last executing test programs:

5.947250034s ago: executing program 1 (id=684):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000000000063b9b595ff09efe0"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet(0x2, 0x2, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x6)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x20081e, &(0x7f0000000340), 0x1, 0x532, &(0x7f0000001200)="$eJzs3c9vI1cdAPCvZ/PDm02bbekBEG2XtrCg1TqJt42qHqCcEEKVED0WKQ2JE0Wx4yh2ShP2kJ65IlGJExz5Azj3hMSRC4Ibl3JAKhCBGhAHoxmPgze1yc+1s/HnI43mzbx4vt8Xy+/Zz/K8AEbWnYjYj4iJiHg3Imby84V8izfbW/p3nx48XD48eLhciFbr7b8Vsvr0XHQ9JnUrv2YxIr7/7YgfFj4bt7G7t7FUrVa28+PZZm1rtrG7d3+9trRWWatslssL8wtzrz94rXxpbX2xNpGXnv/4d/tf/3Ga1nR+prsdl6nd9PGjOKmxiPju4wg2BDfy9kwMOxHOJYmIZyPipez1PxM3smcTALjOWq2ZaM10HwMA112SzYEVklI+FzAdSVIqtefwnouppFpvNO+t1nc2V9pzZbdjPFldr1bm8rnC2zFZSI/ns3JWnx2Xjx0/iIhnIuKnkzez49JyvboyzDc+ADDCbh0b//852R7/T/T84gCyAwAem+KwEwAABs74DwCjx/gPAKPH+A8Ao6c9/t88y0PGH1cuAMBg+PwPAKPnIuP//iXmAQAMxPfeeivdWof5/a9X3tvd2ai/d3+l0tgo1XaWS8v17a3SWr2+lt2zp3bS9ar1+tb8q7Hz/u1vbDWas43dvcVafWezuZjd13ux0v7ewJsGABimZ1786I+FdER+42a2RddaDr7jh+stGXYCwNDcGHYCwNBY7QtG10mf8f/dOvdDgSdEjyV6H1Hs9QOhVqvVv3sArrq7XzD/D6Oqa/7fr4BgxJj/h9Fl/h9GV6tVSLfTLBXcnu8DAJ545viBPt//P5vvf5V/OfCDleN/8eFZopzpFqMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABw5XXW/y3la4FPR5KUShFPRcTtGC+srlcrcxHxdET8YXJ8Mj2eH3LOAMBFJX8p5Ot/3Z15ZfqRqhduHRUnIuJHP3/7Z+8vNZvbv4+YKPx9snO++WF+vjz47AGAk3XG6Wzf9UH+04OHy51tkPl88q2IKLbjHx5MxOFR/LEYy/bFGI+IqX8U8uO2QtfcxUXsfxARn+/V/kJMZ3Mg7ZVPj8dPYz810PjJI/GTrK69T/8Xn7uEXGDUfJT2P2/2ev0lcSfb9379F7Me6uLy/i+91PJh1gf+L36n/7vRp/+7c9oYr/7mO+3SZ9df/uSDiC+ORXRiH3b1P534hT7xXzll/D996YWX+tW1fhFxN3rH744126xtzTZ29+6v15bWKmuVzXJ5YX5h7vUHr5VnV9d/W5mb7T8a/PWNe0/3q0vbP9UnfvGE9n/llO3/5X/efefLPc6P5fG/9nKv+Ek893/ip2PiV08Zf2nq18V+dWn8lT7tP+n5v3fK+B//eW8lG6gAgCuhsbu3sVStVrYvXngnv2R2JpJLvPJ5C8UYZvShF6bO8Med93bDzvmEQpriFUijZ+Gbg4o1Eb2rfvJy+zk8VtVqnStWvx7jMmbdgKvg6EUfEf8adjIAAAAAAAAAAAAAAEBPg/jF0rDbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPX13wAAAP//JUXJAg==")
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x66)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000}, 0xd)
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f00000000c0)={@mcast2}, 0x14)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200008, &(0x7f0000000180), 0x1, 0x504, &(0x7f0000001000)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.swap.events\x00', 0x275a, 0x0)

