last executing test programs:

33.876124946s ago: executing program 1 (id=267):
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000340)='./file0\x00', 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="757466383d312c757466383d312c73686f72746e616d653d77696e6e742c757466383d312c756e695f786c6174653d312c636865636b3d6e6f726d616c2c756e695f786c6174653d312c00bb4104effd2ccf3b2e9149bdea020000003ba49bcbee8b6660383f05fe"], 0x3, 0x236, &(0x7f0000000380)="$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")
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)

33.846375948s ago: executing program 1 (id=269):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d0000008500000007"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)=r0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_read_part_table(0x5d8, &(0x7f0000000e00)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYRES32=r1], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x1, @ANYBLOB="010000eeff00000000000009000000000000000094129f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01000000040000000500"/28], 0x50)
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400), 0x4)
r8 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1000b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x2000, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r9, 0x4b47, &(0x7f0000000380)={0x0, 0x7f, 0x708})
sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@getnexthop={0x18, 0x76, 0xb0d, 0x4000, 0x0, {0x3}}, 0x18}}, 0x0)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b000000fa5d00000000000000000200", @ANYRES32, @ANYBLOB="0100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="020000000400"/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x22, &(0x7f0000000180)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2392f03c}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}, @map_fd={0x18, 0x2, 0x1, 0x0, r6}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], 0x0, 0x7fff, 0x0, 0x0, 0x41100, 0x2f, '\x00', 0x0, 0x25, r7, 0x8, &(0x7f0000000440)={0x8, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000005c0)=[r10, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000600)=[{0x5, 0x4, 0x1, 0x2}, {0x1, 0x2, 0xd, 0x5}, {0x2, 0x1, 0xb, 0x2}, {0x4, 0x3, 0xb, 0xb}, {0x3, 0x1, 0xb, 0xb}, {0x1, 0x2, 0x10, 0x1}, {0x1, 0x2, 0xd, 0x3}, {0x1, 0x5, 0x5, 0x7}], 0x10, 0xff}, 0x94)
r11 = io_uring_setup(0x53fc, &(0x7f0000001280)={0x0, 0x23d4, 0x0, 0xfffffffc, 0x160})
io_uring_register$IORING_REGISTER_BUFFERS2(r11, 0xf, &(0x7f0000001580)={0x2, 0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {&(0x7f0000000280)=""/4094, 0xffe}], &(0x7f0000001540)=[0x0, 0x0, 0x4]}, 0x20)
syz_clone(0x22023500, 0x0, 0x20010, 0x0, 0x0, 0x0)

33.530254354s ago: executing program 1 (id=274):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)

33.486097177s ago: executing program 1 (id=275):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x2145c99, 0x0)
mount$bind(0x0, &(0x7f0000000940)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2300, 0x0)
r1 = syz_clone(0x0, 0x0, 0x4b, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
syz_clone(0x22023500, 0x0, 0x20010, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r2, 0x4b72, &(0x7f00000004c0)={0x2, 0x0, 0x15, 0x0, 0xe0, &(0x7f00000000c0)="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"})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x2, &(0x7f0000000980)=[{0x200000000006, 0x0, 0x0, 0x5}, {0x4, 0x7f, 0x46, 0x7}]})
getcwd(&(0x7f0000000b00)=""/209, 0xd1)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'ip6_vti0\x00', 0x8201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff02000000000000000000000000000100000000000000cc00000000000033"], 0xfdef)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES64=r3], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0xfffffffffffffd40, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r5)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000f2", @ANYRES16=r6, @ANYBLOB="eb7a2bbd7000fcdbdf2521000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x40882)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000002840)='./file1\x00', 0x20640, 0x131)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000040))
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000900), 0x1, 0x512, &(0x7f0000000380)="$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")

33.120220247s ago: executing program 1 (id=281):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x3000010, &(0x7f0000000100)={[{@resuid}, {@nobh}]}, 0x1, 0x519, &(0x7f00000009c0)="$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")

33.047772713s ago: executing program 1 (id=287):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
io_setup(0x3, &(0x7f0000000340))

32.990990368s ago: executing program 32 (id=287):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
io_setup(0x3, &(0x7f0000000340))

973.327762ms ago: executing program 2 (id=1140):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000500000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="0000000000000000660002000000000018000000ffffffd000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x42}, 0x94)

972.861742ms ago: executing program 2 (id=1142):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000300)='$\x00l\"P\xfc\xf8\b\xb9\xa6\xcdy\x05\x00\x00\x00\x00\x00\x00\x00\xbd(}\xe7t', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
fcntl$setown(r0, 0x8, 0x0)
close(r0)

939.339924ms ago: executing program 2 (id=1144):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0xc000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000280)={'syztnl2\x00', 0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, 0x0, 0x20000001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

908.777177ms ago: executing program 2 (id=1146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r2, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000"], 0x58)
close(r2)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

908.148707ms ago: executing program 2 (id=1147):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000140)={'syztnl0\x00', <r1=>0x0, 0x4, 0x40, 0x5, 0xb06, 0x20, @remote, @dev={0xfe, 0x80, '\x00', 0xb}, 0x1, 0x80, 0x3, 0x9ea}})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYRES32=r0], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r1, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYRES16=<r3=>0xffffffffffffffff], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sock=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r4, &(0x7f0000000540)={0x23, 0x2, 0x8, 0x6}, 0x10)
ioctl$SIOCPNENABLEPIPE(r4, 0x89ed, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="774b7403671e190b9721a3b9b6c39deb624521c8a8c057fa687c33800cd7cd0cc9b19143228d33a1bae60eeaffa9a73bb19318ebfe1733fcc676739093e9ec963a4cccdf8e73f4af721b9a4cbcf93bae949548e66a4d900a4da1623211d9a27fc9455b44ca018ed85a1e1e9eba49acd8be2ca71b83befa9c795d6c5db53548e7bf3e59669f7a4c9bd6fa52e84a6d4e4b4521fdfca8d0d5c0592b325d3433ec5686e404e69d4050a84a43ec605e9a5c8465ae5cccfd0f15c1459b4740bf6e7fe6e0d3ff97f81a9fa7030a5c486784d612b59170ee0f45"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x7, 0x18, &(0x7f0000000380)=ANY=[@ANYRESOCT=r0, @ANYRES64=r3, @ANYRESOCT=r5], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r6 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r7, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r8 = dup(r7)
write$P9_RLERRORu(r8, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r8, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000040)=ANY=[])
socket$netlink(0x10, 0x3, 0x15)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = inotify_init1(0x0)
inotify_add_watch(r11, &(0x7f0000000040)='./file0\x00', 0xa4000061)
read(r11, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

597.095782ms ago: executing program 0 (id=1172):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000300)='$\x00l\"P\xfc\xf8\b\xb9\xa6\xcdy\x05\x00\x00\x00\x00\x00\x00\x00\xbd(}\xe7t', 0x0)
close(r0)

541.172456ms ago: executing program 0 (id=1174):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000340)={0x0, 0x1, 0x1e, 0x80006, 0x1fa, &(0x7f0000000500)="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"})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001000370400000000fcdbdf250000", @ANYRES32=0x0, @ANYBLOB="00000400000000001c00128009000100626f6e640000ffffffff00"/36], 0x3c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r2, &(0x7f00000025c0), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0x5, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_skb=0x26, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r5, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x98, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x6, 0x0, 0x4}, 0x3, r8}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000a00)={0x40, r4, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x8050)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x15, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r10, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)

532.782617ms ago: executing program 0 (id=1176):
openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
truncate(&(0x7f0000000040)='./file0\x00', 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
r2 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$selinux_access(r2, &(0x7f0000001a80)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)
socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x4, &(0x7f00000001c0)=[{0xffff, 0x2, 0x5, 0x6}, {0xf141, 0x3, 0x9, 0x9}, {0x40, 0x4, 0xf, 0x4}, {0xff47, 0x6, 0x5, 0x5}]}, 0x10)
r3 = io_uring_setup(0x77bb, &(0x7f0000001400)={0x0, 0xab40, 0x2, 0xf7fffffe, 0x209})
io_uring_enter(r3, 0x800000, 0x2, 0xf, &(0x7f0000000000)={[0x2000000]}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r4 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x30046, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r5}, 0x10)
close(r4)

511.115629ms ago: executing program 0 (id=1178):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0xffffffc0)
mount$9p_fd(0xedc000000000, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='trans=fd'])

463.438683ms ago: executing program 0 (id=1181):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = memfd_secret(0x0)
futimesat(r2, 0x0, 0x0)

442.385654ms ago: executing program 0 (id=1183):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x10, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0x4, 0x34a, &(0x7f0000000900)="$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")
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000000)=0x1, 0x4)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioprio_set$pid(0x3, 0x0, 0x0)
read$rfkill(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x80)
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0xa8}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x1, 0x0, 0x7ffc0005}]})
r3 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x0, 0x200, 0x0, 0x1}, &(0x7f0000000300)=<r4=>0x0, &(0x7f0000000640)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r6}, 0x9)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")
sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0xfe, &(0x7f00000001c0)=[{&(0x7f00000007c0)="d8000000180081054e81f782db4cb90402200800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370301a8001600a40002400f000100035c0461c1d67f6f94007134cf6edb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3f8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x20000800)

406.906567ms ago: executing program 5 (id=1186):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000340)={0x0, 0x1, 0x1e, 0x80006, 0x1fa, &(0x7f0000000500)="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"})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001000370400000000fcdbdf250000", @ANYRES32=0x0, @ANYBLOB="00000400000000001c00128009000100626f6e640000ffffffff00"/36], 0x3c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r2, &(0x7f00000025c0), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0x5, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_skb=0x26, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r5, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x98, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x6, 0x0, 0x4}, 0x3, r8}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000a00)={0x40, r4, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x8050)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x15, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r10, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)

385.028999ms ago: executing program 4 (id=1187):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000500000000000000000000851000000600000018020000", @ANYBLOB="0000000000000000660002000000000018000000ffffffd000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x42}, 0x94)

384.564989ms ago: executing program 4 (id=1188):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r1, 0x400454c9, 0xba98575a95aeb70d)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1f, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000880)='kmem_cache_free\x00', r4, 0x0, 0x1}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$NS_GET_OWNER_UID(r5, 0xb704, &(0x7f00000001c0)=<r7=>0x0)
quotactl_fd$Q_GETQUOTA(r2, 0xffffffff80000700, r7, &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="1800"/24], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
readahead(0xffffffffffffffff, 0xa, 0x0)
r8 = socket$l2tp(0x2, 0x2, 0x73)
connect$inet(r8, &(0x7f0000000340)={0x2, 0x4e20, @remote}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000012c0)='scsi_dispatch_cmd_start\x00', r6}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$key(0xf, 0x3, 0x2)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, 0x0)

362.334761ms ago: executing program 5 (id=1189):
memfd_create(0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000001100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)='0', 0x1, r2)
ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000009280)={0xfffffffffffffff7, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x50)
readv(r0, &(0x7f0000009500)=[{&(0x7f00000092c0)=""/71, 0x47}], 0x1)
write$ppp(r0, &(0x7f0000003700)="aaf55cb6a6c58f655b33e7742ce27e30d20934e0732e5b18c2e478a65d964d2e59", 0x21)
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000000c0)='\x00', 0x1, 0xffffffffffffffff)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xc}, 0x100400, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x4000000000000000, 0xffffffffffffffff, 0x2)
r4 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="da", 0x1, r4)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xffffffffffffffff, r4, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
rmdir(0x0)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], 0x0, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$rds(0x15, 0x5, 0x0)

360.448251ms ago: executing program 5 (id=1191):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000300)='$\x00l\"P\xfc\xf8\b\xb9\xa6\xcdy\x05\x00\x00\x00\x00\x00\x00\x00\xbd(}\xe7t', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
close(r0)

325.439094ms ago: executing program 5 (id=1192):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xd, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="850000003900000076000000000000666100000f000000009500000000000000e6b549e8a4871cb5b0766c167c4ba699444486d173e94e46b8d15de28680951105a8936e59522778fe06fc3ac40306d829ba509e1d19cd0993ce02c1f65840978cc138f0fb985e0f50e1520c4c5c8e91b959aa31545a26aa6ddddb5793e69b9f32efd86a2e9ed52674599ee3a6ffdf451e9567fae0b530d4246f510d4886996a47856f2b7da01e3d01bb4a06241b4c4e4f8ad0d4bcb755bc32ad21318351bb5c213ac0558db860f5b4689b4da22e483cf4388bc02d48"], &(0x7f0000000040)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffc62, 0x10, 0x0, 0xfffffffffffffed8}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x9, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r5, 0x0, 0x80000}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sys_enter\x00', r3}, 0x18)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x12, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={r5, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180), 0x0, 0x82, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f00000001c0), &(0x7f0000000580), 0x8, 0xe9, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
shutdown(0xffffffffffffffff, 0x1)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
write$binfmt_elf64(r7, &(0x7f0000001700)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4, 0x0, 0x0, 0x87fff, 0x2, 0x3e, 0xffffffec, 0x398, 0x40, 0x56, 0x0, 0x0, 0x38, 0x1, 0x0, 0x2}, [{0x3, 0x5, 0x4, 0x40000000200d, 0x1c8, 0xc, 0x4, 0x2}]}, 0x78)
close(r7)

324.639474ms ago: executing program 4 (id=1194):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
sendmmsg$inet(r0, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000400)="3bcbdb0fcfa026557d2ea2b0fa34b7b3ddf4e60fe678186210e935989ea66d3c5479ca82428e90b96b3635a98e39939ef5109511d949224164c044f18fb4d64db5c0404f01b99fba50263ee03e82a28fcd751660b0cab68a62a8b6eac29946c988fc747092d35e9352d8442feece96b4ee481cf95a8feb6ec3d6e5cff03f59eb97136d7cb400c1d0ed4ed9b83090abb113aa4e9260695700"/166, 0xa6}, {&(0x7f0000000980)="742f311a83a225186454bcfd09e48b60d703de616d0e6f11523b39000158bc", 0x1f}], 0x2}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001400)="1c2789bd018bf77308ae7ed990e4b63b8cf1cf4ae822f1f84abd5420339c722aa7f6d87f5926c484455c67b7a9259ac3f36154b6526320d83fe72e5f5370550de0307d8ad13d192e7d5c14f8b2367b1db7dbe02629646be253b07a1245dce1a721576750f3f574ce4ac91827528289acb0089c83a39827b4d9f231ad23f382e2f3d86880015b84a6d3740029d6ffbbf61ae415dc51a6ebd3010000000000008067a9e4abdbbe90455d28993254ab9fa2c5d561ee0000000000000000000ce572ae0de0745310890497fd77693dff", 0xce}], 0x1}}, {{0x0, 0x0, &(0x7f0000004080)=[{&(0x7f0000001180)="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", 0x123}], 0x1}}], 0x3, 0x40090)

