last executing test programs:

3.510669838s ago: executing program 0 (id=3382):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r2, 0x0, 0x0, 0x0, 0x0, 0x0)

3.021525185s ago: executing program 0 (id=3387):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000b40), 0x8200, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x53, 0x1, 0x0, 0x0, 0x0, 0xc4dc, 0x590, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0xe}, 0xd59, 0x5, 0x0, 0x1, 0x8, 0x20001, 0x6, 0x0, 0x0, 0x0, 0x40000000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r7}, 0x10)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={0x1c}, 0x1c}}, 0x0)
futimesat(r3, 0x0, &(0x7f0000000200)={{0x77359400}})
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
read(r1, 0x0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000004700)=""/4113, 0x1011}, {&(0x7f0000003700)=""/4081, 0xff1}], 0x2}, 0x40012022)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000300)=ANY=[@ANYBLOB='_\x00\x00\x00', @ANYRES16], 0x68}}, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0)
close(r9)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r8, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd6372ce22667f2c"], 0x280)
socket$inet(0x2, 0x3, 0x8d)

2.625034161s ago: executing program 3 (id=3393):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cf84ded40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c86e00f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec231fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895012f1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c3405000000000000003871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d37261774cc5a3bf6b466cb72812da518ff602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d50a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a31b16ac5fb73fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953f88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a5fe1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9d66ebbc8bab4ea81232fbef665f6212f875b2a00000000000000aceb111b66a500ca52fd8f848088c67ee65dfdcc4c580e9bc18c1699dca07d019bf1bf9dd3da480d6c155d7e60674ce88ab5ae07a9d16e22792d99986b531ab4e592ab5925da779e700cf20309a2137877690dc5c07956fc82d7b3bb46d3138041af18508938c9be4e5d0a98073463a5cff6c146d020743da474cb81677a6f389f0e00c33b70b7f8bab95435c27167f365a29fb09cbf35bf192f6a65616fa2ad9a6c7ca3a3ecd96aaecd993e8badb40e7eb8a22b0015e70c885cd519e28448168c6d914265998bff74ea1b0e651a6cae9419096248a0e41573827ad60fafce6e6540734c1f23f75337d836c31497e8112969a039d65aa297e2b046b5f4d11116a89f9f65693d4dc3e70fbfe0b2044fdb3f87e887d1daae8e38a0c19f668f776e19a02bb2449ee4384f6536879c85d7e41bc0276ee2b125d41ff358323311703ec01d64a573bdeb75bdcc87d01de38365ab9222713d2d1640a742d62fefb5403b2ed9969c32a0841e8c36b0107bb888eb14ac62e6d4bdfaeb9ee7436b97bf3825a19d6c8997ce285edf1d277ed703f560460417bfe702af833e83c5b987befb6d1fcf765ab7ea537d9dafb622a1ba8686cb9b1c63b84470364942e90d1cf856cead864f5e38c83b9ed86cc5725a20299ce512b165"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xfff}, 0x18)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl1\x00', 0x0, 0x29, 0x6, 0x1, 0x8, 0x20, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x87, 0x80, 0x7fffffff, 0x8}})
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000004c0)=0x14)
sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="800000001300024228bd7000fbdbdf25150301004e244e240004000004000000ff000000ff01000024780000010000000100000002000000", @ANYRES32=r1, @ANYBLOB="0500000008000000100000000000000033000100cbbb282a2c5308df2b7b73a0e834c71b1c6d10ce246cdceb5f64bea4d88daf128dbea53814de3ae92126d05be827b800"], 0x80}, 0x1, 0x0, 0x0, 0x200080c0}, 0x40014)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1e00000005000000bfef00000180e50000000100", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="8100"/19, @ANYRES32=r1, @ANYRES32, @ANYBLOB="0000000002000000000000000500"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000400)=ANY=[@ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', r1, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000001a80)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@barrier_val={'barrier', 0x3d, 0x81}}], [{@flag='ro'}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x5)

2.574946602s ago: executing program 1 (id=3395):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_emit_ethernet(0x52, &(0x7f00000004c0)=ANY=[], 0x0)
r0 = creat(0x0, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x5, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x34}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
alarm(0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0x3}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x15c, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x20000000}, @TCA_RATE={0x6, 0x5, {0x6, 0x2}}, @filter_kind_options=@f_route={{0xa}, {0x10c, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0xca}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0xf8, 0x6, [@m_mirred={0xf4, 0x9, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x5, 0x10000000, 0xae, 0x2}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x3, 0x10000000, 0x8, 0x8}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1336e5ff, 0x9, 0x6, 0x0, 0x1}, 0x7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x4, 0x20000000, 0x8}, 0x2}}]}, {0x45, 0x6, "216194e50e7faa7649d1c06839be3b59a7f1bb6c7fbd0e7344b4e9b561d4b406f4a7a0c7e6ebe935ccd4c10fd3ff9357cc52da0d5a0f390e738e2309dae089a4a0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2}}}}]}]}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000440))
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000480))
listen(0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

2.427129564s ago: executing program 3 (id=3396):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r2, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)

1.971456521s ago: executing program 1 (id=3397):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x68f}, 0x18)
r2 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
write$selinux_access(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6c645f736f5f7420704a122f7362696e2f6468636c69656e742030"], 0x41)

1.970835411s ago: executing program 1 (id=3398):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000b40), 0x8200, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x53, 0x1, 0x0, 0x0, 0x0, 0xc4dc, 0x590, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0xe}, 0xd59, 0x5, 0x0, 0x1, 0x8, 0x20001, 0x6, 0x0, 0x0, 0x0, 0x40000000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = getpid()
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r7}, 0x10)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)={0x1c}, 0x1c}}, 0x0)
futimesat(r3, 0x0, &(0x7f0000000200)={{0x77359400}})
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {0x0}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
read(r1, 0x0, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)

1.836292873s ago: executing program 1 (id=3399):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d000000180100002069"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='ext4_es_remove_extent\x00', r2}, 0x18)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x4b8, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x21, 0x12, 0xbe, 0x7, 0x5aa9, @ipv4={'\x00', '\xff\xff', @empty}, @private1, @local, [0xff000000, 0xff000000, 0x0, 0xff], [0xffffff00, 0xff000000, 0xff], [0x0, 0xffffff, 0xffffff00, 0x7fffff7f], 0x3c80}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x21, 0x180, 0x5}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x3, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private1, [0x0, 0x0, 0xff, 0xff], [0x0, 0xffffff00], [0x0, 0xff000000], 0x843, 0x1400}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x518)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001080)=ANY=[@ANYRESOCT=r3, @ANYRES64=r1, @ANYRESHEX, @ANYRESDEC=r1, @ANYRES32=r0, @ANYBLOB="eb95b40047e14874ffefb6df4554fe073a3b6e92ffd11b2690bb7bd5228d490fd7273bf529e161b85e903e0b6dccc25ef4aec5e4dba447b22a824606ffd01252e0b8eddd889fd4e5649e331b551033e19ef702a75add579c32e393108ec0a337849471fc7c8bb2396538aae3eca9a71da054ef", @ANYRES8=0x0, @ANYRES16=0x0, @ANYRES64=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x8000000)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
r7 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
fchdir(r8)
open(&(0x7f0000000280)='.\x00', 0x0, 0x8)
close_range(r6, 0xffffffffffffffff, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
unshare(0x22020600)
accept4$llc(0xffffffffffffffff, 0x0, 0x0, 0x80000)
r10 = creat(&(0x7f0000000140)='./file0\x00', 0x28)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000580)={{{@in6=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000000300)=0xe8)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r10, 0xc018937b, &(0x7f0000000680)={{0x1, 0x1, 0x18, r9, {r11, r12}}, './file0\x00'})
sendmsg$kcm(r9, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040000000000000aa1180002000607002603600e12080b0f0000810401a8001605200001400200000803604e0cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee422fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef5d2defd5ccae8d3fb7c27a1059ae31c60e2234d732", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
socket(0x2b, 0x5, 0x83)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.817413633s ago: executing program 3 (id=3400):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
getsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x53, 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)

1.816397763s ago: executing program 0 (id=3401):
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
unshare(0x22020600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1)
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000140)={'wpan0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000080)=r7}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r8}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}, @TCA_TBF_PRATE64={0xc, 0x5, 0xe1e31d5aa9748ab8}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x0)

1.725120684s ago: executing program 3 (id=3402):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000600)=@security={'security\x00', 0x44, 0x4, 0x3c0, 0xffffffff, 0x0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x2f0, 0x2f0, 0x2f0, 0xffffffff, 0x6, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @empty, [], [], 'nr0\x00', 'nr0\x00'}, 0x203, 0xe0, 0x108, 0x8502, {0x700}, [@common=@unspec=@quota={{0x38}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x0, 0x3}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x4}}}, {{@ipv6={@local, @mcast1, [], [], 'ip6erspan0\x00', 'veth1_macvtap\x00'}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CLASSIFY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x420)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000"], 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000422000/0x2000)=nil, 0x2000, 0x0, 0x5, 0x20000)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x18)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r4}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

1.707651475s ago: executing program 0 (id=3403):
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000980)=ANY=[@ANYBLOB="1800000000000000000900000000000000f76d76f7d1663030bc4aa371ec10442b56b2508531e01fdfbaa0b27a2744af16e1ff13d246498b5f0d27ae3d68ae84c8fc12583013ae0a98cd26a36b011ac7941cbe7dd74e74c0a9ee36fca56e69d683f2c6eb914167b5a2082c35e41a88562fcfd61dbfdbc10b4eb045094e48b71cbab59bb6559d53724443932f6163e7415ac773f5ed91be95f0d62a3db09050101abd5e613158b760bca4c22eb8da139f1ee5ef8ac915acf8ae937adc70036399", @ANYRES8=<r2=>r1, @ANYRES32=r1, @ANYRES8=r0, @ANYRES16=<r3=>r0], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, @void, @value}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000008c0)='spmi_cmd\x00'}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
r5 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r5, &(0x7f00000007c0)=ANY=[@ANYRES8=0x0, @ANYRESDEC=r4, @ANYRES64=r2], 0x79)
dup(r1)
prctl$PR_GET_FP_MODE(0x2e)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0x20000000000000}, 0x18)
r7 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r7, 0x1, 0x25, &(0x7f00000002c0), 0x8)
setrlimit(0x9, &(0x7f0000000000))
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
syz_read_part_table(0x1060, &(0x7f0000001140)="$eJzsz8FtwkAQBdAfbby2lUMuKcC3HJIrjYBogipogTa4QBF0QRN0ALINLSAf3tNKX7s7M9KERTjM8XvOaihN0+aetEnK8399SfI33brplG4syddrwGf6MT6SPqchye6WZPNzber4Xup/kn2ffCd1bqnZHt++KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAs0CMAAP//M3sKqQ==")
io_setup(0x8001, &(0x7f0000000680)=<r10=>0x0)
io_setup(0x8, &(0x7f0000004200)=<r11=>0x0)
r12 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
io_submit(r11, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r12, 0x0, 0x0, 0x1, 0x0, 0x2}])
r13 = getpid()
syz_pidfd_open(r13, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRES8=r10], 0x48)
prlimit64(r13, 0x5, &(0x7f0000000180)={0x800ffffffffff, 0x100000000000000}, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000000000", @ANYRES32=r3], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.692274105s ago: executing program 1 (id=3404):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x300, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}]}, [{}, {}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x20000000, 0x7fffffff, 0x0, 0x3}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0xfffffff9, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x3}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x100000}, {0x0, 0x4000}, {0xfffffffe}, {0x1}, {0xd5}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x1}, {0x2000000}, {}, {0x0, 0x1}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4, 0x6}, {0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x4}, {0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x4, 0x4, 0x0, 0x0, 0x0, 0xfffffffc}, {0x4, 0x0, 0x0, 0x0, 0x0, 0x4000000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x400000}, {0x814, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x4}, {0x0, 0x0, 0x0, 0xfffffff9}, {}, {0x0, 0x0, 0x0, 0x100, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10000}, {0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x4, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x1, 0x0, 0xd}], [{0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0) (fail_nth: 6)

1.33267306s ago: executing program 1 (id=3406):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = syz_usb_connect(0x0, 0x1cb, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000440)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x10, 0x7ffc1ffb}]})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYRESDEC=0x0, @ANYRES16=r0], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff})
ioprio_set$uid(0x3, 0x0, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000c80)=@bridge_delneigh={0x28, 0x1c, 0xc07, 0x0, 0xfffffffc, {0x7, 0x0, 0x0, r5, 0x141, 0x64}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}}, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r1, 0x0}])
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000c00)='sys_enter\x00', r7}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="1400000010000100000000005f9c6a3d8269931d000000000000000a20000000000a03000000000000000000030000000900010073797a30000000005c000000030a03000000000000000000030000000900030073797a30000000000900010073797a300000000014000480080002400000000008000140000000001c0008800c00024000000064f0ce45c1f98347eba321a6eab7bf3f437623005c0d7abe70f70c379cd74b82ab412371621a46a7bbb14f1311cbdc83ac4aba5ecf1c464c0caecdd37595315e107e80fd963e6d9193c2131da99b3709146699ddf2fa4f96a8e28f064baf9faf666b4a5e75e609933323e09c0967d902"], 0xa4}}, 0xc0)
sendmsg$NFT_MSG_GETTABLE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x230}, 0x1, 0x0, 0x0, 0x1}, 0x8044)
eventfd2(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='kmem_cache_free\x00'}, 0x18)
clock_nanosleep(0x2, 0x37dc12502000000, &(0x7f00000000c0)={0x0, 0x989680}, 0x0)

1.224185332s ago: executing program 0 (id=3408):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0xc)
r6 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r7 = gettid()
kcmp(r7, r7, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r8, 0x11c, 0x2, &(0x7f0000000000)=""/245, &(0x7f0000000100)=0xf5)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x3014850, &(0x7f00000000c0)={[{@noquota}, {@resuid}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r9}, &(0x7f0000000800), &(0x7f0000000840)=r10}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.219389902s ago: executing program 4 (id=3410):
syz_read_part_table(0x618, &(0x7f0000002200)="$eJzs3D+IFGcUAPC3dzc7dwqehUWwiWctBMXSK6LsbQwGZE0IHBb5iwhXXeBgQxY3eEVyheIWYplGApviXKvoFVY5FFIHsTAIW9gETBNiipsws3O3GzgOEjaE4O9XfN/bnTfvzQfTvgn+1yYiKaMsLbY3PtozP5sdxu14r1tbOJtlWfZuRCUuRhJzyYFeRExF9G6NVI2jEbF/pM7tb/ZtfP3rW0n3yYVktH470jiY51YjL1ma2e1R0r99WMZufX5z9urqcv1a/qPe6m+9H3HnRa1x79xapzeZnPkk//9KxMMyf6pYZya27/9wKv5yZQ9fDsPKaP/tl+Py43qrf6v77PjW4frk95dOvTyycf3BiYiVvPL5KF72oeo/P/Oo9fnNrFT0X5m7sdhpnT5299DNk837jxrPJ38vLw9aToynLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/5L1fFmtxrXm/OXH9Vb/q59+fOfOi1rj3rm1Tu/t6pmnlUHewzJ/qtw/i2Z8HklELMVSfBrLu5d/bSc6sBMtVkb7z2/OXl1drg/6/7Ev4tnxrcP17sylUy8XNq4/OFFkVWI63ybGevRd+rf6K3M3Fjut08fuHrp5snn/UeP55CBvKY2Pi+NGRDr+xwAAAAAAAAAAAAAAAAAAAOAVV1s4e+T8m42DeXxxOiJ++aKYss/Sme+imLwfOFruT9PBKP/t6cG3ALpPLvxW/eCHtZ/Lofh2pNGOiP3fJhHx+k6fK8W6/fWASIaV+S/9GQAA///p7o1q")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r2, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0)

1.108501494s ago: executing program 4 (id=3411):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r2, 0x0, 0x0, 0x0, 0x0, 0x0)