5.811158116s ago: executing program 1 (id=689):
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
syz_io_uring_setup(0x16e, 0x0, 0x0, &(0x7f0000001340))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000000, 0x80010, 0xffffffffffffffff, 0xffffc000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10)
io_submit(0x0, 0x1, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)}])
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8205, &(0x7f0000001340)={[{@bh}, {@stripe}, {@grpid}, {@block_validity}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x1, 0x60a, &(0x7f0000001c40)="$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")
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'wg2\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x18, 0x12, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000009000000000000000700000018110000", @ANYRES64=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100004592a8cdb23f0eac196ecef0245798810000009500000000000000851000000100000018400000fbffffff0000000000000000bf91000000000000b7020000010000008500000085000000"], &(0x7f00000002c0)='syzkaller\x00', 0x9, 0x6b, &(0x7f0000000540)=""/107, 0x40f00, 0x2, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x5, 0xa, 0xfe000000, 0x8}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000700)=[0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000740)=[{0x1, 0x4, 0xc, 0x4}, {0x5, 0x1, 0x0, 0x6}, {0x2, 0x8000002, 0xb, 0xa}, {0x0, 0x3, 0xa, 0xb}, {0x7fff, 0x3, 0x10, 0xa}, {0x1, 0x2, 0x7, 0xc}, {0x2, 0x2, 0xe, 0x4}, {0x4, 0x1, 0x9, 0xd}, {0x5, 0x1, 0x9, 0x5}], 0x10, 0x50822360, @void, @value}, 0x94)
setsockopt$inet_mreq(r5, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000600)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004500001c00000020dc0290780000001ce00003000000907800e70005293108c6487fa0d8d66ec88f0000ed639302162ffd620c2d9e2432f4bf13db3775070fc5c67fe4ec3a108fb95117505a99fdbd80ac60f3446969c9d4c99c797c56b94de30007649356508d8c14de7597a200926b17a94b60626d36e677108000000000"], 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0x2}, 0x18)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r9 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

5.028362517s ago: executing program 1 (id=698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000000000063b9b595ff09efe0"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$inet(0x2, 0x2, 0x1)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000940)=@IORING_OP_SYMLINKAT={0x26, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000005c0)='./bus\x00', &(0x7f0000000900)='./bus\x00', 0x0, 0x0, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000f2e3916ccf89c07ff648c23ef968da4c314ef26265b22bbca46e00db2fb44c8a5cec6690a04cf23ffa84ec89ab466faec5471f1eecf85fbca4cec2c0940cc207a001ab5bd66c87e16047b035c4f7d42755ac560c60277ab8cb3ca6cf672fd26f225a06bb77373b391a5c8e01f6bdaa1c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5, 0x0, 0x5}, 0x18)
r6 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @local}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x67)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r8, 0x800448f0, &(0x7f0000000140)={0x0, 0x6837, "1a0124", 0x2, 0xd5})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$bt_hci(r7, &(0x7f0000000040)=ANY=[], 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x20081e, &(0x7f0000000340), 0x1, 0x532, &(0x7f0000001200)="$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")
r9 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r9, &(0x7f0000000240), 0xfffffecc)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200008, &(0x7f0000000180), 0x1, 0x504, &(0x7f0000001000)="$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")

4.038259991s ago: executing program 2 (id=712):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180100edff424a97ffff00009500e900"/27], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00'}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

