last executing test programs:

1.734486982s ago: executing program 2 (id=1750):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1, 0x0, 0x8000000}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xc0000000, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e98263b, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x7, 0xc3f3, 0x1, 0x0, 0x800, 0x9, 0x800, 0x0, 0x0, 0x0, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000003, 0x3, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xfffffffd, 0x10, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0xb2, 0x0, 0x0, 0x0, 0x8, 0x0, 0x108, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x400, 0x0, 0x0, 0x20]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000020}, {0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0)

1.632038593s ago: executing program 2 (id=1754):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000400)={0x0, 0x7f, 0x2700})
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_int(r2, 0x0, 0xf, &(0x7f0000000000)=0x9, 0x4)
r3 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
r8 = dup(r7)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r8, @ANYBLOB=',aname=-,cache=l'])

1.583443464s ago: executing program 0 (id=1755):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x0)

1.419923307s ago: executing program 0 (id=1759):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x3000046, &(0x7f00000000c0)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@grpjquota}, {@oldalloc}, {@errors_remount}, {@orlov}, {@usrquota}, {@stripe={'stripe', 0x3d, 0x622}}]}, 0x1, 0x56c, &(0x7f0000001a00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x80142, 0x14)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

1.21301745s ago: executing program 4 (id=1760):
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
write$tcp_mem(r0, &(0x7f0000000300)={0x0, 0x20, 0x7ffffffe, 0x20, 0x2}, 0x48)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
r5 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xfffffffffffffffc)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x18, 0x52, 0x1, 0x0, 0x25dfdbff, {0xa}, [@generic="30d5"]}, 0x18}}, 0x0)
r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000480)={'syztnl0\x00', &(0x7f0000000400)={'gretap0\x00', <r8=>0x0, 0x80, 0x10, 0xfffffffe, 0x6e99, {{0xe, 0x4, 0x3, 0x4, 0x38, 0x66, 0x0, 0x8c, 0x4, 0x0, @multicast2, @dev={0xac, 0x14, 0x14, 0xb}, {[@timestamp_prespec={0x44, 0xc, 0x5f, 0x3, 0x1, [{@loopback, 0x3}]}, @timestamp={0x44, 0x18, 0x83, 0x0, 0x5, [0x6, 0xfffffff0, 0x15f, 0x7, 0x1]}]}}}}})
sendmsg$nl_route_sched(r7, &(0x7f0000000600)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)=@newtfilter={0x9c, 0x2c, 0x8, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0x4, 0xffe4}, {0x0, 0xfff2}, {0x4, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x4, 0x2}}, @filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_FD={0x8, 0x6, r2}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_FD={0x8, 0x6, r4}]}}, @TCA_RATE={0x6, 0x5, {0x1, 0x61}}, @filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x5}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0x5c3}]}}, @TCA_RATE={0x6, 0x5, {0x3, 0xfe}}, @TCA_RATE={0x6, 0x5, {0x5, 0x6}}, @TCA_CHAIN={0x8, 0xb, 0x3ff}]}, 0x9c}, 0x1, 0x0, 0x0, 0x48050}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{r3}, &(0x7f0000000640), &(0x7f0000000680)=r4}, 0x20)
keyctl$chown(0x4, r5, 0x0, 0x0)

1.161245921s ago: executing program 0 (id=1762):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0x10001}, 0x18)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000240)={0x0, 0x2})
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00fb00020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c02000100000000000040fb020000000005000500000000000a"], 0x80}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x15, &(0x7f0000000300)={@random="6ea88d319b8c", @multicast, @val={@void, {0x8100, 0x0, 0x1, 0x4}}, {@x25={0x805, {0x0, 0x1, 0x5e25ed804c4cd5b4}}}}, 0x0)

1.128855451s ago: executing program 4 (id=1764):
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x28020480)
syz_open_procfs(0x0, &(0x7f0000000f80)='oom_score\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socket(0x1e, 0x4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x2, @perf_config_ext={0x2, 0x1}, 0x1000, 0x5dd8, 0x0, 0x5, 0x0, 0x4, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r2, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848290000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

1.088595062s ago: executing program 3 (id=1765):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r0}, 0x18)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4000008}, 0x18)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC, @ANYRES16=r0, @ANYRESOCT=r1])
vmsplice(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000380)="cb5b91064694268fa65da2b30a13593e4b2a351bb741fdbb97477add96407830d5914c5f13e72dba279e3df69fbdb568b732b48084a16d75acb3ffede5ce17770b1178aa31a1bb385aaed54e884ef3eaf122903728a24ed94e4ff1ccd15638afb17858dbec6a3a604d5bbaa50b84b46daaeb2b4448c1a4a4b27f2b74fe40511d491bd8016dcd546e1f4b7be9eed0cce77cdd330560e5266b03a117e71168f71a47d7e57566ee42a17c0f5bd404a5ef35adcf4de8", 0xb4}], 0x1, 0x2)
mkdir(0x0, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x50200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffebd)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000100)="f2435f0100088000000600000000", 0xe, 0x24008850, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000a40)=@newtaction={0x100, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0xec, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0xffffffff}}]}, {0xfffffffffffffd46}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_gact={0x54, 0x3, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x7, 0x3, {0x2, 0x1d8a, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x100}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r6, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000006"], 0x66)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))

990.575864ms ago: executing program 4 (id=1766):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
acct(&(0x7f00000001c0)='./file0\x00')

884.088046ms ago: executing program 4 (id=1768):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r0}, 0x18)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4000008}, 0x18)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC, @ANYRES16=r0, @ANYRESOCT=r1])
vmsplice(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000380)="cb5b91064694268fa65da2b30a13593e4b2a351bb741fdbb97477add96407830d5914c5f13e72dba279e3df69fbdb568b732b48084a16d75acb3ffede5ce17770b1178aa31a1bb385aaed54e884ef3eaf122903728a24ed94e4ff1ccd15638afb17858dbec6a3a604d5bbaa50b84b46daaeb2b4448c1a4a4b27f2b74fe40511d491bd8016dcd546e1f4b7be9eed0cce77cdd330560e5266b03a117e71168f71a47d7e57566ee42a17c0f5bd404a5ef35adcf4de8", 0xb4}], 0x1, 0x2)
mkdir(0x0, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x50200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffebd)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000100)="f2435f0100088000000600000000", 0xe, 0x24008850, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000a40)=@newtaction={0x100, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0xec, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0xffffffff}}]}, {0xfffffffffffffd46}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_gact={0x54, 0x3, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x7, 0x3, {0x2, 0x1d8a, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x100}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r6, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000006"], 0x66)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))

851.167836ms ago: executing program 2 (id=1769):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0e000000040000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0xff)
r3 = dup2(r2, r2)
write$tun(r3, 0x0, 0x46)

844.411366ms ago: executing program 3 (id=1770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=ANY=[@ANYRESHEX=0x0, @ANYRESHEX, @ANYRES32, @ANYRESDEC=0x0, @ANYRES8, @ANYRESHEX=0x0, @ANYRES32], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x17, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000089af0000000000000900000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001833000004000000000000000000000031c00800f8ffffff9500000000000000991a0000", @ANYRES32=r0, @ANYBLOB="000000000000000085000000a70000009380ffff10000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x927, 0xbe, &(0x7f00000007c0)=""/190, 0x41100, 0xe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000380)=[{0x5, 0x3, 0xa, 0x8}], 0x10, 0x1, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000940)={'erspan0\x00', &(0x7f0000000540)={'erspan0\x00', <r2=>0x0, 0x40, 0x20, 0x4, 0x40, {{0x15, 0x4, 0x3, 0x10, 0x54, 0x64, 0x0, 0xa, 0x2f, 0x0, @remote, @broadcast, {[@timestamp={0x44, 0xc, 0x43, 0x0, 0x1, [0x5, 0xfffffffc]}, @rr={0x7, 0x1b, 0x6a, [@remote, @dev={0xac, 0x14, 0x14, 0x2c}, @multicast2, @private=0xa010102, @local, @rand_addr=0x64010101]}, @rr={0x7, 0xb, 0x33, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast]}, @timestamp_prespec={0x44, 0xc, 0x6c, 0x3, 0x2, [{@private=0xa010102, 0x58e1}]}]}}}}})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000ac0)={@map, 0x15, 0x1, 0x0, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f00000009c0)=[0x0, 0x0], &(0x7f0000000a00), &(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0], <r3=>0x0}, 0x40)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000d40)=@bpf_lsm={0x1d, 0x11, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000005000000000000000100000018110000", @ANYRES32=r0, @ANYRES64=0x0], &(0x7f0000000b40)='GPL\x00', 0x800, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000b80)={0x2, 0x0, 0x4, 0x6}, 0x10, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000cc0)=[r0], &(0x7f0000000d00)=[{0x0, 0x3}, {0x5, 0x1, 0x5, 0xb}, {0x2, 0x1, 0xa}], 0x10, 0xab6, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000b00)={r1, r2, 0x25, 0x6, @val=@netkit={@void, @value=r4, @void, @void, r3}}, 0x1c)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0xfff1, 0xfff3}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x2}, @TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48c8}, 0x20004804)

771.627887ms ago: executing program 4 (id=1772):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4000008}, 0x18)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC, @ANYRES16=r0, @ANYRESOCT=r1])
vmsplice(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000380)="cb5b91064694268fa65da2b30a13593e4b2a351bb741fdbb97477add96407830d5914c5f13e72dba279e3df69fbdb568b732b48084a16d75acb3ffede5ce17770b1178aa31a1bb385aaed54e884ef3eaf122903728a24ed94e4ff1ccd15638afb17858dbec6a3a604d5bbaa50b84b46daaeb2b4448c1a4a4b27f2b74fe40511d491bd8016dcd546e1f4b7be9eed0cce77cdd330560e5266b03a117e71168f71a47d7e57566ee42a17c0f5bd404a5ef35adcf4de8", 0xb4}], 0x1, 0x2)
mkdir(0x0, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x50200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffebd)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000100)="f2435f0100088000000600000000", 0xe, 0x24008850, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000a40)=@newtaction={0x100, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0xec, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0xffffffff}}]}, {0xfffffffffffffd46}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_gact={0x54, 0x3, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x7, 0x3, {0x2, 0x1d8a, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x100}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r6, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000006"], 0x66)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))

769.613707ms ago: executing program 3 (id=1773):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', 0x2051014, 0x0, 0x2, 0x0, &(0x7f0000000000))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000002180)=ANY=[], 0x118)
geteuid()
fstat(r2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r7)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x34, r8, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x21, 0x0, @l2={'eth', 0x3a, 'ip6gre0\x00'}}}}}, 0x34}}, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32=0x4}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
getegid()
getpgrp(0x0)
getresuid(&(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540))
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000580), &(0x7f00000005c0)=0xc)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073727a3100000000080041007369770014003300626f6e643000000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f00000003c0)=ANY=[@ANYBLOB="185c6b0000000000000000000000000018110000dfae43a41e116b6f1bb5f7fa053553bf591c46db9f5e1de1a738128d5478f8f28369d161660a0dda2415cc4f232ab473160029cae16e9ed5a8fb056410049994e48527420baf4e5f26f5dac304b0459287532b67f12a0ae938771ab480be08906bffb63ad81a43187610a8e11c50a7bd984af3e9e7e397f431b22fc5ae81746650ec819536d3dd53ea528ffb31dd7b5d0ee9512e80e11ffaffced0ce575b77886672b9b25b5b231388beed64db18313c7a442a867ddca01ac16c386dcc49c2eab38978c0afe9fd737005", @ANYRES32=r11, @ANYRES32=r10], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r12}, 0x10)

721.927498ms ago: executing program 2 (id=1774):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x1000}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, 0x0, 0x310)

705.323998ms ago: executing program 2 (id=1775):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r0}, 0x18)
dup(0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4000008}, 0x18)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC, @ANYRES16=r0, @ANYRESOCT=r1])
vmsplice(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000380)="cb5b91064694268fa65da2b30a13593e4b2a351bb741fdbb97477add96407830d5914c5f13e72dba279e3df69fbdb568b732b48084a16d75acb3ffede5ce17770b1178aa31a1bb385aaed54e884ef3eaf122903728a24ed94e4ff1ccd15638afb17858dbec6a3a604d5bbaa50b84b46daaeb2b4448c1a4a4b27f2b74fe40511d491bd8016dcd546e1f4b7be9eed0cce77cdd330560e5266b03a117e71168f71a47d7e57566ee42a17c0f5bd404a5ef35adcf4de8", 0xb4}], 0x1, 0x2)
mkdir(0x0, 0xa)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x50200, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffebd)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000100)="f2435f0100088000000600000000", 0xe, 0x24008850, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000a40)=@newtaction={0x100, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0xec, 0x1, [@m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x3, 0xd, 0x5, 0x0, 0x3}, 0x8}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0xffffffff}}]}, {0xfffffffffffffd46}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_gact={0x54, 0x3, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x7, 0x3, {0x2, 0x1d8a, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x10000000, 0x34e, 0xffff}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x100}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r3, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r6, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xa}, 0x0, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x1, 0x106)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000006"], 0x66)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480))

685.083449ms ago: executing program 3 (id=1776):
getpid()
setreuid(0xee00, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = socket$inet(0x2, 0x2, 0x73)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
sendmmsg$sock(r0, &(0x7f0000001740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000014c0)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}}, {@in, 0x0, 0x32}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0xf0}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x1a0}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r3}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r4 = io_uring_setup(0x3eee, &(0x7f0000000080)={0x0, 0x6d33, 0x1000, 0x0, 0x4000000})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x62, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51fe4c736edec6f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0xff, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x24)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

638.030219ms ago: executing program 4 (id=1777):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000340)='GPL\x00', 0x5, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
sigaltstack(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='nodots,errerrors=remount-rs,errors=continue,\x00'/70], 0x1, 0x2f8, &(0x7f0000000680)="$eJzs3TFra2UYB/C38Ta9VO69mQRdfNFFl0OtX8AgLRQDSm1EHYRTeqohMSk5AZPi0N3F2dGxOLoJ4hfoB3B36yKdCoJHmsQ2rS1qb9O09PeD8D7Jn4TnJZzDsxzew4+//bK5nSfbaS+U3omhFEIoHYdQGVYjcxPrXCiHSXvhzV+//+6bDz/59L1qrbayHuNqdePt5Rjj01d//urrH177pffiRz8+/WkhHFQ+O/x9+beDlw5ePvxz44tGHht5bHd6MY3zodNLN1tZ3GrkzSTGD1pZmmex0c6z7km+2Rnn263Ozs4gpu2tJ4s73SzPY9oexGY2iL1O7HUHMf08bbRjkiTxyWLg39T319fT6qy74Ab8URTFFVG3W03nwuOw8I+kvj/1vgCAO+f/zP+la8z/lfAf5v/T+d78f7vM/w/ByfxfHl+/55n/AQAAAAAAAAAAAADgPjguimdFUTz7e734mnV/TJf//2GbeHDvcQhHe/16vz5aR/nqWm1lKQ5Vzr511O/XXzjN3xrl8Xw+HxbH+fKleTm88fooP8nefb92IV8IW9PfPgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMJfHUpef7J8nFfH6cj96trtVWli493/9ReOXRrW4FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAK4tH+w201Yr616/CKEYOvuk/Hw/eMPF3t1oQ3FlUQ4h3IE2FJPFrO9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcPvODv2edScAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMUj7YbaatVtadYjHrPQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANwnfwUAAP//6KbT4w==")
symlinkat(0x0, 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00')
r2 = semget$private(0x0, 0x6, 0x0)
semtimedop(r2, &(0x7f0000000040)=[{0x0, 0x1}], 0x1, 0x0)
semop(r2, &(0x7f00000000c0)=[{}, {}], 0x2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
truncate(&(0x7f0000000000)='./file1\x00', 0x8c)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0600000004000000"], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c00048048000180080001"], 0x122}}, 0x400c080)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0xec}}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000d40)='./file1\x00', 0x3200010, &(0x7f0000000200)=ANY=[], 0x1, 0x7c7, &(0x7f0000001540)="$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")
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000600)='kfree\x00', r4}, 0x18)
socket$inet(0x2, 0x2, 0x1)
syz_open_dev$hiddev(&(0x7f0000000000), 0x6, 0x400000)

