last executing test programs:

46.85041018s ago: executing program 2 (id=514):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)={0x27c, r3, 0xc4fc9e906872338b, 0x70bd2a, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0xc7, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x24, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xb4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}]}]}, @NL80211_ATTR_TID_CONFIG={0x200, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xde}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x24}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x1a0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x158, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xe4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x2, 0x12, 0x1b, 0x4, 0x5, 0x4, 0x3, 0xc, 0x18, 0x9, 0x48, 0x2, 0x3, 0x5, 0x30, 0x24, 0x24, 0x1b, 0x24, 0xc, 0x30, 0xb, 0x36, 0x9, 0x3, 0x1]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0xc41, 0x3, 0x4, 0x80, 0x3, 0x3, 0x6]}}, @NL80211_TXRATE_HT={0x35, 0x2, [{0x6, 0x1}, {0x1, 0x5}, {0x1, 0x4}, {0x7, 0x6}, {0x7, 0x9}, {0x2, 0x1}, {0x3, 0x9}, {0x7, 0x4}, {0x1, 0x4}, {0x3, 0xa}, {0x1, 0x4}, {0x4, 0x9}, {0x1, 0x4}, {0x3, 0x6}, {0x4, 0x7}, {0x1, 0xa}, {0x0, 0x2}, {0x1, 0x2}, {0x3, 0x7}, {0x0, 0x2}, {0x1, 0x8}, {0x4, 0xa}, {0x7, 0x7}, {0x7, 0x1}, {0x0, 0x6}, {0x0, 0x8}, {0x2, 0x1}, {0x7, 0x6}, {0x5, 0x9}, {0x2, 0x6}, {0x2, 0x2}, {0x5, 0x2}, {0x1, 0x9}, {0x5, 0x8}, {0x5}, {0x7, 0x3}, {0x5, 0x6}, {0x1, 0x1}, {0x6, 0x5}, {0x3, 0x9}, {0x1, 0x7}, {0x4, 0x3}, {0x2, 0x4}, {0x3, 0x3}, {0x2, 0x7}, {0x0, 0x4}, {0x4, 0x5}, {0x5, 0x1}, {0x3, 0x7}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x2, 0x8, 0x9, 0x5, 0x6, 0x7, 0xc83a, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x101, 0x4, 0x6, 0x1ff, 0x7, 0x9, 0xfffc, 0xffff]}}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x1, 0x48, 0x6c, 0x3, 0x1b, 0x1a, 0x5, 0xc, 0x1, 0x30, 0x5, 0xc, 0xc, 0x12, 0xb, 0x24, 0x48, 0x66, 0xb, 0x30, 0x5a, 0x1b, 0x1b, 0xc, 0x6, 0x12]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x81, 0x8, 0x1, 0x3a0, 0x8, 0x7, 0x7]}}]}, @NL80211_BAND_5GHZ={0x70, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x21, 0xb]}, @NL80211_TXRATE_HT={0x1a, 0x2, [{0x7, 0x1}, {0x1, 0x4}, {0x5, 0x2}, {0x6, 0x5}, {0x4, 0x1}, {0x3, 0x1}, {0x6, 0x8}, {0x7, 0x4}, {0x4, 0x4}, {0x1, 0x9}, {0x7, 0x2}, {0x1, 0x7}, {0x6, 0xa}, {0x7, 0x7}, {0x5, 0x1}, {0x6}, {0x1, 0x4}, {0x7, 0x3}, {0x3, 0x2}, {0x6, 0x4}, {0x1}, {0x1, 0x6}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x4, 0xffff, 0xfffd, 0x9, 0x1, 0x1, 0x5]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}]}]}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x12}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x12}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc}]}]}, @NL80211_ATTR_TID_CONFIG={0x38, 0x11d, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x80}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x8e}]}]}]}, 0x27c}}, 0x0)

46.807296983s ago: executing program 2 (id=515):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
read(r2, &(0x7f0000001400)=""/4076, 0xfffffeea)
symlink(0x0, 0x0)
ftruncate(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x8}], 0x1}}], 0x1, 0x2004000)
r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
close_range(r3, 0xffffffffffffffff, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)='./file0\x00')
r4 = socket(0xa, 0x3, 0x3a)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000080)='kfree\x00', r6, 0x0, 0x200000000003}, 0x18)
setsockopt$MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)
setsockopt$MRT6_FLUSH(r4, 0x29, 0xd4, &(0x7f0000000000)=0xf, 0x4)

46.424632064s ago: executing program 2 (id=526):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, 0x0, 0x0)

46.34927724s ago: executing program 2 (id=528):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000100, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x800, 0xfffffffc, 0x7, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x20000000000002b8, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x8000, 0x0, 0x0, 0x41000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r3=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r5, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x5ef}], 0x1, 0x5412, 0x0, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0xd5, 0xffff, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r4, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000080)=[0x0], ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x3, 0x6, &(0x7f0000000340)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8e, &(0x7f00000003c0)=[{}], 0x8, 0x10, &(0x7f0000000400), &(0x7f00000004c0), 0x8, 0x68, 0x8, 0x8, &(0x7f0000000500)}}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000700), &(0x7f0000000880)=r2}, 0x20)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xb30, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x18, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7fff}, [@btf_id={0x18, 0x1, 0x3, 0x0, 0x2}]}, &(0x7f0000000040)='syzkaller\x00', 0xe, 0x8d, &(0x7f0000000280)=""/141, 0x41100, 0x8, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000680)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000006c0)={0x1, 0xe, 0xeede, 0xc8f}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000900)=[r7, r3, r1, r1, r3, r1, r8], 0x0, 0x10, 0x8}, 0x94)
syz_clone(0x48002000, 0x0, 0x0, 0x0, 0x0, 0x0)

45.953319252s ago: executing program 2 (id=536):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x8000)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bind$can_raw(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
close(r0)

45.72491907s ago: executing program 2 (id=545):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000240)=[{{&(0x7f00000001c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f0000000000)="17460081ba60ccbb9d000000000000", 0xf}], 0x2}}, {{&(0x7f0000000080)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000780)="5825be06000000000000007ca2746314d1787b351f0dda2d3d656bc3", 0x1c}], 0x1}}], 0x2, 0x4004040)

45.72481363s ago: executing program 32 (id=545):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r1, &(0x7f0000000240)=[{{&(0x7f00000001c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f0000000000)="17460081ba60ccbb9d000000000000", 0xf}], 0x2}}, {{&(0x7f0000000080)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000780)="5825be06000000000000007ca2746314d1787b351f0dda2d3d656bc3", 0x1c}], 0x1}}], 0x2, 0x4004040)

1.191626044s ago: executing program 0 (id=1437):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x800000000006}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3000009, 0x4082172, 0xffffffffffffffff, 0x97c3e000)
acct(&(0x7f0000000280)='./file1\x00')

1.143781588s ago: executing program 0 (id=1438):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="34020000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18f2ff0000000000000000000072cfe7aa110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000340))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
close(r4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="2000000000000000840000000200ffff0a000400280000000b000002", @ANYRES32=r6], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/resume', 0x143a82, 0x1ea)
dup(r7)

1.138012348s ago: executing program 1 (id=1440):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="34020000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18f2ff0000000000000000000072cfe7aa110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$eJzs2zFo1FccB/DfxRwHSnFxclIHKcVFcfQoKnenohBOsxQpBhQRbzpBOOlBig56FMUbxG4uVrhF7ZTLDZkSEsjUIYQMKYEMWVqSJZClV+7yCm1KSq8kBeHz4eDHe//f/33fO976Dz5pQ/Frt9vNRET3p4gDA7492ioULx8bOV++EZGJmxHx9fef/9B7kkkd3dx2PZHGy2n89s3BzrONS9nW0vXNk7emG0N/LDne/8Whd+3RPTge++x9fubw4yfV0vNa/t5iqb76dGH+2of1Qrl9tdH8eCV78Xbqm011ONUHUYtHcT/GYji+jTtR3WX97wbMf91aOZ09WmpN3D23Vey8mDrT7xr0Xv97vfz+hY2IXv7D4y+/atYvnPrxyKuztcm58lqKruR2vjm2b3sCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/y8bM4cdPqqXntfy9xVJ99enC/LUP64Vy+2qj+fFK9uLt1Deb6nCqD6IWj+J+jEUlKnEnqrsmfPbnQW7n0/f5v+a/bq2c/u1oqTVx99xWsfNi6kzqG9mj8/5DfreX//D4yy+b9Qunckdena1NzpXXDmz3Vf628+j/ewAAAAAAAAAAAAAAAAAAALAXCsXLx0bOl29EZOJmRHzxyzdDvflu+t49k/pOpLqc5t++Odh5tnEp21q6vnny1nTj5zQ/HpkYj4hD79qj//thGNjvAQAA//8Pi5HU")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000340))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
close(r4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB="2000000000000000840000000200ffff0a000400280000000b000002", @ANYRES32=r6], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/resume', 0x143a82, 0x1ea)
dup(r7)

1.11689948s ago: executing program 4 (id=1442):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0xfffffff9}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, 0x0, 0x4)

1.041309437s ago: executing program 4 (id=1443):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) (async)
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, 0x0, 0x190) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94) (async)
r1 = creat(0x0, 0xd931d3864d39dcca) (async)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0x1a, r3, 0x1, 0x1, 0x6, @broadcast}, 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'}) (async)
connect$unix(r1, &(0x7f0000000400)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
write$cgroup_devices(0xffffffffffffffff, &(0x7f00000003c0)={'b', ' *:* ', 'r\x00'}, 0x8) (async)
write$cgroup_devices(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[], 0x50) (async)
creat(&(0x7f00000000c0)='./file0\x00', 0x9c) (async)
stat(&(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r5) (async)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095", @ANYBLOB="bb316a4ea96351d1ddf39dd34a8686602b2b64c5b1d66bc7b0c497f882535613a88a6a4accce70e4b04d76fe2cc38c27feb97c2a9454f0787dde0d839862dbd25ca9e0e09cd39d23c737de0c2d65c125a5dde4c02ec2d5c546c844123858044349fb355b544909c78b051ff4ba24362fdb1646401076fb59c72a822853a0035e6d3f70fd1a36c52a4aa79cb2b3db06f6a1e933a814c13bf7fb98764244f74ff55bdd160d88825b10bcb5745b93c1d364317e070e225f591b937a868a8e9926fe9eddb1752185327ae99476c53cbcb9f55ed5596f75c2dbfa389ad28db0a74d288b4623a63fa814d5a754b1cf4e9f302b3026f3f60d399ba6f5"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r6, 0x0, 0x8000000000000004}, 0x18)

1.040992417s ago: executing program 4 (id=1444):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x80, 0x1)
r0 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
listen(0xffffffffffffffff, 0x3)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000))
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa1007dc500000007010000f8ffffffb702000008000000b7032f8ca60700b65d35a73133ef4292aae0c84a7e481ec5cbb11e97"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000200)='skb_copy_datagram_iovec\x00', r3, 0x0, 0x6}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff})
recvmsg$unix(r4, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

729.918722ms ago: executing program 3 (id=1457):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r1, 0x4018f50b, &(0x7f0000000000)={0x1, 0xdb1, 0x6})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x2}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0xce)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_uid}], [], 0x6b}})

678.636115ms ago: executing program 5 (id=1459):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x3}, 0x18)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x2f00, 0x0, 0x4, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x4, 0x2f, 0x0, @empty, @multicast1}}}})
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x24, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x8c0}, 0x20000810)

677.968196ms ago: executing program 3 (id=1460):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x10, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
memfd_create(0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2020000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x6, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000003a00)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x9}}, 0x10, &(0x7f0000000b40)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000001a00), 0x101d0}], 0x4}, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r2, &(0x7f0000000140), 0x0, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20, @remote}, 0x10)

649.194058ms ago: executing program 5 (id=1461):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000008c0)=ANY=[@ANYBLOB="000100001600010028bd7000fedbdf25fe880000000000000000000000000001e00000010000000000000000000000004e23000f4e230012020020005e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc000000000000000000000000000001000004d66c0000006401010200000000000000000000000008000000000000000001000000000000010000000000000007000000000000000010000000b900000100000000000000000000000000000000000100000000000200000000000000090000000000000003000000000000005d190000000000000900000006000000570d00000a0004daec00000000000000030000002803000005"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x24000014)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x20000000000001d2, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000001000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(r1)
r4 = inotify_init1(0x800)
fcntl$setstatus(r1, 0x4, 0x2c00)
r5 = gettid()
fcntl$setown(r1, 0x8, r5)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r4, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip_vti0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
setsockopt$IP_VS_SO_SET_DELDEST(r7, 0x0, 0x488, &(0x7f0000000480)={{0xc, @empty, 0x4e20, 0x3, 'none\x00', 0x20, 0xc0, 0x4f}, {@empty, 0x4e23, 0x0, 0x7fffffff, 0x236, 0x8a}}, 0x44)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r8, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

648.910868ms ago: executing program 3 (id=1462):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0xfffc, 0x103, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x16}, 0x4}, 0x1000, {[0x9, 0xdaa, 0x7fff, 0x31, 0x5, 0x1, 0x6d2e, 0xc33]}}, 0x5c)

582.286743ms ago: executing program 3 (id=1463):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r0, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xfffffffffdffffff})

501.39968ms ago: executing program 3 (id=1464):
r0 = socket(0x15, 0x5, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route(r2, 0x0, 0x40000)
unshare(0x2040400)
getsockopt(r0, 0x200000000114, 0x2710, &(0x7f0000000600)=""/102389, &(0x7f0000000000)=0x18ff5) (fail_nth: 4)

455.878384ms ago: executing program 3 (id=1465):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r0}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x40f00, 0xc, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000900)={[{@noblock_validity}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@resuid}, {@dioread_lock}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000340)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000004900)='./file0\x00', 0x434002, 0xf8)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)

397.288568ms ago: executing program 5 (id=1466):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) (async)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_subtree(r0, 0x0, 0x36)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r4 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000800000000000070000000900010073797a30000000007c000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d38001280140001800c000100636f756e7465720004000280200001800e000100636f6e6e6c696d69740000000c00028008000140000000080800034000000110"], 0xc4}}, 0x20050890)

236.222101ms ago: executing program 1 (id=1467):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getitimer(0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

233.080531ms ago: executing program 0 (id=1468):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
io_cancel(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000010900010073797a310000000048000000030a0101000000000000000001000000090003001e007a3200000000080007006e6174000900010073797a310000000014000480080002407c40280f080001400000000028000000000a05000000000000000000010000080900010073797a3100000000080002"], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

214.953973ms ago: executing program 0 (id=1469):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000800008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x4)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x3}, 0x18)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r4}, 0x10)
setitimer(0x2, 0x0, 0x0)
bind$inet6(r3, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)

211.554723ms ago: executing program 1 (id=1470):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
io_cancel(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000010900010073797a310000000048000000030a0101000000000000000001000000090003001e007a3200000000080007006e6174000900010073797a310000000014000480080002407c40280f080001400000000028000000000a05000000000000000000010000080900010073797a3100000000080002"], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

165.083557ms ago: executing program 5 (id=1471):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r0, 0x1)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)

164.837397ms ago: executing program 4 (id=1472):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r0, 0x1)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)

164.605357ms ago: executing program 1 (id=1473):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x50)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x480c0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/seq/clients\x00', 0x0, 0x0)
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000880)=""/7, 0x7}], 0x1, 0xf2, 0xc)

145.294649ms ago: executing program 4 (id=1474):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00"/13], 0x48)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000580)={'syztnl2\x00', 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000010850000008600000095", @ANYBLOB="5fe13101af3aabd034b0b918bca3b3b7168ae329aa4c5fa2a4c36c4f184e8011bb03a0b4c6791285b63fc4525bebd7f28272fdf3c5f56c3227c40b44b4c78426fdb64ed99f71893b34dddf634d600b7d754dc92b541533c175769c4d843f95f1c41cfc2b7439bf3f", @ANYRESHEX=r0, @ANYRESHEX], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000029008188e6b62aa73772cc9f1ba1f848430000005e140602000006020e00280010000700028000001294", 0x2e}], 0x1}, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x28}}], 0x30}, 0x0)

141.187899ms ago: executing program 5 (id=1475):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