264.981329ms ago: executing program 3 (id=1195):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000380)=@filename='./file0\x00', 0x0, &(0x7f00000003c0)='./file0\x00')
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x104, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000280)={0x2, &(0x7f0000000200)=[{0x3, 0x4, 0x0, 0x9}, {0x9, 0xa, 0x40, 0x5}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_config_ext={0x1000, 0xa}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x2000000, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xb851}, 0x1c)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xb69, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x0, 0x6, 0x9, 0x4, 0x7, 0x1000005, 0x100000, 0x75f, 0x3, 0xd, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0xfffffff9, 0x7, 0xbed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x1008, 0x5, 0x79b, 0x6, 0x1, 0x7f, 0x4, 0x400, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x80, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x8, 0x6, 0xe, 0x4, 0x7, 0x4009, 0x0, 0x5, 0x100002, 0x8, 0x752, 0x0, 0x64, 0x0, 0x10001, 0x82, 0xd, 0x6, 0x6, 0x7, 0x80000000, 0xfdffffff, 0x2, 0x3, 0x84, 0x100, 0x5, 0x252, 0x81, 0xb, 0xed3, 0x20006, 0x5, 0x2, 0xb, 0x84ac, 0xd9a, 0x5, 0x82a2, 0xfff, 0x3, 0x2, 0x5, 0x8, 0x0, 0x4, 0x2, 0x8000040, 0x8, 0x7, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xfffffffd]}})
socket$vsock_stream(0x28, 0x1, 0x0)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
pipe(0x0)
io_setup(0x2, &(0x7f0000002400))
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x401)
modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0x100000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

264.776898ms ago: executing program 5 (id=1196):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
write$selinux_attr(r2, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)

264.238538ms ago: executing program 5 (id=1197):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, 0x0, &(0x7f00000000c0)='GPL\x00'}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback, 0x7}, 0x1c)
r1 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="e0000002ac1414aa0100000002"], 0x18)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$selinux_load(r2, &(0x7f0000000340)={0xf97cff8c, 0x8, 'SE Linux', "2ddc46cac797e667bd03e74d0083660e6c6d6a1423bc70887f7a475e953f0d637890c3f8cf7137279594aade5c17d9f1a8ae3abd7db252ef2a584db776a51f96ae0f96fe8609d2a652556250db2b55a335737545caeed4f7294631e3b5e839d25c5641c3027d40d309b6"}, 0x7a)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0, @ANYRES32, @ANYRESHEX, @ANYRES8=r1, @ANYRESDEC=r1], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4, 0x0, 0x2}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

172.293626ms ago: executing program 3 (id=1198):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000500000000000000000000851000000600000018020000", @ANYBLOB="0000000000000000660002000000000018000000ffffffd000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x42}, 0x94)

171.769396ms ago: executing program 3 (id=1199):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000340)={0x0, 0x1, 0x1e, 0x80006, 0x1fa, &(0x7f0000000500)="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"})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001000370400000000fcdbdf250000", @ANYRES32=0x0, @ANYBLOB="00000400000000001c00128009000100626f6e640000ffffffff00"/36], 0x3c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r2, &(0x7f00000025c0), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xe, 0x5, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_skb=0x26, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
read(r5, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x98, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x6, 0x0, 0x4}, 0x3, r8}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000a00)={0x40, r4, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x8050)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x15, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r10, 0x1, 0x19, &(0x7f0000000040)='wg1\x00', 0x4)

171.602886ms ago: executing program 4 (id=1200):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
r2 = memfd_secret(0x0)
futimesat(r2, 0x0, 0x0)

138.885079ms ago: executing program 3 (id=1201):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x2000)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='fsi_master_acf_send_request\x00', r1}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r3, 0xfff)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000540)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a3ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x14}}}}}}}, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r5)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r7, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r8, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1b00, 0x10022, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xb, 0x8, 0xc, 0x4, 0x1}, 0x50)

138.615019ms ago: executing program 4 (id=1202):
memfd_create(0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000001100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)='0', 0x1, r2)
ioctl$PPPIOCSACTIVE(r0, 0x40047459, &(0x7f0000009280)={0xfffffffffffffff7, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x50)
readv(r0, &(0x7f0000009500)=[{&(0x7f00000092c0)=""/71, 0x47}], 0x1)
write$ppp(r0, &(0x7f0000003700)="aaf55cb6a6c58f655b33e7742ce27e30d20934e0732e5b18c2e478a65d964d2e59", 0x21)
r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000000c0)='\x00', 0x1, 0xffffffffffffffff)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xc}, 0x100400, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x4000000000000000, 0xffffffffffffffff, 0x2)
r4 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="da", 0x1, r4)
keyctl$KEYCTL_MOVE(0x1e, r3, 0xffffffffffffffff, r4, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
rmdir(0x0)
move_pages(0x0, 0x1, &(0x7f0000000040)=[&(0x7f0000ff9000/0x2000)=nil], 0x0, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$rds(0x15, 0x5, 0x0)

138.267019ms ago: executing program 4 (id=1203):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x45, 0x0, 0x1, 0xffffffd0}, {0x3d}, {0x16, 0x0, 0x3, 0x20000000}]})
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$join(0x1, &(0x7f00000000c0)={'syz', 0x1})
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0, r0)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1f000000000002006923c63a4541062101b6bba756566de77062086575a59ea9cb", 0x2b, r1)

50.166856ms ago: executing program 2 (id=1204):
io_setup(0x1, &(0x7f00000012c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
unshare(0x22020600)
pselect6(0x2000, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x300}, 0x0, &(0x7f0000000100)={0x8}, 0x0, 0x0)

49.614756ms ago: executing program 3 (id=1205):
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000030037a788a11d1f000000000000006923c63a4541062101b60a2156566de77062086575a59ea9cb", 0x2b, r0)

0s ago: executing program 3 (id=1206):
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x65, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt(0xffffffffffffffff, 0x111, 0x3, 0x0, &(0x7f0000000080))
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)={0x14, r0, 0x1, 0x1070bd29, 0x25dfdbfd, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x2000c000}, 0x30)
syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
getpid() (async)
sched_setaffinity(0x0, 0x0, 0x0) (async)
sched_setscheduler(r2, 0x2, 0x0) (async)
connect$unix(0xffffffffffffffff, 0x0, 0x0) (async)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x65, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xa4}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
getsockopt(0xffffffffffffffff, 0x111, 0x3, 0x0, &(0x7f0000000080)) (async)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)={0x14, r0, 0x1, 0x1070bd29, 0x25dfdbfd, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x2000c000}, 0x30) (async)

kernel console output (not intermixed with test programs):

