last executing test programs:

2.777735632s ago: executing program 3 (id=1129):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0xf)
shmat(0x0, &(0x7f0000ffc000/0x1000)=nil, 0x4000)

2.753792862s ago: executing program 3 (id=1130):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@i_version}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x1)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0xfffffffd, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x441, 0x108)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
fallocate(r1, 0x20, 0x0, 0x8000)

2.592537239s ago: executing program 3 (id=1135):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x6, 0x0, 0x0, 0x41000, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6bf}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r1)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf252c000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000003664ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
unshare(0x64000680)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x8001, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r7, 0x80083314, 0x0)

2.487366874s ago: executing program 2 (id=1136):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r0, <r2=>0xffffffffffffffff}, 0x4)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)=@generic={&(0x7f0000000000)='./file0\x00', r2}, 0x18)

1.531121275s ago: executing program 2 (id=1138):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x800000, &(0x7f0000000480)=ANY=[])

1.197213689s ago: executing program 2 (id=1139):
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae"}, 0x3c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x33, &(0x7f0000001300)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x2c, 0x25, 0x0, 0x4000, 0xfc, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x11, 0x0, @opaque="2973f36591aa943874"}}}}}, 0x0)

994.584518ms ago: executing program 2 (id=1142):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x6}, 0x204, 0x1, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r3}, 0x18)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$P9_RGETLOCK(r5, &(0x7f0000000640)=ANY=[], 0x200002e6)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setpipe(r5, 0x407, 0x7000000)
fcntl$setpipe(r4, 0x407, 0x8)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='numa_maps\x00')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
write$UHID_INPUT2(r8, 0x0, 0x1000)
preadv(r7, &(0x7f0000000000), 0x0, 0x800, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8, 0xa0}, &(0x7f0000010080), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r11, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4), 0xc)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r11, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

920.266601ms ago: executing program 1 (id=1144):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000540)={@random="e33110495bfd", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x38, 0x3a, 0xff, @rand_addr=' \x01\x00', @local, {[], @time_exceed={0x3, 0x1, 0x0, 0x10, '\x00', {0x7, 0x6, "8f2bb2", 0x7, 0x2b, 0xff, @private0={0xfc, 0x0, '\x00', 0x80}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [], "9208de5094def678"}}}}}}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kmem_cache_free\x00', r3, 0x0, 0x800000000006}, 0x18)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYRESDEC, @ANYRES32=r2, @ANYRES64=r4, @ANYRESOCT=r1, @ANYRESDEC=r4, @ANYBLOB="b2b4aa845c5e30fa4663c49535a021465570291c7d1da79572708ae6d11d51627a3148f7a14cb5ae58a91729f53bdcab325d46ed83b1bc2f1309f307e98d70283aa7d22ee511d6c642bf047a63beffb81c1b5f1dfcb2a69227360bf8101dc900d21893f14312d8ed1e743122ede07dcd61a8d8929ef78a966ee7948652dcc256e327ad632829cfb88890e61ef9f76b9f335dea8137116fa954bf24656ec9076e15a3ed38972a57aa01345389025570359aaaa3c57ad832eee47974e2da4b46d621bb43b20f64134ea64b3cbbc740858efb2a9ec835a8ed33bf6e8892af5dc28240c952cb29353a25c0db9c2cb3b7ee215b33"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800e4fffeffffff00008200040000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
write$UHID_INPUT(r8, &(0x7f0000001040)={0x8, {"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", 0x1000}}, 0x1006)
dup(0xffffffffffffffff)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000000100))
r10 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
read$qrtrtun(r10, 0x0, 0xeffd)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendto$inet6(r4, &(0x7f0000000400)="aa", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x3f66400, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

907.422642ms ago: executing program 3 (id=1145):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x5402, &(0x7f00000001c0)={0x4, 0x5, 0x4, 0xca23, 0xe, "fe22ee144a7c31484ba31329df9896037bdfbb"})

881.381943ms ago: executing program 0 (id=1146):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@i_version}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x1)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0xfffffffd, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x441, 0x108)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
fallocate(r1, 0x20, 0x0, 0x8000)

855.743294ms ago: executing program 3 (id=1147):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB="02030003130000002cbd7000fbdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af05000600000000000a004e2400000004ff010000000000000000000000000001000000000000000002000100000000000000070c0100000005000500000000000a00"], 0x98}, 0x1, 0x7}, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000001ec0)='ns/time\x00')
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
ioctl$IMGETVERSION(0xffffffffffffffff, 0x80044944, &(0x7f0000001040))
ioctl$SIOCSIFHWADDR(r3, 0x8914, 0x0)
write$tun(r1, &(0x7f0000000440)={@val={0x70, 0x22eb}, @void, @eth={@random="cbb277b0c53c", @random="e48d453bcdca", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x4000, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x6558, 0x18, 0x0, @wg=@data={0x4, 0x0, 0xffffdd86}}}}}}}, 0x3e)

818.490175ms ago: executing program 1 (id=1149):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x400, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7ff, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r0, 0x0, 0x0, 0x0, 0x64040011, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r5 = getpid()
rt_tgsigqueueinfo(0x0, r5, 0xf, &(0x7f00000000c0)={0xc, 0x7, 0x2710})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r4}, 0x10)

740.747648ms ago: executing program 0 (id=1150):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x800000, &(0x7f0000000480)=ANY=[])

721.181499ms ago: executing program 3 (id=1152):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000440)={'ip6tnl0\x00', <r2=>0x0, 0x4, 0x5, 0x0, 0x428f, 0x19, @private0={0xfc, 0x0, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7, 0x80, 0x6, 0x1}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000500)=@getnexthop={0x3c, 0x6a, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@NHA_FDB={0x4}, @NHA_GROUPS={0x4}, @NHA_GROUPS={0x4}, @NHA_OIF={0x8, 0x5, r2}, @NHA_MASTER={0x8}, @NHA_ID={0x8, 0x1, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20008081}, 0x20000000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x80000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x10, 0x0, 0x7fff7ffc}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0x31, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="09000000030000000800000004"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000fcffff0318110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}}, 0x0)
timer_settime(r4, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff})
splice(r10, 0x0, r9, 0x0, 0x100000000001, 0x0)
fcntl$setstatus(r8, 0x4, 0x2c00)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
prlimit64(0x0, 0x7, &(0x7f0000000300), 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={0xffffffffffffffff, r11, 0x4, 0x0, @void}, 0x10)

682.862421ms ago: executing program 0 (id=1153):
fsopen(&(0x7f0000000340)='ramfs\x00', 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000000)={0x2a, 0x2, 0x7ffe}, 0xc)
bind$qrtr(r0, &(0x7f00000000c0)={0x2a, 0x1, 0x7fff}, 0xc)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000010000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008040000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='mm_page_free\x00', r5, 0x0, 0xfffffffff7ffffdc}, 0x18)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r6 = io_uring_setup(0x1684, &(0x7f0000000080)={0x0, 0xcc3d, 0x400, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r6, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x0, 0x1}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000180)={'wg0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setgroups(0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000980)={[{0x2d, 'pids'}]}, 0x1f)
socket$nl_route(0x10, 0x3, 0x0)

660.896102ms ago: executing program 1 (id=1155):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b7000000000000004e000000000000e9860a000000000000fdffffff00000000000000009500000000"], &(0x7f0000003ff6)='GPL\x00', 0xa, 0xb579, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x8}, 0x23)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000380)=@req={0x84d, 0x2}, 0x10)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000440)=@req3={0xe, 0x40, 0x4, 0x4, 0xfff, 0x607c, 0x40}, 0x1c)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b0000080700000001de5cb46948cc5d81dc2946fef1410005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000018110000000000000000000000f5228d1a0198d82d1ebbce100849385ab2e151bddceb29225b6a578de51a84e236a45dec646b1e08873f419dabe9c40e22872306dfd027b672f4a1992278bab618e3605fd83eacb798b195ee53cc0ffcb7faa8bea13edaa67936728c93c033dd59d85d4f1bd4d89d46d5039df00598db883f3cc2fd435d515c68e763e2eac1a554b24da7199c56518673f0746cc70f26dfcd12621fa681c32d42af54", @ANYRES32=<r2=>r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68ce}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000780)='initcall_level\x00'}, 0xfffffdf6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000400)={'geneve1\x00'})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000800), 0x0, 0x51d, &(0x7f0000000200)="$eJzs3c9vHFcdAPDvTLK2k7h1WnoABG1oCwFFWceb1qp6gHJCCFVC9AhSauyNZXnXa3nXpTaRcM9ckajECY78AZx74s4FwY1LOSDxwwLVSBwGzezY2di79uaHvZb385FG89688X7fizPvzbxd7wtgbN2IiJ2ImIiI9yNipjyelFu8093y8z7bfbC4t/tgMYkse++fSVGeH4uen8ldK19zKiJ+8J2IHydH47a3tlcXGo36Rpmf7TTXZ9tb27dXmgvL9eX6Wq02Pzd/5627b9YeozVTx5a+0pwoU1/+9A873/hpXq3p8khvO56lbtMrB3FylyPie6cRbAQule2ZGHVFeCJpRLwYEa8W1/9MXCp+mwDARZZlM5HN9OYBgIsuLebAkrRazgVMR5pWq905vJfiatpotTu37rc215a6c2XXo5LeX2nU75RzhdejkuT5uSL9MF87lL8bES9ExC8mrxT56mKrsTTKGx8AGGPXDo3//5nsjv8AwAV3/MdmAICLyPgPAOPH+A8A48f4DwDjpzv+X3ncH8uy7GenUR0A4Ax4/geA8WP8B4Cx8v133823bK/8/uulD7Y2V1sf3F6qt1erzc3F6mJrY7263GotF9/Z0zzp9Rqt1vrcG7H54fVvrrc7s+2t7XvN1uZa517xvd736pXirJ0zaBkAMMgLr3zy5yQfkd++UmzRs5ZDZaQ1A05bOuoKACNzadQVAEbGal8wvh4+4z/2hwBMD8AF0WeJ3kdM9fsDoSzLstOrEnDKbn7B/D+Mq575f58ChjFz0vx/sTawNwnhQjL/D+Mry5Jh1/yPYU8EAM63Y+b4r5/lfQgwOgPe/3+x3P+2fHPgR0uHz/j4NGsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59v++r/Vcpnf6UjTajXiuWIBoEpyf6VRvxMRz0fEnyYrk3l+bsR1BgCeVvq3pFz/6+bM69OPFL187SA5ERE/+dV7v/xwodPZ+GPERPKvyf3jnY/L47UTg02dRgsAgOPtj9PFvudB/rPdB4v721nW5+/f7t4V5HH3didi7yD+5bhc7KeiEhFX/52U+a6kZ+7iaex8FBGf79f+JKaLOZDuLcvh+Hns5840fvpI/LRcoDkt/y0+9wzqAuPmk7z/eaff9ZfGjWLf//qfKnqop1f2f/lLLe4VfeDD+Pv936UB/d+NYWO88fvvdlNXjpZ9FPHFyxH7sfd6+p/9+MmA+K8PGf8vX3r51UFl2a8jbkb/+L2xZjvN9dn21vbtlebCcn25vlarzc/N33nr7pu12WKOenbwaPCPt289P6gsb//VAfGnTmj/V4ds/2/+9/4Pv3JM/K+/1i9+Gi8dEz8fE782ZPyFq78b+Nydx1862v5kmN//rSHjf/rX7SPLhgMAo9Pe2l5daDTqGxIS5z+R/5c9B9Xom/jWWcWaiP5FP3+te00fKsqyJ4o1qMd4FrNuwHlwcNFHxH9HXRkAAAAAAAAAAAAAAKCvs/iLpVG3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIvr/wEAAP//Rb3T2A==")
r5 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x181242, 0x148)
write$cgroup_int(r5, &(0x7f0000000740)=0x7, 0x12)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYRESHEX=r2, @ANYBLOB="4206cc842c12c9ff2563f53cf258e1f9acdffb4dfe84cf523c408372b9f2c57411a423fca16bee2035ac0f5e8d61b2359d247765ee3869d6e478f66bb336128c56107e756a157d78fa3806d61940d94f62b50f45", @ANYRES16=r0, @ANYRESDEC, @ANYRES16=r3, @ANYRES32, @ANYRESDEC, @ANYRESDEC=r6], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree\x00', r7}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x107b42, 0x32)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_IPV6_RTHDR(r8, 0x29, 0x39, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r9 = io_uring_setup(0x21bf, &(0x7f0000000080)={0x0, 0xbf30, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r9, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

613.123384ms ago: executing program 2 (id=1157):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x5402, &(0x7f00000001c0)={0x4, 0x5, 0x4, 0xca23, 0xe, "fe22ee144a7c31484ba31329df9896037bdfbb"})

576.381836ms ago: executing program 0 (id=1158):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7fffffffffffffff}, 0x18)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000340)=<r4=>0x0, &(0x7f00000003c0)=0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400)={0x0, r2}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', r4, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x98f}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000006d85500001e0a05010000000000000000070000000900020073797a31000000000900010073797a3000000000ac55038014000080100001800a0001"], 0x565c}}, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f0000000180)={0x0, 0x7, [0xe, 0x9, 0x8000000000000000, 0x377, 0x1e, 0x8000]})
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r6)
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
close_range(r3, 0xffffffffffffffff, 0x0)

498.849699ms ago: executing program 1 (id=1159):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x2}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8100}, @TCA_FLOWER_KEY_VLAN_ETH_TYPE={0x6, 0x19, 0x8902}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000850}, 0x20084084)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000200024a5379086dd60108114000811"], 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="080086dd"], 0xfdef)

498.083509ms ago: executing program 2 (id=1160):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000540)={@random="e33110495bfd", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x38, 0x3a, 0xff, @rand_addr=' \x01\x00', @local, {[], @time_exceed={0x3, 0x1, 0x0, 0x10, '\x00', {0x7, 0x6, "8f2bb2", 0x7, 0x2b, 0xff, @private0={0xfc, 0x0, '\x00', 0x80}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [], "9208de5094def678"}}}}}}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kmem_cache_free\x00', r3, 0x0, 0x800000000006}, 0x18)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYRESDEC, @ANYRES32=r2, @ANYRES64=r4, @ANYRESOCT=r1, @ANYRESDEC=r4, @ANYBLOB="b2b4aa845c5e30fa4663c49535a021465570291c7d1da79572708ae6d11d51627a3148f7a14cb5ae58a91729f53bdcab325d46ed83b1bc2f1309f307e98d70283aa7d22ee511d6c642bf047a63beffb81c1b5f1dfcb2a69227360bf8101dc900d21893f14312d8ed1e743122ede07dcd61a8d8929ef78a966ee7948652dcc256e327ad632829cfb88890e61ef9f76b9f335dea8137116fa954bf24656ec9076e15a3ed38972a57aa01345389025570359aaaa3c57ad832eee47974e2da4b46d621bb43b20f64134ea64b3cbbc740858efb2a9ec835a8ed33bf6e8892af5dc28240c952cb29353a25c0db9c2cb3b7ee215b33"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800e4fffeffffff00008200040000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
write$UHID_INPUT(r8, &(0x7f0000001040)={0x8, {"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", 0x1000}}, 0x1006)
dup(0xffffffffffffffff)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000000100))
r10 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
read$qrtrtun(r10, 0x0, 0xeffd)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendto$inet6(r4, &(0x7f0000000400)="aa", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x3f66400, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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")

494.746949ms ago: executing program 4 (id=1161):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x0, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@i_version}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x1)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0xfffffffd, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
fallocate(0xffffffffffffffff, 0x20, 0x0, 0x8000)

479.12085ms ago: executing program 1 (id=1162):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a1"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='mm_page_free\x00', r0, 0x0, 0xfffffffff7fffffc}, 0xc)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="080086dd"], 0xfdef)