123.22631ms ago: executing program 0 (id=1476):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f00000007c0)="$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")
truncate(&(0x7f0000000000)='./file1\x00', 0xffff)
madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x120002, 0x5e)
perf_event_open(&(0x7f0000000040)={0x5, 0x6c, 0x2, 0x2, 0x8, 0x9, 0x0, 0x6, 0x0, 0xc, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x2000, 0xff, 0x9, 0x0, 0x4, 0x145d, 0x1, 0x0, 0x3f8, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x5840400, 0x0, 0x0, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x73)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x18800)

120.4275ms ago: executing program 5 (id=1486):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000800008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x4)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x3}, 0x18)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
shutdown(r3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r4}, 0x10)
setitimer(0x2, 0x0, 0x0)
bind$inet6(r3, &(0x7f0000000240)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000280)="d5", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

69.305074ms ago: executing program 4 (id=1477):
fsopen(0x0, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xfffffffd, 0x0, 0x3}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x81})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa}, {0x4}}}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0x47f}]}, 0x3c}}, 0x0)
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3={0x3000000, [{}, {0x8de6}]}, 0x18, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=@delchain={0x4c, 0x65, 0x200, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x3, 0xe}, {0xfff2, 0x8}, {0x8, 0x6}}, [@TCA_RATE={0x6, 0x5, {0xba, 0x3}}, @TCA_CHAIN={0x8, 0xb, 0x3}, @TCA_RATE={0x6, 0x5, {0xc, 0xe6}}, @TCA_CHAIN={0x8, 0xb, 0x4}, @TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x4c}}, 0x6a7c4d3eff82ff02)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$SNAPSHOT_S2RAM(r6, 0x330b)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x88000, 0x0)
ioctl$SNAPSHOT_S2RAM(r6, 0x330b)

60.628156ms ago: executing program 1 (id=1478):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x800000000006}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3000009, 0x4082172, 0xffffffffffffffff, 0x97c3e000)
acct(&(0x7f0000000280)='./file1\x00')

256.25µs ago: executing program 0 (id=1479):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x1d, &(0x7f00000008c0), 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x1800, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x6c, 0x2, {{}, [@TCA_NETEM_LOSS={0x30, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x4}, @NETEM_LOSS_GI={0x18}]}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc}]}}}]}, 0x9c}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6, 0x0, 0xffffffffffffffff}, 0x18)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000000)={0xfffffffe, 0x7ff, 0x0, 'queue0\x00', 0x40fc})
r8 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r8, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x3, 0x0, 0x0, "d9298498abdba7f061bd1ca44c226a848e2c961711a07760760bee524c8a0524af261e39e8abff005597c8ef039a5be42200", 0x38}, 0x60)
listen(r8, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_RW(r8, 0x118, 0x0, 0x0, 0x0)
close(r7)

0s ago: executing program 1 (id=1480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getitimer(0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

kernel console output (not intermixed with test programs):