1.084963674s ago: executing program 2 (id=3412):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r3, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r3, 0x6e2, 0x600, 0x1, 0x0, 0x0)

846.564927ms ago: executing program 2 (id=3413):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
getsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x53, 0x0, 0x0)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)

801.986558ms ago: executing program 4 (id=3414):
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
unshare(0x22020600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1)
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000140)={'wpan0\x00'})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r6}, &(0x7f0000000040), &(0x7f0000000080)=r7}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r8}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}, @TCA_TBF_PRATE64={0xc, 0x5, 0xe1e31d5aa9748ab8}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x0)

708.318629ms ago: executing program 2 (id=3415):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x2882, 0x0)
ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x80, 0x0, 0x1, 0x800}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x3000)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x30000000, 0x3)

659.9649ms ago: executing program 4 (id=3416):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000000040)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e21, @empty}]}, &(0x7f0000000180)=0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
mmap$perf(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000001, 0x1010, r2, 0x7fffffffffffffff)
sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)

616.146061ms ago: executing program 4 (id=3417):
r0 = syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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")
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x5)
mknodat(r0, &(0x7f0000000000)='./file2\x00', 0x1, 0x8)
getdents(r1, &(0x7f0000000300)=""/188, 0xbc)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000009c0)=@nat={'nat\x00', 0x19, 0x0, 0xc0, [0x200000000500, 0x0, 0x0, 0x200000000530, 0x200000000560], 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000001000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000"]}, 0x138)

588.397091ms ago: executing program 3 (id=3418):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x45d, &(0x7f0000000a00)="$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")
r0 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000001b00)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000000000000000000000000000000000000000000000dfff"])
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x670, 0xd0, 0xd0, 0x428, 0xd0, 0xd0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x6, 0x0, 0x0, 0x4a}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@unspec=@connmark={{0x30}}, @common=@inet=@socket1={{0x28, 'socket\x00', 0x2}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@frag={{0x30}}, @common=@hbh={{0x48}}]}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@dst={{0x48}}, @common=@dst={{0x48}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6d0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
socket$inet(0x2, 0x4000000805, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r6}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
socket(0xa, 0x3, 0x3a) (async)
r7 = socket(0xa, 0x3, 0x3a)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_linger(r8, 0x1, 0xd, &(0x7f0000000000)={0x1, 0x80000000}, 0x8)
close(r8)
setsockopt$MRT6_INIT(r7, 0x29, 0xc8, &(0x7f0000000340), 0x4) (async)
setsockopt$MRT6_INIT(r7, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r9 = socket(0x1d, 0x2, 0x6)
getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000100)) (async)
getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000100))
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020a07b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000000140)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x30, 0x0, @ib={0x1b, 0xfffd, 0x100002, {"00000000000000000000000000000001"}, 0x2000000000001005, 0x5, 0x7}}}, 0x90)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)

505.072862ms ago: executing program 4 (id=3419):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a48000000060a090400000000000006b9f14f13c59ffa010073797a30000000000900020073797a32000000001c0004801800018008000100647570000c0002800800014000000000140000001100010000000000000000000000000a"], 0x70}}, 0x0)
perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x0, 0x800000000, 0x3, 0x5, 0x3, 0xd, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0x2004, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0xf)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd70000000000001"], 0x24}}, 0x0)
mknod$loop(0x0, 0x100000000000600d, 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000004080000001000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000240)='./bus\x00', 0x404, &(0x7f0000000200)={[{@data_err_ignore}, {@mb_optimize_scan}]}, 0x1, 0x5e6, &(0x7f0000001200)="$eJzs3c1vFVUbAPBnbj9oKe/bQt68igtpYgwkSksLGGJcwNaQBj/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sRr5nam9LZzW3r7MZX5/ZJLZ+bc4TzT26fn3NNz5gZQWYPpP7WI/RExnUT0J/OLZZ2RFQ4uPO/Bnx+dTR9J1Ouv/Z5Ekh3Ln59kX/uyk3si4scfktjXsbLemblrF8enpiavZvvDs5emh2fmrh2+cGn8/OT5ycujL4yeOH7s+ImRI21d1/WCY6dvvvt+/ydjb37z1V/JyLe/jCVxMl7Onrj0OjbLYAw2vifJyqK+E5tdWUk6sp+TpS9x0lliQKxL/vp1RcQT0R8d8fDF64+PXyk1OGBL1ZOIOlBRifyHisr7Afl7++Xvg2ul9EqA7XD/1MIAwMr871wYG4yextjA7gdJLB3WSSKivZG5Znsi4u6dsZvn7ozdjC0ahwOKzd+IiCeL8j9p5P9A9MRAI/9rTfmf9gvOZF/T46+2Wf/yoWL5D9tnIf97Vs3/aJH/by3J/7fbrH/w4eY7vU3539vuJQEAAAAAAEBl3T4VEc8X/f2/tjj/Jwrm//RFxMlNqH9w2f7Kv//X7m1CNUCB+6ciXiqc/1vLZ/8OdGRb/2nMB+hKzl2YmjwSEf+NiEPRtSvdH1mljsOf7vuyVdlgNv8vf6T1383mAmZx3Ovc1XzOxPjs+EavG4i4fyPiqcL5v8li+58UtP/p74PpR6xj37O3zrQqWzv/ga1S/zriYGH7//CuFcnq9+cYbvQHhvNewUpPf/jZd63qbzf/3WICNi5t/3evnv8DydL79cysv46jc531VmXt9v+7k9cbt5zpzo59MD47e3Ukojs53ZEebTo+uv6Y4XGU50OeL2n+H3pm9fG/ov5/b0TML/u/kz+a1xTn/v9336+t4tH/h/Kk+T+xrvZ//Rujtwa+b1X/o7X/xxpt/aHsiPE/WPBFnqbdzccL0rGzqGi74wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAx0EtIvZEUhta3K7VhoYi+iLif7G7NnVlZva5c1feuzyRljU+/7+Wf9Jv/8J+kn/+/8CS/dFl+0cjYm9EfN7R29gfOntlaqLsiwcAAAAAAAAAAAAAAAAAAIAdoq/F+v/Ubx1lRwdsuc6yAwBKU5D/P5URB7D9tP9QXfIfqkv+Q3XJf6gu+Q/VJf+huuQ/VNc68z/JHgAAAAAAwM6098Dtn5OImH+xt/FIdWdlXaVGBmy1WtkBAKVxix+oLlP/oLrW+x7/5BbFAZRnrfm8PS1P2shM4OmzGzgZAAAAAAAAAAAAACrn4H7r/6GqrP+H6rL+H6orX/9/oOQ4gO3nPT4Qa6zkL1z/v+ZZAAAAAAAAAAAAAMBmmpm7dnF8amryqo03dkYY27lRr9evpz8FOyWef/lGPhV+p8SzbCNf6/doZ5X3OwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGj2TwAAAP//030lBw==")
bpf$PROG_BIND_MAP(0x23, &(0x7f00000002c0)={r0, r5}, 0xc)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r7, &(0x7f0000004200)='t', 0x1)
sendfile(r7, r6, 0x0, 0x3ffff)
write$binfmt_aout(r7, &(0x7f0000000600)=ANY=[@ANYBLOB="000006b191000000910000a485dd0040000000aa020000080000000000000000"], 0x20)
sendfile(r7, r6, 0x0, 0x7ffff000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

495.232663ms ago: executing program 3 (id=3420):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x1e1e, 0x0, 0x0, &(0x7f0000000240)=<r1=>0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0e000000040000000400000009"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0xfffffffffffffe4e, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000022e000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000180)=r5, 0x4)
sendmsg$inet(r7, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r8 = socket(0x1, 0x1, 0x200)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000400))
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x1d5, 0x1)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000001400)='.\x00', &(0x7f0000001440), 0x800, &(0x7f0000000280)=ANY=[@ANYBLOB="7472616e733d72646db3bb464aa2c8612c706f72743d3078303030303030e23030303030346532302c7304000000303030303030303030303031303030302c746981656f75743d3078303030303030303030303030303030332c00f5125dfb7e7f6849213b2c93e3823359e1b538aca006a949eee060309d937b254a005a88bb2a2ec6fc1a984b2ff968dc7bd51e41f6be2906fbd237af310fb04666edae230e631a224b60d697c5bd27b076507c4a0870"])
syz_io_uring_submit(0x0, r1, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockname$packet(r8, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14)

446.150733ms ago: executing program 2 (id=3421):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000101b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r2, &(0x7f0000000040)=[{0x0}], 0x1, 0x0, 0x0, 0x0)

253.060406ms ago: executing program 2 (id=3422):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xfff}, 0x18)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl1\x00', 0x0, 0x29, 0x6, 0x1, 0x8, 0x20, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x87, 0x80, 0x7fffffff, 0x8}})
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000004c0)=0x14)
sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="800000001300024228bd7000fbdbdf25150301004e244e240004000004000000ff000000ff01000024780000010000000100000002000000", @ANYRES32=r1, @ANYBLOB="0500000008000000100000000000000033000100cbbb282a2c5308df2b7b73a0e834c71b1c6d10ce246cdceb5f64bea4d88daf128dbea53814de3ae92126d05be827b800"], 0x80}, 0x1, 0x0, 0x0, 0x200080c0}, 0x40014)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1e00000005000000bfef00000180e500000001", @ANYRES32=<r2=>0xffffffffffffffff, @ANYBLOB="8100"/20, @ANYRES32=r1, @ANYRES32, @ANYBLOB="0000000002000000000000000500"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000400)=ANY=[@ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', r1, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000001a80)={[{@dioread_nolock}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@barrier_val={'barrier', 0x3d, 0x81}}], [{@flag='ro'}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x5)

252.459456ms ago: executing program 0 (id=3423):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x8040)
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x80000, {0x0, 0x0, 0x0, r5, {}, {0x4, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_VIF(r7, 0x0, 0xcb, &(0x7f0000000000)={0xffffffffffffffff, 0x4, 0x1, 0x8, @vifc_lcl_addr=@multicast1, @empty}, 0x10)
openat$random(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'bond_slave_1\x00'})
ioctl$TCSBRK(r8, 0x5409, 0x7)
r9 = socket$inet6(0xa, 0x5, 0x0)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$netlink(0x10, 0x3, 0xf)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000140), &(0x7f00000002c0)='system_u:object_r:watchdog_device_t:s0\x00', 0x27, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r10, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r10, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r11=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_CONTEXT(r9, 0x84, 0x11, &(0x7f0000001080)={r11, 0xe2}, 0x8)

0s ago: executing program 2 (id=3424):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x2882, 0x0)
ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x80, 0x0, 0x1, 0x800}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x3000)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x30000000, 0x3)

kernel console output (not intermixed with test programs):