58642][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.964851][ T4570] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   47.966664][ T3282]  loop0: p1 < > p4
[   47.977716][ T4570] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.328: corrupted inode contents
[   47.991520][ T4570] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.328: mark_inode_dirty error
[   48.002684][ T3282] loop0: p4 size 8388608 extends beyond EOD, truncated
[   48.021375][ T4570] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   48.034173][ T4597]  loop0: p1 < > p4
[   48.038606][ T4597] loop0: p4 size 8388608 extends beyond EOD, truncated
[   48.046100][ T4570] EXT4-fs (loop2): 1 truncate cleaned up
[   48.052695][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.053936][ T4570] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.097871][ T4612] SELinux:  policydb version -901325779 does not match my version range 15-35
[   48.111092][ T4597] 9pnet_fd: Insufficient options for proto=fd
[   48.129293][ T4570] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.129943][ T4612] SELinux: failed to load policy
[   48.162350][ T4617] netlink: 28 bytes leftover after parsing attributes in process `syz.4.336'.
[   48.162752][ T4397] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.206388][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.301904][ T4640] loop2: detected capacity change from 0 to 2048
[   48.330350][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   48.335588][ T3282] loop2: partition table partially beyond EOD, truncated
[   48.348565][ T3282] loop2: p1 start 4278190080 is beyond EOD, truncated
[   48.355482][ T3282] loop2: p2 start 16908800 is beyond EOD, truncated
[   48.369394][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   48.381040][ T4397] veth0_vlan: entered promiscuous mode
[   48.387744][ T4640]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   48.393038][ T4640] loop2: partition table partially beyond EOD, truncated
[   48.403090][ T4640] loop2: p1 start 4278190080 is beyond EOD, truncated
[   48.403184][ T4397] veth1_vlan: entered promiscuous mode
[   48.409965][ T4640] loop2: p2 start 16908800 is beyond EOD, truncated
[   48.427646][ T4640] loop2: p5 start 16908800 is beyond EOD, truncated
[   48.446939][ T4397] veth0_macvtap: entered promiscuous mode
[   48.454353][ T4397] veth1_macvtap: entered promiscuous mode
[   48.487984][ T4397] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.506612][ T4397] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.526924][ T4652] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4652 comm=syz.4.341
[   48.555294][  T268] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.568602][  T268] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.603118][  T268] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.641602][  T268] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.654509][ T4678] netlink: 24 bytes leftover after parsing attributes in process `syz.5.289'.
[   48.704085][ T4687] loop2: detected capacity change from 0 to 128
[   48.745676][ T4706] netlink: 28 bytes leftover after parsing attributes in process `syz.0.346'.
[   48.770083][ T4728] loop5: detected capacity change from 0 to 512
[   48.786728][ T4728] EXT4-fs: Ignoring removed nobh option
[   48.802492][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.347: corrupted inode contents
[   48.840779][ T4728] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #3: comm syz.5.347: mark_inode_dirty error
[   48.862410][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #3: comm syz.5.347: corrupted inode contents
[   48.889384][ T4745] loop0: detected capacity change from 0 to 512
[   48.908292][ T4745] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   48.925062][ T4728] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #3: comm syz.5.347: mark_inode_dirty error
[   48.936699][ T4728] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.347: Failed to acquire dquot type 0
[   48.967186][ T4745] EXT4-fs (loop0): 1 truncate cleaned up
[   48.974371][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.347: corrupted inode contents
[   48.992403][ T4745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.032290][ T4728] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.347: mark_inode_dirty error
[   49.054777][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.347: corrupted inode contents
[   49.084154][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.111750][ T4728] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.347: mark_inode_dirty error
[   49.125951][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.347: corrupted inode contents
[   49.158850][   T29] kauditd_printk_skb: 298 callbacks suppressed
[   49.158863][   T29] audit: type=1400 audit(1755004687.297:2198): avc:  denied  { ioctl } for  pid=4778 comm="syz.0.354" path="socket:[8792]" dev="sockfs" ino=8792 ioctlcmd=0x89f9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   49.205589][ T4781] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[   49.212051][ T4780] loop2: detected capacity change from 0 to 2048
[   49.225849][ T4728] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[   49.226905][ T4789] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   49.234821][   T29] audit: type=1400 audit(1755004687.307:2199): avc:  denied  { write } for  pid=4778 comm="syz.0.354" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   49.251997][ T4781] IPVS: stopping master sync thread 4789 ...
[   49.268386][   T29] audit: type=1400 audit(1755004687.347:2200): avc:  denied  { mac_admin } for  pid=4777 comm="syz.3.355" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   49.268415][   T29] audit: type=1400 audit(1755004687.357:2201): avc:  denied  { relabelto } for  pid=4777 comm="syz.3.355" name="cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0"
[   49.274629][ T4728] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.347: corrupted inode contents
[   49.295493][   T29] audit: type=1400 audit(1755004687.357:2202): avc:  denied  { associate } for  pid=4777 comm="syz.3.355" name="cgroup.procs" dev="cgroup" ino=102 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0"
[   49.328288][ T4728] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.347: mark_inode_dirty error
[   49.334798][ T4791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.355'.
[   49.363427][   T29] audit: type=1400 audit(1755004687.397:2203): avc:  denied  { getopt } for  pid=4778 comm="syz.0.354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   49.373969][ T4791] netlink: 28 bytes leftover after parsing attributes in process `syz.3.355'.
[   49.415459][ T4795] 9pnet_fd: Insufficient options for proto=fd
[   49.420207][ T4728] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[   49.438454][ T4728] EXT4-fs (loop5): 1 truncate cleaned up
[   49.444569][ T3282]  loop2: p1 < > p4
[   49.448133][ T4728] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.462653][ T3282] loop2: p4 size 8388608 extends beyond EOD, truncated
[   49.478040][ T4803] loop3: detected capacity change from 0 to 128
[   49.486188][ T4728] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.490559][ T4780]  loop2: p1 < > p4
[   49.533630][ T4780] loop2: p4 size 8388608 extends beyond EOD, truncated
[   49.568754][   T29] audit: type=1326 audit(1755004687.707:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.4.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   49.592193][   T29] audit: type=1326 audit(1755004687.707:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.4.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   49.615427][   T29] audit: type=1326 audit(1755004687.707:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.4.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   49.638740][   T29] audit: type=1326 audit(1755004687.707:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.4.362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   49.663079][ T4818] netlink: 28 bytes leftover after parsing attributes in process `syz.3.363'.
[   49.675995][ T2991]  loop2: p1 < > p4
[   49.677451][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.681143][ T2991] loop2: p4 size 8388608 extends beyond EOD, truncated
[   49.754245][ T4827] loop5: detected capacity change from 0 to 512
[   49.761051][ T4828] loop4: detected capacity change from 0 to 1024
[   49.775106][ T4827] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   49.792500][ T4828] ext4: Bad value for 'journal_dev'
[   49.804858][ T4827] EXT4-fs (loop5): 1 truncate cleaned up
[   49.811169][ T4827] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.834573][ T4828] netlink: 20 bytes leftover after parsing attributes in process `syz.4.365'.
[   49.855375][ T4828] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1005 sclass=netlink_route_socket pid=4828 comm=syz.4.365
[   49.873106][ T4828] netlink: 'syz.4.365': attribute type 3 has an invalid length.
[   49.888896][ T4828] netlink: 8 bytes leftover after parsing attributes in process `syz.4.365'.
[   49.915116][ T4842] SELinux:  policydb version -901325779 does not match my version range 15-35
[   49.933179][ T4842] SELinux: failed to load policy
[   49.979628][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.151981][ T4857] netlink: 'syz.2.374': attribute type 10 has an invalid length.
[   50.202810][ T4866] netlink: 16 bytes leftover after parsing attributes in process `syz.5.377'.
[   50.332997][ T4875] siw: device registration error -23
[   50.375108][ T4879] FAULT_INJECTION: forcing a failure.
[   50.375108][ T4879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.388314][ T4879] CPU: 0 UID: 0 PID: 4879 Comm: syz.2.383 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   50.388383][ T4879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   50.388394][ T4879] Call Trace:
[   50.388399][ T4879]  <TASK>
[   50.388405][ T4879]  __dump_stack+0x1d/0x30
[   50.388423][ T4879]  dump_stack_lvl+0xe8/0x140
[   50.388447][ T4879]  dump_stack+0x15/0x1b
[   50.388461][ T4879]  should_fail_ex+0x265/0x280
[   50.388487][ T4879]  should_fail+0xb/0x20
[   50.388521][ T4879]  should_fail_usercopy+0x1a/0x20
[   50.388539][ T4879]  _copy_from_user+0x1c/0xb0
[   50.388637][ T4879]  ___sys_sendmsg+0xc1/0x1d0
[   50.388670][ T4879]  __x64_sys_sendmsg+0xd4/0x160
[   50.388693][ T4879]  x64_sys_call+0x191e/0x2ff0
[   50.388711][ T4879]  do_syscall_64+0xd2/0x200
[   50.388807][ T4879]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.388829][ T4879]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   50.388853][ T4879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.388874][ T4879] RIP: 0033:0x7f03f08bebe9
[   50.388967][ T4879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.388983][ T4879] RSP: 002b:00007f03ef31f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   50.389004][ T4879] RAX: ffffffffffffffda RBX: 00007f03f0ae5fa0 RCX: 00007f03f08bebe9
[   50.389016][ T4879] RDX: 00000000200000d4 RSI: 0000200000000080 RDI: 000000000000000b
[   50.389027][ T4879] RBP: 00007f03ef31f090 R08: 0000000000000000 R09: 0000000000000000
[   50.389037][ T4879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.389049][ T4879] R13: 00007f03f0ae6038 R14: 00007f03f0ae5fa0 R15: 00007ffcbf310848
[   50.389127][ T4879]  </TASK>
[   50.602576][ T4882] loop0: detected capacity change from 0 to 2048
[   50.650793][ T3282]  loop0: p1 < > p4
[   50.656967][ T3282] loop0: p4 size 8388608 extends beyond EOD, truncated
[   50.674181][ T4882]  loop0: p1 < > p4
[   50.678620][ T4882] loop0: p4 size 8388608 extends beyond EOD, truncated
[   50.691301][ T2991]  loop0: p1 < > p4
[   50.696145][ T2991] loop0: p4 size 8388608 extends beyond EOD, truncated
[   50.710928][ T4882] 9pnet_fd: Insufficient options for proto=fd
[   50.755308][ T4888] netlink: 4 bytes leftover after parsing attributes in process `syz.2.387'.
[   50.773393][ T4888] pimreg: entered allmulticast mode
[   50.786227][ T4888] pimreg: left allmulticast mode
[   50.894473][ T4909] netlink: 28 bytes leftover after parsing attributes in process `syz.2.393'.
[   51.009180][ T4921] netlink: 28 bytes leftover after parsing attributes in process `syz.5.398'.
[   51.171363][ T4924] lo speed is unknown, defaulting to 1000
[   51.183274][ T4916] loop2: detected capacity change from 0 to 32768
[   51.256878][ T3282]  loop2: p1 p3 < >
[   51.265940][ T4933] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   51.265940][ T4933]    program syz.2.396 not setting count and/or reply_len properly
[   51.301595][ T4916]  loop2: p1 p3 < >
[   51.329013][ T4937] netlink: 'syz.4.401': attribute type 21 has an invalid length.
[   51.353637][ T4937] netlink: 'syz.4.401': attribute type 1 has an invalid length.
[   51.361390][ T4937] netlink: 144 bytes leftover after parsing attributes in process `syz.4.401'.
[   51.391320][ T4947] loop4: detected capacity change from 0 to 128
[   51.406780][ T4947] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   51.438644][ T4947] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   51.493543][ T4943] loop5: detected capacity change from 0 to 512
[   51.509759][ T4943] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[   51.548386][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   51.548483][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   51.586737][ T4952] loop3: detected capacity change from 0 to 512
[   51.607313][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   51.618581][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   51.629072][ T4952] EXT4-fs (loop3): VFS: Can't find ext4 filesystem
[   51.672272][ T3299] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   51.680983][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   51.701130][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   51.714845][ T4952] FAULT_INJECTION: forcing a failure.
[   51.714845][ T4952] name failslab, interval 1, probability 0, space 0, times 0
[   51.727546][ T4952] CPU: 0 UID: 0 PID: 4952 Comm: syz.3.408 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   51.727614][ T4952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   51.727623][ T4952] Call Trace:
[   51.727629][ T4952]  <TASK>
[   51.727637][ T4952]  __dump_stack+0x1d/0x30
[   51.727655][ T4952]  dump_stack_lvl+0xe8/0x140
[   51.727670][ T4952]  dump_stack+0x15/0x1b
[   51.727684][ T4952]  should_fail_ex+0x265/0x280
[   51.727717][ T4952]  should_failslab+0x8c/0xb0
[   51.727736][ T4952]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   51.727759][ T4952]  ? sock_alloc_inode+0x34/0xa0
[   51.727837][ T4952]  ? __pfx_sock_alloc_inode+0x10/0x10
[   51.727858][ T4952]  sock_alloc_inode+0x34/0xa0
[   51.727881][ T4952]  alloc_inode+0x3d/0x170
[   51.727903][ T4952]  __sock_create+0x122/0x5b0
[   51.727927][ T4952]  __sys_socketpair+0x170/0x430
[   51.728073][ T4952]  ? ksys_write+0x192/0x1a0
[   51.728092][ T4952]  __x64_sys_socketpair+0x52/0x60
[   51.728117][ T4952]  x64_sys_call+0x2bf2/0x2ff0
[   51.728138][ T4952]  do_syscall_64+0xd2/0x200
[   51.728164][ T4952]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.728189][ T4952]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   51.728252][ T4952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.728271][ T4952] RIP: 0033:0x7ffadd8debe9
[   51.728284][ T4952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.728369][ T4952] RSP: 002b:00007ffadc33f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   51.728393][ T4952] RAX: ffffffffffffffda RBX: 00007ffaddb05fa0 RCX: 00007ffadd8debe9
[   51.728404][ T4952] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000018
[   51.728414][ T4952] RBP: 00007ffadc33f090 R08: 0000000000000000 R09: 0000000000000000
[   51.728426][ T4952] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.728436][ T4952] R13: 00007ffaddb06038 R14: 00007ffaddb05fa0 R15: 00007ffe860598e8
[   51.728498][ T4952]  </TASK>
[   51.728504][ T4952] socket: no more sockets
[   52.007639][ T4986] FAULT_INJECTION: forcing a failure.
[   52.007639][ T4986] name failslab, interval 1, probability 0, space 0, times 0
[   52.020425][ T4986] CPU: 0 UID: 0 PID: 4986 Comm: syz.2.417 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   52.020454][ T4986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   52.020540][ T4986] Call Trace:
[   52.020546][ T4986]  <TASK>
[   52.020553][ T4986]  __dump_stack+0x1d/0x30
[   52.020572][ T4986]  dump_stack_lvl+0xe8/0x140
[   52.020588][ T4986]  dump_stack+0x15/0x1b
[   52.020601][ T4986]  should_fail_ex+0x265/0x280
[   52.020692][ T4986]  should_failslab+0x8c/0xb0
[   52.020711][ T4986]  kmem_cache_alloc_noprof+0x50/0x310
[   52.020732][ T4986]  ? getname_flags+0x80/0x3b0
[   52.020755][ T4986]  getname_flags+0x80/0x3b0
[   52.020801][ T4986]  do_sys_openat2+0x60/0x110
[   52.020902][ T4986]  __x64_sys_openat+0xf2/0x120
[   52.020931][ T4986]  x64_sys_call+0x2e9c/0x2ff0
[   52.020952][ T4986]  do_syscall_64+0xd2/0x200
[   52.020975][ T4986]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.021011][ T4986]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   52.021031][ T4986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.021112][ T4986] RIP: 0033:0x7f03f08bd550
[   52.021125][ T4986] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   52.021199][ T4986] RSP: 002b:00007f03ef31eb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   52.021216][ T4986] RAX: ffffffffffffffda RBX: 000000000000c340 RCX: 00007f03f08bd550
[   52.021227][ T4986] RDX: 000000000000c340 RSI: 00007f03ef31ec10 RDI: 00000000ffffff9c
[   52.021237][ T4986] RBP: 00007f03ef31ec10 R08: 0000000000000000 R09: 0000000000000000
[   52.021257][ T4986] R10: 0000000000000000 R11: 0000000000000293 R12: cccccccccccccccd
[   52.021268][ T4986] R13: 00007f03f0ae6038 R14: 00007f03f0ae5fa0 R15: 00007ffcbf310848
[   52.021283][ T4986]  </TASK>
[   52.218533][ T4989] loop0: detected capacity change from 0 to 1024
[   52.226716][ T4989] EXT4-fs: inline encryption not supported
[   52.233267][ T4989] EXT4-fs: Ignoring removed bh option
[   52.274754][ T4989] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.292206][ T5001] FAULT_INJECTION: forcing a failure.
[   52.292206][ T5001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.305358][ T5001] CPU: 1 UID: 0 PID: 5001 Comm: syz.3.427 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   52.305394][ T5001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   52.305406][ T5001] Call Trace:
[   52.305457][ T5001]  <TASK>
[   52.305464][ T5001]  __dump_stack+0x1d/0x30
[   52.305486][ T5001]  dump_stack_lvl+0xe8/0x140
[   52.305506][ T5001]  dump_stack+0x15/0x1b