418.096422ms ago: executing program 1 (id=1163):
ioctl$int_out(0xffffffffffffffff, 0x5460, &(0x7f0000000000))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94)
syz_emit_ethernet(0x36, &(0x7f0000000d00)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @rand_addr=0x64010102}, {{0x0, 0x8035, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xc1}}}}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xfb, 0xfb, 0xa, [@typedef={0x7, 0x0, 0x0, 0x8, 0x4}, @const={0x9, 0x0, 0x0, 0xa, 0x4}, @restrict={0xc, 0x0, 0x0, 0xb, 0x5}, @float={0xb, 0x0, 0x0, 0x10, 0xc}, @func={0x9, 0x0, 0x0, 0xc, 0x1}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x6, 0x4}]}, @struct={0x2, 0x4, 0x0, 0x4, 0x0, 0x86, [{0x7, 0x2, 0x5}, {0xd, 0x2, 0x6}, {0xc, 0x3, 0x200}, {0xb, 0x0, 0x4}]}, @enum={0xb, 0x3, 0x0, 0x6, 0x4, [{0x8}, {0xc, 0xb}, {0x7, 0x7}]}, @datasec={0xb, 0x5, 0x0, 0xf, 0x3, [{0x1, 0x1, 0x4}, {0x2, 0x3, 0x1}, {0x3, 0x6, 0x9}, {0x2, 0x101}, {0x3, 0xc0000, 0x66b}], "e45c27"}]}, {0x0, [0x0, 0x2e, 0x0, 0x51, 0x0, 0x2e, 0x0, 0x30]}}, &(0x7f0000000300)=""/227, 0x11e, 0xe3, 0x1, 0x3, 0x10000}, 0x28)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x3c, &(0x7f0000000700)=ANY=[@ANYBLOB="56c78979be13bde26152e9544b7118557c1186767f300223eeda739ad715a28faf0500ca917abc8650195d60e889a16d01996a0ea569bea8", @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYRES16=r4, @ANYRESOCT=r3, @ANYRES32=r0, @ANYRES16=r4, @ANYRES32=r3, @ANYRESOCT=r3], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r5, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8000d0, &(0x7f00000000c0)={[{@jqfmt_vfsv0}]}, 0x1, 0x58d, &(0x7f0000000bc0)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000400)='./file0/file0\x00', 0x8a, &(0x7f00000001c0)={[{@usrjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@journal_checksum}, {@minixdf}, {@grpjquota}, {@noinit_itable}]}, 0x1, 0x463, &(0x7f0000001040)="$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")
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r6}, 0x10)
linkat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1400)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r7}, 0x18)
getpid()
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
setsockopt$CAN_RAW_RECV_OWN_MSGS(r8, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4)
recvfrom(r8, 0x0, 0x0, 0x40000102, 0x0, 0x0)
sendmsg$can_raw(r8, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x1, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000)
read(r8, &(0x7f0000002340)=""/232, 0xe8)
utimes(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={{0x0, 0x2710}, {0x77359400}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
socket$unix(0x1, 0x5, 0x0)

417.678882ms ago: executing program 0 (id=1164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x800000, &(0x7f0000000480)=ANY=[])

350.996706ms ago: executing program 4 (id=1165):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x15}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r3, 0x0, 0x1}, 0x18)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x8000000c8, 0x0, 0x0, 0x4, 0x8, 0x0, 0x0, 0x40, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x12)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033300fefd000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)

347.810015ms ago: executing program 0 (id=1166):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
readv(r1, &(0x7f0000000ec0)=[{&(0x7f0000001380)=""/4096, 0x1000}], 0x1)
ioctl$KDSKBLED(r1, 0x4b65, 0x3fe8)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000200), 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
writev(r3, &(0x7f0000000000)=[{0x0}, {&(0x7f0000001400)="b8", 0x1}], 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x64, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}]}, 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0xc8, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x7}]}, @CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x350b}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x8}]}, @CTA_TUPLE_MASTER={0x2c, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x33}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_SEQ_ADJ_REPLY={0x4}, @CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x1ff}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x574}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x200}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x81}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20004800}, 0x40040)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000500)={[{@grpquota}, {@nogrpid}, {@quota}], [{@seclabel}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7e, 0x1, @perf_config_ext={0x10000d07, 0x40}, 0xee2b, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
unlink(&(0x7f0000000000)='./file1\x00')
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0xac}}, 0x0)

321.513796ms ago: executing program 4 (id=1167):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0xf)
shmat(0x0, &(0x7f0000ffc000/0x1000)=nil, 0x4000)

298.847718ms ago: executing program 4 (id=1168):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x9, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x6}, 0x204, 0x1, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x51031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r3}, 0x18)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$P9_RGETLOCK(r5, &(0x7f0000000640)=ANY=[], 0x200002e6)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fcntl$setpipe(r5, 0x407, 0x7000000)
fcntl$setpipe(r4, 0x407, 0x8)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='numa_maps\x00')
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r8 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
write$UHID_INPUT2(r8, 0x0, 0x1000)
preadv(r7, &(0x7f0000000000), 0x0, 0x800, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
r11 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8, 0xa0}, &(0x7f0000010080), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r11, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4), 0xc)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r11, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

50.032458ms ago: executing program 4 (id=1169):
fsopen(&(0x7f0000000340)='ramfs\x00', 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000000)={0x2a, 0x2, 0x7ffe}, 0xc)
bind$qrtr(r0, &(0x7f00000000c0)={0x2a, 0x1, 0x7fff}, 0xc)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000010000000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008040000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='mm_page_free\x00', r5, 0x0, 0xfffffffff7ffffdc}, 0x18)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r6 = io_uring_setup(0x1684, &(0x7f0000000080)={0x0, 0xcc3d, 0x400, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r6, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x0, 0x1}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000180)={'wg0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setgroups(0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000980)={[{0x2d, 'pids'}]}, 0x1f)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 4 (id=1170):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x5402, &(0x7f00000001c0)={0x4, 0x5, 0x4, 0xca23, 0xe, "fe22ee144a7c31484ba31329df9896037bdfbb"})

kernel console output (not intermixed with test programs):

