bhb_loop+0x25/0x80
[  422.643978][T23524]  ? clear_bhb_loop+0x25/0x80
[  422.643998][T23524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.644015][T23524] RIP: 0033:0x7f59f80de169
[  422.644027][T23524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.644042][T23524] RSP: 002b:00007f59f6747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  422.644058][T23524] RAX: ffffffffffffffda RBX: 00007f59f8305fa0 RCX: 00007f59f80de169
[  422.644068][T23524] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000200000001ec0
[  422.644085][T23524] RBP: 00007f59f6747090 R08: 0000000000000000 R09: 0000000000000000
[  422.644095][T23524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  422.644104][T23524] R13: 0000000000000000 R14: 00007f59f8305fa0 R15: 00007ffe1ba90f88
[  422.644120][T23524]  </TASK>
[  422.864497][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.877997][T23531] loop3: detected capacity change from 0 to 1024
[  422.902526][T23531] EXT4-fs: Ignoring removed bh option
[  422.975498][T23510] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7207'.
[  423.000961][T23531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.070210][T23544] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  423.108194][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.248349][T23580] block device autoloading is deprecated and will be removed.
[  423.281498][T23580] syz.4.7234: attempt to access beyond end of device
[  423.281498][T23580] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  423.296925][T23573] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7231'.
[  423.300343][T23583] loop1: detected capacity change from 0 to 1024
[  423.333946][T23583] EXT4-fs: Ignoring removed bh option
[  423.334206][T23573] bond0: (slave bond_slave_0): Releasing backup interface
[  423.365239][T23583] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.382972][T23573] bond0: (slave bond_slave_1): Releasing backup interface
[  423.402722][T23587] loop5: detected capacity change from 0 to 256
[  423.428339][T23573] team0: Port device team_slave_0 removed
[  423.471720][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.472498][T23573] team0: Port device team_slave_1 removed
[  423.512526][T23573] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  423.520345][T23573] batman_adv: batadv0: Removing interface: batadv_slave_0
[  423.557821][T23573] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  423.565419][T23573] batman_adv: batadv0: Removing interface: batadv_slave_1
[  423.598193][T23595] loop1: detected capacity change from 0 to 1024
[  423.644221][T23595] EXT4-fs: Ignoring removed bh option
[  423.678734][T23595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.728249][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.829328][T23601] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  423.870238][T23605] netem: change failed
[  423.911431][T23605] hsr0: entered promiscuous mode
[  423.933261][T23609] loop1: detected capacity change from 0 to 512
[  423.973398][T23609] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  424.053300][T23609] EXT4-fs (loop1): mount failed
[  424.317271][T23625] FAULT_INJECTION: forcing a failure.
[  424.317271][T23625] name failslab, interval 1, probability 0, space 0, times 0
[  424.329935][T23625] CPU: 0 UID: 0 PID: 23625 Comm: syz.0.7250 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  424.329958][T23625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  424.329989][T23625] Call Trace:
[  424.329994][T23625]  <TASK>
[  424.330001][T23625]  dump_stack_lvl+0xf6/0x150
[  424.330025][T23625]  dump_stack+0x15/0x1a
[  424.330093][T23625]  should_fail_ex+0x261/0x270
[  424.330122][T23625]  should_failslab+0x8f/0xb0
[  424.330153][T23625]  kmem_cache_alloc_lru_noprof+0x5e/0x330
[  424.330240][T23625]  ? alloc_inode+0x6e/0x170
[  424.330272][T23625]  ? _raw_spin_unlock+0x26/0x50
[  424.330294][T23625]  alloc_inode+0x6e/0x170
[  424.330325][T23625]  alloc_anon_inode+0x1e/0x170
[  424.330434][T23625]  __se_sys_memfd_secret+0x106/0x2c0
[  424.330459][T23625]  __x64_sys_memfd_secret+0x1f/0x30
[  424.330478][T23625]  x64_sys_call+0x2ccf/0x2e10
[  424.330512][T23625]  do_syscall_64+0xc9/0x1c0
[  424.330540][T23625]  ? clear_bhb_loop+0x25/0x80
[  424.330558][T23625]  ? clear_bhb_loop+0x25/0x80
[  424.330654][T23625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.330673][T23625] RIP: 0033:0x7f59f80de169
[  424.330688][T23625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.330703][T23625] RSP: 002b:00007f59f6747038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[  424.330719][T23625] RAX: ffffffffffffffda RBX: 00007f59f8305fa0 RCX: 00007f59f80de169
[  424.330732][T23625] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  424.330837][T23625] RBP: 00007f59f6747090 R08: 0000000000000000 R09: 0000000000000000
[  424.330847][T23625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  424.330859][T23625] R13: 0000000000000000 R14: 00007f59f8305fa0 R15: 00007ffe1ba90f88
[  424.330878][T23625]  </TASK>
[  424.536348][T23617] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7247'.
[  424.545777][T23617] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7247'.
[  424.635527][T23642] loop1: detected capacity change from 0 to 512
[  424.642021][T23642] journal_path: Lookup failure for './file0/../file0'
[  424.648895][T23642] EXT4-fs: error: could not find journal device path
[  424.708226][T23648] loop3: detected capacity change from 0 to 512
[  424.745289][T23648] 9pnet_fd: Insufficient options for proto=fd
[  424.785845][T23652] loop5: detected capacity change from 0 to 1024
[  424.792642][T23652] EXT4-fs: Ignoring removed bh option
[  424.808018][T23652] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.875971][T23658] loop0: detected capacity change from 0 to 1024
[  424.882864][T23658] EXT4-fs: Ignoring removed bh option
[  425.109616][T23671] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7263'.
[  425.652835][T23719] hsr0: entered promiscuous mode
[  426.128823][T23742] usb usb1: usbfs: process 23742 (syz.3.7293) did not claim interface 0 before use
[  426.175697][   T10] Process accounting resumed
[  426.189903][T23750] hsr0: entered promiscuous mode
[  426.217251][T23748] loop5: detected capacity change from 0 to 512
[  426.226423][T23748] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #15: comm syz.5.7296: casefold flag without casefold feature
[  426.239356][T23748] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.7296: couldn't read orphan inode 15 (err -117)
[  426.410239][T23761] loop1: detected capacity change from 0 to 1024
[  426.443232][T23761] EXT4-fs: Ignoring removed bh option
[  426.776133][   T29] kauditd_printk_skb: 265 callbacks suppressed
[  426.776155][   T29] audit: type=1326 audit(1744767425.766:14233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  426.892726][   T29] audit: type=1326 audit(1744767425.766:14234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  426.916370][   T29] audit: type=1326 audit(1744767425.766:14235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  426.940077][   T29] audit: type=1326 audit(1744767425.766:14236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  426.963648][   T29] audit: type=1326 audit(1744767425.766:14237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  426.987264][   T29] audit: type=1326 audit(1744767425.766:14238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  427.010859][   T29] audit: type=1326 audit(1744767425.796:14239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  427.034448][   T29] audit: type=1326 audit(1744767425.796:14240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  427.058047][   T29] audit: type=1326 audit(1744767425.796:14241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  427.082091][   T29] audit: type=1326 audit(1744767425.796:14242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23782 comm="syz.0.7309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  427.156359][T23802] loop0: detected capacity change from 0 to 512
[  427.165084][T23802] EXT4-fs: Ignoring removed nobh option
[  427.187562][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7317: corrupted inode contents
[  427.203207][T23802] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #3: comm syz.0.7317: mark_inode_dirty error
[  427.219397][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7317: corrupted inode contents
[  427.234827][T23802] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #3: comm syz.0.7317: mark_inode_dirty error
[  427.247435][T23802] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7317: Failed to acquire dquot type 0
[  427.263427][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7317: corrupted inode contents
[  427.279466][T23802] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.7317: mark_inode_dirty error
[  427.291712][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7317: corrupted inode contents
[  427.320974][T23802] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #16: comm syz.0.7317: mark_inode_dirty error
[  427.340624][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7317: corrupted inode contents
[  427.376375][T23802] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  427.430709][T23819] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  427.456991][T23802] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7317: corrupted inode contents
[  427.483292][T23830] netlink: 3 bytes leftover after parsing attributes in process `syz.4.7327'.