[   52.305523][ T5001]  should_fail_ex+0x265/0x280
[   52.305596][ T5001]  should_fail+0xb/0x20
[   52.305614][ T5001]  should_fail_usercopy+0x1a/0x20
[   52.305632][ T5001]  _copy_to_user+0x20/0xa0
[   52.305654][ T5001]  simple_read_from_buffer+0xb5/0x130
[   52.305699][ T5001]  proc_fail_nth_read+0x10e/0x150
[   52.305721][ T5001]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   52.305742][ T5001]  vfs_read+0x1a8/0x770
[   52.305761][ T5001]  ? __rcu_read_unlock+0x4f/0x70
[   52.305784][ T5001]  ? __fget_files+0x184/0x1c0
[   52.305870][ T5001]  ksys_read+0xda/0x1a0
[   52.305888][ T5001]  __x64_sys_read+0x40/0x50
[   52.305906][ T5001]  x64_sys_call+0x27bc/0x2ff0
[   52.305980][ T5001]  do_syscall_64+0xd2/0x200
[   52.306000][ T5001]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.306023][ T5001]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   52.306104][ T5001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.306125][ T5001] RIP: 0033:0x7ffadd8dd5fc
[   52.306138][ T5001] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   52.306154][ T5001] RSP: 002b:00007ffadc33f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   52.306173][ T5001] RAX: ffffffffffffffda RBX: 00007ffaddb05fa0 RCX: 00007ffadd8dd5fc
[   52.306220][ T5001] RDX: 000000000000000f RSI: 00007ffadc33f0a0 RDI: 0000000000000004
[   52.306233][ T5001] RBP: 00007ffadc33f090 R08: 0000000000000000 R09: 0000000000000000
[   52.306244][ T5001] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   52.306254][ T5001] R13: 00007ffaddb06038 R14: 00007ffaddb05fa0 R15: 00007ffe860598e8
[   52.306273][ T5001]  </TASK>
[   52.528049][ T4989] Q�6��\b��Y�4��: renamed from lo (while UP)
[   52.540886][ T4989] netlink: 'syz.0.423': attribute type 1 has an invalid length.
[   52.576288][ T5012] loop2: detected capacity change from 0 to 2048
[   52.610352][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   52.615662][ T3282] loop2: partition table partially beyond EOD, truncated
[   52.627131][ T5017] loop4: detected capacity change from 0 to 512
[   52.627759][ T3282] loop2: p1 start 4278190080 is beyond EOD, truncated
[   52.640289][ T3282] loop2: p2 start 16908800 is beyond EOD, truncated
[   52.640926][ T5017] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   52.657412][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.668954][ T5017] EXT4-fs (loop4): 1 truncate cleaned up
[   52.677989][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   52.689076][ T5017] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.719949][ T5012]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   52.725194][ T5012] loop2: partition table partially beyond EOD, truncated
[   52.740929][ T5012] loop2: p1 start 4278190080 is beyond EOD, truncated
[   52.747950][ T5012] loop2: p2 start 16908800 is beyond EOD, truncated
[   52.789411][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.814934][ T5012] loop2: p5 start 16908800 is beyond EOD, truncated
[   52.943775][ T5042] netlink: 'syz.3.443': attribute type 21 has an invalid length.
[   52.956904][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   52.968733][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   52.978605][ T5042] netlink: 'syz.3.443': attribute type 1 has an invalid length.
[   52.998124][ T5049] loop3: detected capacity change from 0 to 128
[   53.017718][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[   53.039542][ T5049] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.059864][ T5046] loop2: detected capacity change from 0 to 2048
[   53.078628][ T5049] ext4 filesystem being mounted at /107/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   53.125935][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.133447][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.140962][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.148362][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.155989][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.163491][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.171014][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.178394][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.181864][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   53.185852][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.191088][ T3282] loop2: partition table partially beyond EOD, truncated
[   53.194422][ T3282] loop2: p1 start 4278190080 is beyond EOD, 
[   53.198703][   T10] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0
[   53.205588][ T3282] truncated
[   53.205595][ T3282] loop2: p2 start 16908800 is beyond EOD, 
[   53.219202][ T5061] loop4: detected capacity change from 0 to 512
[   53.222113][ T3282] truncated
[   53.229578][ T5061] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   53.250774][ T3305] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.253308][ T5062] loop0: detected capacity change from 0 to 1024
[   53.275899][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   53.283256][ T5061] EXT4-fs (loop4): 1 truncate cleaned up
[   53.296961][ T5046]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   53.302288][ T5046] loop2: partition table partially beyond EOD, truncated
[   53.322425][ T5046] loop2: p1 start 4278190080 is beyond EOD, truncated
[   53.329295][ T5046] loop2: p2 start 16908800 is beyond EOD, truncated
[   53.334919][ T5061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.336561][ T3395] hid-generic 0008:0006:0007.0002: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[   53.361843][   T10] hid-generic 0008:0006:0007.0001: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[   53.378708][ T5046] loop2: p5 start 16908800 is beyond EOD, truncated
[   53.401768][ T5071] fido_id[5071]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   53.441177][ T5075] loop0: detected capacity change from 0 to 2048
[   53.450842][ T5073] loop3: detected capacity change from 0 to 512
[   53.471121][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.474210][ T5076] fido_id[5076]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   53.498296][ T4432] udevd[4432]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[   53.501422][ T5073] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.523506][ T5078] siw: device registration error -23
[   53.529334][ T4431]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   53.534778][ T4431] loop0: partition table partially beyond EOD, truncated
[   53.557862][ T4431] loop0: p1 start 4278190080 is beyond EOD, truncated
[   53.564749][ T4431] loop0: p2 start 16908800 is beyond EOD, truncated
[   53.574480][ T5073] EXT4-fs (loop3): 1 truncate cleaned up
[   53.580917][ T5073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.597181][ T5073] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.609788][ T4431] loop0: p5 start 16908800 is beyond EOD, truncated
[   53.629076][ T5075]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   53.634325][ T5075] loop0: partition table partially beyond EOD, truncated
[   53.667785][ T5093] netlink: 'syz.5.462': attribute type 21 has an invalid length.
[   53.668452][ T5075] loop0: p1 start 4278190080 is beyond EOD, truncated
[   53.682395][ T5075] loop0: p2 start 16908800 is beyond EOD, truncated
[   53.685706][ T5093] netlink: 'syz.5.462': attribute type 1 has an invalid length.
[   53.695924][ T5075] loop0: p5 start 16908800 is beyond EOD, truncated
[   53.726688][ T5098] loop5: detected capacity change from 0 to 128
[   53.761755][ T5096] loop3: detected capacity change from 0 to 2048
[   53.774873][ T5098] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.788670][ T5098] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   53.854617][ T5103] loop4: detected capacity change from 0 to 512
[   53.862207][ T5103] EXT4-fs: Ignoring removed nobh option
[   53.881543][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.464: corrupted inode contents
[   53.910857][ T4397] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   53.916727][ T5103] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #3: comm syz.4.464: mark_inode_dirty error
[   53.935690][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.464: corrupted inode contents
[   53.948404][ T5103] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.464: mark_inode_dirty error
[   53.959466][ T5111] SELinux:  policydb version -901325779 does not match my version range 15-35
[   53.961302][ T5111] SELinux: failed to load policy
[   53.981198][ T5103] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.464: Failed to acquire dquot type 0
[   53.993010][ T5112] loop5: detected capacity change from 0 to 2048
[   53.994072][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.464: corrupted inode contents
[   54.011881][ T5103] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.464: mark_inode_dirty error
[   54.013957][ T5114] loop0: detected capacity change from 0 to 512
[   54.023619][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.464: corrupted inode contents
[   54.034252][ T5114] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   54.043058][ T5103] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.464: mark_inode_dirty error
[   54.063291][ T5114] EXT4-fs (loop0): 1 truncate cleaned up
[   54.063486][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.464: corrupted inode contents
[   54.069374][ T5114] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.082028][ T5112]  loop5: p1 < > p2 p3 < p5 p6 > p4
[   54.098007][ T5112] loop5: partition table partially beyond EOD, truncated
[   54.105480][ T5103] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   54.114277][ T5112] loop5: p1 start 4278190080 is beyond EOD, truncated
[   54.121088][ T5112] loop5: p2 start 16908800 is beyond EOD, truncated
[   54.127749][ T5103] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.464: corrupted inode contents
[   54.130854][ T5112] loop5: p5 start 16908800 is beyond EOD, truncated
[   54.140466][ T5103] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.464: mark_inode_dirty error
[   54.164943][ T5103] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   54.177548][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.187076][ T5103] EXT4-fs (loop4): 1 truncate cleaned up
[   54.194828][ T5103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.237944][ T5103] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.252127][   T29] kauditd_printk_skb: 444 callbacks suppressed
[   54.252142][   T29] audit: type=1326 audit(1755004692.397:2650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.299754][   T29] audit: type=1326 audit(1755004692.397:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.322725][   T29] audit: type=1326 audit(1755004692.397:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.345557][   T29] audit: type=1326 audit(1755004692.397:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.368580][   T29] audit: type=1326 audit(1755004692.397:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.391533][   T29] audit: type=1326 audit(1755004692.397:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.414430][   T29] audit: type=1326 audit(1755004692.397:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.437402][   T29] audit: type=1326 audit(1755004692.397:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[   54.461009][   T29] audit: type=1326 audit(1755004692.397:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   54.493896][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.494184][   T29] audit: type=1400 audit(1755004692.447:2659): avc:  denied  { setopt } for  pid=5121 comm="syz.5.470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   54.534179][ T5134] loop0: detected capacity change from 0 to 2048
[   54.548987][ T5132] loop2: detected capacity change from 0 to 2048
[   54.566948][ T5137] syzkaller0: tun_chr_ioctl cmd 1074025681
[   54.573805][ T5137] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5137 comm=syz.4.477
[   54.586790][ T3293]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   54.592030][ T3293] loop0: partition table partially beyond EOD, truncated
[   54.599413][ T4429]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   54.601136][ T3293] loop0: p1 start 4278190080 is beyond EOD, truncated
[   54.604660][ T4429] loop2: partition table partially beyond EOD, truncated
[   54.611403][ T3293] loop0: p2 start 16908800 is beyond EOD, truncated
[   54.625260][ T4429] loop2: p1 start 4278190080 is beyond EOD, truncated
[   54.632157][ T4429] loop2: p2 start 16908800 is beyond EOD, truncated
[   54.633961][ T5141] siw: device registration error -23
[   54.647146][ T3293] loop0: p5 start 16908800 is beyond EOD, truncated
[   54.655000][ T4429] loop2: p5 start 16908800 is beyond EOD, truncated
[   54.681302][ T5134]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   54.686542][ T5134] loop0: partition table partially beyond EOD, truncated
[   54.696345][ T5134] loop0: p1 start 4278190080 is beyond EOD, truncated
[   54.703200][ T5134] loop0: p2 start 16908800 is beyond EOD, truncated
[   54.716128][ T5132]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   54.721448][ T5132] loop2: partition table partially beyond EOD, truncated
[   54.733791][ T5132] loop2: p1 start 4278190080 is beyond EOD, truncated
[   54.740704][ T5132] loop2: p2 start 16908800 is beyond EOD, truncated
[   54.747998][ T5134] loop0: p5 start 16908800 is beyond EOD, truncated
[   54.755749][ T5132] loop2: p5 start 16908800 is beyond EOD, truncated
[   54.802492][ T2991]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   54.807710][ T2991] loop0: partition table partially beyond EOD, truncated
[   54.824959][ T2991] loop0: p1 start 4278190080 is beyond EOD, truncated
[   54.831901][ T2991] loop0: p2 start 16908800 is beyond EOD, truncated
[   54.841564][ T5161] syz.3.488 (5161): attempted to duplicate a private mapping with mremap.  This is not supported.
[   54.853716][ T2991] loop0: p5 start 16908800 is beyond EOD, truncated
[   54.880960][ T5164] FAULT_INJECTION: forcing a failure.
[   54.880960][ T5164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.894104][ T5164] CPU: 1 UID: 0 PID: 5164 Comm: syz.3.489 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   54.894157][ T5164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   54.894168][ T5164] Call Trace:
[   54.894175][ T5164]  <TASK>
[   54.894183][ T5164]  __dump_stack+0x1d/0x30
[   54.894204][ T5164]  dump_stack_lvl+0xe8/0x140
[   54.894223][ T5164]  dump_stack+0x15/0x1b
[   54.894256][ T5164]  should_fail_ex+0x265/0x280
[   54.894275][ T5164]  should_fail+0xb/0x20
[   54.894314][ T5164]  should_fail_usercopy+0x1a/0x20
[   54.894335][ T5164]  _copy_to_user+0x20/0xa0
[   54.894361][ T5164]  simple_read_from_buffer+0xb5/0x130
[   54.894462][ T5164]  proc_fail_nth_read+0x10e/0x150
[   54.894525][ T5164]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   54.894550][ T5164]  vfs_read+0x1a8/0x770
[   54.894571][ T5164]  ? __rcu_read_unlock+0x4f/0x70
[   54.894593][ T5164]  ? __fget_files+0x184/0x1c0
[   54.894678][ T5164]  ksys_read+0xda/0x1a0
[   54.894701][ T5164]  __x64_sys_read+0x40/0x50
[   54.894723][ T5164]  x64_sys_call+0x27bc/0x2ff0
[   54.894829][ T5164]  do_syscall_64+0xd2/0x200
[   54.894855][ T5164]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.894880][ T5164]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.894904][ T5164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.895001][ T5164] RIP: 0033:0x7ffadd8dd5fc
[   54.895017][ T5164] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   54.895033][ T5164] RSP: 002b:00007ffadc33f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.895052][ T5164] RAX: ffffffffffffffda RBX: 00007ffaddb05fa0 RCX: 00007ffadd8dd5fc
[   54.895065][ T5164] RDX: 000000000000000f RSI: 00007ffadc33f0a0 RDI: 0000000000000003
[   54.895111][ T5164] RBP: 00007ffadc33f090 R08: 0000000000000000 R09: 0000000000000000
[   54.895124][ T5164] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[   54.895221][ T5164] R13: 00007ffaddb06038 R14: 00007ffaddb05fa0 R15: 00007ffe860598e8
[   54.895241][ T5164]  </TASK>
[   54.997000][ T5171] loop5: detected capacity change from 0 to 512
[   54.997725][ T5171] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   55.004897][ T5170] netlink: 'syz.3.490': attribute type 21 has an invalid length.
[   55.004928][ T5170] netlink: 'syz.3.490': attribute type 1 has an invalid length.
[   55.156364][ T5171] EXT4-fs (loop5): 1 truncate cleaned up
[   55.157463][ T5170] __nla_validate_parse: 7 callbacks suppressed
[   55.157475][ T5170] netlink: 144 bytes leftover after parsing attributes in process `syz.3.490'.
[   55.175060][ T5171] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.192521][ T5177] loop3: detected capacity change from 0 to 128
[   55.253430][ T5177] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   55.277179][ T5177] ext4 filesystem being mounted at /115/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   55.331021][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.375293][ T5184] loop2: detected capacity change from 0 to 512
[   55.402479][ T3305] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   55.426773][ T5184] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   55.434955][ T5184] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   55.445835][ T5188] loop0: detected capacity change from 0 to 512
[   55.448745][ T5184] System zones: 0-1, 15-15, 18-18, 34-34
[   55.458226][ T5184] EXT4-fs (loop2): orphan cleanup on readonly fs
[   55.465193][ T5184] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   55.479846][ T5184] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   55.495215][ T5184] EXT4-fs (loop2): 1 truncate cleaned up
[   55.515640][ T5184] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.575021][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.595861][ T5204] lo speed is unknown, defaulting to 1000
[   55.624150][ T5188] EXT4-fs (loop0): too many log groups per flexible block group
[   55.630136][ T5206] netlink: 4 bytes leftover after parsing attributes in process `syz.5.500'.
[   55.632110][ T5188] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   55.650127][ T5188] EXT4-fs (loop0): mount failed
[   55.673446][ T5188] vhci_hcd: invalid port number 96
[   55.678672][ T5188] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   55.777605][ T5215] loop2: detected capacity change from 0 to 512
[   55.802063][ T5218] netlink: 28 bytes leftover after parsing attributes in process `syz.3.506'.
[   55.884624][ T5222] netlink: 'syz.3.507': attribute type 21 has an invalid length.
[   55.919338][ T5222] netlink: 'syz.3.507': attribute type 1 has an invalid length.