3.918945943s ago: executing program 1 (id=713):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000480)={@in6={{0xa, 0x4e21, 0x400, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x80000000}}, 0x0, 0x20000000005, 0x4b}, 0xb9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
dup3(r1, r1, 0x80000)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x2c2140)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x4000000, 0xffffffff, 0x1, 0x0, 0x0, 0x5, 0x4})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x8, 0x100075, 0xffefffff, 0x4, 0x1ff, 0x0, 0x0, 0x0, 0x6})
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x36e084fcb6392193, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x2000c080}, 0x0)
fcntl$dupfd(r3, 0x406, r3)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0080000000000020", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r9}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000181100007a65d1b3fcbd1a182a278b5601204199dea529005816077f2fd2f5e5e9dd8cf86ea2c8cbc7220000000000000000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x2d)

3.692045727s ago: executing program 0 (id=716):
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x28, 0x1, 0xa7, 0x0, 0x0, 0x7, 0x20510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xfffffffffffffff7, 0xffffffffffffffff}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000340)=[{0x3, 0xfc, 0x1, 0x1}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000afba2262e14703cb2cd0e234e921133017b79c8a37148d0e00000052e2680555364b16d3aed8bc53dcce0e91df368d45a795479d70537df52804000000734bbda5555920f691389953a7cd05f9c92ff4473ca93a9408feb4904cc3dade2fe7289b13fb2c319392b0aaef42c1e562fefd9259a2e8fa25f9bf7eb0408c50193e6b9a22bc6c45e3788f5834df19cc120290ad0a05d0c9ce071304c1dd3d09fc2573c1171830665f320a8be5c8903c23adfe2e708fbc279d5b7c"], 0x48)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000), 0x4)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="01"], 0x9)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r4, 0x84, 0x19, &(0x7f0000000340)={0x0, 0x1}, 0x8)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.889481438s ago: executing program 0 (id=717):
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}, {@version_9p2000}, {@access_client}, {@privport}], [], 0x6b}})

2.838791359s ago: executing program 0 (id=719):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r1)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2004c890}, 0x2000c800)

2.74810982s ago: executing program 0 (id=720):
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
syz_io_uring_setup(0x16e, 0x0, 0x0, &(0x7f0000001340))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000000, 0x80010, 0xffffffffffffffff, 0xffffc000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10)
io_submit(0x0, 0x1, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)}])
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8205, &(0x7f0000001340)={[{@bh}, {@stripe}, {@grpid}, {@block_validity}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x1, 0x60a, &(0x7f0000001c40)="$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")
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'wg2\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x18, 0x12, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000009000000000000000700000018110000", @ANYRES64=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100004592a8cdb23f0eac196ecef0245798810000009500000000000000851000000100000018400000fbffffff0000000000000000bf91000000000000b7020000010000008500000085000000"], &(0x7f00000002c0)='syzkaller\x00', 0x9, 0x6b, &(0x7f0000000540)=""/107, 0x40f00, 0x2, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x5, 0xa, 0xfe000000, 0x8}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000700)=[0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000740)=[{0x1, 0x4, 0xc, 0x4}, {0x5, 0x1, 0x0, 0x6}, {0x2, 0x8000002, 0xb, 0xa}, {0x0, 0x3, 0xa, 0xb}, {0x7fff, 0x3, 0x10, 0xa}, {0x1, 0x2, 0x7, 0xc}, {0x2, 0x2, 0xe, 0x4}, {0x4, 0x1, 0x9, 0xd}, {0x5, 0x1, 0x9, 0x5}], 0x10, 0x50822360, @void, @value}, 0x94)
setsockopt$inet_mreq(r5, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000980)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaad608004500003000000060fc0290780000001ce00003000306907800fa000945f4fff6006541d40504400364010102ac1414a4869f31bf08d47acbaac5ad82797a42548c241be656125e64c89d68f32f62f1c9efbc174dce214e09d71c71bc99ec29d9abf9f30b3863015e8f4b17249319e908596fedc80048a30189f304492cd8f017a2501a1a9034fb41b8edb92a4689688f7d05b7f07749293d5733c0196a368988b94cfa595cba76ebb015ec628fde30cf29e961e44ed98c0d902d46cedff82cf059ba8b8141cb8206e99392f59fe443d067e94897490d4f1443a62c3a7802f510ec104f42a260fe383bded49f1c0c09579ab7da0ab6f04cf9669bbb4c167a1933d5fbb106898a3fdaff64a35cfaa74deec206f0c166a8dba303b79b81ebab9db3577898d811b5353246c1231956a6e4e09339ff00564613732218273d9e4cdf315447c1bf9ca3e960d72cc257e096e6c159cc3c7ee8de6e9934b613b4b2f7f18b18"], 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000600)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004500001c00000020dc0290780000001ce00003000000907800e70005293108c6487fa0d8d66ec88f0000ed639302162ffd620c2d9e2432f4bf13db3775070fc5c67fe4ec3a108fb95117505a99fdbd80ac60f3446969c9d4c99c797c56b94de30007649356508d8c14de7597a200926b17a94b60626d36e677108000000000"], 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0x2}, 0x18)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r8, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