627.26339ms ago: executing program 3 (id=1778):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$eJzs3U9rY1UUAPDz0jR9OosUcaMIPtCFqzJ166ZRRhC7UiKoCw3ODEgSBqYQmArGruYTuPR7+BHcuPEbDLgV3E0XlSfvX/7ga402VXR+v9Xh3nfuPXm3TbLJeZ+/Mh3ffZDE2dMnkaZJdI7iKM6T2I9ONL6JbgAA/x/neR6/5mWY5JUNM7udGy0MALgx1ef/X/rgBwD+4z78+JP3B8fHdz7IsjRe6j+eDZOImD6eDav5wf34MiZxL25HPy4i8oUqfve94zvRzQr78fp0PhsWmdPPfqzXH/wSUeYfRj/22/MPs8pK/nw23I3nI4vB/d2m1H682J7/Zkt+DHvxxmsr9R9EP376Ih7EJO5GkbvM//owy97Jv3361afFNkV+0onhXnldKfcFCQAAAAAAAAAAAAAAAAAAAACA7TrIsqRq31P27ymG6v47Oxfl/EHW2F/vz1PlJ81CVX+gvOmWM8/ju6a/zu0sy/L6wmV+N17uerAAAAAAAAAAAAAAAAAAAAAAFE4ePbk1mkzuPTx5dDq+dtB0A2h+1v931zlaGXk1TsejncsX3Nt8r9VuA0WtV14c3W5s6ba0B2eLkeeKera+xV4sRj6KKmgOZqt7vfB2tejpeJTVU81NHo+SP9srbQ7u+9WpXly3sLz8k7jI1880XZS6ntXb0t3o3Wqd+i3P883Weevn6ozqkaRssbHZ7rt10PoCiyAtziJd/OMXUz9cvuClbxk7137TAQAAAAAAAAAAAAAAAAAAWi1/9NsyeXZlaufGigIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf9jy+f9NkEbE+sgfgnmdfNU1ddCLhyf/8ksEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgGfB7AAAA//8rlFqg")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x4}}}}}}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000010140)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {0xa}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x4c}}, 0x0)

573.893431ms ago: executing program 2 (id=1779):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x960, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r1, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0x20, &(0x7f0000000080)={&(0x7f00000001c0)=""/170, 0xaa, <r2=>0x0, &(0x7f0000000040)=""/37, 0x25}}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3af, 0x4}, 0x100000, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r3 = syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x8, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="59c6467b377fa0b28dd18d3c25348771db6a2b512c362b44b00bb2dc9da2ee0cfd7b8b8cb1b53f0612982e4daed24833aafc8876b3476c494b98ba300f0833d4a8c99369dc5ce37eccec3bbafab9435bd574d2ee19a4b7e5ff172b63bfa10b20c4cb54d230d1a558", @ANYRES16=r3], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4003, 0x20800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000044, 0x100}, 0x0, 0xfffffffffffffffd, 0x80000001, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x3, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a00000080000000064242"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xb68, 0x60, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x18)
r7 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
preadv(r7, &(0x7f00000002c0)=[{&(0x7f0000000280)=""/8, 0x8}], 0x1, 0x0, 0x2000000)

557.43409ms ago: executing program 3 (id=1780):
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0xca000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x8}, 0x1100, 0xca0, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1f, 0x1, @perf_config_ext={0x8000000000000000, 0x2f4b}, 0x100410, 0x200, 0x3, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x259a, 0x0, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, &(0x7f00000002c0)=0x6, 0x2, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r0, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r3, 0x2000009)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000016000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xbcba2bc4715270ac, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000780)=ANY=[@ANYBLOB="020300090e00"], 0x70}, 0x1, 0x7}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
iopl(0x3)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)
prlimit64(0x0, 0xe, 0x0, 0x0)

425.972443ms ago: executing program 1 (id=1782):
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
write$tcp_mem(r0, &(0x7f0000000300)={0x0, 0x20, 0x7ffffffe, 0x20, 0x2}, 0x48)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0xfffffffffffffffc}, 0x18)
r5 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xfffffffffffffffc)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x18, 0x52, 0x1, 0x0, 0x25dfdbff, {0xa}, [@generic="30d5"]}, 0x18}}, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
keyctl$chown(0x4, r5, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r5, 0x0, 0x0)

375.014213ms ago: executing program 1 (id=1783):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=ANY=[@ANYRESHEX=0x0, @ANYRESHEX, @ANYRES32, @ANYRESDEC=0x0, @ANYRES8, @ANYRESHEX=0x0, @ANYRES32], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x17, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000089af0000000000000900000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001833000004000000000000000000000031c00800f8ffffff9500000000000000991a0000", @ANYRES32=r0, @ANYBLOB="000000000000000085000000a70000009380ffff10000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x927, 0xbe, &(0x7f00000007c0)=""/190, 0x41100, 0xe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000380)=[{0x5, 0x3, 0xa, 0x8}], 0x10, 0x1, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000940)={'erspan0\x00', &(0x7f0000000540)={'erspan0\x00', <r2=>0x0, 0x40, 0x20, 0x4, 0x40, {{0x15, 0x4, 0x3, 0x10, 0x54, 0x64, 0x0, 0xa, 0x2f, 0x0, @remote, @broadcast, {[@timestamp={0x44, 0xc, 0x43, 0x0, 0x1, [0x5, 0xfffffffc]}, @rr={0x7, 0x1b, 0x6a, [@remote, @dev={0xac, 0x14, 0x14, 0x2c}, @multicast2, @private=0xa010102, @local, @rand_addr=0x64010101]}, @rr={0x7, 0xb, 0x33, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast]}, @timestamp_prespec={0x44, 0xc, 0x6c, 0x3, 0x2, [{@private=0xa010102, 0x58e1}]}]}}}}})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000ac0)={@map, 0x15, 0x1, 0x0, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f00000009c0)=[0x0, 0x0], &(0x7f0000000a00), &(0x7f0000000a40)=[0x0, 0x0, 0x0, 0x0, 0x0], <r3=>0x0}, 0x40)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000d40)=@bpf_lsm={0x1d, 0x11, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000005000000000000000100000018110000", @ANYRES32=r0, @ANYRES64=0x0], &(0x7f0000000b40)='GPL\x00', 0x800, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000b80)={0x2, 0x0, 0x4, 0x6}, 0x10, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000cc0)=[r0], &(0x7f0000000d00)=[{0x0, 0x3}, {0x5, 0x1, 0x5, 0xb}, {0x2, 0x1, 0xa}], 0x10, 0xab6, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000b00)={r1, r2, 0x25, 0x6, @val=@netkit={@void, @value=r4, @void, @void, r3}}, 0x1c)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0xfff1, 0xfff3}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x2}, @TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48c8}, 0x20004804)

288.718765ms ago: executing program 1 (id=1784):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0e000000040000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$tun(r2, 0x0, 0x46)

217.881426ms ago: executing program 1 (id=1785):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x1000}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, 0x0, 0x310)

161.565887ms ago: executing program 0 (id=1786):
getpid()
setreuid(0xee00, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = socket$inet(0x2, 0x2, 0x73)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
sendmmsg$sock(r0, &(0x7f0000001740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00'}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r3 = io_uring_setup(0x3eee, &(0x7f0000000080)={0x0, 0x6d33, 0x1000, 0x0, 0x4000000})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r4, 0x0, 0x62, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51fe4c736edec6f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0xff, 0x194, &(0x7f0000000980)="ffc4438e5c3081d0e133e812196ec0ed923733aa8b5aba32c8650e7a66d6136853773dfbc6226be13039e230d511f1ac50cc7811aac0400e4c833fedf842ae2918e6fddb550729246fcf4c0a01bc64989ea3985fb362751a83991bd56e761379caa64f6148893ff25f38d5cd6dd695bbf9ca709a9960e0e6b054d5e2239bcb7c0fb2ac66dc4c8f534e439ff20ccaf0d48a98c19c92a3b437a699350f49606d21a403f8c112c46fea5486bf367a854b0f6c1e563b656e4794f6793a08bb3656c391643f6df71d0255054368a938d38503d064da82d5dbf395ad47ed3932669168d324ed0f6de8360d499042ddc7d02b6c0772128257702bfe6d0971f00fea85da062cdc", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x24)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

153.877397ms ago: executing program 1 (id=1787):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_mount_image$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', 0x2051014, 0x0, 0x2, 0x0, &(0x7f0000000000))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000002180)=ANY=[], 0x118)
geteuid()
fstat(r2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r7)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x34, r8, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x21, 0x0, @l2={'eth', 0x3a, 'ip6gre0\x00'}}}}}, 0x34}}, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32=0x4}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x0)
getegid()
getpgrp(0x0)
getresuid(&(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540))
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000580), &(0x7f00000005c0)=0xc)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073727a3100000000080041007369770014003300626f6e643000000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f00000003c0)=ANY=[@ANYBLOB="185c6b0000000000000000000000000018110000dfae43a41e116b6f1bb5f7fa053553bf591c46db9f5e1de1a738128d5478f8f28369d161660a0dda2415cc4f232ab473160029cae16e9ed5a8fb056410049994e48527420baf4e5f26f5dac304b0459287532b67f12a0ae938771ab480be08906bffb63ad81a43187610a8e11c50a7bd984af3e9e7e397f431b22fc5ae81746650ec819536d3dd53ea528ffb31dd7b5d0ee9512e80e11ffaffced0ce575b77886672b9b25b5b231388beed64db18313c7a442a867ddca01ac16c386dcc49c2eab38978c0afe9fd737005", @ANYRES32=r11, @ANYRES32=r10], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r12}, 0x10)

85.359388ms ago: executing program 0 (id=1788):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, 0x0, 0x0)

774.53µs ago: executing program 1 (id=1789):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x7, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x50}}, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000240)={'ip6gre0\x00', <r2=>0x0, 0x4, 0x8, 0x2, 0x3, 0x11, @mcast2, @mcast1, 0x8000, 0x80, 0xde0c, 0x2}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r2, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x34, r4, 0x303, 0x4, 0x0, {0x2a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004044}, 0x4004)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r6, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r7}, 0x10)
ioctl$MON_IOCX_GETX(r6, 0x80089203, 0x0)

0s ago: executing program 0 (id=1790):
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0xca000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x8}, 0x1100, 0xca0, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1f, 0x1, @perf_config_ext={0x8000000000000000, 0x2f4b}, 0x100410, 0x200, 0x3, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x259a, 0x0, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, &(0x7f00000002c0)=0x6, 0x2, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RENAMEAT={0x23, 0x2, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x14)
io_uring_enter(r0, 0x6e2, 0x600, 0x1, 0x0, 0xfffc)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x8000}, 0x50)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r3, 0x2000009)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000016000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xbcba2bc4715270ac, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000780)=ANY=[@ANYBLOB="020300090e00"], 0x70}, 0x1, 0x7}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
iopl(0x3)
truncate(&(0x7f0000000080)='./file1\x00', 0xfe0)
prlimit64(0x0, 0xe, 0x0, 0x0)

kernel console output (not intermixed with test programs):