[   55.927028][ T5222] netlink: 144 bytes leftover after parsing attributes in process `syz.3.507'.
[   55.955198][ T5223] loop3: detected capacity change from 0 to 128
[   55.982140][ T5215] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.062423][ T5223] ext4 filesystem being mounted at /120/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   56.118621][ T5215] EXT4-fs (loop2): 1 truncate cleaned up
[   56.274492][ T5242] siw: device registration error -23
[   56.337796][ T5249] new mount options do not match the existing superblock, will be ignored
[   56.350002][ T5249] loop0: detected capacity change from 0 to 256
[   56.457079][ T5256] netlink: 4 bytes leftover after parsing attributes in process `syz.4.519'.
[   56.476810][ T5260] lo speed is unknown, defaulting to 1000
[   56.490878][ T5263] netlink: 'syz.3.522': attribute type 21 has an invalid length.
[   56.504404][ T5258] loop2: detected capacity change from 0 to 512
[   56.513475][ T5265] netlink: 4 bytes leftover after parsing attributes in process `syz.4.519'.
[   56.516474][ T5258] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.540896][ T5263] netlink: 'syz.3.522': attribute type 1 has an invalid length.
[   56.548567][ T5263] netlink: 144 bytes leftover after parsing attributes in process `syz.3.522'.
[   56.549030][ T5258] EXT4-fs (loop2): 1 truncate cleaned up
[   56.558828][ T3395] kernel write not supported for file /context (pid: 3395 comm: kworker/1:3)
[   56.645859][ T5277] loop3: detected capacity change from 0 to 2048
[   56.656846][ T5279] siw: device registration error -23
[   56.680282][ T5277]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   56.685550][ T5277] loop3: partition table partially beyond EOD, truncated
[   56.698520][ T5277] loop3: p1 start 4278190080 is beyond EOD, truncated
[   56.705366][ T5277] loop3: p2 start 16908800 is beyond EOD, truncated
[   56.713608][ T5277] loop3: p5 start 16908800 is beyond EOD, truncated
[   56.967277][ T5304] loop4: detected capacity change from 0 to 512
[   57.001378][ T5304] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   57.014446][ T5304] EXT4-fs (loop4): orphan cleanup on readonly fs
[   57.031966][ T5304] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   57.052414][ T5304] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   57.066985][ T5304] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.536: bg 0: block 40: padding at end of block bitmap is not set
[   57.084444][ T5304] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   57.094625][ T5304] EXT4-fs (loop4): 1 truncate cleaned up
[   57.128834][ T5315] loop2: detected capacity change from 0 to 512
[   57.154355][ T5315] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   57.175160][ T5315] EXT4-fs (loop2): 1 truncate cleaned up
[   57.238561][ T5319] loop2: detected capacity change from 0 to 512
[   57.272649][ T5319] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   57.280626][ T5319] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   57.297324][ T5319] System zones: 0-1, 15-15, 18-18, 34-34
[   57.303426][ T5319] EXT4-fs (loop2): orphan cleanup on readonly fs
[   57.309988][ T5319] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   57.324589][ T5319] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   57.343041][ T5319] EXT4-fs (loop2): 1 truncate cleaned up
[   57.420892][    C1] hrtimer: interrupt took 28050 ns
[   57.518140][ T5341] loop5: detected capacity change from 0 to 2048
[   57.527176][ T5343] loop0: detected capacity change from 0 to 2048
[   57.540425][ T3293]  loop5: p1 < > p4
[   57.548168][ T3293] loop5: p4 size 8388608 extends beyond EOD, truncated
[   57.563853][ T3282]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   57.569131][ T3282] loop0: partition table partially beyond EOD, truncated
[   57.582164][ T5341]  loop5: p1 < > p4
[   57.586634][ T3282] loop0: p1 start 4278190080 is beyond EOD, truncated
[   57.593510][ T3282] loop0: p2 start 16908800 is beyond EOD, truncated
[   57.604043][ T5341] loop5: p4 size 8388608 extends beyond EOD, truncated
[   57.609786][ T3282] loop0: p5 start 16908800 is beyond EOD, truncated
[   57.718897][ T5343]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   57.724215][ T5343] loop0: partition table partially beyond EOD, truncated
[   57.746298][ T5343] loop0: p1 start 4278190080 is beyond EOD, truncated
[   57.753224][ T5343] loop0: p2 start 16908800 is beyond EOD, truncated
[   57.780873][ T5343] loop0: p5 start 16908800 is beyond EOD, truncated
[   57.877126][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   57.877990][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[   57.890881][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   57.939446][ T5360] FAULT_INJECTION: forcing a failure.
[   57.939446][ T5360] name failslab, interval 1, probability 0, space 0, times 0
[   57.952160][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.5.558 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   57.952189][ T5360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.952201][ T5360] Call Trace:
[   57.952208][ T5360]  <TASK>
[   57.952216][ T5360]  __dump_stack+0x1d/0x30
[   57.952273][ T5360]  dump_stack_lvl+0xe8/0x140
[   57.952293][ T5360]  dump_stack+0x15/0x1b
[   57.952310][ T5360]  should_fail_ex+0x265/0x280
[   57.952379][ T5360]  ? __request_module+0x1c4/0x3e0
[   57.952418][ T5360]  should_failslab+0x8c/0xb0
[   57.952521][ T5360]  ? dev_load+0x61/0xc0
[   57.952543][ T5360]  __kmalloc_cache_noprof+0x4c/0x320
[   57.952572][ T5360]  ? dev_load+0x61/0xc0
[   57.952593][ T5360]  __request_module+0x1c4/0x3e0
[   57.952615][ T5360]  ? capable+0x7c/0xb0
[   57.952680][ T5360]  dev_load+0x61/0xc0
[   57.952699][ T5360]  dev_ioctl+0x2d1/0x960
[   57.952721][ T5360]  sock_do_ioctl+0x197/0x220
[   57.952766][ T5360]  sock_ioctl+0x41b/0x610
[   57.952822][ T5360]  ? __pfx_sock_ioctl+0x10/0x10
[   57.952845][ T5360]  __se_sys_ioctl+0xcb/0x140
[   57.952945][ T5360]  __x64_sys_ioctl+0x43/0x50
[   57.952969][ T5360]  x64_sys_call+0x1816/0x2ff0
[   57.952986][ T5360]  do_syscall_64+0xd2/0x200
[   57.953007][ T5360]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.953083][ T5360]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.953115][ T5360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.953152][ T5360] RIP: 0033:0x7f308e50ebe9
[   57.953165][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.953182][ T5360] RSP: 002b:00007f308cf77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.953202][ T5360] RAX: ffffffffffffffda RBX: 00007f308e735fa0 RCX: 00007f308e50ebe9
[   57.953232][ T5360] RDX: 0000200000000840 RSI: 0000000000008946 RDI: 0000000000000004
[   57.953242][ T5360] RBP: 00007f308cf77090 R08: 0000000000000000 R09: 0000000000000000
[   57.953253][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.953264][ T5360] R13: 00007f308e736038 R14: 00007f308e735fa0 R15: 00007ffd61d76018
[   57.953334][ T5360]  </TASK>
[   58.457164][ T5390] netlink: 28 bytes leftover after parsing attributes in process `syz.0.570'.
[   58.538789][ T5393] loop0: detected capacity change from 0 to 2048
[   58.640240][ T3282]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   58.645482][ T3282] loop0: partition table partially beyond EOD, truncated
[   58.683152][ T5413] netlink: 28 bytes leftover after parsing attributes in process `syz.5.574'.
[   58.700004][ T3282] loop0: p1 start 4278190080 is beyond EOD, truncated
[   58.706881][ T3282] loop0: p2 start 16908800 is beyond EOD, truncated
[   58.762197][ T3282] loop0: p5 start 16908800 is beyond EOD, truncated
[   58.781806][ T5393]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   58.787047][ T5393] loop0: partition table partially beyond EOD, truncated
[   58.828807][ T5393] loop0: p1 start 4278190080 is beyond EOD, truncated
[   58.835694][ T5393] loop0: p2 start 16908800 is beyond EOD, truncated
[   58.849980][ T5426] netlink: 28 bytes leftover after parsing attributes in process `syz.4.579'.
[   58.871824][ T5393] loop0: p5 start 16908800 is beyond EOD, truncated
[   58.918943][ T5431] siw: device registration error -23
[   58.942965][ T5434] netlink: 'syz.3.569': attribute type 21 has an invalid length.
[   58.950827][ T5434] netlink: 'syz.3.569': attribute type 4 has an invalid length.
[   58.972816][ T5434] random: crng reseeded on system resumption
[   58.997449][ T5434] Restarting kernel threads ...
[   59.003472][ T5438] loop0: detected capacity change from 0 to 1024
[   59.010860][ T5434] Done restarting kernel threads.
[   59.025199][ T5440] loop4: detected capacity change from 0 to 512
[   59.042631][ T5440] EXT4-fs: user quota file already specified
[   59.065890][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   59.065975][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[   59.077309][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   59.106644][ T5444] loop5: detected capacity change from 0 to 512
[   59.124568][ T5444] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   59.164475][ T5444] EXT4-fs (loop5): 1 truncate cleaned up
[   59.298937][ T5465] loop0: detected capacity change from 0 to 2048
[   59.361091][ T3282]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   59.366323][ T3282] loop0: partition table partially beyond EOD, truncated
[   59.398328][ T3282] loop0: p1 start 4278190080 is beyond EOD, truncated
[   59.405167][ T3282] loop0: p2 start 16908800 is beyond EOD, truncated
[   59.464035][ T3282] loop0: p5 start 16908800 is beyond EOD, truncated
[   59.523313][ T5465]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   59.528551][ T5465] loop0: partition table partially beyond EOD, truncated
[   59.568661][ T5465] loop0: p1 start 4278190080 is beyond EOD, truncated
[   59.575547][ T5465] loop0: p2 start 16908800 is beyond EOD, truncated
[   59.575619][ T5497] loop5: detected capacity change from 0 to 512
[   59.608474][ T5465] loop0: p5 start 16908800 is beyond EOD, truncated
[   59.610169][ T5497] EXT4-fs: user quota file already specified
[   59.625927][ T5505] loop4: detected capacity change from 0 to 512
[   59.653867][ T5505] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   59.689043][ T5505] EXT4-fs (loop4): 1 truncate cleaned up
[   59.745613][ T5508] syzkaller0: entered promiscuous mode
[   59.751270][ T5508] syzkaller0: entered allmulticast mode
[   59.786963][   T29] kauditd_printk_skb: 294 callbacks suppressed
[   59.786979][   T29] audit: type=1326 audit(1755004697.927:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.810995][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory
[   59.856218][   T29] audit: type=1326 audit(1755004697.967:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.879754][   T29] audit: type=1326 audit(1755004697.967:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.903366][   T29] audit: type=1326 audit(1755004697.967:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.926725][   T29] audit: type=1326 audit(1755004697.967:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.926754][   T29] audit: type=1326 audit(1755004697.967:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.926881][   T29] audit: type=1326 audit(1755004697.967:2957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.926901][   T29] audit: type=1326 audit(1755004697.967:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.926989][   T29] audit: type=1326 audit(1755004697.967:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   59.927044][   T29] audit: type=1326 audit(1755004697.967:2960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5509 comm="syz.4.609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f589485ebe9 code=0x7ffc0000
[   60.225134][ T5534] loop0: detected capacity change from 0 to 512
[   60.225958][ T5534] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   60.232608][ T5534] EXT4-fs (loop0): 1 truncate cleaned up
[   60.255711][ T5529] loop4: detected capacity change from 0 to 2048
[   60.303766][ T3293]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   60.303777][ T3293] loop4: partition table partially beyond EOD, truncated
[   60.303841][ T3293] loop4: p1 start 4278190080 is beyond EOD, truncated
[   60.303888][ T3293] loop4: p2 start 16908800 is beyond EOD, truncated
[   60.304689][ T3293] loop4: p5 start 16908800 is beyond EOD, truncated
[   60.314368][ T5529]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   60.314391][ T5529] loop4: partition table partially beyond EOD, truncated
[   60.314437][ T5529] loop4: p1 start 4278190080 is beyond EOD, truncated
[   60.314451][ T5529] loop4: p2 start 16908800 is beyond EOD, truncated
[   60.315322][ T5529] loop4: p5 start 16908800 is beyond EOD, truncated
[   60.547274][ T5574] loop3: detected capacity change from 0 to 2048
[   60.591617][ T5574]  loop3: p1 < > p4
[   60.600529][ T5574] loop3: p4 size 8388608 extends beyond EOD, truncated
[   60.631636][ T2991]  loop3: p1 < > p4
[   60.637951][ T2991] loop3: p4 size 8388608 extends beyond EOD, truncated
[   60.677333][ T5592] loop4: detected capacity change from 0 to 512
[   60.696880][ T5574] 9pnet_fd: Insufficient options for proto=fd
[   60.722427][ T5592] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   60.768299][ T5592] EXT4-fs (loop4): 1 truncate cleaned up
[   60.774222][ T5599] loop2: detected capacity change from 0 to 512
[   60.783022][ T5599] EXT4-fs: Ignoring removed nobh option
[   60.809064][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.634: corrupted inode contents
[   60.882838][ T5599] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.634: mark_inode_dirty error
[   60.902171][ T5609] siw: device registration error -23
[   60.958238][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.634: corrupted inode contents
[   61.008560][ T5599] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.634: mark_inode_dirty error
[   61.042071][ T5638] siw: device registration error -23
[   61.043406][ T5599] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.634: Failed to acquire dquot type 0
[   61.089575][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.634: corrupted inode contents
[   61.124632][ T5599] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.634: mark_inode_dirty error
[   61.131584][ T5642] syzkaller0: entered promiscuous mode
[   61.141476][ T5642] syzkaller0: entered allmulticast mode
[   61.161532][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.634: corrupted inode contents
[   61.180760][ T5599] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.634: mark_inode_dirty error
[   61.215436][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.634: corrupted inode contents
[   61.231552][ T5599] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   61.241748][ T5599] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.634: corrupted inode contents
[   61.254310][ T5599] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.634: mark_inode_dirty error
[   61.269714][ T5599] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   61.299864][ T5599] EXT4-fs (loop2): 1 truncate cleaned up
[   61.306060][ T5599] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.309332][ T5649] loop4: detected capacity change from 0 to 512
[   61.326733][ T5649] EXT4-fs: Ignoring removed nobh option
[   61.352573][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.648: corrupted inode contents
[   61.367055][ T5649] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #3: comm syz.4.648: mark_inode_dirty error
[   61.390356][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.648: corrupted inode contents
[   61.421596][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   61.428960][ T5649] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.648: mark_inode_dirty error
[   61.463107][ T5657] __nla_validate_parse: 2 callbacks suppressed
[   61.463124][ T5657] netlink: 28 bytes leftover after parsing attributes in process `syz.5.652'.
[   61.481211][ T5649] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.648: Failed to acquire dquot type 0
[   61.502738][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.648: corrupted inode contents
[   61.525376][ T5649] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.648: mark_inode_dirty error
[   61.548919][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.648: corrupted inode contents
[   61.565820][ T5649] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.648: mark_inode_dirty error
[   61.577988][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.648: corrupted inode contents
[   61.595271][ T5649] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   61.613170][ T5649] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.648: corrupted inode contents
[   61.644010][ T5649] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.648: mark_inode_dirty error
[   61.667194][ T5679] loop5: detected capacity change from 0 to 2048
[   61.678712][ T5649] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   61.703875][ T5649] EXT4-fs (loop4): 1 truncate cleaned up
[   61.716293][ T5649] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.727712][ T3282]  loop5: p1 < > p4
[   61.741903][ T3282] loop5: p4 size 8388608 extends beyond EOD, truncated
[   61.779797][ T5698] netlink: 28 bytes leftover after parsing attributes in process `syz.0.667'.
[   61.792928][ T5679]  loop5: p1 < > p4
[   61.808524][ T5679] loop5: p4 size 8388608 extends beyond EOD, truncated
[   61.852096][ T5679] 9pnet_fd: Insufficient options for proto=fd
[   62.098742][ T5737] syzkaller0: entered promiscuous mode
[   62.104410][ T5737] syzkaller0: entered allmulticast mode
[   62.213802][ T5764] SELinux:  policydb version -901325779 does not match my version range 15-35
[   62.235137][ T5764] SELinux: failed to load policy
[   62.280880][ T5775] netlink: 28 bytes leftover after parsing attributes in process `syz.0.686'.
[   62.349450][ T5789] siw: device registration error -23
[   62.404907][ T5795] loop0: detected capacity change from 0 to 512
[   62.428122][ T5795] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   62.446001][ T5795] EXT4-fs (loop0): 1 truncate cleaned up
[   62.501699][ T5797] syzkaller0: entered promiscuous mode
[   62.507200][ T5797] syzkaller0: entered allmulticast mode
[   62.589384][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[   62.600985][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   62.652108][ T5820] netlink: 28 bytes leftover after parsing attributes in process `syz.3.701'.
[   62.676082][ T5818] loop0: detected capacity change from 0 to 512
[   62.703809][ T5825] siw: device registration error -23