5]  x64_sys_call+0x1c4a/0x2ff0
[   75.526220][ T5935]  do_syscall_64+0xd2/0x200
[   75.526327][ T5935]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.526470][ T5935]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.526503][ T5935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.526529][ T5935] RIP: 0033:0x7f1ff81debe9
[   75.526549][ T5935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.526572][ T5935] RSP: 002b:00007f1ff6c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   75.526602][ T5935] RAX: ffffffffffffffda RBX: 00007f1ff8405fa0 RCX: 00007f1ff81debe9
[   75.526640][ T5935] RDX: 0000000000000002 RSI: 0000200000000900 RDI: 0000000000000003
[   75.526655][ T5935] RBP: 00007f1ff6c3f090 R08: 0000000000000000 R09: 0000000000000000
[   75.526670][ T5935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.526687][ T5935] R13: 00007f1ff8406038 R14: 00007f1ff8405fa0 R15: 00007ffcd59e1c48
[   75.526716][ T5935]  </TASK>
[   75.792389][ T5940] netlink: 8 bytes leftover after parsing attributes in process `syz.1.886'.
[   75.804841][ T5941] netlink: 24 bytes leftover after parsing attributes in process `syz.4.885'.
[   75.854163][ T5947] loop1: detected capacity change from 0 to 512
[   75.888607][ T5953] loop3: detected capacity change from 0 to 512
[   75.896587][ T5947] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   75.905267][ T5953] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.915516][ T5947] EXT4-fs (loop1): orphan cleanup on readonly fs
[   75.924498][ T5947] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.888: corrupted inode contents
[   75.938011][ T5947] EXT4-fs (loop1): Remounting filesystem read-only
[   75.945959][ T5947] EXT4-fs (loop1): 1 truncate cleaned up
[   75.951898][ T5913] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.962567][ T5913] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   75.973578][ T5953] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.892: iget: bad i_size value: -6917529027641081756
[   75.987040][ T5913] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   75.997217][ T5913] __quota_error: 328 callbacks suppressed
[   75.997235][ T5913] Quota error (device loop1): v2_write_file_info: Can't write info structure
[   76.013153][ T5913] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   76.014498][ T5953] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.892: couldn't read orphan inode 17 (err -117)
[   76.023661][ T5947] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.036269][   T29] audit: type=1400 audit(1755409152.487:2235): avc:  denied  { unmount } for  pid=4907 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   76.058369][ T5953] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.108285][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.120076][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.262163][ T5981] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   76.268129][ T5986] netlink: 8 bytes leftover after parsing attributes in process `syz.3.899'.
[   76.314740][ T5981] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   76.329736][ T5991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.900'.
[   76.343202][   T29] audit: type=1326 audit(1755409152.787:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.366623][   T29] audit: type=1326 audit(1755409152.787:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.389945][   T29] audit: type=1326 audit(1755409152.787:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.413406][   T29] audit: type=1326 audit(1755409152.787:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.436751][   T29] audit: type=1326 audit(1755409152.787:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.460151][   T29] audit: type=1326 audit(1755409152.787:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.483409][   T29] audit: type=1326 audit(1755409152.787:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5985 comm="syz.3.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   76.602569][ T6005] loop1: detected capacity change from 0 to 512
[   76.611225][ T6005] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.626848][ T6005] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.905: iget: bad i_size value: -6917529027641081756
[   76.640459][ T6005] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.905: couldn't read orphan inode 17 (err -117)
[   76.653068][ T6005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.678084][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.921712][ T6016] Process accounting resumed
[   77.007650][ T6028] FAULT_INJECTION: forcing a failure.
[   77.007650][ T6028] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   77.021099][ T6028] CPU: 1 UID: 0 PID: 6028 Comm: syz.5.915 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   77.021155][ T6028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.021171][ T6028] Call Trace:
[   77.021179][ T6028]  <TASK>
[   77.021186][ T6028]  __dump_stack+0x1d/0x30
[   77.021207][ T6028]  dump_stack_lvl+0xe8/0x140
[   77.021225][ T6028]  dump_stack+0x15/0x1b
[   77.021283][ T6028]  should_fail_ex+0x265/0x280
[   77.021306][ T6028]  should_fail_alloc_page+0xf2/0x100
[   77.021414][ T6028]  __alloc_frozen_pages_noprof+0xff/0x360
[   77.021539][ T6028]  alloc_pages_mpol+0xb3/0x250
[   77.021659][ T6028]  vma_alloc_folio_noprof+0x1aa/0x300
[   77.021694][ T6028]  handle_mm_fault+0xec2/0x2c20
[   77.021719][ T6028]  ? __rcu_read_lock+0x37/0x50
[   77.021745][ T6028]  ? __pte_offset_map_lock+0x1d4/0x230
[   77.021834][ T6028]  __get_user_pages+0x102e/0x1fa0
[   77.021878][ T6028]  __gup_longterm_locked+0x2fb/0xe60
[   77.021909][ T6028]  ? ___pte_offset_map+0xea/0x150
[   77.021941][ T6028]  gup_fast_fallback+0x1f5/0x1420
[   77.021967][ T6028]  ? alloc_pages_mpol+0x201/0x250
[   77.022063][ T6028]  pin_user_pages_fast+0x5f/0x90
[   77.022090][ T6028]  io_pin_pages+0xb5/0x170
[   77.022138][ T6028]  io_sqe_buffer_register+0x184/0x1430
[   77.022298][ T6028]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[   77.022338][ T6028]  ? __kvmalloc_node_noprof+0x398/0x4e0
[   77.022415][ T6028]  io_sqe_buffers_register+0x2ac/0x530
[   77.022510][ T6028]  __se_sys_io_uring_register+0xa9f/0xeb0
[   77.022594][ T6028]  ? fput+0x8f/0xc0
[   77.022693][ T6028]  ? ksys_write+0x192/0x1a0
[   77.022717][ T6028]  __x64_sys_io_uring_register+0x55/0x70
[   77.022746][ T6028]  x64_sys_call+0x18a3/0x2ff0
[   77.022769][ T6028]  do_syscall_64+0xd2/0x200
[   77.022847][ T6028]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.022873][ T6028]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.022979][ T6028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.023002][ T6028] RIP: 0033:0x7f9ca3a5ebe9
[   77.023017][ T6028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.023036][ T6028] RSP: 002b:00007f9ca24bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   77.023102][ T6028] RAX: ffffffffffffffda RBX: 00007f9ca3c85fa0 RCX: 00007f9ca3a5ebe9
[   77.023116][ T6028] RDX: 00002000000002c0 RSI: 0000000000000000 RDI: 0000000000000003
[   77.023129][ T6028] RBP: 00007f9ca24bf090 R08: 0000000000000000 R09: 0000000000000000
[   77.023142][ T6028] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000002
[   77.023167][ T6028] R13: 00007f9ca3c86038 R14: 00007f9ca3c85fa0 R15: 00007ffd870296e8
[   77.023187][ T6028]  </TASK>
[   77.315975][ T6035] loop4: detected capacity change from 0 to 512
[   77.323276][ T6035] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.336745][ T6035] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.917: iget: bad i_size value: -6917529027641081756
[   77.350939][ T6035] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.917: couldn't read orphan inode 17 (err -117)
[   77.380956][ T6035] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.389993][ T6042] loop1: detected capacity change from 0 to 1024
[   77.404159][ T6042] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   77.425025][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.442976][ T6042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.456806][ T6046] FAULT_INJECTION: forcing a failure.
[   77.456806][ T6046] name failslab, interval 1, probability 0, space 0, times 0
[   77.469525][ T6046] CPU: 0 UID: 0 PID: 6046 Comm: syz.4.920 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   77.469577][ T6046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.469590][ T6046] Call Trace:
[   77.469598][ T6046]  <TASK>
[   77.469607][ T6046]  __dump_stack+0x1d/0x30
[   77.469634][ T6046]  dump_stack_lvl+0xe8/0x140
[   77.469658][ T6046]  dump_stack+0x15/0x1b
[   77.469679][ T6046]  should_fail_ex+0x265/0x280
[   77.469771][ T6046]  should_failslab+0x8c/0xb0
[   77.469801][ T6046]  kmem_cache_alloc_noprof+0x50/0x310
[   77.469836][ T6046]  ? skb_clone+0x151/0x1f0
[   77.469865][ T6046]  skb_clone+0x151/0x1f0
[   77.469894][ T6046]  __netlink_deliver_tap+0x2c9/0x500
[   77.469958][ T6046]  netlink_unicast+0x66b/0x690
[   77.470001][ T6046]  netlink_sendmsg+0x58b/0x6b0
[   77.470030][ T6046]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.470115][ T6046]  __sock_sendmsg+0x142/0x180
[   77.470223][ T6046]  ____sys_sendmsg+0x31e/0x4e0
[   77.470337][ T6046]  ___sys_sendmsg+0x17b/0x1d0
[   77.470378][ T6046]  __x64_sys_sendmsg+0xd4/0x160
[   77.470447][ T6046]  x64_sys_call+0x191e/0x2ff0
[   77.470479][ T6046]  do_syscall_64+0xd2/0x200
[   77.470510][ T6046]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.470574][ T6046]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.470620][ T6046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.470726][ T6046] RIP: 0033:0x7f97cf7cebe9
[   77.470746][ T6046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.470798][ T6046] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.470822][ T6046] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   77.470838][ T6046] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[   77.470853][ T6046] RBP: 00007f97ce237090 R08: 0000000000000000 R09: 0000000000000000
[   77.470868][ T6046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.470883][ T6046] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   77.470906][ T6046]  </TASK>
[   77.727166][ T6050] FAULT_INJECTION: forcing a failure.
[   77.727166][ T6050] name failslab, interval 1, probability 0, space 0, times 0
[   77.740142][ T6050] CPU: 0 UID: 0 PID: 6050 Comm: syz.3.923 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   77.740262][ T6050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.740277][ T6050] Call Trace:
[   77.740284][ T6050]  <TASK>
[   77.740344][ T6050]  __dump_stack+0x1d/0x30
[   77.740370][ T6050]  dump_stack_lvl+0xe8/0x140
[   77.740391][ T6050]  dump_stack+0x15/0x1b
[   77.740407][ T6050]  should_fail_ex+0x265/0x280
[   77.740478][ T6050]  should_failslab+0x8c/0xb0
[   77.740539][ T6050]  kmem_cache_alloc_noprof+0x50/0x310
[   77.740568][ T6050]  ? alloc_empty_file+0x76/0x200
[   77.740607][ T6050]  alloc_empty_file+0x76/0x200
[   77.740644][ T6050]  alloc_file_pseudo+0xc6/0x160
[   77.740751][ T6050]  __shmem_file_setup+0x1de/0x210
[   77.740794][ T6050]  shmem_file_setup+0x3b/0x50
[   77.740827][ T6050]  __se_sys_memfd_create+0x2c3/0x590
[   77.740879][ T6050]  __x64_sys_memfd_create+0x31/0x40
[   77.740905][ T6050]  x64_sys_call+0x2abe/0x2ff0
[   77.740931][ T6050]  do_syscall_64+0xd2/0x200
[   77.740958][ T6050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.740983][ T6050]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.741020][ T6050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.741047][ T6050] RIP: 0033:0x7f19c694ebe9
[   77.741063][ T6050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.741080][ T6050] RSP: 002b:00007f19c53aed68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   77.741099][ T6050] RAX: ffffffffffffffda RBX: 0000000000000593 RCX: 00007f19c694ebe9
[   77.741181][ T6050] RDX: 00007f19c53aedec RSI: 0000000000000000 RDI: 00007f19c69d27e8
[   77.741195][ T6050] RBP: 00002000000005c0 R08: 00007f19c53aeb07 R09: 0000000000000000
[   77.741210][ T6050] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   77.741256][ T6050] R13: 00007f19c53aedec R14: 00007f19c53aedf0 R15: 00007ffee2cdddf8
[   77.741280][ T6050]  </TASK>
[   77.744401][ T3301] EXT4-fs error (device loop1): ext4_empty_dir:3113: inode #11: block 8192: comm syz-executor: Attempting to read directory block (8192) that is past i_size (8388864)
[   77.850746][ T6055] macvlan1: entered promiscuous mode
[   77.887052][ T3301] EXT4-fs (loop1): Remounting filesystem read-only
[   77.897157][ T6055] ipvlan0: entered promiscuous mode
[   77.973562][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.974705][ T6055] ipvlan0: left promiscuous mode
[   77.989472][ T6055] macvlan1: left promiscuous mode
[   78.150335][ T6062] loop1: detected capacity change from 0 to 512
[   78.152555][ T6062] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.194218][ T6059] Process accounting resumed
[   78.219042][ T6067] loop3: detected capacity change from 0 to 512
[   78.222237][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.274634][ T6067] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.287794][ T6067] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.929: iget: bad i_size value: -6917529027641081756
[   78.287989][ T6067] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.929: couldn't read orphan inode 17 (err -117)
[   78.288753][ T6067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.410086][ T6079] can0: slcan on ttyS3.
[   78.442385][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.521131][ T6086] netlink: 'syz.3.933': attribute type 2 has an invalid length.
[   78.528957][ T6086] __nla_validate_parse: 5 callbacks suppressed
[   78.529035][ T6086] netlink: 16 bytes leftover after parsing attributes in process `syz.3.933'.
[   78.574979][ T6092] netlink: 8 bytes leftover after parsing attributes in process `syz.3.937'.
[   78.623872][ T6088] loop4: detected capacity change from 0 to 164
[   78.631398][ T6088] iso9660: Unknown parameter 'kfree'
[   78.655153][ T6078] can0 (unregistered): slcan off ttyS3.
[   78.707738][ T6098] loop3: detected capacity change from 0 to 512
[   78.717101][ T6100] loop4: detected capacity change from 0 to 512
[   78.725086][ T6100] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.753169][ T6102] FAULT_INJECTION: forcing a failure.
[   78.753169][ T6102] name failslab, interval 1, probability 0, space 0, times 0
[   78.765914][ T6102] CPU: 0 UID: 0 PID: 6102 Comm: syz.0.942 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   78.765952][ T6102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   78.765968][ T6102] Call Trace:
[   78.765976][ T6102]  <TASK>
[   78.766052][ T6102]  __dump_stack+0x1d/0x30
[   78.766077][ T6102]  dump_stack_lvl+0xe8/0x140
[   78.766162][ T6102]  dump_stack+0x15/0x1b
[   78.766180][ T6102]  should_fail_ex+0x265/0x280
[   78.766203][ T6102]  should_failslab+0x8c/0xb0
[   78.766294][ T6102]  kmem_cache_alloc_node_noprof+0x57/0x320
[   78.766326][ T6102]  ? __alloc_skb+0x101/0x320
[   78.766455][ T6102]  __alloc_skb+0x101/0x320
[   78.766492][ T6102]  ? pfkey_broadcast+0x223/0x240
[   78.766519][ T6102]  pfkey_sendmsg+0x7e4/0x900
[   78.766587][ T6102]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   78.766616][ T6102]  __sock_sendmsg+0x142/0x180
[   78.766649][ T6102]  ____sys_sendmsg+0x31e/0x4e0
[   78.766678][ T6102]  ___sys_sendmsg+0x17b/0x1d0
[   78.766752][ T6102]  __x64_sys_sendmsg+0xd4/0x160
[   78.766808][ T6102]  x64_sys_call+0x191e/0x2ff0
[   78.766834][ T6102]  do_syscall_64+0xd2/0x200
[   78.766946][ T6102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.766975][ T6102]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   78.767005][ T6102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.767135][ T6102] RIP: 0033:0x7f3847eeebe9
[   78.767151][ T6102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.767172][ T6102] RSP: 002b:00007f3846957038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.767193][ T6102] RAX: ffffffffffffffda RBX: 00007f3848115fa0 RCX: 00007f3847eeebe9
[   78.767263][ T6102] RDX: 0000000000000080 RSI: 0000200000000440 RDI: 0000000000000003
[   78.767277][ T6102] RBP: 00007f3846957090 R08: 0000000000000000 R09: 0000000000000000
[   78.767291][ T6102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.767304][ T6102] R13: 00007f3848116038 R14: 00007f3848115fa0 R15: 00007ffedb440048
[   78.767324][ T6102]  </TASK>
[   78.770627][ T6100] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.941: iget: bad i_size value: -6917529027641081756
[   78.988923][ T6100] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.941: couldn't read orphan inode 17 (err -117)
[   79.001645][ T6100] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.032668][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.047147][ T6114] 9pnet_fd: Insufficient options for proto=fd
[   79.088759][ T6125] FAULT_INJECTION: forcing a failure.
[   79.088759][ T6125] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.101957][ T6125] CPU: 0 UID: 0 PID: 6125 Comm: syz.0.950 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   79.101994][ T6125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   79.102010][ T6125] Call Trace:
[   79.102019][ T6125]  <TASK>
[   79.102028][ T6125]  __dump_stack+0x1d/0x30
[   79.102054][ T6125]  dump_stack_lvl+0xe8/0x140
[   79.102079][ T6125]  dump_stack+0x15/0x1b
[   79.102148][ T6125]  should_fail_ex+0x265/0x280
[   79.102173][ T6125]  should_fail+0xb/0x20
[   79.102196][ T6125]  should_fail_usercopy+0x1a/0x20
[   79.102302][ T6125]  _copy_to_user+0x20/0xa0
[   79.102339][ T6125]  simple_read_from_buffer+0xb5/0x130
[   79.102368][ T6125]  proc_fail_nth_read+0x10e/0x150
[   79.102428][ T6125]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   79.102454][ T6125]  vfs_read+0x1a5/0x770
[   79.102473][ T6125]  ? io_register_rsrc_update+0x10a/0x120
[   79.102506][ T6125]  ? __rcu_read_unlock+0x4f/0x70
[   79.102543][ T6125]  ? __fget_files+0x184/0x1c0
[   79.102574][ T6125]  ksys_read+0xda/0x1a0
[   79.102626][ T6125]  __x64_sys_read+0x40/0x50
[   79.102655][ T6125]  x64_sys_call+0x27bc/0x2ff0
[   79.102688][ T6125]  do_syscall_64+0xd2/0x200
[   79.102724][ T6125]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.102789][ T6125]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   79.102822][ T6125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.102850][ T6125] RIP: 0033:0x7f3847eed5fc
[   79.102868][ T6125] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   79.102886][ T6125] RSP: 002b:00007f3846957030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   79.102908][ T6125] RAX: ffffffffffffffda RBX: 00007f3848115fa0 RCX: 00007f3847eed5fc