2.576301452s ago: executing program 3 (id=722):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='map_files\x00')
getdents64(r1, &(0x7f0000001fc0)=""/4086, 0xff6) (fail_nth: 12)

2.459361494s ago: executing program 0 (id=723):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f00000002c0), &(0x7f0000000300)=r2}, 0x20)
mprotect(&(0x7f0000c94000/0x3000)=nil, 0x3000, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb215c990518c90923ba010018000000000000000c0000000c87c4ebc548d331f4000000f40000903659efe11858b6ea396f47ddb685566d4e601afe1dce96f31f4e26aac7d16af8f6d8d155302401c5b564ec77e93461cc44a3c71cb8e7ca60d638e625a91351407820d3f5049a5848398792e91e290f442901abe320e3019bb59dc4141ee4331f47d83f814ef56d14e043f690fae9982b8fb340aceec880cb6c45423696dcc0f230560eb8635f669cbc6c2bb7da18d50e7fb0d151823700afa0c8d48d66b3"], 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000006f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x3, &(0x7f00000001c0)=""/207, &(0x7f0000000000)=0xcf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
tkill(0x0, 0x12)

2.09452409s ago: executing program 3 (id=724):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f00000002c0), &(0x7f0000000300)=r2}, 0x20)
mprotect(&(0x7f0000c94000/0x3000)=nil, 0x3000, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb215c990518c90923ba010018000000000000000c0000000c87c4ebc548d331f4000000f40000903659efe11858b6ea396f47ddb685566d4e601afe1dce96f31f4e26aac7d16af8f6d8d155302401c5b564ec77e93461cc44a3c71cb8e7ca60d638e625a91351407820d3f5049a5848398792e91e290f442901abe320e3019bb59dc4141ee4331f47d83f814ef56d14e043f690fae9982b8fb340aceec880cb6c45423696dcc0f230560eb8635f669cbc6c2bb7da18d50e7fb0d151823700afa0c8d48d66b3"], 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000006f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x3, &(0x7f00000001c0)=""/207, &(0x7f0000000000)=0xcf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r5 = gettid()
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
tkill(r5, 0x12)
socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)