_0): Enslaving as an active interface with an up link
[   87.654321][ T6173] tipc: Started in network mode
[   87.659325][ T6173] tipc: Node identity , cluster identity 4711
[   87.665436][ T6175] 9pnet_fd: Insufficient options for proto=fd
[   87.671521][ T6173] tipc: Failed to obtain node identity
[   87.674496][ T6175] loop0: detected capacity change from 0 to 512
[   87.677012][ T6173] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[   87.710475][ T6174] loop4: detected capacity change from 0 to 8192
[   87.722410][ T6174] syz.4.963: attempt to access beyond end of device
[   87.722410][ T6174] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   87.737377][ T6174] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[   87.738022][ T6175] EXT4-fs error (device loop0): ext4_iget_extra_inode:4692: inode #15: comm syz.0.959: corrupted in-inode xattr: invalid ea_ino
[   87.745226][ T6174] FAT-fs (loop4): Filesystem has been set read-only
[   87.745851][ T6174] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[   87.773182][ T6174] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[   87.781299][ T6175] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.959: couldn't read orphan inode 15 (err -117)
[   87.810501][ T6179] loop2: detected capacity change from 0 to 8192
[   87.893937][ T6190] loop4: detected capacity change from 0 to 512
[   87.904912][ T6190] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   87.916069][ T6190] EXT4-fs (loop4): 1 truncate cleaned up
[   87.995585][ T6194] FAULT_INJECTION: forcing a failure.
[   87.995585][ T6194] name failslab, interval 1, probability 0, space 0, times 0
[   88.008349][ T6194] CPU: 0 UID: 0 PID: 6194 Comm: syz.4.969 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[   88.008437][ T6194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   88.008450][ T6194] Call Trace:
[   88.008456][ T6194]  <TASK>
[   88.008463][ T6194]  dump_stack_lvl+0xf6/0x150
[   88.008491][ T6194]  dump_stack+0x15/0x1a
[   88.008511][ T6194]  should_fail_ex+0x261/0x270
[   88.008539][ T6194]  should_failslab+0x8f/0xb0
[   88.008655][ T6194]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   88.008679][ T6194]  ? __alloc_skb+0x10d/0x320
[   88.008701][ T6194]  __alloc_skb+0x10d/0x320
[   88.008766][ T6194]  netlink_ack+0xf1/0x4f0
[   88.008866][ T6194]  ? ref_tracker_free+0x3b8/0x420
[   88.008896][ T6194]  netlink_rcv_skb+0x19f/0x230
[   88.008921][ T6194]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.009037][ T6194]  rtnetlink_rcv+0x1c/0x30
[   88.009098][ T6194]  netlink_unicast+0x605/0x6c0
[   88.009132][ T6194]  netlink_sendmsg+0x609/0x720
[   88.009162][ T6194]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.009184][ T6194]  __sock_sendmsg+0x140/0x180
[   88.009227][ T6194]  ____sys_sendmsg+0x350/0x4e0
[   88.009262][ T6194]  __sys_sendmsg+0x1a0/0x240
[   88.009307][ T6194]  __x64_sys_sendmsg+0x46/0x50
[   88.009338][ T6194]  x64_sys_call+0x26f3/0x2e10
[   88.009366][ T6194]  do_syscall_64+0xc9/0x1c0
[   88.009464][ T6194]  ? clear_bhb_loop+0x25/0x80
[   88.009487][ T6194]  ? clear_bhb_loop+0x25/0x80
[   88.009579][ T6194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.009605][ T6194] RIP: 0033:0x7fefc9d4d169
[   88.009623][ T6194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.009708][ T6194] RSP: 002b:00007fefc83af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.009738][ T6194] RAX: ffffffffffffffda RBX: 00007fefc9f65fa0 RCX: 00007fefc9d4d169
[   88.009754][ T6194] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[   88.009780][ T6194] RBP: 00007fefc83af090 R08: 0000000000000000 R09: 0000000000000000
[   88.009792][ T6194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.009805][ T6194] R13: 0000000000000000 R14: 00007fefc9f65fa0 R15: 00007fff5e00a758
[   88.009856][ T6194]  </TASK>
[   88.245825][ T6198] loop4: detected capacity change from 0 to 128
[   88.252370][ T6198] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   88.398817][ T6203] loop4: detected capacity change from 0 to 8192
[   88.432402][ T6205] netlink: 'syz.0.973': attribute type 10 has an invalid length.
[   88.440781][ T6205] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.478242][ T6205] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.526111][ T6205] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[   88.552990][ T6211] loop3: detected capacity change from 0 to 128
[   88.569344][ T6211] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   88.585513][ T6211] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   88.655566][ T6213] 9pnet: p9_errstr2errno: server reported unknown error 184467
[   88.687998][ T6220] loop1: detected capacity change from 0 to 512
[   88.694973][ T6220] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   88.711849][ T6220] EXT4-fs (loop1): 1 truncate cleaned up
[   88.776826][ T6224] loop0: detected capacity change from 0 to 512
[   88.786382][ T6224] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[   89.344655][ T6240] loop3: detected capacity change from 0 to 2048
[   89.377012][ T6240] EXT4-fs: Ignoring removed i_version option
[   89.510924][ T6240] FAULT_INJECTION: forcing a failure.
[   89.510924][ T6240] name failslab, interval 1, probability 0, space 0, times 0
[   89.523786][ T6240] CPU: 1 UID: 0 PID: 6240 Comm: syz.3.989 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[   89.523813][ T6240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   89.523827][ T6240] Call Trace:
[   89.523833][ T6240]  <TASK>
[   89.523840][ T6240]  dump_stack_lvl+0xf6/0x150
[   89.523906][ T6240]  dump_stack+0x15/0x1a
[   89.523923][ T6240]  should_fail_ex+0x261/0x270
[   89.523951][ T6240]  should_failslab+0x8f/0xb0
[   89.523989][ T6240]  __kmalloc_noprof+0xad/0x410
[   89.524014][ T6240]  ? alloc_pipe_info+0x1cb/0x360
[   89.524109][ T6240]  alloc_pipe_info+0x1cb/0x360
[   89.524148][ T6240]  splice_direct_to_actor+0x621/0x680
[   89.524184][ T6240]  ? irq_work_queue+0xb4/0x120
[   89.524205][ T6240]  ? __pfx_direct_splice_actor+0x10/0x10
[   89.524263][ T6240]  ? avc_policy_seqno+0x15/0x20
[   89.524328][ T6240]  ? selinux_file_permission+0x22d/0x360
[   89.524358][ T6240]  do_splice_direct+0xd9/0x150
[   89.524391][ T6240]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   89.524433][ T6240]  do_sendfile+0x40a/0x690
[   89.524523][ T6240]  __x64_sys_sendfile64+0x113/0x160
[   89.524548][ T6240]  x64_sys_call+0xfc3/0x2e10
[   89.524581][ T6240]  do_syscall_64+0xc9/0x1c0
[   89.524612][ T6240]  ? clear_bhb_loop+0x25/0x80
[   89.524667][ T6240]  ? clear_bhb_loop+0x25/0x80
[   89.524689][ T6240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.524710][ T6240] RIP: 0033:0x7f781a22d169
[   89.524725][ T6240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.524747][ T6240] RSP: 002b:00007f781888f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   89.524770][ T6240] RAX: ffffffffffffffda RBX: 00007f781a445fa0 RCX: 00007f781a22d169
[   89.524828][ T6240] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006
[   89.524846][ T6240] RBP: 00007f781888f090 R08: 0000000000000000 R09: 0000000000000000
[   89.524860][ T6240] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[   89.524875][ T6240] R13: 0000000000000000 R14: 00007f781a445fa0 R15: 00007ffccdfafbc8
[   89.524897][ T6240]  </TASK>
[   89.735169][ T6224] loop0: detected capacity change from 0 to 128
[   89.962352][ T6250] netlink: 28 bytes leftover after parsing attributes in process `syz.1.988'.
[   89.971362][ T6250] netlink: 28 bytes leftover after parsing attributes in process `syz.1.988'.
[   90.264996][   T29] kauditd_printk_skb: 114 callbacks suppressed
[   90.265010][   T29] audit: type=1400 audit(1743599692.551:4180): avc:  denied  { connect } for  pid=6255 comm="syz.1.993" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   90.290979][   T29] audit: type=1400 audit(1743599692.551:4181): avc:  denied  { write } for  pid=6255 comm="syz.1.993" path="socket:[12874]" dev="sockfs" ino=12874 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   90.330783][ T6258] netlink: 'syz.2.994': attribute type 10 has an invalid length.
[   90.379977][ T6263] 9pnet: p9_errstr2errno: server reported unknown error 18446
[   90.483916][   T29] audit: type=1326 audit(1743599692.801:4182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.507488][   T29] audit: type=1326 audit(1743599692.801:4183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.531021][   T29] audit: type=1326 audit(1743599692.801:4184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.555299][   T29] audit: type=1326 audit(1743599692.801:4185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.578656][   T29] audit: type=1326 audit(1743599692.801:4186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=460 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.602196][   T29] audit: type=1326 audit(1743599692.801:4187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.625604][   T29] audit: type=1326 audit(1743599692.801:4188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.649079][   T29] audit: type=1326 audit(1743599692.801:4189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6268 comm="syz.4.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[   90.742822][ T6277] loop3: detected capacity change from 0 to 2048
[   90.785929][ T6274] loop0: detected capacity change from 0 to 8192
[   90.810824][ T6292] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1006'.
[   90.822162][ T6277] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.834464][ T6292] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1006'.
[   91.209517][ T6310] loop2: detected capacity change from 0 to 512
[   91.217873][ T6310] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[   91.371454][ T6315] 9pnet_fd: Insufficient options for proto=fd
[   91.385035][ T6315] loop4: detected capacity change from 0 to 512
[   91.412584][ T6315] EXT4-fs error (device loop4): ext4_iget_extra_inode:4692: inode #15: comm syz.4.1009: corrupted in-inode xattr: invalid ea_ino
[   91.448621][ T6315] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.1009: couldn't read orphan inode 15 (err -117)
[   91.684618][ T6320] netlink: 'syz.1.1013': attribute type 10 has an invalid length.
[   91.730678][ T1302] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 345: padding at end of block bitmap is not set
[   91.781635][ T1302] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   91.794391][ T1302] EXT4-fs (loop3): This should not happen!! Data will be lost
[   91.794391][ T1302] 
[   91.867388][ T1302] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 1328 with error 28
[   91.880281][ T1302] EXT4-fs (loop3): This should not happen!! Data will be lost
[   91.880281][ T1302] 
[   91.889979][ T1302] EXT4-fs (loop3): Total free blocks count 0
[   91.895977][ T1302] EXT4-fs (loop3): Free/Dirty block details
[   91.901878][ T1302] EXT4-fs (loop3): free_blocks=0
[   91.906893][ T1302] EXT4-fs (loop3): dirty_blocks=1344
[   91.912186][ T1302] EXT4-fs (loop3): Block reservation details
[   91.918180][ T1302] EXT4-fs (loop3): i_reserved_data_blocks=84
[   91.933757][ T6325] loop0: detected capacity change from 0 to 1024
[   91.951691][ T6325] EXT4-fs: Ignoring removed orlov option
[   91.957426][ T6325] EXT4-fs: test_dummy_encryption option not supported
[   92.030122][ T6329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1016'.
[   92.039260][ T6329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1016'.
[   92.105654][ T6310] loop2: detected capacity change from 0 to 128
[   92.311266][ T6331] loop4: detected capacity change from 0 to 8192
[   92.334270][ T6331] FAULT_INJECTION: forcing a failure.
[   92.334270][ T6331] name failslab, interval 1, probability 0, space 0, times 0
[   92.347055][ T6331] CPU: 1 UID: 0 PID: 6331 Comm: syz.4.1017 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[   92.347152][ T6331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   92.347166][ T6331] Call Trace:
[   92.347174][ T6331]  <TASK>
[   92.347182][ T6331]  dump_stack_lvl+0xf6/0x150
[   92.347211][ T6331]  dump_stack+0x15/0x1a
[   92.347228][ T6331]  should_fail_ex+0x261/0x270
[   92.347291][ T6331]  should_failslab+0x8f/0xb0
[   92.347328][ T6331]  kmem_cache_alloc_noprof+0x59/0x340
[   92.347398][ T6331]  ? fat_parse_long+0x5d/0x410
[   92.347421][ T6331]  fat_parse_long+0x5d/0x410
[   92.347446][ T6331]  fat_search_long+0x204/0x9b0
[   92.347483][ T6331]  ? kmem_cache_alloc_lru_noprof+0x236/0x330
[   92.347580][ T6331]  vfat_lookup+0xd8/0x2e0
[   92.347617][ T6331]  __lookup_slow+0x193/0x280
[   92.347647][ T6331]  lookup_slow+0x3c/0x60
[   92.347685][ T6331]  walk_component+0x204/0x240
[   92.347746][ T6331]  ? path_lookupat+0xf6/0x2a0
[   92.347767][ T6331]  path_lookupat+0x103/0x2a0
[   92.347789][ T6331]  filename_lookup+0x14b/0x340
[   92.347829][ T6331]  user_path_at+0x3c/0x140
[   92.347852][ T6331]  do_sys_truncate+0x5f/0x130
[   92.347907][ T6331]  __x64_sys_truncate+0x31/0x40
[   92.347938][ T6331]  x64_sys_call+0x268f/0x2e10
[   92.348031][ T6331]  do_syscall_64+0xc9/0x1c0
[   92.348057][ T6331]  ? clear_bhb_loop+0x25/0x80
[   92.348091][ T6331]  ? clear_bhb_loop+0x25/0x80
[   92.348116][ T6331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.348148][ T6331] RIP: 0033:0x7fefc9d4d169
[   92.348181][ T6331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.348200][ T6331] RSP: 002b:00007fefc83af038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[   92.348219][ T6331] RAX: ffffffffffffffda RBX: 00007fefc9f65fa0 RCX: 00007fefc9d4d169
[   92.348232][ T6331] RDX: 0000000000000000 RSI: 0000000000005c00 RDI: 0000200000000140
[   92.348247][ T6331] RBP: 00007fefc83af090 R08: 0000000000000000 R09: 0000000000000000
[   92.348260][ T6331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.348274][ T6331] R13: 0000000000000000 R14: 00007fefc9f65fa0 R15: 00007fff5e00a758
[   92.348307][ T6331]  </TASK>
[   92.352075][ T6335] loop0: detected capacity change from 0 to 8192
[   92.640957][ T6345] tipc: Started in network mode
[   92.645904][ T6345] tipc: Node identity , cluster identity 4711
[   92.652000][ T6345] tipc: Failed to obtain node identity
[   92.657502][ T6345] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[   92.666892][ T6345] siw: device registration error -23
[   92.667598][ T6346] loop3: detected capacity change from 0 to 2048
[   92.707259][ T6346] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.088430][ T6374] 9pnet: p9_errstr2errno: server reported unknown error 18446
[   93.342781][ T6385] loop1: detected capacity change from 0 to 512
[   93.351493][ T6385] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent
[   93.404081][ T6390] 9pnet_fd: Insufficient options for proto=fd
[   93.413679][ T6390] loop0: detected capacity change from 0 to 512
[   93.448315][ T6390] EXT4-fs error (device loop0): ext4_iget_extra_inode:4692: inode #15: comm syz.0.1031: corrupted in-inode xattr: invalid ea_ino
[   93.497963][ T6390] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.1031: couldn't read orphan inode 15 (err -117)
[   93.549621][ T1308] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[   93.582189][ T1308] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   93.594920][ T1308] EXT4-fs (loop3): This should not happen!! Data will be lost
[   93.594920][ T1308] 
[   93.740056][ T1308] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 331 with error 28
[   93.752837][ T1308] EXT4-fs (loop3): This should not happen!! Data will be lost
[   93.752837][ T1308] 
[   93.762560][ T1308] EXT4-fs (loop3): Total free blocks count 0
[   93.768592][ T1308] EXT4-fs (loop3): Free/Dirty block details
[   93.774486][ T1308] EXT4-fs (loop3): free_blocks=0
[   93.779592][ T1308] EXT4-fs (loop3): dirty_blocks=336
[   93.784804][ T1308] EXT4-fs (loop3): Block reservation details
[   93.790900][ T1308] EXT4-fs (loop3): i_reserved_data_blocks=21
[   93.971199][ T6426] tipc: Failed to obtain node identity
[   93.976931][ T6426] tipc: Enabling of bearer <ib:gre0> rejected, failed to enable media
[   94.101589][ T6426] loop4: detected capacity change from 0 to 8192
[   94.240803][ T6385] loop1: detected capacity change from 0 to 128
[   94.303831][ T6447] tipc: Started in network mode
[   94.308802][ T6447] tipc: Node identity , cluster identity 4711
[   94.315012][ T6447] tipc: Failed to obtain node identity
[   94.320473][ T6447] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[   94.452835][ T6449] loop4: detected capacity change from 0 to 8192
[   94.566402][ T6466] 9pnet_fd: Insufficient options for proto=fd
[   94.605670][ T6466] loop0: detected capacity change from 0 to 512
[   94.612248][ T6465] loop2: detected capacity change from 0 to 1024
[   94.635216][ T6465] EXT4-fs: Ignoring removed oldalloc option
[   94.645939][ T6466] EXT4-fs error (device loop0): ext4_iget_extra_inode:4692: inode #15: comm syz.0.1043: corrupted in-inode xattr: invalid ea_ino
[   94.663508][ T6465] EXT4-fs: Ignoring removed orlov option
[   94.680135][ T6465] EXT4-fs (loop2): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[   94.689363][ T6466] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.1043: couldn't read orphan inode 15 (err -117)
[   94.755126][ T6484] loop1: detected capacity change from 0 to 512
[   94.764169][ T6484] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   94.781150][ T6465] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   94.799876][ T6484] EXT4-fs (loop1): 1 truncate cleaned up