[   62.720667][ T5818] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   62.758432][ T5818] EXT4-fs (loop0): 1 truncate cleaned up
[   62.766668][ T5831] loop5: detected capacity change from 0 to 2048
[   62.774513][ T5837] SELinux:  policydb version -901325779 does not match my version range 15-35
[   62.783473][ T5833] loop3: detected capacity change from 0 to 512
[   62.792201][ T5837] SELinux: failed to load policy
[   62.814167][ T5833] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   62.824982][ T3282]  loop5: p1 < > p4
[   62.830796][ T3282] loop5: p4 size 8388608 extends beyond EOD, truncated
[   62.846223][ T5833] EXT4-fs (loop3): 1 truncate cleaned up
[   62.853282][ T5831]  loop5: p1 < > p4
[   62.862038][ T5831] loop5: p4 size 8388608 extends beyond EOD, truncated
[   62.877994][ T5831] 9pnet_fd: Insufficient options for proto=fd
[   63.016621][ T5858] process '/newroot/152/file0' started with executable stack
[   63.054293][ T5861] loop3: detected capacity change from 0 to 512
[   63.064793][ T5861] journal_path: Non-blockdev passed as './bus'
[   63.071038][ T5861] EXT4-fs: error: could not find journal device path
[   63.158877][ T5865] loop4: detected capacity change from 0 to 2048
[   63.190552][ T3282]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   63.195797][ T3282] loop4: partition table partially beyond EOD, truncated
[   63.219034][ T3282] loop4: p1 start 4278190080 is beyond EOD, truncated
[   63.225859][ T3282] loop4: p2 start 16908800 is beyond EOD, truncated
[   63.237642][ T5861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.721'.
[   63.246811][ T3282] loop4: p5 start 16908800 is beyond EOD, truncated
[   63.262607][ T5865]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   63.267847][ T5865] loop4: partition table partially beyond EOD, truncated
[   63.281540][ T5865] loop4: p1 start 4278190080 is beyond EOD, truncated
[   63.288351][ T5865] loop4: p2 start 16908800 is beyond EOD, truncated
[   63.296448][ T5865] loop4: p5 start 16908800 is beyond EOD, truncated
[   63.354346][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   63.355548][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   63.368866][ T5874] loop3: detected capacity change from 0 to 2048
[   63.381709][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   63.412798][ T5876] loop0: detected capacity change from 0 to 512
[   63.420097][ T5876] EXT4-fs: Ignoring removed nobh option
[   63.422317][ T5878] loop4: detected capacity change from 0 to 512
[   63.433577][ T5878] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   63.445648][ T5878] EXT4-fs (loop4): 1 truncate cleaned up
[   63.453083][ T5874]  loop3: p1 < > p4
[   63.460314][ T5874] loop3: p4 size 8388608 extends beyond EOD, truncated
[   63.482221][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.725: corrupted inode contents
[   63.504878][ T5874] 9pnet_fd: Insufficient options for proto=fd
[   63.508115][ T5876] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.725: mark_inode_dirty error
[   63.524220][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.725: corrupted inode contents
[   63.526670][ T5882] xt_policy: too many policy elements
[   63.536293][ T5876] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.725: mark_inode_dirty error
[   63.553601][ T5876] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.725: Failed to acquire dquot type 0
[   63.577721][ T5882] sg_write: data in/out 11329/120 bytes for SCSI command 0x0-- guessing data in;
[   63.577721][ T5882]    program syz.4.726 not setting count and/or reply_len properly
[   63.597561][ T5885] loop2: detected capacity change from 0 to 512
[   63.604252][ T5885] EXT4-fs: Ignoring removed nobh option
[   63.610378][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.725: corrupted inode contents
[   63.624549][ T5876] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.725: mark_inode_dirty error
[   63.625036][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.727: corrupted inode contents
[   63.644757][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[   63.666270][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   63.670368][ T5885] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.727: mark_inode_dirty error
[   63.689073][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.725: corrupted inode contents
[   63.694575][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.727: corrupted inode contents
[   63.713148][ T5885] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.727: mark_inode_dirty error
[   63.716742][ T5876] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.725: mark_inode_dirty error
[   63.724886][ T5885] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.727: Failed to acquire dquot type 0
[   63.748983][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.725: corrupted inode contents
[   63.761201][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.727: corrupted inode contents
[   63.773218][ T5876] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   63.782383][ T5876] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.725: corrupted inode contents
[   63.794839][ T5885] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.727: mark_inode_dirty error
[   63.805891][ T5876] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.725: mark_inode_dirty error
[   63.806594][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.727: corrupted inode contents
[   63.828961][ T5893] loop5: detected capacity change from 0 to 2048
[   63.830090][ T5885] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.727: mark_inode_dirty error
[   63.837627][ T5876] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   63.847418][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.727: corrupted inode contents
[   63.858550][ T5876] EXT4-fs (loop0): 1 truncate cleaned up
[   63.868492][ T5885] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   63.873723][ T5876] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.882687][ T5885] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.727: corrupted inode contents
[   63.904637][ T5885] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.727: mark_inode_dirty error
[   63.917255][ T5893]  loop5: p1 < > p2 p3 < p5 p6 > p4
[   63.923026][ T5893] loop5: partition table partially beyond EOD, truncated
[   63.931416][ T5893] loop5: p1 start 4278190080 is beyond EOD, truncated
[   63.938193][ T5893] loop5: p2 start 16908800 is beyond EOD, truncated
[   63.941671][ T5885] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   63.946525][ T5893] loop5: p5 start 16908800 is beyond EOD, truncated
[   63.956055][ T5885] EXT4-fs (loop2): 1 truncate cleaned up
[   63.967115][ T5885] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.078527][ T5903] loop2: detected capacity change from 0 to 2048
[   64.085278][ T5901] loop5: detected capacity change from 0 to 512
[   64.092508][ T5901] journal_path: Non-blockdev passed as './bus'
[   64.098701][ T5901] EXT4-fs: error: could not find journal device path
[   64.106193][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   64.111450][ T3282] loop2: partition table partially beyond EOD, truncated
[   64.118884][ T3282] loop2: p1 start 4278190080 is beyond EOD, truncated
[   64.125700][ T3282] loop2: p2 start 16908800 is beyond EOD, truncated
[   64.135488][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   64.145868][ T5903]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   64.151184][ T5903] loop2: partition table partially beyond EOD, truncated
[   64.158978][ T5903] loop2: p1 start 4278190080 is beyond EOD, truncated
[   64.165821][ T5903] loop2: p2 start 16908800 is beyond EOD, truncated
[   64.175417][ T5903] loop2: p5 start 16908800 is beyond EOD, truncated
[   64.312629][ T5915] netlink: 8 bytes leftover after parsing attributes in process `syz.5.735'.
[   64.322807][ T5916] SELinux:  policydb version -901325779 does not match my version range 15-35
[   64.339845][ T5914] loop2: detected capacity change from 0 to 2048
[   64.346337][ T5916] SELinux: failed to load policy
[   64.390664][ T3282]  loop2: p1 < > p4
[   64.396832][ T3282] loop2: p4 size 8388608 extends beyond EOD, truncated
[   64.418202][ T5914]  loop2: p1 < > p4
[   64.424597][ T5914] loop2: p4 size 8388608 extends beyond EOD, truncated
[   64.455953][ T5914] 9pnet_fd: Insufficient options for proto=fd
[   64.465586][ T5921] syzkaller0: entered promiscuous mode
[   64.471169][ T5921] syzkaller0: entered allmulticast mode
[   64.583731][ T5930] loop4: detected capacity change from 0 to 2048
[   64.620189][ T5930]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   64.625548][ T5930] loop4: partition table partially beyond EOD, truncated
[   64.632760][ T5930] loop4: p1 start 4278190080 is beyond EOD, truncated
[   64.639653][ T5930] loop4: p2 start 16908800 is beyond EOD, truncated
[   64.647597][ T5930] loop4: p5 start 16908800 is beyond EOD, truncated
[   64.701453][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   64.712906][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   64.725632][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   64.769011][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   64.983336][ T5957] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'.
[   65.049578][ T5963] loop4: detected capacity change from 0 to 512
[   65.056693][ T5963] EXT4-fs: Ignoring removed nobh option
[   65.081684][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.761: corrupted inode contents
[   65.094163][ T5963] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #3: comm syz.4.761: mark_inode_dirty error
[   65.107048][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.761: corrupted inode contents
[   65.120904][   T29] kauditd_printk_skb: 308 callbacks suppressed
[   65.120918][   T29] audit: type=1326 audit(1755004703.267:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.133934][ T5963] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.761: mark_inode_dirty error
[   65.173841][ T5963] Quota error (device loop4): write_blk: dquota write failed
[   65.187389][ T5963] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   65.206968][ T5963] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.761: Failed to acquire dquot type 0
[   65.219071][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.761: corrupted inode contents
[   65.233236][ T5963] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.761: mark_inode_dirty error
[   65.256176][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.761: corrupted inode contents
[   65.285841][ T5963] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.761: mark_inode_dirty error
[   65.291371][   T29] audit: type=1326 audit(1755004703.297:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.311035][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.761: corrupted inode contents
[   65.320342][   T29] audit: type=1326 audit(1755004703.297:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.355419][   T29] audit: type=1326 audit(1755004703.297:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.378736][   T29] audit: type=1326 audit(1755004703.297:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.402588][   T29] audit: type=1326 audit(1755004703.297:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.425985][   T29] audit: type=1326 audit(1755004703.297:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5960 comm="syz.0.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.459889][ T5963] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   65.478972][ T5963] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.761: corrupted inode contents
[   65.491574][ T5963] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.761: mark_inode_dirty error
[   65.502884][ T5963] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   65.502975][ T5979] loop0: detected capacity change from 0 to 2048
[   65.513253][ T5963] EXT4-fs (loop4): 1 truncate cleaned up
[   65.524331][ T5963] EXT4-fs mount: 38 callbacks suppressed
[   65.524357][ T5963] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.543700][ T5963] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.573670][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.607096][ T5987] loop3: detected capacity change from 0 to 1024
[   65.613753][ T3282]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   65.618964][ T3282] loop0: partition table partially beyond EOD, truncated
[   65.633850][ T3282] loop0: p1 start 4278190080 is beyond EOD, truncated
[   65.640680][ T3282] loop0: p2 start 16908800 is beyond EOD, truncated
[   65.651588][ T5987] EXT4-fs: inline encryption not supported
[   65.657731][ T5987] EXT4-fs: Ignoring removed bh option
[   65.662551][ T5993] loop4: detected capacity change from 0 to 2048
[   65.667838][ T3282] loop0: p5 start 16908800 is beyond EOD, truncated
[   65.679208][ T5979]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   65.684481][ T5979] loop0: partition table partially beyond EOD, truncated
[   65.693453][ T5979] loop0: p1 start 4278190080 is beyond EOD, truncated
[   65.695977][ T5994] SELinux:  policydb version -901325779 does not match my version range 15-35
[   65.700273][ T5979] loop0: p2 start 16908800 is beyond EOD, truncated
[   65.711679][ T5994] SELinux: failed to load policy
[   65.717201][ T5979] loop0: p5 start 16908800 is beyond EOD, truncated
[   65.728017][ T4429]  loop4: p1 < > p4
[   65.739212][ T4429] loop4: p4 size 8388608 extends beyond EOD, truncated
[   65.748709][ T5993]  loop4: p1 < > p4
[   65.753035][ T5987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.755365][ T5993] loop4: p4 size 8388608 extends beyond EOD, truncated
[   65.773349][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   65.797683][   T29] audit: type=1326 audit(1755004703.937:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6000 comm="syz.0.774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   65.827238][ T6003] Q�6��\b��Y�4��: renamed from lo
[   65.841705][ T5993] 9pnet_fd: Insufficient options for proto=fd
[   65.853448][ T5987] netlink: 'syz.3.771': attribute type 1 has an invalid length.
[   65.861185][ T5987] netlink: 224 bytes leftover after parsing attributes in process `syz.3.771'.
[   65.887543][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.910485][ T6007] loop3: detected capacity change from 0 to 512
[   65.919081][ T6007] EXT4-fs: Ignoring removed nobh option
[   65.941524][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.775: corrupted inode contents
[   65.953444][ T6007] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.775: mark_inode_dirty error
[   65.965203][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.775: corrupted inode contents
[   65.977185][ T6007] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.775: mark_inode_dirty error
[   65.988803][ T6007] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.775: Failed to acquire dquot type 0
[   66.000587][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.775: corrupted inode contents
[   66.012627][ T6007] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.775: mark_inode_dirty error
[   66.024558][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.775: corrupted inode contents
[   66.037582][ T6007] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.775: mark_inode_dirty error
[   66.051825][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.775: corrupted inode contents
[   66.064109][ T6007] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   66.073129][ T6007] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.775: corrupted inode contents
[   66.085214][ T6007] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.775: mark_inode_dirty error
[   66.109543][ T6007] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   66.127343][ T6007] EXT4-fs (loop3): 1 truncate cleaned up
[   66.135579][ T6007] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.148422][ T6007] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.171658][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.252869][ T6031] netlink: 28 bytes leftover after parsing attributes in process `syz.3.784'.
[   66.384579][ T3381] hid_parser_main: 96 callbacks suppressed
[   66.384598][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.398108][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.405669][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.413132][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.420595][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.428040][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.435495][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.442929][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.450418][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.457868][ T3381] hid-generic 0008:0006:0007.0003: unknown main item tag 0x0
[   66.478786][ T3381] hid-generic 0008:0006:0007.0003: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[   66.538532][ T6047] fido_id[6047]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   66.586419][ T6051] loop0: detected capacity change from 0 to 2048
[   66.643381][ T6051]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   66.648664][ T6051] loop0: partition table partially beyond EOD, truncated
[   66.675079][ T6051] loop0: p1 start 4278190080 is beyond EOD, truncated
[   66.681932][ T6051] loop0: p2 start 16908800 is beyond EOD, truncated
[   66.693796][ T6051] loop0: p5 start 16908800 is beyond EOD, truncated
[   66.785240][ T6069] loop2: detected capacity change from 0 to 1024
[   66.797105][ T6073] loop3: detected capacity change from 0 to 512
[   66.805152][ T6069] EXT4-fs: inline encryption not supported
[   66.816582][ T6069] EXT4-fs: Ignoring removed bh option
[   66.826274][ T6075] loop5: detected capacity change from 0 to 2048
[   66.831709][ T6073] EXT4-fs: Ignoring removed nobh option
[   66.845082][ T6069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.860414][ T6078] SELinux:  policydb version -901325779 does not match my version range 15-35
[   66.863567][ T4429]  loop5: p1 < > p4
[   66.875027][ T6078] SELinux: failed to load policy
[   66.877744][ T4429] loop5: p4 size 8388608 extends beyond EOD, truncated
[   66.882787][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.897887][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.800: corrupted inode contents
[   66.897924][ T6075]  loop5: p1 < > p4
[   66.898404][ T6075] loop5: p4 size 8388608 extends beyond EOD, 
[   66.913425][ T6073] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.800: mark_inode_dirty error
[   66.913558][ T6075] truncated