[  427.492281][T23830] 0ªX¹¦À: renamed from caif0
[  427.497317][T23802] EXT4-fs error (device loop0): ext4_truncate:4255: inode #16: comm syz.0.7317: mark_inode_dirty error
[  427.510786][T23830] 0ªX¹¦À: entered allmulticast mode
[  427.516021][T23830] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  427.532044][T23802] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  427.559591][T23802] EXT4-fs (loop0): 1 truncate cleaned up
[  427.583276][T23802] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  428.043910][T23858] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  428.575548][T23886] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  428.696619][T23896] loop0: detected capacity change from 0 to 1024
[  428.713543][T23896] EXT4-fs: Ignoring removed bh option
[  428.774101][T23896] EXT4-fs mount: 9 callbacks suppressed
[  428.774158][T23896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.891415][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.930007][T23912] loop1: detected capacity change from 0 to 1024
[  428.954485][T23912] EXT4-fs: Ignoring removed bh option
[  429.010030][T23912] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  429.060908][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.182754][T23922] loop5: detected capacity change from 0 to 512
[  429.197672][T23922] EXT4-fs: Ignoring removed nobh option
[  429.262252][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7362: corrupted inode contents
[  429.292470][T23922] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #3: comm syz.5.7362: mark_inode_dirty error
[  429.341205][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7362: corrupted inode contents
[  429.409222][T23922] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #3: comm syz.5.7362: mark_inode_dirty error
[  429.421416][T23930] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  429.466970][T23922] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.7362: Failed to acquire dquot type 0
[  429.516687][T23936] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  429.526919][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7362: corrupted inode contents
[  429.584125][T23922] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #16: comm syz.5.7362: mark_inode_dirty error
[  429.616856][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7362: corrupted inode contents
[  429.630046][T23922] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.7362: mark_inode_dirty error
[  429.662914][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7362: corrupted inode contents
[  429.689234][T23922] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  429.710936][T23922] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7362: corrupted inode contents
[  429.754198][T23922] EXT4-fs error (device loop5): ext4_truncate:4255: inode #16: comm syz.5.7362: mark_inode_dirty error
[  429.822599][T23922] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  429.862858][T23922] EXT4-fs (loop5): 1 truncate cleaned up
[  429.886849][T23922] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.919656][T23922] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.023932][T23956] netlink: 76 bytes leftover after parsing attributes in process `syz.0.7375'.
[  430.054831][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.177934][T23938] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7369'.
[  430.430364][T23990] netlink: 680 bytes leftover after parsing attributes in process `syz.5.7386'.
[  430.475565][T23993] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7385'.
[  430.513760][T23995] FAULT_INJECTION: forcing a failure.
[  430.513760][T23995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  430.526825][T23995] CPU: 0 UID: 0 PID: 23995 Comm: syz.5.7388 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  430.526850][T23995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  430.526863][T23995] Call Trace:
[  430.526869][T23995]  <TASK>
[  430.526876][T23995]  dump_stack_lvl+0xf6/0x150
[  430.526967][T23995]  dump_stack+0x15/0x1a
[  430.526980][T23995]  should_fail_ex+0x261/0x270
[  430.527093][T23995]  should_fail+0xb/0x10
[  430.527116][T23995]  should_fail_usercopy+0x1a/0x20
[  430.527145][T23995]  _copy_from_iter+0xd8/0xd10
[  430.527175][T23995]  ? kmalloc_reserve+0x16e/0x190
[  430.527278][T23995]  ? __build_skb_around+0x199/0x1f0
[  430.527303][T23995]  ? __alloc_skb+0x227/0x320
[  430.527325][T23995]  ? __virt_addr_valid+0x1ed/0x250
[  430.527411][T23995]  ? __check_object_size+0x367/0x510
[  430.527455][T23995]  netlink_sendmsg+0x492/0x720
[  430.527511][T23995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  430.527543][T23995]  __sock_sendmsg+0x140/0x180
[  430.527570][T23995]  ____sys_sendmsg+0x350/0x4e0
[  430.527609][T23995]  __sys_sendmsg+0x1a0/0x240
[  430.527679][T23995]  __x64_sys_sendmsg+0x46/0x50
[  430.527705][T23995]  x64_sys_call+0x26f3/0x2e10
[  430.527748][T23995]  do_syscall_64+0xc9/0x1c0
[  430.527779][T23995]  ? clear_bhb_loop+0x25/0x80
[  430.527798][T23995]  ? clear_bhb_loop+0x25/0x80
[  430.527887][T23995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.527910][T23995] RIP: 0033:0x7f8e0abbe169
[  430.527924][T23995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  430.527940][T23995] RSP: 002b:00007f8e09227038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  430.527956][T23995] RAX: ffffffffffffffda RBX: 00007f8e0ade5fa0 RCX: 00007f8e0abbe169
[  430.527966][T23995] RDX: 0000000000044080 RSI: 0000200000000040 RDI: 0000000000000003
[  430.528057][T23995] RBP: 00007f8e09227090 R08: 0000000000000000 R09: 0000000000000000
[  430.528068][T23995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  430.528081][T23995] R13: 0000000000000000 R14: 00007f8e0ade5fa0 R15: 00007fff55fb8fa8
[  430.528102][T23995]  </TASK>
[  430.784947][T23997] tipc: Started in network mode
[  430.789832][T23997] tipc: Node identity 529a723680a3, cluster identity 4711
[  430.797207][T23997] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  430.824149][T23996] tipc: Disabling bearer <eth:syzkaller0>
[  430.858598][T24001] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7391'.
[  430.862494][T24002] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7391'.
[  430.971225][T24007] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  431.025862][T24014] FAULT_INJECTION: forcing a failure.
[  431.025862][T24014] name failslab, interval 1, probability 0, space 0, times 0
[  431.038520][T24014] CPU: 1 UID: 0 PID: 24014 Comm: syz.5.7396 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  431.038547][T24014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  431.038557][T24014] Call Trace:
[  431.038613][T24014]  <TASK>
[  431.038619][T24014]  dump_stack_lvl+0xf6/0x150
[  431.038639][T24014]  dump_stack+0x15/0x1a
[  431.038664][T24014]  should_fail_ex+0x261/0x270
[  431.038708][T24014]  should_failslab+0x8f/0xb0
[  431.038746][T24014]  kmem_cache_alloc_lru_noprof+0x5e/0x330
[  431.038771][T24014]  ? shmem_alloc_inode+0x34/0x50
[  431.038792][T24014]  shmem_alloc_inode+0x34/0x50
[  431.038886][T24014]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  431.038906][T24014]  alloc_inode+0x40/0x170
[  431.038939][T24014]  new_inode+0x1e/0xe0
[  431.039016][T24014]  shmem_get_inode+0x24e/0x730
[  431.039097][T24014]  __shmem_file_setup+0x127/0x1f0
[  431.039123][T24014]  shmem_file_setup+0x3b/0x50
[  431.039148][T24014]  __se_sys_memfd_create+0x2e1/0x5a0
[  431.039173][T24014]  __x64_sys_memfd_create+0x31/0x40
[  431.039307][T24014]  x64_sys_call+0x1163/0x2e10
[  431.039331][T24014]  do_syscall_64+0xc9/0x1c0
[  431.039377][T24014]  ? clear_bhb_loop+0x25/0x80
[  431.039491][T24014]  ? clear_bhb_loop+0x25/0x80
[  431.039514][T24014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.039531][T24014] RIP: 0033:0x7f8e0abbe169
[  431.039543][T24014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.039637][T24014] RSP: 002b:00007f8e09226e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  431.039656][T24014] RAX: ffffffffffffffda RBX: 0000000000000438 RCX: 00007f8e0abbe169
[  431.039667][T24014] RDX: 00007f8e09226ef0 RSI: 0000000000000000 RDI: 00007f8e0ac41404
[  431.039677][T24014] RBP: 0000200000000d80 R08: 00007f8e09226bb7 R09: 00007f8e09226e40
[  431.039687][T24014] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[  431.039697][T24014] R13: 00007f8e09226ef0 R14: 00007f8e09226eb0 R15: 00002000000005c0
[  431.039714][T24014]  </TASK>
[  431.261493][T24018] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7397'.
[  431.270604][T24017] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7397'.
[  431.410966][T24030] loop5: detected capacity change from 0 to 512
[  431.433992][T24030] journal_path: Lookup failure for './file0/../file0'
[  431.440797][T24030] EXT4-fs: error: could not find journal device path
[  431.498860][T24032] vlan2: entered allmulticast mode
[  431.713257][T24041] ip6gretap0: entered promiscuous mode
[  431.718839][T24041] ip6gretap0: entered allmulticast mode
[  432.023989][   T29] kauditd_printk_skb: 394 callbacks suppressed
[  432.024004][   T29] audit: type=1400 audit(1744767431.016:14633): avc:  denied  { read write } for  pid=24048 comm="syz.4.7411" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  432.083025][T24056] netem: change failed
[  432.123029][   T29] audit: type=1400 audit(1744767431.016:14634): avc:  denied  { open } for  pid=24048 comm="syz.4.7411" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  432.270670][T24047] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7410'.