[   94.802742][ T6465] EXT4-fs (loop2): Remounting filesystem read-only
[   94.936528][ T6491] loop2: detected capacity change from 0 to 512
[   94.952207][ T6491] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.975273][ T6491] EXT4-fs (loop2): 1 truncate cleaned up
[   95.118889][ T6501] 9pnet_fd: Insufficient options for proto=fd
[   95.135381][ T6501] loop1: detected capacity change from 0 to 512
[   95.175126][ T6501] EXT4-fs error (device loop1): ext4_iget_extra_inode:4692: inode #15: comm syz.1.1050: corrupted in-inode xattr: invalid ea_ino
[   95.196588][ T6501] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.1050: couldn't read orphan inode 15 (err -117)
[   95.239096][ T6511] net_ratelimit: 13 callbacks suppressed
[   95.239114][ T6511] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[   95.269934][ T6511] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1056'.
[   95.279121][ T6511] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1056'.
[   95.291109][   T29] kauditd_printk_skb: 82 callbacks suppressed
[   95.291125][   T29] audit: type=1326 audit(1743599697.611:4272): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.368597][   T29] audit: type=1326 audit(1743599697.611:4273): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.392403][   T29] audit: type=1326 audit(1743599697.611:4274): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.416249][   T29] audit: type=1326 audit(1743599697.611:4275): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.440065][   T29] audit: type=1326 audit(1743599697.611:4276): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.463925][   T29] audit: type=1326 audit(1743599697.611:4277): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.487604][   T29] audit: type=1326 audit(1743599697.621:4278): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.511517][   T29] audit: type=1326 audit(1743599697.621:4279): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.535386][   T29] audit: type=1326 audit(1743599697.621:4280): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.559230][   T29] audit: type=1326 audit(1743599697.621:4281): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6507 comm="syz.2.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[   95.624226][ T6526] loop0: detected capacity change from 0 to 512
[   95.641619][ T6526] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   95.669846][ T6526] EXT4-fs (loop0): 1 truncate cleaned up
[   95.679739][ T6529] loop3: detected capacity change from 0 to 1024
[   95.693225][ T6529] EXT4-fs: Ignoring removed orlov option
[   95.699076][ T6529] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.788302][ T6529] SELinux:  Context system_u:object_r:dhcpc_exec_t:s0 is not valid (left unmapped).
[   96.098769][ T6547] netlink: 'syz.1.1068': attribute type 1 has an invalid length.
[   96.194460][ T6552] loop1: detected capacity change from 0 to 512
[   96.212695][ T6552] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   96.239272][ T6552] EXT4-fs (loop1): 1 truncate cleaned up
[   96.305331][ T6563] 9pnet: p9_errstr2errno: server reported unknown error 184467
[   96.427257][ T6580] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[   96.442432][ T6580] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1082'.
[   96.451436][ T6580] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1082'.
[   96.496192][ T6586] tipc: Started in network mode
[   96.501175][ T6586] tipc: Node identity , cluster identity 4711
[   96.507328][ T6586] tipc: Failed to obtain node identity
[   96.512801][ T6586] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[   96.538034][ T6584] netlink: 'syz.1.1083': attribute type 10 has an invalid length.
[   96.603204][ T6596] loop2: detected capacity change from 0 to 512
[   96.613147][ T6596] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   96.627817][ T6596] EXT4-fs (loop2): 1 truncate cleaned up
[   96.747677][ T6613] loop1: detected capacity change from 0 to 512
[   96.754395][ T6613] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   96.766230][ T6613] EXT4-fs (loop1): 1 truncate cleaned up
[   96.852002][ T6623] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1098'.
[   96.861114][ T6623] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1098'.
[   96.891996][ T6627] loop2: detected capacity change from 0 to 512
[   96.899817][ T6627] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   96.913305][ T6627] EXT4-fs (loop2): 1 truncate cleaned up
[   96.939126][ T6630] netlink: 'syz.3.1102': attribute type 10 has an invalid length.
[   96.971102][ T6625] loop0: detected capacity change from 0 to 8192
[   97.185524][ T6637] loop2: detected capacity change from 0 to 8192
[   97.512644][ T6660] loop1: detected capacity change from 0 to 128
[   97.519419][ T6660] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   97.542029][ T6660] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   97.574259][ T6662] loop4: detected capacity change from 0 to 512
[   97.582209][ T6662] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   97.596392][ T6662] EXT4-fs (loop4): 1 truncate cleaned up
[   97.608100][ T6662] EXT4-fs mount: 44 callbacks suppressed
[   97.608114][ T6662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.685050][ T6667] 9pnet_fd: Insufficient options for proto=fd
[   97.764250][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.834098][ T6675] loop0: detected capacity change from 0 to 512
[   97.846452][ T6675] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   97.879805][ T6675] EXT4-fs (loop0): 1 truncate cleaned up
[   97.885935][ T6675] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.920878][ T6681] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1122'.
[   97.929967][ T6681] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1122'.
[   97.950437][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.071256][ T6693] loop2: detected capacity change from 0 to 2048
[   98.089591][ T6693] EXT4-fs: Ignoring removed i_version option
[   98.120754][ T6693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.153193][ T6695] loop1: detected capacity change from 0 to 8192
[   98.181999][ T6700] 9pnet_fd: Insufficient options for proto=fd
[   98.194208][ T6700] loop4: detected capacity change from 0 to 512
[   98.417301][ T6700] EXT4-fs error (device loop4): ext4_iget_extra_inode:4692: inode #15: comm syz.4.1127: corrupted in-inode xattr: invalid ea_ino
[   98.509654][ T6700] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.1127: couldn't read orphan inode 15 (err -117)
[   98.589144][ T6700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.589802][ T6711] 9pnet_fd: Insufficient options for proto=fd
[   98.737142][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.785313][ T6721] 9pnet_fd: Insufficient options for proto=fd
[   98.818118][ T6721] Process accounting resumed
[   98.899288][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.928928][ T6729] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[   98.945028][ T6729] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1138'.
[   98.954090][ T6729] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1138'.
[   99.026004][ T6733] netlink: 'syz.1.1139': attribute type 10 has an invalid length.
[   99.076309][ T6739] loop4: detected capacity change from 0 to 512
[   99.083342][ T6739] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   99.096205][ T6739] EXT4-fs (loop4): 1 truncate cleaned up
[   99.108341][ T6739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.183570][ T6744] loop1: detected capacity change from 0 to 8192
[   99.194343][ T6748] 9pnet_fd: Insufficient options for proto=fd
[   99.211259][ T6748] Process accounting resumed
[   99.218040][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.268911][ T6752] process '+}[@' launched '/dev/fd/4' with NULL argv: empty string added
[   99.309214][ T6752] loop4: detected capacity change from 0 to 164
[   99.328465][ T6752] Unable to read rock-ridge attributes
[   99.345864][ T6752] batman_adv: batadv0: Interface deactivated: dummy0
[   99.352685][ T6752] batman_adv: batadv0: Removing interface: dummy0
[   99.364268][ T6752] bridge_slave_0: left allmulticast mode
[   99.370007][ T6752] bridge_slave_0: left promiscuous mode
[   99.376471][ T6752] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.387706][ T6752] bridge_slave_1: left allmulticast mode
[   99.393382][ T6752] bridge_slave_1: left promiscuous mode
[   99.399170][ T6752] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.411805][ T6752] bond0: (slave bond_slave_0): Releasing backup interface
[   99.429120][ T6752] bond0: (slave bond_slave_1): Releasing backup interface
[   99.448361][ T6752] team0: Port device team_slave_0 removed
[   99.459339][ T6752] team0: Port device team_slave_1 removed
[   99.467506][ T6752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.475023][ T6752] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.484336][ T6752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.492304][ T6752] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.510927][ T6752] netdevsim netdevsim4 netdevsim3: left allmulticast mode
[   99.518252][ T6752] netdevsim netdevsim4 netdevsim3: left promiscuous mode
[   99.526145][ T6752] bridge0: port 3(netdevsim3) entered disabled state
[   99.583261][ T6763] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[   99.653042][ T6761] loop0: detected capacity change from 0 to 8192
[   99.887885][ T6773] loop4: detected capacity change from 0 to 8192
[  100.101190][ T6780] netlink: 'syz.3.1154': attribute type 10 has an invalid length.
[  100.115978][ T6782] FAULT_INJECTION: forcing a failure.
[  100.115978][ T6782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.129181][ T6782] CPU: 1 UID: 0 PID: 6782 Comm: syz.2.1155 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  100.129213][ T6782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  100.129227][ T6782] Call Trace:
[  100.129232][ T6782]  <TASK>
[  100.129239][ T6782]  dump_stack_lvl+0xf6/0x150
[  100.129265][ T6782]  dump_stack+0x15/0x1a
[  100.129346][ T6782]  should_fail_ex+0x261/0x270
[  100.129374][ T6782]  should_fail+0xb/0x10
[  100.129397][ T6782]  should_fail_usercopy+0x1a/0x20
[  100.129429][ T6782]  _copy_to_user+0x20/0xa0
[  100.129471][ T6782]  simple_read_from_buffer+0xb2/0x130
[  100.129507][ T6782]  proc_fail_nth_read+0x103/0x140
[  100.129546][ T6782]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  100.129642][ T6782]  vfs_read+0x1b2/0x710
[  100.129674][ T6782]  ? __rcu_read_unlock+0x4e/0x70
[  100.129708][ T6782]  ? __fget_files+0x186/0x1c0
[  100.129788][ T6782]  ksys_read+0xeb/0x1b0
[  100.129843][ T6782]  __x64_sys_read+0x42/0x50
[  100.129877][ T6782]  x64_sys_call+0x2a3b/0x2e10
[  100.129942][ T6782]  do_syscall_64+0xc9/0x1c0
[  100.129968][ T6782]  ? clear_bhb_loop+0x25/0x80
[  100.129989][ T6782]  ? clear_bhb_loop+0x25/0x80
[  100.130014][ T6782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.130039][ T6782] RIP: 0033:0x7fdb2ad4bb7c
[  100.130075][ T6782] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  100.130097][ T6782] RSP: 002b:00007fdb293af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  100.130119][ T6782] RAX: ffffffffffffffda RBX: 00007fdb2af65fa0 RCX: 00007fdb2ad4bb7c
[  100.130134][ T6782] RDX: 000000000000000f RSI: 00007fdb293af0a0 RDI: 0000000000000005
[  100.130149][ T6782] RBP: 00007fdb293af090 R08: 0000000000000000 R09: 0000000000000000
[  100.130163][ T6782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.130176][ T6782] R13: 0000000000000000 R14: 00007fdb2af65fa0 R15: 00007ffc756bd408
[  100.130199][ T6782]  </TASK>
[  100.405933][ T6785] tipc: Started in network mode
[  100.410864][ T6785] tipc: Node identity , cluster identity 4711
[  100.417100][ T6785] tipc: Failed to obtain node identity
[  100.420984][ T6788] loop2: detected capacity change from 0 to 8192
[  100.422640][ T6785] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  100.491829][ T6785] siw: device registration error -23
[  100.550080][   T29] kauditd_printk_skb: 306 callbacks suppressed
[  100.550099][   T29] audit: type=1326 audit(1743599702.871:4588): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.581027][   T29] audit: type=1326 audit(1743599702.871:4589): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.605550][   T29] audit: type=1326 audit(1743599702.871:4590): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.629361][   T29] audit: type=1326 audit(1743599702.871:4591): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.653046][   T29] audit: type=1326 audit(1743599702.871:4592): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.677473][   T29] audit: type=1326 audit(1743599702.871:4593): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.701289][   T29] audit: type=1326 audit(1743599702.871:4594): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.827199][   T29] audit: type=1326 audit(1743599702.881:4595): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.851720][   T29] audit: type=1326 audit(1743599702.911:4596): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  100.876411][   T29] audit: type=1326 audit(1743599702.911:4597): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6794 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  101.011819][ T6811] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  101.083102][ T6811] __nla_validate_parse: 2 callbacks suppressed
[  101.083192][ T6811] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1167'.
[  101.099196][ T6811] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1167'.
[  101.331554][ T6839] loop0: detected capacity change from 0 to 512
[  101.375499][ T6839] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  101.399398][ T6839] EXT4-fs (loop0): 1 truncate cleaned up
[  101.412656][ T6839] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.486240][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.487415][ T6855] usb usb8: usbfs: process 6855 (syz.3.1184) did not claim interface 0 before use
[  101.504596][ T6855] FAULT_INJECTION: forcing a failure.
[  101.504596][ T6855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.518516][ T6855] CPU: 0 UID: 0 PID: 6855 Comm: syz.3.1184 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  101.518608][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.518624][ T6855] Call Trace:
[  101.518632][ T6855]  <TASK>
[  101.518640][ T6855]  dump_stack_lvl+0xf6/0x150
[  101.518668][ T6855]  dump_stack+0x15/0x1a
[  101.518689][ T6855]  should_fail_ex+0x261/0x270
[  101.518763][ T6855]  should_fail+0xb/0x10
[  101.518789][ T6855]  should_fail_usercopy+0x1a/0x20
[  101.518825][ T6855]  _copy_to_user+0x20/0xa0
[  101.518861][ T6855]  simple_read_from_buffer+0xb2/0x130
[  101.518905][ T6855]  proc_fail_nth_read+0x103/0x140
[  101.518949][ T6855]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.518988][ T6855]  vfs_read+0x1b2/0x710
[  101.519024][ T6855]  ? __rcu_read_unlock+0x4e/0x70
[  101.519065][ T6855]  ? __fget_files+0x186/0x1c0
[  101.519090][ T6855]  ksys_read+0xeb/0x1b0
[  101.519125][ T6855]  __x64_sys_read+0x42/0x50
[  101.519163][ T6855]  x64_sys_call+0x2a3b/0x2e10
[  101.519190][ T6855]  do_syscall_64+0xc9/0x1c0
[  101.519221][ T6855]  ? clear_bhb_loop+0x25/0x80
[  101.519265][ T6855]  ? clear_bhb_loop+0x25/0x80
[  101.519286][ T6855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.519307][ T6855] RIP: 0033:0x7f781a22bb7c
[  101.519324][ T6855] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  101.519346][ T6855] RSP: 002b:00007f781888f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  101.519385][ T6855] RAX: ffffffffffffffda RBX: 00007f781a445fa0 RCX: 00007f781a22bb7c
[  101.519398][ T6855] RDX: 000000000000000f RSI: 00007f781888f0a0 RDI: 0000000000000008
[  101.519410][ T6855] RBP: 00007f781888f090 R08: 0000000000000000 R09: 0000000000000000
[  101.519425][ T6855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.519439][ T6855] R13: 0000000000000000 R14: 00007f781a445fa0 R15: 00007ffccdfafbc8
[  101.519469][ T6855]  </TASK>
[  101.817735][ T6861] loop3: detected capacity change from 0 to 8192
[  101.904029][ T6872] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  101.920497][ T6872] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1192'.
[  101.929684][ T6872] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1192'.
[  102.003044][ T6876] loop0: detected capacity change from 0 to 512
[  102.011443][ T6876] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[  102.901473][ T6876] loop0: detected capacity change from 0 to 128
[  102.994974][ T6889] loop1: detected capacity change from 0 to 8192
[  103.292690][ T6905] 9pnet: p9_errstr2errno: server reported unknown error 18446
[  103.386225][ T6908] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1204'.
[  103.395964][ T6908] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1204'.
[  103.439281][ T6913] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  103.531080][ T6916] SELinux: security_context_str_to_sid (u) failed with errno=-22
[  103.545724][ T6913] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1205'.
[  103.554724][ T6913] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1205'.
[  103.654196][ T6928] loop4: detected capacity change from 0 to 512
[  103.661752][ T6928] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  103.671908][ T6916] loop1: detected capacity change from 0 to 8192