root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.182413][   T29] audit: type=1326 audit(1764134853.009:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.184920][ T4402] netlink: 'syz.2.306': attribute type 15 has an invalid length.
[   45.205637][   T29] audit: type=1326 audit(1764134853.009:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.205666][   T29] audit: type=1326 audit(1764134853.009:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.259826][   T29] audit: type=1326 audit(1764134853.009:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.283259][   T29] audit: type=1326 audit(1764134853.009:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4399 comm="syz.1.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   45.416200][ T4424] io-wq is not configured for unbound workers
[   45.417439][ T4402] 9pnet_fd: Insufficient options for proto=fd
[   45.464469][ T4425] netlink: 16 bytes leftover after parsing attributes in process `syz.0.316'.
[   45.473380][ T4425] netlink: 48 bytes leftover after parsing attributes in process `syz.0.316'.
[   45.574804][ T4430] loop2: detected capacity change from 0 to 8192
[   45.606296][ T4430] netlink: 12 bytes leftover after parsing attributes in process `syz.2.318'.
[   45.719597][ T4427] futex_wake_op: syz.4.315 tries to shift op by -1; fix this program
[   45.749525][ T4440] 9pnet_fd: Insufficient options for proto=fd
[   45.885963][ T4450] SELinux:  Context system_u:object_r:restorecond_exec_t:s0 is not valid (left unmapped).
[   46.173265][ T4457] loop0: detected capacity change from 0 to 512
[   46.185355][ T3003] udevd[3003]: worker [3305] terminated by signal 33 (Unknown signal 33)
[   46.186187][ T4457] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.328: iget: bad extra_isize 90 (inode size 256)
[   46.194101][ T3003] udevd[3003]: worker [3305] failed while handling '/devices/virtual/block/loop0'
[   46.207316][ T4457] EXT4-fs (loop0): Remounting filesystem read-only
[   46.222889][ T4457] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[   46.232034][ T4457] EXT4-fs (loop0): 1 orphan inode deleted
[   46.238509][ T4457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.261118][ T3003] udevd[3003]: worker [3538] terminated by signal 33 (Unknown signal 33)
[   46.269592][ T3003] udevd[3003]: worker [3538] failed while handling '/devices/virtual/block/loop0'
[   46.298437][ T4462] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4462 comm=syz.3.330
[   46.311330][ T4462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.330'.
[   46.564253][ T4487] loop3: detected capacity change from 0 to 512
[   46.583491][ T4487] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.596185][ T4487] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.639649][ T4501] loop4: detected capacity change from 0 to 512
[   46.646365][ T4501] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.657435][ T4501] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.346: inode has both inline data and extents flags
[   46.672215][ T4501] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.346: couldn't read orphan inode 15 (err -117)
[   46.684723][ T4501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.707662][ T4501] 9pnet: Could not find request transport: f
[   46.751441][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.785830][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.790314][ T4509] 9pnet_fd: Insufficient options for proto=fd
[   46.822471][ T4511] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=102 sclass=netlink_tcpdiag_socket pid=4511 comm=syz.3.350
[   46.839881][ T4511] SELinux:  policydb version -1411311999 does not match my version range 15-35
[   46.849101][ T4511] SELinux: failed to load policy
[   46.867893][ T4515] loop4: detected capacity change from 0 to 512
[   46.876486][ T4515] EXT4-fs: Ignoring removed bh option
[   46.884401][ T4515] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   46.893512][ T4515] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   46.909051][ T4515] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   46.918548][ T4515] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   46.918932][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.927150][ T4515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.969587][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   46.977071][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.035007][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.042507][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.049944][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.057338][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.064848][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.072246][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.079698][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.087071][ T3384] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.099936][ T3384] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[   47.123381][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.132791][ T4527] loop0: detected capacity change from 0 to 512
[   47.141704][ T4527] EXT4-fs: Ignoring removed orlov option
[   47.147890][ T4527] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   47.173904][ T4527] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.353: corrupted in-inode xattr: e_value size too large
[   47.195491][ T4528] fido_id[4528]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   47.212504][ T4527] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.353: couldn't read orphan inode 15 (err -117)
[   47.231711][ T4527] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.259164][ T4519] openvswitch: netlink: Missing key (keys=40, expected=80)
[   47.291599][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.328543][ T4548] 9pnet_fd: Insufficient options for proto=fd
[   47.420937][ T4552] loop0: detected capacity change from 0 to 512
[   47.447274][ T4552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.470352][ T4552] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.538859][ T4566] loop2: detected capacity change from 0 to 512
[   47.553627][ T4566] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   47.563266][ T4566] EXT4-fs (loop2): orphan cleanup on readonly fs
[   47.573126][ T4566] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.368: corrupted inode contents
[   47.585602][ T4566] EXT4-fs (loop2): Remounting filesystem read-only
[   47.592369][ T4566] EXT4-fs (loop2): 1 truncate cleaned up
[   47.598113][ T3444] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   47.608643][ T3444] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   47.620937][ T3444] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   47.631839][ T4566] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.632163][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.657130][ T4572] FAULT_INJECTION: forcing a failure.
[   47.657130][ T4572] name failslab, interval 1, probability 0, space 0, times 0
[   47.669877][ T4572] CPU: 0 UID: 0 PID: 4572 Comm: syz.3.372 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   47.669911][ T4572] Tainted: [W]=WARN
[   47.669918][ T4572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   47.669931][ T4572] Call Trace:
[   47.669937][ T4572]  <TASK>
[   47.669943][ T4572]  __dump_stack+0x1d/0x30
[   47.669966][ T4572]  dump_stack_lvl+0xe8/0x140
[   47.670019][ T4572]  dump_stack+0x15/0x1b
[   47.670038][ T4572]  should_fail_ex+0x265/0x280
[   47.670070][ T4572]  should_failslab+0x8c/0xb0
[   47.670099][ T4572]  kmem_cache_alloc_noprof+0x50/0x480
[   47.670163][ T4572]  ? security_inode_alloc+0x37/0x100
[   47.670188][ T4572]  security_inode_alloc+0x37/0x100
[   47.670210][ T4572]  inode_init_always_gfp+0x4b7/0x500
[   47.670348][ T4572]  ? __pfx_sock_alloc_inode+0x10/0x10
[   47.670381][ T4572]  alloc_inode+0x58/0x170
[   47.670404][ T4572]  __sock_create+0x122/0x5b0
[   47.670433][ T4572]  __sys_socket+0xb0/0x180
[   47.670536][ T4572]  __x64_sys_socket+0x3f/0x50
[   47.670562][ T4572]  x64_sys_call+0x1147/0x3000
[   47.670652][ T4572]  do_syscall_64+0xd2/0x200
[   47.670733][ T4572]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   47.670762][ T4572]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   47.670796][ T4572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.670918][ T4572] RIP: 0033:0x7fd4b7f31667
[   47.670933][ T4572] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.670951][ T4572] RSP: 002b:00007fd4b698dfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[   47.670970][ T4572] RAX: ffffffffffffffda RBX: 00007fd4b8185fa0 RCX: 00007fd4b7f31667
[   47.670984][ T4572] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[   47.670997][ T4572] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[   47.671008][ T4572] R10: 0000200000000080 R11: 0000000000000286 R12: 0000000000000001
[   47.671021][ T4572] R13: 00007fd4b8186038 R14: 00007fd4b8185fa0 R15: 00007ffdb1a59be8
[   47.671067][ T4572]  </TASK>
[   47.671082][ T4572] socket: no more sockets
[   47.945881][ T4586] 9pnet_fd: Insufficient options for proto=fd
[   48.035499][ T4598] loop4: detected capacity change from 0 to 1024
[   48.067244][ T4598] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002]
[   48.076610][ T4598] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.092532][ T4598] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.382: bg 0: block 88: padding at end of block bitmap is not set
[   48.142556][ T4598] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.382'.
[   48.195901][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.346759][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.374698][ T4625] mmap: syz.1.393 (4625) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   48.422244][ T4630] loop4: detected capacity change from 0 to 2048
[   48.446252][ T4634] xt_CT: You must specify a L4 protocol and not use inversions on it
[   48.490497][ T4530]  loop4: p1 p4
[   48.501053][ T4530] loop4: p4 size 8388608 extends beyond EOD, truncated
[   48.595843][ T4630]  loop4: p1 p4
[   48.600414][ T4630] loop4: p4 size 8388608 extends beyond EOD, truncated
[   48.999445][ T4657] FAULT_INJECTION: forcing a failure.
[   48.999445][ T4657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.012645][ T4657] CPU: 1 UID: 0 PID: 4657 Comm: syz.2.405 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   49.012680][ T4657] Tainted: [W]=WARN
[   49.012688][ T4657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   49.012700][ T4657] Call Trace:
[   49.012706][ T4657]  <TASK>
[   49.012714][ T4657]  __dump_stack+0x1d/0x30
[   49.012812][ T4657]  dump_stack_lvl+0xe8/0x140
[   49.012834][ T4657]  dump_stack+0x15/0x1b
[   49.012854][ T4657]  should_fail_ex+0x265/0x280
[   49.012899][ T4657]  should_fail+0xb/0x20
[   49.012916][ T4657]  should_fail_usercopy+0x1a/0x20
[   49.012976][ T4657]  strncpy_from_user+0x25/0x230
[   49.013050][ T4657]  ? __kernel_text_address+0xd/0x40
[   49.013147][ T4657]  strncpy_from_user_nofault+0x68/0xf0
[   49.013172][ T4657]  bpf_bprintf_prepare+0x888/0xd20
[   49.013197][ T4657]  ? bpf_trace_run2+0xf5/0x1c0
[   49.013233][ T4657]  bpf_trace_printk+0x84/0x1c0
[   49.013253][ T4657]  ? bpf_trace_run2+0xf5/0x1c0
[   49.013278][ T4657]  bpf_prog_930ede9872f2967c+0x3e/0x44
[   49.013340][ T4657]  bpf_trace_run2+0x107/0x1c0
[   49.013370][ T4657]  ? security_compute_sid+0x11da/0x1290
[   49.013403][ T4657]  ? security_compute_sid+0x11da/0x1290
[   49.013453][ T4657]  __traceiter_kfree+0x2e/0x50
[   49.013474][ T4657]  ? security_compute_sid+0x11da/0x1290
[   49.013499][ T4657]  kfree+0x351/0x400
[   49.013528][ T4657]  security_compute_sid+0x11da/0x1290
[   49.013633][ T4657]  ? obj_cgroup_charge_account+0x122/0x1a0
[   49.013657][ T4657]  security_transition_sid+0x5a/0x70
[   49.013686][ T4657]  inode_doinit_with_dentry+0x328/0x7a0
[   49.013793][ T4657]  selinux_d_instantiate+0x27/0x40
[   49.013817][ T4657]  security_d_instantiate+0x7a/0xa0
[   49.013839][ T4657]  d_instantiate+0x3f/0x80
[   49.013871][ T4657]  alloc_file_pseudo+0xa3/0x160
[   49.013932][ T4657]  __shmem_file_setup+0x1de/0x210
[   49.013951][ T4657]  shmem_file_setup+0x3b/0x50
[   49.013967][ T4657]  __se_sys_memfd_create+0x2c3/0x590
[   49.013989][ T4657]  __x64_sys_memfd_create+0x31/0x40
[   49.014010][ T4657]  x64_sys_call+0x2ac2/0x3000
[   49.014109][ T4657]  do_syscall_64+0xd2/0x200
[   49.014128][ T4657]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   49.014158][ T4657]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   49.014194][ T4657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.014230][ T4657] RIP: 0033:0x7fc39874f749
[   49.014243][ T4657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.014262][ T4657] RSP: 002b:00007fc3971aee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   49.014282][ T4657] RAX: ffffffffffffffda RBX: 000000000000046f RCX: 00007fc39874f749
[   49.014296][ T4657] RDX: 00007fc3971aeef0 RSI: 0000000000000000 RDI: 00007fc3987d4960
[   49.014310][ T4657] RBP: 0000200000001040 R08: 00007fc3971aebb7 R09: 00007fc3971aee40
[   49.014324][ T4657] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[   49.014392][ T4657] R13: 00007fc3971aeef0 R14: 00007fc3971aeeb0 R15: 0000200000000200
[   49.014408][ T4657]  </TASK>
[   49.379623][ T4657] loop2: detected capacity change from 0 to 512
[   49.757974][ T4668] udevd[4668]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   49.932146][ T4657] EXT4-fs (loop2): 1 orphan inode deleted
[   49.938388][ T4657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.965255][ T4686] netlink: 28 bytes leftover after parsing attributes in process `syz.1.415'.
[   49.977450][ T4686] netem: change failed
[   50.020636][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.049011][   T29] kauditd_printk_skb: 656 callbacks suppressed
[   50.049024][   T29] audit: type=1400 audit(1764134858.009:2576): avc:  denied  { create } for  pid=4699 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   50.109352][   T29] audit: type=1400 audit(1764134858.039:2577): avc:  denied  { setopt } for  pid=4699 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   50.128779][   T29] audit: type=1400 audit(1764134858.039:2578): avc:  denied  { read write } for  pid=4699 comm="syz.0.422" name="uhid" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   50.152143][   T29] audit: type=1400 audit(1764134858.039:2579): avc:  denied  { open } for  pid=4699 comm="syz.0.422" path="/dev/uhid" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   50.175452][   T29] audit: type=1400 audit(1764134858.039:2580): avc:  denied  { read } for  pid=4699 comm="syz.0.422" name="qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.198179][   T29] audit: type=1400 audit(1764134858.039:2581): avc:  denied  { open } for  pid=4699 comm="syz.0.422" path="/dev/qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.221360][   T29] audit: type=1400 audit(1764134858.049:2582): avc:  denied  { create } for  pid=4695 comm="syz.3.420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   50.240906][   T29] audit: type=1400 audit(1764134858.049:2583): avc:  denied  { write } for  pid=4695 comm="syz.3.420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   50.260334][   T29] audit: type=1400 audit(1764134858.069:2584): avc:  denied  { setopt } for  pid=4684 comm="syz.1.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   50.305964][ T4708] loop0: detected capacity change from 0 to 512
[   50.319011][   T29] audit: type=1400 audit(1764134858.119:2585): avc:  denied  { write } for  pid=4699 comm="syz.0.422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   50.377671][ T4708] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.422: iget: bad extra_isize 90 (inode size 256)
[   50.487976][ T4708] EXT4-fs (loop0): Remounting filesystem read-only
[   51.452784][ T4708] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[   51.479080][ T4708] EXT4-fs (loop0): 1 orphan inode deleted
[   51.522190][ T4708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.648682][ T4746] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   51.658243][ T4748] loop3: detected capacity change from 0 to 512
[   51.669697][ T4746] infiniband syb2: RDMA CMA: cma_listen_on_dev, error -98
[   51.678403][ T4748] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #18: comm syz.3.432: iget: bad extra_isize 90 (inode size 256)
[   51.697041][ T4748] EXT4-fs (loop3): Remounting filesystem read-only
[   51.704382][ T4748] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[   51.713853][ T4748] EXT4-fs (loop3): 1 orphan inode deleted
[   51.720277][ T4748] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.744333][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.843993][ T4764] netlink: 96 bytes leftover after parsing attributes in process `syz.1.442'.
[   51.876975][ T4766] syz_tun: entered allmulticast mode
[   51.897495][ T4763] syz_tun: left allmulticast mode
[   52.043840][ T4793] loop2: detected capacity change from 0 to 512
[   52.062522][ T4797] loop0: detected capacity change from 0 to 1024
[   52.078786][ T4798] loop4: detected capacity change from 0 to 512
[   52.103619][ T4797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.123243][ T4798] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.448: iget: bad extra_isize 90 (inode size 256)
[   52.136967][ T4798] EXT4-fs (loop4): Remounting filesystem read-only
[   52.142451][ T4805] netlink: 4 bytes leftover after parsing attributes in process `syz.1.454'.
[   52.150115][ T4798] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -30)
[   52.172800][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.182373][ T4798] EXT4-fs (loop4): 1 orphan inode deleted
[   52.189207][ T4798] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.224084][ T4810] FAULT_INJECTION: forcing a failure.
[   52.224084][ T4810] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.237168][ T4810] CPU: 0 UID: 0 PID: 4810 Comm: syz.0.457 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   52.237199][ T4810] Tainted: [W]=WARN
[   52.237282][ T4810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   52.237311][ T4810] Call Trace:
[   52.237316][ T4810]  <TASK>
[   52.237322][ T4810]  __dump_stack+0x1d/0x30
[   52.237345][ T4810]  dump_stack_lvl+0xe8/0x140
[   52.237366][ T4810]  dump_stack+0x15/0x1b
[   52.237408][ T4810]  should_fail_ex+0x265/0x280
[   52.237444][ T4810]  should_fail+0xb/0x20