[  432.441777][T24075] No such timeout policy "syz1"
[  432.588204][T24093] loop5: detected capacity change from 0 to 1024
[  432.595028][T24093] EXT4-fs: Ignoring removed bh option
[  432.629016][   T29] audit: type=1326 audit(1744767431.616:14635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.652796][   T29] audit: type=1326 audit(1744767431.616:14636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.676516][   T29] audit: type=1326 audit(1744767431.616:14637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.700096][   T29] audit: type=1326 audit(1744767431.616:14638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.723810][   T29] audit: type=1326 audit(1744767431.616:14639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.747535][   T29] audit: type=1326 audit(1744767431.616:14640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24094 comm="syz.3.7428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  432.780521][T24093] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  432.812885][   T29] audit: type=1326 audit(1744767431.796:14641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24092 comm="syz.5.7427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  432.844556][   T29] audit: type=1326 audit(1744767431.826:14642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24092 comm="syz.5.7427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  432.899561][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.960661][T24116] loop0: detected capacity change from 0 to 736
[  432.970830][T24116] iso9660: Unknown parameter '7‘
&©ª@n1"•îb
[  432.970830][T24116] šFW{’I·8þwP¾È;öí[g!?§ÖÀ‚?ÑTí)íáÿ7—BÃð´lª5}pîC��vEÃø~K!H+vò­ŽªÀ�' �ù�Òãå¦>'
[  433.074338][T24121] loop1: detected capacity change from 0 to 1024
[  433.086233][T24123] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.098340][T24121] EXT4-fs: Ignoring removed bh option
[  433.133638][T24124] __nla_validate_parse: 1 callbacks suppressed
[  433.133649][T24124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7437'.
[  433.149043][T24124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7437'.
[  433.169883][T24124] SELinux:  Context system_u:object_r:hald_cache_t:s0 is not valid (left unmapped).
[  433.176568][T24121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.180623][T24123] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.247538][T24123] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.287055][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.337423][T24123] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  433.433956][T24136] loop1: detected capacity change from 0 to 512
[  433.439120][T24123] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  433.452221][T24136] journal_path: Lookup failure for './file0/../file0'
[  433.459211][T24136] EXT4-fs: error: could not find journal device path
[  433.497344][T24123] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  433.519561][T24123] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  433.542603][T24123] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  433.575196][T24140] loop3: detected capacity change from 0 to 512
[  433.771759][T24159] FAULT_INJECTION: forcing a failure.
[  433.771759][T24159] name failslab, interval 1, probability 0, space 0, times 0
[  433.784397][T24159] CPU: 1 UID: 0 PID: 24159 Comm: syz.4.7453 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  433.784452][T24159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  433.784465][T24159] Call Trace:
[  433.784472][T24159]  <TASK>
[  433.784479][T24159]  dump_stack_lvl+0xf6/0x150
[  433.784503][T24159]  dump_stack+0x15/0x1a
[  433.784520][T24159]  should_fail_ex+0x261/0x270
[  433.784545][T24159]  should_failslab+0x8f/0xb0
[  433.784630][T24159]  kmem_cache_alloc_noprof+0x59/0x340
[  433.784652][T24159]  ? sctp_get_port_local+0x417/0xad0
[  433.784678][T24159]  sctp_get_port_local+0x417/0xad0
[  433.784726][T24159]  sctp_do_bind+0x3a1/0x4c0
[  433.784801][T24159]  sctp_connect_new_asoc+0x161/0x3c0
[  433.784827][T24159]  sctp_sendmsg+0xe96/0x1870
[  433.784850][T24159]  ? __pfx_sctp_sendmsg+0x10/0x10
[  433.784866][T24159]  inet_sendmsg+0xc5/0xd0
[  433.784906][T24159]  __sock_sendmsg+0x102/0x180
[  433.784926][T24159]  ____sys_sendmsg+0x350/0x4e0
[  433.784960][T24159]  __sys_sendmmsg+0x22a/0x4b0
[  433.785013][T24159]  __x64_sys_sendmmsg+0x57/0x70
[  433.785041][T24159]  x64_sys_call+0x2b53/0x2e10
[  433.785154][T24159]  do_syscall_64+0xc9/0x1c0
[  433.785212][T24159]  ? clear_bhb_loop+0x25/0x80
[  433.785240][T24159]  ? clear_bhb_loop+0x25/0x80
[  433.785271][T24159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.785290][T24159] RIP: 0033:0x7fd5c6c2e169
[  433.785302][T24159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.785318][T24159] RSP: 002b:00007fd5c5297038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  433.785337][T24159] RAX: ffffffffffffffda RBX: 00007fd5c6e55fa0 RCX: 00007fd5c6c2e169
[  433.785349][T24159] RDX: 0000000000000001 RSI: 0000200000000180 RDI: 0000000000000006
[  433.785385][T24159] RBP: 00007fd5c5297090 R08: 0000000000000000 R09: 0000000000000000
[  433.785397][T24159] R10: 0000000014004841 R11: 0000000000000246 R12: 0000000000000001
[  433.785408][T24159] R13: 0000000000000000 R14: 00007fd5c6e55fa0 R15: 00007ffc246c7738
[  433.785425][T24159]  </TASK>
[  434.029221][T24162] loop0: detected capacity change from 0 to 512
[  434.058482][T24162] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  434.081501][T24162] EXT4-fs (loop0): 1 truncate cleaned up
[  434.087546][T24162] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.159991][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.226366][T24175] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7459'.
[  434.397654][T24204] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7471'.
[  434.638944][T24229] loop3: detected capacity change from 0 to 128
[  434.651078][T24201] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7470'.
[  434.660584][T24201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7470'.
[  435.247680][T24269] loop5: detected capacity change from 0 to 1024
[  435.265765][T24269] EXT4-fs: Ignoring removed bh option
[  435.289579][T24269] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.445653][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.499422][T24276] loop0: detected capacity change from 0 to 512
[  435.566399][T24276] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7495: Failed to acquire dquot type 1
[  435.589634][T24276] EXT4-fs (loop0): 1 truncate cleaned up
[  435.605394][T24276] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.662132][T24276] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.680242][T24276] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7495: Failed to acquire dquot type 1
[  435.739072][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.793285][T24291] FAULT_INJECTION: forcing a failure.