[   66.920334][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.800: corrupted inode contents
[   66.953478][ T2991]  loop5: p1 < > p4
[   66.958639][ T2991] loop5: p4 size 8388608 extends beyond EOD, truncated
[   66.964511][ T6075] 9pnet_fd: Insufficient options for proto=fd
[   66.972488][ T6073] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.800: mark_inode_dirty error
[   66.998228][ T6073] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.800: Failed to acquire dquot type 0
[   67.024282][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.800: corrupted inode contents
[   67.036627][ T6086] netlink: 28 bytes leftover after parsing attributes in process `syz.2.805'.
[   67.047047][ T6073] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.800: mark_inode_dirty error
[   67.058798][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.800: corrupted inode contents
[   67.070938][ T6073] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.800: mark_inode_dirty error
[   67.083102][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.800: corrupted inode contents
[   67.095704][ T6073] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   67.105481][ T6073] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.800: corrupted inode contents
[   67.117963][ T6073] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.800: mark_inode_dirty error
[   67.131371][ T6073] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   67.140605][ T6073] EXT4-fs (loop3): 1 truncate cleaned up
[   67.146516][ T6073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.159074][ T6073] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.191291][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.231843][ T6097] loop2: detected capacity change from 0 to 2048
[   67.259668][ T6098] SELinux:  policydb version -901325779 does not match my version range 15-35
[   67.260064][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   67.268683][ T6098] SELinux: failed to load policy
[   67.273919][ T3282] loop2: partition table partially beyond EOD, truncated
[   67.290871][ T3282] loop2: p1 start 4278190080 is beyond EOD, truncated
[   67.297843][ T3282] loop2: p2 start 16908800 is beyond EOD, truncated
[   67.306654][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   67.316367][ T6097]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   67.322087][ T6097] loop2: partition table partially beyond EOD, truncated
[   67.329169][ T6097] loop2: p1 start 4278190080 is beyond EOD, truncated
[   67.335982][ T6097] loop2: p2 start 16908800 is beyond EOD, truncated
[   67.343488][ T6097] loop2: p5 start 16908800 is beyond EOD, truncated
[   67.375738][ T6100] siw: device registration error -23
[   67.584341][ T6111] syzkaller0: entered promiscuous mode
[   67.589991][ T6111] syzkaller0: entered allmulticast mode
[   67.707541][ T6120] syzkaller0: entered promiscuous mode
[   67.713109][ T6120] syzkaller0: entered allmulticast mode
[   67.760354][ T6127] netlink: 28 bytes leftover after parsing attributes in process `syz.0.822'.
[   68.082595][ T6141] loop5: detected capacity change from 0 to 2048
[   68.110312][ T3282]  loop5: p1 < > p4
[   68.114747][ T3282] loop5: p4 size 8388608 extends beyond EOD, truncated
[   68.115281][ T6142] SELinux:  policydb version -901325779 does not match my version range 15-35
[   68.130673][ T6142] SELinux: failed to load policy
[   68.137060][ T6141]  loop5: p1 < > p4
[   68.141727][ T6141] loop5: p4 size 8388608 extends beyond EOD, truncated
[   68.165832][ T6141] 9pnet_fd: Insufficient options for proto=fd
[   68.339924][ T6151] siw: device registration error -23
[   68.367180][ T6153] loop4: detected capacity change from 0 to 2048
[   68.410132][ T3282]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   68.415363][ T3282] loop4: partition table partially beyond EOD, truncated
[   68.422603][ T3282] loop4: p1 start 4278190080 is beyond EOD, truncated
[   68.429430][ T3282] loop4: p2 start 16908800 is beyond EOD, truncated
[   68.437075][ T3282] loop4: p5 start 16908800 is beyond EOD, truncated
[   68.446102][ T6153]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   68.451367][ T6153] loop4: partition table partially beyond EOD, truncated
[   68.458456][ T6153] loop4: p1 start 4278190080 is beyond EOD, truncated
[   68.465250][ T6153] loop4: p2 start 16908800 is beyond EOD, truncated
[   68.472819][ T6153] loop4: p5 start 16908800 is beyond EOD, truncated
[   68.497821][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   68.498022][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   68.510978][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   68.537479][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   68.544561][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   68.548462][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   68.624357][ T6157] loop4: detected capacity change from 0 to 2048
[   68.668153][ T3282]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   68.673424][ T3282] loop4: partition table partially beyond EOD, truncated
[   68.700129][ T3282] loop4: p1 start 4278190080 is beyond EOD, truncated
[   68.706946][ T3282] loop4: p2 start 16908800 is beyond EOD, truncated
[   68.742165][ T3282] loop4: p5 start 16908800 is beyond EOD, truncated
[   68.756585][ T6157]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   68.761906][ T6157] loop4: partition table partially beyond EOD, truncated
[   68.791037][ T6157] loop4: p1 start 4278190080 is beyond EOD, truncated
[   68.797921][ T6157] loop4: p2 start 16908800 is beyond EOD, truncated
[   68.807032][ T6157] loop4: p5 start 16908800 is beyond EOD, truncated
[   68.817018][ T6174] loop0: detected capacity change from 0 to 512
[   68.845850][ T6174] EXT4-fs (loop0): too many log groups per flexible block group
[   68.853687][ T6174] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   68.866636][ T6174] EXT4-fs (loop0): mount failed
[   68.956904][ T6181] syzkaller0: entered promiscuous mode
[   68.962489][ T6181] syzkaller0: entered allmulticast mode
[   69.013573][ T6185] syzkaller0: entered promiscuous mode
[   69.019080][ T6185] syzkaller0: entered allmulticast mode
[   69.122989][ T6202] netlink: 28 bytes leftover after parsing attributes in process `syz.3.852'.
[   69.175226][ T6208] loop3: detected capacity change from 0 to 2048
[   69.194277][ T6210] loop5: detected capacity change from 0 to 2048
[   69.201071][ T6212] loop4: detected capacity change from 0 to 1024
[   69.208082][ T6212] EXT4-fs: inline encryption not supported
[   69.214892][ T6212] EXT4-fs: Ignoring removed bh option
[   69.221052][ T3293]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   69.221214][ T3282]  loop5: p1 < > p4
[   69.226262][ T3293] loop3: partition table partially beyond EOD, truncated
[   69.237973][ T3293] loop3: p1 start 4278190080 is beyond EOD, truncated
[   69.238334][ T3282] loop5: p4 size 8388608 extends beyond EOD, truncated
[   69.244834][ T3293] loop3: p2 start 16908800 is beyond EOD, truncated
[   69.257874][ T6212] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.259191][ T3293] loop3: p5 start 16908800 is beyond EOD, truncated
[   69.283239][ T6210]  loop5: p1 < > p4
[   69.292167][ T6208]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   69.295052][ T6210] loop5: p4 size 8388608 extends beyond EOD, 
[   69.297395][ T6208] loop3: partition table partially beyond EOD, 
[   69.297399][ T6210] truncated
[   69.297407][ T6208] truncated
[   69.297520][ T6208] loop3: p1 start 4278190080 is beyond EOD, truncated
[   69.322785][ T6208] loop3: p2 start 16908800 is beyond EOD, truncated
[   69.323720][ T6210] 9pnet_fd: Insufficient options for proto=fd
[   69.331942][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.346308][ T6208] loop3: p5 start 16908800 is beyond EOD, truncated
[   69.505132][ T6227] syzkaller0: tun_chr_ioctl cmd 1074025681
[   69.597228][ T6239] siw: device registration error -23
[   69.630787][ T6240] syzkaller0: entered promiscuous mode
[   69.636357][ T6240] syzkaller0: entered allmulticast mode
[   69.707672][ T6250] loop2: detected capacity change from 0 to 2048
[   69.740013][ T3282]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   69.745319][ T3282] loop2: partition table partially beyond EOD, truncated
[   69.755129][ T3282] loop2: p1 start 4278190080 is beyond EOD, truncated
[   69.762005][ T3282] loop2: p2 start 16908800 is beyond EOD, truncated
[   69.776286][ T3282] loop2: p5 start 16908800 is beyond EOD, truncated
[   69.796872][ T6250]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   69.802156][ T6250] loop2: partition table partially beyond EOD, truncated
[   69.811736][ T6256] loop4: detected capacity change from 0 to 2048
[   69.824167][ T6250] loop2: p1 start 4278190080 is beyond EOD, truncated
[   69.831024][ T6250] loop2: p2 start 16908800 is beyond EOD, truncated
[   69.841717][ T6250] loop2: p5 start 16908800 is beyond EOD, truncated
[   69.850094][ T3293]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   69.855289][ T3293] loop4: partition table partially beyond EOD, truncated
[   69.880413][ T3293] loop4: p1 start 4278190080 is beyond EOD, truncated
[   69.887293][ T3293] loop4: p2 start 16908800 is beyond EOD, truncated
[   69.959088][ T3293] loop4: p5 start 16908800 is beyond EOD, truncated
[   69.983550][ T6256]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   69.988799][ T6256] loop4: partition table partially beyond EOD, truncated
[   70.001667][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[   70.008339][ T6256] loop4: p1 start 4278190080 is beyond EOD, truncated
[   70.015193][ T6279] netlink: 28 bytes leftover after parsing attributes in process `syz.2.885'.
[   70.018542][ T6256] loop4: p2 start 16908800 is beyond EOD, truncated
[   70.083504][ T6256] loop4: p5 start 16908800 is beyond EOD, truncated
[   70.153041][   T29] kauditd_printk_skb: 551 callbacks suppressed
[   70.153134][   T29] audit: type=1326 audit(1755004708.297:3816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6290 comm="syz.3.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffadd8debe9 code=0x7ffc0000
[   70.200070][   T29] audit: type=1326 audit(1755004708.297:3817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6290 comm="syz.3.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffadd8debe9 code=0x7ffc0000
[   70.223511][   T29] audit: type=1326 audit(1755004708.297:3818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.246413][   T29] audit: type=1326 audit(1755004708.297:3819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.252431][ T6287] syzkaller0: entered promiscuous mode
[   70.269231][   T29] audit: type=1326 audit(1755004708.297:3820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.274707][ T6287] syzkaller0: entered allmulticast mode
[   70.297531][   T29] audit: type=1326 audit(1755004708.297:3821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.325976][   T29] audit: type=1326 audit(1755004708.297:3822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.333549][ T6301] syzkaller0: tun_chr_ioctl cmd 1074025681
[   70.348882][   T29] audit: type=1326 audit(1755004708.297:3823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.377563][   T29] audit: type=1326 audit(1755004708.297:3824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[   70.400785][   T29] audit: type=1326 audit(1755004708.297:3825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6292 comm="root" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d662ebe9 code=0x7ffc0000
[   70.543064][ T6320] siw: device registration error -23
[   70.560225][ T6324] netlink: 32 bytes leftover after parsing attributes in process `syz.4.904'.
[   70.570667][ T6322] loop5: detected capacity change from 0 to 2048
[   70.604440][ T6329] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[   70.620274][ T3282]  loop5: p1 < > p2 p3 < p5 p6 > p4
[   70.625582][ T3282] loop5: partition table partially beyond EOD, truncated
[   70.655908][ T3282] loop5: p1 start 4278190080 is beyond EOD, truncated
[   70.662767][ T3282] loop5: p2 start 16908800 is beyond EOD, truncated
[   70.685723][ T3282] loop5: p5 start 16908800 is beyond EOD, truncated
[   70.698753][ T6333] loop3: detected capacity change from 0 to 2048
[   70.711775][ T6322]  loop5: p1 < > p2 p3 < p5 p6 > p4
[   70.717000][ T6322] loop5: partition table partially beyond EOD, truncated
[   70.724334][ T6322] loop5: p1 start 4278190080 is beyond EOD, truncated
[   70.731329][ T6322] loop5: p2 start 16908800 is beyond EOD, truncated
[   70.738948][ T6333]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   70.744330][ T6333] loop3: partition table partially beyond EOD, truncated
[   70.748943][ T6322] loop5: p5 start 16908800 is beyond EOD, truncated
[   70.758718][ T6333] loop3: p1 start 4278190080 is beyond EOD, truncated
[   70.758813][ T6333] loop3: p2 start 16908800 is beyond EOD, truncated
[   70.760418][ T6341] netlink: 'syz.2.905': attribute type 6 has an invalid length.
[   70.760700][ T6341] netlink: 44 bytes leftover after parsing attributes in process `syz.2.905'.
[   70.774373][ T6333] loop3: p5 start 16908800 is beyond EOD, truncated
[   70.902816][ T3482] udevd[3482]: inotify_add_watch(7, /dev/loop5p6, 10) failed: No such file or directory
[   70.903827][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[   70.947190][ T6352] loop0: detected capacity change from 0 to 2048
[   70.981270][ T6360] siw: device registration error -23
[   71.000293][ T3293]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   71.005526][ T3293] loop0: partition table partially beyond EOD, truncated
[   71.022200][ T6364] netlink: 28 bytes leftover after parsing attributes in process `syz.4.918'.
[   71.035798][ T3293] loop0: p1 start 4278190080 is beyond EOD, truncated
[   71.042633][ T3293] loop0: p2 start 16908800 is beyond EOD, truncated
[   71.054903][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop5p6, 10) failed: No such file or directory
[   71.064752][ T6368] loop5: detected capacity change from 0 to 1024
[   71.087769][ T6370] loop3: detected capacity change from 0 to 2048
[   71.107128][ T6372] loop2: detected capacity change from 0 to 2048
[   71.114072][ T6368] EXT4-fs: inline encryption not supported
[   71.114456][ T6370]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   71.120277][ T6368] EXT4-fs: Ignoring removed bh option
[   71.125197][ T6370] loop3: partition table partially beyond EOD, truncated
[   71.129826][ T6370] loop3: p1 start 4278190080 is beyond EOD, truncated
[   71.144508][ T6370] loop3: p2 start 16908800 is beyond EOD, truncated
[   71.160775][ T3293] loop0: p5 start 16908800 is beyond EOD, truncated
[   71.166896][ T6370] loop3: p5 start 16908800 is beyond EOD, truncated
[   71.181189][ T4431]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   71.186442][ T4431] loop2: partition table partially beyond EOD, truncated
[   71.193805][ T6352]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   71.199008][ T6352] loop0: partition table partially beyond EOD, truncated
[   71.208379][ T6368] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.227759][ T6352] loop0: p1 start 4278190080 is beyond EOD, truncated
[   71.234694][ T6352] loop0: p2 start 16908800 is beyond EOD, truncated
[   71.235599][ T4431] loop2: p1 start 4278190080 is beyond EOD, truncated
[   71.248181][ T4431] loop2: p2 start 16908800 is beyond EOD, truncated
[   71.264751][ T4431] loop2: p5 start 16908800 is beyond EOD, truncated
[   71.271845][ T6352] loop0: p5 start 16908800 is beyond EOD, truncated
[   71.282208][ T6372]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   71.287422][ T6372] loop2: partition table partially beyond EOD, truncated
[   71.299463][ T6372] loop2: p1 start 4278190080 is beyond EOD, truncated
[   71.299617][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.306317][ T6372] loop2: p2 start 16908800 is beyond EOD, truncated
[   71.323274][ T2991]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   71.328548][ T2991] loop0: partition table partially beyond EOD, truncated
[   71.332415][ T6372] loop2: p5 start 16908800 is beyond EOD, truncated
[   71.345486][ T2991] loop0: p1 start 4278190080 is beyond EOD, truncated
[   71.352377][ T2991] loop0: p2 start 16908800 is beyond EOD, truncated
[   71.360299][ T2991] loop0: p5 start 16908800 is beyond EOD, truncated
[   71.504724][ T6409] loop5: detected capacity change from 0 to 512
[   71.529547][ T6409] EXT4-fs (loop5): orphan cleanup on readonly fs
[   71.542729][ T6409] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.937: Failed to acquire dquot type 1
[   71.555986][ T6413] loop3: detected capacity change from 0 to 2048
[   71.564612][ T6409] EXT4-fs (loop5): 1 truncate cleaned up
[   71.572820][ T6409] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.588949][ T6411] syzkaller0: entered promiscuous mode
[   71.594444][ T6411] syzkaller0: entered allmulticast mode
[   71.605228][ T6407] syzkaller0: tun_chr_ioctl cmd 1074025681
[   71.612023][ T3956]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   71.617275][ T3956] loop3: partition table partially beyond EOD, truncated
[   71.633741][ T3956] loop3: p1 start 4278190080 is beyond EOD, truncated
[   71.640555][ T3956] loop3: p2 start 16908800 is beyond EOD, truncated
[   71.648427][ T3956] loop3: p5 start 16908800 is beyond EOD, truncated
[   71.682167][ T6417] loop0: detected capacity change from 0 to 2048
[   71.685196][ T6413]  loop3: p1 < > p2 p3 < p5 p6 > p4
[   71.693895][ T6413] loop3: partition table partially beyond EOD, truncated
[   71.702202][ T6413] loop3: p1 start 4278190080 is beyond EOD, truncated
[   71.709012][ T6413] loop3: p2 start 16908800 is beyond EOD, truncated
[   71.716258][ T6417]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   71.718500][ T6413] loop3: p5 start 16908800 is beyond EOD, truncated
[   71.721563][ T6417] loop0: partition table partially beyond EOD, truncated
[   71.738195][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.749948][ T6417] loop0: p1 start 4278190080 is beyond EOD, truncated
[   71.756744][ T6417] loop0: p2 start 16908800 is beyond EOD, truncated
[   71.765619][ T6417] loop0: p5 start 16908800 is beyond EOD, truncated
[   71.780124][ T6421] netlink: 28 bytes leftover after parsing attributes in process `syz.3.942'.
[   71.929642][ T6438] syz.3.950 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   71.953615][ T6442] netlink: 132 bytes leftover after parsing attributes in process `syz.0.952'.
[   71.977671][ T6437] syzkaller0: tun_chr_ioctl cmd 1074025681
[   72.009802][ T6446] syzkaller0: entered promiscuous mode
[   72.015519][ T6446] syzkaller0: entered allmulticast mode