 none.
[  221.893391][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  221.893407][   T29] audit: type=1326 audit(1749759669.686:7750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe26a7de929 code=0x7ffc0000
[  221.930547][T12004] FAULT_INJECTION: forcing a failure.
[  221.930547][T12004] name failslab, interval 1, probability 0, space 0, times 0
[  221.943455][T12004] CPU: 1 UID: 0 PID: 12004 Comm: syz.0.2922 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  221.943492][T12004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  221.943509][T12004] Call Trace:
[  221.943516][T12004]  <TASK>
[  221.943605][T12004]  __dump_stack+0x1d/0x30
[  221.943631][T12004]  dump_stack_lvl+0xe8/0x140
[  221.943656][T12004]  dump_stack+0x15/0x1b
[  221.943675][T12004]  should_fail_ex+0x265/0x280
[  221.943730][T12004]  should_failslab+0x8c/0xb0
[  221.943757][T12004]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  221.943786][T12004]  ? sidtab_sid2str_get+0xa0/0x130
[  221.943896][T12004]  kmemdup_noprof+0x2b/0x70
[  221.943920][T12004]  sidtab_sid2str_get+0xa0/0x130
[  221.943996][T12004]  security_sid_to_context_core+0x1eb/0x2e0
[  221.944027][T12004]  security_sid_to_context+0x27/0x40
[  221.944057][T12004]  selinux_lsmprop_to_secctx+0x67/0xf0
[  221.944141][T12004]  security_lsmprop_to_secctx+0x43/0x80
[  221.944214][T12004]  audit_log_task_context+0x77/0x190
[  221.944301][T12004]  audit_log_task+0xf4/0x250
[  221.944337][T12004]  audit_seccomp+0x61/0x100
[  221.944372][T12004]  ? __seccomp_filter+0x68c/0x10d0
[  221.944451][T12004]  __seccomp_filter+0x69d/0x10d0
[  221.944480][T12004]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  221.944509][T12004]  ? vfs_write+0x75e/0x8e0
[  221.944544][T12004]  ? __rcu_read_unlock+0x4f/0x70
[  221.944570][T12004]  ? __fget_files+0x184/0x1c0
[  221.944677][T12004]  __secure_computing+0x82/0x150
[  221.944720][T12004]  syscall_trace_enter+0xcf/0x1e0
[  221.944771][T12004]  do_syscall_64+0xac/0x200
[  221.944794][T12004]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  221.944885][T12004]  ? clear_bhb_loop+0x40/0x90
[  221.944957][T12004]  ? clear_bhb_loop+0x40/0x90
[  221.944994][T12004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.945023][T12004] RIP: 0033:0x7fe26a7de929
[  221.945044][T12004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.945069][T12004] RSP: 002b:00007fe268e47038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c2
[  221.945103][T12004] RAX: ffffffffffffffda RBX: 00007fe26aa05fa0 RCX: 00007fe26a7de929
[  221.945126][T12004] RDX: 0000000000000001 RSI: 0000000000004000 RDI: 0000200000ffa000
[  221.945142][T12004] RBP: 00007fe268e47090 R08: 0000000000000000 R09: 0000000000000000
[  221.945159][T12004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.945179][T12004] R13: 0000000000000000 R14: 00007fe26aa05fa0 R15: 00007ffc70d4a1d8
[  221.945205][T12004]  </TASK>
[  221.945216][T12004] audit: error in audit_log_task_context
[  221.952400][   T29] audit: type=1326 audit(1749759669.716:7751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe26a7de929 code=0x7ffc0000
[  222.090855][T11851] veth0_vlan: entered promiscuous mode
[  222.094606][   T29] audit: type=1326 audit(1749759669.716:7752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe26a7de929 code=0x7ffc0000
[  222.133004][T11851] veth1_vlan: entered promiscuous mode
[  222.145074][   T29] audit: type=1326 audit(1749759669.716:7753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe26a7dd290 code=0x7ffc0000
[  222.203523][T11851] veth0_macvtap: entered promiscuous mode
[  222.225640][   T29] audit: type=1326 audit(1749759669.716:7754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe26a7dd3df code=0x7ffc0000
[  222.288049][T11851] veth1_macvtap: entered promiscuous mode
[  222.289745][   T29] audit: type=1400 audit(1749759669.906:7756): avc:  denied  { write } for  pid=12003 comm="syz.0.2922" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  222.315231][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.318327][   T29] audit: type=1326 audit(1749759669.716:7755): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7fe26a7de929 code=0x7ffc0000
[  222.368398][   T29] audit: type=1326 audit(1749759669.946:7757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fe26a7dd33c code=0x7ffc0000
[  222.379912][T11851] batman_adv: batadv0: Interface activated: batadv_slave_0
[  222.391958][   T29] audit: type=1326 audit(1749759669.946:7758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12003 comm="syz.0.2922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe26a7dd3df code=0x7ffc0000
[  222.428530][T11851] batman_adv: batadv0: Interface activated: batadv_slave_1
[  222.461888][T12021] loop0: detected capacity change from 0 to 2048
[  222.475391][T11851] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.475804][T12022] netlink: 'syz.3.2924': attribute type 10 has an invalid length.
[  222.484166][T11851] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.500761][T11851] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.509509][T11851] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.522024][T12021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.522093][T12022] ipvlan0: entered allmulticast mode
[  222.522107][T12022] veth0_vlan: entered allmulticast mode
[  222.536001][T12021] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.546634][T12022] team0: Device ipvlan0 failed to register rx_handler
[  222.569077][T12025] loop3: detected capacity change from 0 to 2048
[  222.607021][T12025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.612098][T12029] loop0: detected capacity change from 0 to 1024
[  222.655123][T12029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.734506][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.835146][T12050] loop4: detected capacity change from 0 to 1024
[  222.874155][T12050] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.912804][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.965099][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.025687][T12061] loop4: detected capacity change from 0 to 512
[  223.077128][T12061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  223.089855][T12061] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.128271][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  223.172846][T12073] netlink: 'syz.4.2940': attribute type 10 has an invalid length.
[  223.202599][T12073] ipvlan0: entered allmulticast mode
[  223.208082][T12073] veth0_vlan: entered allmulticast mode
[  223.222830][T12073] team0: Device ipvlan0 failed to register rx_handler
[  223.251879][T12077] loop4: detected capacity change from 0 to 2048
[  223.274459][T12078] loop2: detected capacity change from 0 to 1024
[  223.307771][T12078] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.354011][T12077] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.396717][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.517235][T12089] loop3: detected capacity change from 0 to 512
[  223.525154][T12088] SELinux:  policydb version -845211227 does not match my version range 15-34
[  223.593489][T12053] chnl_net:caif_netlink_parms(): no params data found
[  223.615797][T12089] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  223.628479][T12089] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.651804][T12088] SELinux: failed to load policy
[  223.740394][T12053] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.747878][T12053] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.831186][T12053] bridge_slave_0: entered allmulticast mode
[  223.854117][T12101] loop2: detected capacity change from 0 to 1024
[  223.866533][T12053] bridge_slave_0: entered promiscuous mode
[  223.909019][T12053] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.916213][T12053] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.925679][T12101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.984672][T12053] bridge_slave_1: entered allmulticast mode
[  224.007953][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.018309][T12053] bridge_slave_1: entered promiscuous mode
[  224.038378][ T6190] bridge_slave_1: left allmulticast mode
[  224.044128][ T6190] bridge_slave_1: left promiscuous mode
[  224.049943][ T6190] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.097160][ T6190] bridge_slave_0: left allmulticast mode
[  224.102917][ T6190] bridge_slave_0: left promiscuous mode
[  224.108601][ T6190] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.141446][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.165291][ T6190] bond1 (unregistering): (slave gretap1): Releasing active interface
[  224.178925][ T6190] team0: Port device geneve1 removed
[  224.263566][ T6190] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.274185][ T6190] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.283197][ T6190] bond0 (unregistering): Released all slaves
[  224.294654][ T6190] bond1 (unregistering): Released all slaves
[  224.303707][ T6190] bond2 (unregistering): Released all slaves
[  224.314341][ T6190] bond3 (unregistering): Released all slaves
[  224.322987][ T6190] bond4 (unregistering): Released all slaves
[  224.331438][ T6190] bond5 (unregistering): Released all slaves
[  224.341286][ T6190] bond6 (unregistering): Released all slaves
[  224.350172][ T6190] bond7 (unregistering): Released all slaves
[  224.383615][T12053] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.406135][T12053] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.446325][ T6190] IPVS: stopping master sync thread 4401 ...
[  224.467461][T12112] loop2: detected capacity change from 0 to 1024
[  224.486489][ T6190] hsr_slave_0: left promiscuous mode
[  224.498063][ T6190] hsr_slave_1: left promiscuous mode
[  224.522938][T12112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.597161][ T6190] team0 (unregistering): Port device team_slave_1 removed
[  224.607843][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.649839][ T6190] team0 (unregistering): Port device team_slave_0 removed
[  224.683408][T12123] loop2: detected capacity change from 0 to 2048
[  224.739112][T12053] team0: Port device team_slave_0 added
[  224.747664][T12053] team0: Port device team_slave_1 added
[  224.756845][T12123]  loop2: p1 < > p4
[  224.761227][T12123] loop2: p4 size 8388608 extends beyond EOD, truncated
[  224.770026][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  224.821997][T12053] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.829015][T12053] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.855216][T12053] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.871178][T12053] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.878250][T12053] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.904392][T12053] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  224.947436][T12053] hsr_slave_0: entered promiscuous mode
[  224.972030][T12053] hsr_slave_1: entered promiscuous mode
[  224.978039][T12053] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  224.993683][T12053] Cannot create hsr debugfs directory
[  224.999635][T12133] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  225.045802][T12135] loop2: detected capacity change from 0 to 2048
[  225.073366][T12133] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2955'.
[  225.074080][T12135] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.104629][T12135] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.121378][ T6190] IPVS: stop unused estimator thread 0...
[  225.158412][T12142] loop3: detected capacity change from 0 to 2048
[  225.183504][T12142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.197440][T12142] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.247516][T12148] loop2: detected capacity change from 0 to 2048
[  225.281374][T12150] loop3: detected capacity change from 0 to 1024
[  225.292448][T12148]  loop2: p1 < > p4
[  225.301882][T12148] loop2: p4 size 8388608 extends beyond EOD, truncated
[  225.342634][T12150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.358592][T12053] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  225.374152][T12053] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  225.382389][T12158] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2964'.
[  225.395989][T12053] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  225.410238][T12053] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  225.418504][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.487909][T12053] 8021q: adding VLAN 0 to HW filter on device bond0
[  225.509840][T12053] 8021q: adding VLAN 0 to HW filter on device team0
[  225.518965][T12168] loop3: detected capacity change from 0 to 1024
[  225.533240][T12172] netlink: 'syz.2.2967': attribute type 10 has an invalid length.
[  225.553826][T11463] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.561053][T11463] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.572329][T12168] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.586068][T11463] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.593188][T11463] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.608482][T12176] loop2: detected capacity change from 0 to 2048
[  225.616945][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.643368][T12172] team0: Device ipvlan0 failed to register rx_handler
[  225.693622][T12179] SELinux: failed to load policy
[  225.699384][T12182] loop3: detected capacity change from 0 to 2048
[  225.707356][T12176] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.723438][T12053] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.743238][T12182] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.837099][T12053] veth0_vlan: entered promiscuous mode
[  225.884440][T12053] veth1_vlan: entered promiscuous mode
[  225.909067][T12053] veth0_macvtap: entered promiscuous mode
[  225.926655][T12053] veth1_macvtap: entered promiscuous mode
[  225.938543][T12202] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  225.943458][T12053] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.975190][T12053] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.982612][T12202] EXT4-fs (loop3): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1128 with error 28
[  225.986475][T12053] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.995186][T12202] EXT4-fs (loop3): This should not happen!! Data will be lost
[  225.995186][T12202] 
[  226.003817][T12053] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.013447][T12202] EXT4-fs (loop3): Total free blocks count 0
[  226.013466][T12202] EXT4-fs (loop3): Free/Dirty block details
[  226.022172][T12053] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.028157][T12202] EXT4-fs (loop3): free_blocks=2415919504
[  226.034084][T12053] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.042774][T12202] EXT4-fs (loop3): dirty_blocks=7184
[  226.042794][T12202] EXT4-fs (loop3): Block reservation details
[  226.042808][T12202] EXT4-fs (loop3): i_reserved_data_blocks=73
[  226.113182][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.175780][T12212] loop1: detected capacity change from 0 to 1024
[  226.204745][T12212] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.233018][T12215] loop2: detected capacity change from 0 to 2048
[  226.251284][T12053] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.304267][T12215]  loop2: p1 < > p4
[  226.310261][T12215] loop2: p4 size 8388608 extends beyond EOD, truncated
[  226.400224][T12231] netlink: 'syz.1.2984': attribute type 10 has an invalid length.
[  226.414654][T12231] ipvlan0: entered allmulticast mode
[  226.420097][T12231] veth0_vlan: entered allmulticast mode
[  226.438285][T12231] team0: Device ipvlan0 failed to register rx_handler
[  226.510955][T12232] loop1: detected capacity change from 0 to 2048
[  226.568044][T12240] loop2: detected capacity change from 0 to 1024
[  226.611581][T12240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.668256][T12243] loop4: detected capacity change from 0 to 2048
[  226.696326][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.709174][T12243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.738508][T12232] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.783638][T12243] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.828688][  T384] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  226.917337][T12259] loop2: detected capacity change from 0 to 2048
[  226.922105][T12261] loop4: detected capacity change from 0 to 1024
[  226.933421][   T29] kauditd_printk_skb: 122 callbacks suppressed
[  226.933438][   T29] audit: type=1326 audit(1749759674.726:7881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12262 comm="syz.0.2995" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe26a7de929 code=0x0
[  226.973870][T12261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.012534][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.024435][T12259]  loop2: p1 < > p4
[  227.038866][T12259] loop2: p4 size 8388608 extends beyond EOD, truncated
[  227.079466][T12053] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.135476][   T29] audit: type=1326 audit(1749759674.926:7882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.187078][   T29] audit: type=1326 audit(1749759674.956:7883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.194960][T12279] loop1: detected capacity change from 0 to 1024
[  227.210723][   T29] audit: type=1326 audit(1749759674.956:7884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.240729][   T29] audit: type=1326 audit(1749759674.956:7885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.264438][   T29] audit: type=1326 audit(1749759674.956:7886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.288073][   T29] audit: type=1326 audit(1749759674.956:7887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.311756][   T29] audit: type=1326 audit(1749759674.956:7888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.335416][   T29] audit: type=1326 audit(1749759674.956:7889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.359090][   T29] audit: type=1326 audit(1749759674.956:7890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12273 comm="syz.4.3001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  227.433713][T12279] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.481020][T12288] loop4: detected capacity change from 0 to 1024