[   79.102973][ T6125] RDX: 000000000000000f RSI: 00007f38469570a0 RDI: 0000000000000004
[   79.103067][ T6125] RBP: 00007f3846957090 R08: 0000000000000000 R09: 0000000000000000
[   79.103102][ T6125] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   79.103118][ T6125] R13: 00007f3848116038 R14: 00007f3848115fa0 R15: 00007ffedb440048
[   79.103142][ T6125]  </TASK>
[   79.365847][ T6137] netlink: 12 bytes leftover after parsing attributes in process `syz.5.957'.
[   79.396054][ T6135] netlink: 24 bytes leftover after parsing attributes in process `syz.0.956'.
[   79.434129][ T6139] loop1: detected capacity change from 0 to 512
[   79.456025][ T6139] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.600599][ T6139] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.958: iget: bad i_size value: -6917529027641081756
[   79.651018][ T6139] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.958: couldn't read orphan inode 17 (err -117)
[   79.663843][ T6139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.692295][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.771661][ T6157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.963'.
[   79.780584][ T6157] netlink: 16 bytes leftover after parsing attributes in process `syz.1.963'.
[   79.812450][ T6164] loop3: detected capacity change from 0 to 512
[   79.832886][ T6164] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.853810][ T6164] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[   79.857872][ T6167] loop1: detected capacity change from 0 to 512
[   79.885678][ T6164] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.965: inode #15: comm syz.3.965: iget: illegal inode #
[   79.906763][ T6169] FAULT_INJECTION: forcing a failure.
[   79.906763][ T6169] name failslab, interval 1, probability 0, space 0, times 0
[   79.919504][ T6169] CPU: 1 UID: 0 PID: 6169 Comm: syz.5.959 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   79.919597][ T6169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   79.919613][ T6169] Call Trace:
[   79.919621][ T6169]  <TASK>
[   79.919637][ T6169]  __dump_stack+0x1d/0x30
[   79.919659][ T6169]  dump_stack_lvl+0xe8/0x140
[   79.919719][ T6169]  dump_stack+0x15/0x1b
[   79.919740][ T6169]  should_fail_ex+0x265/0x280
[   79.919761][ T6169]  ? __se_sys_mount+0xef/0x2e0
[   79.919803][ T6169]  should_failslab+0x8c/0xb0
[   79.919878][ T6169]  __kmalloc_cache_noprof+0x4c/0x320
[   79.919946][ T6169]  ? memdup_user+0x99/0xd0
[   79.919959][ T6164] EXT4-fs (loop3): Remounting filesystem read-only
[   79.919978][ T6169]  __se_sys_mount+0xef/0x2e0
[   79.920028][ T6169]  ? fput+0x8f/0xc0
[   79.920083][ T6169]  ? ksys_write+0x192/0x1a0
[   79.920118][ T6169]  __x64_sys_mount+0x67/0x80
[   79.920208][ T6169]  x64_sys_call+0x2b4d/0x2ff0
[   79.920238][ T6169]  do_syscall_64+0xd2/0x200
[   79.920276][ T6169]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.920311][ T6169]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   79.920403][ T6169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.920432][ T6169] RIP: 0033:0x7f9ca3a5ebe9
[   79.920455][ T6169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.920481][ T6169] RSP: 002b:00007f9ca24bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   79.920528][ T6169] RAX: ffffffffffffffda RBX: 00007f9ca3c85fa0 RCX: 00007f9ca3a5ebe9
[   79.920546][ T6169] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[   79.920564][ T6169] RBP: 00007f9ca24bf090 R08: 0000200000000240 R09: 0000000000000000
[   79.920581][ T6169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.920599][ T6169] R13: 00007f9ca3c86038 R14: 00007f9ca3c85fa0 R15: 00007ffd870296e8
[   79.920625][ T6169]  </TASK>
[   79.964983][ T6167] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.967050][ T6164] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.019770][ T6178] loop4: detected capacity change from 0 to 128
[   80.142167][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.166084][ T6167] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.966: iget: bad i_size value: -6917529027641081756
[   80.180291][ T6167] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.966: couldn't read orphan inode 17 (err -117)
[   80.184497][ T6182] loop5: detected capacity change from 0 to 164
[   80.198891][ T6182] iso9660: Unknown parameter '00000000000000000003'
[   80.203008][ T6178] FAT-fs (loop4): error, corrupted directory (invalid i_start)
[   80.213134][ T6178] FAT-fs (loop4): Filesystem has been set read-only
[   80.227206][ T6182] netlink: 'syz.5.971': attribute type 3 has an invalid length.
[   80.240381][ T6167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.302917][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.319679][ T6191] loop4: detected capacity change from 0 to 1024
[   80.335566][ T6191] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   80.446368][ T6191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.535185][ T6191] FAULT_INJECTION: forcing a failure.
[   80.535185][ T6191] name failslab, interval 1, probability 0, space 0, times 0
[   80.548155][ T6191] CPU: 1 UID: 0 PID: 6191 Comm: syz.4.974 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   80.548223][ T6191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.548238][ T6191] Call Trace:
[   80.548247][ T6191]  <TASK>
[   80.548256][ T6191]  __dump_stack+0x1d/0x30
[   80.548371][ T6191]  dump_stack_lvl+0xe8/0x140
[   80.548390][ T6191]  dump_stack+0x15/0x1b
[   80.548411][ T6191]  should_fail_ex+0x265/0x280
[   80.548438][ T6191]  should_failslab+0x8c/0xb0
[   80.548498][ T6191]  __kmalloc_noprof+0xa5/0x3e0
[   80.548533][ T6191]  ? ext4_find_extent+0x16b/0x7a0
[   80.548560][ T6191]  ? loop_queue_rq+0x5e3/0x680
[   80.548659][ T6191]  ext4_find_extent+0x16b/0x7a0
[   80.548691][ T6191]  ext4_ext_map_blocks+0x11f/0x38a0
[   80.548723][ T6191]  ? folio_mark_accessed+0x240/0x3d0
[   80.548824][ T6191]  ? xas_load+0x413/0x430
[   80.548854][ T6191]  ? __xa_set_mark+0x160/0x1a0
[   80.548898][ T6191]  ? folio_mark_accessed+0x240/0x3d0
[   80.549006][ T6191]  ? folio_mark_accessed+0x240/0x3d0
[   80.549044][ T6191]  ext4_map_query_blocks+0xa8/0x480
[   80.549120][ T6191]  ext4_map_blocks+0x330/0xd00
[   80.549156][ T6191]  ? ext4_get_group_desc+0x16b/0x190
[   80.549201][ T6191]  ? __ext4_journal_start_sb+0x131/0x300
[   80.549226][ T6191]  ext4_iomap_begin+0x88d/0xe00
[   80.549269][ T6191]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   80.549308][ T6191]  iomap_iter+0x32f/0x730
[   80.549349][ T6191]  ? should_failslab+0x8c/0xb0
[   80.549457][ T6191]  __iomap_dio_rw+0x708/0x1250
[   80.549502][ T6191]  ? ext4_journal_check_start+0x11a/0x1b0
[   80.549529][ T6191]  iomap_dio_rw+0x40/0x90
[   80.549551][ T6191]  ext4_file_write_iter+0xad9/0xf00
[   80.549619][ T6191]  do_iter_readv_writev+0x49c/0x540
[   80.549654][ T6191]  vfs_writev+0x2df/0x8b0
[   80.549703][ T6191]  ? mutex_lock+0xd/0x30
[   80.549729][ T6191]  do_writev+0xe7/0x210
[   80.549766][ T6191]  __x64_sys_writev+0x45/0x50
[   80.549797][ T6191]  x64_sys_call+0x1e9a/0x2ff0
[   80.549884][ T6191]  do_syscall_64+0xd2/0x200
[   80.549918][ T6191]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.550000][ T6191]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.550027][ T6191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.550057][ T6191] RIP: 0033:0x7f97cf7cebe9
[   80.550153][ T6191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.550174][ T6191] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   80.550199][ T6191] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   80.550254][ T6191] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000007
[   80.550270][ T6191] RBP: 00007f97ce237090 R08: 0000000000000000 R09: 0000000000000000
[   80.550287][ T6191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.550302][ T6191] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   80.550366][ T6191]  </TASK>
[   81.008970][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.056074][ T6212] FAULT_INJECTION: forcing a failure.
[   81.056074][ T6212] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   81.069465][ T6212] CPU: 1 UID: 0 PID: 6212 Comm: syz.3.982 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   81.069531][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   81.069548][ T6212] Call Trace:
[   81.069555][ T6212]  <TASK>
[   81.069562][ T6212]  __dump_stack+0x1d/0x30
[   81.069584][ T6212]  dump_stack_lvl+0xe8/0x140
[   81.069608][ T6212]  dump_stack+0x15/0x1b
[   81.069658][ T6212]  should_fail_ex+0x265/0x280
[   81.069682][ T6212]  should_fail_alloc_page+0xf2/0x100
[   81.069709][ T6212]  __alloc_frozen_pages_noprof+0xff/0x360
[   81.069796][ T6212]  alloc_pages_mpol+0xb3/0x250
[   81.069863][ T6212]  vma_alloc_folio_noprof+0x1aa/0x300
[   81.069906][ T6212]  handle_mm_fault+0xec2/0x2c20
[   81.069966][ T6212]  do_user_addr_fault+0x636/0x1090
[   81.070007][ T6212]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   81.070109][ T6212]  exc_page_fault+0x62/0xa0
[   81.070188][ T6212]  asm_exc_page_fault+0x26/0x30
[   81.070212][ T6212] RIP: 0033:0x7f19c6810ba3
[   81.070230][ T6212] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   81.070252][ T6212] RSP: 002b:00007f19c53ae4a0 EFLAGS: 00010202
[   81.070334][ T6212] RAX: 0000000000003000 RBX: 00007f19c53ae540 RCX: 00007f19bcf8f000
[   81.070346][ T6212] RDX: 00007f19c53ae6e0 RSI: 0000000000000001 RDI: 00007f19c53ae5e0
[   81.070359][ T6212] RBP: 00000000000000d9 R08: 0000000000000006 R09: 0000000000000021
[   81.070385][ T6212] R10: 0000000000000024 R11: 00007f19c53ae540 R12: 0000000000000001
[   81.070400][ T6212] R13: 00007f19c69ed980 R14: 0000000000000002 R15: 00007f19c53ae5e0
[   81.070423][ T6212]  </TASK>
[   81.070435][ T6212] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   81.111465][ T6214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.983'.
[   81.122593][ T6212] loop3: detected capacity change from 0 to 512
[   81.158245][ T6217] loop1: detected capacity change from 0 to 128
[   81.159743][ T6212] EXT4-fs: Ignoring removed nobh option
[   81.266577][ T6223] loop1: detected capacity change from 0 to 512
[   81.280843][   T29] kauditd_printk_skb: 218 callbacks suppressed
[   81.280862][   T29] audit: type=1400 audit(1755409157.727:2461): avc:  denied  { listen } for  pid=6213 comm="syz.0.983" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[   81.308314][ T6223] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.314353][   T29] audit: type=1326 audit(1755409157.727:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.341001][   T29] audit: type=1326 audit(1755409157.727:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.364840][   T29] audit: type=1326 audit(1755409157.737:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.388472][   T29] audit: type=1326 audit(1755409157.737:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.412005][   T29] audit: type=1326 audit(1755409157.737:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.435534][   T29] audit: type=1326 audit(1755409157.737:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.458933][   T29] audit: type=1326 audit(1755409157.737:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.482456][   T29] audit: type=1326 audit(1755409157.737:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.505864][   T29] audit: type=1326 audit(1755409157.737:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6213 comm="syz.0.983" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   81.539723][ T6223] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.985: iget: bad i_size value: -6917529027641081756
[   81.563648][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.982: corrupted inode contents
[   81.576536][ T6223] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.985: couldn't read orphan inode 17 (err -117)
[   81.589133][ T6212] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.982: mark_inode_dirty error
[   81.602301][ T6223] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.617593][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.982: corrupted inode contents
[   81.631735][ T6212] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.982: mark_inode_dirty error
[   81.649495][ T6212] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.982: Failed to acquire dquot type 0
[   81.662110][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.672675][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.982: corrupted inode contents
[   81.694769][ T6212] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.982: mark_inode_dirty error
[   81.729617][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.982: corrupted inode contents
[   81.812837][ T6212] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.982: mark_inode_dirty error
[   81.837417][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.982: corrupted inode contents
[   81.851309][ T6212] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   81.870175][ T6212] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.982: corrupted inode contents
[   81.904605][ T6212] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.982: mark_inode_dirty error
[   81.944497][ T6212] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   81.959637][ T6250] veth0_vlan: left promiscuous mode
[   81.974467][ T6212] EXT4-fs (loop3): 1 truncate cleaned up
[   81.980644][ T6212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.013583][ T6212] ext4 filesystem being mounted at /204/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.015411][ T6251] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.076039][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.076222][ T6251] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.144567][ T6250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.991'.
[   82.153464][ T6250] netlink: 16 bytes leftover after parsing attributes in process `syz.0.991'.
[   82.162418][ T6250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.991'.
[   82.375135][ T6282] loop4: detected capacity change from 0 to 512
[   82.395504][ T6282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.502163][ T6258] loop3: detected capacity change from 0 to 128
[   82.538291][ T6258] msdos: Bad value for 'fmask'
[   82.930340][ T6311] loop5: detected capacity change from 0 to 512
[   82.968392][ T6315] SELinux: security_context_str_to_sid () failed with errno=-22
[   83.030142][ T6322] netem: change failed
[   83.073115][ T6325] lo speed is unknown, defaulting to 1000
[   83.118353][ T6327] loop3: detected capacity change from 0 to 512
[   83.136970][ T6327] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.149545][ T6327] FAULT_INJECTION: forcing a failure.
[   83.149545][ T6327] name failslab, interval 1, probability 0, space 0, times 0
[   83.162445][ T6327] CPU: 0 UID: 0 PID: 6327 Comm: syz.3.1016 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   83.162483][ T6327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   83.162499][ T6327] Call Trace:
[   83.162505][ T6327]  <TASK>
[   83.162584][ T6327]  __dump_stack+0x1d/0x30
[   83.162610][ T6327]  dump_stack_lvl+0xe8/0x140
[   83.162635][ T6327]  dump_stack+0x15/0x1b
[   83.162636][ T6333] loop4: detected capacity change from 0 to 128
[   83.162657][ T6327]  should_fail_ex+0x265/0x280
[   83.162691][ T6327]  should_failslab+0x8c/0xb0
[   83.162854][ T6327]  __kvmalloc_node_noprof+0x123/0x4e0
[   83.162897][ T6327]  ? alloc_netdev_mqs+0x553/0xa30
[   83.162928][ T6327]  ? br_dev_setup+0x436/0x460
[   83.162962][ T6327]  alloc_netdev_mqs+0x553/0xa30
[   83.163001][ T6327]  rtnl_create_link+0x239/0x710
[   83.163034][ T6327]  rtnl_newlink_create+0x14c/0x620
[   83.163076][ T6327]  ? security_capable+0x83/0x90
[   83.163122][ T6327]  ? netlink_ns_capable+0x86/0xa0
[   83.163212][ T6327]  rtnl_newlink+0xf29/0x12d0
[   83.163264][ T6327]  ? __memcg_slab_free_hook+0x135/0x230
[   83.163317][ T6327]  ? __rcu_read_unlock+0x4f/0x70
[   83.163349][ T6327]  ? avc_has_perm_noaudit+0x1b1/0x200
[   83.163428][ T6327]  ? cred_has_capability+0x210/0x280
[   83.163463][ T6327]  ? selinux_capable+0x31/0x40
[   83.163502][ T6327]  ? security_capable+0x83/0x90
[   83.163621][ T6327]  ? ns_capable+0x7d/0xb0
[   83.163708][ T6327]  ? __pfx_rtnl_newlink+0x10/0x10
[   83.163747][ T6327]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   83.163789][ T6327]  netlink_rcv_skb+0x123/0x220
[   83.163864][ T6327]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   83.163912][ T6327]  rtnetlink_rcv+0x1c/0x30
[   83.163945][ T6327]  netlink_unicast+0x5bd/0x690
[   83.164049][ T6327]  netlink_sendmsg+0x58b/0x6b0
[   83.164082][ T6327]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.164176][ T6327]  __sock_sendmsg+0x142/0x180
[   83.164218][ T6327]  ____sys_sendmsg+0x31e/0x4e0
[   83.164330][ T6327]  ___sys_sendmsg+0x17b/0x1d0
[   83.164379][ T6327]  __x64_sys_sendmsg+0xd4/0x160
[   83.164421][ T6327]  x64_sys_call+0x191e/0x2ff0
[   83.164453][ T6327]  do_syscall_64+0xd2/0x200
[   83.164553][ T6327]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.164587][ T6327]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   83.164623][ T6327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.164699][ T6327] RIP: 0033:0x7f19c694ebe9
[   83.164764][ T6327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.164824][ T6327] RSP: 002b:00007f19c53af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   83.164850][ T6327] RAX: ffffffffffffffda RBX: 00007f19c6b75fa0 RCX: 00007f19c694ebe9
[   83.164869][ T6327] RDX: 0000000000000092 RSI: 0000200000000280 RDI: 0000000000000009
[   83.164958][ T6327] RBP: 00007f19c53af090 R08: 0000000000000000 R09: 0000000000000000
[   83.164976][ T6327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.164993][ T6327] R13: 00007f19c6b76038 R14: 00007f19c6b75fa0 R15: 00007ffee2cdddf8
[   83.165020][ T6327]  </TASK>
[   83.166799][ T3383] hid_parser_main: 19 callbacks suppressed
[   83.166820][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.180463][ T6333] syz.4.1018: attempt to access beyond end of device
[   83.180463][ T6333] loop4: rw=2051, sector=104, nr_sectors = 25 limit=128
[   83.185387][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.495867][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.503304][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.510770][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.518198][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.525623][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.533031][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.540530][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.547946][ T3383] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   83.556318][ T3383] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   83.588017][ T6325] loop5: detected capacity change from 0 to 128