[   52.237539][ T4810]  should_fail_usercopy+0x1a/0x20
[   52.237561][ T4810]  _copy_from_iter+0xd2/0xe80
[   52.237586][ T4810]  ? __build_skb_around+0x1ab/0x200
[   52.237633][ T4810]  ? __alloc_skb+0x223/0x320
[   52.237661][ T4810]  netlink_sendmsg+0x471/0x6b0
[   52.237710][ T4810]  ? __pfx_netlink_sendmsg+0x10/0x10
[   52.237728][ T4810]  __sock_sendmsg+0x145/0x180
[   52.237800][ T4810]  ____sys_sendmsg+0x31e/0x4e0
[   52.237823][ T4810]  ___sys_sendmsg+0x17b/0x1d0
[   52.237850][ T4810]  __x64_sys_sendmsg+0xd4/0x160
[   52.237870][ T4810]  x64_sys_call+0x191e/0x3000
[   52.237889][ T4810]  do_syscall_64+0xd2/0x200
[   52.238023][ T4810]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   52.238047][ T4810]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   52.238076][ T4810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.238147][ T4810] RIP: 0033:0x7fe325b4f749
[   52.238161][ T4810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.238177][ T4810] RSP: 002b:00007fe3245b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   52.238253][ T4810] RAX: ffffffffffffffda RBX: 00007fe325da5fa0 RCX: 00007fe325b4f749
[   52.238312][ T4810] RDX: 0000000024000840 RSI: 0000200000009b40 RDI: 0000000000000003
[   52.238325][ T4810] RBP: 00007fe3245b7090 R08: 0000000000000000 R09: 0000000000000000
[   52.238337][ T4810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.238350][ T4810] R13: 00007fe325da6038 R14: 00007fe325da5fa0 R15: 00007fff5b2e7db8
[   52.238435][ T4810]  </TASK>
[   52.467429][ T4812] loop2: detected capacity change from 0 to 1024
[   52.481380][ T4812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.500548][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.540478][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.572797][ T4821] loop2: detected capacity change from 0 to 512
[   52.580162][ T4821] EXT4-fs: inline encryption not supported
[   52.586064][ T4821] EXT4-fs: test_dummy_encryption option not supported
[   52.692621][ T4835] loop0: detected capacity change from 0 to 512
[   52.710861][ T4835] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.464: iget: bad extra_isize 90 (inode size 256)
[   52.724484][ T4835] EXT4-fs (loop0): Remounting filesystem read-only
[   52.731235][ T4835] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[   52.746440][ T3187] hid_parser_main: 28 callbacks suppressed
[   52.746457][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.748292][ T4835] EXT4-fs (loop0): 1 orphan inode deleted
[   52.752333][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.760142][ T4835] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.765485][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.782744][ T4842] netlink: '+}[@': attribute type 10 has an invalid length.
[   52.785001][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.785024][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.795609][ T4842] team0: Port device dummy0 added
[   52.799709][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.799734][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.799755][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.799784][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.826448][ T4842] netlink: '+}[@': attribute type 10 has an invalid length.
[   52.826941][ T3187] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   52.835342][ T4842] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   52.859451][ T4844] FAULT_INJECTION: forcing a failure.
[   52.859451][ T4844] name failslab, interval 1, probability 0, space 0, times 0
[   52.885095][ T4844] CPU: 1 UID: 0 PID: 4844 Comm: syz.2.469 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   52.885115][ T4844] Tainted: [W]=WARN
[   52.885123][ T4844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   52.885130][ T4844] Call Trace:
[   52.885134][ T4844]  <TASK>
[   52.885139][ T4844]  __dump_stack+0x1d/0x30
[   52.885160][ T4844]  dump_stack_lvl+0xe8/0x140
[   52.885172][ T4844]  dump_stack+0x15/0x1b
[   52.885234][ T4844]  should_fail_ex+0x265/0x280
[   52.885254][ T4844]  ? __io_uring_add_tctx_node+0xbf/0x2d0
[   52.885271][ T4844]  should_failslab+0x8c/0xb0
[   52.885362][ T4844]  __kmalloc_cache_noprof+0x4c/0x4a0
[   52.885462][ T4844]  __io_uring_add_tctx_node+0xbf/0x2d0
[   52.885480][ T4844]  __io_uring_add_tctx_node_from_submit+0x69/0xc0
[   52.885513][ T4844]  __se_sys_io_uring_enter+0x1955/0x1b70
[   52.885532][ T4844]  ? 0xffffffff81000000
[   52.885539][ T4844]  ? __rcu_read_unlock+0x4f/0x70
[   52.885554][ T4844]  ? get_pid_task+0x96/0xd0
[   52.885596][ T4844]  ? proc_fail_nth_write+0x13b/0x160
[   52.885614][ T4844]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   52.885631][ T4844]  ? vfs_write+0x7e8/0x960
[   52.885645][ T4844]  ? __rcu_read_unlock+0x4f/0x70
[   52.885701][ T4844]  ? __fget_files+0x184/0x1c0
[   52.885789][ T4844]  ? fput+0x8f/0xc0
[   52.885800][ T4844]  __x64_sys_io_uring_enter+0x78/0x90
[   52.885874][ T4844]  x64_sys_call+0x2df0/0x3000
[   52.885888][ T4844]  do_syscall_64+0xd2/0x200
[   52.885900][ T4844]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   52.885916][ T4844]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   52.885938][ T4844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.885951][ T4844] RIP: 0033:0x7fc39874f749
[   52.885994][ T4844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.886004][ T4844] RSP: 002b:00007fc396e8d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   52.886024][ T4844] RAX: ffffffffffffffda RBX: 00007fc3989a6090 RCX: 00007fc39874f749
[   52.886115][ T4844] RDX: 0000000000000000 RSI: 0000000000000567 RDI: 0000000000000003
[   52.886127][ T4844] RBP: 00007fc396e8d090 R08: 0000000000000000 R09: 0000000000000000
[   52.886134][ T4844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.886141][ T4844] R13: 00007fc3989a6128 R14: 00007fc3989a6090 R15: 00007fff394a9f18
[   52.886152][ T4844]  </TASK>
[   52.886677][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.940657][ T3187] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   53.139339][ T4842] team0: Failed to send options change via netlink (err -105)
[   53.170977][ T4842] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   53.195578][ T4842] team0: Port device dummy0 removed
[   53.211734][ T4842] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   53.391468][ T4861] netlink: 24 bytes leftover after parsing attributes in process `syz.4.475'.
[   53.422497][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.520760][ T4873] netlink: 20 bytes leftover after parsing attributes in process `syz.4.477'.
[   53.556974][ T4875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'.
[   53.565769][ T4875] netlink: 32 bytes leftover after parsing attributes in process `syz.1.480'.
[   53.574757][ T4875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'.
[   53.583556][ T4875] netlink: 2 bytes leftover after parsing attributes in process `syz.1.480'.
[   53.611879][ T3322] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   53.611933][ T3322] CPU: 1 UID: 0 PID: 3322 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   53.611966][ T3322] Tainted: [W]=WARN
[   53.611972][ T3322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   53.612095][ T3322] Call Trace:
[   53.612101][ T3322]  <TASK>
[   53.612108][ T3322]  __dump_stack+0x1d/0x30
[   53.612130][ T3322]  dump_stack_lvl+0xe8/0x140
[   53.612178][ T3322]  dump_stack+0x15/0x1b
[   53.612196][ T3322]  dump_header+0x81/0x220
[   53.612215][ T3322]  oom_kill_process+0x342/0x400
[   53.612245][ T3322]  out_of_memory+0x979/0xb80
[   53.612276][ T3322]  try_charge_memcg+0x610/0xa10
[   53.612332][ T3322]  charge_memcg+0x51/0xc0
[   53.612354][ T3322]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   53.612380][ T3322]  __read_swap_cache_async+0x17b/0x2d0
[   53.612459][ T3322]  swap_cluster_readahead+0x362/0x3c0
[   53.612486][ T3322]  swapin_readahead+0xde/0x800
[   53.612511][ T3322]  ? css_rstat_updated+0xb7/0x240
[   53.612530][ T3322]  ? mod_memcg_lruvec_state+0x1fc/0x2c0
[   53.612561][ T3322]  ? __rcu_read_unlock+0x4f/0x70
[   53.612587][ T3322]  ? __rcu_read_unlock+0x4f/0x70
[   53.612645][ T3322]  ? swap_cache_get_folio+0x277/0x280
[   53.612715][ T3322]  do_swap_page+0x2ae/0x2370
[   53.612742][ T3322]  ? _raw_spin_unlock+0x26/0x50
[   53.612794][ T3322]  ? finish_task_switch+0xad/0x2b0
[   53.612820][ T3322]  ? __pfx_default_wake_function+0x10/0x10
[   53.612889][ T3322]  handle_mm_fault+0x9a5/0x2be0
[   53.612915][ T3322]  ? vma_start_read+0x141/0x1f0
[   53.612988][ T3322]  do_user_addr_fault+0x630/0x1080
[   53.613010][ T3322]  ? fpregs_restore_userregs+0xe2/0x1d0
[   53.613040][ T3322]  ? switch_fpu_return+0xe/0x20
[   53.613067][ T3322]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   53.613133][ T3322]  exc_page_fault+0x62/0xa0
[   53.613163][ T3322]  asm_exc_page_fault+0x26/0x30
[   53.613219][ T3322] RIP: 0033:0x7fd4b7f61fc5
[   53.613237][ T3322] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   53.613287][ T3322] RSP: 002b:00007ffdb1a59f28 EFLAGS: 00010246
[   53.613307][ T3322] RAX: 0000000000000000 RBX: 00000000000000ff RCX: 00007fd4b7f61fc3
[   53.613320][ T3322] RDX: 00007ffdb1a59f40 RSI: 0000000000000000 RDI: 0000000000000000
[   53.613333][ T3322] RBP: 00007ffdb1a59fac R08: 000000001d5261d8 R09: 0000000000000000
[   53.613346][ T3322] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[   53.613437][ T3322] R13: 00000000000927c0 R14: 000000000000ced6 R15: 00007ffdb1a5a000
[   53.613455][ T3322]  </TASK>
[   53.613475][ T3322] memory: usage 307200kB, limit 307200kB, failcnt 318
[   53.629245][ T4875] netlink: 32 bytes leftover after parsing attributes in process `syz.1.480'.
[   53.634257][ T3322] memory+swap: usage 307588kB, limit 9007199254740988kB, failcnt 0
[   53.895633][ T3322] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[   53.895647][ T3322] Memory cgroup stats for /syz3:
[   53.896159][ T3322] cache 0
[   53.911035][ T3322] rss 0
[   53.911044][ T3322] shmem 0
[   53.911051][ T3322] mapped_file 0
[   53.911059][ T3322] dirty 0
[   53.911089][ T3322] writeback 0
[   53.911095][ T3322] workingset_refault_anon 82
[   53.911102][ T3322] workingset_refault_file 663
[   53.911109][ T3322] swap 397312
[   53.911115][ T3322] swapcached 16384
[   53.911121][ T3322] pgpgin 17245
[   53.911156][ T3322] pgpgout 17239
[   53.911162][ T3322] pgfault 25112
[   53.911169][ T3322] pgmajfault 56
[   53.911177][ T3322] inactive_anon 16384
[   53.911219][ T3322] active_anon 0
[   53.911225][ T3322] inactive_file 8192
[   53.911231][ T3322] active_file 0
[   53.911237][ T3322] unevictable 0
[   53.911243][ T3322] hierarchical_memory_limit 314572800
[   53.911251][ T3322] hierarchical_memsw_limit 9223372036854771712
[   53.911259][ T3322] total_cache 0
[   53.911265][ T3322] total_rss 0
[   53.911271][ T3322] total_shmem 0
[   53.911284][ T3322] total_mapped_file 0
[   53.911291][ T3322] total_dirty 0
[   53.911307][ T3322] total_writeback 0
[   53.911313][ T3322] total_workingset_refault_anon 82
[   53.911321][ T3322] total_workingset_refault_file 663
[   53.911328][ T3322] total_swap 397312
[   53.911335][ T3322] total_swapcached 16384
[   53.911341][ T3322] total_pgpgin 17245
[   53.911348][ T3322] total_pgpgout 17239
[   53.911355][ T3322] total_pgfault 25112
[   53.911363][ T3322] total_pgmajfault 56
[   53.911371][ T3322] total_inactive_anon 16384
[   53.911459][ T3322] total_active_anon 0
[   53.911468][ T3322] total_inactive_file 8192
[   53.911476][ T3322] total_active_file 0
[   53.911485][ T3322] total_unevictable 0
[   53.911493][ T3322] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.467,pid=4833,uid=0
[   53.911666][ T3322] Memory cgroup out of memory: Killed process 4833 (syz.3.467) total-vm:98336kB, anon-rss:1136kB, file-rss:26536kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[   54.289280][ T4893] netlink: 12 bytes leftover after parsing attributes in process `syz.1.486'.
[   54.296103][ T4894] No such timeout policy "syz1"
[   54.329459][ T4894] netlink: 12 bytes leftover after parsing attributes in process `syz.2.487'.
[   54.624318][ T3402] hid-generic 0000:0002:0005.0003: item fetching failed at offset 0/1
[   54.624586][ T3402] hid-generic 0000:0002:0005.0003: probe with driver hid-generic failed with error -22
[   55.139592][   T29] kauditd_printk_skb: 338 callbacks suppressed
[   55.139607][   T29] audit: type=1400 audit(1764134863.099:2924): avc:  denied  { module_request } for  pid=4891 comm="syz.1.486" kmod="net-pf-10-proto-1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   55.190013][   T29] audit: type=1400 audit(1764134863.159:2925): avc:  denied  { map_create } for  pid=4915 comm="syz.4.495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   55.236760][   T29] audit: type=1400 audit(1764134863.179:2926): avc:  denied  { map_read map_write } for  pid=4921 comm="syz.0.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   55.256639][   T29] audit: type=1400 audit(1764134863.179:2927): avc:  denied  { prog_run } for  pid=4921 comm="syz.0.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   55.372658][   T29] audit: type=1400 audit(1764134863.339:2928): avc:  denied  { allowed } for  pid=4921 comm="syz.0.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   55.416797][ T4923] netlink: 68 bytes leftover after parsing attributes in process `syz.0.496'.
[   55.449005][   T29] audit: type=1400 audit(1764134863.359:2929): avc:  denied  { create } for  pid=4924 comm="syz.2.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   55.468470][   T29] audit: type=1400 audit(1764134863.359:2930): avc:  denied  { setopt } for  pid=4924 comm="syz.2.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   55.487979][   T29] audit: type=1400 audit(1764134863.359:2931): avc:  denied  { read write } for  pid=4924 comm="syz.2.497" name="uhid" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   55.511407][   T29] audit: type=1400 audit(1764134863.359:2932): avc:  denied  { open } for  pid=4924 comm="syz.2.497" path="/dev/uhid" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   55.534666][   T29] audit: type=1400 audit(1764134863.369:2933): avc:  denied  { read } for  pid=4924 comm="syz.2.497" name="qrtr-tun" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   55.573071][ T4930] 9pnet_fd: Insufficient options for proto=fd
[   55.612511][ T4931] loop2: detected capacity change from 0 to 512
[   55.740375][ T4931] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.497: iget: bad extra_isize 90 (inode size 256)
[   55.791252][ T4931] EXT4-fs (loop2): Remounting filesystem read-only
[   55.825434][ T4949] No such timeout policy "syz1"
[   55.854609][ T4931] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[   55.878622][ T4931] EXT4-fs (loop2): 1 orphan inode deleted
[   55.897826][ T4931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.054086][ T4980] loop0: detected capacity change from 0 to 512
[   56.058806][ T4980] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.513: iget: bad extra_isize 90 (inode size 256)
[   56.080548][ T4980] EXT4-fs (loop0): Remounting filesystem read-only
[   56.087507][ T4980] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[   56.097031][ T4980] EXT4-fs (loop0): 1 orphan inode deleted
[   56.103432][ T4980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.141166][ T4988] xt_hashlimit: size too large, truncated to 1048576
[   56.147944][ T4988] xt_hashlimit: max too large, truncated to 1048576
[   56.249616][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.392229][ T5012] No such timeout policy "syz1"
[   56.447078][ T5018] loop3: detected capacity change from 0 to 512
[   56.449541][ T5020] 9pnet: Could not find request transport: f
[   56.477523][ T5018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.490299][ T5018] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.599384][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.617659][ T5042] tipc: Started in network mode
[   56.622694][ T5042] tipc: Node identity ac14140f, cluster identity 4711
[   56.630336][ T5042] tipc: New replicast peer: 255.255.255.83
[   56.636232][ T5042] tipc: Enabled bearer <udp:�>, priority 10
[   56.651962][ T5046] No such timeout policy "syz1"
[   56.734699][ T5056] loop3: detected capacity change from 0 to 512
[   56.741339][ T5056] EXT4-fs: Ignoring removed mblk_io_submit option
[   56.774992][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.876095][ T5071] loop3: detected capacity change from 0 to 512
[   56.898224][ T5071] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #18: comm syz.3.552: iget: bad extra_isize 90 (inode size 256)
[   56.907941][ T5073] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   56.914053][ T5071] EXT4-fs (loop3): Remounting filesystem read-only
[   56.919069][ T5073] IPv6: NLM_F_CREATE should be set when creating new route
[   56.919080][ T5073] IPv6: NLM_F_CREATE should be set when creating new route
[   56.925804][ T5071] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[   56.933892][ T5073] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   56.940276][ T5071] EXT4-fs (loop3): 1 orphan inode deleted
[   56.962792][ T5071] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.027892][ T5080] netlink: 'syz.0.559': attribute type 3 has an invalid length.
[   57.042379][ T5082] 9pnet_fd: Insufficient options for proto=fd
[   57.089313][ T5089] netlink: 'syz.4.558': attribute type 12 has an invalid length.
[   57.097094][ T5089] netlink: 'syz.4.558': attribute type 11 has an invalid length.
[   57.169531][ T5100] 9pnet_fd: Insufficient options for proto=fd
[   57.286569][ T5106] 9pnet_fd: Insufficient options for proto=fd
[   57.438034][ T5124] 9pnet_fd: Insufficient options for proto=fd
[   57.615732][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.695391][ T5141] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5141 comm=syz.3.586
[   57.759125][   T10] tipc: Node number set to 2886997007
[   58.524098][ T5171] lo speed is unknown, defaulting to 1000
[   58.529961][ T5171] lo speed is unknown, defaulting to 1000
[   58.536191][ T5171] lo speed is unknown, defaulting to 1000
[   58.543569][ T5171] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   58.640948][ T5171] lo speed is unknown, defaulting to 1000
[   58.647081][ T5171] lo speed is unknown, defaulting to 1000
[   58.653446][ T5171] lo speed is unknown, defaulting to 1000
[   58.659970][ T5171] lo speed is unknown, defaulting to 1000