[  435.793285][T24291] name failslab, interval 1, probability 0, space 0, times 0
[  435.806001][T24291] CPU: 1 UID: 0 PID: 24291 Comm: syz.0.7497 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  435.806044][T24291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  435.806056][T24291] Call Trace:
[  435.806062][T24291]  <TASK>
[  435.806069][T24291]  dump_stack_lvl+0xf6/0x150
[  435.806098][T24291]  dump_stack+0x15/0x1a
[  435.806115][T24291]  should_fail_ex+0x261/0x270
[  435.806180][T24291]  should_failslab+0x8f/0xb0
[  435.806227][T24291]  __kmalloc_node_noprof+0xaf/0x420
[  435.806251][T24291]  ? __vmalloc_node_range_noprof+0x3e1/0xe80
[  435.806283][T24291]  __vmalloc_node_range_noprof+0x3e1/0xe80
[  435.806433][T24291]  ? selinux_capable+0x1f9/0x260
[  435.806463][T24291]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  435.806485][T24291]  __vmalloc_noprof+0x5e/0x70
[  435.806512][T24291]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  435.806535][T24291]  bpf_prog_alloc_no_stats+0x49/0x390
[  435.806601][T24291]  ? bpf_prog_alloc+0x28/0x150
[  435.806620][T24291]  bpf_prog_alloc+0x3a/0x150
[  435.806647][T24291]  bpf_prog_load+0x532/0x10e0
[  435.806688][T24291]  __sys_bpf+0x533/0x800
[  435.806717][T24291]  __x64_sys_bpf+0x43/0x50
[  435.806736][T24291]  x64_sys_call+0x23da/0x2e10
[  435.806759][T24291]  do_syscall_64+0xc9/0x1c0
[  435.806840][T24291]  ? clear_bhb_loop+0x25/0x80
[  435.806862][T24291]  ? clear_bhb_loop+0x25/0x80
[  435.806943][T24291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.807032][T24291] RIP: 0033:0x7f59f80de169
[  435.807049][T24291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.807071][T24291] RSP: 002b:00007f59f6747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  435.807099][T24291] RAX: ffffffffffffffda RBX: 00007f59f8305fa0 RCX: 00007f59f80de169
[  435.807113][T24291] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  435.807132][T24291] RBP: 00007f59f6747090 R08: 0000000000000000 R09: 0000000000000000
[  435.807146][T24291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  435.807160][T24291] R13: 0000000000000001 R14: 00007f59f8305fa0 R15: 00007ffe1ba90f88
[  435.807182][T24291]  </TASK>
[  435.807191][T24291] syz.0.7497: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  435.915558][T24293] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  435.915617][T24291] ,cpuset=/,mems_allowed=0
[  436.049151][T24291] CPU: 1 UID: 0 PID: 24291 Comm: syz.0.7497 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  436.049175][T24291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  436.049189][T24291] Call Trace:
[  436.049194][T24291]  <TASK>
[  436.049201][T24291]  dump_stack_lvl+0xf6/0x150
[  436.049234][T24291]  dump_stack+0x15/0x1a
[  436.049248][T24291]  warn_alloc+0x145/0x1b0
[  436.049307][T24291]  __vmalloc_node_range_noprof+0x478/0xe80
[  436.049340][T24291]  ? selinux_capable+0x1f9/0x260
[  436.049367][T24291]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  436.049385][T24291]  __vmalloc_noprof+0x5e/0x70
[  436.049428][T24291]  ? bpf_prog_alloc_no_stats+0x49/0x390
[  436.049445][T24291]  bpf_prog_alloc_no_stats+0x49/0x390
[  436.049462][T24291]  ? bpf_prog_alloc+0x28/0x150
[  436.049523][T24291]  bpf_prog_alloc+0x3a/0x150
[  436.049539][T24291]  bpf_prog_load+0x532/0x10e0
[  436.049638][T24291]  __sys_bpf+0x533/0x800
[  436.049662][T24291]  __x64_sys_bpf+0x43/0x50
[  436.049677][T24291]  x64_sys_call+0x23da/0x2e10
[  436.049696][T24291]  do_syscall_64+0xc9/0x1c0
[  436.049734][T24291]  ? clear_bhb_loop+0x25/0x80
[  436.049819][T24291]  ? clear_bhb_loop+0x25/0x80
[  436.049837][T24291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.049911][T24291] RIP: 0033:0x7f59f80de169
[  436.049923][T24291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.049986][T24291] RSP: 002b:00007f59f6747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  436.050001][T24291] RAX: ffffffffffffffda RBX: 00007f59f8305fa0 RCX: 00007f59f80de169
[  436.050011][T24291] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  436.050021][T24291] RBP: 00007f59f6747090 R08: 0000000000000000 R09: 0000000000000000
[  436.050030][T24291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  436.050040][T24291] R13: 0000000000000001 R14: 00007f59f8305fa0 R15: 00007ffe1ba90f88
[  436.050098][T24291]  </TASK>
[  436.050105][T24291] Mem-Info:
[  436.250078][T24291] active_anon:25486 inactive_anon:17 isolated_anon:0
[  436.250078][T24291]  active_file:13810 inactive_file:12555 isolated_file:0
[  436.250078][T24291]  unevictable:0 dirty:322 writeback:0
[  436.250078][T24291]  slab_reclaimable:6532 slab_unreclaimable:133264
[  436.250078][T24291]  mapped:28994 shmem:16620 pagetables:946
[  436.250078][T24291]  sec_pagetables:0 bounce:0
[  436.250078][T24291]  kernel_misc_reclaimable:0
[  436.250078][T24291]  free:1649061 free_pcp:8609 free_cma:0
[  436.295397][T24291] Node 0 active_anon:101944kB inactive_anon:68kB active_file:55240kB inactive_file:50220kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115976kB dirty:1288kB writeback:0kB shmem:66480kB writeback_tmp:0kB kernel_stack:3472kB pagetables:3784kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  436.324573][T24291] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  436.351637][T24291] lowmem_reserve[]: 0 2882 7860 7860
[  436.357022][T24291] Node 0 DMA32 free:2947692kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951320kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:3528kB free_cma:0kB
[  436.385607][T24291] lowmem_reserve[]: 0 0 4978 4978
[  436.390654][T24291] Node 0 Normal free:3633192kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB active_anon:101944kB inactive_anon:68kB active_file:55240kB inactive_file:50220kB unevictable:0kB writepending:1288kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:30844kB local_pcp:11844kB free_cma:0kB
[  436.421169][T24291] lowmem_reserve[]: 0 0 0 0
[  436.425794][T24291] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  436.438479][T24291] Node 0 DMA32: 3*4kB (M) 0*8kB 2*16kB (M) 4*32kB (M) 3*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947692kB
[  436.454283][T24291] Node 0 Normal: 2*4kB (ME) 1*8kB (U) 1*16kB (M) 260*32kB (UME) 312*64kB (UM) 565*128kB (UME) 583*256kB (UME) 144*512kB (UM) 78*1024kB (UME) 39*2048kB (UM) 769*4096kB (UM) = 3633184kB
[  436.472614][T24291] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  436.481954][T24291] 42894 total pagecache pages
[  436.486649][T24291] 17 pages in swap cache
[  436.490879][T24291] Free swap  = 124928kB
[  436.495039][T24291] Total swap = 124996kB
[  436.499177][T24291] 2097051 pages RAM
[  436.502964][T24291] 0 pages HighMem/MovableOnly
[  436.507896][T24291] 80820 pages reserved
[  436.514037][T24306] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  436.545022][T24308] loop5: detected capacity change from 0 to 512
[  436.708644][T24321] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7509'.
[  436.798513][T24335] FAULT_INJECTION: forcing a failure.
[  436.798513][T24335] name failslab, interval 1, probability 0, space 0, times 0
[  436.811204][T24335] CPU: 1 UID: 0 PID: 24335 Comm: syz.3.7513 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  436.811231][T24335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  436.811301][T24335] Call Trace:
[  436.811307][T24335]  <TASK>
[  436.811313][T24335]  dump_stack_lvl+0xf6/0x150
[  436.811368][T24335]  dump_stack+0x15/0x1a
[  436.811386][T24335]  should_fail_ex+0x261/0x270
[  436.811413][T24335]  should_failslab+0x8f/0xb0
[  436.811440][T24335]  kmem_cache_alloc_noprof+0x59/0x340
[  436.811461][T24335]  ? audit_log_start+0x37f/0x6e0
[  436.811543][T24335]  audit_log_start+0x37f/0x6e0
[  436.811611][T24335]  ? kstrtouint+0x7b/0xc0
[  436.811691][T24335]  audit_seccomp+0x4b/0x130
[  436.811711][T24335]  __seccomp_filter+0x694/0x10e0
[  436.811784][T24335]  ? vfs_write+0x669/0x950
[  436.811831][T24335]  ? putname+0xe1/0x100
[  436.811856][T24335]  __secure_computing+0x7e/0x160
[  436.811936][T24335]  syscall_trace_enter+0xcf/0x1f0
[  436.812032][T24335]  ? fpregs_assert_state_consistent+0x83/0xa0
[  436.812154][T24335]  do_syscall_64+0xaa/0x1c0
[  436.812229][T24335]  ? clear_bhb_loop+0x25/0x80
[  436.812250][T24335]  ? clear_bhb_loop+0x25/0x80
[  436.812300][T24335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.812325][T24335] RIP: 0033:0x7f473780e169
[  436.812343][T24335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.812412][T24335] RSP: 002b:00007f4735e77038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fd
[  436.812435][T24335] RAX: ffffffffffffffda RBX: 00007f4737a35fa0 RCX: 00007f473780e169
[  436.812450][T24335] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  436.812465][T24335] RBP: 00007f4735e77090 R08: 0000000000000000 R09: 0000000000000000
[  436.812480][T24335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  436.812502][T24335] R13: 0000000000000000 R14: 00007f4737a35fa0 R15: 00007fffc91733f8
[  436.812584][T24335]  </TASK>
[  437.059982][T24340] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  437.063838][   T29] kauditd_printk_skb: 227 callbacks suppressed
[  437.063853][   T29] audit: type=1326 audit(1744767436.046:14864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.099359][   T29] audit: type=1326 audit(1744767436.046:14865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.123012][   T29] audit: type=1326 audit(1744767436.046:14866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.146867][   T29] audit: type=1326 audit(1744767436.046:14867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.170446][   T29] audit: type=1326 audit(1744767436.046:14868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.194056][   T29] audit: type=1326 audit(1744767436.046:14869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.217670][   T29] audit: type=1326 audit(1744767436.046:14870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.241371][   T29] audit: type=1326 audit(1744767436.046:14871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.342649][T24350] bond_slave_0: entered promiscuous mode
[  437.348349][T24350] bond_slave_1: entered promiscuous mode
[  437.364031][T24350] bond_slave_0: left promiscuous mode
[  437.369584][T24350] bond_slave_1: left promiscuous mode
[  437.377396][   T29] audit: type=1326 audit(1744767436.056:14872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.401278][   T29] audit: type=1326 audit(1744767436.056:14873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24338 comm="syz.1.7515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20fb8ce169 code=0x7ffc0000
[  437.587106][T24370] vlan2: entered allmulticast mode
[  437.592287][T24370] bridge_slave_0: entered allmulticast mode
[  437.731370][T24376] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  437.890562][T24390] loop3: detected capacity change from 0 to 1024
[  437.897581][T24390] EXT4-fs: Ignoring removed bh option
[  437.907862][T24348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7517'.