[  103.698605][ T6928] EXT4-fs (loop4): 1 truncate cleaned up
[  103.708731][ T6932] loop0: detected capacity change from 0 to 1024
[  103.715806][ T6928] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.728110][ T6932] EXT4-fs: Ignoring removed oldalloc option
[  103.742435][ T6932] EXT4-fs: Ignoring removed orlov option
[  103.765295][ T6932] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  103.825401][ T6932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.848453][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.860842][ T6932] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  103.891814][ T6948] loop3: detected capacity change from 0 to 8192
[  103.906053][ T6932] EXT4-fs (loop0): Remounting filesystem read-only
[  104.007682][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.224477][ T6974] tipc: Started in network mode
[  104.229503][ T6974] tipc: Node identity , cluster identity 4711
[  104.236337][ T6974] tipc: Failed to obtain node identity
[  104.240253][ T6976] loop4: detected capacity change from 0 to 512
[  104.241794][ T6974] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  104.263315][ T6976] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  104.276583][ T6976] EXT4-fs (loop4): 1 truncate cleaned up
[  104.287584][ T6976] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.431850][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.521167][ T6988] Process accounting resumed
[  104.654388][ T7000] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1230'.
[  104.663518][ T7000] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1230'.
[  104.677247][ T7002] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  104.778380][ T7009] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  104.818972][ T7014] netlink: 'syz.2.1238': attribute type 10 has an invalid length.
[  104.956389][ T7020] loop2: detected capacity change from 0 to 8192
[  105.049647][ T7034] 9pnet_fd: Insufficient options for proto=fd
[  105.084708][ T7035] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  105.132834][ T7038] netlink: 'syz.0.1246': attribute type 10 has an invalid length.
[  105.161361][ T7031] loop3: detected capacity change from 0 to 8192
[  105.406711][ T7044] loop1: detected capacity change from 0 to 8192
[  105.418180][ T7049] loop0: detected capacity change from 0 to 8192
[  105.809621][   T29] kauditd_printk_skb: 420 callbacks suppressed
[  105.809638][   T29] audit: type=1326 audit(1743599708.131:5018): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.869232][   T29] audit: type=1326 audit(1743599708.161:5019): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.893091][   T29] audit: type=1326 audit(1743599708.161:5020): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.916970][   T29] audit: type=1326 audit(1743599708.161:5021): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.940725][   T29] audit: type=1326 audit(1743599708.161:5022): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.964496][   T29] audit: type=1326 audit(1743599708.161:5023): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  105.988351][   T29] audit: type=1326 audit(1743599708.161:5024): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  106.012245][   T29] audit: type=1326 audit(1743599708.161:5025): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  106.036103][   T29] audit: type=1326 audit(1743599708.161:5026): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  106.059976][   T29] audit: type=1326 audit(1743599708.161:5027): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7061 comm="syz.2.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb2ad4d169 code=0x7ffc0000
[  106.224916][ T7069] loop3: detected capacity change from 0 to 1024
[  106.235336][ T7069] EXT4-fs: Ignoring removed orlov option
[  106.241079][ T7069] EXT4-fs: Ignoring removed nomblk_io_submit option
[  106.283882][ T7069] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.318690][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.427945][ T7077] loop1: detected capacity change from 0 to 8192
[  106.537661][ T7094] loop1: detected capacity change from 0 to 512
[  106.547839][ T7089] loop4: detected capacity change from 0 to 8192
[  106.559396][ T7094] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  106.576871][ T7094] EXT4-fs (loop1): 1 truncate cleaned up
[  106.590740][ T7094] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.603452][ T7096] Process accounting resumed
[  106.697106][ T7106] netlink: 'syz.3.1269': attribute type 10 has an invalid length.
[  106.797641][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.821245][ T7113] tipc: Started in network mode
[  106.826256][ T7113] tipc: Node identity , cluster identity 4711
[  106.832421][ T7113] tipc: Failed to obtain node identity
[  106.837977][ T7113] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  106.893434][ T7115] loop3: detected capacity change from 0 to 8192
[  106.951498][ T7117] loop1: detected capacity change from 0 to 512
[  106.959025][ T7117] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  106.975088][ T7117] EXT4-fs (loop1): 1 truncate cleaned up
[  106.990390][ T7117] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.073388][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.318724][ T7137] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1279'.
[  107.327843][ T7137] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1279'.
[  107.438068][ T7140] tipc: Started in network mode
[  107.443003][ T7140] tipc: Node identity , cluster identity 4711
[  107.449138][ T7140] tipc: Failed to obtain node identity
[  107.454599][ T7140] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  107.507137][ T7143] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1282'.
[  107.516255][ T7143] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1282'.
[  107.638712][ T7154] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1287'.
[  107.647771][ T7154] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1287'.
[  107.783494][ T7163] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1291'.
[  107.792619][ T7163] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1291'.
[  107.857870][ T7165] netlink: 'syz.0.1293': attribute type 10 has an invalid length.
[  107.976392][ T7177] loop3: detected capacity change from 0 to 2048
[  108.005083][ T7177] EXT4-fs: Ignoring removed i_version option
[  108.028810][ T7177] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.146278][ T7186] loop2: detected capacity change from 0 to 8192
[  108.270505][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.314657][ T7207] loop3: detected capacity change from 0 to 512
[  108.321672][ T7207] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  108.336255][ T7207] EXT4-fs (loop3): 1 truncate cleaned up
[  108.356855][ T7207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.483079][ T7219] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  108.560094][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.717128][ T7235] loop3: detected capacity change from 0 to 1024
[  108.735254][ T7235] EXT4-fs: Ignoring removed orlov option
[  108.740961][ T7235] EXT4-fs: Ignoring removed nomblk_io_submit option
[  108.775586][ T7235] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.852672][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.894537][ T7240] Process accounting resumed
[  109.030435][ T7247] loop1: detected capacity change from 0 to 8192
[  109.031121][ T7253] 9pnet_fd: Insufficient options for proto=fd
[  109.076611][ T7253] loop3: detected capacity change from 0 to 512
[  109.103343][ T7253] EXT4-fs error (device loop3): ext4_iget_extra_inode:4692: inode #15: comm syz.3.1325: corrupted in-inode xattr: invalid ea_ino
[  109.127631][ T7253] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.1325: couldn't read orphan inode 15 (err -117)
[  109.167003][ T7253] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.241159][ T7260] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  109.256715][ T7260] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1329'.
[  109.265735][ T7260] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1329'.
[  109.604013][ T7295] loop0: detected capacity change from 0 to 128
[  109.605877][ T7296] loop2: detected capacity change from 0 to 1024
[  109.624773][ T7295] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  109.639265][ T7296] EXT4-fs: Ignoring removed orlov option
[  109.645742][ T7296] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.661034][ T7295] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.690733][ T7296] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.756241][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.788544][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.800123][ T7308] loop2: detected capacity change from 0 to 512
[  109.816652][ T7308] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  109.830761][ T7308] EXT4-fs (loop2): 1 truncate cleaned up
[  109.842452][ T7308] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.917655][ T7315] tipc: Started in network mode
[  109.922564][ T7315] tipc: Node identity , cluster identity 4711
[  109.928704][ T7315] tipc: Failed to obtain node identity
[  109.934179][ T7315] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  109.991968][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.027066][ T7322] loop3: detected capacity change from 0 to 512
[  110.044660][ T7322] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  110.078583][ T7322] EXT4-fs (loop3): 1 truncate cleaned up
[  110.088853][ T7322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.105588][ T7331] tipc: Started in network mode
[  110.110500][ T7331] tipc: Node identity , cluster identity 4711
[  110.116792][ T7331] tipc: Failed to obtain node identity
[  110.122266][ T7331] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  110.170667][ T7343] IPVS: stopping backup sync thread 7344 ...
[  110.230221][ T7353] tipc: Started in network mode
[  110.235285][ T7353] tipc: Node identity , cluster identity 4711
[  110.241431][ T7353] tipc: Failed to obtain node identity
[  110.247756][ T7353] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  110.294670][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.450658][ T7367] loop1: detected capacity change from 0 to 8192
[  110.512546][ T7373] loop3: detected capacity change from 0 to 2048
[  110.541105][ T7376] loop0: detected capacity change from 0 to 2048
[  110.557958][ T7376] EXT4-fs: Ignoring removed i_version option
[  110.564609][ T7373] EXT4-fs: Ignoring removed i_version option
[  110.618641][ T7377] loop2: detected capacity change from 0 to 8192
[  110.632184][ T7373] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.646970][ T7377] FAULT_INJECTION: forcing a failure.
[  110.646970][ T7377] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  110.659218][ T7376] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.660409][ T7377] CPU: 0 UID: 0 PID: 7377 Comm: syz.2.1370 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  110.660445][ T7377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  110.660524][ T7377] Call Trace:
[  110.660532][ T7377]  <TASK>
[  110.660541][ T7377]  dump_stack_lvl+0xf6/0x150
[  110.660571][ T7377]  dump_stack+0x15/0x1a
[  110.660593][ T7377]  should_fail_ex+0x261/0x270
[  110.660628][ T7377]  should_fail_alloc_page+0xfd/0x110
[  110.660745][ T7377]  alloc_pages_bulk_noprof+0xfd/0x580
[  110.660921][ T7377]  copy_splice_read+0xe7/0x5d0
[  110.660957][ T7377]  ? __kmalloc_noprof+0x287/0x410
[  110.660979][ T7377]  ? alloc_pipe_info+0x1cb/0x360
[  110.661024][ T7377]  ? __pfx_filemap_splice_read+0x10/0x10
[  110.661088][ T7377]  splice_direct_to_actor+0x28e/0x680
[  110.661126][ T7377]  ? __pfx_direct_splice_actor+0x10/0x10
[  110.661168][ T7377]  do_splice_direct+0xd9/0x150
[  110.661254][ T7377]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  110.661298][ T7377]  do_sendfile+0x40a/0x690
[  110.661376][ T7377]  __x64_sys_sendfile64+0x113/0x160
[  110.661404][ T7377]  x64_sys_call+0xfc3/0x2e10
[  110.661432][ T7377]  do_syscall_64+0xc9/0x1c0
[  110.661465][ T7377]  ? clear_bhb_loop+0x25/0x80
[  110.661540][ T7377]  ? clear_bhb_loop+0x25/0x80
[  110.661567][ T7377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.661594][ T7377] RIP: 0033:0x7fdb2ad4d169
[  110.661612][ T7377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.661647][ T7377] RSP: 002b:00007fdb293af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  110.661714][ T7377] RAX: ffffffffffffffda RBX: 00007fdb2af65fa0 RCX: 00007fdb2ad4d169
[  110.661729][ T7377] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  110.661744][ T7377] RBP: 00007fdb293af090 R08: 0000000000000000 R09: 0000000000000000
[  110.661759][ T7377] R10: 0000000000fffe80 R11: 0000000000000246 R12: 0000000000000001
[  110.661774][ T7377] R13: 0000000000000000 R14: 00007fdb2af65fa0 R15: 00007ffc756bd408
[  110.661797][ T7377]  </TASK>
[  110.895875][ T7387] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  110.939330][   T29] kauditd_printk_skb: 269 callbacks suppressed
[  110.939347][   T29] audit: type=1326 audit(1743599713.251:5297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  110.969133][   T29] audit: type=1326 audit(1743599713.251:5298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  110.993299][   T29] audit: type=1326 audit(1743599713.251:5299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  111.016733][   T29] audit: type=1326 audit(1743599713.251:5300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  111.020561][ T7391] tipc: Started in network mode
[  111.045202][ T7391] tipc: Node identity , cluster identity 4711
[  111.051292][ T7391] tipc: Failed to obtain node identity
[  111.056795][ T7391] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  111.110023][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.123707][   T29] audit: type=1326 audit(1743599713.441:5301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  111.173452][ T7394] loop2: detected capacity change from 0 to 512
[  111.183369][ T7394] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  111.213211][   T29] audit: type=1326 audit(1743599713.491:5302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7374 comm="syz.0.1369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  111.265787][ T7394] EXT4-fs (loop2): 1 truncate cleaned up
[  111.272705][ T7394] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.302047][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.394983][   T29] audit: type=1400 audit(1743599713.711:5303): avc:  denied  { remount } for  pid=7402 comm="syz.4.1379" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  111.477978][   T29] audit: type=1326 audit(1743599713.781:5304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7403 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  111.501530][   T29] audit: type=1326 audit(1743599713.781:5305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7403 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  111.524911][   T29] audit: type=1326 audit(1743599713.781:5306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7403 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  111.527877][ T7409] loop4: detected capacity change from 0 to 8192
[  111.548602][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.573647][ T7407] loop0: detected capacity change from 0 to 8192
[  111.604184][ T7415] loop3: detected capacity change from 0 to 2048
[  111.636140][ T7417] loop2: detected capacity change from 0 to 512
[  111.656459][ T7417] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  111.676827][ T7415] EXT4-fs: Ignoring removed i_version option
[  111.696188][ T7417] EXT4-fs (loop2): 1 truncate cleaned up
[  111.712469][ T7417] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.828943][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.829417][ T7415] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.863520][ T7430] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  112.033479][ T7434] loop1: detected capacity change from 0 to 1024
[  112.048878][ T7434] EXT4-fs: Ignoring removed oldalloc option
[  112.082881][ T7434] EXT4-fs: Ignoring removed orlov option
[  112.094636][ T7434] EXT4-fs (loop1): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  112.180725][ T7434] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.206740][ T7440] Process accounting resumed
[  112.237288][ T7434] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  112.257200][ T7434] EXT4-fs (loop1): Remounting filesystem read-only
[  112.298699][ T7444] loop2: detected capacity change from 0 to 256
[  112.324703][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.327690][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.491334][ T7454] loop0: detected capacity change from 0 to 8192
[  112.530885][ T7453] loop1: detected capacity change from 0 to 8192
[  112.670082][ T7466] loop0: detected capacity change from 0 to 512
[  112.709431][ T7466] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  112.761595][ T7466] EXT4-fs (loop0): 1 truncate cleaned up
[  112.777906][ T7466] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.790119][ T7474] loop4: detected capacity change from 0 to 2048
[  112.834362][ T7474] EXT4-fs: Ignoring removed i_version option
[  112.879578][ T7481] __nla_validate_parse: 6 callbacks suppressed