[   58.666594][ T5171] lo speed is unknown, defaulting to 1000
[   58.672758][ T5171] lo speed is unknown, defaulting to 1000
[   59.093127][ T5198] program syz.3.611 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.123431][ T5198] loop3: detected capacity change from 0 to 1024
[   59.143035][ T5198] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.210626][ T5213] loop4: detected capacity change from 0 to 512
[   59.220635][ T5213] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.610: iget: bad extra_isize 90 (inode size 256)
[   59.246012][ T5213] EXT4-fs (loop4): Remounting filesystem read-only
[   59.259114][ T5213] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -30)
[   59.302120][ T5213] EXT4-fs (loop4): 1 orphan inode deleted
[   59.431682][ T5232] No such timeout policy "syz1"
[   59.679893][ T5250] __nla_validate_parse: 10 callbacks suppressed
[   59.679906][ T5250] netlink: 32 bytes leftover after parsing attributes in process `syz.2.630'.
[   59.737813][   T10] IPVS: starting estimator thread 0...
[   59.764375][ T5248] netlink: '+}[@': attribute type 10 has an invalid length.
[   59.775350][ T5248] team0: Port device dummy0 added
[   59.786896][ T5248] netlink: '+}[@': attribute type 10 has an invalid length.
[   59.794706][ T5248] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   59.807296][ T5248] team0: Failed to send options change via netlink (err -105)
[   59.819341][ T5248] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   59.842914][ T5248] team0: Port device dummy0 removed
[   59.849181][ T5253] IPVS: using max 3216 ests per chain, 160800 per kthread
[   59.852083][ T5248] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   60.045711][ T5271] netlink: 12 bytes leftover after parsing attributes in process `syz.1.638'.
[   60.834830][   T29] kauditd_printk_skb: 3138 callbacks suppressed
[   60.834846][   T29] audit: type=1400 audit(1764134868.019:6072): avc:  denied  { map_create } for  pid=5261 comm="syz.2.634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   60.860161][   T29] audit: type=1400 audit(1764134868.019:6073): avc:  denied  { map_read map_write } for  pid=5261 comm="syz.2.634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   60.894741][ T3322] audit: audit_backlog=65 > audit_backlog_limit=64
[   60.901499][ T3322] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   60.909269][ T3322] audit: backlog limit exceeded
[   60.914211][ T3322] audit: audit_backlog=65 > audit_backlog_limit=64
[   60.920741][ T3322] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[   60.928366][ T3322] audit: backlog limit exceeded
[   60.928499][   T29] audit: type=1326 audit(1764134868.849:6074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.4.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2c50c465e7 code=0x7ffc0000
[   60.956740][   T29] audit: type=1326 audit(1764134868.849:6075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.4.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2c50beb829 code=0x7ffc0000
[   61.079766][ T5291] IPv6: NLM_F_CREATE should be specified when creating new route
[   61.131549][ T5302] netlink: 12 bytes leftover after parsing attributes in process `syz.4.652'.
[   61.266026][ T5326] usb usb1: check_ctrlrecip: process 5326 (syz.3.662) requesting ep 01 but needs 81
[   61.297732][ T5326] vhci_hcd: default hub control req: 020f v0004 i0001 l0
[   61.336392][ T5312] netlink: 12 bytes leftover after parsing attributes in process `syz.1.656'.
[   61.364423][ T5326] loop3: detected capacity change from 0 to 2048
[   61.374184][ T5338] loop2: detected capacity change from 0 to 512
[   61.409570][ T5338] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.421926][ T5326]  loop3: p1 < > p4
[   61.427514][ T5326] loop3: p4 size 8388608 extends beyond EOD, truncated
[   61.437697][ T5326] sd 0:0:1:0: device reset
[   61.477908][ T5351] netlink: 172 bytes leftover after parsing attributes in process `syz.1.668'.
[   61.490962][ T5346] random: crng reseeded on system resumption
[   61.506325][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[   61.513658][ T5355] loop0: detected capacity change from 0 to 128
[   61.523215][ T5346] loop4: detected capacity change from 0 to 164
[   61.523383][ T5355] EXT4-fs: Ignoring removed nobh option
[   61.537408][ T5355] ext4 filesystem being mounted at /121/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   61.552852][ T5346] ISOFS: unable to read i-node block
[   61.558231][ T5346] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   61.592662][ T5360] netlink: 12 bytes leftover after parsing attributes in process `syz.3.675'.
[   61.966256][ T5376] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.975106][ T5376] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.450674][ T5397] loop4: detected capacity change from 0 to 512
[   62.497689][ T5399] No such timeout policy "syz1"
[   62.511182][ T5397] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.594864][ T5407] netlink: 'syz.1.692': attribute type 15 has an invalid length.
[   62.604728][ T5407] 9pnet_fd: Insufficient options for proto=fd
[   62.658241][ T5411] netlink: 12 bytes leftover after parsing attributes in process `syz.2.694'.
[   62.845922][ T5433] 9pnet_fd: Insufficient options for proto=fd
[   62.850853][ T5436] loop2: detected capacity change from 0 to 512
[   62.852997][ T5433] netlink: 8 bytes leftover after parsing attributes in process `syz.4.704'.
[   62.859060][ T5436] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   62.872735][ T5433] netlink: 20 bytes leftover after parsing attributes in process `syz.4.704'.
[   62.892278][ T5436] EXT4-fs (loop2): 1 truncate cleaned up
[   62.914385][ T5442] netlink: 12 bytes leftover after parsing attributes in process `syz.4.707'.
[   63.026283][ T5448] loop4: detected capacity change from 0 to 512
[   63.102735][ T5456] loop2: detected capacity change from 0 to 512
[   63.110768][ T5456] EXT4-fs: Ignoring removed orlov option
[   63.118098][ T5456] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   63.131264][ T5448] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.149887][ T5456] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.711: corrupted in-inode xattr: e_value size too large
[   63.224110][ T5456] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.711: couldn't read orphan inode 15 (err -117)
[   63.281084][ T5456] openvswitch: netlink: Missing key (keys=40, expected=80)
[   63.538988][ T3498] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   63.934688][ T5473] netlink: 'syz.2.717': attribute type 1 has an invalid length.
[   63.959416][ T5473] 8021q: adding VLAN 0 to HW filter on device bond1
[   63.974308][ T5473] bond1: (slave ip6gretap1): making interface the new active one
[   63.982870][ T5477] FAULT_INJECTION: forcing a failure.
[   63.982870][ T5477] name failslab, interval 1, probability 0, space 0, times 0
[   63.983104][ T5473] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[   63.995574][ T5477] CPU: 1 UID: 0 PID: 5477 Comm: syz.0.719 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   63.995608][ T5477] Tainted: [W]=WARN
[   63.995615][ T5477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   63.995628][ T5477] Call Trace:
[   63.995634][ T5477]  <TASK>
[   63.995643][ T5477]  __dump_stack+0x1d/0x30
[   63.995697][ T5477]  dump_stack_lvl+0xe8/0x140
[   63.995718][ T5477]  dump_stack+0x15/0x1b
[   63.995773][ T5477]  should_fail_ex+0x265/0x280
[   63.995865][ T5477]  should_failslab+0x8c/0xb0
[   63.995893][ T5477]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   63.995924][ T5477]  ? __alloc_skb+0x101/0x320
[   63.995953][ T5477]  __alloc_skb+0x101/0x320
[   63.996015][ T5477]  netlink_alloc_large_skb+0xbf/0xf0
[   63.996046][ T5477]  netlink_sendmsg+0x3cf/0x6b0
[   63.996067][ T5477]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.996094][ T5477]  __sock_sendmsg+0x145/0x180
[   63.996159][ T5477]  ____sys_sendmsg+0x31e/0x4e0
[   63.996181][ T5477]  ___sys_sendmsg+0x17b/0x1d0
[   63.996210][ T5477]  __x64_sys_sendmsg+0xd4/0x160
[   63.996246][ T5477]  x64_sys_call+0x191e/0x3000
[   63.996268][ T5477]  do_syscall_64+0xd2/0x200
[   63.996290][ T5477]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   63.996370][ T5477]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   63.996475][ T5477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.996494][ T5477] RIP: 0033:0x7fe325b4f749
[   63.996508][ T5477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.996572][ T5477] RSP: 002b:00007fe3245b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.996591][ T5477] RAX: ffffffffffffffda RBX: 00007fe325da5fa0 RCX: 00007fe325b4f749
[   63.996610][ T5477] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[   63.996622][ T5477] RBP: 00007fe3245b7090 R08: 0000000000000000 R09: 0000000000000000
[   63.996635][ T5477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.996648][ T5477] R13: 00007fe325da6038 R14: 00007fe325da5fa0 R15: 00007fff5b2e7db8
[   63.996725][ T5477]  </TASK>
[   64.030631][ T5483] No such timeout policy "syz1"
[   64.278076][ T5497] netlink: 'syz.4.725': attribute type 10 has an invalid length.
[   64.289039][ T5497] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   64.442915][ T5515] loop4: detected capacity change from 0 to 1024
[   64.450088][ T5515] EXT4-fs: inline encryption not supported
[   64.455686][ T5517] No such timeout policy "syz1"
[   64.503266][ T5513] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   64.511846][ T5513] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.527091][ T5513] 9pnet_fd: Insufficient options for proto=fd
[   64.536888][ T5527] vcan0: tx drop: invalid da for name 0x0000000000000003
[   64.551042][ T5527] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   64.653714][ T5539] netem: change failed
[   64.712882][ T5552] __nla_validate_parse: 1 callbacks suppressed
[   64.712896][ T5552] netlink: 28 bytes leftover after parsing attributes in process `syz.4.744'.
[   64.728055][ T5552] unsupported nla_type 24929
[   64.779911][ T5547] Driver unsupported XDP return value 0 on prog  (id 580) dev N/A, expect packet loss!
[   64.884650][ T5577] loop0: detected capacity change from 0 to 512
[   64.925673][ T5577] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.003582][ T5585] loop4: detected capacity change from 0 to 512
[   65.010389][ T5585] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   65.024539][ T5587] netlink: 32 bytes leftover after parsing attributes in process `syz.3.760'.
[   65.054609][ T5585] EXT4-fs (loop4): 1 truncate cleaned up
[   65.080529][ T5595] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=5595 comm=syz.3.763
[   65.109030][ T5595] loop3: detected capacity change from 0 to 1024
[   65.122616][ T5597] serio: Serial port ptm0
[   65.131470][ T5595] EXT4-fs: Ignoring removed oldalloc option
[   65.137407][ T5595] EXT4-fs: inline encryption not supported
[   65.144104][ T5595] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   65.156214][ T5595] JBD2: no valid journal superblock found
[   65.161968][ T5595] EXT4-fs (loop3): Could not load journal inode
[   65.241250][ T5607] loop3: detected capacity change from 0 to 512
[   65.248161][ T5607] EXT4-fs: Ignoring removed bh option
[   65.256217][ T5605] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   65.282448][ T5607] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.293370][ T5600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.321328][ T5611] smc: net device hsr0 applied user defined pnetid SYZ2
[   65.328075][ T5600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.335955][ T5611] FAULT_INJECTION: forcing a failure.
[   65.335955][ T5611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.349056][ T5611] CPU: 1 UID: 0 PID: 5611 Comm: syz.2.768 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   65.349090][ T5611] Tainted: [W]=WARN
[   65.349148][ T5611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.349158][ T5611] Call Trace:
[   65.349163][ T5611]  <TASK>
[   65.349169][ T5611]  __dump_stack+0x1d/0x30
[   65.349188][ T5611]  dump_stack_lvl+0xe8/0x140
[   65.349207][ T5611]  dump_stack+0x15/0x1b
[   65.349222][ T5611]  should_fail_ex+0x265/0x280
[   65.349290][ T5611]  should_fail+0xb/0x20
[   65.349304][ T5611]  should_fail_usercopy+0x1a/0x20
[   65.349322][ T5611]  _copy_from_iter+0xd2/0xe80
[   65.349409][ T5611]  ? __build_skb_around+0x1ab/0x200
[   65.349434][ T5611]  ? __alloc_skb+0x223/0x320
[   65.349503][ T5611]  netlink_sendmsg+0x471/0x6b0
[   65.349521][ T5611]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.349538][ T5611]  __sock_sendmsg+0x145/0x180
[   65.349559][ T5611]  ____sys_sendmsg+0x31e/0x4e0
[   65.349577][ T5611]  ___sys_sendmsg+0x17b/0x1d0
[   65.349602][ T5611]  __x64_sys_sendmsg+0xd4/0x160
[   65.349628][ T5611]  x64_sys_call+0x191e/0x3000
[   65.349647][ T5611]  do_syscall_64+0xd2/0x200
[   65.349693][ T5611]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   65.349720][ T5611]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   65.349747][ T5611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.349766][ T5611] RIP: 0033:0x7fc39874f749
[   65.349779][ T5611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.349851][ T5611] RSP: 002b:00007fc3971af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.349867][ T5611] RAX: ffffffffffffffda RBX: 00007fc3989a5fa0 RCX: 00007fc39874f749
[   65.349878][ T5611] RDX: 0000000000000800 RSI: 0000200000001a80 RDI: 0000000000000006
[   65.349888][ T5611] RBP: 00007fc3971af090 R08: 0000000000000000 R09: 0000000000000000
[   65.349899][ T5611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.349909][ T5611] R13: 00007fc3989a6038 R14: 00007fc3989a5fa0 R15: 00007fff394a9f18
[   65.349925][ T5611]  </TASK>
[   65.563545][ T3322] EXT4-fs unmount: 22 callbacks suppressed
[   65.563559][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.590136][ T5617] loop2: detected capacity change from 0 to 1024
[   65.596862][ T5617] ext4: Bad value for 'stripe'
[   65.615063][ T5617] syz_tun: refused to change device tx_queue_len
[   65.669612][ T5631] xt_nfacct: accounting object `syz1' does not exist
[   65.703688][ T5629] can: request_module (can-proto-0) failed.
[   65.703705][ T5634] netlink: 332 bytes leftover after parsing attributes in process `syz.4.779'.
[   65.711669][ T1047] hid_parser_main: 22 callbacks suppressed
[   65.711686][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4
[   65.732184][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2
[   65.739878][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.747522][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.755183][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.762864][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.770530][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.778164][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.785846][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.793661][ T1047] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0
[   65.803209][ T1047] hid-generic 0000:3000000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   65.845888][   T29] kauditd_printk_skb: 1092 callbacks suppressed
[   65.845902][   T29] audit: type=1326 audit(1764134873.809:7135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5639 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   65.885010][ T5642] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5642 comm=syz.2.783
[   65.886927][   T29] audit: type=1326 audit(1764134873.849:7136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   65.926279][   T29] audit: type=1326 audit(1764134873.889:7137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   65.941698][ T5648] 9p: Unknown access argument : -22
[   65.949670][   T29] audit: type=1326 audit(1764134873.889:7138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   65.978267][   T29] audit: type=1326 audit(1764134873.889:7139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.001470][   T29] audit: type=1326 audit(1764134873.889:7140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.001751][ T5646] loop2: detected capacity change from 0 to 256
[   66.024950][   T29] audit: type=1326 audit(1764134873.889:7141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.024981][   T29] audit: type=1326 audit(1764134873.889:7142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.025017][   T29] audit: type=1326 audit(1764134873.889:7143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.025045][   T29] audit: type=1326 audit(1764134873.889:7144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5640 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b7f2f749 code=0x7ffc0000
[   66.130720][ T5646] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   66.148068][ T5661] FAULT_INJECTION: forcing a failure.
[   66.148068][ T5661] name failslab, interval 1, probability 0, space 0, times 0
[   66.160822][ T5661] CPU: 0 UID: 0 PID: 5661 Comm: syz.0.789 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   66.160852][ T5661] Tainted: [W]=WARN
[   66.160858][ T5661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   66.160893][ T5661] Call Trace:
[   66.160976][ T5661]  <TASK>
[   66.160982][ T5661]  __dump_stack+0x1d/0x30
[   66.161003][ T5661]  dump_stack_lvl+0xe8/0x140
[   66.161057][ T5661]  dump_stack+0x15/0x1b
[   66.161075][ T5661]  should_fail_ex+0x265/0x280
[   66.161190][ T5661]  should_failslab+0x8c/0xb0
[   66.161222][ T5661]  kmem_cache_alloc_noprof+0x50/0x480
[   66.161265][ T5661]  ? skb_clone+0x151/0x1f0
[   66.161283][ T5661]  skb_clone+0x151/0x1f0
[   66.161299][ T5661]  __netlink_deliver_tap+0x2c9/0x500
[   66.161323][ T5661]  netlink_unicast+0x66b/0x690
[   66.161363][ T5661]  netlink_sendmsg+0x58b/0x6b0
[   66.161386][ T5661]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.161405][ T5661]  __sock_sendmsg+0x145/0x180
[   66.161427][ T5661]  sock_write_iter+0x1a7/0x1f0
[   66.161525][ T5661]  do_iter_readv_writev+0x4a1/0x540
[   66.161553][ T5661]  vfs_writev+0x2df/0x8b0
[   66.161719][ T5661]  do_writev+0xe7/0x210
[   66.161746][ T5661]  __x64_sys_writev+0x45/0x50
[   66.161839][ T5661]  x64_sys_call+0x1e9a/0x3000
[   66.161951][ T5661]  do_syscall_64+0xd2/0x200
[   66.161974][ T5661]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   66.161998][ T5661]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   66.162026][ T5661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.162132][ T5661] RIP: 0033:0x7fe325b4f749