[  437.944934][T24390] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  437.999335][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.184646][T24408] loop5: detected capacity change from 0 to 1024
[  438.209497][T24410] loop3: detected capacity change from 0 to 1024
[  438.216825][T24410] EXT4-fs: Ignoring removed bh option
[  438.223398][T24408] EXT4-fs: Ignoring removed bh option
[  438.230908][T24414] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  438.246898][T24410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.290498][T24408] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.312945][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.348314][T24426] loop1: detected capacity change from 0 to 1024
[  438.355194][T24426] EXT4-fs: Ignoring removed bh option
[  438.537233][T24433] loop3: detected capacity change from 0 to 1024
[  438.544031][T24433] EXT4-fs: Ignoring removed oldalloc option
[  438.550066][T24433] EXT4-fs: Ignoring removed orlov option
[  438.557767][T24426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.570581][T24433] EXT4-fs (loop3): Filesystem with casefold feature cannot be mounted without CONFIG_UNICODE
[  438.653101][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.670767][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.731593][T24443] loop1: detected capacity change from 0 to 1024
[  438.743245][T24443] EXT4-fs: Ignoring removed bh option
[  438.787161][T24443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.815290][T24449] loop3: detected capacity change from 0 to 1024
[  438.822172][T24449] EXT4-fs: Ignoring removed bh option
[  438.886884][T24449] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.959131][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.995355][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.998162][T24465] loop0: detected capacity change from 0 to 1024
[  439.011265][T24465] EXT4-fs: Ignoring removed bh option
[  439.027606][T24465] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  439.149330][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.188494][   T36] Process accounting resumed
[  439.216692][T24491] loop5: detected capacity change from 0 to 512
[  439.224957][T24491] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #15: comm syz.5.7573: casefold flag without casefold feature
[  439.243055][T24491] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.7573: couldn't read orphan inode 15 (err -117)
[  439.257654][T24491] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.713353][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.354000][   T36] Process accounting resumed
[  440.391633][T24545] loop1: detected capacity change from 0 to 512
[  440.400745][T24545] EXT4-fs error (device loop1): ext4_orphan_get:1390: inode #15: comm syz.1.7590: casefold flag without casefold feature
[  440.416494][T24545] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.7590: couldn't read orphan inode 15 (err -117)
[  440.429382][T24545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.547711][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.727605][T24556] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  440.808698][T24562] netem: change failed
[  440.816787][T24562] hsr0: entered promiscuous mode
[  440.901599][T24569] loop0: detected capacity change from 0 to 1024
[  440.909301][T24569] EXT4-fs: Ignoring removed bh option
[  440.939810][T24569] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.013066][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.055320][T24578] netem: change failed
[  441.086792][T24583] loop0: detected capacity change from 0 to 512
[  441.117431][T24583] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7604: Failed to acquire dquot type 1
[  441.131147][T24583] EXT4-fs (loop0): 1 truncate cleaned up
[  441.154772][T24583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.167400][T24583] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.215046][T24591] loop1: detected capacity change from 0 to 1024
[  441.226051][T24591] EXT4-fs: Ignoring removed bh option
[  441.239852][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.283118][T24591] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.334694][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.467160][T24618] netem: change failed
[  441.806055][T24634] loop3: detected capacity change from 0 to 512
[  441.822738][T24634] EXT4-fs (loop3): orphan cleanup on readonly fs
[  441.834249][T24634] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #13: comm syz.3.7624: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 48132(4), depth 0(0)
[  441.859231][T24634] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.7624: couldn't read orphan inode 13 (err -117)
[  441.870183][T24639] loop5: detected capacity change from 0 to 512
[  441.880112][T24639] EXT4-fs: Ignoring removed nobh option
[  441.881373][T24634] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  441.917042][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.929850][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7626: corrupted inode contents
[  441.958290][T24639] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #3: comm syz.5.7626: mark_inode_dirty error
[  441.977535][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.7626: corrupted inode contents
[  441.991376][T24639] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #3: comm syz.5.7626: mark_inode_dirty error
[  442.004707][T24639] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.7626: Failed to acquire dquot type 0
[  442.007405][T24647] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  442.020505][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7626: corrupted inode contents
[  442.038842][T24639] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #16: comm syz.5.7626: mark_inode_dirty error
[  442.051217][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7626: corrupted inode contents
[  442.071463][T24639] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.7626: mark_inode_dirty error
[  442.086949][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7626: corrupted inode contents
[  442.100612][T24654] netem: change failed
[  442.105264][T24639] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  442.112358][T24654] hsr0: entered promiscuous mode
[  442.126516][T24639] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.7626: corrupted inode contents
[  442.139086][T24639] EXT4-fs error (device loop5): ext4_truncate:4255: inode #16: comm syz.5.7626: mark_inode_dirty error
[  442.154889][T24639] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  442.168169][T24639] EXT4-fs (loop5): 1 truncate cleaned up
[  442.176829][T24639] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.190232][T24639] ext4 filesystem being mounted at /225/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.263205][T24667] loop0: detected capacity change from 0 to 1024
[  442.270329][T24667] EXT4-fs: Ignoring removed bh option
[  442.299829][T24667] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.327670][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.348872][   T29] kauditd_printk_skb: 408 callbacks suppressed
[  442.348886][   T29] audit: type=1326 audit(1744767441.336:15278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.378751][   T29] audit: type=1326 audit(1744767441.336:15279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.407070][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.418007][   T29] audit: type=1326 audit(1744767441.336:15280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.441756][   T29] audit: type=1326 audit(1744767441.336:15281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.465365][   T29] audit: type=1326 audit(1744767441.336:15282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.489024][   T29] audit: type=1326 audit(1744767441.336:15283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.512624][   T29] audit: type=1326 audit(1744767441.336:15284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.536325][   T29] audit: type=1326 audit(1744767441.336:15285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.559988][   T29] audit: type=1326 audit(1744767441.336:15286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.583550][   T29] audit: type=1326 audit(1744767441.336:15287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24666 comm="syz.0.7638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  442.618620][T24674] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  442.721701][T24683] loop5: detected capacity change from 0 to 1024
[  442.731709][T24683] EXT4-fs: Ignoring removed bh option
[  442.757901][T24683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.822402][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.860618][T24692] loop3: detected capacity change from 0 to 512
[  442.870038][T24692] EXT4-fs: Ignoring removed nobh option
[  442.894451][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #3: comm syz.3.7649: corrupted inode contents
[  442.910918][T24692] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #3: comm syz.3.7649: mark_inode_dirty error
[  442.927373][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #3: comm syz.3.7649: corrupted inode contents
[  442.946382][T24692] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #3: comm syz.3.7649: mark_inode_dirty error
[  442.959082][T24703] loop0: detected capacity change from 0 to 1024
[  442.966169][T24703] EXT4-fs: Ignoring removed bh option
[  442.967512][T24692] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.7649: Failed to acquire dquot type 0
[  442.986028][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.7649: corrupted inode contents
[  442.998705][T24692] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #16: comm syz.3.7649: mark_inode_dirty error
[  443.012022][T24703] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.024177][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.7649: corrupted inode contents
[  443.037542][T24692] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.7649: mark_inode_dirty error
[  443.050081][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.7649: corrupted inode contents
[  443.080366][T24692] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  443.082161][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.102828][T24692] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.7649: corrupted inode contents
[  443.130053][T24711] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  443.142217][T24692] EXT4-fs error (device loop3): ext4_truncate:4255: inode #16: comm syz.3.7649: mark_inode_dirty error
[  443.160195][T24692] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  443.173181][T24692] EXT4-fs (loop3): 1 truncate cleaned up
[  443.186661][T24692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.204021][T24692] ext4 filesystem being mounted at /291/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.215226][T24719] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  443.246669][ T3377] Process accounting resumed
[  443.269225][T24724] loop5: detected capacity change from 0 to 1024
[  443.276501][T24724] EXT4-fs: Ignoring removed bh option
[  443.286571][T24721] loop1: detected capacity change from 0 to 512
[  443.294290][T24721] EXT4-fs error (device loop1): ext4_orphan_get:1390: inode #15: comm syz.1.7657: casefold flag without casefold feature
[  443.307167][T24721] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.7657: couldn't read orphan inode 15 (err -117)
[  443.319920][T24721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.343101][T24724] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.343450][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.371837][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.382009][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.409022][T24733] loop3: detected capacity change from 0 to 2048
[  443.444798][T24733] Alternate GPT is invalid, using primary GPT.