[  227.494988][T12053] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.512671][T12288] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.558972][T12292] loop3: detected capacity change from 0 to 2048
[  227.568770][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.707264][T12292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.723387][T12300] SELinux: failed to load policy
[  227.729045][T12292] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.808798][T12304] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3008'.
[  227.832657][T12307] netlink: 'syz.0.3009': attribute type 10 has an invalid length.
[  227.844922][T12305] loop4: detected capacity change from 0 to 512
[  227.862933][T12307] team0: Device ipvlan0 failed to register rx_handler
[  227.888343][T12305] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.957716][T12307] loop0: detected capacity change from 0 to 2048
[  228.065313][T12323] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3015'.
[  228.124177][T12327] loop2: detected capacity change from 0 to 1024
[  228.527177][T12340] SELinux: failed to load policy
[  228.579046][T12345] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3021'.
[  228.588530][T12343] loop0: detected capacity change from 0 to 2048
[  228.612298][T12343]  loop0: p1 < > p4
[  228.616669][T12343] loop0: p4 size 8388608 extends beyond EOD, truncated
[  228.656176][T12347] loop2: detected capacity change from 0 to 2048
[  228.744887][T12357] loop0: detected capacity change from 0 to 1024
[  228.800577][T12364] loop2: detected capacity change from 0 to 512
[  228.809151][T12364] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  228.823156][T12364] EXT4-fs (loop2): 1 truncate cleaned up
[  228.857165][T12369] loop0: detected capacity change from 0 to 1024
[  228.915230][T12376] netlink: 'syz.0.3031': attribute type 10 has an invalid length.
[  228.925490][T12376] team0: Device ipvlan0 failed to register rx_handler
[  228.958778][T12376] loop0: detected capacity change from 0 to 2048
[  229.310228][T12384] loop0: detected capacity change from 0 to 2048
[  229.392056][T12384]  loop0: p1 < > p4
[  229.401726][T12384] loop0: p4 size 8388608 extends beyond EOD, truncated
[  229.493974][T12391] loop3: detected capacity change from 0 to 2048
[  229.626853][T12404] loop3: detected capacity change from 0 to 512
[  229.655353][T12404] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  229.698163][T12404] EXT4-fs (loop3): 1 truncate cleaned up
[  229.751434][T12412] loop3: detected capacity change from 0 to 512
[  229.768513][T12412] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  229.803137][T12412] EXT4-fs (loop3): 1 truncate cleaned up
[  229.831686][ T6190] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.907019][ T6190] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.929295][T12421] loop3: detected capacity change from 0 to 1024
[  229.945057][ T6190] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.964254][T12421] EXT4-fs: Ignoring removed nobh option
[  229.971597][T12421] EXT4-fs: Ignoring removed bh option
[  229.981119][T12405] chnl_net:caif_netlink_parms(): no params data found
[  229.994695][ T6190] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.125713][T12405] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.132982][T12405] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.169958][T12405] bridge_slave_0: entered allmulticast mode
[  230.178171][T12430] xt_CT: You must specify a L4 protocol and not use inversions on it
[  230.195953][T12405] bridge_slave_0: entered promiscuous mode
[  230.214903][T12427] lo speed is unknown, defaulting to 1000
[  230.220703][T12427] lo speed is unknown, defaulting to 1000
[  230.233822][ T6190] bridge_slave_1: left allmulticast mode
[  230.239592][ T6190] bridge_slave_1: left promiscuous mode
[  230.245325][ T6190] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.268702][ T6190] bridge_slave_0: left allmulticast mode
[  230.274733][ T6190] bridge_slave_0: left promiscuous mode
[  230.280465][ T6190] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.362537][ T6190] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  230.371355][ T6190] bridge0 (unregistering): left promiscuous mode
[  230.414134][ T6190] bond0 (unregistering): left promiscuous mode
[  230.420358][ T6190] bond_slave_0: left promiscuous mode
[  230.425943][ T6190] bond_slave_1: left promiscuous mode
[  230.433194][ T6190] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  230.454033][ T6190] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  230.465464][ T6190] bond0 (unregistering): Released all slaves
[  230.474764][ T6190] bond1 (unregistering): Released all slaves
[  230.484612][ T6190] bond2 (unregistering): Released all slaves
[  230.494478][ T6190] bond3 (unregistering): Released all slaves
[  230.504146][ T6190] bond4 (unregistering): Released all slaves
[  230.513548][ T6190] bond5 (unregistering): Released all slaves
[  230.522657][ T6190] bond6 (unregistering): Released all slaves
[  230.532140][ T6190] bond7 (unregistering): Released all slaves
[  230.541330][T12405] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.548505][T12405] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.555893][T12405] bridge_slave_1: entered allmulticast mode
[  230.563148][T12405] bridge_slave_1: entered promiscuous mode
[  230.569754][T12427] lo speed is unknown, defaulting to 1000
[  230.578933][T12427] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  230.598252][T12427] lo speed is unknown, defaulting to 1000
[  230.600034][T12405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.613225][T12427] lo speed is unknown, defaulting to 1000
[  230.616228][T12405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.628978][T12427] lo speed is unknown, defaulting to 1000
[  230.646358][T12405] team0: Port device team_slave_0 added
[  230.652200][T12427] lo speed is unknown, defaulting to 1000
[  230.653377][T12405] team0: Port device team_slave_1 added
[  230.677006][T12427] lo speed is unknown, defaulting to 1000
[  230.677534][T12405] batman_adv: batadv0: Adding interface: batadv_slave_0
[  230.689801][T12405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.715997][T12405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.727116][T12427] lo speed is unknown, defaulting to 1000
[  230.727756][T12405] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.739881][T12405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.765919][T12405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.780152][ T6190] batadv0: left promiscuous mode
[  230.797318][ T6190] hsr_slave_0: left promiscuous mode
[  230.808913][ T6190] hsr_slave_1: left promiscuous mode
[  230.814923][ T6190] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  230.822405][ T6190] batman_adv: batadv0: Removing interface: batadv_slave_0
[  230.830241][ T6190] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  230.837692][ T6190] batman_adv: batadv0: Removing interface: batadv_slave_1
[  230.855338][ T6190] veth1_macvtap: left promiscuous mode
[  230.860966][ T6190] veth0_macvtap: left promiscuous mode
[  230.874414][T12438] loop2: detected capacity change from 0 to 2048
[  230.875953][ T6190] veth1_vlan: left promiscuous mode
[  230.886237][ T6190] veth0_vlan: left promiscuous mode
[  230.963062][T12438]  loop2: p1 < > p4
[  230.969199][T12438] loop2: p4 size 8388608 extends beyond EOD, truncated
[  231.021834][ T6190] team0 (unregistering): Port device team_slave_1 removed
[  231.041659][ T6190] team0 (unregistering): Port device team_slave_0 removed
[  231.107246][T12450] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3051'.
[  231.154481][T12456] loop3: detected capacity change from 0 to 2048
[  231.178204][T12455] netlink: 516 bytes leftover after parsing attributes in process `syz.2.3053'.
[  231.183664][T12458] loop4: detected capacity change from 0 to 2048
[  231.188945][T12405] hsr_slave_0: entered promiscuous mode
[  231.199998][T12405] hsr_slave_1: entered promiscuous mode
[  231.206163][T12405] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  231.213910][T12405] Cannot create hsr debugfs directory
[  231.355380][T12472] tipc: Started in network mode
[  231.360359][T12472] tipc: Node identity , cluster identity 4711
[  231.366526][T12472] tipc: Failed to obtain node identity
[  231.372061][T12472] tipc: Enabling of bearer <eth:caif0> rejected, failed to enable media
[  231.771120][T12491] SELinux: failed to load policy
[  231.818891][T12493] SELinux: failed to load policy
[  231.833270][T12405] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  231.842730][T12405] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  231.852376][T12405] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  231.861184][T12405] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  231.903705][T12405] 8021q: adding VLAN 0 to HW filter on device bond0
[  231.917589][T12405] 8021q: adding VLAN 0 to HW filter on device team0
[  231.925894][T12505] loop1: detected capacity change from 0 to 1024
[  231.927834][ T1402] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.939441][ T1402] bridge0: port 1(bridge_slave_0) entered forwarding state
[  231.950406][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.957582][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  231.994098][T12509] loop1: detected capacity change from 0 to 2048
[  232.031370][T12405] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.050037][T12517] loop1: detected capacity change from 0 to 1024
[  232.114332][T12405] veth0_vlan: entered promiscuous mode
[  232.126096][T12405] veth1_vlan: entered promiscuous mode
[  232.144521][T12405] veth0_macvtap: entered promiscuous mode
[  232.155009][T12405] veth1_macvtap: entered promiscuous mode
[  232.166971][T12405] batman_adv: batadv0: Interface activated: batadv_slave_0
[  232.180746][T12405] batman_adv: batadv0: Interface activated: batadv_slave_1
[  232.191208][T12405] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  232.200203][T12405] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  232.209083][T12405] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  232.218005][T12405] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.298806][   T29] kauditd_printk_skb: 241 callbacks suppressed
[  232.298825][   T29] audit: type=1326 audit(1749759680.086:8132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.349027][   T29] audit: type=1326 audit(1749759680.086:8133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.372805][   T29] audit: type=1326 audit(1749759680.096:8134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.396761][   T29] audit: type=1326 audit(1749759680.096:8135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.420445][   T29] audit: type=1326 audit(1749759680.096:8136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.444227][   T29] audit: type=1326 audit(1749759680.096:8137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.455459][T12534] loop0: detected capacity change from 0 to 1024
[  232.467817][   T29] audit: type=1326 audit(1749759680.096:8138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.497670][   T29] audit: type=1326 audit(1749759680.096:8139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.521348][   T29] audit: type=1326 audit(1749759680.096:8140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.545042][   T29] audit: type=1326 audit(1749759680.096:8141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12533 comm="syz.4.3072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  232.609586][T12543] netlink: 'syz.1.3075': attribute type 20 has an invalid length.
[  232.628904][T12545] loop4: detected capacity change from 0 to 1024
[  232.643071][T12550] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3076'.
[  232.681151][T12545] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  232.684381][T12554] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3078'.
[  232.700051][T12545] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3074'.
[  232.750657][T12545] netlink: 156 bytes leftover after parsing attributes in process `syz.4.3074'.
[  232.765754][T12545] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  232.778104][T12545] EXT4-fs (loop4): This should not happen!! Data will be lost
[  232.778104][T12545] 
[  232.788022][T12545] EXT4-fs (loop4): Total free blocks count 0
[  232.794104][T12545] EXT4-fs (loop4): Free/Dirty block details
[  232.800304][T12545] EXT4-fs (loop4): free_blocks=68451041280
[  232.806201][T12545] EXT4-fs (loop4): dirty_blocks=16
[  232.811497][T12545] EXT4-fs (loop4): Block reservation details
[  232.817564][T12545] EXT4-fs (loop4): i_reserved_data_blocks=1
[  232.828023][T12560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12560 comm=syz.1.3081
[  232.885521][T12545] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 9 with error 28
[  232.886093][T12564] SELinux: failed to load policy
[  232.898024][T12545] EXT4-fs (loop4): This should not happen!! Data will be lost
[  232.898024][T12545] 
[  233.005024][T12569] loop0: detected capacity change from 0 to 1024
[  233.087787][T12580] loop0: detected capacity change from 0 to 1024
[  233.135427][T12584] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3089'.
[  233.173777][T12586] loop0: detected capacity change from 0 to 2048
[  233.233462][T12591] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3091'.
[  233.242559][T12591] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3091'.
[  233.251784][T12591] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  233.270952][T12591] bond1: entered allmulticast mode
[  233.276913][T12591] 8021q: adding VLAN 0 to HW filter on device bond1
[  233.327671][T12595] loop1: detected capacity change from 0 to 1024
[  233.341162][T12595] EXT4-fs: Ignoring removed nobh option
[  233.353411][T12595] EXT4-fs: Ignoring removed bh option
[  233.426386][T12601] loop0: detected capacity change from 0 to 2048
[  233.453498][T12605] FAULT_INJECTION: forcing a failure.
[  233.453498][T12605] name failslab, interval 1, probability 0, space 0, times 0
[  233.466291][T12605] CPU: 0 UID: 0 PID: 12605 Comm: syz.4.3095 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  233.466322][T12605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  233.466338][T12605] Call Trace:
[  233.466346][T12605]  <TASK>
[  233.466355][T12605]  __dump_stack+0x1d/0x30
[  233.466436][T12605]  dump_stack_lvl+0xe8/0x140
[  233.466455][T12605]  dump_stack+0x15/0x1b
[  233.466472][T12605]  should_fail_ex+0x265/0x280
[  233.466535][T12605]  should_failslab+0x8c/0xb0
[  233.466576][T12605]  kmem_cache_alloc_noprof+0x50/0x310
[  233.466610][T12605]  ? security_file_alloc+0x32/0x100
[  233.466640][T12605]  security_file_alloc+0x32/0x100
[  233.466752][T12605]  init_file+0x5c/0x1d0
[  233.466785][T12605]  alloc_empty_file+0x8b/0x200
[  233.466819][T12605]  dentry_open+0x2d/0x90
[  233.466853][T12605]  vfs_open_tree+0x132/0x540
[  233.466940][T12605]  __x64_sys_open_tree+0x45/0xc0
[  233.466990][T12605]  x64_sys_call+0x28d3/0x2fb0
[  233.467018][T12605]  do_syscall_64+0xd2/0x200
[  233.467070][T12605]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  233.467100][T12605]  ? clear_bhb_loop+0x40/0x90
[  233.467122][T12605]  ? clear_bhb_loop+0x40/0x90
[  233.467165][T12605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.467192][T12605] RIP: 0033:0x7f05db97e929
[  233.467211][T12605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.467235][T12605] RSP: 002b:00007f05d9fe7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac
[  233.467309][T12605] RAX: ffffffffffffffda RBX: 00007f05dbba5fa0 RCX: 00007f05db97e929
[  233.467325][T12605] RDX: 0000000000081000 RSI: 0000200000000640 RDI: ffffffffffffff9c
[  233.467340][T12605] RBP: 00007f05d9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  233.467354][T12605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.467366][T12605] R13: 0000000000000000 R14: 00007f05dbba5fa0 R15: 00007ffe0ce75a48
[  233.467384][T12605]  </TASK>
[  233.687662][T12601] FAULT_INJECTION: forcing a failure.
[  233.687662][T12601] name failslab, interval 1, probability 0, space 0, times 0
[  233.700413][T12601] CPU: 0 UID: 0 PID: 12601 Comm: syz.0.3094 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  233.700478][T12601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  233.700495][T12601] Call Trace:
[  233.700503][T12601]  <TASK>
[  233.700514][T12601]  __dump_stack+0x1d/0x30
[  233.700575][T12601]  dump_stack_lvl+0xe8/0x140
[  233.700656][T12601]  dump_stack+0x15/0x1b
[  233.700678][T12601]  should_fail_ex+0x265/0x280
[  233.700725][T12601]  should_failslab+0x8c/0xb0
[  233.700831][T12601]  kmem_cache_alloc_noprof+0x50/0x310
[  233.700858][T12601]  ? __es_insert_extent+0x508/0xee0
[  233.700882][T12601]  __es_insert_extent+0x508/0xee0
[  233.700913][T12601]  ? __filemap_get_folio+0x466/0x650
[  233.700954][T12601]  ? folio_unlock+0xd9/0x120
[  233.701013][T12601]  ? __list_del_entry_valid_or_report+0x65/0x130
[  233.701045][T12601]  ext4_es_insert_extent+0x435/0x1c10
[  233.701150][T12601]  ? ext4_find_extent+0x16b/0x7a0
[  233.701250][T12601]  ext4_ext_map_blocks+0x172b/0x38a0
[  233.701300][T12601]  ? __account_obj_stock+0x211/0x350
[  233.701392][T12601]  ext4_map_query_blocks+0xa8/0x480
[  233.701426][T12601]  ext4_da_get_block_prep+0x25b/0xbb0
[  233.701454][T12601]  ? alloc_buffer_head+0x1c3/0x1f0
[  233.701551][T12601]  ? folio_alloc_buffers+0x2e5/0x310
[  233.701589][T12601]  ext4_block_write_begin+0x3d0/0xa60
[  233.701672][T12601]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  233.701776][T12601]  ext4_da_write_begin+0x42e/0x670
[  233.701822][T12601]  ? balance_dirty_pages_ratelimited_flags+0x40b/0x5e0
[  233.701861][T12601]  generic_perform_write+0x184/0x490
[  233.701905][T12601]  ext4_buffered_write_iter+0x1ee/0x3c0