[   83.613350][ T6325] EXT4-fs warning (device loop5): ext4_init_metadata_csum:4622: metadata_csum and uninit_bg are redundant flags; please run fsck.
[   83.627435][ T6325] EXT4-fs (loop5): Couldn't mount because of unsupported optional features (fffc1829)
[   83.646667][ T6341] loop1: detected capacity change from 0 to 512
[   83.653706][ T6341] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   83.670313][ T6341] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.1021: iget: bad i_size value: -6917529027641081756
[   83.683863][ T6341] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1021: couldn't read orphan inode 17 (err -117)
[   83.731976][ T6345] __nla_validate_parse: 4 callbacks suppressed
[   83.731997][ T6345] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1023'.
[   83.777738][ T6350] loop3: detected capacity change from 0 to 1024
[   83.909163][ T6359] loop3: detected capacity change from 0 to 8192
[   83.954567][ T6359]  loop3: p1 p2 p4 < >
[   83.958738][ T6359] loop3: partition table partially beyond EOD, truncated
[   83.967358][ T6359] loop3: p1 start 16777216 is beyond EOD, truncated
[   83.974143][ T6359] loop3: p2 size 515840 extends beyond EOD, truncated
[   83.982043][ T6359] loop3: p4 start 16777216 is beyond EOD, truncated
[   84.027788][ T6359] bridge0: entered promiscuous mode
[   84.033935][ T6359] bond0: entered promiscuous mode
[   84.039074][ T6359] bond_slave_0: entered promiscuous mode
[   84.044874][ T6359] bond_slave_1: entered promiscuous mode
[   84.052518][ T6359] hsr1: entered allmulticast mode
[   84.057691][ T6359] bridge0: entered allmulticast mode
[   84.063049][ T6359] bond0: entered allmulticast mode
[   84.068305][ T6359] bond_slave_0: entered allmulticast mode
[   84.074169][ T6359] bond_slave_1: entered allmulticast mode
[   84.085592][ T6365] loop1: detected capacity change from 0 to 2048
[   84.096008][ T6365] EXT4-fs (loop1): failed to initialize system zone (-117)
[   84.103434][ T6365] EXT4-fs (loop1): mount failed
[   84.138298][ T6370] loop3: detected capacity change from 0 to 128
[   84.183353][ T6372] loop5: detected capacity change from 0 to 512
[   84.193459][ T6372] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.217524][ T6372] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1033: iget: bad i_size value: -6917529027641081756
[   84.259659][ T6372] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1033: couldn't read orphan inode 17 (err -117)
[   84.371624][ T6389] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1040'.
[   84.404402][ T6393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1042'.
[   84.530503][ T6402] loop4: detected capacity change from 0 to 512
[   84.537751][ T6402] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.561004][ T6402] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.1046: iget: bad i_size value: -6917529027641081756
[   84.581781][ T6409] loop3: detected capacity change from 0 to 512
[   84.583513][ T6402] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1046: couldn't read orphan inode 17 (err -117)
[   84.600275][ T6409] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.635454][ T6409] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.1048: iget: bad i_size value: -6917529027641081756
[   84.653136][ T6409] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1048: couldn't read orphan inode 17 (err -117)
[   84.694459][ T6418] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1052'.
[   84.755550][ T6426] loop4: detected capacity change from 0 to 1024
[   84.765070][ T6427] loop5: detected capacity change from 0 to 512
[   84.771870][ T6426] EXT4-fs: dax option not supported
[   84.790317][ T6427] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.900047][ T6426] lo speed is unknown, defaulting to 1000
[   84.929188][ T6427] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1055: iget: bad i_size value: -6917529027641081756
[   84.944540][ T6427] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1055: couldn't read orphan inode 17 (err -117)
[   84.952164][ T6426] lo speed is unknown, defaulting to 1000
[   85.127736][ T6446] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1060'.
[   85.159438][ T6451] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1065'.
[   85.196679][ T6454] FAULT_INJECTION: forcing a failure.
[   85.196679][ T6454] name failslab, interval 1, probability 0, space 0, times 0
[   85.209514][ T6454] CPU: 0 UID: 0 PID: 6454 Comm: syz.3.1067 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   85.209549][ T6454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.209561][ T6454] Call Trace:
[   85.209566][ T6454]  <TASK>
[   85.209574][ T6454]  __dump_stack+0x1d/0x30
[   85.209602][ T6454]  dump_stack_lvl+0xe8/0x140
[   85.209670][ T6454]  dump_stack+0x15/0x1b
[   85.209698][ T6454]  should_fail_ex+0x265/0x280
[   85.209719][ T6454]  should_failslab+0x8c/0xb0
[   85.209754][ T6454]  kmem_cache_alloc_noprof+0x50/0x310
[   85.209791][ T6454]  ? skb_clone+0x151/0x1f0
[   85.209821][ T6454]  skb_clone+0x151/0x1f0
[   85.209849][ T6454]  nfnetlink_rcv+0x305/0x1690
[   85.209927][ T6454]  ? nlmon_xmit+0x4f/0x60
[   85.209953][ T6454]  ? consume_skb+0x49/0x150
[   85.209973][ T6454]  ? nlmon_xmit+0x4f/0x60
[   85.210006][ T6454]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   85.210036][ T6454]  ? __dev_queue_xmit+0x1200/0x2000
[   85.210127][ T6454]  ? __dev_queue_xmit+0x182/0x2000
[   85.210157][ T6454]  ? ref_tracker_free+0x37d/0x3e0
[   85.210261][ T6454]  netlink_unicast+0x5bd/0x690
[   85.210304][ T6454]  netlink_sendmsg+0x58b/0x6b0
[   85.210327][ T6454]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.210381][ T6454]  __sock_sendmsg+0x142/0x180
[   85.210409][ T6454]  ____sys_sendmsg+0x31e/0x4e0
[   85.210491][ T6454]  ___sys_sendmsg+0x17b/0x1d0
[   85.210528][ T6454]  __x64_sys_sendmsg+0xd4/0x160
[   85.210562][ T6454]  x64_sys_call+0x191e/0x2ff0
[   85.210590][ T6454]  do_syscall_64+0xd2/0x200
[   85.210647][ T6454]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.210671][ T6454]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.210696][ T6454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.210722][ T6454] RIP: 0033:0x7f19c694ebe9
[   85.210740][ T6454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.210835][ T6454] RSP: 002b:00007f19c53af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   85.210857][ T6454] RAX: ffffffffffffffda RBX: 00007f19c6b75fa0 RCX: 00007f19c694ebe9
[   85.210874][ T6454] RDX: 0000000020008040 RSI: 000020000000c2c0 RDI: 0000000000000003
[   85.210890][ T6454] RBP: 00007f19c53af090 R08: 0000000000000000 R09: 0000000000000000
[   85.210906][ T6454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.210922][ T6454] R13: 00007f19c6b76038 R14: 00007f19c6b75fa0 R15: 00007ffee2cdddf8
[   85.210946][ T6454]  </TASK>
[   85.555088][ T6462] FAULT_INJECTION: forcing a failure.
[   85.555088][ T6462] name failslab, interval 1, probability 0, space 0, times 0
[   85.567895][ T6462] CPU: 1 UID: 0 PID: 6462 Comm: syz.4.1070 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   85.568002][ T6462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   85.568019][ T6462] Call Trace:
[   85.568027][ T6462]  <TASK>
[   85.568037][ T6462]  __dump_stack+0x1d/0x30
[   85.568064][ T6462]  dump_stack_lvl+0xe8/0x140
[   85.568125][ T6462]  dump_stack+0x15/0x1b
[   85.568142][ T6462]  should_fail_ex+0x265/0x280
[   85.568163][ T6462]  should_failslab+0x8c/0xb0
[   85.568193][ T6462]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   85.568368][ T6462]  ? sidtab_sid2str_get+0xa0/0x130
[   85.568435][ T6462]  kmemdup_noprof+0x2b/0x70
[   85.568488][ T6462]  sidtab_sid2str_get+0xa0/0x130
[   85.568517][ T6462]  security_sid_to_context_core+0x1eb/0x2e0
[   85.568605][ T6462]  security_sid_to_context+0x27/0x40
[   85.568626][ T6462]  selinux_lsmprop_to_secctx+0x67/0xf0
[   85.568652][ T6462]  security_lsmprop_to_secctx+0x43/0x80
[   85.568687][ T6462]  audit_log_task_context+0x77/0x190
[   85.568761][ T6462]  audit_log_task+0xf4/0x250
[   85.568797][ T6462]  audit_seccomp+0x61/0x100
[   85.568875][ T6462]  ? __seccomp_filter+0x68c/0x10d0
[   85.568963][ T6462]  __seccomp_filter+0x69d/0x10d0
[   85.568992][ T6462]  ? __pfx_qrtr_tun_read_iter+0x10/0x10
[   85.569056][ T6462]  ? vfs_read+0x4e6/0x770
[   85.569083][ T6462]  ? __pfx_qrtr_tun_read_iter+0x10/0x10
[   85.569128][ T6462]  __secure_computing+0x82/0x150
[   85.569192][ T6462]  syscall_trace_enter+0xcf/0x1e0
[   85.569261][ T6462]  do_syscall_64+0xac/0x200
[   85.569330][ T6462]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   85.569361][ T6462]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   85.569393][ T6462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.569489][ T6462] RIP: 0033:0x7f97cf7cd5fc
[   85.569509][ T6462] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   85.569534][ T6462] RSP: 002b:00007f97ce237030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   85.569637][ T6462] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cd5fc
[   85.569650][ T6462] RDX: 000000000000000f RSI: 00007f97ce2370a0 RDI: 0000000000000006
[   85.569662][ T6462] RBP: 00007f97ce237090 R08: 0000000000000000 R09: 0000000000000000
[   85.569677][ T6462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.569692][ T6462] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   85.569716][ T6462]  </TASK>
[   85.887394][ T6474] lo speed is unknown, defaulting to 1000
[   85.938557][ T6483] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   85.945199][ T6483] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   85.952760][ T6483] vhci_hcd vhci_hcd.0: Device attached
[   85.960606][ T6487] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1080'.
[   86.071095][ T6496] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1083'.
[   86.194383][ T2955] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   86.321903][ T6518] blktrace: Concurrent blktraces are not allowed on sg0
[   86.390012][ T6522] loop4: detected capacity change from 0 to 1024
[   86.400559][ T6522] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   86.411528][ T6522] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   86.424869][ T6522] JBD2: no valid journal superblock found
[   86.430676][ T6522] EXT4-fs (loop4): Could not load journal inode
[   86.460795][ T6528] FAULT_INJECTION: forcing a failure.
[   86.460795][ T6528] name failslab, interval 1, probability 0, space 0, times 0
[   86.473579][ T6528] CPU: 1 UID: 0 PID: 6528 Comm: syz.4.1097 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   86.473676][ T6528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.473692][ T6528] Call Trace:
[   86.473700][ T6528]  <TASK>
[   86.473710][ T6528]  __dump_stack+0x1d/0x30
[   86.473737][ T6528]  dump_stack_lvl+0xe8/0x140
[   86.473762][ T6528]  dump_stack+0x15/0x1b
[   86.473823][ T6528]  should_fail_ex+0x265/0x280
[   86.473842][ T6528]  should_failslab+0x8c/0xb0
[   86.473864][ T6528]  kmem_cache_alloc_noprof+0x50/0x310
[   86.473888][ T6528]  ? ip6mr_mfc_add+0x3bd/0x1910
[   86.473987][ T6528]  ip6mr_mfc_add+0x3bd/0x1910
[   86.474011][ T6528]  ? should_fail_ex+0xdb/0x280
[   86.474031][ T6528]  ip6_mroute_setsockopt+0x7e0/0xa70
[   86.474132][ T6528]  do_ipv6_setsockopt+0x21d/0x2160
[   86.474149][ T6528]  ? _parse_integer+0x27/0x40
[   86.474166][ T6528]  ? kstrtoull+0x111/0x140
[   86.474182][ T6528]  ? __rcu_read_unlock+0x4f/0x70
[   86.474240][ T6528]  ? avc_has_perm_noaudit+0x1b1/0x200
[   86.474263][ T6528]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   86.474363][ T6528]  ipv6_setsockopt+0x59/0x130
[   86.474387][ T6528]  rawv6_setsockopt+0x1d2/0x420
[   86.474413][ T6528]  sock_common_setsockopt+0x69/0x80
[   86.474458][ T6528]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   86.474565][ T6528]  __sys_setsockopt+0x181/0x200
[   86.474591][ T6528]  __x64_sys_setsockopt+0x64/0x80
[   86.474620][ T6528]  x64_sys_call+0x20ec/0x2ff0
[   86.474680][ T6528]  do_syscall_64+0xd2/0x200
[   86.474712][ T6528]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.474806][ T6528]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.474839][ T6528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.474862][ T6528] RIP: 0033:0x7f97cf7cebe9
[   86.474877][ T6528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.474895][ T6528] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   86.475035][ T6528] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   86.475049][ T6528] RDX: 00000000000000cc RSI: 0000000000000029 RDI: 0000000000000003
[   86.475060][ T6528] RBP: 00007f97ce237090 R08: 000000000000005c R09: 0000000000000000
[   86.475072][ T6528] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[   86.475087][ T6528] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   86.475111][ T6528]  </TASK>
[   86.735234][ T6484] vhci_hcd: connection reset by peer
[   86.741080][ T6530] FAULT_INJECTION: forcing a failure.
[   86.741080][ T6530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.744461][ T5913] vhci_hcd: stop threads
[   86.754199][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: syz.4.1098 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   86.754310][ T6530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.754327][ T6530] Call Trace:
[   86.754334][ T6530]  <TASK>
[   86.754342][ T6530]  __dump_stack+0x1d/0x30
[   86.754372][ T6530]  dump_stack_lvl+0xe8/0x140
[   86.754400][ T6530]  dump_stack+0x15/0x1b
[   86.754424][ T6530]  should_fail_ex+0x265/0x280
[   86.754497][ T6530]  should_fail+0xb/0x20
[   86.754523][ T6530]  should_fail_usercopy+0x1a/0x20
[   86.754555][ T6530]  strncpy_from_user+0x25/0x230
[   86.754597][ T6530]  ? kmem_cache_alloc_noprof+0x186/0x310
[   86.754636][ T6530]  ? getname_flags+0x80/0x3b0
[   86.754791][ T6530]  getname_flags+0xae/0x3b0
[   86.754832][ T6530]  user_path_at+0x28/0x130
[   86.754887][ T6530]  __se_sys_mount_setattr+0x136/0x240
[   86.754975][ T6530]  __x64_sys_mount_setattr+0x67/0x80
[   86.755013][ T6530]  x64_sys_call+0x19ab/0x2ff0
[   86.755044][ T6530]  do_syscall_64+0xd2/0x200
[   86.755153][ T6530]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   86.755187][ T6530]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   86.755249][ T6530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.755278][ T6530] RIP: 0033:0x7f97cf7cebe9
[   86.755299][ T6530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.755325][ T6530] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ba
[   86.755352][ T6530] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   86.755437][ T6530] RDX: 0000000000008000 RSI: 0000200000000180 RDI: ffffffffffffff9c
[   86.755455][ T6530] RBP: 00007f97ce237090 R08: 0000000000000020 R09: 0000000000000000
[   86.755473][ T6530] R10: 0000200000001dc0 R11: 0000000000000246 R12: 0000000000000001
[   86.755490][ T6530] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   86.755538][ T6530]  </TASK>
[   86.956106][ T5913] vhci_hcd: release socket
[   86.960576][ T5913] vhci_hcd: disconnect device
[   87.017661][ T6552] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1108'.
[   87.065824][   T29] kauditd_printk_skb: 311 callbacks suppressed
[   87.065841][   T29] audit: type=1400 audit(1755409163.517:2779): avc:  denied  { setopt } for  pid=6549 comm="syz.4.1109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   87.146212][   T29] audit: type=1400 audit(1755409163.597:2780): avc:  denied  { bind } for  pid=6549 comm="syz.4.1109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   87.242235][   T29] audit: type=1400 audit(1755409163.617:2781): avc:  denied  { setattr } for  pid=6549 comm="syz.4.1109" name="XDP" dev="sockfs" ino=16057 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   87.264877][   T29] audit: type=1400 audit(1755409163.687:2782): avc:  denied  { create } for  pid=6560 comm="syz.3.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   87.284459][   T29] audit: type=1400 audit(1755409163.687:2783): avc:  denied  { connect } for  pid=6560 comm="syz.3.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   87.315129][ T6554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.335634][ T6554] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.361634][ T6565] loop3: detected capacity change from 0 to 512
[   87.372399][ T6565] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.388338][ T6568] loop4: detected capacity change from 0 to 512
[   87.396628][ T6568] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.408115][ T6565] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.1112: iget: bad i_size value: -6917529027641081756
[   87.421934][ T6565] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1112: couldn't read orphan inode 17 (err -117)
[   87.458340][ T6568] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.1115: iget: bad i_size value: -6917529027641081756
[   87.475170][ T6568] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1115: couldn't read orphan inode 17 (err -117)
[   87.508789][   T29] audit: type=1326 audit(1755409163.957:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6579 comm="syz.3.1118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   87.532467][   T29] audit: type=1326 audit(1755409163.957:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6579 comm="syz.3.1118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   87.543732][ T6581] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1118'.
[   87.566151][   T29] audit: type=1326 audit(1755409163.977:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6579 comm="syz.3.1118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   87.589581][   T29] audit: type=1326 audit(1755409163.977:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6579 comm="syz.3.1118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   87.613835][   T29] audit: type=1326 audit(1755409163.977:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6579 comm="syz.3.1118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[   87.662325][ T6590] FAULT_INJECTION: forcing a failure.
[   87.662325][ T6590] name failslab, interval 1, probability 0, space 0, times 0
[   87.675105][ T6590] CPU: 0 UID: 0 PID: 6590 Comm: syz.3.1122 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   87.675203][ T6590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   87.675216][ T6590] Call Trace:
[   87.675222][ T6590]  <TASK>
[   87.675229][ T6590]  __dump_stack+0x1d/0x30
[   87.675251][ T6590]  dump_stack_lvl+0xe8/0x140
[   87.675275][ T6590]  dump_stack+0x15/0x1b