[  443.451026][T24733]  loop3: p1 p2 p3
[  443.693632][T24750] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  443.772826][   T36] Process accounting resumed
[  443.856939][T24768] vlan2: entered allmulticast mode
[  443.862287][T24768] bridge_slave_0: entered allmulticast mode
[  443.949286][T24775] loop5: detected capacity change from 0 to 1024
[  443.956632][T24775] EXT4-fs: Ignoring removed bh option
[  443.976178][T24775] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.007758][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.279254][   T36] Process accounting resumed
[  444.325974][T24792] loop0: detected capacity change from 0 to 512
[  444.338512][T24792] EXT4-fs error (device loop0): ext4_orphan_get:1390: inode #15: comm syz.0.7686: casefold flag without casefold feature
[  444.351329][T24792] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.7686: couldn't read orphan inode 15 (err -117)
[  444.363589][T24792] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.381171][T24803] loop5: detected capacity change from 0 to 1024
[  444.388108][T24803] EXT4-fs: Ignoring removed bh option
[  444.394503][T20823] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.409522][T24803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.451172][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.491328][T24815] loop5: detected capacity change from 0 to 1024
[  444.498186][T24815] EXT4-fs: Ignoring removed bh option
[  444.524943][T24817] loop0: detected capacity change from 0 to 1024
[  444.532485][T24815] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.544885][T24817] EXT4-fs: Ignoring removed bh option
[  444.558800][T24817] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.822746][T24843] loop0: detected capacity change from 0 to 1024
[  444.829657][T24843] EXT4-fs: Ignoring removed bh option
[  445.182748][T24856] loop0: detected capacity change from 0 to 1024
[  445.191289][T24856] EXT4-fs: Ignoring removed bh option
[  445.383025][T24863] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7712'.
[  445.396135][T24863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7712'.
[  445.438750][T24874] loop3: detected capacity change from 0 to 1024
[  445.445924][T24874] EXT4-fs: Ignoring removed bh option
[  445.467723][T24876] loop5: detected capacity change from 0 to 1024
[  445.474677][T24878] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7717'.
[  445.484290][T24876] EXT4-fs: Ignoring removed bh option
[  445.564693][T24891] sd 0:0:1:0: device reset
[  445.576531][T24891] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  445.597786][T24888] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  445.627374][   T36] Process accounting resumed
[  445.650622][T24898] loop0: detected capacity change from 0 to 1024
[  445.657527][T24898] EXT4-fs: Ignoring removed bh option
[  445.748567][T24908] loop0: detected capacity change from 0 to 1024
[  445.755401][T24908] EXT4-fs: Ignoring removed bh option
[  445.757030][T24906] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  445.808976][   T36] Process accounting resumed
[  445.845535][T24915] loop0: detected capacity change from 0 to 512
[  445.853455][T24915] EXT4-fs: Ignoring removed nobh option
[  445.886126][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7730: corrupted inode contents
[  445.910169][T24915] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #3: comm syz.0.7730: mark_inode_dirty error
[  445.940037][T24923] loop5: detected capacity change from 0 to 1024
[  445.954411][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7730: corrupted inode contents
[  445.967028][T24923] EXT4-fs: Ignoring removed bh option
[  445.977713][T24915] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #3: comm syz.0.7730: mark_inode_dirty error
[  445.991195][T24915] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7730: Failed to acquire dquot type 0
[  446.032887][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7730: corrupted inode contents
[  446.067409][T24915] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.7730: mark_inode_dirty error
[  446.090994][T24925] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7734'.
[  446.121296][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7730: corrupted inode contents
[  446.141474][T24933] vlan2: entered allmulticast mode
[  446.150113][T24915] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #16: comm syz.0.7730: mark_inode_dirty error
[  446.165712][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7730: corrupted inode contents
[  446.178661][T24915] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  446.220047][T24915] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7730: corrupted inode contents
[  446.232922][T24915] EXT4-fs error (device loop0): ext4_truncate:4255: inode #16: comm syz.0.7730: mark_inode_dirty error
[  446.248507][T24938] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  446.271161][T24915] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  446.283676][T24915] EXT4-fs (loop0): 1 truncate cleaned up
[  446.305029][T24942] loop5: detected capacity change from 0 to 1024
[  446.312017][T24942] EXT4-fs: Ignoring removed bh option
[  446.325085][T24915] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.613406][T24972] loop0: detected capacity change from 0 to 1024
[  446.634101][T24972] EXT4-fs: Ignoring removed bh option
[  446.652968][T24975] loop3: detected capacity change from 0 to 512
[  446.722899][T24975] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.7754: Failed to acquire dquot type 1
[  446.735010][T24975] EXT4-fs (loop3): 1 truncate cleaned up
[  446.741087][T24975] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.747959][T24981] FAULT_INJECTION: forcing a failure.
[  446.747959][T24981] name failslab, interval 1, probability 0, space 0, times 0
[  446.764250][T24981] CPU: 0 UID: 0 PID: 24981 Comm: syz.0.7755 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  446.764343][T24981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  446.764354][T24981] Call Trace:
[  446.764360][T24981]  <TASK>
[  446.764366][T24981]  dump_stack_lvl+0xf6/0x150
[  446.764386][T24981]  dump_stack+0x15/0x1a
[  446.764404][T24981]  should_fail_ex+0x261/0x270
[  446.764432][T24981]  should_failslab+0x8f/0xb0
[  446.764538][T24981]  kmem_cache_alloc_noprof+0x59/0x340
[  446.764561][T24981]  ? audit_log_start+0x37f/0x6e0
[  446.764582][T24981]  audit_log_start+0x37f/0x6e0
[  446.764683][T24981]  ? kstrtouint+0x7b/0xc0
[  446.764709][T24981]  audit_seccomp+0x4b/0x130
[  446.764730][T24981]  __seccomp_filter+0x694/0x10e0
[  446.764760][T24981]  ? vfs_write+0x669/0x950
[  446.764826][T24981]  ? putname+0xe1/0x100
[  446.764848][T24981]  __secure_computing+0x7e/0x160
[  446.764932][T24981]  syscall_trace_enter+0xcf/0x1f0
[  446.764957][T24981]  ? fpregs_assert_state_consistent+0x83/0xa0
[  446.764996][T24981]  do_syscall_64+0xaa/0x1c0
[  446.765093][T24981]  ? clear_bhb_loop+0x25/0x80
[  446.765115][T24981]  ? clear_bhb_loop+0x25/0x80
[  446.765138][T24981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.765164][T24981] RIP: 0033:0x7f59f80de169
[  446.765179][T24981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.765273][T24981] RSP: 002b:00007f59f6747038 EFLAGS: 00000246 ORIG_RAX: 000000000000014e
[  446.765289][T24981] RAX: ffffffffffffffda RBX: 00007f59f8305fa0 RCX: 00007f59f80de169
[  446.765302][T24981] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000200000000400
[  446.765314][T24981] RBP: 00007f59f6747090 R08: 0000000000000000 R09: 0000000000000000
[  446.765327][T24981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  446.765339][T24981] R13: 0000000000000000 R14: 00007f59f8305fa0 R15: 00007ffe1ba90f88
[  446.765357][T24981]  </TASK>
[  447.046135][T24991] loop3: detected capacity change from 0 to 512
[  447.073303][T24991] journal_path: Lookup failure for './file0/../file0'
[  447.080360][T24991] EXT4-fs: error: could not find journal device path
[  447.123090][T24973] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7753'.
[  447.133777][T24973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7753'.