[  112.879608][ T7481] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1403'.
[  112.885338][ T7474] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.912815][ T7481] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1403'.
[  112.931902][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.076652][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.104584][ T7496] loop4: detected capacity change from 0 to 512
[  113.112545][ T7496] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  113.126497][ T7496] EXT4-fs (loop4): 1 truncate cleaned up
[  113.138783][ T7496] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.199480][ T7501] loop2: detected capacity change from 0 to 8192
[  113.213649][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.222984][ T7499] loop0: detected capacity change from 0 to 8192
[  113.238266][ T7499] FAULT_INJECTION: forcing a failure.
[  113.238266][ T7499] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.251370][ T7499] CPU: 1 UID: 0 PID: 7499 Comm: syz.0.1410 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  113.251402][ T7499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.251418][ T7499] Call Trace:
[  113.251426][ T7499]  <TASK>
[  113.251435][ T7499]  dump_stack_lvl+0xf6/0x150
[  113.251464][ T7499]  dump_stack+0x15/0x1a
[  113.251484][ T7499]  should_fail_ex+0x261/0x270
[  113.251564][ T7499]  should_fail+0xb/0x10
[  113.251593][ T7499]  should_fail_usercopy+0x1a/0x20
[  113.251627][ T7499]  strncpy_from_user+0x25/0x230
[  113.251652][ T7499]  ? getname_flags+0x81/0x3b0
[  113.251743][ T7499]  getname_flags+0xb0/0x3b0
[  113.251768][ T7499]  user_path_at+0x26/0x140
[  113.251798][ T7499]  do_sys_truncate+0x5f/0x130
[  113.251844][ T7499]  __x64_sys_truncate+0x31/0x40
[  113.251896][ T7499]  x64_sys_call+0x268f/0x2e10
[  113.251994][ T7499]  do_syscall_64+0xc9/0x1c0
[  113.252026][ T7499]  ? clear_bhb_loop+0x25/0x80
[  113.252051][ T7499]  ? clear_bhb_loop+0x25/0x80
[  113.252092][ T7499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.252117][ T7499] RIP: 0033:0x7fa0f5d3d169
[  113.252154][ T7499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.252175][ T7499] RSP: 002b:00007fa0f43a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[  113.252198][ T7499] RAX: ffffffffffffffda RBX: 00007fa0f5f55fa0 RCX: 00007fa0f5d3d169
[  113.252213][ T7499] RDX: 0000000000000000 RSI: 0000000000002328 RDI: 0000200000000140
[  113.252228][ T7499] RBP: 00007fa0f43a7090 R08: 0000000000000000 R09: 0000000000000000
[  113.252242][ T7499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.252257][ T7499] R13: 0000000000000000 R14: 00007fa0f5f55fa0 R15: 00007ffe65f2fbb8
[  113.252279][ T7499]  </TASK>
[  113.574981][ T7510] loop0: detected capacity change from 0 to 8192
[  113.599443][ T7515] netlink: 'syz.2.1416': attribute type 10 has an invalid length.
[  113.627125][ T7518] 9pnet_fd: Insufficient options for proto=fd
[  113.636519][ T7518] loop3: detected capacity change from 0 to 512
[  113.654433][ T7518] EXT4-fs error (device loop3): ext4_iget_extra_inode:4692: inode #15: comm syz.3.1415: corrupted in-inode xattr: invalid ea_ino
[  113.672381][ T7518] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.1415: couldn't read orphan inode 15 (err -117)
[  113.722534][ T7518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.754423][ T7531] tipc: Started in network mode
[  113.759541][ T7531] tipc: Node identity , cluster identity 4711
[  113.765738][ T7531] tipc: Failed to obtain node identity
[  113.771205][ T7531] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  113.974269][ T7537] loop1: detected capacity change from 0 to 8192
[  114.118266][ T7549] loop4: detected capacity change from 0 to 8192
[  114.183442][ T7553] FAULT_INJECTION: forcing a failure.
[  114.183442][ T7553] name failslab, interval 1, probability 0, space 0, times 0
[  114.196878][ T7553] CPU: 0 UID: 0 PID: 7553 Comm: syz.4.1429 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  114.196984][ T7553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.196996][ T7553] Call Trace:
[  114.197003][ T7553]  <TASK>
[  114.197010][ T7553]  dump_stack_lvl+0xf6/0x150
[  114.197061][ T7553]  dump_stack+0x15/0x1a
[  114.197081][ T7553]  should_fail_ex+0x261/0x270
[  114.197152][ T7553]  should_failslab+0x8f/0xb0
[  114.197184][ T7553]  kmem_cache_alloc_noprof+0x59/0x340
[  114.197210][ T7553]  ? security_inode_alloc+0x37/0x100
[  114.197249][ T7553]  security_inode_alloc+0x37/0x100
[  114.197323][ T7553]  inode_init_always_gfp+0x4a2/0x4f0
[  114.197358][ T7553]  ? __pfx_fat_alloc_inode+0x10/0x10
[  114.197387][ T7553]  alloc_inode+0x86/0x170
[  114.197442][ T7553]  new_inode+0x1e/0xe0
[  114.197465][ T7553]  fat_build_inode+0x159/0x280
[  114.197535][ T7553]  vfat_lookup+0x195/0x2e0
[  114.197578][ T7553]  __lookup_slow+0x193/0x280
[  114.197609][ T7553]  lookup_slow+0x3c/0x60
[  114.197635][ T7553]  walk_component+0x204/0x240
[  114.197764][ T7553]  ? path_lookupat+0xf6/0x2a0
[  114.197794][ T7553]  path_lookupat+0x103/0x2a0
[  114.197818][ T7553]  filename_lookup+0x14b/0x340
[  114.197892][ T7553]  user_path_at+0x3c/0x140
[  114.197921][ T7553]  do_sys_truncate+0x5f/0x130
[  114.197958][ T7553]  __x64_sys_truncate+0x31/0x40
[  114.197994][ T7553]  x64_sys_call+0x268f/0x2e10
[  114.198083][ T7553]  do_syscall_64+0xc9/0x1c0
[  114.198166][ T7553]  ? clear_bhb_loop+0x25/0x80
[  114.198190][ T7553]  ? clear_bhb_loop+0x25/0x80
[  114.198217][ T7553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.198243][ T7553] RIP: 0033:0x7fefc9d4d169
[  114.198261][ T7553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.198283][ T7553] RSP: 002b:00007fefc838e038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[  114.198310][ T7553] RAX: ffffffffffffffda RBX: 00007fefc9f66080 RCX: 00007fefc9d4d169
[  114.198325][ T7553] RDX: 0000000000000000 RSI: 0000000000000fe0 RDI: 0000200000000080
[  114.198340][ T7553] RBP: 00007fefc838e090 R08: 0000000000000000 R09: 0000000000000000
[  114.198354][ T7553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.198387][ T7553] R13: 0000000000000001 R14: 00007fefc9f66080 R15: 00007fff5e00a758
[  114.198410][ T7553]  </TASK>
[  114.447948][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.574172][ T7564] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1435'.
[  114.583610][ T7564] bridge_slave_1: left allmulticast mode
[  114.590034][ T7564] bridge_slave_1: left promiscuous mode
[  114.595840][ T7564] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.603774][ T7564] bridge_slave_0: left allmulticast mode
[  114.609491][ T7564] bridge_slave_0: left promiscuous mode
[  114.615960][ T7564] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.771293][ T7577] Process accounting resumed
[  114.779997][ T7578] loop3: detected capacity change from 0 to 1024
[  114.797957][ T7578] EXT4-fs: Ignoring removed orlov option
[  114.803700][ T7578] EXT4-fs: Ignoring removed nomblk_io_submit option
[  114.822450][ T7580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1438'.
[  114.832316][ T7580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1438'.
[  114.843521][ T7578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.907755][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.098882][ T7595] loop4: detected capacity change from 0 to 512
[  115.116833][ T7595] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  115.147844][ T7595] EXT4-fs (loop4): 1 truncate cleaned up
[  115.164075][ T7606] FAULT_INJECTION: forcing a failure.
[  115.164075][ T7606] name failslab, interval 1, probability 0, space 0, times 0
[  115.172926][ T7595] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.176823][ T7606] CPU: 0 UID: 0 PID: 7606 Comm: syz.3.1450 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  115.176857][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.177013][ T7606] Call Trace:
[  115.177020][ T7606]  <TASK>
[  115.177029][ T7606]  dump_stack_lvl+0xf6/0x150
[  115.177060][ T7606]  dump_stack+0x15/0x1a
[  115.177082][ T7606]  should_fail_ex+0x261/0x270
[  115.177181][ T7606]  should_failslab+0x8f/0xb0
[  115.177252][ T7606]  __kmalloc_noprof+0xad/0x410
[  115.177279][ T7606]  ? bpf_test_init+0xa9/0x160
[  115.177308][ T7606]  bpf_test_init+0xa9/0x160
[  115.177390][ T7606]  bpf_prog_test_run_skb+0x175/0xbe0
[  115.177494][ T7606]  ? __fget_files+0x186/0x1c0
[  115.177559][ T7606]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  115.177658][ T7606]  bpf_prog_test_run+0x20e/0x3a0
[  115.177692][ T7606]  __sys_bpf+0x440/0x800
[  115.177728][ T7606]  __x64_sys_bpf+0x43/0x50
[  115.177757][ T7606]  x64_sys_call+0x23da/0x2e10
[  115.177790][ T7606]  do_syscall_64+0xc9/0x1c0
[  115.177892][ T7606]  ? clear_bhb_loop+0x25/0x80
[  115.177920][ T7606]  ? clear_bhb_loop+0x25/0x80
[  115.177947][ T7606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.178025][ T7606] RIP: 0033:0x7f781a22d169
[  115.178044][ T7606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.178067][ T7606] RSP: 002b:00007f781888f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  115.178123][ T7606] RAX: ffffffffffffffda RBX: 00007f781a445fa0 RCX: 00007f781a22d169
[  115.178139][ T7606] RDX: 000000000000001e RSI: 0000200000000080 RDI: 000000000000000a
[  115.178154][ T7606] RBP: 00007f781888f090 R08: 0000000000000000 R09: 0000000000000000
[  115.178216][ T7606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.178232][ T7606] R13: 0000000000000000 R14: 00007f781a445fa0 R15: 00007ffccdfafbc8
[  115.178300][ T7606]  </TASK>
[  115.243307][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'.
[  115.243345][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'.
[  115.243373][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'.
[  115.243405][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'.
[  115.243506][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'.
[  115.246163][ T7608] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  115.458152][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.551093][ T7615] loop3: detected capacity change from 0 to 8192
[  115.688986][ T7636] loop1: detected capacity change from 0 to 128
[  115.696868][ T7636] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  115.710693][ T7636] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  115.807113][ T7643] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  115.820504][ T7638] loop0: detected capacity change from 0 to 8192
[  115.966343][ T7653] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  115.982050][ T7655] loop1: detected capacity change from 0 to 128
[  116.004308][ T7655] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  116.016583][ T7655] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  116.090249][   T29] kauditd_printk_skb: 432 callbacks suppressed
[  116.090265][   T29] audit: type=1326 audit(1743599718.411:5739): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  116.176542][ T7664] loop2: detected capacity change from 0 to 512
[  116.229756][ T7664] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[  116.727288][ T7672] loop1: detected capacity change from 0 to 2048
[  116.792091][ T7662] loop0: detected capacity change from 0 to 8192
[  116.805483][ T7672] EXT4-fs: Ignoring removed i_version option
[  116.909741][ T7672] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.071324][   T29] audit: type=1326 audit(1743599718.411:5740): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.095866][   T29] audit: type=1326 audit(1743599718.461:5741): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.119605][   T29] audit: type=1326 audit(1743599718.461:5742): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.144049][   T29] audit: type=1326 audit(1743599718.461:5743): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.161656][ T7691] loop4: detected capacity change from 0 to 128
[  117.168666][   T29] audit: type=1326 audit(1743599718.461:5744): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.184979][ T7693] loop3: detected capacity change from 0 to 512
[  117.198504][   T29] audit: type=1326 audit(1743599718.461:5745): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.225482][ T7693] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  117.228559][   T29] audit: type=1326 audit(1743599718.461:5746): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.239533][ T7691] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  117.262024][   T29] audit: type=1326 audit(1743599718.461:5747): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.295744][ T7693] EXT4-fs (loop3): 1 truncate cleaned up
[  117.297428][   T29] audit: type=1326 audit(1743599718.461:5748): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7658 comm="syz.1.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f46476ad169 code=0x7ffc0000
[  117.302766][ T7693] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.345062][ T7664] loop2: detected capacity change from 0 to 128
[  117.442275][ T7691] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  118.356937][ T7699] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  118.376404][ T7699] __nla_validate_parse: 48 callbacks suppressed
[  118.376422][ T7699] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1486'.
[  118.391710][ T7699] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1486'.
[  118.411593][ T7706] tipc: Started in network mode
[  118.416605][ T7706] tipc: Node identity , cluster identity 4711
[  118.422685][ T7706] tipc: Failed to obtain node identity
[  118.428216][ T7706] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  118.447590][ T7706] siw: device registration error -23
[  118.499850][ T7705] loop0: detected capacity change from 0 to 8192
[  118.551707][ T7709] loop2: detected capacity change from 0 to 8192
[  118.564347][ T7712] loop1: detected capacity change from 0 to 8192
[  118.716556][ T7724] loop1: detected capacity change from 0 to 256
[  118.789013][ T7729] Process accounting resumed
[  118.867453][ T7732] loop1: detected capacity change from 0 to 8192
[  119.011683][ T7746] tipc: Started in network mode
[  119.016672][ T7746] tipc: Node identity , cluster identity 4711
[  119.022934][ T7746] tipc: Failed to obtain node identity
[  119.028572][ T7746] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  119.038878][ T7746] siw: device registration error -23
[  119.212679][ T7751] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  119.344273][ T7757] loop4: detected capacity change from 0 to 256
[  119.426080][ T7762] netlink: 'syz.4.1511': attribute type 10 has an invalid length.
[  119.452906][ T7762] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  119.542708][ T7766] Process accounting resumed
[  119.666251][ T7764] loop2: detected capacity change from 0 to 8192
[  119.753073][ T7777] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  119.773228][ T7779] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  119.918582][ T7789] loop0: detected capacity change from 0 to 256
[  119.949198][ T7791] netlink: 'syz.1.1522': attribute type 10 has an invalid length.
[  120.051301][ T7793] Process accounting resumed
[  120.097214][ T7795] loop0: detected capacity change from 0 to 8192
[  120.169563][ T7799] loop1: detected capacity change from 0 to 512
[  120.246332][ T7799] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  120.282363][ T7799] EXT4-fs (loop1): 1 truncate cleaned up
[  120.462368][ T7808] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  120.857586][ T7824] loop4: detected capacity change from 0 to 1024
[  120.869378][ T7824] EXT4-fs: Ignoring removed oldalloc option
[  120.886441][ T7824] EXT4-fs: Ignoring removed orlov option
[  120.892688][ T7824] EXT4-fs (loop4): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  120.936924][ T7824] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  120.959885][ T7824] EXT4-fs (loop4): Remounting filesystem read-only
[  121.051808][ T7834] netlink: 'syz.0.1537': attribute type 10 has an invalid length.
[  121.058549][ T7832] Process accounting resumed
[  121.111674][   T29] kauditd_printk_skb: 478 callbacks suppressed
[  121.111696][   T29] audit: type=1326 audit(1743599723.431:6227): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.173244][   T29] audit: type=1326 audit(1743599723.461:6228): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.197074][   T29] audit: type=1326 audit(1743599723.461:6229): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.199958][ T7847] tipc: Started in network mode
[  121.220961][   T29] audit: type=1326 audit(1743599723.461:6230): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.226521][ T7847] tipc: Node identity , cluster identity 4711
[  121.249590][   T29] audit: type=1326 audit(1743599723.461:6231): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.256424][ T7847] tipc: Failed to obtain node identity
[  121.279411][   T29] audit: type=1326 audit(1743599723.461:6232): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.285626][ T7847] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  121.308648][   T29] audit: type=1326 audit(1743599723.461:6233): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.341087][   T29] audit: type=1326 audit(1743599723.461:6234): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.364928][   T29] audit: type=1326 audit(1743599723.461:6235): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.388718][   T29] audit: type=1326 audit(1743599723.461:6236): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7838 comm="syz.4.1539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  121.417596][ T7851] tipc: Started in network mode