[   87.675300][ T6590]  should_fail_ex+0x265/0x280
[   87.675371][ T6590]  should_failslab+0x8c/0xb0
[   87.675472][ T6590]  kmem_cache_alloc_noprof+0x50/0x310
[   87.675502][ T6590]  ? alloc_empty_file+0x76/0x200
[   87.675613][ T6590]  alloc_empty_file+0x76/0x200
[   87.675654][ T6590]  path_openat+0x68/0x2170
[   87.675677][ T6590]  ? mntput+0x4b/0x80
[   87.675721][ T6590]  ? terminate_walk+0x27f/0x2a0
[   87.675829][ T6590]  ? path_openat+0x1bf8/0x2170
[   87.675853][ T6590]  ? _parse_integer_limit+0x170/0x190
[   87.675879][ T6590]  do_filp_open+0x109/0x230
[   87.675906][ T6590]  do_open_execat+0xd8/0x260
[   87.675960][ T6590]  alloc_bprm+0x25/0x350
[   87.675981][ T6590]  do_execveat_common+0x12e/0x750
[   87.676015][ T6590]  __x64_sys_execve+0x5c/0x70
[   87.676055][ T6590]  x64_sys_call+0x2716/0x2ff0
[   87.676151][ T6590]  do_syscall_64+0xd2/0x200
[   87.676230][ T6590]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.676254][ T6590]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   87.676285][ T6590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.676376][ T6590] RIP: 0033:0x7f19c694ebe9
[   87.676393][ T6590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.676444][ T6590] RSP: 002b:00007f19c53af038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   87.676468][ T6590] RAX: ffffffffffffffda RBX: 00007f19c6b75fa0 RCX: 00007f19c694ebe9
[   87.676481][ T6590] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000400
[   87.676526][ T6590] RBP: 00007f19c53af090 R08: 0000000000000000 R09: 0000000000000000
[   87.676541][ T6590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.676556][ T6590] R13: 00007f19c6b76038 R14: 00007f19c6b75fa0 R15: 00007ffee2cdddf8
[   87.676580][ T6590]  </TASK>
[   87.999522][ T6605] FAULT_INJECTION: forcing a failure.
[   87.999522][ T6605] name failslab, interval 1, probability 0, space 0, times 0
[   88.012302][ T6605] CPU: 1 UID: 0 PID: 6605 Comm: syz.1.1129 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   88.012339][ T6605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.012397][ T6605] Call Trace:
[   88.012404][ T6605]  <TASK>
[   88.012412][ T6605]  __dump_stack+0x1d/0x30
[   88.012436][ T6605]  dump_stack_lvl+0xe8/0x140
[   88.012461][ T6605]  dump_stack+0x15/0x1b
[   88.012540][ T6605]  should_fail_ex+0x265/0x280
[   88.012640][ T6605]  should_failslab+0x8c/0xb0
[   88.012672][ T6605]  kmem_cache_alloc_noprof+0x50/0x310
[   88.012705][ T6605]  ? skb_clone+0x151/0x1f0
[   88.012733][ T6605]  skb_clone+0x151/0x1f0
[   88.012783][ T6605]  __netlink_deliver_tap+0x2c9/0x500
[   88.012815][ T6605]  netlink_unicast+0x66b/0x690
[   88.012880][ T6605]  netlink_sendmsg+0x58b/0x6b0
[   88.012910][ T6605]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.012938][ T6605]  __sock_sendmsg+0x142/0x180
[   88.012992][ T6605]  sock_write_iter+0x165/0x1b0
[   88.013031][ T6605]  ? __pfx_sock_write_iter+0x10/0x10
[   88.013109][ T6605]  vfs_write+0x527/0x960
[   88.013145][ T6605]  ksys_write+0xda/0x1a0
[   88.013173][ T6605]  __x64_sys_write+0x40/0x50
[   88.013269][ T6605]  x64_sys_call+0x27fe/0x2ff0
[   88.013293][ T6605]  do_syscall_64+0xd2/0x200
[   88.013322][ T6605]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.013360][ T6605]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   88.013387][ T6605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.013419][ T6605] RIP: 0033:0x7f1ff81debe9
[   88.013436][ T6605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.013457][ T6605] RSP: 002b:00007f1ff6c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   88.013478][ T6605] RAX: ffffffffffffffda RBX: 00007f1ff8405fa0 RCX: 00007f1ff81debe9
[   88.013499][ T6605] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000006
[   88.013513][ T6605] RBP: 00007f1ff6c3f090 R08: 0000000000000000 R09: 0000000000000000
[   88.013549][ T6605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.013565][ T6605] R13: 00007f1ff8406038 R14: 00007f1ff8405fa0 R15: 00007ffcd59e1c48
[   88.013590][ T6605]  </TASK>
[   88.230828][ T6605] bridge_slave_1: left allmulticast mode
[   88.236582][ T6605] bridge_slave_1: left promiscuous mode
[   88.242294][ T6605] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.300746][ T6605] bridge_slave_0: left allmulticast mode
[   88.300831][ T6605] bridge_slave_0: left promiscuous mode
[   88.300966][ T6605] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.347055][ T6611] bridge_slave_1: left allmulticast mode
[   88.352774][ T6611] bridge_slave_1: left promiscuous mode
[   88.358547][ T6611] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.436828][ T6611] bridge_slave_0: left allmulticast mode
[   88.442544][ T6611] bridge_slave_0: left promiscuous mode
[   88.448433][ T6611] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.612645][ T6620] lo speed is unknown, defaulting to 1000
[   88.765607][ T6640] loop5: detected capacity change from 0 to 512
[   88.817493][ T6640] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   88.872610][ T6649] __nla_validate_parse: 2 callbacks suppressed
[   88.872630][ T6649] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1145'.
[   88.920723][ T6649] 9pnet_fd: Insufficient options for proto=fd
[   88.934225][ T6640] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1141: iget: bad i_size value: -6917529027641081756
[   88.982280][ T6640] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1141: couldn't read orphan inode 17 (err -117)
[   89.032408][ T6666] FAULT_INJECTION: forcing a failure.
[   89.032408][ T6666] name failslab, interval 1, probability 0, space 0, times 0
[   89.045108][ T6666] CPU: 1 UID: 0 PID: 6666 Comm: syz.3.1151 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   89.045176][ T6666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.045189][ T6666] Call Trace:
[   89.045195][ T6666]  <TASK>
[   89.045202][ T6666]  __dump_stack+0x1d/0x30
[   89.045228][ T6666]  dump_stack_lvl+0xe8/0x140
[   89.045251][ T6666]  dump_stack+0x15/0x1b
[   89.045272][ T6666]  should_fail_ex+0x265/0x280
[   89.045427][ T6666]  should_failslab+0x8c/0xb0
[   89.045452][ T6666]  kmem_cache_alloc_noprof+0x50/0x310
[   89.045485][ T6666]  ? skb_clone+0x151/0x1f0
[   89.045546][ T6666]  skb_clone+0x151/0x1f0
[   89.045569][ T6666]  __netlink_deliver_tap+0x2c9/0x500
[   89.045599][ T6666]  ? netlink_attachskb+0x2d0/0x610
[   89.045698][ T6666]  netlink_sendskb+0x126/0x150
[   89.045778][ T6666]  netlink_unicast+0x2a2/0x690
[   89.045867][ T6666]  netlink_ack+0x4c8/0x500
[   89.045898][ T6666]  netlink_rcv_skb+0x192/0x220
[   89.045945][ T6666]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   89.045996][ T6666]  nfnetlink_rcv+0x16b/0x1690
[   89.046085][ T6666]  ? nlmon_xmit+0x4f/0x60
[   89.046118][ T6666]  ? consume_skb+0x49/0x150
[   89.046140][ T6666]  ? nlmon_xmit+0x4f/0x60
[   89.046187][ T6666]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   89.046219][ T6666]  ? __dev_queue_xmit+0x1200/0x2000
[   89.046277][ T6666]  ? __dev_queue_xmit+0x182/0x2000
[   89.046306][ T6666]  ? ref_tracker_free+0x37d/0x3e0
[   89.046339][ T6666]  ? __netlink_deliver_tap+0x4dc/0x500
[   89.046364][ T6666]  netlink_unicast+0x5bd/0x690
[   89.046533][ T6666]  netlink_sendmsg+0x58b/0x6b0
[   89.046563][ T6666]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.046591][ T6666]  __sock_sendmsg+0x142/0x180
[   89.046628][ T6666]  ____sys_sendmsg+0x31e/0x4e0
[   89.046662][ T6666]  ___sys_sendmsg+0x17b/0x1d0
[   89.046819][ T6666]  __x64_sys_sendmsg+0xd4/0x160
[   89.046853][ T6666]  x64_sys_call+0x191e/0x2ff0
[   89.046879][ T6666]  do_syscall_64+0xd2/0x200
[   89.046944][ T6666]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.046976][ T6666]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.047009][ T6666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.047031][ T6666] RIP: 0033:0x7f19c694ebe9
[   89.047049][ T6666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.047072][ T6666] RSP: 002b:00007f19c53af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.047169][ T6666] RAX: ffffffffffffffda RBX: 00007f19c6b75fa0 RCX: 00007f19c694ebe9
[   89.047183][ T6666] RDX: 0000000004000000 RSI: 0000200000000600 RDI: 0000000000000003
[   89.047196][ T6666] RBP: 00007f19c53af090 R08: 0000000000000000 R09: 0000000000000000
[   89.047208][ T6666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.047238][ T6666] R13: 00007f19c6b76038 R14: 00007f19c6b75fa0 R15: 00007ffee2cdddf8
[   89.047305][ T6666]  </TASK>
[   89.413358][ T6684] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   89.429955][ T6675] netlink: 820 bytes leftover after parsing attributes in process `syz.0.1156'.
[   89.440047][ T6675] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.447535][ T6675] batman_adv: batadv0: Removing interface: batadv_slave_0
[   89.463692][ T6675] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.471198][ T6675] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.480116][ T6673] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.1154'.
[   89.489381][ T6673] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1154'.
[   89.537972][ T6690] FAULT_INJECTION: forcing a failure.
[   89.537972][ T6690] name failslab, interval 1, probability 0, space 0, times 0
[   89.550730][ T6690] CPU: 0 UID: 0 PID: 6690 Comm: syz.1.1160 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   89.550767][ T6690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.550780][ T6690] Call Trace:
[   89.550786][ T6690]  <TASK>
[   89.550857][ T6690]  __dump_stack+0x1d/0x30
[   89.550883][ T6690]  dump_stack_lvl+0xe8/0x140
[   89.550905][ T6690]  dump_stack+0x15/0x1b
[   89.550970][ T6690]  should_fail_ex+0x265/0x280
[   89.550997][ T6690]  should_failslab+0x8c/0xb0
[   89.551028][ T6690]  kmem_cache_alloc_noprof+0x50/0x310
[   89.551058][ T6690]  ? skb_clone+0x151/0x1f0
[   89.551082][ T6690]  skb_clone+0x151/0x1f0
[   89.551195][ T6690]  nfnetlink_rcv+0x305/0x1690
[   89.551236][ T6690]  ? nlmon_xmit+0x4f/0x60
[   89.551267][ T6690]  ? consume_skb+0x49/0x150
[   89.551290][ T6690]  ? nlmon_xmit+0x4f/0x60
[   89.551331][ T6690]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   89.551362][ T6690]  ? __dev_queue_xmit+0x1200/0x2000
[   89.551426][ T6690]  ? __dev_queue_xmit+0x182/0x2000
[   89.551456][ T6690]  ? ref_tracker_free+0x37d/0x3e0
[   89.551499][ T6690]  netlink_unicast+0x5bd/0x690
[   89.551544][ T6690]  netlink_sendmsg+0x58b/0x6b0
[   89.551606][ T6690]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.551628][ T6690]  __sock_sendmsg+0x142/0x180
[   89.551659][ T6690]  ____sys_sendmsg+0x31e/0x4e0
[   89.551684][ T6690]  ___sys_sendmsg+0x17b/0x1d0
[   89.551787][ T6690]  __x64_sys_sendmsg+0xd4/0x160
[   89.551814][ T6690]  x64_sys_call+0x191e/0x2ff0
[   89.551841][ T6690]  do_syscall_64+0xd2/0x200
[   89.551922][ T6690]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.551953][ T6690]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.552014][ T6690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.552042][ T6690] RIP: 0033:0x7f1ff81debe9
[   89.552060][ T6690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.552123][ T6690] RSP: 002b:00007f1ff6c3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.552164][ T6690] RAX: ffffffffffffffda RBX: 00007f1ff8405fa0 RCX: 00007f1ff81debe9
[   89.552180][ T6690] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   89.552220][ T6690] RBP: 00007f1ff6c3f090 R08: 0000000000000000 R09: 0000000000000000
[   89.552237][ T6690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.552252][ T6690] R13: 00007f1ff8406038 R14: 00007f1ff8405fa0 R15: 00007ffcd59e1c48
[   89.552278][ T6690]  </TASK>
[   89.800605][ T6694] loop5: detected capacity change from 0 to 512
[   89.809441][ T6694] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   89.838103][ T6694] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1162: iget: bad i_size value: -6917529027641081756
[   89.873358][ T6700] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1164'.
[   89.923132][ T6704] syz_tun: entered allmulticast mode
[   89.941847][ T6694] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1162: couldn't read orphan inode 17 (err -117)
[   89.968795][ T6708] FAULT_INJECTION: forcing a failure.
[   89.968795][ T6708] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.981948][ T6708] CPU: 0 UID: 0 PID: 6708 Comm: syz.1.1167 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   89.982053][ T6708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.982069][ T6708] Call Trace:
[   89.982078][ T6708]  <TASK>
[   89.982088][ T6708]  __dump_stack+0x1d/0x30
[   89.982116][ T6708]  dump_stack_lvl+0xe8/0x140
[   89.982140][ T6708]  dump_stack+0x15/0x1b
[   89.982162][ T6708]  should_fail_ex+0x265/0x280
[   89.982220][ T6708]  should_fail+0xb/0x20
[   89.982243][ T6708]  should_fail_usercopy+0x1a/0x20
[   89.982271][ T6708]  _copy_from_user+0x1c/0xb0
[   89.982307][ T6708]  kstrtouint_from_user+0x69/0xf0
[   89.982419][ T6708]  ? 0xffffffff81000000
[   89.982433][ T6708]  ? selinux_file_permission+0x1e4/0x320
[   89.982456][ T6708]  proc_fail_nth_write+0x50/0x160
[   89.982483][ T6708]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   89.982559][ T6708]  vfs_write+0x266/0x960
[   89.982580][ T6708]  ? vfs_read+0x4e6/0x770
[   89.982643][ T6708]  ? __rcu_read_unlock+0x4f/0x70
[   89.982710][ T6708]  ? __fget_files+0x184/0x1c0
[   89.982745][ T6708]  ksys_write+0xda/0x1a0
[   89.982772][ T6708]  __x64_sys_write+0x40/0x50
[   89.982835][ T6708]  x64_sys_call+0x27fe/0x2ff0
[   89.982885][ T6708]  do_syscall_64+0xd2/0x200
[   89.982914][ T6708]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.982937][ T6708]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.982966][ T6708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.983028][ T6708] RIP: 0033:0x7f1ff81dd69f
[   89.983125][ T6708] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   89.983224][ T6708] RSP: 002b:00007f1ff6c3f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   89.983298][ T6708] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ff81dd69f
[   89.983316][ T6708] RDX: 0000000000000001 RSI: 00007f1ff6c3f0a0 RDI: 0000000000000004
[   89.983339][ T6708] RBP: 00007f1ff6c3f090 R08: 0000000000000000 R09: 0000000000000000
[   89.983352][ T6708] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   89.983364][ T6708] R13: 00007f1ff8406038 R14: 00007f1ff8405fa0 R15: 00007ffcd59e1c48
[   89.983449][ T6708]  </TASK>
[   90.328720][ T6725] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1175'.
[   90.393876][ T6729] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1177'.
[   90.423282][ T6731] loop4: detected capacity change from 0 to 512
[   90.464181][ T6732] loop5: detected capacity change from 0 to 512
[   90.471171][ T6732] EXT4-fs: Ignoring removed mblk_io_submit option
[   90.479005][ T6732] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   90.554830][ T6732] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   90.562953][ T6732] EXT4-fs (loop5): orphan cleanup on readonly fs
[   90.570875][ T6732] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1171: Invalid block bitmap block 0 in block_group 0
[   90.585809][ T6732] EXT4-fs (loop5): Remounting filesystem read-only
[   90.592677][ T6732] EXT4-fs (loop5): 1 orphan inode deleted
[   90.617718][ T6732] lo speed is unknown, defaulting to 1000
[   90.684956][ T6731] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.888505][ T6749] usb usb3: usbfs: process 6749 (syz.3.1184) did not claim interface 0 before use
[   90.926786][ T6756] wireguard0: entered promiscuous mode
[   90.932590][ T6756] wireguard0: entered allmulticast mode
[   90.944358][ T6759] loop3: detected capacity change from 0 to 512
[   90.956007][ T6759] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.962776][ T6759] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.970999][ T6759] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   90.986261][ T6759] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   90.996147][ T6759] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[   91.006917][ T6759] EXT4-fs (loop3): 1 truncate cleaned up
[   91.018137][ T6765] SELinux: failed to load policy
[   91.032872][ T6759] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   91.071023][ T6767] sctp: [Deprecated]: syz.0.1190 (pid 6767) Use of struct sctp_assoc_value in delayed_ack socket option.
[   91.071023][ T6767] Use struct sctp_sack_info instead
[   91.247904][ T2955] usb 7-1: enqueue for inactive port 0
[   91.261975][ T2955] usb 7-1: enqueue for inactive port 0
[   91.310301][ T6780] loop5: detected capacity change from 0 to 1024
[   91.385141][ T2955] vhci_hcd: vhci_device speed not set
[   91.687944][ T6793] loop5: detected capacity change from 0 to 512
[   91.697441][ T6793] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.785849][ T6793] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1198: iget: bad i_size value: -6917529027641081756
[   91.819300][ T6793] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1198: couldn't read orphan inode 17 (err -117)
[   91.853421][ T6802] loop4: detected capacity change from 0 to 512
[   91.876539][ T6804] loop3: detected capacity change from 0 to 2048
[   91.883467][ T6802] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.915391][ T6802] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.1201: iget: bad i_size value: -6917529027641081756
[   91.952439][ T6802] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1201: couldn't read orphan inode 17 (err -117)
[   92.001260][ T6819] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1209'.
[   92.068016][ T6804]  loop3: unable to read partition table
[   92.073711][ T6804] loop3: partition table beyond EOD, truncated
[   92.079968][ T6804] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
[   92.100390][ T6826] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1211'.
[   92.174327][   T29] kauditd_printk_skb: 238 callbacks suppressed
[   92.174346][   T29] audit: type=1326 audit(1755409168.617:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.204201][   T29] audit: type=1326 audit(1755409168.617:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.228322][   T29] audit: type=1326 audit(1755409168.617:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.251833][   T29] audit: type=1326 audit(1755409168.617:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.275292][   T29] audit: type=1326 audit(1755409168.617:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.298777][   T29] audit: type=1326 audit(1755409168.617:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.322260][   T29] audit: type=1326 audit(1755409168.617:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.345756][   T29] audit: type=1326 audit(1755409168.617:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.369233][   T29] audit: type=1326 audit(1755409168.617:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.392692][   T29] audit: type=1326 audit(1755409168.617:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.5.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ca3a5ebe9 code=0x7ffc0000