[  447.170799][T24995] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  447.228457][T25002] loop0: detected capacity change from 0 to 512
[  447.238112][T25002] EXT4-fs: Ignoring removed nobh option
[  447.278150][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7762: corrupted inode contents
[  447.320942][T25012] loop3: detected capacity change from 0 to 1024
[  447.329029][T25012] EXT4-fs: Ignoring removed bh option
[  447.339365][T25002] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #3: comm syz.0.7762: mark_inode_dirty error
[  447.345419][ T3377] Process accounting resumed
[  447.357059][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #3: comm syz.0.7762: corrupted inode contents
[  447.373799][T25002] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #3: comm syz.0.7762: mark_inode_dirty error
[  447.379331][   T29] kauditd_printk_skb: 746 callbacks suppressed
[  447.379345][   T29] audit: type=1326 audit(1744767446.366:16026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.388275][T25002] Quota error (device loop0): write_blk: dquota write failed
[  447.391357][   T29] audit: type=1326 audit(1744767446.366:16027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.391390][   T29] audit: type=1326 audit(1744767446.366:16028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.417707][T25002] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  447.422458][   T29] audit: type=1326 audit(1744767446.366:16029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.422531][   T29] audit: type=1326 audit(1744767446.366:16030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.422569][   T29] audit: type=1326 audit(1744767446.366:16031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.422659][   T29] audit: type=1326 audit(1744767446.366:16032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.447526][T25002] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7762: Failed to acquire dquot type 0
[  447.469818][   T29] audit: type=1326 audit(1744767446.366:16033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25011 comm="syz.3.7766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  447.479981][T25014] loop1: detected capacity change from 0 to 512
[  447.558346][T25014] EXT4-fs error (device loop1): ext4_orphan_get:1390: inode #15: comm syz.1.7767: casefold flag without casefold feature
[  447.610076][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7762: corrupted inode contents
[  447.613089][T25014] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.7767: couldn't read orphan inode 15 (err -117)
[  447.629517][T25002] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #16: comm syz.0.7762: mark_inode_dirty error
[  447.670433][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7762: corrupted inode contents
[  447.688118][T25002] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #16: comm syz.0.7762: mark_inode_dirty error
[  447.701054][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7762: corrupted inode contents
[  447.718850][T25002] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  447.737770][T25002] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #16: comm syz.0.7762: corrupted inode contents
[  447.762165][T25002] EXT4-fs error (device loop0): ext4_truncate:4255: inode #16: comm syz.0.7762: mark_inode_dirty error
[  447.779342][T25002] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  447.789918][T25002] EXT4-fs (loop0): 1 truncate cleaned up
[  447.803577][T25002] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.351645][T25044] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7777'.
[  448.400092][    T9] Process accounting resumed
[  448.446407][T25051] loop5: detected capacity change from 0 to 512
[  448.454491][T25051] EXT4-fs error (device loop5): ext4_orphan_get:1390: inode #15: comm syz.5.7779: casefold flag without casefold feature
[  448.467400][T25051] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.7779: couldn't read orphan inode 15 (err -117)
[  448.737366][T25060] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  448.814314][T25073] loop5: detected capacity change from 0 to 1024
[  448.821170][T25073] EXT4-fs: Ignoring removed bh option
[  448.830899][T25066] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  448.845960][T25075] loop1: detected capacity change from 0 to 2048
[  448.905809][T25075] Alternate GPT is invalid, using primary GPT.
[  448.912267][T25075]  loop1: p1 p2 p3
[  449.047396][T25096] loop1: detected capacity change from 0 to 1024
[  449.065142][T25096] EXT4-fs: Ignoring removed bh option
[  449.195447][T25105] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7801'.
[  449.309778][T25105] bridge0: entered promiscuous mode
[  449.321378][T25105] bridge0: port 1(macsec1) entered blocking state
[  449.328119][T25105] bridge0: port 1(macsec1) entered disabled state
[  449.338910][T25105] macsec1: entered allmulticast mode
[  449.344264][T25105] bridge0: entered allmulticast mode
[  449.350139][T25105] macsec1: left allmulticast mode
[  449.355286][T25105] bridge0: left allmulticast mode
[  449.364838][T25105] bridge0: left promiscuous mode
[  449.673874][T25137] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  449.740006][T25141] loop0: detected capacity change from 0 to 512
[  449.798736][T25141] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7818: Failed to acquire dquot type 1
[  449.850968][T25141] EXT4-fs (loop0): 1 truncate cleaned up
[  449.861674][T25141] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.982369][T25164] vlan2: entered allmulticast mode
[  450.851033][T25205] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  450.890528][T25207] loop0: detected capacity change from 0 to 1024
[  450.897290][T25207] EXT4-fs: Ignoring removed bh option
[  450.977468][T25213] loop0: detected capacity change from 0 to 512
[  450.998636][T25213] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7849: Failed to acquire dquot type 1
[  451.010555][T25213] EXT4-fs (loop0): 1 truncate cleaned up
[  451.024374][T25213] ext4 filesystem being mounted at /311/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  451.121146][T25219] loop0: detected capacity change from 0 to 1024
[  451.127977][T25219] EXT4-fs: Ignoring removed bh option
[  451.312846][T25232] mmap: syz.4.7856 (25232): VmData 20701184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  451.404909][T25238] sd 0:0:1:0: device reset
[  451.417984][T25238] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  452.141647][ T3371] Process accounting resumed
[  452.146496][T25252] loop0: detected capacity change from 0 to 1024
[  452.153256][T25252] EXT4-fs: Ignoring removed bh option
[  452.381879][T25263] vlan2: entered allmulticast mode
[  452.475939][T25274] loop1: detected capacity change from 0 to 1024
[  452.482965][T25274] EXT4-fs: Ignoring removed bh option
[  452.764047][T25287] loop0: detected capacity change from 0 to 512
[  452.777627][T25287] __quota_error: 365 callbacks suppressed
[  452.777642][T25287] Quota error (device loop0): do_check_range: Getting dqdh_entries 1536 out of range 0-14
[  452.793385][T25287] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  452.803377][T25287] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.7879: Failed to acquire dquot type 1
[  452.818278][T25287] EXT4-fs (loop0): 1 truncate cleaned up
[  452.825551][T25287] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  452.967361][   T29] audit: type=1326 audit(1744767451.956:16395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25290 comm="syz.0.7880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  452.992705][   T29] audit: type=1326 audit(1744767451.976:16396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25290 comm="syz.0.7880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  453.070478][T25296] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  453.080495][   T29] audit: type=1326 audit(1744767452.066:16397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25290 comm="syz.0.7880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  453.104166][   T29] audit: type=1326 audit(1744767452.066:16398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25290 comm="syz.0.7880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59f80de169 code=0x7ffc0000
[  453.405929][T25313] loop5: detected capacity change from 0 to 1024
[  453.422919][T25313] EXT4-fs: Ignoring removed bh option
[  453.432999][T25315] loop3: detected capacity change from 0 to 1024
[  453.439624][ T3377] Process accounting resumed
[  453.443136][T25315] EXT4-fs: Ignoring removed bh option
[  453.456729][   T29] audit: type=1326 audit(1744767452.446:16399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25312 comm="syz.5.7890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  453.480658][   T29] audit: type=1326 audit(1744767452.446:16400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25312 comm="syz.5.7890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  453.504390][   T29] audit: type=1326 audit(1744767452.446:16401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25312 comm="syz.5.7890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  453.533801][   T29] audit: type=1326 audit(1744767452.446:16402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25312 comm="syz.5.7890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  453.592494][T25326] loop1: detected capacity change from 0 to 1024
[  453.624051][T25326] EXT4-fs: Ignoring removed bh option
[  453.765146][T25321] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7892'.
[  454.314764][T25357] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  454.392830][T25363] loop1: detected capacity change from 0 to 512
[  454.446125][T25363] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.7906: Failed to acquire dquot type 1
[  454.461157][T25363] EXT4-fs (loop1): 1 truncate cleaned up
[  454.475002][T25363] ext4 filesystem being mounted at /380/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  454.709354][T25377] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  454.801927][T25385] loop5: detected capacity change from 0 to 1024
[  454.808926][T25385] EXT4-fs: Ignoring removed bh option
[  455.403233][T25405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7920'.
[  455.579895][T25431] loop5: detected capacity change from 0 to 2048
[  455.654761][T25431] Alternate GPT is invalid, using primary GPT.
[  455.661121][T25431]  loop5: p1 p2 p3
[  456.908870][T25482] xt_hashlimit: max too large, truncated to 1048576
[  456.918396][T25482] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7947'.
[  457.331176][T25497] loop3: detected capacity change from 0 to 1024
[  457.333810][T25499] loop5: detected capacity change from 0 to 1024
[  457.338054][T25497] EXT4-fs: Ignoring removed bh option
[  457.435166][T25499] EXT4-fs: Ignoring removed bh option
[  457.605095][T25510] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  457.723828][T25508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7956'.