[  121.422601][ T7851] tipc: Node identity , cluster identity 4711
[  121.428827][ T7851] tipc: Failed to obtain node identity
[  121.434380][ T7851] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  121.478247][ T7853] loop2: detected capacity change from 0 to 1024
[  121.501306][ T7853] EXT4-fs: Ignoring removed oldalloc option
[  121.510581][ T7857] tipc: Started in network mode
[  121.515550][ T7857] tipc: Node identity , cluster identity 4711
[  121.521630][ T7853] EXT4-fs: Ignoring removed orlov option
[  121.521632][ T7857] tipc: Failed to obtain node identity
[  121.533531][ T7857] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  121.553602][ T7857] siw: device registration error -23
[  121.556360][ T7853] EXT4-fs (loop2): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  121.588320][ T7859] netlink: 'syz.4.1551': attribute type 10 has an invalid length.
[  121.644000][ T7861] loop3: detected capacity change from 0 to 8192
[  121.646044][ T7853] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  121.676708][ T7853] EXT4-fs (loop2): Remounting filesystem read-only
[  121.759591][ T7879] loop2: detected capacity change from 0 to 2048
[  121.767884][ T7879] EXT4-fs: Ignoring removed i_version option
[  121.791376][ T7881] loop4: detected capacity change from 0 to 512
[  121.810852][ T7881] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent
[  122.037112][ T7881] loop4: detected capacity change from 0 to 128
[  122.055269][ T7888] loop1: detected capacity change from 0 to 256
[  122.534025][ T7897] tipc: Started in network mode
[  122.539053][ T7897] tipc: Node identity , cluster identity 4711
[  122.545318][ T7897] tipc: Failed to obtain node identity
[  122.551486][ T7897] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  122.564777][ T7897] siw: device registration error -23
[  122.597715][ T7901] tipc: Started in network mode
[  122.602620][ T7901] tipc: Node identity , cluster identity 4711
[  122.609446][ T7901] tipc: Failed to obtain node identity
[  122.615000][ T7901] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  122.787904][ T7909] netlink: 'syz.2.1565': attribute type 10 has an invalid length.
[  122.850274][ T7911] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  122.878658][ T7911] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1566'.
[  122.887741][ T7911] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1566'.
[  122.972762][ T7919] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1568'.
[  123.260560][ T7930] loop3: detected capacity change from 0 to 256
[  123.290846][ T7930] FAT-fs (loop3): bogus number of FAT sectors
[  123.296971][ T7930] FAT-fs (loop3): Can't find a valid FAT filesystem
[  123.501759][ T7942] loop0: detected capacity change from 0 to 1024
[  123.527695][ T7942] EXT4-fs: Ignoring removed oldalloc option
[  123.533712][ T7942] EXT4-fs: Ignoring removed orlov option
[  123.540069][ T7942] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  123.591357][ T7942] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  123.612878][ T7942] EXT4-fs (loop0): Remounting filesystem read-only
[  123.739748][ T7954] loop3: detected capacity change from 0 to 512
[  123.753313][ T7954] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  123.773765][ T7954] EXT4-fs (loop3): 1 truncate cleaned up
[  124.064393][ T7967] siw: device registration error -23
[  124.091949][ T7971] loop1: detected capacity change from 0 to 512
[  124.113906][ T7961] loop2: detected capacity change from 0 to 512
[  124.139499][ T7971] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.184178][ T7971] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.267181][ T7961] ext4 filesystem being mounted at /328/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  124.328808][ T7961] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #2: comm syz.2.1583: corrupted inode contents
[  124.351346][ T7981] loop1: detected capacity change from 0 to 256
[  124.370161][ T7961] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #2: comm syz.2.1583: mark_inode_dirty error
[  124.411233][ T7961] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #2: comm syz.2.1583: corrupted inode contents
[  124.446995][ T7961] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1583: mark_inode_dirty error
[  124.492795][ T7990] FAULT_INJECTION: forcing a failure.
[  124.492795][ T7990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.505906][ T7990] CPU: 1 UID: 0 PID: 7990 Comm: syz.1.1594 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  124.505933][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  124.506035][ T7990] Call Trace:
[  124.506042][ T7990]  <TASK>
[  124.506049][ T7990]  dump_stack_lvl+0xf6/0x150
[  124.506073][ T7990]  dump_stack+0x15/0x1a
[  124.506091][ T7990]  should_fail_ex+0x261/0x270
[  124.506119][ T7990]  should_fail+0xb/0x10
[  124.506171][ T7990]  should_fail_usercopy+0x1a/0x20
[  124.506343][ T7990]  _copy_to_user+0x20/0xa0
[  124.506381][ T7990]  simple_read_from_buffer+0xb2/0x130
[  124.506418][ T7990]  proc_fail_nth_read+0x103/0x140
[  124.506524][ T7990]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  124.506632][ T7990]  vfs_read+0x1b2/0x710
[  124.506660][ T7990]  ? __rcu_read_unlock+0x4e/0x70
[  124.506688][ T7990]  ? __fget_files+0x186/0x1c0
[  124.506710][ T7990]  ksys_read+0xeb/0x1b0
[  124.506744][ T7990]  __x64_sys_read+0x42/0x50
[  124.506852][ T7990]  x64_sys_call+0x2a3b/0x2e10
[  124.506875][ T7990]  do_syscall_64+0xc9/0x1c0
[  124.506907][ T7990]  ? clear_bhb_loop+0x25/0x80
[  124.506932][ T7990]  ? clear_bhb_loop+0x25/0x80
[  124.506958][ T7990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.506979][ T7990] RIP: 0033:0x7f46476abb7c
[  124.506997][ T7990] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  124.507018][ T7990] RSP: 002b:00007f4645d0f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.507040][ T7990] RAX: ffffffffffffffda RBX: 00007f46478c5fa0 RCX: 00007f46476abb7c
[  124.507077][ T7990] RDX: 000000000000000f RSI: 00007f4645d0f0a0 RDI: 0000000000000007
[  124.507091][ T7990] RBP: 00007f4645d0f090 R08: 0000000000000000 R09: 0000000000000000
[  124.507105][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  124.507147][ T7990] R13: 0000000000000000 R14: 00007f46478c5fa0 R15: 00007ffd46f08e88
[  124.507165][ T7990]  </TASK>
[  124.768573][ T8002] 9pnet_fd: Insufficient options for proto=fd
[  124.794309][ T8002] Process accounting resumed
[  124.835755][ T8009] loop1: detected capacity change from 0 to 512
[  124.859061][ T8009] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  124.869455][ T8012] loop4: detected capacity change from 0 to 512
[  124.879465][ T8014] netlink: 'syz.2.1604': attribute type 10 has an invalid length.
[  124.887724][ T8009] EXT4-fs (loop1): 1 truncate cleaned up
[  124.888049][ T8012] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  124.918121][ T8012] EXT4-fs (loop4): 1 truncate cleaned up
[  124.978891][ T8021] loop2: detected capacity change from 0 to 2048
[  124.989540][ T8023] loop0: detected capacity change from 0 to 512
[  124.996613][ T8021] EXT4-fs: Ignoring removed i_version option
[  125.017556][ T8023] ext4 filesystem being mounted at /299/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.038952][ T8027] loop1: detected capacity change from 0 to 2048
[  125.046042][ T8027] EXT4-fs: Ignoring removed i_version option
[  125.081594][ T8023] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1607'.
[  125.347842][ T8059] netlink: 'syz.0.1619': attribute type 10 has an invalid length.
[  125.432436][ T8065] loop3: detected capacity change from 0 to 512
[  125.463019][ T8065] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  125.492860][ T8065] EXT4-fs (loop3): 1 truncate cleaned up
[  125.672695][ T8074] loop0: detected capacity change from 0 to 8192
[  125.686572][ T8081] tipc: Started in network mode
[  125.691468][ T8081] tipc: Node identity , cluster identity 4711
[  125.698271][ T8081] tipc: Failed to obtain node identity
[  125.703751][ T8081] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  125.777458][ T8081] siw: device registration error -23
[  125.817582][ T8090] FAULT_INJECTION: forcing a failure.
[  125.817582][ T8090] name failslab, interval 1, probability 0, space 0, times 0
[  125.830274][ T8090] CPU: 1 UID: 0 PID: 8090 Comm: syz.1.1631 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  125.830313][ T8090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.830324][ T8090] Call Trace:
[  125.830331][ T8090]  <TASK>
[  125.830340][ T8090]  dump_stack_lvl+0xf6/0x150
[  125.830424][ T8090]  dump_stack+0x15/0x1a
[  125.830441][ T8090]  should_fail_ex+0x261/0x270
[  125.830473][ T8090]  should_failslab+0x8f/0xb0
[  125.830509][ T8090]  __kmalloc_cache_noprof+0x55/0x320
[  125.830578][ T8090]  ? audit_log_d_path+0x8e/0x150
[  125.830605][ T8090]  audit_log_d_path+0x8e/0x150
[  125.830680][ T8090]  audit_log_d_path_exe+0x42/0x70
[  125.830709][ T8090]  audit_log_task+0x1f1/0x250
[  125.830730][ T8090]  audit_seccomp+0x68/0x130
[  125.830748][ T8090]  __seccomp_filter+0x694/0x10e0
[  125.830800][ T8090]  ? mntput_no_expire+0x73/0x3e0
[  125.830841][ T8090]  __secure_computing+0x7e/0x160
[  125.831004][ T8090]  syscall_trace_enter+0xcf/0x1f0
[  125.831043][ T8090]  do_syscall_64+0xaa/0x1c0
[  125.831071][ T8090]  ? clear_bhb_loop+0x25/0x80
[  125.831110][ T8090]  ? clear_bhb_loop+0x25/0x80
[  125.831137][ T8090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.831160][ T8090] RIP: 0033:0x7f46476abb7c
[  125.831173][ T8090] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  125.831201][ T8090] RSP: 002b:00007f4645d0f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.831220][ T8090] RAX: ffffffffffffffda RBX: 00007f46478c5fa0 RCX: 00007f46476abb7c
[  125.831233][ T8090] RDX: 000000000000000f RSI: 00007f4645d0f0a0 RDI: 0000000000000003
[  125.831245][ T8090] RBP: 00007f4645d0f090 R08: 0000000000000000 R09: 0000000000000000
[  125.831256][ T8090] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000002
[  125.831268][ T8090] R13: 0000000000000000 R14: 00007f46478c5fa0 R15: 00007ffd46f08e88
[  125.831285][ T8090]  </TASK>
[  126.063401][ T8094] netlink: 'syz.3.1632': attribute type 10 has an invalid length.
[  126.138576][ T8100] loop1: detected capacity change from 0 to 512
[  126.148161][ T8100] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  126.159723][ T8102] loop4: detected capacity change from 0 to 512
[  126.165120][ T8100] EXT4-fs (loop1): 1 truncate cleaned up
[  126.166637][ T8102] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.191005][ T8102] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1636: invalid indirect mapped block 4294967295 (level 1)
[  126.207458][ T8102] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1636: invalid indirect mapped block 4294967295 (level 1)
[  126.240129][ T8102] EXT4-fs (loop4): 2 truncates cleaned up
[  126.325950][ T8111] 9pnet_fd: Insufficient options for proto=fd
[  126.335050][ T8111] loop3: detected capacity change from 0 to 512
[  126.346716][ T8111] EXT4-fs error (device loop3): ext4_iget_extra_inode:4692: inode #15: comm syz.3.1637: corrupted in-inode xattr: invalid ea_ino
[  126.409493][ T8111] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.1637: couldn't read orphan inode 15 (err -117)
[  126.513092][ T8124] tipc: Started in network mode
[  126.518135][ T8124] tipc: Node identity , cluster identity 4711
[  126.524298][ T8124] tipc: Failed to obtain node identity
[  126.529903][ T8124] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  126.546454][ T8124] siw: device registration error -23
[  126.701605][ T8132] loop0: detected capacity change from 0 to 256
[  126.760470][ T8137] netlink: 'syz.0.1647': attribute type 10 has an invalid length.
[  126.837263][ T8143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1651'.
[  126.846330][ T8143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1651'.
[  126.855389][   T29] kauditd_printk_skb: 322 callbacks suppressed
[  126.855424][   T29] audit: type=1400 audit(1743599729.161:6559): avc:  denied  { write } for  pid=8144 comm="syz.0.1650" name="file0" dev="tmpfs" ino=1679 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  126.885012][   T29] audit: type=1400 audit(1743599729.161:6560): avc:  denied  { open } for  pid=8144 comm="syz.0.1650" path="/310/file0" dev="tmpfs" ino=1679 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  126.907952][   T29] audit: type=1400 audit(1743599729.161:6561): avc:  denied  { ioctl } for  pid=8144 comm="syz.0.1650" path="/310/file0" dev="tmpfs" ino=1679 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  126.993728][ T8154] loop0: detected capacity change from 0 to 256
[  127.022878][   T29] audit: type=1326 audit(1743599729.341:6562): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.047430][   T29] audit: type=1326 audit(1743599729.341:6563): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.075941][   T29] audit: type=1326 audit(1743599729.371:6564): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.099759][   T29] audit: type=1326 audit(1743599729.371:6565): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.124243][   T29] audit: type=1326 audit(1743599729.371:6566): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.148692][   T29] audit: type=1326 audit(1743599729.371:6567): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.172381][   T29] audit: type=1326 audit(1743599729.371:6568): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8155 comm="syz.0.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0f5d3d169 code=0x7ffc0000
[  127.236562][ T8164] loop3: detected capacity change from 0 to 256
[  127.284383][ T8171] netlink: 'syz.3.1659': attribute type 10 has an invalid length.
[  127.384492][ T8182] siw: device registration error -23
[  127.390671][ T8182] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1664'.
[  127.399724][ T8182] IPv6: NLM_F_CREATE should be specified when creating new route
[  127.427221][ T8184] loop3: detected capacity change from 0 to 256
[  127.529232][ T8192] loop4: detected capacity change from 0 to 2048
[  127.536274][ T8192] EXT4-fs: Ignoring removed i_version option
[  127.571976][ T8195] loop0: detected capacity change from 0 to 512
[  127.579399][ T8195] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  127.607631][ T8195] EXT4-fs (loop0): 1 truncate cleaned up
[  127.624634][ T8201] loop3: detected capacity change from 0 to 256
[  127.625010][ T8195] EXT4-fs mount: 37 callbacks suppressed
[  127.625026][ T8195] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.722873][ T8208] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  127.734035][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.779326][ T8212] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1675'.
[  127.789111][ T8211] netlink: 'syz.0.1673': attribute type 10 has an invalid length.
[  127.799568][ T8214] tipc: Started in network mode
[  127.804451][ T8214] tipc: Node identity , cluster identity 4711
[  127.810620][ T8214] tipc: Failed to obtain node identity
[  127.816136][ T8214] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  127.825904][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.840439][ T8214] siw: device registration error -23
[  127.857583][ T8216] loop4: detected capacity change from 0 to 256
[  127.946512][ T8227] loop0: detected capacity change from 0 to 256
[  128.012353][ T8225] loop3: detected capacity change from 0 to 8192
[  128.073220][ T8232] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1683'.
[  128.089528][ T8232] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1683'.
[  128.182007][ T8239] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1685'.
[  128.227054][ T8236] loop4: detected capacity change from 0 to 512
[  128.243464][ T8236] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  128.285586][ T8236] EXT4-fs (loop4): 1 truncate cleaned up
[  128.291614][ T8236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.411746][ T8250] loop0: detected capacity change from 0 to 8192
[  128.427788][ T8252] tipc: Started in network mode
[  128.432750][ T8252] tipc: Node identity , cluster identity 4711
[  128.439029][ T8252] tipc: Failed to obtain node identity
[  128.444637][ T8252] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  128.467861][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.478000][ T8252] siw: device registration error -23
[  128.641111][ T8260] loop0: detected capacity change from 0 to 8192
[  128.646503][ T8266] loop4: detected capacity change from 0 to 8192
[  128.723974][ T8274] FAULT_INJECTION: forcing a failure.
[  128.723974][ T8274] name failslab, interval 1, probability 0, space 0, times 0
[  128.737350][ T8274] CPU: 0 UID: 0 PID: 8274 Comm: syz.2.1700 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  128.737380][ T8274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.737391][ T8274] Call Trace:
[  128.737412][ T8274]  <TASK>
[  128.737419][ T8274]  dump_stack_lvl+0xf6/0x150
[  128.737447][ T8274]  dump_stack+0x15/0x1a
[  128.737475][ T8274]  should_fail_ex+0x261/0x270
[  128.737509][ T8274]  should_failslab+0x8f/0xb0
[  128.737548][ T8274]  kmem_cache_alloc_node_noprof+0x5c/0x340
[  128.737646][ T8274]  ? __alloc_skb+0x10d/0x320