1.686311575s ago: executing program 1 (id=725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000000000063b9b595ff09efe0"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$inet(0x2, 0x2, 0x1)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000940)=@IORING_OP_SYMLINKAT={0x26, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000005c0)='./bus\x00', &(0x7f0000000900)='./bus\x00', 0x0, 0x0, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000f2e3916ccf89c07ff648c23ef968da4c314ef26265b22bbca46e00db2fb44c8a5cec6690a04cf23ffa84ec89ab466faec5471f1eecf85fbca4cec2c0940cc207a001ab5bd66c87e16047b035c4f7d42755ac560c60277ab8cb3ca6cf672fd26f225a06bb77373b391a5c8e01f6bdaa1c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5, 0x0, 0x5}, 0x18)
r6 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @local}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x67)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$bt_hci(r7, &(0x7f0000000040)=ANY=[], 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x20081e, &(0x7f0000000340), 0x1, 0x532, &(0x7f0000001200)="$eJzs3c9vI1cdAPCvZ/PDm02bbekBEG2XtrCg1TqJt42qHqCcEEKVED0WKQ2JE0Wx4yh2ShP2kJ65IlGJExz5Azj3hMSRC4Ibl3JAKhCBGhAHoxmPgze1yc+1s/HnI43mzbx4vt8Xy+/Zz/K8AEbWnYjYj4iJiHg3Imby84V8izfbW/p3nx48XD48eLhciFbr7b8Vsvr0XHQ9JnUrv2YxIr7/7YgfFj4bt7G7t7FUrVa28+PZZm1rtrG7d3+9trRWWatslssL8wtzrz94rXxpbX2xNpGXnv/4d/tf/3Ga1nR+prsdl6nd9PGjOKmxiPju4wg2BDfy9kwMOxHOJYmIZyPipez1PxM3smcTALjOWq2ZaM10HwMA112SzYEVklI+FzAdSVIqtefwnouppFpvNO+t1nc2V9pzZbdjPFldr1bm8rnC2zFZSI/ns3JWnx2Xjx0/iIhnIuKnkzez49JyvboyzDc+ADDCbh0b//852R7/T/T84gCyAwAem+KwEwAABs74DwCjx/gPAKPH+A8Ao6c9/t88y0PGH1cuAMBg+PwPAKPnIuP//iXmAQAMxPfeeivdWof5/a9X3tvd2ai/d3+l0tgo1XaWS8v17a3SWr2+lt2zp3bS9ar1+tb8q7Hz/u1vbDWas43dvcVafWezuZjd13ux0v7ewJsGABimZ1786I+FdER+42a2RddaDr7jh+stGXYCwNDcGHYCwNBY7QtG10mf8f/dOvdDgSdEjyV6H1Hs9QOhVqvVv3sArrq7XzD/D6Oqa/7fr4BgxJj/h9Fl/h9GV6tVSLfTLBXcnu8DAJ545viBPt//P5vvf5V/OfCDleN/8eFZopzpFqMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABw5XXW/y3la4FPR5KUShFPRcTtGC+srlcrcxHxdET8YXJ8Mj2eH3LOAMBFJX8p5Ot/3Z15ZfqRqhduHRUnIuJHP3/7Z+8vNZvbv4+YKPx9snO++WF+vjz47AGAk3XG6Wzf9UH+04OHy51tkPl88q2IKLbjHx5MxOFR/LEYy/bFGI+IqX8U8uO2QtfcxUXsfxARn+/V/kJMZ3Mg7ZVPj8dPYz810PjJI/GTrK69T/8Xn7uEXGDUfJT2P2/2ev0lcSfb9379F7Me6uLy/i+91PJh1gf+L36n/7vRp/+7c9oYr/7mO+3SZ9df/uSDiC+ORXRiH3b1P534hT7xXzll/D996YWX+tW1fhFxN3rH744126xtzTZ29+6v15bWKmuVzXJ5YX5h7vUHr5VnV9d/W5mb7T8a/PWNe0/3q0vbP9UnfvGE9n/llO3/5X/efefLPc6P5fG/9nKv+Ek893/ip2PiV08Zf2nq18V+dWn8lT7tP+n5v3fK+B//eW8lG6gAgCuhsbu3sVStVrYvXngnv2R2JpJLvPJ5C8UYZvShF6bO8Med93bDzvmEQpriFUijZ+Gbg4o1Eb2rfvJy+zk8VtVqnStWvx7jMmbdgKvg6EUfEf8adjIAAAAAAAAAAAAAAEBPg/jF0rDbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPX13wAAAP//JUXJAg==")
r8 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r8, &(0x7f0000000240), 0xfffffecc)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200008, &(0x7f0000000180), 0x1, 0x504, &(0x7f0000001000)="$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")