[   92.857157][ T6848] loop3: detected capacity change from 0 to 512
[   92.865769][ T6848] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.887164][ T6848] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.1219: iget: bad i_size value: -6917529027641081756
[   92.918339][ T6848] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1219: couldn't read orphan inode 17 (err -117)
[   93.087161][ T6871] random: crng reseeded on system resumption
[   93.230055][ T6896] loop1: detected capacity change from 0 to 512
[   93.763423][ T6939] loop1: detected capacity change from 0 to 128
[   93.782367][ T6939] ext4 filesystem being mounted at /258/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   93.849495][ T6939] lo speed is unknown, defaulting to 1000
[   93.993747][ T6949] loop5: detected capacity change from 0 to 512
[   94.002410][ T6949] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.048350][ T6943] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[   94.070785][ T6949] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1261: iget: bad i_size value: -6917529027641081756
[   94.109885][ T6949] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1261: couldn't read orphan inode 17 (err -117)
[   94.242207][ T6971] FAULT_INJECTION: forcing a failure.
[   94.242207][ T6971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.255556][ T6971] CPU: 0 UID: 0 PID: 6971 Comm: syz.3.1269 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   94.255595][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   94.255609][ T6971] Call Trace:
[   94.255615][ T6971]  <TASK>
[   94.255623][ T6971]  __dump_stack+0x1d/0x30
[   94.255680][ T6971]  dump_stack_lvl+0xe8/0x140
[   94.255701][ T6971]  dump_stack+0x15/0x1b
[   94.255717][ T6971]  should_fail_ex+0x265/0x280
[   94.255737][ T6971]  should_fail+0xb/0x20
[   94.255784][ T6971]  should_fail_usercopy+0x1a/0x20
[   94.255814][ T6971]  _copy_from_user+0x1c/0xb0
[   94.255846][ T6971]  io_submit_one+0x52/0x11d0
[   94.255962][ T6971]  __se_sys_io_submit+0xfb/0x280
[   94.255998][ T6971]  __x64_sys_io_submit+0x43/0x50
[   94.256076][ T6971]  x64_sys_call+0x2d5d/0x2ff0
[   94.256104][ T6971]  do_syscall_64+0xd2/0x200
[   94.256179][ T6971]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.256237][ T6971]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   94.256264][ T6971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.256292][ T6971] RIP: 0033:0x7f19c694ebe9
[   94.256312][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.256336][ T6971] RSP: 002b:00007f19c53af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   94.256408][ T6971] RAX: ffffffffffffffda RBX: 00007f19c6b75fa0 RCX: 00007f19c694ebe9
[   94.256425][ T6971] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 00007f19c76b3000
[   94.256439][ T6971] RBP: 00007f19c53af090 R08: 0000000000000000 R09: 0000000000000000
[   94.256452][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.256468][ T6971] R13: 00007f19c6b76038 R14: 00007f19c6b75fa0 R15: 00007ffee2cdddf8
[   94.256493][ T6971]  </TASK>
[   94.580743][ T6985] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1274'.
[   94.609780][ T6981] loop7: detected capacity change from 0 to 16384
[   95.148740][ T7011] FAULT_INJECTION: forcing a failure.
[   95.148740][ T7011] name failslab, interval 1, probability 0, space 0, times 0
[   95.162118][ T7011] CPU: 1 UID: 0 PID: 7011 Comm: syz.5.1284 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   95.162228][ T7011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   95.162281][ T7011] Call Trace:
[   95.162289][ T7011]  <TASK>
[   95.162297][ T7011]  __dump_stack+0x1d/0x30
[   95.162323][ T7011]  dump_stack_lvl+0xe8/0x140
[   95.162382][ T7011]  dump_stack+0x15/0x1b
[   95.162401][ T7011]  should_fail_ex+0x265/0x280
[   95.162425][ T7011]  ? assoc_array_insert+0x2e0/0x1990
[   95.162454][ T7011]  should_failslab+0x8c/0xb0
[   95.162517][ T7011]  __kmalloc_cache_noprof+0x4c/0x320
[   95.162555][ T7011]  assoc_array_insert+0x2e0/0x1990
[   95.162619][ T7011]  ? keyring_compare_object+0xda/0x100
[   95.162644][ T7011]  ? assoc_array_delete+0x6e2/0x950
[   95.162677][ T7011]  __key_link_begin+0x8a/0x140
[   95.162761][ T7011]  key_move+0x160/0x550
[   95.162783][ T7011]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[   95.162816][ T7011]  ? __pfx_keyring_search_iterator+0x10/0x10
[   95.162858][ T7011]  keyctl_keyring_move+0xd6/0x110
[   95.162914][ T7011]  __se_sys_keyctl+0x5f7/0xb80
[   95.162941][ T7011]  ? __rcu_read_unlock+0x4f/0x70
[   95.162965][ T7011]  ? __fget_files+0x184/0x1c0
[   95.162994][ T7011]  ? fput+0x8f/0xc0
[   95.163038][ T7011]  __x64_sys_keyctl+0x67/0x80
[   95.163113][ T7011]  x64_sys_call+0x2f6d/0x2ff0
[   95.163239][ T7011]  do_syscall_64+0xd2/0x200
[   95.163286][ T7011]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   95.163313][ T7011]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   95.163355][ T7011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.163379][ T7011] RIP: 0033:0x7f9ca3a5ebe9
[   95.163396][ T7011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.163488][ T7011] RSP: 002b:00007f9ca24bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   95.163510][ T7011] RAX: ffffffffffffffda RBX: 00007f9ca3c85fa0 RCX: 00007f9ca3a5ebe9
[   95.163525][ T7011] RDX: ffffffffffffffff RSI: 000000003f822425 RDI: 000000000000001e
[   95.163563][ T7011] RBP: 00007f9ca24bf090 R08: 0000000000000000 R09: 0000000000000000
[   95.163578][ T7011] R10: 000000000d78f204 R11: 0000000000000246 R12: 0000000000000001
[   95.163592][ T7011] R13: 00007f9ca3c86038 R14: 00007f9ca3c85fa0 R15: 00007ffd870296e8
[   95.163620][ T7011]  </TASK>
[   95.501663][ T7018] loop5: detected capacity change from 0 to 512
[   95.555025][ T7018] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.670713][ T7018] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #17: comm syz.5.1287: iget: bad i_size value: -6917529027641081756
[   95.726597][ T7018] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1287: couldn't read orphan inode 17 (err -117)
[   96.065941][ T7038] loop5: detected capacity change from 0 to 2048
[   96.119956][ T7038]  loop5: unable to read partition table
[   96.129346][ T7038] loop5: partition table beyond EOD, truncated
[   96.135608][ T7038] loop_reread_partitions: partition scan of loop5 () failed (rc=-5)
[   96.220961][ T7014] syz.0.1285 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   96.235164][ T7014] CPU: 0 UID: 0 PID: 7014 Comm: syz.0.1285 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   96.235306][ T7014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.235323][ T7014] Call Trace:
[   96.235331][ T7014]  <TASK>
[   96.235341][ T7014]  __dump_stack+0x1d/0x30
[   96.235369][ T7014]  dump_stack_lvl+0xe8/0x140
[   96.235425][ T7014]  dump_stack+0x15/0x1b
[   96.235443][ T7014]  dump_header+0x81/0x220
[   96.235484][ T7014]  oom_kill_process+0x342/0x400
[   96.235594][ T7014]  out_of_memory+0x979/0xb80
[   96.235711][ T7014]  try_charge_memcg+0x5e6/0x9e0
[   96.235751][ T7014]  obj_cgroup_charge_pages+0xa6/0x150
[   96.235855][ T7014]  __memcg_kmem_charge_page+0x9f/0x170
[   96.235900][ T7014]  __alloc_frozen_pages_noprof+0x188/0x360
[   96.236028][ T7014]  alloc_pages_mpol+0xb3/0x250
[   96.236090][ T7014]  alloc_pages_noprof+0x90/0x130
[   96.236156][ T7014]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   96.236209][ T7014]  __kvmalloc_node_noprof+0x30f/0x4e0
[   96.236256][ T7014]  ? nf_tables_newset+0xdde/0x14e0
[   96.236319][ T7014]  ? nf_tables_newset+0xdde/0x14e0
[   96.236382][ T7014]  nf_tables_newset+0xdde/0x14e0
[   96.236414][ T7014]  nfnetlink_rcv+0xb96/0x1690
[   96.236488][ T7014]  netlink_unicast+0x5bd/0x690
[   96.236550][ T7014]  netlink_sendmsg+0x58b/0x6b0
[   96.236588][ T7014]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.236617][ T7014]  __sock_sendmsg+0x142/0x180
[   96.236657][ T7014]  ____sys_sendmsg+0x31e/0x4e0
[   96.236682][ T7014]  ___sys_sendmsg+0x17b/0x1d0
[   96.236726][ T7014]  __x64_sys_sendmsg+0xd4/0x160
[   96.236847][ T7014]  x64_sys_call+0x191e/0x2ff0
[   96.236875][ T7014]  do_syscall_64+0xd2/0x200
[   96.236903][ T7014]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   96.236928][ T7014]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   96.236978][ T7014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.237006][ T7014] RIP: 0033:0x7f3847eeebe9
[   96.237026][ T7014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.237050][ T7014] RSP: 002b:00007f3846957038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.237071][ T7014] RAX: ffffffffffffffda RBX: 00007f3848115fa0 RCX: 00007f3847eeebe9
[   96.237110][ T7014] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   96.237123][ T7014] RBP: 00007f3847f71e19 R08: 0000000000000000 R09: 0000000000000000
[   96.237138][ T7014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.237169][ T7014] R13: 00007f3848116038 R14: 00007f3848115fa0 R15: 00007ffedb440048
[   96.237194][ T7014]  </TASK>
[   96.237202][ T7014] memory: usage 307200kB, limit 307200kB, failcnt 347
[   96.386604][ T7045] loop5: detected capacity change from 0 to 512
[   96.389960][ T7014] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[   96.481521][ T7045] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.489565][ T7014] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   96.489631][ T7014] Memory cgroup stats for /syz0:
[   96.490599][ T7014] cache 4096
[   96.540452][ T7014] rss 4096
[   96.540801][ T7044] FAULT_INJECTION: forcing a failure.
[   96.540801][ T7044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.543478][ T7014] shmem 0
[   96.557447][ T7044] CPU: 1 UID: 0 PID: 7044 Comm: syz.4.1297 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   96.557619][ T7044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.557637][ T7044] Call Trace:
[   96.557647][ T7044]  <TASK>
[   96.557660][ T7044]  __dump_stack+0x1d/0x30
[   96.557696][ T7044]  dump_stack_lvl+0xe8/0x140
[   96.557724][ T7044]  dump_stack+0x15/0x1b
[   96.557748][ T7044]  should_fail_ex+0x265/0x280
[   96.557850][ T7044]  should_fail+0xb/0x20
[   96.557953][ T7044]  should_fail_usercopy+0x1a/0x20
[   96.557986][ T7044]  _copy_from_user+0x1c/0xb0
[   96.558026][ T7044]  vt_ioctl+0x98f/0x1880
[   96.558073][ T7044]  tty_ioctl+0x7de/0xb80
[   96.558120][ T7044]  ? __pfx_tty_ioctl+0x10/0x10
[   96.558207][ T7044]  __se_sys_ioctl+0xcb/0x140
[   96.558271][ T7044]  __x64_sys_ioctl+0x43/0x50
[   96.558323][ T7044]  x64_sys_call+0x1816/0x2ff0
[   96.558355][ T7044]  do_syscall_64+0xd2/0x200
[   96.558394][ T7044]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   96.558488][ T7044]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   96.558525][ T7044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.558610][ T7044] RIP: 0033:0x7f97cf7cebe9
[   96.558702][ T7044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.558728][ T7044] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   96.558755][ T7044] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   96.558773][ T7044] RDX: 0000200000000080 RSI: 0000000000004b72 RDI: 0000000000000006
[   96.558791][ T7044] RBP: 00007f97ce237090 R08: 0000000000000000 R09: 0000000000000000
[   96.558809][ T7044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.558825][ T7044] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   96.558853][ T7044]  </TASK>
[   96.633576][ T7054] loop1: detected capacity change from 0 to 512
[   96.638034][ T7014] mapped_file 4096
[   96.647077][ T7054] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.647338][ T7014] dirty 0
[   96.708883][ T7042] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1296'.
[   96.710287][ T7014] writeback 0
[   96.744395][ T7054] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #17: comm syz.1.1301: iget: bad i_size value: -6917529027641081756
[   96.745381][ T7014] workingset_refault_anon 84
[   96.751924][ T7054] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1301: couldn't read orphan inode 17 (err -117)
[   96.755341][ T7014] workingset_refault_file 532
[   96.755356][ T7014] swap 192512
[   96.755365][ T7014] swapcached 8192
[   96.755440][ T7014] pgpgin 110325
[   96.755448][ T7014] pgpgout 110322
[   96.755457][ T7014] pgfault 98671
[   96.755466][ T7014] pgmajfault 51
[   96.755476][ T7014] inactive_anon 0
[   96.755485][ T7014] active_anon 8192
[   96.755494][ T7014] inactive_file 0
[   96.755501][ T7014] active_file 4096
[   96.755534][ T7014] unevictable 0
[   96.755605][ T7014] hierarchical_memory_limit 314572800
[   96.755617][ T7014] hierarchical_memsw_limit 9223372036854771712
[   96.755629][ T7014] total_cache 4096
[   96.755639][ T7014] total_rss 4096
[   96.755649][ T7014] total_shmem 0
[   96.755667][ T7014] total_mapped_file 4096
[   96.755727][ T7014] total_dirty 0
[   96.755737][ T7014] total_writeback 0
[   96.755748][ T7014] total_workingset_refault_anon 84
[   96.755759][ T7014] total_workingset_refault_file 532
[   96.755771][ T7014] total_swap 192512
[   96.755781][ T7014] total_swapcached 8192
[   96.755792][ T7014] total_pgpgin 110325
[   96.755800][ T7014] total_pgpgout 110322
[   96.755833][ T7014] total_pgfault 98671
[   96.755841][ T7014] total_pgmajfault 51
[   96.755851][ T7014] total_inactive_anon 0
[   96.755939][ T7014] total_active_anon 8192
[   96.755947][ T7014] total_inactive_file 0
[   96.756009][ T7014] total_active_file 4096
[   96.756019][ T7014] total_unevictable 0
[   96.756028][ T7014] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1285,pid=7013,uid=0
[   96.756189][ T7014] Memory cgroup out of memory: Killed process 7013 (syz.0.1285) total-vm:95680kB, anon-rss:1072kB, file-rss:22320kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   97.041630][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1305'.
[   97.066311][ T7064] loop4: detected capacity change from 0 to 256
[   97.074385][ T7064] SELinux:  policydb version 2020175123 does not match my version range 15-35
[   97.083758][ T7064] SELinux: failed to load policy
[   97.122731][ T7066] loop1: detected capacity change from 0 to 2048
[   97.191084][ T7066]  loop1: unable to read partition table
[   97.197718][ T7066] loop1: partition table beyond EOD, truncated
[   97.201702][ T7072] netlink: 'syz.5.1303': attribute type 10 has an invalid length.
[   97.203957][ T7066] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[   97.231197][ T7072] netlink: 'syz.5.1303': attribute type 10 has an invalid length.
[   97.272119][ T7072] team0: Port device dummy0 removed
[   97.319674][ T7072] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   97.343718][ T7081] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1311'.
[   97.373651][ T7083] loop3: detected capacity change from 0 to 512
[   97.403358][ T7083] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.471056][ T7083] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #17: comm syz.3.1312: iget: bad i_size value: -6917529027641081756
[   97.523482][ T7090] loop1: detected capacity change from 0 to 736
[   97.535003][ T7083] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1312: couldn't read orphan inode 17 (err -117)
[   97.556384][   T29] kauditd_printk_skb: 184 callbacks suppressed
[   97.556420][   T29] audit: type=1400 audit(1755409174.007:3218): avc:  denied  { mount } for  pid=7089 comm="syz.1.1314" name="/" dev="loop1" ino=1472 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   97.643915][   T29] audit: type=1400 audit(1755409174.057:3219): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   97.753825][ T7105] loop3: detected capacity change from 0 to 2048
[   97.768198][   T29] audit: type=1326 audit(1755409174.207:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.791853][   T29] audit: type=1326 audit(1755409174.207:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.815499][   T29] audit: type=1326 audit(1755409174.217:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.839043][   T29] audit: type=1326 audit(1755409174.217:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.862620][   T29] audit: type=1326 audit(1755409174.217:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.886126][   T29] audit: type=1326 audit(1755409174.217:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.909589][   T29] audit: type=1326 audit(1755409174.217:3226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   97.933149][   T29] audit: type=1326 audit(1755409174.217:3227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7106 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3847eeebe9 code=0x7ffc0000
[   98.042127][ T7105]  loop3: unable to read partition table
[   98.058168][ T7105] loop3: partition table beyond EOD, truncated
[   98.064635][ T7105] loop_reread_partitions: partition scan of loop3 () failed (rc=-5)
[   98.283271][ T7131] FAULT_INJECTION: forcing a failure.
[   98.283271][ T7131] name failslab, interval 1, probability 0, space 0, times 0
[   98.296726][ T7131] CPU: 0 UID: 0 PID: 7131 Comm: syz.4.1333 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   98.296765][ T7131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.296781][ T7131] Call Trace:
[   98.296857][ T7131]  <TASK>
[   98.296866][ T7131]  __dump_stack+0x1d/0x30
[   98.296894][ T7131]  dump_stack_lvl+0xe8/0x140
[   98.296918][ T7131]  dump_stack+0x15/0x1b
[   98.296940][ T7131]  should_fail_ex+0x265/0x280
[   98.296962][ T7131]  should_failslab+0x8c/0xb0
[   98.296989][ T7131]  kmem_cache_alloc_noprof+0x50/0x310
[   98.297073][ T7131]  ? alloc_empty_file+0x76/0x200
[   98.297113][ T7131]  alloc_empty_file+0x76/0x200
[   98.297189][ T7131]  alloc_file_pseudo+0xc6/0x160
[   98.297226][ T7131]  sock_alloc_file+0x9c/0x1e0
[   98.297263][ T7131]  do_accept+0x1e4/0x3a0
[   98.297306][ T7131]  __sys_accept4+0xbf/0x140
[   98.297362][ T7131]  __x64_sys_accept+0x42/0x50
[   98.297438][ T7131]  x64_sys_call+0x212c/0x2ff0
[   98.297460][ T7131]  do_syscall_64+0xd2/0x200
[   98.297486][ T7131]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.297510][ T7131]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.297601][ T7131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.297636][ T7131] RIP: 0033:0x7f97cf7cebe9