[   66.162146][ T5661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.162161][ T5661] RSP: 002b:00007fe3245b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   66.162178][ T5661] RAX: ffffffffffffffda RBX: 00007fe325da5fa0 RCX: 00007fe325b4f749
[   66.162189][ T5661] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: 0000000000000006
[   66.162202][ T5661] RBP: 00007fe3245b7090 R08: 0000000000000000 R09: 0000000000000000
[   66.162263][ T5661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.162275][ T5661] R13: 00007fe325da6038 R14: 00007fe325da5fa0 R15: 00007fff5b2e7db8
[   66.162290][ T5661]  </TASK>
[   66.427680][ T5673] pim6reg1: entered promiscuous mode
[   66.433114][ T5673] pim6reg1: entered allmulticast mode
[   66.443871][ T5673] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1340
[   66.503743][ T5682] loop4: detected capacity change from 0 to 1024
[   66.511517][ T5682] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   66.520981][ T5682] 9pnet_fd: Insufficient options for proto=fd
[   66.550950][ T5686] hub 2-0:1.0: USB hub found
[   66.555628][ T5686] hub 2-0:1.0: 8 ports detected
[   66.568546][ T5690] FAULT_INJECTION: forcing a failure.
[   66.568546][ T5690] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.581647][ T5690] CPU: 1 UID: 0 PID: 5690 Comm: +}[@ Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   66.581683][ T5690] Tainted: [W]=WARN
[   66.581690][ T5690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   66.581703][ T5690] Call Trace:
[   66.581710][ T5690]  <TASK>
[   66.581807][ T5690]  __dump_stack+0x1d/0x30
[   66.581874][ T5690]  dump_stack_lvl+0xe8/0x140
[   66.581897][ T5690]  dump_stack+0x15/0x1b
[   66.581917][ T5690]  should_fail_ex+0x265/0x280
[   66.581986][ T5690]  should_fail+0xb/0x20
[   66.582003][ T5690]  should_fail_usercopy+0x1a/0x20
[   66.582022][ T5690]  _copy_to_user+0x20/0xa0
[   66.582049][ T5690]  simple_read_from_buffer+0xb5/0x130
[   66.582146][ T5690]  proc_fail_nth_read+0x10e/0x150
[   66.582225][ T5690]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   66.582256][ T5690]  vfs_read+0x1a8/0x770
[   66.582279][ T5690]  ? __rcu_read_unlock+0x4f/0x70
[   66.582304][ T5690]  ? __fget_files+0x184/0x1c0
[   66.582335][ T5690]  ksys_read+0xda/0x1a0
[   66.582417][ T5690]  __x64_sys_read+0x40/0x50
[   66.582442][ T5690]  x64_sys_call+0x27c0/0x3000
[   66.582479][ T5690]  do_syscall_64+0xd2/0x200
[   66.582498][ T5690]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   66.582523][ T5690]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   66.582577][ T5690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.582679][ T5690] RIP: 0033:0x7fd4b7f2e15c
[   66.582693][ T5690] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   66.582759][ T5690] RSP: 002b:00007fd4b698f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   66.582777][ T5690] RAX: ffffffffffffffda RBX: 00007fd4b8185fa0 RCX: 00007fd4b7f2e15c
[   66.582789][ T5690] RDX: 000000000000000f RSI: 00007fd4b698f0a0 RDI: 0000000000000004
[   66.582800][ T5690] RBP: 00007fd4b698f090 R08: 0000000000000000 R09: 0000000000000000
[   66.582812][ T5690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.582850][ T5690] R13: 00007fd4b8186038 R14: 00007fd4b8185fa0 R15: 00007ffdb1a59be8
[   66.582868][ T5690]  </TASK>
[   66.796061][ T5694] netlink: 96 bytes leftover after parsing attributes in process `syz.2.800'.
[   66.849258][ T5702] netlink: 24 bytes leftover after parsing attributes in process `syz.0.804'.
[   66.910267][ T5715] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   66.910534][ T5702] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5702 comm=syz.0.804
[   67.109110][ T5728] loop0: detected capacity change from 0 to 512
[   67.120712][ T5728] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.133395][ T5728] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.305633][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.581253][ T5741] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.589866][ T5741] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.601790][ T5741] loop0: detected capacity change from 0 to 128
[   67.701196][ T5746] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.760086][ T5746] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address
[   67.887857][ T5746] bond0: (slave ip6tnl0): Error -95 calling set_mac_address
[   68.081120][ T5758] netlink: 4 bytes leftover after parsing attributes in process `syz.3.818'.
[   68.385366][ T5805] netlink: 766 bytes leftover after parsing attributes in process `syz.3.827'.
[   68.420693][ T5805] __vm_enough_memory: pid: 5805, comm: syz.3.827, bytes: 4503599627366400 not enough memory for the allocation
[   68.440857][ T5805] delete_channel: no stack
[   68.445364][ T5805] delete_channel: no stack
[   68.470837][ T5817] netlink: 12 bytes leftover after parsing attributes in process `syz.1.830'.
[   68.532119][ T3402] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   68.598433][ T5843] No such timeout policy "syz1"
[   68.661378][ T5854] loop2: detected capacity change from 0 to 1024
[   68.680679][ T5854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   68.693493][ T5854] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.705863][ T5858] sctp: [Deprecated]: syz.3.838 (pid 5858) Use of int in max_burst socket option deprecated.
[   68.705863][ T5858] Use struct sctp_assoc_value instead
[   68.713999][ T5854] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm wg1: Freeing blocks not in datazone - block = 0, count = 16
[   68.748829][ T5858] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   68.818755][  T122] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:4: bg 0: block 112: padding at end of block bitmap is not set
[   68.843944][  T122] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   68.856394][  T122] EXT4-fs (loop2): This should not happen!! Data will be lost
[   68.856394][  T122] 
[   68.870780][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   68.887864][ T5865] netlink: 12 bytes leftover after parsing attributes in process `syz.3.847'.
[   68.920568][ T5868] SELinux: failed to load policy
[   68.956224][ T5869] random: crng reseeded on system resumption
[   68.979795][ T5869] loop4: detected capacity change from 0 to 164
[   68.990055][ T5875] loop2: detected capacity change from 0 to 512
[   68.997640][ T5869] ISOFS: unable to read i-node block
[   69.003334][ T5869] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   69.013557][ T5875] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.029472][ T5875] ext4 filesystem being mounted at /175/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.051344][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.154211][ T5891] macvtap1: entered promiscuous mode
[   69.159535][ T5891] vlan0: entered promiscuous mode
[   69.164603][ T5891] macvtap1: entered allmulticast mode
[   69.169991][ T5891] vlan0: entered allmulticast mode
[   69.175108][ T5891] veth0_vlan: entered allmulticast mode
[   69.244877][ T5893] loop2: detected capacity change from 0 to 128
[   69.252262][ T5893] FAT-fs (loop2): Directory bread(block 162) failed
[   69.258897][ T5893] FAT-fs (loop2): Directory bread(block 163) failed
[   69.266463][ T5893] FAT-fs (loop2): Directory bread(block 164) failed
[   69.268798][ T5896] lo speed is unknown, defaulting to 1000
[   69.273149][ T5893] FAT-fs (loop2): Directory bread(block 165) failed
[   69.286439][ T5893] FAT-fs (loop2): Directory bread(block 166) failed
[   69.293158][ T5893] FAT-fs (loop2): Directory bread(block 167) failed
[   69.299949][ T5893] FAT-fs (loop2): Directory bread(block 168) failed
[   69.306906][ T5893] FAT-fs (loop2): Directory bread(block 169) failed
[   69.323556][ T5893] FAT-fs (loop2): Directory bread(block 162) failed
[   69.330262][ T5893] FAT-fs (loop2): Directory bread(block 163) failed
[   69.337181][ T5893] bio_check_eod: 15 callbacks suppressed
[   69.337190][ T5893] syz.2.857: attempt to access beyond end of device
[   69.337190][ T5893] loop2: rw=3, sector=226, nr_sectors = 6 limit=128
[   69.358720][ T5893] syz.2.857: attempt to access beyond end of device
[   69.358720][ T5893] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128
[   69.374319][ T5893] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   69.381527][ T5893] IPv6: NLM_F_CREATE should be set when creating new route
[   69.388724][ T5893] IPv6: NLM_F_CREATE should be set when creating new route
[   69.395924][ T5893] IPv6: NLM_F_CREATE should be set when creating new route
[   69.405142][ T5893] syz.2.857: attempt to access beyond end of device
[   69.405142][ T5893] loop2: rw=3, sector=234, nr_sectors = 6 limit=128
[   69.417131][ T5901] loop3: detected capacity change from 0 to 2048
[   69.418592][ T5893] syz.2.857: attempt to access beyond end of device
[   69.418592][ T5893] loop2: rw=2051, sector=240, nr_sectors = 2 limit=128
[   69.459969][ T5901] EXT4-fs (loop3): failed to initialize system zone (-117)
[   69.467209][ T5901] EXT4-fs (loop3): mount failed
[   69.530977][ T5912] netlink: 12 bytes leftover after parsing attributes in process `syz.1.862'.
[   69.650120][ T5929] No such timeout policy "syz1"
[   69.756862][ T5943] netlink: 12 bytes leftover after parsing attributes in process `syz.3.874'.
[   69.843693][ T5949] loop3: detected capacity change from 0 to 1024
[   69.850611][ T5949] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.861430][ T5949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.961438][ T5961] No such timeout policy "syz1"
[   70.126489][ T5974] netlink: 12 bytes leftover after parsing attributes in process `syz.2.886'.
[   70.305953][ T5982] random: crng reseeded on system resumption
[   70.321367][ T5982] loop4: detected capacity change from 0 to 164
[   71.041768][   T29] kauditd_printk_skb: 511 callbacks suppressed
[   71.041783][   T29] audit: type=1400 audit(1764134879.009:7656): avc:  denied  { create } for  pid=5985 comm="syz.2.891" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.087830][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.097050][ T5982] ISOFS: unable to read i-node block
[   71.104907][ T5982] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   71.132591][   T29] audit: type=1400 audit(1764134879.089:7657): avc:  denied  { write } for  pid=5985 comm="syz.2.891" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.152785][   T29] audit: type=1400 audit(1764134879.089:7658): avc:  denied  { nlmsg_write } for  pid=5985 comm="syz.2.891" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.210890][ T6001] No such timeout policy "syz1"
[   71.275960][ T6004] netlink: 332 bytes leftover after parsing attributes in process `syz.1.894'.
[   71.386461][ T5998] loop3: detected capacity change from 0 to 512
[   71.410704][ T5998] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   71.418756][ T5998] EXT4-fs (loop3): orphan cleanup on readonly fs
[   71.418887][ T6012] loop4: detected capacity change from 0 to 2048
[   71.434960][ T5998] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.890: corrupted inode contents
[   71.446914][ T5998] EXT4-fs (loop3): Remounting filesystem read-only
[   71.453509][ T5998] EXT4-fs (loop3): 1 truncate cleaned up
[   71.459310][  T289] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   71.469835][  T289] Quota error (device loop3): write_blk: dquota write failed
[   71.477192][  T289] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[   71.487179][  T289] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   71.490270][   T29] audit: type=1326 audit(1764134879.449:7659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6016 comm="syz.0.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe325b4f749 code=0x7ffc0000
[   71.497793][  T289] Quota error (device loop3): write_blk: dquota write failed
[   71.521084][   T29] audit: type=1326 audit(1764134879.449:7660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6016 comm="syz.0.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe325b4f749 code=0x7ffc0000
[   71.528413][  T289] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[   71.528603][  T289] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[   71.551707][   T29] audit: type=1326 audit(1764134879.449:7661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6016 comm="syz.0.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe325b4f749 code=0x7ffc0000
[   71.595604][ T5998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.599571][ T6012]  loop4: p1 < > p4
[   71.628739][ T6012] loop4: p4 size 8388608 extends beyond EOD, truncated
[   71.635242][ T6022] netlink: 12 bytes leftover after parsing attributes in process `syz.0.898'.
[   71.646386][ T6021] program syz.0.898 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.715834][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.883308][ T6040] loop3: detected capacity change from 0 to 512
[   71.903794][ T6040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.935851][ T6040] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.046506][ T6044] loop2: detected capacity change from 0 to 128
[   72.054755][ T6044] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   72.067311][ T6044] ext4 filesystem being mounted at /182/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   72.110734][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.139678][ T6048] No such timeout policy "syz1"
[   72.166604][ T6052] loop3: detected capacity change from 0 to 1024
[   72.173963][ T6052] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   72.184211][ T6052] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   72.195233][ T6052] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   72.206468][ T6052] JBD2: no valid journal superblock found
[   72.206574][ T3325] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.212220][ T6052] EXT4-fs (loop3): Could not load journal inode
[   72.300070][ T6052] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.307296][ T6052] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.350474][ T6052] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.359863][ T6052] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.404282][   T52] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.424149][   T52] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.450804][   T52] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.468851][   T52] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   72.555110][ T6078] No such timeout policy "syz1"
[   72.588893][ T6079] loop2: detected capacity change from 0 to 8192
[   72.778006][ T6097] syzkaller0: entered promiscuous mode
[   72.791400][ T6097] syzkaller0 (unregistering): left promiscuous mode
[   72.836993][ T6099] 9pnet_fd: Insufficient options for proto=fd
[   72.891030][ T6101] netlink: 32 bytes leftover after parsing attributes in process `syz.4.923'.
[   72.970515][ T6103] 9pnet_fd: Insufficient options for proto=fd
[   73.755034][ T6123] No such timeout policy "syz1"
[   73.857503][ T6127] loop4: detected capacity change from 0 to 1024
[   73.894646][ T6127] EXT4-fs: inline encryption not supported
[   73.906004][ T6135] loop3: detected capacity change from 0 to 512
[   73.916519][ T6127] EXT4-fs: Ignoring removed i_version option
[   73.923293][ T6135] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.952390][ T6127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.965805][ T6135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.042662][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.055151][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.072794][ T6145] 9pnet_fd: Insufficient options for proto=fd
[   74.154816][ T6155] loop3: detected capacity change from 0 to 512
[   74.170328][ T6155] EXT4-fs: Ignoring removed i_version option
[   74.176369][ T6155] EXT4-fs: Ignoring removed bh option
[   74.181919][ T6156] loop4: detected capacity change from 0 to 512
[   74.546456][ T6162] No such timeout policy "syz1"
[   74.664712][ T6155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.687160][ T6156] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.711343][ T6155] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.729142][ T6156] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.743447][ T6155] x_tables: duplicate underflow at hook 3
[   74.758696][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.759400][ T6172] loop0: detected capacity change from 0 to 512
[   74.825532][ T6181] loop2: detected capacity change from 0 to 512
[   74.837359][ T6181] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.847041][ T6172] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   74.855036][ T6172] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   74.877217][ T6137] syz.1.938 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[   74.891195][ T6137] CPU: 0 UID: 0 PID: 6137 Comm: syz.1.938 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   74.891232][ T6137] Tainted: [W]=WARN
[   74.891239][ T6137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   74.891251][ T6137] Call Trace:
[   74.891257][ T6137]  <TASK>
[   74.891264][ T6137]  __dump_stack+0x1d/0x30
[   74.891316][ T6137]  dump_stack_lvl+0xe8/0x140
[   74.891337][ T6137]  dump_stack+0x15/0x1b
[   74.891418][ T6137]  dump_header+0x81/0x220
[   74.891438][ T6137]  oom_kill_process+0x342/0x400
[   74.891474][ T6137]  out_of_memory+0x979/0xb80
[   74.891544][ T6137]  try_charge_memcg+0x610/0xa10
[   74.891578][ T6137]  obj_cgroup_charge_pages+0xa6/0x150
[   74.891598][ T6137]  __memcg_kmem_charge_page+0x9f/0x170
[   74.891618][ T6137]  __alloc_frozen_pages_noprof+0x188/0x360
[   74.891682][ T6137]  alloc_pages_mpol+0xb3/0x260
[   74.891700][ T6137]  ? alloc_pages_noprof+0x61/0x130
[   74.891723][ T6137]  alloc_pages_noprof+0x90/0x130
[   74.891748][ T6137]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   74.891811][ T6137]  __kvmalloc_node_noprof+0x483/0x670
[   74.891840][ T6137]  ? ip_set_alloc+0x24/0x30
[   74.891896][ T6137]  ? ip_set_alloc+0x24/0x30
[   74.891988][ T6137]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   74.892149][ T6137]  ip_set_alloc+0x24/0x30
[   74.892182][ T6137]  hash_netiface_create+0x282/0x740
[   74.892218][ T6137]  ? __pfx_hash_netiface_create+0x10/0x10
[   74.892322][ T6137]  ip_set_create+0x3cc/0x970
[   74.892394][ T6137]  ? __nla_parse+0x40/0x60
[   74.892471][ T6137]  nfnetlink_rcv_msg+0x4c6/0x590
[   74.892544][ T6137]  netlink_rcv_skb+0x123/0x220
[   74.892578][ T6137]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   74.892609][ T6137]  nfnetlink_rcv+0x167/0x16c0