1.685485705s ago: executing program 3 (id=726):
pipe2(&(0x7f0000000000)={0x0, <r0=>0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x1, 0x81, 0x1ff, 0x801, 0x1}, 0x1c)
bind$tipc(r1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x20, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000a80)=@deltfilter={0x24, 0x2d, 0x10, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x6, 0x4}, {0x6, 0x4}, {0xfff3, 0x5}}}, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@newqdisc={0x58, 0x24, 0xf0b, 0x13, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1ff, 0x4, 0x10001, 0x5902, 0x7f, 0x400, 0x800, 0x2, 0xffff294f}}}}]}, 0x58}}, 0x8000)
sendmsg$nl_route_sched(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xe, 0x9}, {0xfff3, 0x5}, {0xe, 0x2613a1b406814a86}}}, 0x24}}, 0x44804)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f00000007c0)={{'\x00', 0x2}, {0x3}, 0x10, 0x0, 0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)="9ced568850c7de919d04cf315a6f20bd2980947c7c51a29a1754b7f39de1629a0cd8291515538c3337d4", 0x2a, 0x0, &(0x7f0000001ec0)=ANY=[@ANYBLOB="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"], 0x108a})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x18)
memfd_secret(0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$nvram(0xffffffffffffff9c, 0x0, 0x94001, 0x0)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, r6, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r7, 0x3, 0x25, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x4, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r8, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000100000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r9}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f00000004c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="8e29b5c6d59d9a8fa9f1222c", @ANYRESOCT, @ANYBLOB="d90f55b2fe87bccaae179697e871353358a10c2f9b664f24e6a9112c9e2e2e3003fa09469b1b", @ANYBLOB], 0x8, 0x23e, &(0x7f0000000bc0)="$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")

1.648414386s ago: executing program 2 (id=727):
gettid()
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48)
open(0x0, 0x145142, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
setreuid(0x0, 0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000001000000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff000000004e040100000000002d400200000000004704000001ed00007b130000000000001d440200000000007a0a00fe00ffffffc3030000e1000000b5b00000000000009500000000000000023bc065b7a379d17cf9333379fc9e94af69912435f1a864a710aad58db6a6c3692e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c5181554a090f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5be14ecf7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e347a8ad880d2cd829b847400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c35b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af8612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5e69048ddff6da409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03fb8a63e089679216da18ec0ae564162a27afea62d84f3a10746443d64364f50000e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc286463a2b1e992894269f478341d02d0f5ad4bcb524a5a17f48a7382f13d000000225d85ae49cee383dc5049076b98fb6853ab39e415140200000020cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d710b651f898ba749e40bc6980fe78683ac5c0c31030699ddd71063be9261b2e1aab1675b34a22048516d6aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe0e669e5e20100005353193f82ade69d0540059fe6c7fe7cd8697502c7596566d6740300da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44022a579dfc02290beaeb883418f562ae00003ea96d10f172c0374d6eed82641687f3b3a70bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24c87afce829ba0f85da6d8a8f18ea40ab959f6074ab2a4009b9e5f07ab5138aa6e3d37fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0cbe02b6e4114f244a9bf93f04beb72f0861f7580e6b0b384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a9b702cc1b6912a1e717d29135753208160fb04c98375b9cdbae2ed9dc7358f0ebadde0b728fe26e37037f27feeb741680f6f2f9a6a8346962a350845ffa0d829e4f79ad7d87906943408e6df3adbfd03aac93df8866fb010aecfed9092ca4d0f3e1116a0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a530600d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91114a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe92c7719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b1dba94a6ea80c33ead5722c3293986e02c8e0a6dda1eca493f14795bd068826fe8df15efaaeea831555877f958a19e499666a38d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a8784d0899ed888141e2fae6691d1aee1da02ba516467df3e7d1daac19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa57d2c93f49c47944fec01a8aa7749f3187e9efb00000000e0884160b765b07ec9ba020362310223c81e48d6d3b6e5b50d45248efe43a409773e3ed01cd663f3aaab9e1c0000f43b64bb54e5b30be3399e3dd1eb1cfd1935a323023fe5792879833c7eb356b95cfb135045b1d8f7da2fa5bfedef411d0791523a9e64c884e9dfed9cd413afe66bd8ee831cdb34726fe0434fbf44c7b33a853330bcaf37ba4e36705807468b37d32087e599165f1bce015145444ef5967b443222f46173cc876015b2d1874be9846f7c1653c02d2ef9a75fdc45820c69bbe1cb575f9aa21aa9d3d58bd5e5fe026142a72e24049b8400c4a28b2d5db8d5f53cb354fba19975fb0b3739baae51cb4b034993ef1463dcdba2da419b320420efdd091d7f6e83c8ac2ccc6c9392a42a33907421ab847c9590c213eda9a7e1db598a23e75a3c0933fc803ca994a86476b995c37c445f68fd99fb4d335ff00d15bc4630c993fffffe000000000000a236a791bcb6eff8d488041db6b8f2c158c2c3f4baacd0c8cc7eb1fd7fba93237e598771cf6f281aa72139"], &(0x7f00000001c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.458701429s ago: executing program 3 (id=729):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180100edff424a97ffff00009500e900"/27], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="06000000040000000700000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00'}, 0x10)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000002c0)=0x1)