[  233.701936][T12601]  ? ext4_file_write_iter+0xfe/0xf00
[  233.701969][T12601]  ext4_file_write_iter+0x383/0xf00
[  233.702102][T12601]  ? kstrtouint_from_user+0x9f/0xf0
[  233.702147][T12601]  ? avc_policy_seqno+0x15/0x30
[  233.702193][T12601]  ? selinux_file_permission+0x1e4/0x320
[  233.702235][T12601]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  233.702385][T12601]  vfs_write+0x49d/0x8e0
[  233.702416][T12601]  ksys_write+0xda/0x1a0
[  233.702442][T12601]  __x64_sys_write+0x40/0x50
[  233.702496][T12601]  x64_sys_call+0x2cdd/0x2fb0
[  233.702593][T12601]  do_syscall_64+0xd2/0x200
[  233.702622][T12601]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  233.702657][T12601]  ? clear_bhb_loop+0x40/0x90
[  233.702767][T12601]  ? clear_bhb_loop+0x40/0x90
[  233.702797][T12601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.702826][T12601] RIP: 0033:0x7f811138e929
[  233.702845][T12601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.702919][T12601] RSP: 002b:00007f810f9f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  233.702938][T12601] RAX: ffffffffffffffda RBX: 00007f81115b5fa0 RCX: 00007f811138e929
[  233.702950][T12601] RDX: 000000000208e24b RSI: 0000200000000040 RDI: 0000000000000004
[  233.702964][T12601] RBP: 00007f810f9f7090 R08: 0000000000000000 R09: 0000000000000000
[  233.702980][T12601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.702996][T12601] R13: 0000000000000000 R14: 00007f81115b5fa0 R15: 00007ffd96361818
[  233.703057][T12601]  </TASK>
[  234.343244][T12612] loop2: detected capacity change from 0 to 1024
[  234.370746][T12614] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3098'.
[  234.396540][   T51] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  234.431731][   T51] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  234.444297][   T51] EXT4-fs (loop0): This should not happen!! Data will be lost
[  234.444297][   T51] 
[  234.454147][   T51] EXT4-fs (loop0): Total free blocks count 0
[  234.460289][   T51] EXT4-fs (loop0): Free/Dirty block details
[  234.466268][   T51] EXT4-fs (loop0): free_blocks=2415919504
[  234.472143][   T51] EXT4-fs (loop0): dirty_blocks=4432
[  234.477477][   T51] EXT4-fs (loop0): Block reservation details
[  234.483526][   T51] EXT4-fs (loop0): i_reserved_data_blocks=277
[  234.506300][ T6190] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  234.519089][ T6190] EXT4-fs (loop0): This should not happen!! Data will be lost
[  234.519089][ T6190] 
[  234.569173][T12625] loop2: detected capacity change from 0 to 1024
[  234.597333][T12629] loop1: detected capacity change from 0 to 512
[  234.616531][T12629] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  234.646472][T12629] EXT4-fs (loop1): 1 truncate cleaned up
[  234.676228][T12638] loop3: detected capacity change from 0 to 512
[  234.684408][T12638] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  234.696246][T12638] EXT4-fs (loop3): 1 truncate cleaned up
[  234.749948][T12643] SELinux: failed to load policy
[  234.771183][T12641] loop2: detected capacity change from 0 to 1024
[  234.795861][T12647] loop1: detected capacity change from 0 to 1024
[  234.832509][T12653] FAULT_INJECTION: forcing a failure.
[  234.832509][T12653] name failslab, interval 1, probability 0, space 0, times 0
[  234.845307][T12653] CPU: 1 UID: 0 PID: 12653 Comm: syz.4.3112 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  234.845371][T12653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.845384][T12653] Call Trace:
[  234.845457][T12653]  <TASK>
[  234.845467][T12653]  __dump_stack+0x1d/0x30
[  234.845494][T12653]  dump_stack_lvl+0xe8/0x140
[  234.845520][T12653]  dump_stack+0x15/0x1b
[  234.845542][T12653]  should_fail_ex+0x265/0x280
[  234.845629][T12653]  should_failslab+0x8c/0xb0
[  234.845690][T12653]  kmem_cache_alloc_node_noprof+0x57/0x320
[  234.845724][T12653]  ? __alloc_skb+0x101/0x320
[  234.845768][T12653]  __alloc_skb+0x101/0x320
[  234.845834][T12653]  ? trace_event_raw_event_bpf_trace_printk+0xe6/0x160
[  234.845874][T12653]  tipc_msg_create+0x47/0x230
[  234.845911][T12653]  ? bpf_bprintf_cleanup+0x75/0xb0
[  234.845956][T12653]  ? bpf_trace_printk+0xcf/0x1c0
[  234.846018][T12653]  tipc_group_create_event+0xf4/0x310
[  234.846063][T12653]  ? __rcu_read_unlock+0x4f/0x70
[  234.846092][T12653]  tipc_group_proto_rcv+0xcda/0xd10
[  234.846152][T12653]  tipc_sk_proto_rcv+0x140/0xb00
[  234.846184][T12653]  ? __account_obj_stock+0x211/0x350
[  234.846215][T12653]  tipc_sk_filter_rcv+0x1812/0x1930
[  234.846284][T12653]  ? css_rstat_updated+0xcd/0x5b0
[  234.846316][T12653]  ? xas_load+0x413/0x430
[  234.846340][T12653]  ? mod_memcg_lruvec_state+0x20e/0x2e0
[  234.846375][T12653]  ? __rcu_read_unlock+0x4f/0x70
[  234.846403][T12653]  ? __account_obj_stock+0x2cc/0x350
[  234.846445][T12653]  ? bcmp+0x5e/0x90
[  234.846537][T12653]  ? __rcu_read_unlock+0x4f/0x70
[  234.846565][T12653]  tipc_sk_rcv+0x4dc/0x1850
[  234.846588][T12653]  ? __rb_reserve_next+0x43e/0x6f0
[  234.846637][T12653]  ? kmalloc_reserve+0x84/0x190
[  234.846749][T12653]  tipc_node_xmit+0x18b/0x890
[  234.846783][T12653]  ? __slab_free+0x77/0x270
[  234.846826][T12653]  tipc_node_distr_xmit+0x1a5/0x200
[  234.846881][T12653]  tipc_group_delete+0x236/0x290
[  234.846925][T12653]  tipc_sk_leave+0xa9/0x270
[  234.846961][T12653]  tipc_release+0x83/0xd10
[  234.847055][T12653]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  234.847082][T12653]  ? locks_remove_posix+0x1b4/0x300
[  234.847121][T12653]  ? vfs_write+0x75e/0x8e0
[  234.847147][T12653]  sock_close+0x68/0x150
[  234.847197][T12653]  ? __pfx_sock_close+0x10/0x10
[  234.847229][T12653]  __fput+0x29b/0x650
[  234.847266][T12653]  fput_close_sync+0x6e/0x120
[  234.847301][T12653]  __x64_sys_close+0x56/0xf0
[  234.847368][T12653]  x64_sys_call+0x2747/0x2fb0
[  234.847389][T12653]  do_syscall_64+0xd2/0x200
[  234.847415][T12653]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  234.847448][T12653]  ? clear_bhb_loop+0x40/0x90
[  234.847525][T12653]  ? clear_bhb_loop+0x40/0x90
[  234.847553][T12653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.847581][T12653] RIP: 0033:0x7f05db97e929
[  234.847599][T12653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.847628][T12653] RSP: 002b:00007f05d9fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  234.847722][T12653] RAX: ffffffffffffffda RBX: 00007f05dbba5fa0 RCX: 00007f05db97e929
[  234.847734][T12653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  234.847746][T12653] RBP: 00007f05d9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  234.847761][T12653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  234.847854][T12653] R13: 0000000000000000 R14: 00007f05dbba5fa0 R15: 00007ffe0ce75a48
[  234.847877][T12653]  </TASK>
[  235.231379][T12658] FAULT_INJECTION: forcing a failure.
[  235.231379][T12658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.244565][T12658] CPU: 0 UID: 0 PID: 12658 Comm: syz.4.3115 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  235.244650][T12658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  235.244666][T12658] Call Trace:
[  235.244675][T12658]  <TASK>
[  235.244685][T12658]  __dump_stack+0x1d/0x30
[  235.244785][T12658]  dump_stack_lvl+0xe8/0x140
[  235.244816][T12658]  dump_stack+0x15/0x1b
[  235.244837][T12658]  should_fail_ex+0x265/0x280
[  235.244882][T12658]  should_fail+0xb/0x20
[  235.244931][T12658]  should_fail_usercopy+0x1a/0x20
[  235.244956][T12658]  _copy_from_user+0x1c/0xb0
[  235.244979][T12658]  set_selection_user+0x4a/0xe0
[  235.245077][T12658]  tioclinux+0x347/0x460
[  235.245114][T12658]  vt_ioctl+0x75f/0x1880
[  235.245173][T12658]  ? tty_jobctrl_ioctl+0x29e/0x810
[  235.245201][T12658]  tty_ioctl+0x7de/0xb80
[  235.245243][T12658]  ? __pfx_tty_ioctl+0x10/0x10
[  235.245299][T12658]  __se_sys_ioctl+0xce/0x140
[  235.245331][T12658]  __x64_sys_ioctl+0x43/0x50
[  235.245432][T12658]  x64_sys_call+0x19a8/0x2fb0
[  235.245458][T12658]  do_syscall_64+0xd2/0x200
[  235.245481][T12658]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  235.245522][T12658]  ? clear_bhb_loop+0x40/0x90
[  235.245618][T12658]  ? clear_bhb_loop+0x40/0x90
[  235.245645][T12658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.245672][T12658] RIP: 0033:0x7f05db97e929
[  235.245691][T12658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.245714][T12658] RSP: 002b:00007f05d9fe7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  235.245819][T12658] RAX: ffffffffffffffda RBX: 00007f05dbba5fa0 RCX: 00007f05db97e929
[  235.245833][T12658] RDX: 00002000000000c0 RSI: 000000000000541c RDI: 0000000000000004
[  235.245846][T12658] RBP: 00007f05d9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  235.245861][T12658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.245877][T12658] R13: 0000000000000000 R14: 00007f05dbba5fa0 R15: 00007ffe0ce75a48
[  235.245902][T12658]  </TASK>
[  235.507739][T12666] loop2: detected capacity change from 0 to 2048
[  235.507830][T12668] loop4: detected capacity change from 0 to 512
[  235.514438][T12664] loop0: detected capacity change from 0 to 2048
[  235.554920][T12673] loop1: detected capacity change from 0 to 512
[  235.561453][T12668] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  235.580333][T12673] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  235.602243][T12666]  loop2: p1 < > p4
[  235.606769][T12666] loop2: p4 size 8388608 extends beyond EOD, truncated
[  235.620921][T12673] EXT4-fs (loop1): 1 truncate cleaned up
[  235.633120][T12668] EXT4-fs (loop4): 1 truncate cleaned up
[  235.690391][T12679] netlink: 'syz.0.3122': attribute type 10 has an invalid length.
[  235.698353][T12679] ipvlan0: entered allmulticast mode
[  235.704029][T12679] veth0_vlan: entered allmulticast mode
[  235.726492][T12679] team0: Device ipvlan0 failed to register rx_handler
[  235.781960][T12685] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3124'.
[  235.798652][T12679] loop0: detected capacity change from 0 to 2048
[  235.824773][T12685] ipvlan2: entered promiscuous mode
[  235.908999][T12699] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3129'.
[  235.923242][T12696] vhci_hcd: invalid port number 96
[  235.928486][T12696] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  235.966432][T12703] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12703 comm=syz.3.3130
[  236.086521][T12699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3129'.
[  236.095502][T12699] netlink: 2 bytes leftover after parsing attributes in process `syz.2.3129'.
[  236.110891][T12699] loop2: detected capacity change from 0 to 1024
[  236.185391][T12699] ext4 filesystem being mounted at /566/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.249961][T12699] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.3129: lblock 3 mapped to illegal pblock 3 (length 1)
[  236.275846][T12699] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  236.288223][T12699] EXT4-fs (loop2): This should not happen!! Data will be lost
[  236.288223][T12699] 
[  236.374528][T12716] loop0: detected capacity change from 0 to 2048
[  236.412610][T12720] loop2: detected capacity change from 0 to 2048
[  236.419933][T12716]  loop0: p1 < > p4
[  236.425855][T12716] loop0: p4 size 8388608 extends beyond EOD, truncated
[  236.427487][T12722] loop3: detected capacity change from 0 to 1024
[  236.444148][T12725] FAULT_INJECTION: forcing a failure.
[  236.444148][T12725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.457417][T12725] CPU: 1 UID: 0 PID: 12725 Comm: syz.4.3136 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  236.457460][T12725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  236.457474][T12725] Call Trace:
[  236.457482][T12725]  <TASK>
[  236.457499][T12725]  __dump_stack+0x1d/0x30
[  236.457525][T12725]  dump_stack_lvl+0xe8/0x140
[  236.457546][T12725]  dump_stack+0x15/0x1b
[  236.457561][T12725]  should_fail_ex+0x265/0x280
[  236.457634][T12725]  should_fail+0xb/0x20
[  236.457669][T12725]  should_fail_usercopy+0x1a/0x20
[  236.457689][T12725]  _copy_from_user+0x1c/0xb0
[  236.457719][T12725]  ___sys_sendmsg+0xc1/0x1d0
[  236.457763][T12725]  __x64_sys_sendmsg+0xd4/0x160
[  236.457862][T12725]  x64_sys_call+0x2999/0x2fb0
[  236.457888][T12725]  do_syscall_64+0xd2/0x200
[  236.457949][T12725]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  236.457979][T12725]  ? clear_bhb_loop+0x40/0x90
[  236.458004][T12725]  ? clear_bhb_loop+0x40/0x90
[  236.458062][T12725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.458083][T12725] RIP: 0033:0x7f05db97e929
[  236.458101][T12725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.458194][T12725] RSP: 002b:00007f05d9fe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  236.458217][T12725] RAX: ffffffffffffffda RBX: 00007f05dbba5fa0 RCX: 00007f05db97e929
[  236.458234][T12725] RDX: 0000000004048010 RSI: 0000200000000080 RDI: 0000000000000003
[  236.458247][T12725] RBP: 00007f05d9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  236.458323][T12725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.458338][T12725] R13: 0000000000000000 R14: 00007f05dbba5fa0 R15: 00007ffe0ce75a48
[  236.458436][T12725]  </TASK>
[  236.714195][T12736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12736 comm=syz.2.3141
[  236.727096][T12737] loop1: detected capacity change from 0 to 1024
[  236.737775][T12737] EXT4-fs: Ignoring removed nobh option
[  236.744588][T12737] EXT4-fs: Ignoring removed bh option
[  236.757949][T12741] loop0: detected capacity change from 0 to 1024
[  236.772739][T12735] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3139'.
[  236.807313][T12745] netlink: 'syz.3.3143': attribute type 10 has an invalid length.
[  236.830075][T12745] team0: Device ipvlan0 failed to register rx_handler
[  236.852189][T12745] loop3: detected capacity change from 0 to 2048
[  236.928514][T12749] SELinux: failed to load policy
[  237.072315][T12762] loop2: detected capacity change from 0 to 512
[  237.087526][T12762] EXT4-fs: Mount option(s) incompatible with ext3
[  237.144482][T12771] loop2: detected capacity change from 0 to 2048
[  237.162221][T12771]  loop2: p1 < > p4
[  237.174075][T12774] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12774 comm=syz.3.3152
[  237.178725][T12771] loop2: p4 size 8388608 extends beyond EOD, truncated
[  237.195144][T12775] loop4: detected capacity change from 0 to 1024
[  237.283259][T12730] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.3137: Allocating blocks 497-513 which overlap fs metadata
[  237.290811][T12779] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3155'.
[  237.383429][   T29] kauditd_printk_skb: 179 callbacks suppressed
[  237.383449][   T29] audit: type=1326 audit(1749759685.176:8321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.476163][T12795] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12795 comm=syz.1.3158
[  237.489537][   T29] audit: type=1326 audit(1749759685.176:8322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.513148][   T29] audit: type=1326 audit(1749759685.176:8323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.536833][   T29] audit: type=1326 audit(1749759685.176:8324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.560470][   T29] audit: type=1326 audit(1749759685.176:8325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.584316][   T29] audit: type=1326 audit(1749759685.176:8326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.607883][   T29] audit: type=1326 audit(1749759685.176:8327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.631616][   T29] audit: type=1326 audit(1749759685.176:8328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.655255][   T29] audit: type=1326 audit(1749759685.176:8329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.678813][   T29] audit: type=1326 audit(1749759685.176:8330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12787 comm="syz.4.3159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db97e929 code=0x7ffc0000
[  237.823132][T12806] netlink: 'syz.2.3163': attribute type 10 has an invalid length.
[  237.840599][T12806] team0: Device ipvlan0 failed to register rx_handler
[  237.859478][T12809] loop0: detected capacity change from 0 to 1024
[  237.880774][T12806] loop2: detected capacity change from 0 to 2048
[  237.946382][T12815] loop4: detected capacity change from 0 to 512
[  237.977914][T12817] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  238.021369][T12820] loop1: detected capacity change from 0 to 1024
[  238.085022][T12820] EXT4-fs: Ignoring removed nobh option
[  238.105416][T12820] EXT4-fs: Ignoring removed bh option
[  238.167932][T12815] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.707285][T12839] loop3: detected capacity change from 0 to 512
[  238.731617][T12839] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  238.741233][T12839] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  238.786118][T12839] EXT4-fs (loop3): orphan cleanup on readonly fs
[  238.810526][T12839] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.3174: bad orphan inode 15
[  238.843560][T12839] ext4_test_bit(bit=14, block=18) = 1
[  238.849063][T12839] is_bad_inode(inode)=0
[  238.853356][T12839] NEXT_ORPHAN(inode)=1023
[  238.857704][T12839] max_ino=32
[  238.860922][T12839] i_nlink=0
[  238.903934][T12843] FAULT_INJECTION: forcing a failure.
[  238.903934][T12843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  238.917210][T12843] CPU: 0 UID: 0 PID: 12843 Comm: syz.0.3171 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  238.917247][T12843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  238.917260][T12843] Call Trace:
[  238.917266][T12843]  <TASK>
[  238.917273][T12843]  __dump_stack+0x1d/0x30
[  238.917386][T12843]  dump_stack_lvl+0xe8/0x140
[  238.917409][T12843]  dump_stack+0x15/0x1b
[  238.917430][T12843]  should_fail_ex+0x265/0x280
[  238.917475][T12843]  should_fail+0xb/0x20
[  238.917513][T12843]  should_fail_usercopy+0x1a/0x20
[  238.917637][T12843]  _copy_from_iter+0xcf/0xe40
[  238.917660][T12843]  ? mntput+0x4b/0x80