[   74.892632][ T6137]  ? kmem_cache_free+0xe4/0x3d0
[   74.892743][ T6137]  ? __kfree_skb+0x109/0x150
[   74.892773][ T6137]  ? nlmon_xmit+0x4f/0x60
[   74.892832][ T6137]  ? consume_skb+0x49/0x150
[   74.892860][ T6137]  ? nlmon_xmit+0x4f/0x60
[   74.892881][ T6137]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   74.892918][ T6137]  ? __dev_queue_xmit+0x1200/0x2000
[   74.893005][ T6137]  ? __dev_queue_xmit+0x182/0x2000
[   74.893024][ T6137]  ? ref_tracker_free+0x37d/0x3e0
[   74.893130][ T6137]  ? __netlink_deliver_tap+0x4dc/0x500
[   74.893151][ T6137]  netlink_unicast+0x5c0/0x690
[   74.893183][ T6137]  netlink_sendmsg+0x58b/0x6b0
[   74.893206][ T6137]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.893227][ T6137]  __sock_sendmsg+0x145/0x180
[   74.893401][ T6137]  ____sys_sendmsg+0x31e/0x4e0
[   74.893425][ T6137]  ___sys_sendmsg+0x17b/0x1d0
[   74.893453][ T6137]  __x64_sys_sendmsg+0xd4/0x160
[   74.893476][ T6137]  x64_sys_call+0x191e/0x3000
[   74.893554][ T6137]  do_syscall_64+0xd2/0x200
[   74.893575][ T6137]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   74.893621][ T6137]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   74.893651][ T6137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.893674][ T6137] RIP: 0033:0x7fa2df58f749
[   74.893691][ T6137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.893710][ T6137] RSP: 002b:00007fa2ddfef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.893769][ T6137] RAX: ffffffffffffffda RBX: 00007fa2df7e5fa0 RCX: 00007fa2df58f749
[   74.893781][ T6137] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[   74.893792][ T6137] RBP: 00007fa2df613f91 R08: 0000000000000000 R09: 0000000000000000
[   74.893804][ T6137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.893815][ T6137] R13: 00007fa2df7e6038 R14: 00007fa2df7e5fa0 R15: 00007ffe718d4a48
[   74.893835][ T6137]  </TASK>
[   74.893842][ T6137] memory: usage 307200kB, limit 307200kB, failcnt 311
[   74.895110][ T6172] System zones: 
[   74.905061][ T6137] memory+swap: usage 308360kB, limit 9007199254740988kB, failcnt 0
[   74.905078][ T6137] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[   74.905091][ T6137] Memory cgroup stats for /syz1:
[   74.905329][ T6137] cache 0
[   74.908908][ T6172] 0-1
[   74.918979][ T6137] rss 4096
[   74.918989][ T6137] shmem 0
[   74.919018][ T6137] mapped_file 0
[   74.922287][ T6172] , 15-15
[   74.925202][ T6137] dirty 0
[   74.929563][ T6172] , 18-18
[   74.934079][ T6137] writeback 0
[   74.934087][ T6137] workingset_refault_anon 99
[   74.934094][ T6137] workingset_refault_file 1126
[   74.934179][ T6137] swap 1187840
[   74.938267][ T6172] , 34-34
[   74.942584][ T6137] swapcached 8192
[   74.942593][ T6137] pgpgin 66040
[   74.942600][ T6137] pgpgout 66035
[   74.947414][ T6172] 
[   74.956223][ T6183] loop3: detected capacity change from 0 to 512
[   74.956822][ T6137] pgfault 76165
[   74.956903][ T6137] pgmajfault 81
[   74.969917][ T6172] EXT4-fs (loop0): orphan cleanup on readonly fs
[   74.973448][ T6137] inactive_anon 8192
[   74.978294][ T6172] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   74.983293][ T6137] active_anon 0
[   74.988205][ T6172] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   74.994004][ T6137] inactive_file 12288
[   75.003855][ T6137] active_file 0
[   75.003864][ T6137] unevictable 0
[   75.008371][ T6172] EXT4-fs (loop0): 1 truncate cleaned up
[   75.009060][ T6172] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.014023][ T6137] hierarchical_memory_limit 314572800
[   75.060887][ T6181] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.062970][ T6137] hierarchical_memsw_limit 9223372036854771712
[   75.078907][ T6183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0007-000000000000 r/w without journal. Quota mode: writeback.
[   75.080676][ T6137] total_cache 0
[   75.086045][ T6183] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.091282][ T6137] total_rss 4096
[   75.458565][ T6137] total_shmem 0
[   75.462057][ T6137] total_mapped_file 0
[   75.466009][ T6137] total_dirty 0
[   75.469498][ T6137] total_writeback 0
[   75.473277][ T6137] total_workingset_refault_anon 99
[   75.478355][ T6137] total_workingset_refault_file 1126
[   75.483628][ T6137] total_swap 1187840
[   75.487492][ T6137] total_swapcached 8192
[   75.491632][ T6137] total_pgpgin 66040
[   75.495579][ T6137] total_pgpgout 66035
[   75.499547][ T6137] total_pgfault 76165
[   75.503498][ T6137] total_pgmajfault 81
[   75.507625][ T6137] total_inactive_anon 8192
[   75.512054][ T6137] total_active_anon 0
[   75.516004][ T6137] total_inactive_file 12288
[   75.520491][ T6137] total_active_file 0
[   75.524449][ T6137] total_unevictable 0
[   75.528416][ T6137] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.938,pid=6136,uid=0
[   75.542879][ T6137] Memory cgroup out of memory: Killed process 6136 (syz.1.938) total-vm:102572kB, anon-rss:1140kB, file-rss:30504kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:0
[   75.560420][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.571283][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.581221][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0007-000000000000.
[   75.633278][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.651369][ T6192] binfmt_misc: register: failed to install interpreter file ./file0
[   75.670022][ T6198] No such timeout policy "syz1"
[   75.724483][ T6204] bridge0: port 3(gretap0) entered blocking state
[   75.730984][ T6204] bridge0: port 3(gretap0) entered disabled state
[   75.737719][ T6204] gretap0: entered allmulticast mode
[   75.738227][ T6204] gretap0: entered promiscuous mode
[   75.748750][ T6204] bridge0: port 3(gretap0) entered blocking state
[   75.755214][ T6204] bridge0: port 3(gretap0) entered forwarding state
[   75.822940][ T6213] netlink: 7 bytes leftover after parsing attributes in process `syz.3.961'.
[   75.861177][ T6213] netlink: 7 bytes leftover after parsing attributes in process `syz.3.961'.
[   75.870707][ T6217] loop4: detected capacity change from 0 to 512
[   75.886386][ T6213] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[   75.899006][ T6217] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.931803][ T6217] EXT4-fs (loop4): 1 truncate cleaned up
[   75.937937][ T6217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.963003][ T6221] netlink: 60 bytes leftover after parsing attributes in process `syz.3.964'.
[   75.975929][ T6217] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.008569][ T6223] loop0: detected capacity change from 0 to 1024
[   76.024652][ T6200] random: crng reseeded on system resumption
[   76.025763][ T6223] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.064285][ T6200] loop2: detected capacity change from 0 to 164
[   76.088334][ T6200] ISOFS: unable to read i-node block
[   76.094564][ T6200] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   76.116067][ T6223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.130434][ T6231] loop4: detected capacity change from 0 to 1024
[   76.137220][ T6231] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.146197][ T6234] No such timeout policy "syz1"
[   76.177583][   T29] kauditd_printk_skb: 543 callbacks suppressed
[   76.177605][   T29] audit: type=1326 audit(1764134884.139:8202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.216992][ T6238] loop3: detected capacity change from 0 to 512
[   76.233567][   T29] audit: type=1326 audit(1764134884.179:8203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.257095][   T29] audit: type=1326 audit(1764134884.179:8204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.280415][   T29] audit: type=1326 audit(1764134884.179:8205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.303788][   T29] audit: type=1326 audit(1764134884.179:8206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.327119][   T29] audit: type=1326 audit(1764134884.179:8207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.350839][   T29] audit: type=1326 audit(1764134884.179:8208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.374181][   T29] audit: type=1326 audit(1764134884.179:8209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   76.397717][   T29] audit: type=1326 audit(1764134884.179:8210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc39874f783 code=0x7ffc0000
[   76.420915][   T29] audit: type=1326 audit(1764134884.179:8211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6236 comm="syz.2.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc39874f783 code=0x7ffc0000
[   76.447500][ T6238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.460608][ T6231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.476203][ T6238] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.636537][ T6254] 8021q: adding VLAN 0 to HW filter on device bond1
[   76.679846][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.804191][ T6270] loop3: detected capacity change from 0 to 512
[   76.810822][ T6270] ext2: Unknown parameter 'fowner>00000000000000000000'
[   76.821964][ T6270] loop6: detected capacity change from 0 to 7
[   76.828426][ T6270] Buffer I/O error on dev loop6, logical block 0, async page read
[   76.855316][ T6270] Buffer I/O error on dev loop6, logical block 0, async page read
[   76.863187][ T6270]  loop6: unable to read partition table
[   76.879305][ T6270] loop_reread_partitions: partition scan of loop6 (�被x������ڬ��dG�����ݡ�����
[   76.879305][ T6270] 
) failed (rc=-5)
[   76.953380][ T6270] lo speed is unknown, defaulting to 1000
[   76.962426][ T6274] 9pnet_fd: Insufficient options for proto=fd
[   76.969120][ T6274] xt_recent: Unsupported userspace flags (000000b1)
[   77.048510][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.058281][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.073252][ T6279] No such timeout policy "syz1"
[   77.228041][ T6293] netlink: 332 bytes leftover after parsing attributes in process `syz.4.988'.
[   77.344573][ T6289] random: crng reseeded on system resumption
[   77.356845][ T6289] loop0: detected capacity change from 0 to 164
[   77.371416][ T6289] ISOFS: unable to read i-node block
[   77.375754][ T6308] netlink: 'syz.3.993': attribute type 1 has an invalid length.
[   77.376799][ T6289] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   77.392552][ T6308] bond1: entered promiscuous mode
[   77.398726][ T6308] 8021q: adding VLAN 0 to HW filter on device bond1
[   77.417745][ T6308] loop3: detected capacity change from 0 to 164
[   77.501142][ T6313] No such timeout policy "syz1"
[   77.771822][ T3402] hid_parser_main: 51 callbacks suppressed
[   77.771843][ T3402] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[   77.785551][ T3402] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[   77.803323][ T3402] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3
[   77.813156][ T3402] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   77.824139][ T6339] No such timeout policy "syz1"
[   77.959728][ T6303] syz.1.992 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[   77.973532][ T6303] CPU: 0 UID: 0 PID: 6303 Comm: syz.1.992 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   77.973569][ T6303] Tainted: [W]=WARN
[   77.973577][ T6303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   77.973591][ T6303] Call Trace:
[   77.973597][ T6303]  <TASK>
[   77.973605][ T6303]  __dump_stack+0x1d/0x30
[   77.973628][ T6303]  dump_stack_lvl+0xe8/0x140
[   77.973651][ T6303]  dump_stack+0x15/0x1b
[   77.973696][ T6303]  dump_header+0x81/0x220
[   77.973761][ T6303]  oom_kill_process+0x342/0x400
[   77.973791][ T6303]  out_of_memory+0x979/0xb80
[   77.973821][ T6303]  try_charge_memcg+0x610/0xa10
[   77.973923][ T6303]  obj_cgroup_charge_pages+0xa6/0x150
[   77.973947][ T6303]  __memcg_kmem_charge_page+0x9f/0x170
[   77.973995][ T6303]  __alloc_frozen_pages_noprof+0x188/0x360
[   77.974052][ T6303]  alloc_pages_mpol+0xb3/0x260
[   77.974099][ T6303]  ? alloc_pages_noprof+0xf4/0x130
[   77.974120][ T6303]  alloc_pages_noprof+0x90/0x130
[   77.974154][ T6303]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   77.974251][ T6303]  __kvmalloc_node_noprof+0x483/0x670
[   77.974282][ T6303]  ? ip_set_alloc+0x24/0x30
[   77.974312][ T6303]  ? ip_set_alloc+0x24/0x30
[   77.974399][ T6303]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   77.974432][ T6303]  ip_set_alloc+0x24/0x30
[   77.974512][ T6303]  hash_netiface_create+0x282/0x740
[   77.974549][ T6303]  ? __pfx_hash_netiface_create+0x10/0x10
[   77.974605][ T6303]  ip_set_create+0x3cc/0x970
[   77.974711][ T6303]  ? __nla_parse+0x40/0x60
[   77.974736][ T6303]  nfnetlink_rcv_msg+0x4c6/0x590
[   77.974893][ T6303]  netlink_rcv_skb+0x123/0x220
[   77.975005][ T6303]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   77.975107][ T6303]  nfnetlink_rcv+0x167/0x16c0
[   77.975133][ T6303]  ? kmem_cache_free+0xe4/0x3d0
[   77.975205][ T6303]  ? __kfree_skb+0x109/0x150
[   77.975300][ T6303]  ? nlmon_xmit+0x4f/0x60
[   77.975323][ T6303]  ? consume_skb+0x49/0x150
[   77.975397][ T6303]  ? nlmon_xmit+0x4f/0x60
[   77.975418][ T6303]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   77.975563][ T6303]  ? __dev_queue_xmit+0x1200/0x2000
[   77.975584][ T6303]  ? __dev_queue_xmit+0x182/0x2000
[   77.975606][ T6303]  ? ref_tracker_free+0x37d/0x3e0
[   77.975721][ T6303]  ? __netlink_deliver_tap+0x4dc/0x500
[   77.975745][ T6303]  netlink_unicast+0x5c0/0x690
[   77.975810][ T6303]  netlink_sendmsg+0x58b/0x6b0
[   77.975835][ T6303]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.975893][ T6303]  __sock_sendmsg+0x145/0x180
[   77.975918][ T6303]  ____sys_sendmsg+0x31e/0x4e0
[   77.975938][ T6303]  ___sys_sendmsg+0x17b/0x1d0
[   77.976046][ T6303]  __x64_sys_sendmsg+0xd4/0x160
[   77.976139][ T6303]  x64_sys_call+0x191e/0x3000
[   77.976165][ T6303]  do_syscall_64+0xd2/0x200
[   77.976188][ T6303]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   77.976301][ T6303]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   77.976336][ T6303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.976397][ T6303] RIP: 0033:0x7fa2df58f749
[   77.976414][ T6303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.976433][ T6303] RSP: 002b:00007fa2ddfef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.976455][ T6303] RAX: ffffffffffffffda RBX: 00007fa2df7e5fa0 RCX: 00007fa2df58f749
[   77.976467][ T6303] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[   77.976479][ T6303] RBP: 00007fa2df613f91 R08: 0000000000000000 R09: 0000000000000000
[   77.976491][ T6303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   77.976564][ T6303] R13: 00007fa2df7e6038 R14: 00007fa2df7e5fa0 R15: 00007ffe718d4a48
[   77.976585][ T6303]  </TASK>
[   77.976591][ T6303] memory: usage 307200kB, limit 307200kB, failcnt 612
[   78.072276][ T6343] loop0: detected capacity change from 0 to 512
[   78.077308][ T6303] memory+swap: usage 308344kB, limit 9007199254740988kB, failcnt 0
[   78.077324][ T6303] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[   78.100827][ T6343] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.101524][ T6303] Memory cgroup stats for 
[   78.106875][ T6343] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.112397][ T6303] /syz1:
[   78.112681][ T6303] cache 0
[   78.387102][ T6303] rss 0
[   78.387111][ T6303] shmem 0
[   78.387118][ T6303] mapped_file 0
[   78.387124][ T6303] dirty 0
[   78.399307][ T6303] writeback 0
[   78.402580][ T6303] workingset_refault_anon 180
[   78.407356][ T6303] workingset_refault_file 1512
[   78.412187][ T6303] swap 1171456
[   78.415562][ T6303] swapcached 24576
[   78.419273][ T6303] pgpgin 70161
[   78.422705][ T6303] pgpgout 70152
[   78.426146][ T6303] pgfault 80304
[   78.429593][ T6303] pgmajfault 135
[   78.433112][ T6303] inactive_anon 0
[   78.436715][ T6303] active_anon 24576
[   78.440513][ T6303] inactive_file 0
[   78.444123][ T6303] active_file 12288
[   78.447901][ T6303] unevictable 0
[   78.451434][ T6303] hierarchical_memory_limit 314572800
[   78.456805][ T6303] hierarchical_memsw_limit 9223372036854771712
[   78.462943][ T6303] total_cache 0
[   78.466377][ T6303] total_rss 0
[   78.469650][ T6303] total_shmem 0
[   78.473080][ T6303] total_mapped_file 0
[   78.477033][ T6303] total_dirty 0
[   78.480476][ T6303] total_writeback 0
[   78.484289][ T6303] total_workingset_refault_anon 180
[   78.489493][ T6303] total_workingset_refault_file 1512
[   78.494866][ T6303] total_swap 1171456
[   78.498775][ T6303] total_swapcached 24576
[   78.503066][ T6303] total_pgpgin 70161
[   78.506945][ T6303] total_pgpgout 70152
[   78.510921][ T6303] total_pgfault 80304
[   78.514877][ T6303] total_pgmajfault 135
[   78.518916][ T6303] total_inactive_anon 0
[   78.523060][ T6303] total_active_anon 24576
[   78.527389][ T6303] total_inactive_file 0
[   78.531533][ T6303] total_active_file 12288
[   78.535833][ T6303] total_unevictable 0
[   78.539873][ T6303] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.992,pid=6301,uid=0
[   78.554861][ T6303] Memory cgroup out of memory: Killed process 6301 (syz.1.992) total-vm:102572kB, anon-rss:1260kB, file-rss:30504kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:0
[   78.669861][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.685755][ T6354] ip6t_rpfilter: unknown options
[   78.704947][ T6354] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1009'.
[   78.733932][ T6354] veth0: entered promiscuous mode
[   78.740040][ T6354] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1009'.
[   78.761439][ T6368] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1014'.
[   78.770374][ T6368] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1014'.
[   78.793360][ T6372] wg2: entered promiscuous mode
[   78.798309][ T6372] wg2: entered allmulticast mode
[   78.800595][ T6374] No such timeout policy "syz1"
[   78.838535][ T6378] loop3: detected capacity change from 0 to 1024
[   78.856447][ T6378] EXT4-fs: inline encryption not supported
[   78.871498][ T6378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.929143][ T3446] Bluetooth: hci0: Frame reassembly failed (-84)
[   78.943670][ T6378] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.1018: Allocating blocks 385-513 which overlap fs metadata
[   78.946558][ T6394] bridge0: entered promiscuous mode
[   78.963014][ T6394] macvtap1: entered allmulticast mode
[   78.968383][ T6394] bridge0: entered allmulticast mode