1.214698452s ago: executing program 4 (id=733):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000000)
socket$inet6(0xa, 0x2, 0x4d)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}, {&(0x7f0000000300)="439e9c06fc666cabc8569d63a866b31ff3ceda1e28f23f455e96a02001fc3fb089ed9e5234", 0x25}], 0x2}}], 0x2, 0x4048884)

1.051431834s ago: executing program 4 (id=734):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000c00)='ext4_sync_fs\x00', r2, 0x0, 0xfffffffffffffff8}, 0x18)
sync()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x8)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xf, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r6, 0x0, 0x0)

824.340668ms ago: executing program 4 (id=735):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="0213f803030000002cbd7000fddbdf25010018"], 0x18}}, 0x2000)

823.444668ms ago: executing program 0 (id=736):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000000000063b9b595ff09efe0"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$inet(0x2, 0x2, 0x1)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000940)=@IORING_OP_SYMLINKAT={0x26, 0x1, 0x0, 0xffffffffffffffff, &(0x7f00000005c0)='./bus\x00', &(0x7f0000000900)='./bus\x00', 0x0, 0x0, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000f2e3916ccf89c07ff648c23ef968da4c314ef26265b22bbca46e00db2fb44c8a5cec6690a04cf23ffa84ec89ab466faec5471f1eecf85fbca4cec2c0940cc207a001ab5bd66c87e16047b035c4f7d42755ac560c60277ab8cb3ca6cf672fd26f225a06bb77373b391a5c8e01f6bdaa1c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5, 0x0, 0x5}, 0x18)
r6 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @local}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x67)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r8, 0x800448f0, &(0x7f0000000140)={0x0, 0x6837, "1a0124", 0x2, 0xd5})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$bt_hci(r7, &(0x7f0000000040)=ANY=[], 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x20081e, &(0x7f0000000340), 0x1, 