[   72.026624][ T6448] netlink: 28 bytes leftover after parsing attributes in process `syz.3.955'.
[   72.118569][ T6457] loop4: detected capacity change from 0 to 512
[   72.141350][ T6457] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   72.172413][ T6457] EXT4-fs (loop4): 1 truncate cleaned up
[   72.191812][ T6457] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.193333][ T6463] siw: device registration error -23
[   72.273795][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.348320][ T6475] FAULT_INJECTION: forcing a failure.
[   72.348320][ T6475] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.361487][ T6475] CPU: 1 UID: 0 PID: 6475 Comm: syz.0.965 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   72.361517][ T6475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   72.361530][ T6475] Call Trace:
[   72.361537][ T6475]  <TASK>
[   72.361546][ T6475]  __dump_stack+0x1d/0x30
[   72.361568][ T6475]  dump_stack_lvl+0xe8/0x140
[   72.361610][ T6475]  dump_stack+0x15/0x1b
[   72.361627][ T6475]  should_fail_ex+0x265/0x280
[   72.361645][ T6475]  should_fail+0xb/0x20
[   72.361735][ T6475]  should_fail_usercopy+0x1a/0x20
[   72.361756][ T6475]  strncpy_from_user+0x25/0x230
[   72.361785][ T6475]  strncpy_from_user_nofault+0x68/0xf0
[   72.361852][ T6475]  bpf_probe_read_compat_str+0xb4/0x130
[   72.361951][ T6475]  bpf_prog_597e1462992804d8+0x46/0x4c
[   72.361967][ T6475]  bpf_trace_run2+0x104/0x1c0
[   72.362046][ T6475]  ? security_context_to_sid_core+0x37d/0x3b0
[   72.362068][ T6475]  ? string_to_context_struct+0x20d/0x2f0
[   72.362122][ T6475]  ? security_context_to_sid_core+0x37d/0x3b0
[   72.362214][ T6475]  __traceiter_kfree+0x2b/0x50
[   72.362278][ T6475]  ? security_context_to_sid_core+0x37d/0x3b0
[   72.362297][ T6475]  kfree+0x27b/0x320
[   72.362385][ T6475]  ? string_to_context_struct+0x252/0x2f0
[   72.362407][ T6475]  security_context_to_sid_core+0x37d/0x3b0
[   72.362537][ T6475]  security_context_to_sid+0x2e/0x40
[   72.362553][ T6475]  selinux_lsm_setattr+0x2dc/0x660
[   72.362575][ T6475]  selinux_setprocattr+0x4f/0x70
[   72.362614][ T6475]  security_setprocattr+0x1a4/0x1d0
[   72.362721][ T6475]  proc_pid_attr_write+0x1eb/0x220
[   72.362745][ T6475]  vfs_writev+0x403/0x8b0
[   72.362835][ T6475]  ? __pfx_proc_pid_attr_write+0x10/0x10
[   72.362864][ T6475]  ? mutex_lock+0xd/0x30
[   72.362893][ T6475]  do_writev+0xe7/0x210
[   72.362915][ T6475]  __x64_sys_writev+0x45/0x50
[   72.363012][ T6475]  x64_sys_call+0x1e9a/0x2ff0
[   72.363031][ T6475]  do_syscall_64+0xd2/0x200
[   72.363092][ T6475]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.363117][ T6475]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   72.363141][ T6475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.363161][ T6475] RIP: 0033:0x7f13d662ebe9
[   72.363216][ T6475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.363233][ T6475] RSP: 002b:00007f13d5097038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   72.363253][ T6475] RAX: ffffffffffffffda RBX: 00007f13d6855fa0 RCX: 00007f13d662ebe9
[   72.363264][ T6475] RDX: 0000000000000008 RSI: 00002000000000c0 RDI: 0000000000000005
[   72.363275][ T6475] RBP: 00007f13d5097090 R08: 0000000000000000 R09: 0000000000000000
[   72.363285][ T6475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.363311][ T6475] R13: 00007f13d6856038 R14: 00007f13d6855fa0 R15: 00007ffde74623e8
[   72.363367][ T6475]  </TASK>
[   72.369279][ T6475] SELinux:  Context � is not valid (left unmapped).
[   72.701425][ T6478] syzkaller0: tun_chr_ioctl cmd 1074025681
[   72.768374][ T6483] netlink: 28 bytes leftover after parsing attributes in process `syz.4.968'.
[   72.822750][ T6486] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[   72.853305][ T6491] loop2: detected capacity change from 0 to 512
[   72.869496][ T6491] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   72.877371][ T6497] siw: device registration error -23
[   72.899876][ T6491] EXT4-fs (loop2): 1 truncate cleaned up
[   72.912557][ T6491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.976154][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.991671][ T6502] syzkaller0: entered promiscuous mode
[   72.997180][ T6502] syzkaller0: entered allmulticast mode
[   73.098223][ T6512] loop2: detected capacity change from 0 to 2048
[   73.140396][ T6512]  loop2: p1 < > p2 p3 < p5 p6 > p4
[   73.145621][ T6512] loop2: partition table partially beyond EOD, truncated
[   73.193174][ T6512] loop2: p1 start 4278190080 is beyond EOD, truncated
[   73.200033][ T6512] loop2: p2 start 16908800 is beyond EOD, truncated
[   73.238996][ T6512] loop2: p5 start 16908800 is beyond EOD, truncated
[   73.286469][ T6528] FAULT_INJECTION: forcing a failure.
[   73.286469][ T6528] name failslab, interval 1, probability 0, space 0, times 0
[   73.299213][ T6528] CPU: 1 UID: 0 PID: 6528 Comm: syz.3.988 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   73.299258][ T6528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.299269][ T6528] Call Trace:
[   73.299332][ T6528]  <TASK>
[   73.299338][ T6528]  __dump_stack+0x1d/0x30
[   73.299391][ T6528]  dump_stack_lvl+0xe8/0x140
[   73.299461][ T6528]  dump_stack+0x15/0x1b
[   73.299478][ T6528]  should_fail_ex+0x265/0x280
[   73.299500][ T6528]  should_failslab+0x8c/0xb0
[   73.299606][ T6528]  kmem_cache_alloc_noprof+0x50/0x310
[   73.299628][ T6528]  ? __anon_vma_prepare+0xcd/0x2f0
[   73.299644][ T6528]  __anon_vma_prepare+0xcd/0x2f0
[   73.299695][ T6528]  do_wp_page+0x1926/0x24e0
[   73.299716][ T6528]  ? __lruvec_stat_mod_folio+0xd6/0x120
[   73.299740][ T6528]  ? css_rstat_updated+0xb7/0x240
[   73.299764][ T6528]  ? __rcu_read_lock+0x37/0x50
[   73.299839][ T6528]  handle_mm_fault+0x77d/0x2c20
[   73.299866][ T6528]  do_user_addr_fault+0x636/0x1090
[   73.299908][ T6528]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   73.299934][ T6528]  exc_page_fault+0x62/0xa0
[   73.299952][ T6528]  asm_exc_page_fault+0x26/0x30
[   73.299969][ T6528] RIP: 0033:0x7ffadd7a0ba3
[   73.300003][ T6528] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   73.300017][ T6528] RSP: 002b:00007ffadc33e4a0 EFLAGS: 00010202
[   73.300103][ T6528] RAX: 0000000000000400 RBX: 00007ffadc33e540 RCX: 00007ffad3f1f000
[   73.300114][ T6528] RDX: 00007ffadc33e6e0 RSI: 0000000000000001 RDI: 00007ffadc33e5e0
[   73.300125][ T6528] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000ad
[   73.300136][ T6528] R10: 00000000000000c0 R11: 00007ffadc33e540 R12: 0000000000000001
[   73.300161][ T6528] R13: 00007ffadd97d980 R14: 0000000000000020 R15: 00007ffadc33e5e0
[   73.300176][ T6528]  </TASK>
[   73.484101][ T6528] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   73.508640][ T6528] loop3: detected capacity change from 0 to 1024
[   73.522102][ T6528] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   73.534436][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   73.549407][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   73.560588][ T3482] udevd[3482]: inotify_add_watch(7, /dev/loop2p6, 10) failed: No such file or directory
[   73.579364][ T6528] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.988: bg 0: block 10: padding at end of block bitmap is not set
[   73.613917][ T6528] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.988: Failed to acquire dquot type 0
[   73.626061][ T6534] veth3: entered promiscuous mode
[   73.631439][ T6528] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.988: Failed to acquire dquot type 0
[   73.662450][ T6528] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.988: Freeing blocks not in datazone - block = 0, count = 4096
[   73.681529][ T6528] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.988: Failed to acquire dquot type 0
[   73.693138][ T6528] EXT4-fs (loop3): 1 orphan inode deleted
[   73.699281][ T6528] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.725071][ T6542] loop4: detected capacity change from 0 to 1024
[   73.744156][ T6542] EXT4-fs: inline encryption not supported
[   73.751353][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.765165][ T6542] EXT4-fs: Ignoring removed bh option
[   73.790359][ T6548] syzkaller0: tun_chr_ioctl cmd 1074025681
[   73.816717][ T6542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.860165][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.908843][ T6560] loop3: detected capacity change from 0 to 512
[   73.928730][ T6562] loop5: detected capacity change from 0 to 512
[   73.939294][ T6558] loop0: detected capacity change from 0 to 2048
[   73.951542][ T6562] EXT4-fs (loop5): orphan cleanup on readonly fs
[   73.974377][ T6560] EXT4-fs (loop3): orphan cleanup on readonly fs
[   73.980093][ T6562] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1003: Failed to acquire dquot type 1
[   73.992631][ T6560] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1002: Failed to acquire dquot type 1
[   74.011116][ T3293]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   74.013569][ T6562] EXT4-fs (loop5): 1 truncate cleaned up
[   74.016347][ T3293] loop0: partition table partially beyond EOD, truncated
[   74.019441][ T3293] loop0: p1 start 4278190080 is beyond EOD, truncated
[   74.035958][ T3293] loop0: p2 start 16908800 is beyond EOD, truncated
[   74.039560][ T6560] EXT4-fs (loop3): 1 truncate cleaned up
[   74.043630][ T3293] loop0: p5 start 16908800 is beyond EOD, truncated
[   74.056986][ T6558]  loop0: p1 < > p2 p3 < p5 p6 > p4
[   74.057236][ T6560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.062261][ T6558] loop0: partition table partially beyond EOD, truncated
[   74.084922][ T6562] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.097748][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.098301][ T6558] loop0: p1 start 4278190080 is beyond EOD, truncated
[   74.113667][ T6558] loop0: p2 start 16908800 is beyond EOD, truncated
[   74.130455][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.148300][ T6558] loop0: p5 start 16908800 is beyond EOD, truncated
[   74.175836][ T6573] loop4: detected capacity change from 0 to 2048
[   74.263815][ T3293]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   74.269051][ T3293] loop4: partition table partially beyond EOD, truncated
[   74.308373][ T6587] loop5: detected capacity change from 0 to 1024
[   74.318673][ T3293] loop4: p1 start 4278190080 is beyond EOD, truncated
[   74.320981][ T6587] EXT4-fs: inline encryption not supported
[   74.325533][ T3293] loop4: p2 start 16908800 is beyond EOD, truncated
[   74.341241][ T6587] EXT4-fs: Ignoring removed bh option
[   74.363128][ T6593] loop3: detected capacity change from 0 to 256
[   74.368591][ T3293] loop4: p5 start 16908800 is beyond EOD, truncated
[   74.394594][ T6573]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   74.399949][ T6573] loop4: partition table partially beyond EOD, truncated
[   74.409224][ T6573] loop4: p1 start 4278190080 is beyond EOD, truncated
[   74.410139][ T6587] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.416085][ T6573] loop4: p2 start 16908800 is beyond EOD, truncated
[   74.439331][ T6573] loop4: p5 start 16908800 is beyond EOD, truncated
[   74.457216][ T2991]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   74.462492][ T2991] loop4: partition table partially beyond EOD, truncated
[   74.479115][ T2991] loop4: p1 start 4278190080 is beyond EOD, truncated
[   74.486012][ T2991] loop4: p2 start 16908800 is beyond EOD, truncated
[   74.494126][ T2991] loop4: p5 start 16908800 is beyond EOD, truncated
[   74.522536][ T4431] udevd[4431]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   74.534620][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   74.540990][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   74.547609][ T4397] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.560828][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   74.574106][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   74.585459][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   74.602317][ T4429] udevd[4429]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   74.652486][ T6612] siw: device registration error -23
[   74.764364][ T6626] loop4: detected capacity change from 0 to 2048
[   74.786171][ T6615] SELinux: failed to load policy
[   74.804903][ T6629] loop0: detected capacity change from 0 to 512
[   74.815840][ T6626]  loop4: p1 < > p4
[   74.826714][ T6629] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   74.832143][ T6626] loop4: p4 size 8388608 extends beyond EOD, truncated
[   74.863686][ T6629] EXT4-fs (loop0): 1 truncate cleaned up
[   74.883099][ T2991]  loop4: p1 < > p4
[   74.892384][ T2991] loop4: p4 size 8388608 extends beyond EOD, truncated
[   74.894023][ T6629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.911790][ T6631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1031'.
[   74.931678][ T6631] bridge_slave_1: left allmulticast mode
[   74.937374][ T6631] bridge_slave_1: left promiscuous mode
[   74.943100][ T6631] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.963384][ T6631] bridge_slave_0: left allmulticast mode
[   74.965932][ T6642] SELinux:  Context system_u:object_r:wireless_device_t:s0 is not valid (left unmapped).
[   74.969072][ T6631] bridge_slave_0: left promiscuous mode
[   74.984855][ T6631] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.022076][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.038778][ T6642] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1031'.
[   75.161437][   T29] kauditd_printk_skb: 575 callbacks suppressed
[   75.161451][   T29] audit: type=1400 audit(1755004713.307:4384): avc:  denied  { create } for  pid=6656 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=0
[   75.187375][ T6669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1043'.
[   75.196345][ T6669] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1043'.
[   75.212344][   T29] audit: type=1400 audit(1755004713.307:4385): avc:  denied  { load_policy } for  pid=6656 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=0
[   75.232644][   T29] audit: type=1400 audit(1755004713.307:4386): avc:  denied  { map_create } for  pid=6656 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   75.251822][   T29] audit: type=1400 audit(1755004713.307:4387): avc:  denied  { prog_load } for  pid=6656 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[   75.270846][   T29] audit: type=1400 audit(1755004713.307:4388): avc:  denied  { create } for  pid=6656 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=0
[   75.271010][ T6669] vxlan0: entered promiscuous mode
[   75.291419][   T29] audit: type=1400 audit(1755004713.307:4389): avc:  denied  { read write } for  pid=3305 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[   75.291445][   T29] audit: type=1400 audit(1755004713.327:4390): avc:  denied  { allowed } for  pid=6660 comm="syz.4.1043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=0
[   75.291512][   T29] audit: type=1400 audit(1755004713.327:4391): avc:  denied  { allowed } for  pid=6660 comm="syz.4.1043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=0
[   75.297607][ T4734] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   75.320827][   T29] audit: type=1400 audit(1755004713.327:4392): avc:  denied  { write } for  pid=6660 comm="syz.4.1043" name="udp" dev="proc" ino=4026532518 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=0
[   75.390687][   T29] audit: type=1400 audit(1755004713.327:4393): avc:  denied  { allowed } for  pid=6660 comm="syz.4.1043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=0
[   75.411937][ T4734] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   75.420842][ T4734] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   75.429589][ T4734] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   75.868291][ T6745] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1082'.
[   76.017967][ T6771] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1095'.
[   76.147966][ T6790] veth0_to_team: entered promiscuous mode
[   76.782764][ T6904] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   76.976656][ T6942] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1174'.
[   77.079449][ T6958] syzkaller0: entered promiscuous mode
[   77.085021][ T6958] syzkaller0: entered allmulticast mode
[   77.136940][ T6971] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1186'.
[   77.194960][ T6978] netlink: 'syz.0.1183': attribute type 21 has an invalid length.
[   77.217094][ T6978] netlink: 'syz.0.1183': attribute type 1 has an invalid length.
[   77.398257][ T7007] syzkaller0: entered promiscuous mode
[   77.403837][ T7007] syzkaller0: entered allmulticast mode
[   77.512878][ T7016] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[   77.542285][ T7020] ==================================================================
[   77.550382][ T7020] BUG: KCSAN: data-race in mas_state_walk / mas_wmb_replace
[   77.557651][ T7020] 
[   77.559954][ T7020] write to 0xffff888104442500 of 8 bytes by task 7015 on cpu 0:
[   77.567568][ T7020]  mas_wmb_replace+0x20d/0x14a0
[   77.572404][ T7020]  mas_wr_store_entry+0x1773/0x2b50
[   77.577586][ T7020]  mas_store_prealloc+0x74d/0x9e0
[   77.582630][ T7020]  vma_iter_store_new+0x1c5/0x200
[   77.587634][ T7020]  vma_complete+0x125/0x580
[   77.592114][ T7020]  __split_vma+0x5d9/0x650
[   77.596531][ T7020]  vma_modify+0x3f2/0xc80
[   77.600839][ T7020]  vma_modify_flags+0x101/0x130
[   77.605668][ T7020]  mprotect_fixup+0x2cc/0x570
[   77.610326][ T7020]  do_mprotect_pkey+0x6d6/0x980
[   77.615155][ T7020]  __x64_sys_mprotect+0x48/0x60
[   77.619984][ T7020]  x64_sys_call+0x274e/0x2ff0
[   77.624638][ T7020]  do_syscall_64+0xd2/0x200
[   77.629122][ T7020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.634991][ T7020] 
[   77.637293][ T7020] read to 0xffff888104442500 of 8 bytes by task 7020 on cpu 1:
[   77.644809][ T7020]  mas_state_walk+0x485/0x650
[   77.649478][ T7020]  mas_walk+0x60/0x150
[   77.653530][ T7020]  lock_vma_under_rcu+0x8d/0x160
[   77.658487][ T7020]  do_user_addr_fault+0x233/0x1090
[   77.663582][ T7020]  exc_page_fault+0x62/0xa0
[   77.668067][ T7020]  asm_exc_page_fault+0x26/0x30
[   77.672898][ T7020] 
[   77.675201][ T7020] value changed: 0xffff88810ca0ed81 -> 0xffff888104442500
[   77.682288][ T7020] 
[   77.684609][ T7020] Reported by Kernel Concurrency Sanitizer on:
[   77.690734][ T7020] CPU: 1 UID: 0 PID: 7020 Comm: syz.3.1206 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) 
[   77.703127][ T7020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.713190][ T7020] ==================================================================