[   78.978404][ T6378] EXT4-fs (loop3): pa ffff888106d9c2a0: logic 16, phys. 129, len 24
[   78.986540][ T6378] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[   78.998001][ T6378] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[   79.010437][ T6378] EXT4-fs (loop3): This should not happen!! Data will be lost
[   79.010437][ T6378] 
[   79.020223][ T6378] EXT4-fs (loop3): Total free blocks count 0
[   79.026212][ T6378] EXT4-fs (loop3): Free/Dirty block details
[   79.026486][ T6398] loop0: detected capacity change from 0 to 1024
[   79.032127][ T6378] EXT4-fs (loop3): free_blocks=128
[   79.032145][ T6378] EXT4-fs (loop3): dirty_blocks=0
[   79.032157][ T6378] EXT4-fs (loop3): Block reservation details
[   79.040495][ T6399] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1018'.
[   79.043588][ T6378] EXT4-fs (loop3): i_reserved_data_blocks=0
[   79.048576][ T6399] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1018'.
[   79.064146][ T6398] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.102789][ T6398] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.181271][ T6412] No such timeout policy "syz1"
[   79.606677][ T3326] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   79.617618][ T3326] CPU: 1 UID: 0 PID: 3326 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   79.617716][ T3326] Tainted: [W]=WARN
[   79.617723][ T3326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   79.617735][ T3326] Call Trace:
[   79.617743][ T3326]  <TASK>
[   79.617750][ T3326]  __dump_stack+0x1d/0x30
[   79.617772][ T3326]  dump_stack_lvl+0xe8/0x140
[   79.617799][ T3326]  dump_stack+0x15/0x1b
[   79.617817][ T3326]  dump_header+0x81/0x220
[   79.617846][ T3326]  oom_kill_process+0x342/0x400
[   79.617873][ T3326]  out_of_memory+0x979/0xb80
[   79.617904][ T3326]  try_charge_memcg+0x610/0xa10
[   79.617937][ T3326]  charge_memcg+0x51/0xc0
[   79.617960][ T3326]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   79.618038][ T3326]  __read_swap_cache_async+0x17b/0x2d0
[   79.618063][ T3326]  swap_cluster_readahead+0x262/0x3c0
[   79.618103][ T3326]  swapin_readahead+0xde/0x800
[   79.618144][ T3326]  ? next_uptodate_folio+0x81c/0x890
[   79.618166][ T3326]  ? percpu_counter_add_batch+0xb6/0x130
[   79.618195][ T3326]  ? __rcu_read_unlock+0x4f/0x70
[   79.618244][ T3326]  ? swap_cache_get_folio+0x277/0x280
[   79.618265][ T3326]  do_swap_page+0x2ae/0x2370
[   79.618289][ T3326]  ? filemap_fault+0x842/0xb60
[   79.618320][ T3326]  ? css_rstat_updated+0xb7/0x240
[   79.618353][ T3326]  ? __pfx_default_wake_function+0x10/0x10
[   79.618400][ T3326]  handle_mm_fault+0x9a5/0x2be0
[   79.618426][ T3326]  ? vma_start_read+0x141/0x1f0
[   79.618461][ T3326]  do_user_addr_fault+0x630/0x1080
[   79.618562][ T3326]  exc_page_fault+0x62/0xa0
[   79.618594][ T3326]  asm_exc_page_fault+0x26/0x30
[   79.618663][ T3326] RIP: 0033:0x7fe325a25fd7
[   79.618679][ T3326] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 c8 f7 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d d9 f6 ea 00 48 01 d1 39 7c 24
[   79.618698][ T3326] RSP: 002b:00007fff5b2e8140 EFLAGS: 00010202
[   79.618721][ T3326] RAX: 0000001b33824000 RBX: 00000000000001b1 RCX: 0000000000013498
[   79.618733][ T3326] RDX: 00000000085bda85 RSI: 00007fff5b2e81d0 RDI: 0000000000000015
[   79.618744][ T3326] RBP: 00007fff5b2e817c R08: 000000001fe2e4c8 R09: 7fffffffffffffff
[   79.618787][ T3326] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   79.618800][ T3326] R13: 00000000000927c0 R14: 000000000001360d R15: 00007fff5b2e81d0
[   79.618819][ T3326]  </TASK>
[   79.618825][ T3326] memory: usage 307200kB, limit 307200kB, failcnt 737
[   79.853290][ T3326] memory+swap: usage 308444kB, limit 9007199254740988kB, failcnt 0
[   79.861189][ T3326] kmem: usage 307144kB, limit 9007199254740988kB, failcnt 0
[   79.868466][ T3326] Memory cgroup stats for /syz0:
[   79.868648][ T3326] cache 8192
[   79.876751][ T3326] rss 0
[   79.879497][ T3326] shmem 0
[   79.882409][ T3326] mapped_file 0
[   79.885854][ T3326] dirty 0
[   79.888787][ T3326] writeback 0
[   79.892074][ T3326] workingset_refault_anon 136
[   79.896754][ T3326] workingset_refault_file 124
[   79.901416][ T3326] swap 1273856
[   79.904772][ T3326] swapcached 16384
[   79.908550][ T3326] pgpgin 63618
[   79.911931][ T3326] pgpgout 63604
[   79.915385][ T3326] pgfault 43444
[   79.918840][ T3326] pgmajfault 90
[   79.921442][ T6426] loop2: detected capacity change from 0 to 1024
[   79.922377][ T3326] inactive_anon 0
[   79.929238][ T6426] EXT4-fs: inline encryption not supported
[   79.932311][ T3326] active_anon 16384
[   79.938210][ T6426] EXT4-fs: Ignoring removed i_version option
[   79.941887][ T3326] inactive_file 0
[   79.941896][ T3326] active_file 40960
[   79.955336][ T3326] unevictable 0
[   79.958765][ T3326] hierarchical_memory_limit 314572800
[   79.960416][ T6426] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.964131][ T3326] hierarchical_memsw_limit 9223372036854771712
[   79.982741][ T3326] total_cache 8192
[   79.986459][ T3326] total_rss 0
[   79.989764][ T3326] total_shmem 0
[   79.993238][ T3326] total_mapped_file 0
[   79.997208][ T3326] total_dirty 0
[   80.000674][ T3326] total_writeback 0
[   80.004472][ T3326] total_workingset_refault_anon 136
[   80.009680][ T3326] total_workingset_refault_file 124
[   80.014862][ T3326] total_swap 1273856
[   80.018741][ T3326] total_swapcached 16384
[   80.022985][ T3326] total_pgpgin 63618
[   80.026883][ T3326] total_pgpgout 63604
[   80.030860][ T3326] total_pgfault 43444
[   80.034825][ T3326] total_pgmajfault 90
[   80.038812][ T3326] total_inactive_anon 0
[   80.042953][ T3326] total_active_anon 16384
[   80.047338][ T3326] total_inactive_file 0
[   80.051480][ T3326] total_active_file 40960
[   80.055780][ T3326] total_unevictable 0
[   80.059802][ T3326] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1024,pid=6396,uid=0
[   80.074401][ T3326] Memory cgroup out of memory: Killed process 6396 (syz.0.1024) total-vm:102572kB, anon-rss:1136kB, file-rss:30504kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[   80.094705][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.414931][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.475583][ T6438] loop3: detected capacity change from 0 to 4096
[   80.491459][ T6438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.817093][ T3322] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.979102][ T5356] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   81.142044][ T6456] loop0: detected capacity change from 0 to 1024
[   81.148772][ T6456] EXT4-fs: inline encryption not supported
[   81.154764][ T6456] EXT4-fs: Ignoring removed i_version option
[   81.194262][ T6456] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.225526][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.243603][ T6466] loop0: detected capacity change from 0 to 128
[   81.367266][   T29] kauditd_printk_skb: 392 callbacks suppressed
[   81.367282][   T29] audit: type=1326 audit(1764134889.329:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.2.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   81.436502][   T29] audit: type=1326 audit(1764134889.329:8605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.2.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   81.459961][   T29] audit: type=1326 audit(1764134889.329:8606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.2.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   81.502421][ T6471] lo speed is unknown, defaulting to 1000
[   81.523537][ T6479] __nla_validate_parse: 1 callbacks suppressed
[   81.523552][ T6479] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1048'.
[   81.538777][   T29] audit: type=1326 audit(1764134889.439:8607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.2.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   81.562364][   T29] audit: type=1326 audit(1764134889.439:8608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6460 comm="syz.2.1044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc39874f749 code=0x7ffc0000
[   81.585756][   T29] audit: type=1326 audit(1764134889.489:8609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6480 comm="syz.4.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c50c4f749 code=0x7ffc0000
[   81.609212][   T29] audit: type=1326 audit(1764134889.489:8610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6480 comm="syz.4.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2c50c4f749 code=0x7ffc0000
[   81.632644][   T29] audit: type=1326 audit(1764134889.489:8611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6480 comm="syz.4.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c50c4f749 code=0x7ffc0000
[   81.656135][   T29] audit: type=1326 audit(1764134889.489:8612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6480 comm="syz.4.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c50c4f749 code=0x7ffc0000
[   81.679534][   T29] audit: type=1326 audit(1764134889.489:8613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6480 comm="syz.4.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2c50c4f749 code=0x7ffc0000
[   82.279097][ T6496] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1053'.
[   82.487151][ T6500] loop0: detected capacity change from 0 to 1024
[   82.508186][ T6500] EXT4-fs: inline encryption not supported
[   82.532461][ T6500] EXT4-fs: Ignoring removed i_version option
[   82.593122][ T6500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.704479][ T3326] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.884005][ T6520] loop2: detected capacity change from 0 to 1024
[   82.959564][ T6520] EXT4-fs: Ignoring removed mblk_io_submit option
[   82.992479][ T6520] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.048710][ T6528] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1064'.
[   83.068721][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.146704][ T6543] loop4: detected capacity change from 0 to 1024
[   83.219425][ T6543] EXT4-fs: inline encryption not supported
[   83.252866][ T6543] EXT4-fs: Ignoring removed i_version option
[   83.263015][ T6549] loop0: detected capacity change from 0 to 764
[   83.293774][ T6543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.163138][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.240596][ T6569] xt_TPROXY: Can be used only with -p tcp or -p udp
[   84.377576][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.385148][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.392600][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.400019][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.407463][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.414886][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.422400][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.429884][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.437333][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.444904][   T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   84.460531][   T10] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   84.759403][ T6603] loop4: detected capacity change from 0 to 512
[   85.043154][ T6610] random: crng reseeded on system resumption
[   85.467145][ T6603] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.1090: iget: bad extra_isize 90 (inode size 256)
[   85.514749][ T6603] EXT4-fs (loop4): Remounting filesystem read-only
[   85.539855][ T6603] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -30)
[   85.549017][ T6603] EXT4-fs (loop4): 1 orphan inode deleted
[   85.555102][ T6603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.646592][ T6633] loop2: detected capacity change from 0 to 128
[   85.653377][ T6633] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   85.683570][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.749238][ T6640] loop4: detected capacity change from 0 to 1024
[   85.769728][ T6640] EXT4-fs: inline encryption not supported
[   85.775659][ T6640] EXT4-fs: Ignoring removed i_version option
[   85.833259][ T6640] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.889999][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.567768][   T29] kauditd_printk_skb: 243 callbacks suppressed
[   86.567783][   T29] audit: type=1326 audit(1764134894.529:8857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.638649][ T6669] tmpfs: Bad value for 'mpol'
[   86.747880][   T29] audit: type=1326 audit(1764134894.569:8858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.771339][   T29] audit: type=1326 audit(1764134894.569:8859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.794742][   T29] audit: type=1326 audit(1764134894.569:8860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.818191][   T29] audit: type=1326 audit(1764134894.569:8861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.841659][   T29] audit: type=1326 audit(1764134894.569:8862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.865056][   T29] audit: type=1326 audit(1764134894.569:8863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.888508][   T29] audit: type=1326 audit(1764134894.569:8864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.911889][   T29] audit: type=1326 audit(1764134894.569:8865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   86.935309][   T29] audit: type=1326 audit(1764134894.569:8866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6668 comm="syz.1.1115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2df58f749 code=0x7ffc0000
[   87.014370][ T6675] loop0: detected capacity change from 0 to 512
[   87.045834][ T6675] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #18: comm syz.0.1116: iget: bad extra_isize 90 (inode size 256)
[   87.061564][ T6675] EXT4-fs (loop0): Remounting filesystem read-only
[   87.077037][ T6675] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[   87.091913][ T6675] EXT4-fs (loop0): 1 orphan inode deleted
[   87.108296][ T6675] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.155629][ T6691] loop4: detected capacity change from 0 to 512
[   87.163068][ T6691] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   87.188461][ T6691] EXT4-fs (loop4): 1 truncate cleaned up
[   87.196305][ T6691] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.212605][ T6691] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1125'.
[   87.284241][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.364174][ T6697] loop2: detected capacity change from 0 to 512
[   87.372153][ T6706] loop3: detected capacity change from 0 to 1024
[   87.378882][ T6706] EXT4-fs: inline encryption not supported
[   87.384928][ T6706] EXT4-fs: Ignoring removed i_version option
[   87.387153][ T6697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.403460][ T6697] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.420889][ T6706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.531023][ T6719] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1133'.
[   88.064960][ T6726] lo speed is unknown, defaulting to 1000
[   88.679159][ T6726] random: crng reseeded on system resumption
[   89.179804][ T6737] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1140'.
[   89.274749][ T6750] loop0: detected capacity change from 0 to 1024
[   89.291525][ T6750] EXT4-fs: inline encryption not supported
[   89.297539][ T6750] EXT4-fs: Ignoring removed i_version option
[   89.305551][ T6743] loop2: detected capacity change from 0 to 512
[   89.323084][ T6743] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.413626][ T6767] netlink: 332 bytes leftover after parsing attributes in process `syz.3.1152'.
[   89.631242][ T6790] loop4: detected capacity change from 0 to 1024
[   89.645395][ T6790] EXT4-fs: inline encryption not supported
[   89.669179][ T6790] EXT4-fs: Ignoring removed i_version option
[   89.705622][ T6799] loop2: detected capacity change from 0 to 512
[   89.735379][ T6799] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.1160: iget: bad extra_isize 90 (inode size 256)
[   89.755850][ T6799] EXT4-fs (loop2): Remounting filesystem read-only
[   89.774615][ T6799] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[   89.796995][ T6799] EXT4-fs (loop2): 1 orphan inode deleted
[   89.848315][ T6810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1166'.
[   89.860107][ T6810] loop0: detected capacity change from 0 to 512
[   89.870503][ T6810] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.919915][ T6809] loop4: detected capacity change from 0 to 512
[   89.930651][ T6809] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.135738][   T12] ==================================================================
[   90.143828][   T12] BUG: KCSAN: data-race in n_tty_receive_char_flow_ctrl / tty_set_termios
[   90.152315][   T12] 
[   90.154617][   T12] write to 0xffff88811aa70d08 of 44 bytes by task 6821 on cpu 0:
[   90.162304][   T12]  tty_set_termios+0xc0/0x8c0
[   90.166963][   T12]  set_termios+0x35b/0x4d0
[   90.171353][   T12]  tty_mode_ioctl+0x379/0x5c0
[   90.176015][   T12]  n_tty_ioctl_helper+0x91/0x210
[   90.180928][   T12]  n_tty_ioctl+0x101/0x200
[   90.185323][   T12]  tty_ioctl+0x83f/0xb80
[   90.189545][   T12]  __se_sys_ioctl+0xce/0x140
[   90.194113][   T12]  __x64_sys_ioctl+0x43/0x50
[   90.198679][   T12]  x64_sys_call+0x1816/0x3000
[   90.203333][   T12]  do_syscall_64+0xd2/0x200
[   90.207817][   T12]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.213685][   T12] 
[   90.215987][   T12] read to 0xffff88811aa70d21 of 1 bytes by task 12 on cpu 1:
[   90.223329][   T12]  n_tty_receive_char_flow_ctrl+0x23/0x1a0
[   90.229120][   T12]  n_tty_lookahead_flow_ctrl+0xed/0x130
[   90.234649][   T12]  tty_port_default_lookahead_buf+0x91/0xc0
[   90.240521][   T12]  flush_to_ldisc+0x288/0x340
[   90.245177][   T12]  process_scheduled_works+0x4ce/0x9d0
[   90.250624][   T12]  worker_thread+0x582/0x770
[   90.255194][   T12]  kthread+0x489/0x510
[   90.259241][   T12]  ret_from_fork+0x122/0x1b0
[   90.263816][   T12]  ret_from_fork_asm+0x1a/0x30
[   90.268567][   T12] 
[   90.270872][   T12] value changed: 0x11 -> 0x4b
[   90.275528][   T12] 
[   90.277830][   T12] Reported by Kernel Concurrency Sanitizer on:
[   90.283963][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   90.295231][   T12] Tainted: [W]=WARN
[   90.299010][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   90.309047][   T12] Workqueue: events_unbound flush_to_ldisc
[   90.314844][   T12] ==================================================================