[  457.827653][   T29] kauditd_printk_skb: 354 callbacks suppressed
[  457.827667][   T29] audit: type=1326 audit(1744767456.816:16755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25521 comm="syz.5.7961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  457.877998][   T29] audit: type=1326 audit(1744767456.816:16756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25521 comm="syz.5.7961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  457.901711][   T29] audit: type=1326 audit(1744767456.846:16757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25521 comm="syz.5.7961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f8e0abbe169 code=0x7ffc0000
[  457.940724][   T29] audit: type=1326 audit(1744767456.926:16758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  457.964433][   T29] audit: type=1326 audit(1744767456.926:16759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  457.988007][   T29] audit: type=1326 audit(1744767456.926:16760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  458.011629][   T29] audit: type=1326 audit(1744767456.926:16761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  458.022305][T25527] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  458.035264][   T29] audit: type=1326 audit(1744767456.926:16762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  458.068502][   T29] audit: type=1326 audit(1744767456.926:16763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  458.092195][   T29] audit: type=1326 audit(1744767456.926:16764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25526 comm="syz.4.7963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5c6c2e169 code=0x7ffc0000
[  458.197542][T25535] loop1: detected capacity change from 0 to 1024
[  458.204399][T25535] EXT4-fs: Ignoring removed bh option
[  458.359358][T25549] vlan2: entered allmulticast mode
[  458.481038][T25553] loop5: detected capacity change from 0 to 1024
[  458.489108][T25553] EXT4-fs: Ignoring removed bh option
[  458.570846][T25546] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7970'.
[  458.946755][T25576] loop1: detected capacity change from 0 to 1024
[  458.962437][T25576] EXT4-fs: Ignoring removed bh option
[  458.979020][T25576] EXT4-fs mount: 68 callbacks suppressed
[  458.979075][T25576] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.999057][T25579] loop3: detected capacity change from 0 to 1024
[  459.005961][T25579] EXT4-fs: Ignoring removed bh option
[  459.029302][T25584] vhci_hcd: invalid port number 15
[  459.034536][T25584] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  459.044766][T25579] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.060978][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.142630][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.209916][T25593] sd 0:0:1:0: device reset
[  459.219511][T25593] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  459.537362][T25610] loop3: detected capacity change from 0 to 1024
[  459.544228][T25610] EXT4-fs: Ignoring removed bh option
[  459.557499][T25610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.595327][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.705579][T25616] loop3: detected capacity change from 0 to 1024
[  459.712449][T25616] EXT4-fs: Ignoring removed bh option
[  459.727238][T25616] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.770412][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.833169][T25622] loop3: detected capacity change from 0 to 1024
[  459.841184][T25622] EXT4-fs: Ignoring removed bh option
[  459.867338][T25622] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  459.929981][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.207877][T25643] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  460.809751][T25659] loop1: detected capacity change from 0 to 1024
[  460.821847][T25661] vhci_hcd: invalid port number 15
[  460.827124][T25661] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  460.843211][T25659] EXT4-fs: Ignoring removed bh option
[  460.890944][T25663] vlan2: entered allmulticast mode
[  460.896162][T25663] bridge_slave_0: entered allmulticast mode
[  460.903055][T25659] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.943527][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.092916][T25677] loop1: detected capacity change from 0 to 1024
[  461.119508][T25677] EXT4-fs: Ignoring removed bh option
[  461.153016][T25677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  461.215609][T20000] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.240598][T25664] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8012'.
[  461.249978][T25664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8012'.
[  461.472289][ T3371] Process accounting resumed
[  461.731021][T25711] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32
[  461.870742][T25717] loop5: detected capacity change from 0 to 512
[  461.898769][T25717] EXT4-fs: Ignoring removed nobh option
[  461.931435][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.8034: corrupted inode contents
[  461.955304][T25717] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #3: comm syz.5.8034: mark_inode_dirty error
[  461.988294][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #3: comm syz.5.8034: corrupted inode contents
[  462.007388][T25717] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #3: comm syz.5.8034: mark_inode_dirty error
[  462.020747][T25717] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.8034: Failed to acquire dquot type 0
[  462.037072][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.8034: corrupted inode contents
[  462.050521][T25717] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #16: comm syz.5.8034: mark_inode_dirty error
[  462.088827][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.8034: corrupted inode contents
[  462.136912][T25717] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #16: comm syz.5.8034: mark_inode_dirty error
[  462.169616][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.8034: corrupted inode contents
[  462.202576][T25735] sd 0:0:1:0: device reset
[  462.230199][T25717] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  462.254066][T25735] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  462.283019][T25717] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.8034: corrupted inode contents
[  462.307525][T25717] EXT4-fs error (device loop5): ext4_truncate:4255: inode #16: comm syz.5.8034: mark_inode_dirty error
[  462.339907][T25717] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  462.379028][T25717] EXT4-fs (loop5): 1 truncate cleaned up
[  462.398631][T25717] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.460819][T25717] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  462.596254][T21248] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.787886][T25754] vhci_hcd: invalid port number 15
[  462.793046][T25754] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  462.976165][ T3381] Process accounting resumed
[  463.060602][T25774] loop3: detected capacity change from 0 to 1024
[  463.067300][T25774] EXT4-fs: Ignoring removed bh option
[  463.079528][T25774] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  463.112915][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.125564][   T29] kauditd_printk_skb: 420 callbacks suppressed
[  463.125649][   T29] audit: type=1326 audit(1744767462.086:17183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.155530][   T29] audit: type=1326 audit(1744767462.086:17184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.179101][   T29] audit: type=1326 audit(1744767462.086:17185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.202764][   T29] audit: type=1326 audit(1744767462.086:17186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.226412][   T29] audit: type=1326 audit(1744767462.086:17187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.250030][   T29] audit: type=1326 audit(1744767462.086:17188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.273724][   T29] audit: type=1326 audit(1744767462.086:17189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.297252][   T29] audit: type=1326 audit(1744767462.086:17190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.321147][   T29] audit: type=1326 audit(1744767462.086:17191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.344706][   T29] audit: type=1326 audit(1744767462.086:17192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25772 comm="syz.3.8055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473780e169 code=0x7ffc0000
[  463.690509][    T9] ==================================================================
[  463.698620][    T9] BUG: KCSAN: data-race in __filemap_remove_folio / nr_blockdev_pages
[  463.706793][    T9] 
[  463.709118][    T9] read-write to 0xffff8881004cefb0 of 8 bytes by task 20705 on cpu 1:
[  463.717258][    T9]  __filemap_remove_folio+0x1c7/0x2c0
[  463.722649][    T9]  __remove_mapping+0x33f/0x470
[  463.727518][    T9]  remove_mapping+0x22/0x90
[  463.732028][    T9]  mapping_try_invalidate+0x267/0x3f0
[  463.737399][    T9]  invalidate_mapping_pages+0x27/0x40
[  463.742761][    T9]  invalidate_bdev+0x58/0x70
[  463.747355][    T9]  ext4_put_super+0x65b/0x910
[  463.752033][    T9]  generic_shutdown_super+0xe5/0x220
[  463.757322][    T9]  kill_block_super+0x2a/0x70
[  463.762006][    T9]  ext4_kill_sb+0x44/0x80
[  463.766337][    T9]  deactivate_locked_super+0x7d/0x1c0
[  463.771709][    T9]  deactivate_super+0x9f/0xb0
[  463.776387][    T9]  cleanup_mnt+0x26e/0x2e0
[  463.780794][    T9]  __cleanup_mnt+0x19/0x20
[  463.785203][    T9]  task_work_run+0x13c/0x1b0
[  463.789794][    T9]  syscall_exit_to_user_mode+0xa8/0x120
[  463.795337][    T9]  do_syscall_64+0xd6/0x1c0
[  463.799839][    T9]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.805727][    T9] 
[  463.808038][    T9] read to 0xffff8881004cefb0 of 8 bytes by task 9 on cpu 0:
[  463.815305][    T9]  nr_blockdev_pages+0x7c/0xd0
[  463.820059][    T9]  si_meminfo+0x87/0xd0
[  463.824211][    T9]  update_defense_level+0x4b/0x5c0
[  463.829321][    T9]  defense_work_handler+0x1f/0x80
[  463.834347][    T9]  process_scheduled_works+0x4de/0xa20
[  463.839809][    T9]  worker_thread+0x52c/0x710
[  463.844388][    T9]  kthread+0x4b7/0x540
[  463.848460][    T9]  ret_from_fork+0x4b/0x60
[  463.852867][    T9]  ret_from_fork_asm+0x1a/0x30
[  463.857641][    T9] 
[  463.859954][    T9] value changed: 0x000000000000000e -> 0x0000000000000009
[  463.867047][    T9] 
[  463.869361][    T9] Reported by Kernel Concurrency Sanitizer on:
[  463.875498][    T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.15.0-rc2-syzkaller-00042-g1a1d569a75f3 #0 PREEMPT(voluntary) 
[  463.887730][    T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  463.897779][    T9] Workqueue: events_long defense_work_handler
[  463.903851][    T9] ==================================================================
[  463.915845][T25780] loop3: detected capacity change from 0 to 1024
[  463.931883][T25780] EXT4-fs: Ignoring removed bh option
[  463.967996][T25780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.003314][T20705] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.