[  128.737683][ T8274]  __alloc_skb+0x10d/0x320
[  128.737705][ T8274]  netlink_alloc_large_skb+0xad/0xe0
[  128.737810][ T8274]  netlink_sendmsg+0x3da/0x720
[  128.737837][ T8274]  ? __pfx_netlink_sendmsg+0x10/0x10
[  128.737883][ T8274]  __sock_sendmsg+0x140/0x180
[  128.737922][ T8274]  ____sys_sendmsg+0x350/0x4e0
[  128.737957][ T8274]  __sys_sendmsg+0x1a0/0x240
[  128.738008][ T8274]  __x64_sys_sendmsg+0x46/0x50
[  128.738048][ T8274]  x64_sys_call+0x26f3/0x2e10
[  128.738078][ T8274]  do_syscall_64+0xc9/0x1c0
[  128.738110][ T8274]  ? clear_bhb_loop+0x25/0x80
[  128.738134][ T8274]  ? clear_bhb_loop+0x25/0x80
[  128.738155][ T8274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.738235][ T8274] RIP: 0033:0x7fdb2ad4d169
[  128.738268][ T8274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.738290][ T8274] RSP: 002b:00007fdb293af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  128.738312][ T8274] RAX: ffffffffffffffda RBX: 00007fdb2af65fa0 RCX: 00007fdb2ad4d169
[  128.738327][ T8274] RDX: 0000000000000000 RSI: 0000200000000500 RDI: 0000000000000003
[  128.738341][ T8274] RBP: 00007fdb293af090 R08: 0000000000000000 R09: 0000000000000000
[  128.738356][ T8274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.738370][ T8274] R13: 0000000000000000 R14: 00007fdb2af65fa0 R15: 00007ffc756bd408
[  128.738394][ T8274]  </TASK>
[  128.993701][ T8281] 9pnet_fd: Insufficient options for proto=fd
[  129.002541][ T8281] loop1: detected capacity change from 0 to 512
[  129.018423][ T8281] EXT4-fs error (device loop1): ext4_iget_extra_inode:4692: inode #15: comm syz.1.1699: corrupted in-inode xattr: invalid ea_ino
[  129.046899][ T8281] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.1699: couldn't read orphan inode 15 (err -117)
[  129.074202][ T8281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.133554][ T8292] loop3: detected capacity change from 0 to 512
[  129.141976][ T8292] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  129.168404][ T8292] EXT4-fs (loop3): 1 truncate cleaned up
[  129.178118][ T8292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.178971][ T8290] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1702'.
[  129.215899][ T8290] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  129.297672][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.354791][ T8295] loop3: detected capacity change from 0 to 8192
[  129.402417][ T8297] tipc: Started in network mode
[  129.407467][ T8297] tipc: Node identity , cluster identity 4711
[  129.413594][ T8297] tipc: Failed to obtain node identity
[  129.419099][ T8297] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  129.472295][ T8297] siw: device registration error -23
[  129.547515][ T8303] loop4: detected capacity change from 0 to 2048
[  129.556293][ T8303] EXT4-fs: Ignoring removed i_version option
[  129.563613][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.611242][ T8303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.644470][ T8313] loop0: detected capacity change from 0 to 256
[  129.649472][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.665659][ T8315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1713'.
[  129.685974][ T8315] loop3: detected capacity change from 0 to 512
[  129.698583][ T8315] EXT4-fs: inline encryption not supported
[  129.716751][ T8320] FAULT_INJECTION: forcing a failure.
[  129.716751][ T8320] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  129.730778][ T8320] CPU: 0 UID: 0 PID: 8320 Comm: syz.4.1715 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  129.730809][ T8320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.730823][ T8320] Call Trace:
[  129.730829][ T8320]  <TASK>
[  129.730836][ T8320]  dump_stack_lvl+0xf6/0x150
[  129.730859][ T8320]  dump_stack+0x15/0x1a
[  129.730878][ T8320]  should_fail_ex+0x261/0x270
[  129.730958][ T8320]  should_fail_alloc_page+0xfd/0x110
[  129.730994][ T8320]  __alloc_frozen_pages_noprof+0x11d/0x360
[  129.731033][ T8320]  alloc_pages_mpol+0xb6/0x260
[  129.731141][ T8320]  alloc_pages_noprof+0xe8/0x130
[  129.731171][ T8320]  __pmd_alloc+0x4d/0x440
[  129.731211][ T8320]  handle_mm_fault+0x188d/0x2e80
[  129.731250][ T8320]  ? mt_find+0x735/0x8a0
[  129.731332][ T8320]  ? check_vma_flags+0x2dc/0x350
[  129.731360][ T8320]  __get_user_pages+0xf4e/0x2340
[  129.731395][ T8320]  ? find_vma_intersection+0x7a/0xb0
[  129.731425][ T8320]  __mm_populate+0x25d/0x3c0
[  129.731491][ T8320]  __se_sys_mlockall+0x36d/0x3d0
[  129.731522][ T8320]  __x64_sys_mlockall+0x1f/0x30
[  129.731550][ T8320]  x64_sys_call+0x2801/0x2e10
[  129.731585][ T8320]  do_syscall_64+0xc9/0x1c0
[  129.731640][ T8320]  ? clear_bhb_loop+0x25/0x80
[  129.731666][ T8320]  ? clear_bhb_loop+0x25/0x80
[  129.731746][ T8320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.731771][ T8320] RIP: 0033:0x7fefc9d4d169
[  129.731787][ T8320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.731808][ T8320] RSP: 002b:00007fefc83af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000097
[  129.731830][ T8320] RAX: ffffffffffffffda RBX: 00007fefc9f65fa0 RCX: 00007fefc9d4d169
[  129.731845][ T8320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  129.731879][ T8320] RBP: 00007fefc83af090 R08: 0000000000000000 R09: 0000000000000000
[  129.731893][ T8320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.731907][ T8320] R13: 0000000000000000 R14: 00007fefc9f65fa0 R15: 00007fff5e00a758
[  129.731928][ T8320]  </TASK>
[  129.996622][ T8315] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.1713: Parent and EA inode have the same ino 15
[  130.011096][ T8319] loop0: detected capacity change from 0 to 8192
[  130.017764][ T8315] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  130.031200][ T8315] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.1713: Parent and EA inode have the same ino 15
[  130.088109][ T8315] EXT4-fs (loop3): 1 orphan inode deleted
[  130.110005][ T8315] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.110036][ T8327] loop2: detected capacity change from 0 to 128
[  130.143248][ T8325] __nla_validate_parse: 1 callbacks suppressed
[  130.143322][ T8325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1717'.
[  130.174224][ T8327] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  130.194558][ T8327] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  130.212003][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.277271][ T8333] loop1: detected capacity change from 0 to 512
[  130.307870][ T8333] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent
[  130.368817][ T8336] netlink: 'syz.3.1720': attribute type 10 has an invalid length.
[  130.447057][ T8340] loop2: detected capacity change from 0 to 512
[  130.478624][ T8340] EXT4-fs: Ignoring removed mblk_io_submit option
[  130.538624][ T8340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.586166][ T8348] loop3: detected capacity change from 0 to 256
[  130.607278][ T8340] ext4 filesystem being mounted at /350/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.678231][ T8340] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm wÞ£ÿ: corrupted xattr block 32: bad e_name length
[  130.738525][ T8340] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  130.754270][ T8356] Process accounting resumed
[  130.764440][ T8358] loop0: detected capacity change from 0 to 128
[  130.781329][ T8340] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm wÞ£ÿ: corrupted xattr block 32: bad e_name length
[  130.798457][ T8358] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  130.866245][ T8358] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  130.916324][ T8365] loop4: detected capacity change from 0 to 512
[  130.918628][ T8365] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  130.936313][ T8365] EXT4-fs (loop4): 1 truncate cleaned up
[  130.936794][ T8365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.951578][ T8367] loop3: detected capacity change from 0 to 1024
[  130.951806][ T8367] EXT4-fs: Ignoring removed oldalloc option
[  130.951887][ T8367] EXT4-fs: Ignoring removed orlov option
[  130.960517][ T8367] EXT4-fs (loop3): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  130.972879][ T8367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.982939][ T8340] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  130.999239][ T8367] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  131.013396][ T8367] EXT4-fs (loop3): Remounting filesystem read-only
[  131.072613][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.107347][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.162724][ T8375] 9pnet_fd: Insufficient options for proto=fd
[  131.182343][ T8333] loop1: detected capacity change from 0 to 128
[  131.219630][ T8378] loop0: detected capacity change from 0 to 512
[  131.246737][ T8378] EXT4-fs error (device loop0): ext4_iget_extra_inode:4692: inode #15: comm syz.0.1735: corrupted in-inode xattr: invalid ea_ino
[  131.246955][ T8378] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.1735: couldn't read orphan inode 15 (err -117)
[  131.255405][ T8378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.343930][ T8385] loop4: detected capacity change from 0 to 256
[  131.481881][ T8383] loop3: detected capacity change from 0 to 8192
[  131.485835][ T8387] loop4: detected capacity change from 0 to 2048
[  131.486023][ T8387] EXT4-fs: Ignoring removed i_version option
[  131.497767][ T8387] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.536343][ T8387] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  131.663638][ T8391] Process accounting resumed
[  131.704368][ T8396] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  131.722102][ T8396] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1741'.
[  131.731158][ T8396] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1741'.
[  131.742348][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.812456][ T8402] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  131.863369][ T8409] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1745'.
[  131.872565][ T8406] loop1: detected capacity change from 0 to 256
[  131.872581][ T8409] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1745'.
[  131.904820][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.916277][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.939853][ T8411] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  131.972389][   T29] kauditd_printk_skb: 129 callbacks suppressed
[  131.972477][   T29] audit: type=1326 audit(1743599734.291:6698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  131.987750][ T8417] Process accounting resumed
[  132.010505][ T8419] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1749'.
[  132.036908][ T8413] loop1: detected capacity change from 0 to 1024
[  132.085828][   T29] audit: type=1326 audit(1743599734.291:6699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.109434][   T29] audit: type=1326 audit(1743599734.291:6700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.132732][   T29] audit: type=1326 audit(1743599734.291:6701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.152548][ T8413] EXT4-fs: Ignoring removed oldalloc option
[  132.156333][   T29] audit: type=1326 audit(1743599734.291:6702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.156427][   T29] audit: type=1326 audit(1743599734.291:6703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.156557][   T29] audit: type=1326 audit(1743599734.291:6704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8415 comm="syz.3.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781a22d169 code=0x7ffc0000
[  132.166755][ T8428] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  132.245718][ T8413] EXT4-fs: Ignoring removed orlov option
[  132.269336][ T8413] EXT4-fs (loop1): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  132.279542][ T8432] loop0: detected capacity change from 0 to 1024
[  132.279826][ T8432] EXT4-fs: Ignoring removed oldalloc option
[  132.279855][ T8432] EXT4-fs: Ignoring removed orlov option
[  132.302668][ T8432] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  132.313471][ T8428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1758'.
[  132.322485][ T8428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1758'.
[  132.334105][ T8432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.361340][ T8432] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  132.387705][ T8413] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.402087][ T8432] EXT4-fs (loop0): Remounting filesystem read-only
[  132.437785][ T8440] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1760'.
[  132.450192][ T8413] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  132.472885][ T8413] EXT4-fs (loop1): Remounting filesystem read-only
[  132.477049][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.516556][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.531558][ T8447] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  132.531687][ T8446] netlink: 'syz.4.1764': attribute type 10 has an invalid length.
[  132.555735][ T8421] 9p: Unknown Cache mode or invalid value l
[  132.582534][ T8447] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1765'.
[  132.593251][ T8450] loop1: detected capacity change from 0 to 2048
[  132.600099][ T8450] EXT4-fs: Ignoring removed i_version option
[  132.627866][ T8450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.661061][   T29] audit: type=1326 audit(1743599734.981:6705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  132.684537][   T29] audit: type=1326 audit(1743599734.981:6706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  132.708073][   T29] audit: type=1326 audit(1743599734.981:6707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8454 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fefc9d4d169 code=0x7ffc0000
[  132.720167][ T8455] Process accounting resumed
[  132.758900][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.887385][ T8470] tipc: Started in network mode
[  132.892399][ T8470] tipc: Node identity , cluster identity 4711
[  132.898668][ T8470] tipc: Failed to obtain node identity
[  132.904220][ T8470] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  132.921596][ T8470] siw: device registration error -23
[  132.961279][ T8475] batman_adv: batadv0: Local translation table size (96) exceeds maximum packet size (-320); Ignoring new local tt entry: 80:00:00:06:00:00
[  133.023236][ T8483] loop4: detected capacity change from 0 to 512
[  133.032453][ T8482] loop3: detected capacity change from 0 to 256
[  133.040912][ T8483] msdos: Unknown parameter 'errerrors'
[  133.105283][ T8488] loop1: detected capacity change from 0 to 256
[  133.154417][ T8486] loop3: detected capacity change from 0 to 8192
[  133.201797][ T8490] loop4: detected capacity change from 0 to 764
[  133.225065][ T8490] iso9660: Unknown parameter 'GPL'
[  133.558353][ T8513] tipc: Started in network mode
[  133.563288][ T8513] tipc: Node identity , cluster identity 4711
[  133.569412][ T8513] tipc: Failed to obtain node identity
[  133.574908][ T8513] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  133.616404][ T8513] siw: device registration error -23
[  133.708324][ T8519] loop0: detected capacity change from 0 to 8192
[  133.749216][ T5339] ==================================================================
[  133.757329][ T5339] BUG: KCSAN: data-race in _copy_to_iter / fat16_ent_put
[  133.764386][ T5339] 
[  133.766724][ T5339] write to 0xffff88811d0b4298 of 2 bytes by task 8519 on cpu 0:
[  133.774418][ T5339]  fat16_ent_put+0x28/0x60
[  133.778862][ T5339]  fat_alloc_clusters+0x4cb/0xa90
[  133.783907][ T5339]  fat_get_block+0x25f/0x5e0
[  133.788527][ T5339]  __block_write_begin_int+0x419/0xf90
[  133.794013][ T5339]  cont_write_begin+0x548/0x860
[  133.798907][ T5339]  fat_write_begin+0x51/0xe0
[  133.803519][ T5339]  cont_write_begin+0x18d/0x860
[  133.808398][ T5339]  fat_write_begin+0x51/0xe0
[  133.813002][ T5339]  generic_cont_expand_simple+0xaf/0x150
[  133.818656][ T5339]  fat_cont_expand+0x3a/0x160
[  133.823346][ T5339]  fat_setattr+0x2aa/0x840
[  133.827774][ T5339]  notify_change+0x85c/0x8e0
[  133.832378][ T5339]  do_ftruncate+0x32c/0x440
[  133.836894][ T5339]  __x64_sys_ftruncate+0x68/0xc0
[  133.841847][ T5339]  x64_sys_call+0xa17/0x2e10
[  133.846444][ T5339]  do_syscall_64+0xc9/0x1c0
[  133.850960][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.856859][ T5339] 
[  133.859204][ T5339] read to 0xffff88811d0b4000 of 1024 bytes by task 5339 on cpu 1:
[  133.867006][ T5339]  _copy_to_iter+0x133/0xd10
[  133.871610][ T5339]  copy_page_to_iter+0x171/0x2b0
[  133.876560][ T5339]  filemap_read+0x43e/0x8d0
[  133.881080][ T5339]  blkdev_read_iter+0x227/0x2d0
[  133.885938][ T5339]  vfs_read+0x5e6/0x710
[  133.890105][ T5339]  ksys_read+0xeb/0x1b0
[  133.894273][ T5339]  __x64_sys_read+0x42/0x50
[  133.898793][ T5339]  x64_sys_call+0x2a3b/0x2e10
[  133.903486][ T5339]  do_syscall_64+0xc9/0x1c0
[  133.908008][ T5339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.913910][ T5339] 
[  133.916233][ T5339] Reported by Kernel Concurrency Sanitizer on:
[  133.922389][ T5339] CPU: 1 UID: 0 PID: 5339 Comm: udevd Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(voluntary) 
[  133.934028][ T5339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.944088][ T5339] ==================================================================