[  238.917694][T12843]  ? terminate_walk+0x27f/0x2a0
[  238.917719][T12843]  tun_get_user+0x2e7/0x2500
[  238.917754][T12843]  ? ref_tracker_alloc+0x1f2/0x2f0
[  238.917808][T12843]  ? selinux_file_permission+0x1e4/0x320
[  238.917835][T12843]  tun_chr_write_iter+0x15e/0x210
[  238.917895][T12843]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  238.917929][T12843]  vfs_write+0x49d/0x8e0
[  238.917996][T12843]  ksys_write+0xda/0x1a0
[  238.918018][T12843]  __x64_sys_write+0x40/0x50
[  238.918044][T12843]  x64_sys_call+0x2cdd/0x2fb0
[  238.918071][T12843]  do_syscall_64+0xd2/0x200
[  238.918166][T12843]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  238.918192][T12843]  ? clear_bhb_loop+0x40/0x90
[  238.918247][T12843]  ? clear_bhb_loop+0x40/0x90
[  238.918269][T12843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.918289][T12843] RIP: 0033:0x7f811138e929
[  238.918305][T12843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.918329][T12843] RSP: 002b:00007f810f9f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  238.918352][T12843] RAX: ffffffffffffffda RBX: 00007f81115b5fa0 RCX: 00007f811138e929
[  238.918371][T12843] RDX: 00000000000000d2 RSI: 0000200000000440 RDI: 0000000000000003
[  238.918383][T12843] RBP: 00007f810f9f7090 R08: 0000000000000000 R09: 0000000000000000
[  238.918394][T12843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.918406][T12843] R13: 0000000000000000 R14: 00007f81115b5fa0 R15: 00007ffd96361818
[  238.918426][T12843]  </TASK>
[  239.151013][T12839] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #15: comm syz.3.3174: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  239.172107][T12839] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  239.328000][T12858] loop1: detected capacity change from 0 to 512
[  239.340623][T12858] netlink: 'syz.1.3176': attribute type 4 has an invalid length.
[  239.507922][T12869] loop3: detected capacity change from 0 to 2048
[  239.610193][T12878] loop2: detected capacity change from 0 to 1024
[  239.617225][T12878] EXT4-fs: Ignoring removed nobh option
[  239.624261][T12878] EXT4-fs: Ignoring removed bh option
[  239.766562][T12883] loop4: detected capacity change from 0 to 512
[  239.806261][T12883] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.182091][T12888] __nla_validate_parse: 3 callbacks suppressed
[  240.182171][T12888] netlink: 516 bytes leftover after parsing attributes in process `syz.1.3189'.
[  240.410491][T12890] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  240.437481][T12890] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3190'.
[  240.630154][T12895] netlink: 'syz.3.3191': attribute type 21 has an invalid length.
[  240.713563][T12914] loop0: detected capacity change from 0 to 2048
[  240.786737][T12915] loop2: detected capacity change from 0 to 512
[  240.905842][T12915] ext4 filesystem being mounted at /579/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.928103][T12914]  loop0: p1 < > p4
[  240.956087][T12914] loop0: p4 size 8388608 extends beyond EOD, truncated
[  242.694016][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  242.694031][   T29] audit: type=1400 audit(1749759690.486:8440): avc:  denied  { ioctl } for  pid=12919 comm="syz.0.3200" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  242.908964][   T29] audit: type=1400 audit(1749759690.696:8441): avc:  denied  { ioctl } for  pid=12922 comm="syz.3.3201" path="socket:[33097]" dev="sockfs" ino=33097 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  243.021216][T12932] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3204'.
[  243.030522][T12932] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3204'.
[  243.050593][T12932] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  243.063351][T12930] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3202'.
[  243.084857][T12939] SELinux: failed to load policy
[  243.108442][T12932] bond2: entered allmulticast mode
[  243.132301][T12932] 8021q: adding VLAN 0 to HW filter on device bond2
[  243.146089][T12946] netlink: 'syz.2.3209': attribute type 10 has an invalid length.
[  243.173937][T12946] team0: Device ipvlan0 failed to register rx_handler
[  243.206909][T12947] loop2: detected capacity change from 0 to 2048
[  243.238163][T12949] loop1: detected capacity change from 0 to 2048
[  243.257494][T12951] loop3: detected capacity change from 0 to 1024
[  243.298029][T12955] loop0: detected capacity change from 0 to 1024
[  243.319964][T12949]  loop1: p1 < > p4
[  243.327696][T12949] loop1: p4 size 8388608 extends beyond EOD, truncated
[  243.390408][T12961] loop3: detected capacity change from 0 to 1024
[  243.438151][T12963] loop0: detected capacity change from 0 to 2048
[  243.486180][T12963]  loop0: p1 < > p4
[  243.509652][T12963] loop0: p4 size 8388608 extends beyond EOD, truncated
[  243.644443][T12975] SELinux: failed to load policy
[  243.691478][   T29] audit: type=1400 audit(1749759691.476:8442): avc:  denied  { write } for  pid=12983 comm="syz.3.3223" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  243.715080][   T29] audit: type=1400 audit(1749759691.476:8443): avc:  denied  { open } for  pid=12983 comm="syz.3.3223" path="/dev/input/event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  243.781372][T12982] netlink: 'syz.2.3222': attribute type 10 has an invalid length.
[  243.790491][   T29] audit: type=1326 audit(1749759691.536:8444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12983 comm="syz.3.3223" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff03cb7e929 code=0x0
[  243.802957][T12982] team0: Device ipvlan0 failed to register rx_handler
[  243.857353][   T29] audit: type=1400 audit(1749759691.636:8445): avc:  denied  { create } for  pid=12983 comm="syz.3.3223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  243.887444][T12982] loop2: detected capacity change from 0 to 2048
[  243.931559][   T29] audit: type=1400 audit(1749759691.696:8446): avc:  denied  { shutdown } for  pid=12983 comm="syz.3.3223" laddr=::1 lport=33991 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  243.953296][   T29] audit: type=1400 audit(1749759691.696:8447): avc:  denied  { cpu } for  pid=12983 comm="syz.3.3223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  244.347559][T12995] loop2: detected capacity change from 0 to 1024
[  244.361698][   T29] audit: type=1400 audit(1749759692.146:8448): avc:  denied  { write } for  pid=12997 comm="syz.4.3228" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  244.367084][T12999] loop4: detected capacity change from 0 to 512
[  244.386200][   T29] audit: type=1400 audit(1749759692.146:8449): avc:  denied  { read } for  pid=12997 comm="syz.4.3228" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  244.395412][T12999] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  244.427654][T12998] netlink: 'syz.1.3227': attribute type 10 has an invalid length.
[  244.437493][T13003] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3229'.
[  244.447043][T12998] team0: Device ipvlan0 failed to register rx_handler
[  244.468674][T12998] loop1: detected capacity change from 0 to 2048
[  244.476013][T12999] EXT4-fs (loop4): 1 truncate cleaned up
[  244.559847][T13006] hub 1-0:1.0: USB hub found
[  244.597107][T13006] hub 1-0:1.0: 8 ports detected
[  244.725943][T13016] SELinux: failed to load policy
[  244.884645][T13021] loop2: detected capacity change from 0 to 2048
[  245.677721][T13038] loop0: detected capacity change from 0 to 512
[  245.717624][T12999] syz.4.3228 (12999) used greatest stack depth: 6040 bytes left
[  245.768615][ T6490] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  245.798421][T13038] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.829524][ T6490] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  245.842074][ T6490] EXT4-fs (loop2): This should not happen!! Data will be lost
[  245.842074][ T6490] 
[  245.851898][ T6490] EXT4-fs (loop2): Total free blocks count 0
[  245.858008][ T6490] EXT4-fs (loop2): Free/Dirty block details
[  245.864043][ T6490] EXT4-fs (loop2): free_blocks=2415919504
[  245.869812][ T6490] EXT4-fs (loop2): dirty_blocks=10640
[  245.875247][ T6490] EXT4-fs (loop2): Block reservation details
[  245.879425][T13042] loop4: detected capacity change from 0 to 2048
[  245.881233][ T6490] EXT4-fs (loop2): i_reserved_data_blocks=665
[  245.980232][T13048] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3242'.
[  245.982178][ T6490] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  246.002017][ T6490] EXT4-fs (loop2): This should not happen!! Data will be lost
[  246.002017][ T6490] 
[  246.220701][T13058] loop3: detected capacity change from 0 to 1024
[  246.252878][T13062] bond5: entered promiscuous mode
[  246.258052][T13062] bond5: entered allmulticast mode
[  246.264105][T13062] 8021q: adding VLAN 0 to HW filter on device bond5
[  246.289144][T13062] bond5 (unregistering): Released all slaves
[  246.464655][T13072] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3251'.
[  246.473856][T13072] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3251'.
[  246.511711][T13072] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  246.537051][T13072] bond5: entered allmulticast mode
[  246.545949][T13072] 8021q: adding VLAN 0 to HW filter on device bond5
[  246.702506][T13078] loop2: detected capacity change from 0 to 1024
[  246.713266][T13078] EXT4-fs: Ignoring removed nobh option
[  246.718950][T13078] EXT4-fs: Ignoring removed bh option
[  246.852197][T13084] loop2: detected capacity change from 0 to 2048
[  247.185117][T13097] loop4: detected capacity change from 0 to 1024
[  247.277107][T13110] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3263'.
[  247.374831][T13122] loop4: detected capacity change from 0 to 1024
[  247.384972][T13100] lo speed is unknown, defaulting to 1000
[  247.411852][T13122] EXT4-fs: Ignoring removed nobh option
[  247.417553][T13122] EXT4-fs: Ignoring removed bh option
[  247.441243][T13126] loop1: detected capacity change from 0 to 2048
[  247.452279][T13128] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3269'.
[  247.461283][T13128] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3269'.
[  247.481963][T13126]  loop1: p1 < > p4
[  247.489137][T13126] loop1: p4 size 8388608 extends beyond EOD, truncated
[  247.561559][T13100] chnl_net:caif_netlink_parms(): no params data found
[  247.606477][T13138] FAULT_INJECTION: forcing a failure.
[  247.606477][T13138] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.619705][T13138] CPU: 0 UID: 0 PID: 13138 Comm: syz.3.3272 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  247.619745][T13138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.619771][T13138] Call Trace:
[  247.619787][T13138]  <TASK>
[  247.619798][T13138]  __dump_stack+0x1d/0x30
[  247.619923][T13138]  dump_stack_lvl+0xe8/0x140
[  247.619948][T13138]  dump_stack+0x15/0x1b
[  247.620025][T13138]  should_fail_ex+0x265/0x280
[  247.620070][T13138]  should_fail+0xb/0x20
[  247.620175][T13138]  should_fail_usercopy+0x1a/0x20
[  247.620205][T13138]  _copy_to_user+0x20/0xa0
[  247.620303][T13138]  simple_read_from_buffer+0xb5/0x130
[  247.620384][T13138]  proc_fail_nth_read+0x100/0x140
[  247.620413][T13138]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  247.620443][T13138]  vfs_read+0x19d/0x6f0
[  247.620466][T13138]  ? __rcu_read_unlock+0x4f/0x70
[  247.620556][T13138]  ? __rcu_read_unlock+0x4f/0x70
[  247.620578][T13138]  ? __fget_files+0x184/0x1c0
[  247.620623][T13138]  ksys_read+0xda/0x1a0
[  247.620649][T13138]  __x64_sys_read+0x40/0x50
[  247.620675][T13138]  x64_sys_call+0x2d77/0x2fb0
[  247.620710][T13138]  do_syscall_64+0xd2/0x200
[  247.620739][T13138]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  247.620816][T13138]  ? clear_bhb_loop+0x40/0x90
[  247.620843][T13138]  ? clear_bhb_loop+0x40/0x90
[  247.620873][T13138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.620957][T13138] RIP: 0033:0x7ff03cb7d33c
[  247.621047][T13138] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  247.621073][T13138] RSP: 002b:00007ff03b1e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  247.621097][T13138] RAX: ffffffffffffffda RBX: 00007ff03cda5fa0 RCX: 00007ff03cb7d33c
[  247.621109][T13138] RDX: 000000000000000f RSI: 00007ff03b1e70a0 RDI: 0000000000000006
[  247.621156][T13138] RBP: 00007ff03b1e7090 R08: 0000000000000000 R09: 0000000000000000
[  247.621172][T13138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.621188][T13138] R13: 0000000000000000 R14: 00007ff03cda5fa0 R15: 00007ffe040e2618
[  247.621212][T13138]  </TASK>
[  247.869695][  T384] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  247.870939][   T29] kauditd_printk_skb: 100 callbacks suppressed
[  247.870957][   T29] audit: type=1326 audit(1749759695.646:8550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  247.909792][   T29] audit: type=1326 audit(1749759695.646:8551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  247.934068][   T29] audit: type=1326 audit(1749759695.646:8552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  247.957770][   T29] audit: type=1326 audit(1749759695.646:8553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  247.981424][   T29] audit: type=1326 audit(1749759695.646:8554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.005078][   T29] audit: type=1326 audit(1749759695.646:8555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.028686][   T29] audit: type=1326 audit(1749759695.646:8556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.052208][   T29] audit: type=1326 audit(1749759695.646:8557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.075816][   T29] audit: type=1326 audit(1749759695.646:8558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.099347][   T29] audit: type=1326 audit(1749759695.646:8559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13139 comm="syz.3.3273" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff03cb7e929 code=0x7ffc0000
[  248.209691][  T384] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.247887][T13100] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.251370][T13151] loop4: detected capacity change from 0 to 1024
[  248.255081][T13100] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.308691][T13100] bridge_slave_0: entered allmulticast mode
[  248.315296][T13100] bridge_slave_0: entered promiscuous mode
[  248.324414][  T384] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.345371][T13100] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.345390][T13149] SELinux: syz.3.3275 (13149) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  248.366387][T13100] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.373804][T13100] bridge_slave_1: entered allmulticast mode
[  248.385116][T13100] bridge_slave_1: entered promiscuous mode
[  248.395573][  T384] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.431961][T13100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  248.462155][T13100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  248.502976][T13100] team0: Port device team_slave_0 added
[  248.509874][T13100] team0: Port device team_slave_1 added
[  248.540698][T13168] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3280'.
[  248.549819][T13168] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3280'.
[  248.635444][  T384] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  248.662427][  T384] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  248.683795][  T384] bond0 (unregistering): Released all slaves
[  248.702666][  T384] bond1 (unregistering): Released all slaves
[  248.711312][  T384] bond2 (unregistering): Released all slaves
[  248.750429][  T384] bond3 (unregistering): Released all slaves
[  248.812225][  T384] bond4 (unregistering): Released all slaves
[  248.821341][  T384] bond5 (unregistering): Released all slaves
[  248.833955][T13100] batman_adv: batadv0: Adding interface: batadv_slave_0
[  248.841026][T13100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  248.867117][T13100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  248.912989][T13100] batman_adv: batadv0: Adding interface: batadv_slave_1
[  248.920117][T13100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  248.946154][T13100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  248.955855][T13175] loop3: detected capacity change from 0 to 2048
[  248.980424][  T384] tipc: Disabling bearer <udp:syz0>
[  248.985723][  T384] tipc: Disabling bearer <eth:team0>
[  248.993554][  T384] tipc: Left network mode
[  249.008726][T13100] hsr_slave_0: entered promiscuous mode
[  249.023663][T13100] hsr_slave_1: entered promiscuous mode
[  249.045355][T13100] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  249.065975][T13100] Cannot create hsr debugfs directory
[  249.075393][  T384] hsr_slave_0: left promiscuous mode
[  249.104563][  T384] hsr_slave_1: left promiscuous mode
[  249.110278][  T384] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  249.117791][  T384] batman_adv: batadv0: Removing interface: batadv_slave_0
[  249.152126][  T384] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  249.159634][  T384] batman_adv: batadv0: Removing interface: batadv_slave_1
[  249.241789][  T384] veth1_macvtap: left promiscuous mode
[  249.247390][  T384] veth0_macvtap: left promiscuous mode
[  249.258472][  T384] veth1_vlan: left promiscuous mode
[  249.269357][  T384] veth0_vlan: left promiscuous mode
[  249.289340][T13190] loop3: detected capacity change from 0 to 1024
[  249.296896][T13190] EXT4-fs: Ignoring removed nobh option
[  249.302828][T13190] EXT4-fs: Ignoring removed bh option
[  249.349657][T13190] EXT4-fs mount: 135 callbacks suppressed
[  249.349692][T13190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.374157][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  249.408417][T13195] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13195 comm=syz.0.3287
[  249.421334][  T384] team0 (unregistering): Port device team_slave_1 removed
[  249.438005][  T384] team0 (unregistering): Port device team_slave_0 removed
[  249.487279][   T23] lo speed is unknown, defaulting to 1000