[   98.297653][ T7131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.297673][ T7131] RSP: 002b:00007f97ce237038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[   98.297732][ T7131] RAX: ffffffffffffffda RBX: 00007f97cf9f5fa0 RCX: 00007f97cf7cebe9
[   98.297749][ T7131] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   98.297765][ T7131] RBP: 00007f97ce237090 R08: 0000000000000000 R09: 0000000000000000
[   98.297777][ T7131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.297788][ T7131] R13: 00007f97cf9f6038 R14: 00007f97cf9f5fa0 R15: 00007ffe08d716f8
[   98.297807][ T7131]  </TASK>
[   98.501782][ T7136] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   98.594949][ T7125] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1330'.
[   98.603851][ T7125] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1330'.
[   98.623965][ T7125] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1330'.
[   98.632908][ T7125] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1330'.
[   98.642003][ T5914] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   98.664155][ T5914] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   98.684089][ T5914] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   98.725132][ T7136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1334'.
[   98.734135][ T7136] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1334'.
[   98.743173][ T7136] netlink: 'syz.0.1334': attribute type 18 has an invalid length.
[   98.770153][ T5914] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   98.815053][ T7149] loop4: detected capacity change from 0 to 2048
[   98.844253][ T3429] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   98.852686][ T7136] netlink: 'syz.0.1334': attribute type 18 has an invalid length.
[   98.862959][ T3429] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   98.876579][ T3429] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   98.896564][ T3429] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   98.917162][ T7149]  loop4: unable to read partition table
[   98.933992][ T7149] loop4: partition table beyond EOD, truncated
[   98.940305][ T7149] loop_reread_partitions: partition scan of loop4 () failed (rc=-5)
[   98.966309][ T7102] syz.1.1318 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   98.980622][ T7102] CPU: 0 UID: 0 PID: 7102 Comm: syz.1.1318 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[   98.980718][ T7102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.980731][ T7102] Call Trace:
[   98.980739][ T7102]  <TASK>
[   98.980746][ T7102]  __dump_stack+0x1d/0x30
[   98.980768][ T7102]  dump_stack_lvl+0xe8/0x140
[   98.980791][ T7102]  dump_stack+0x15/0x1b
[   98.980809][ T7102]  dump_header+0x81/0x220
[   98.980877][ T7102]  oom_kill_process+0x342/0x400
[   98.980922][ T7102]  out_of_memory+0x979/0xb80
[   98.980978][ T7102]  try_charge_memcg+0x5e6/0x9e0
[   98.981017][ T7102]  obj_cgroup_charge_pages+0xa6/0x150
[   98.981053][ T7102]  __memcg_kmem_charge_page+0x9f/0x170
[   98.981174][ T7102]  __alloc_frozen_pages_noprof+0x188/0x360
[   98.981215][ T7102]  alloc_pages_mpol+0xb3/0x250
[   98.981258][ T7102]  alloc_pages_noprof+0x90/0x130
[   98.981363][ T7102]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   98.981414][ T7102]  __kvmalloc_node_noprof+0x30f/0x4e0
[   98.981452][ T7102]  ? nf_tables_newset+0xdde/0x14e0
[   98.981479][ T7102]  ? nf_tables_newset+0xdde/0x14e0
[   98.981574][ T7102]  nf_tables_newset+0xdde/0x14e0
[   98.981613][ T7102]  nfnetlink_rcv+0xb96/0x1690
[   98.981676][ T7102]  netlink_unicast+0x5bd/0x690
[   98.981790][ T7102]  netlink_sendmsg+0x58b/0x6b0
[   98.981862][ T7102]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.981884][ T7102]  __sock_sendmsg+0x142/0x180
[   98.981916][ T7102]  ____sys_sendmsg+0x31e/0x4e0
[   98.981948][ T7102]  ___sys_sendmsg+0x17b/0x1d0
[   98.981992][ T7102]  __x64_sys_sendmsg+0xd4/0x160
[   98.982039][ T7102]  x64_sys_call+0x191e/0x2ff0
[   98.982061][ T7102]  do_syscall_64+0xd2/0x200
[   98.982095][ T7102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   98.982181][ T7102]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   98.982216][ T7102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.982245][ T7102] RIP: 0033:0x7f1ff81debe9
[   98.982260][ T7102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.982279][ T7102] RSP: 002b:00007f1ff6c3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.982301][ T7102] RAX: ffffffffffffffda RBX: 00007f1ff8405fa0 RCX: 00007f1ff81debe9
[   98.982350][ T7102] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   98.982366][ T7102] RBP: 00007f1ff8261e19 R08: 0000000000000000 R09: 0000000000000000
[   98.982382][ T7102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.982399][ T7102] R13: 00007f1ff8406038 R14: 00007f1ff8405fa0 R15: 00007ffcd59e1c48
[   98.982447][ T7102]  </TASK>
[   98.982456][ T7102] memory: usage 307200kB, limit 307200kB, failcnt 263
[   99.244642][ T7102] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0
[   99.252554][ T7102] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[   99.259896][ T7102] Memory cgroup stats for /syz1:
[   99.262212][ T7102] cache 4096
[   99.270531][ T7102] rss 0
[   99.273345][ T7102] shmem 0
[   99.276319][ T7102] mapped_file 0
[   99.279791][ T7102] dirty 0
[   99.282734][ T7102] writeback 0
[   99.286057][ T7102] workingset_refault_anon 63
[   99.290671][ T7102] workingset_refault_file 30
[   99.295413][ T7102] swap 208896
[   99.298746][ T7102] swapcached 4096
[   99.302504][ T7102] pgpgin 96173
[   99.305912][ T7102] pgpgout 96170
[   99.309376][ T7102] pgfault 111846
[   99.312933][ T7102] pgmajfault 53
[   99.316453][ T7102] inactive_anon 4096
[   99.320355][ T7102] active_anon 0
[   99.323835][ T7102] inactive_file 4096
[   99.327864][ T7102] active_file 0
[   99.331418][ T7102] unevictable 0
[   99.334906][ T7102] hierarchical_memory_limit 314572800
[   99.340341][ T7102] hierarchical_memsw_limit 9223372036854771712
[   99.346543][ T7102] total_cache 4096
[   99.350270][ T7102] total_rss 0
[   99.353577][ T7102] total_shmem 0
[   99.357112][ T7102] total_mapped_file 0
[   99.361135][ T7102] total_dirty 0
[   99.364652][ T7102] total_writeback 0
[   99.368499][ T7102] total_workingset_refault_anon 63
[   99.373608][ T7102] total_workingset_refault_file 30
[   99.378754][ T7102] total_swap 208896
[   99.382637][ T7102] total_swapcached 4096
[   99.386923][ T7102] total_pgpgin 96173
[   99.390861][ T7102] total_pgpgout 96170
[   99.394907][ T7102] total_pgfault 111846
[   99.398987][ T7102] total_pgmajfault 53
[   99.403075][ T7102] total_inactive_anon 4096
[   99.407582][ T7102] total_active_anon 0
[   99.411587][ T7102] total_inactive_file 4096
[   99.416067][ T7102] total_active_file 0
[   99.420062][ T7102] total_unevictable 0
[   99.424058][ T7102] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1318,pid=7101,uid=0
[   99.438870][ T7102] Memory cgroup out of memory: Killed process 7101 (syz.1.1318) total-vm:95680kB, anon-rss:948kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[   99.626477][ T7172] loop3: detected capacity change from 0 to 164
[   99.635214][ T7174] siw: device registration error -23
[   99.686585][ T7172] iso9660: Unknown parameter '00000000000000000003'
[   99.730255][ T7172] netlink: 'syz.3.1348': attribute type 3 has an invalid length.
[   99.800124][ T7182] loop3: detected capacity change from 0 to 512
[   99.820673][ T7182] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   99.979433][ T7182] EXT4-fs (loop3): 1 truncate cleaned up
[   99.985835][ T7182] EXT4-fs mount: 49 callbacks suppressed
[   99.985853][ T7182] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.080277][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.107711][ T7201] loop3: detected capacity change from 0 to 256
[  100.125747][ T7201] FAT-fs (loop3): Directory bread(block 64) failed
[  100.143508][ T7201] FAT-fs (loop3): Directory bread(block 65) failed
[  100.166818][ T7201] FAT-fs (loop3): Directory bread(block 66) failed
[  100.180574][ T7201] FAT-fs (loop3): Directory bread(block 67) failed
[  100.189276][ T7201] FAT-fs (loop3): Directory bread(block 68) failed
[  100.199852][ T7205] __nla_validate_parse: 4 callbacks suppressed
[  100.199867][ T7205] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1361'.
[  100.200020][ T7201] FAT-fs (loop3): Directory bread(block 69) failed
[  100.227499][ T7201] FAT-fs (loop3): Directory bread(block 70) failed
[  100.235505][ T7201] FAT-fs (loop3): Directory bread(block 71) failed
[  100.245156][ T7201] FAT-fs (loop3): Directory bread(block 72) failed
[  100.252557][ T7201] FAT-fs (loop3): Directory bread(block 73) failed
[  100.288086][ T7212] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1364'.
[  100.297188][ T7212] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  100.308785][ T7209] loop4: detected capacity change from 0 to 128
[  100.315549][ T7209] vfat: Unknown parameter '/dev/sg#'
[  100.321964][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1363'.
[  100.466257][ T7228] siw: device registration error -23
[  100.548991][ T7232] netlink: 'syz.3.1373': attribute type 10 has an invalid length.
[  100.557881][ T7232] batadv0: left allmulticast mode
[  100.562945][ T7232] batadv0: left promiscuous mode
[  100.568195][ T7232] bridge0: port 3(batadv0) entered disabled state
[  100.577106][ T7232] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.596705][ T7232] batadv0: entered promiscuous mode
[  100.602219][ T7232] batadv0: entered allmulticast mode
[  100.624462][ T7232] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  100.816695][ T7250] netlink: 'syz.1.1380': attribute type 3 has an invalid length.
[  100.851975][ T7254] siw: device registration error -23
[  100.902498][ T7264] netlink: 'syz.5.1387': attribute type 13 has an invalid length.
[  100.919327][ T7264] 8021q: adding VLAN 0 to HW filter on device team0
[  100.929755][ T7264] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  101.000778][ T7279] netlink: 'syz.3.1394': attribute type 3 has an invalid length.
[  101.035778][ T7281] loop3: detected capacity change from 0 to 512
[  101.068669][ T7281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.085181][ T7281] ext4 filesystem being mounted at /299/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.120383][ T7286] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  101.141180][ T7286] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  101.159545][ T7281] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1395'.
[  101.170236][ T7288] siw: device registration error -23
[  101.232081][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.285660][ T7302] loop5: detected capacity change from 0 to 512
[  101.302401][ T7307] netlink: 'syz.4.1405': attribute type 3 has an invalid length.
[  101.323723][ T7302] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.347783][ T7302] ext4 filesystem being mounted at /165/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.399595][ T7315] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1406'.
[  101.451981][ T7331] loop4: detected capacity change from 0 to 512
[  101.483116][ T7323] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1407'.
[  101.492196][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1407'.
[  101.522440][ T5904] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  101.531274][ T7323] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1407'.
[  101.540281][ T7323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1407'.
[  101.561711][ T5904] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  101.572831][ T7331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.581468][ T5904] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  101.593840][ T5904] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  101.606624][ T7331] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.638375][ T7331] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1412'.
[  101.670784][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.775950][ T7354] loop4: detected capacity change from 0 to 164
[  101.782762][ T7354] iso9660: Unknown parameter '00000000000000000003'
[  101.803163][ T7356] siw: device registration error -23
[  101.908120][ T7373] loop1: detected capacity change from 0 to 512
[  101.936526][ T7373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.949918][ T7373] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.988802][ T5914] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  101.999841][ T5914] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  102.008857][ T5914] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  102.019057][ T5914] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  102.057524][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.145210][ T4907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.160009][ T7397] loop1: detected capacity change from 0 to 2048
[  102.250643][ T7397]  loop1: unable to read partition table
[  102.256831][ T7397] loop1: partition table beyond EOD, truncated
[  102.263019][ T7397] loop_reread_partitions: partition scan of loop1 () failed (rc=-5)
[  102.369741][ T7422] loop5: detected capacity change from 0 to 512
[  102.386997][ T7422] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.399859][ T7422] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.449908][ T4907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.475157][ T7434] loop5: detected capacity change from 0 to 512
[  102.482643][ T7434] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  102.494506][ T7434] EXT4-fs (loop5): 1 truncate cleaned up
[  102.500549][ T7434] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.545991][ T4907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.632089][ T7453] loop3: detected capacity change from 0 to 512
[  102.646337][ T7453] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.659064][ T7453] ext4 filesystem being mounted at /316/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.661739][ T7449] netlink: 'syz.5.1461': attribute type 1 has an invalid length.
[  102.669620][   T29] kauditd_printk_skb: 243 callbacks suppressed
[  102.669707][   T29] audit: type=1400 audit(1755409179.107:3469): avc:  denied  { ioctl } for  pid=7448 comm="syz.5.1461" path="socket:[18962]" dev="sockfs" ino=18962 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  102.716400][ T7449] 8021q: adding VLAN 0 to HW filter on device bond1
[  102.728776][ T7456] 8021q: adding VLAN 0 to HW filter on device bond1
[  102.736159][ T7456] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  102.748084][ T7456] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  102.760079][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.780892][ T7459] audit: audit_lost=4 audit_rate_limit=0 audit_backlog_limit=64
[  102.788716][ T7459] audit: out of memory in audit_log_start
[  102.830675][   T29] audit: type=1326 audit(1755409179.277:3470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.854179][   T29] audit: type=1326 audit(1755409179.277:3471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.877712][   T29] audit: type=1326 audit(1755409179.277:3472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.901212][   T29] audit: type=1326 audit(1755409179.277:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.924759][   T29] audit: type=1326 audit(1755409179.277:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.925278][ T7461] loop3: detected capacity change from 0 to 1024
[  102.948232][   T29] audit: type=1326 audit(1755409179.277:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  102.959838][ T7461] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  102.978051][   T29] audit: type=1326 audit(1755409179.277:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7460 comm="syz.3.1465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f19c694ebe9 code=0x7ffc0000
[  103.049608][ T7461] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.179771][ T7491] loop5: detected capacity change from 0 to 512
[  103.207583][ T7491] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  103.253599][ T7491] EXT4-fs (loop5): 1 truncate cleaned up
[  103.260148][ T7491] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.273481][ T7490] ==================================================================
[  103.281604][ T7490] BUG: KCSAN: data-race in selinux_inode_permission / selinux_inode_permission
[  103.290931][ T7490] 
[  103.293264][ T7490] read to 0xffff88810453be20 of 4 bytes by task 7497 on cpu 0:
[  103.300818][ T7490]  selinux_inode_permission+0x334/0x740
[  103.306402][ T7490]  security_inode_permission+0x6d/0xb0
[  103.311885][ T7490]  inode_permission+0x106/0x310
[  103.316757][ T7490]  link_path_walk+0x162/0x900
[  103.321485][ T7490]  path_openat+0x1de/0x2170
[  103.326015][ T7490]  do_filp_open+0x109/0x230
[  103.330527][ T7490]  do_sys_openat2+0xa6/0x110
[  103.335142][ T7490]  __x64_sys_openat+0xf2/0x120
[  103.339929][ T7490]  x64_sys_call+0x2e9c/0x2ff0
[  103.344619][ T7490]  do_syscall_64+0xd2/0x200
[  103.349143][ T7490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.355048][ T7490] 
[  103.357372][ T7490] write to 0xffff88810453be20 of 4 bytes by task 7490 on cpu 1:
[  103.365096][ T7490]  selinux_inode_permission+0x3ac/0x740
[  103.370672][ T7490]  security_inode_permission+0x6d/0xb0
[  103.376169][ T7490]  inode_permission+0x106/0x310
[  103.381047][ T7490]  link_path_walk+0x162/0x900
[  103.385756][ T7490]  path_openat+0x1de/0x2170
[  103.390284][ T7490]  do_filp_open+0x109/0x230
[  103.394805][ T7490]  io_openat2+0x272/0x390
[  103.399158][ T7490]  io_openat+0x1b/0x30
[  103.403251][ T7490]  __io_issue_sqe+0xfe/0x2e0
[  103.407850][ T7490]  io_issue_sqe+0x53/0x970
[  103.412289][ T7490]  io_submit_sqes+0x664/0x1050
[  103.417070][ T7490]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  103.422632][ T7490]  __x64_sys_io_uring_enter+0x78/0x90
[  103.428016][ T7490]  x64_sys_call+0x2de1/0x2ff0
[  103.432710][ T7490]  do_syscall_64+0xd2/0x200
[  103.437404][ T7490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.443310][ T7490] 
[  103.445634][ T7490] value changed: 0x00000000 -> 0x00000001
[  103.451355][ T7490] 
[  103.453681][ T7490] Reported by Kernel Concurrency Sanitizer on:
[  103.459831][ T7490] CPU: 1 UID: 0 PID: 7490 Comm: syz.4.1477 Not tainted 6.17.0-rc1-syzkaller-00211-g90d970cade8e #0 PREEMPT(voluntary) 
[  103.472250][ T7490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.482320][ T7490] ==================================================================
[  103.518141][ T7501] netem: incorrect ge model size
[  103.523205][ T7501] netem: change failed
[  103.528196][ T4907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.541862][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.