[  249.493171][   T23] infiniband syz0: ib_query_port failed (-19)
[  249.863656][T13100] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  249.874637][T13100] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  249.885888][T13203] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  249.895057][T13203] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  249.916857][T13203] netlink: 'syz.1.3289': attribute type 12 has an invalid length.
[  249.924792][T13203] netlink: 'syz.1.3289': attribute type 29 has an invalid length.
[  249.932672][T13203] netlink: 148 bytes leftover after parsing attributes in process `syz.1.3289'.
[  249.941790][T13203] netlink: 'syz.1.3289': attribute type 1 has an invalid length.
[  249.949635][T13203] netlink: 'syz.1.3289': attribute type 2 has an invalid length.
[  249.952868][T13212] loop0: detected capacity change from 0 to 1024
[  249.957519][T13203] netlink: 39 bytes leftover after parsing attributes in process `syz.1.3289'.
[  249.972995][T13100] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  249.973699][T13213] netlink: 'syz.1.3289': attribute type 39 has an invalid length.
[  249.998094][T13100] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  250.001222][T13212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.006686][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.063072][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.095289][T13100] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.103131][T13223] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  250.107143][T13100] 8021q: adding VLAN 0 to HW filter on device team0
[  250.131323][ T6490] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.138491][ T6490] bridge0: port 1(bridge_slave_0) entered forwarding state
[  250.148119][ T6490] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.155334][ T6490] bridge0: port 2(bridge_slave_1) entered forwarding state
[  250.190604][T13100] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  250.201211][T13100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  250.269204][T13227] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  250.310627][T13227] bond3: entered allmulticast mode
[  250.316661][T13227] 8021q: adding VLAN 0 to HW filter on device bond3
[  250.333829][T13100] 8021q: adding VLAN 0 to HW filter on device batadv0
[  250.559620][T13249] loop3: detected capacity change from 0 to 512
[  250.566047][T13100] veth0_vlan: entered promiscuous mode
[  250.584253][T13100] veth1_vlan: entered promiscuous mode
[  250.613449][T13100] veth0_macvtap: entered promiscuous mode
[  250.636562][T13100] veth1_macvtap: entered promiscuous mode
[  250.665765][T13100] batman_adv: batadv0: Interface activated: batadv_slave_0
[  250.693238][T13100] batman_adv: batadv0: Interface activated: batadv_slave_1
[  250.714796][T13100] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.723672][T13100] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.732440][T13100] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.741223][T13100] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  250.824100][T13249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  250.883034][T13249] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.201459][T13269] netlink: 'syz.0.3312': attribute type 10 has an invalid length.
[  251.220693][T13269] team0: Device ipvlan0 failed to register rx_handler
[  251.295304][T13272] loop0: detected capacity change from 0 to 2048
[  251.333675][T13272] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.427948][T13280] loop4: detected capacity change from 0 to 1024
[  251.438048][T13280] EXT4-fs: Ignoring removed nobh option
[  251.444045][T13280] EXT4-fs: Ignoring removed bh option
[  251.583280][T13280] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.704079][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.787739][T13286] loop0: detected capacity change from 0 to 1024
[  251.804776][T13284] loop2: detected capacity change from 0 to 2048
[  251.811465][T13286] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.845608][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.872103][T13284]  loop2: p1 < > p4
[  251.876459][T13284] loop2: p4 size 8388608 extends beyond EOD, truncated
[  251.957281][T13292] SELinux: failed to load policy
[  252.025233][T13300] netlink: 'syz.2.3311': attribute type 1 has an invalid length.
[  252.128510][T13304] __nla_validate_parse: 3 callbacks suppressed
[  252.128546][T13304] netlink: 160 bytes leftover after parsing attributes in process `syz.0.3314'.
[  252.144219][T13304] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  252.191674][T13309] loop2: detected capacity change from 0 to 2048
[  252.219810][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.254672][T13309]  loop2: p1 < > p4
[  252.264331][T13309] loop2: p4 size 8388608 extends beyond EOD, truncated
[  252.273477][T13313] netlink: 'syz.4.3317': attribute type 10 has an invalid length.
[  252.292245][T13313] team0: Device ipvlan0 failed to register rx_handler
[  252.314429][T13313] loop4: detected capacity change from 0 to 2048
[  252.324292][T13315] loop0: detected capacity change from 0 to 512
[  252.341868][T13315] EXT4-fs: Ignoring removed nomblk_io_submit option
[  252.358908][T13313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  252.394311][T13315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.410253][T13319] loop2: detected capacity change from 0 to 2048
[  252.422526][T13315] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  252.472869][T13319]  loop2: p1 < > p4
[  252.477398][T13319] loop2: p4 size 8388608 extends beyond EOD, truncated
[  252.614420][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.638961][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.684554][T13329] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3322'.
[  252.693662][T13329] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3322'.
[  252.714455][T13326] FAULT_INJECTION: forcing a failure.
[  252.714455][T13326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.714563][T13329] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  252.727557][T13326] CPU: 1 UID: 0 PID: 13326 Comm: syz.2.3324 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  252.727592][T13326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  252.727606][T13326] Call Trace:
[  252.727614][T13326]  <TASK>
[  252.727698][T13326]  __dump_stack+0x1d/0x30
[  252.727731][T13326]  dump_stack_lvl+0xe8/0x140
[  252.727759][T13326]  dump_stack+0x15/0x1b
[  252.727783][T13326]  should_fail_ex+0x265/0x280
[  252.727835][T13326]  should_fail+0xb/0x20
[  252.727948][T13326]  should_fail_usercopy+0x1a/0x20
[  252.728007][T13326]  copy_folio_from_iter_atomic+0x278/0x1170
[  252.728048][T13326]  ? shmem_write_begin+0xa8/0x190
[  252.728095][T13326]  ? shmem_write_begin+0xe1/0x190
[  252.728142][T13326]  generic_perform_write+0x2c2/0x490
[  252.728245][T13326]  shmem_file_write_iter+0xc5/0xf0
[  252.728278][T13326]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  252.728308][T13326]  vfs_write+0x49d/0x8e0
[  252.728351][T13326]  ksys_write+0xda/0x1a0
[  252.728381][T13326]  __x64_sys_write+0x40/0x50
[  252.728448][T13326]  x64_sys_call+0x2cdd/0x2fb0
[  252.728480][T13326]  do_syscall_64+0xd2/0x200
[  252.728569][T13326]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  252.728607][T13326]  ? clear_bhb_loop+0x40/0x90
[  252.728673][T13326]  ? clear_bhb_loop+0x40/0x90
[  252.728705][T13326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.728735][T13326] RIP: 0033:0x7f8dea2cd3df
[  252.728756][T13326] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  252.728783][T13326] RSP: 002b:00007f8de8936d40 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  252.728821][T13326] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f8dea2cd3df
[  252.728839][T13326] RDX: 0000000000100000 RSI: 00007f8de0517000 RDI: 0000000000000008
[  252.728857][T13326] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000005f2
[  252.728875][T13326] R10: 00000000000003e4 R11: 0000000000000293 R12: 0000000000000008
[  252.728893][T13326] R13: 00007f8de8936dec R14: 00007f8de8936df0 R15: 00007f8de0517000
[  252.728920][T13326]  </TASK>
[  252.760202][T13326] loop2: detected capacity change from 0 to 2048
[  252.968960][T13329] bond4: entered allmulticast mode
[  252.975588][T13329] 8021q: adding VLAN 0 to HW filter on device bond4
[  253.121744][T13343] loop4: detected capacity change from 0 to 1024
[  253.139347][T13347] FAULT_INJECTION: forcing a failure.
[  253.139347][T13347] name failslab, interval 1, probability 0, space 0, times 0
[  253.147058][T13348] SELinux:  policydb version -845211227 does not match my version range 15-34
[  253.152109][T13347] CPU: 0 UID: 0 PID: 13347 Comm: syz.2.3328 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  253.152211][T13347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.152227][T13347] Call Trace:
[  253.152236][T13347]  <TASK>
[  253.152245][T13347]  __dump_stack+0x1d/0x30
[  253.152273][T13347]  dump_stack_lvl+0xe8/0x140
[  253.152298][T13347]  dump_stack+0x15/0x1b
[  253.152333][T13347]  should_fail_ex+0x265/0x280
[  253.152379][T13347]  should_failslab+0x8c/0xb0
[  253.152410][T13347]  kmem_cache_alloc_noprof+0x50/0x310
[  253.152505][T13347]  ? audit_log_start+0x365/0x6c0
[  253.152549][T13347]  audit_log_start+0x365/0x6c0
[  253.152581][T13347]  audit_seccomp+0x48/0x100
[  253.152636][T13347]  ? __seccomp_filter+0x68c/0x10d0
[  253.152666][T13347]  __seccomp_filter+0x69d/0x10d0
[  253.152698][T13347]  ? newary+0x603/0x620
[  253.152736][T13347]  ? up_write+0x18/0x60
[  253.152770][T13347]  ? ipcget+0x4a9/0x4f0
[  253.152888][T13347]  __secure_computing+0x82/0x150
[  253.152925][T13347]  syscall_trace_enter+0xcf/0x1e0
[  253.153011][T13347]  do_syscall_64+0xac/0x200
[  253.153048][T13347]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  253.153085][T13347]  ? clear_bhb_loop+0x40/0x90
[  253.153115][T13347]  ? clear_bhb_loop+0x40/0x90
[  253.153145][T13347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.153241][T13347] RIP: 0033:0x7f8dea2cd33c
[  253.153263][T13347] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  253.153304][T13347] RSP: 002b:00007f8de8916030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  253.153329][T13347] RAX: ffffffffffffffda RBX: 00007f8dea4f6080 RCX: 00007f8dea2cd33c
[  253.153347][T13347] RDX: 000000000000000f RSI: 00007f8de89160a0 RDI: 000000000000000b
[  253.153364][T13347] RBP: 00007f8de8916090 R08: 0000000000000000 R09: 0000000000000000
[  253.153381][T13347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  253.153399][T13347] R13: 0000000000000000 R14: 00007f8dea4f6080 R15: 00007ffec99c1cf8
[  253.153425][T13347]  </TASK>
[  253.153436][T13347] audit_log_lost: 276 callbacks suppressed
[  253.153464][T13347] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  253.161577][   T29] audit: type=1400 audit(1749759700.926:8836): avc:  denied  { mount } for  pid=13339 comm="syz.2.3328" name="/" dev="ramfs" ino=35911 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  253.173457][T13347] audit: out of memory in audit_log_start
[  253.183684][   T29] audit: type=1326 audit(1749759700.926:8837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dea2ce929 code=0x7ffc0000
[  253.187289][T13348] SELinux: failed to load policy
[  253.189833][   T29] audit: type=1326 audit(1749759700.926:8838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8dea2cd290 code=0x7ffc0000
[  253.461463][   T29] audit: type=1326 audit(1749759700.926:8839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8dea2cd3df code=0x7ffc0000
[  253.463175][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  253.484819][   T29] audit: type=1326 audit(1749759700.926:8840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f8dea2ce929 code=0x7ffc0000
[  253.485358][   T29] audit: type=1326 audit(1749759700.986:8841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8dea2cd3df code=0x7ffc0000
[  253.540912][   T29] audit: type=1326 audit(1749759700.986:8842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8dea2cd58a code=0x7ffc0000
[  253.564381][   T29] audit: type=1326 audit(1749759700.986:8843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13339 comm="syz.2.3328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dea2ce929 code=0x7ffc0000
[  253.588610][T13343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.619347][T13352] netlink: 'syz.0.3334': attribute type 10 has an invalid length.
[  253.628534][T13352] team0: Device ipvlan0 failed to register rx_handler
[  253.662976][T13352] loop0: detected capacity change from 0 to 2048
[  253.671037][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.684668][T13358] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  253.697627][T13358] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  253.735600][T13352] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.857664][T13364] FAULT_INJECTION: forcing a failure.
[  253.857664][T13364] name failslab, interval 1, probability 0, space 0, times 0
[  253.870366][T13364] CPU: 0 UID: 0 PID: 13364 Comm: syz.3.3336 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  253.870399][T13364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.870414][T13364] Call Trace:
[  253.870422][T13364]  <TASK>
[  253.870430][T13364]  __dump_stack+0x1d/0x30
[  253.870454][T13364]  dump_stack_lvl+0xe8/0x140
[  253.870477][T13364]  dump_stack+0x15/0x1b
[  253.870495][T13364]  should_fail_ex+0x265/0x280
[  253.870535][T13364]  should_failslab+0x8c/0xb0
[  253.870561][T13364]  kmem_cache_alloc_noprof+0x50/0x310
[  253.870591][T13364]  ? __mpol_dup+0x42/0x1b0
[  253.870625][T13364]  __mpol_dup+0x42/0x1b0
[  253.870671][T13364]  vma_dup_policy+0x29/0x70
[  253.870704][T13364]  __split_vma+0x266/0x650
[  253.870743][T13364]  ? __mpol_equal+0x2e/0x1e0
[  253.870774][T13364]  ? can_vma_merge_right+0x105/0x2e0
[  253.870796][T13364]  vma_modify+0x21e/0xca0
[  253.870817][T13364]  ? find_vma+0x6c/0xa0
[  253.870853][T13364]  vma_modify_policy+0x101/0x130
[  253.870882][T13364]  mbind_range+0x1b8/0x440
[  253.870899][T13364]  ? mas_find+0x4ea/0x610
[  253.870921][T13364]  __se_sys_mbind+0x648/0xac0
[  253.870982][T13364]  __x64_sys_mbind+0x78/0x90
[  253.871013][T13364]  x64_sys_call+0x14af/0x2fb0
[  253.871036][T13364]  do_syscall_64+0xd2/0x200
[  253.871059][T13364]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  253.871088][T13364]  ? clear_bhb_loop+0x40/0x90
[  253.871110][T13364]  ? clear_bhb_loop+0x40/0x90
[  253.871134][T13364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.871158][T13364] RIP: 0033:0x7ff03cb7e929
[  253.871174][T13364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.871195][T13364] RSP: 002b:00007ff03b1e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  253.871215][T13364] RAX: ffffffffffffffda RBX: 00007ff03cda5fa0 RCX: 00007ff03cb7e929
[  253.871229][T13364] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000001000
[  253.871243][T13364] RBP: 00007ff03b1e7090 R08: 000000000000000a R09: 0000000000000002
[  253.871256][T13364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.871270][T13364] R13: 0000000000000000 R14: 00007ff03cda5fa0 R15: 00007ffe040e2618
[  253.871290][T13364]  </TASK>
[  254.195270][T13368] loop2: detected capacity change from 0 to 2048
[  254.232146][T13368]  loop2: p1 < > p4
[  254.246262][T13368] loop2: p4 size 8388608 extends beyond EOD, truncated
[  254.270927][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.288807][T13371] Invalid ELF header magic: != ELF
[  254.356029][T13375] loop0: detected capacity change from 0 to 1024
[  254.397047][T13375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.447185][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.488834][T13389] loop4: detected capacity change from 0 to 2048
[  254.602990][T13389]  loop4: p1 < > p4
[  254.607634][T13389] loop4: p4 size 8388608 extends beyond EOD, truncated
[  254.677175][T13400] loop1: detected capacity change from 0 to 512
[  254.776342][T13403] netlink: 'syz.0.3345': attribute type 21 has an invalid length.
[  254.784532][T13403] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3345'.
[  254.796069][T13403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3345'.
[  254.894420][T13400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  254.907144][T13400] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.513361][T13415] loop0: detected capacity change from 0 to 512
[  255.599931][T13419] loop2: detected capacity change from 0 to 1024
[  255.657080][T13419] EXT4-fs: Ignoring removed nobh option
[  255.662825][T13419] EXT4-fs: Ignoring removed bh option
[  255.749933][T13424] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3353'.
[  255.765124][T13419] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.848294][T13423] loop0: detected capacity change from 0 to 1024
[  255.895804][T13423] EXT4-fs: Ignoring removed orlov option
[  255.912998][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.944875][T13423] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.096855][T13433] loop2: detected capacity change from 0 to 1024
[  256.103849][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.114883][T13433] EXT4-fs: Ignoring removed nobh option
[  256.120494][T13433] EXT4-fs: Ignoring removed bh option
[  256.147132][T13433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.172331][T13437] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  256.205722][T13433] SELinux: syz.2.3354 (13433) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  256.224285][T13439] loop4: detected capacity change from 0 to 1024
[  256.234342][T13437] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3356'.
[  256.312531][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.328352][T13444] loop4: detected capacity change from 0 to 1024
[  256.383615][T13444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.404786][T13449] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3359'.
[  256.413998][T13449] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3359'.
[  256.429177][T13452] vhci_hcd: invalid port number 96
[  256.430871][T13449] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  256.434388][T13452] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  256.456014][T13452] Driver unsupported XDP return value 0 on prog  (id 2773) dev N/A, expect packet loss!
[  256.472490][T13449] bond1: entered allmulticast mode
[  256.477923][T13449] 8021q: adding VLAN 0 to HW filter on device bond1
[  256.546130][T13462] loop3: detected capacity change from 0 to 164
[  256.555621][T13462] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  256.571853][T13462] netlink: '+}[@': attribute type 21 has an invalid length.
[  256.586451][T13462] netlink: 132 bytes leftover after parsing attributes in process `+}[@'.
[  256.596006][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.619835][T13462] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(18)
[  256.626583][T13462] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  256.634125][T13462] vhci_hcd vhci_hcd.0: Device attached
[  256.643299][T13465] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 1
[  256.656977][ T6490] vhci_hcd: stop threads
[  256.661263][ T6490] vhci_hcd: release socket
[  256.666062][ T6490] vhci_hcd: disconnect device
[  256.717894][T13469] SELinux: failed to load policy
[  256.734034][T13476] loop2: detected capacity change from 0 to 1024
[  257.079119][T13495] loop0: detected capacity change from 0 to 1024
[  257.116440][T13495] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.220716][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.402911][T13507] vhci_hcd: invalid port number 96
[  257.408075][T13507] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  257.899353][T13518] netlink: 'syz.4.3378': attribute type 21 has an invalid length.
[  257.907392][T13518] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3378'.
[  257.918805][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3378'.
[  258.234025][   T29] kauditd_printk_skb: 165 callbacks suppressed
[  258.234041][   T29] audit: type=1326 audit(1749759706.026:9009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8dea2cd3df code=0x7ffc0000
[  258.299302][T13520] loop2: detected capacity change from 0 to 8192
[  258.307822][   T29] audit: type=1326 audit(1749759706.086:9010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f8dea2ce9b7 code=0x7ffc0000
[  258.331326][   T29] audit: type=1326 audit(1749759706.086:9011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8dea2cd290 code=0x7ffc0000
[  258.354917][   T29] audit: type=1326 audit(1749759706.086:9012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8dea2ce52b code=0x7ffc0000
[  258.383974][   T29] audit: type=1326 audit(1749759706.156:9013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8dea2cd58a code=0x7ffc0000
[  258.407375][   T29] audit: type=1326 audit(1749759706.156:9014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8dea2ce52b code=0x7ffc0000
[  258.430970][   T29] audit: type=1326 audit(1749759706.156:9015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8dea2ce52b code=0x7ffc0000
[  258.525430][T13520]  loop2: p1 p2 p3 p4
[  258.529551][T13520] loop2: p1 start 51379968 is beyond EOD, truncated
[  258.536206][T13520] loop2: p2 start 2936012800 is beyond EOD, truncated
[  258.543235][T13520] loop2: p3 size 100663552 extends beyond EOD, truncated
[  258.568711][T13528] FAULT_INJECTION: forcing a failure.
[  258.568711][T13528] name failslab, interval 1, probability 0, space 0, times 0
[  258.575397][T13529] loop0: detected capacity change from 0 to 2048
[  258.581610][T13528] CPU: 1 UID: 0 PID: 13528 Comm: syz.4.3383 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  258.581656][T13528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  258.581705][T13528] Call Trace:
[  258.581714][T13528]  <TASK>
[  258.581725][T13528]  __dump_stack+0x1d/0x30
[  258.581831][T13528]  dump_stack_lvl+0xe8/0x140
[  258.581907][T13528]  dump_stack+0x15/0x1b
[  258.581932][T13528]  should_fail_ex+0x265/0x280
[  258.581983][T13528]  should_failslab+0x8c/0xb0
[  258.582043][T13528]  kmem_cache_alloc_noprof+0x50/0x310
[  258.582083][T13528]  ? getname_flags+0x80/0x3b0
[  258.582118][T13528]  ? fput+0x8f/0xc0
[  258.582175][T13528]  getname_flags+0x80/0x3b0
[  258.582211][T13528]  __x64_sys_execve+0x42/0x70
[  258.582238][T13528]  x64_sys_call+0x13ab/0x2fb0
[  258.582269][T13528]  do_syscall_64+0xd2/0x200
[  258.582301][T13528]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  258.582401][T13528]  ? clear_bhb_loop+0x40/0x90
[  258.582431][T13528]  ? clear_bhb_loop+0x40/0x90
[  258.582465][T13528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.582495][T13528] RIP: 0033:0x7f05db97e929
[  258.582546][T13528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.582573][T13528] RSP: 002b:00007f05d9fe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  258.582607][T13528] RAX: ffffffffffffffda RBX: 00007f05dbba5fa0 RCX: 00007f05db97e929
[  258.582626][T13528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000400
[  258.582644][T13528] RBP: 00007f05d9fe7090 R08: 0000000000000000 R09: 0000000000000000
[  258.582662][T13528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.582680][T13528] R13: 0000000000000000 R14: 00007f05dbba5fa0 R15: 00007ffe0ce75a48
[  258.582779][T13528]  </TASK>
[  258.631759][T13520] loop2: p4 size 656640 extends beyond EOD, 
[  258.681017][T13531] loop4: detected capacity change from 0 to 2048
[  258.683002][T13520] truncated
[  258.744598][   T29] audit: type=1326 audit(1749759706.516:9016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f8dea2cd13a code=0x7ffc0000
[  258.808705][   T29] audit: type=1326 audit(1749759706.516:9017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f8dea2cd13a code=0x7ffc0000
[  258.832534][   T29] audit: type=1326 audit(1749759706.516:9018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13519 comm="syz.2.3379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f8dea2cd13a code=0x7ffc0000
[  258.867019][T13533] loop2: detected capacity change from 0 to 1024
[  258.875017][T13531]  loop4: p1 < > p4
[  258.879319][T13534]  loop0: p1 < > p4
[  258.886925][T13534] loop0: p4 size 8388608 extends beyond EOD, truncated
[  258.895166][T13531] loop4: p4 size 8388608 extends beyond EOD, truncated
[  258.923279][T13529]  loop0: p1 < > p4
[  258.932827][T13533] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  258.953062][T13529] loop0: p4 size 8388608 extends beyond EOD, truncated
[  259.042948][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.084118][T13540] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13540 comm=syz.0.3387
[  259.093660][T13542] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3389'.
[  259.105845][T13542] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3389'.
[  259.115990][T12053] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  259.137833][T13542] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  259.173252][T13542] bond1: entered allmulticast mode
[  259.178634][T13542] 8021q: adding VLAN 0 to HW filter on device bond1
[  259.277874][T13551] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  259.295566][T13551] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3390'.
[  259.375282][T13552] loop2: detected capacity change from 0 to 512
[  259.450247][T13559] loop3: detected capacity change from 0 to 1024
[  259.487316][T13564] netlink: 'syz.1.3395': attribute type 13 has an invalid length.
[  259.500540][T13568] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13568 comm=syz.4.3394
[  259.515215][T13559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.530601][T13552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  259.543257][T13552] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.623432][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.678109][T13564] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.685306][T13564] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.780283][T13564] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  259.803647][T13564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  259.888859][T13564] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  259.898108][T13564] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  259.907077][T13564] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  259.915991][T13564] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  260.054641][T13579] loop3: detected capacity change from 0 to 2048
[  260.102689][T13583] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13583 comm=syz.1.3398
[  260.136814][T13579]  loop3: p1 < > p4
[  260.147747][T13579] loop3: p4 size 8388608 extends beyond EOD, truncated
[  260.233070][T13587] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  260.268885][T13587] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3399'.
[  260.374611][T13596] FAULT_INJECTION: forcing a failure.
[  260.374611][T13596] name failslab, interval 1, probability 0, space 0, times 0
[  260.387346][T13596] CPU: 0 UID: 0 PID: 13596 Comm: syz.1.3404 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  260.387382][T13596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  260.387472][T13596] Call Trace:
[  260.387481][T13596]  <TASK>
[  260.387490][T13596]  __dump_stack+0x1d/0x30
[  260.387517][T13596]  dump_stack_lvl+0xe8/0x140
[  260.387657][T13596]  dump_stack+0x15/0x1b
[  260.387690][T13596]  should_fail_ex+0x265/0x280
[  260.387734][T13596]  should_failslab+0x8c/0xb0
[  260.387760][T13596]  __kmalloc_noprof+0xa5/0x3e0
[  260.387857][T13596]  ? tcf_idr_create+0x41/0x4a0
[  260.387889][T13596]  tcf_idr_create+0x41/0x4a0
[  260.387925][T13596]  tcf_idr_create_from_flags+0x60/0x80
[  260.387957][T13596]  tcf_pedit_init+0x27b/0x970
[  260.388051][T13596]  ? should_fail_ex+0xdb/0x280
[  260.388102][T13596]  tcf_action_init_1+0x367/0x4a0
[  260.388158][T13596]  tcf_action_init+0x267/0x6d0
[  260.388188][T13596]  ? mark_reg_read+0x59/0x340
[  260.388296][T13596]  tc_ctl_action+0x291/0x830
[  260.388358][T13596]  ? __pfx_tc_ctl_action+0x10/0x10
[  260.388392][T13596]  rtnetlink_rcv_msg+0x657/0x6d0
[  260.388425][T13596]  ? avc_has_perm_noaudit+0x1b1/0x200
[  260.388473][T13596]  netlink_rcv_skb+0x120/0x220
[  260.388509][T13596]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  260.388540][T13596]  rtnetlink_rcv+0x1c/0x30
[  260.388565][T13596]  netlink_unicast+0x5a1/0x670
[  260.388601][T13596]  netlink_sendmsg+0x58b/0x6b0
[  260.388670][T13596]  ? __pfx_netlink_sendmsg+0x10/0x10
[  260.388697][T13596]  __sock_sendmsg+0x142/0x180
[  260.388802][T13596]  ____sys_sendmsg+0x31e/0x4e0
[  260.388893][T13596]  ___sys_sendmsg+0x17b/0x1d0
[  260.388926][T13596]  __x64_sys_sendmsg+0xd4/0x160
[  260.389028][T13596]  x64_sys_call+0x2999/0x2fb0
[  260.389056][T13596]  do_syscall_64+0xd2/0x200
[  260.389084][T13596]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  260.389114][T13596]  ? clear_bhb_loop+0x40/0x90
[  260.389155][T13596]  ? clear_bhb_loop+0x40/0x90
[  260.389182][T13596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.389207][T13596] RIP: 0033:0x7f57d436e929
[  260.389226][T13596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.389249][T13596] RSP: 002b:00007f57d29d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  260.389307][T13596] RAX: ffffffffffffffda RBX: 00007f57d4595fa0 RCX: 00007f57d436e929
[  260.389321][T13596] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[  260.389336][T13596] RBP: 00007f57d29d7090 R08: 0000000000000000 R09: 0000000000000000
[  260.389350][T13596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  260.389389][T13596] R13: 0000000000000000 R14: 00007f57d4595fa0 R15: 00007ffc514544e8
[  260.389413][T13596]  </TASK>
[  260.664568][T13594] loop0: detected capacity change from 0 to 1024
[  260.688973][T13598] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3405'.
[  260.695235][T13594] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  260.697997][T13598] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3405'.
[  260.716537][T13598] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  260.729196][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  260.735168][T13598] bond2: entered allmulticast mode
[  260.743590][T13598] 8021q: adding VLAN 0 to HW filter on device bond2
[  260.782778][T13601] netlink: 516 bytes leftover after parsing attributes in process `syz.1.3406'.
[  260.842772][T13610] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13610 comm=syz.2.3409
[  260.849815][T13608] loop4: detected capacity change from 0 to 2048
[  260.891922][T13608]  loop4: p1 < > p4
[  260.896449][T13608] loop4: p4 size 8388608 extends beyond EOD, truncated
[  260.976973][T13612] loop4: detected capacity change from 0 to 2048
[  261.052260][T13612]  loop4: p1 < > p4
[  261.099495][T13612] loop4: p4 size 8388608 extends beyond EOD, truncated
[  261.211957][T13605] loop0: detected capacity change from 0 to 512
[  261.223508][T13605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  261.254349][T13605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.267023][T13605] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  261.308134][T13629] netlink: 'syz.2.3415': attribute type 10 has an invalid length.
[  261.316435][T13629] ipvlan0: entered allmulticast mode
[  261.321796][T13629] veth0_vlan: entered allmulticast mode
[  261.330013][T13629] team0: Device ipvlan0 failed to register rx_handler
[  261.349795][T13629] loop2: detected capacity change from 0 to 2048
[  261.404391][T13629] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.447094][T13636] loop4: detected capacity change from 0 to 128
[  261.466851][T13638] loop3: detected capacity change from 0 to 512
[  261.473936][T13638] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  261.499365][T13638] EXT4-fs (loop3): 1 truncate cleaned up
[  261.510185][T13638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.514075][T13641] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3419'.
[  261.531997][T13638] xt_TPROXY: Can be used only with -p tcp or -p udp
[  261.554357][T11604] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.580809][T13645] netlink: 'syz.3.3420': attribute type 1 has an invalid length.
[  261.592966][T13641] loop4: detected capacity change from 0 to 1024
[  261.604402][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.606185][T13641] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.646060][T13648] loop2: detected capacity change from 0 to 2048
[  261.662716][T13562] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  261.684514][T13649] 9pnet: Could not find request transport: rdm³»FJ¢Èa
[  261.692132][T13648]  loop2: p1 < > p4
[  261.696578][T13648] loop2: p4 size 8388608 extends beyond EOD, truncated
[  261.752708][T12405] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.785873][T13654] loop2: detected capacity change from 0 to 1024
[  261.816551][T13654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.051348][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.124087][T13661] netlink: 'syz.2.3424': attribute type 10 has an invalid length.
[  262.137008][T13661] team0: Device ipvlan0 failed to register rx_handler
[  262.172341][T13641] ==================================================================
[  262.174090][T13661] loop2: detected capacity change from 0 to 2048
[  262.180483][T13641] BUG: KCSAN: data-race in __mark_inode_dirty / writeback_single_inode
[  262.195095][T13641] 
[  262.197438][T13641] write to 0xffff88810557a008 of 4 bytes by task 13644 on cpu 1:
[  262.205202][T13641]  writeback_single_inode+0x14a/0x3e0
[  262.210614][T13641]  sync_inode_metadata+0x5b/0x90
[  262.215617][T13641]  generic_buffers_fsync_noflush+0xd9/0x120
[  262.221543][T13641]  ext4_sync_file+0x1ab/0x690
[  262.226261][T13641]  vfs_fsync_range+0x10d/0x130
[  262.231059][T13641]  ext4_buffered_write_iter+0x34f/0x3c0
[  262.236682][T13641]  ext4_file_write_iter+0xdbf/0xf00
[  262.241929][T13641]  iter_file_splice_write+0x5f2/0x970
[  262.247337][T13641]  direct_splice_actor+0x156/0x2a0
[  262.252500][T13641]  splice_direct_to_actor+0x312/0x680
[  262.257901][T13641]  do_splice_direct+0xda/0x150
[  262.262710][T13641]  do_sendfile+0x380/0x650
[  262.267183][T13641]  __x64_sys_sendfile64+0x105/0x150
[  262.272418][T13641]  x64_sys_call+0xb39/0x2fb0
[  262.277046][T13641]  do_syscall_64+0xd2/0x200
[  262.281585][T13641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.287513][T13641] 
[  262.289860][T13641] read to 0xffff88810557a008 of 4 bytes by task 13641 on cpu 0:
[  262.297510][T13641]  __mark_inode_dirty+0x18e/0x760
[  262.302568][T13641]  mark_buffer_dirty+0x133/0x210
[  262.307548][T13641]  block_write_end+0x12e/0x210
[  262.312339][T13641]  ext4_write_end+0x13a/0x730
[  262.317050][T13641]  generic_perform_write+0x312/0x490
[  262.322462][T13641]  ext4_buffered_write_iter+0x1ee/0x3c0
[  262.328035][T13641]  ext4_file_write_iter+0xdbf/0xf00
[  262.333271][T13641]  iter_file_splice_write+0x5f2/0x970
[  262.338682][T13641]  direct_splice_actor+0x156/0x2a0
[  262.343856][T13641]  splice_direct_to_actor+0x312/0x680
[  262.349281][T13641]  do_splice_direct+0xda/0x150
[  262.354080][T13641]  do_sendfile+0x380/0x650
[  262.358520][T13641]  __x64_sys_sendfile64+0x105/0x150
[  262.363744][T13641]  x64_sys_call+0xb39/0x2fb0
[  262.368357][T13641]  do_syscall_64+0xd2/0x200
[  262.372879][T13641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.378790][T13641] 
[  262.381123][T13641] value changed: 0x00000028 -> 0x00000022
[  262.386849][T13641] 
[  262.389180][T13641] Reported by Kernel Concurrency Sanitizer on:
[  262.395345][T13641] CPU: 0 UID: 0 PID: 13641 Comm: syz.4.3419 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  262.407876][T13641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  262.417959][T13641] ==================================================================
[  262.582222][T13661] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.595676][T11851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.789561][T13100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.