0x532, &(0x7f0000001200)="$eJzs3c9vI1cdAPCvZ/PDm02bbekBEG2XtrCg1TqJt42qHqCcEEKVED0WKQ2JE0Wx4yh2ShP2kJ65IlGJExz5Azj3hMSRC4Ibl3JAKhCBGhAHoxmPgze1yc+1s/HnI43mzbx4vt8Xy+/Zz/K8AEbWnYjYj4iJiHg3Imby84V8izfbW/p3nx48XD48eLhciFbr7b8Vsvr0XHQ9JnUrv2YxIr7/7YgfFj4bt7G7t7FUrVa28+PZZm1rtrG7d3+9trRWWatslssL8wtzrz94rXxpbX2xNpGXnv/4d/tf/3Ga1nR+prsdl6nd9PGjOKmxiPju4wg2BDfy9kwMOxHOJYmIZyPipez1PxM3smcTALjOWq2ZaM10HwMA112SzYEVklI+FzAdSVIqtefwnouppFpvNO+t1nc2V9pzZbdjPFldr1bm8rnC2zFZSI/ns3JWnx2Xjx0/iIhnIuKnkzez49JyvboyzDc+ADDCbh0b//852R7/T/T84gCyAwAem+KwEwAABs74DwCjx/gPAKPH+A8Ao6c9/t88y0PGH1cuAMBg+PwPAKPnIuP//iXmAQAMxPfeeivdWof5/a9X3tvd2ai/d3+l0tgo1XaWS8v17a3SWr2+lt2zp3bS9ar1+tb8q7Hz/u1vbDWas43dvcVafWezuZjd13ux0v7ewJsGABimZ1786I+FdER+42a2RddaDr7jh+stGXYCwNDcGHYCwNBY7QtG10mf8f/dOvdDgSdEjyV6H1Hs9QOhVqvVv3sArrq7XzD/D6Oqa/7fr4BgxJj/h9Fl/h9GV6tVSLfTLBXcnu8DAJ545viBPt//P5vvf5V/OfCDleN/8eFZopzpFqMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABw5XXW/y3la4FPR5KUShFPRcTtGC+srlcrcxHxdET8YXJ8Mj2eH3LOAMBFJX8p5Ot/3Z15ZfqRqhduHRUnIuJHP3/7Z+8vNZvbv4+YKPx9snO++WF+vjz47AGAk3XG6Wzf9UH+04OHy51tkPl88q2IKLbjHx5MxOFR/LEYy/bFGI+IqX8U8uO2QtfcxUXsfxARn+/V/kJMZ3Mg7ZVPj8dPYz810PjJI/GTrK69T/8Xn7uEXGDUfJT2P2/2ev0lcSfb9379F7Me6uLy/i+91PJh1gf+L36n/7vRp/+7c9oYr/7mO+3SZ9df/uSDiC+ORXRiH3b1P534hT7xXzll/D996YWX+tW1fhFxN3rH744126xtzTZ29+6v15bWKmuVzXJ5YX5h7vUHr5VnV9d/W5mb7T8a/PWNe0/3q0vbP9UnfvGE9n/llO3/5X/efefLPc6P5fG/9nKv+Ek893/ip2PiV08Zf2nq18V+dWn8lT7tP+n5v3fK+B//eW8lG6gAgCuhsbu3sVStVrYvXngnv2R2JpJLvPJ5C8UYZvShF6bO8Med93bDzvmEQpriFUijZ+Gbg4o1Eb2rfvJy+zk8VtVqnStWvx7jMmbdgKvg6EUfEf8adjIAAAAAAAAAAAAAAEBPg/jF0rDbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPX13wAAAP//JUXJAg==")
r9 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r9, &(0x7f0000000240), 0xfffffecc)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200008, &(0x7f0000000180), 0x1, 0x504, &(0x7f0000001000)="$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")

760.719859ms ago: executing program 4 (id=737):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000008000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000840)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
socket$unix(0x1, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000006cd0905700000000000000000000000000002cfc0c17305118892f1b96151a012e43230587b4b15dd63836a778796a169923380980604ee67e936172e2d1a40510f09703a27d8a2a0e8935ffe257501e4fa905881bff77c9e8e5e4ebdcc3d2c9bfbb5e2d4e277f30390c3afd04d4224fd28472e163"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=ANY=[@ANYRES16=r1, @ANYRES32=r2, @ANYRES8=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3, 0x0, 0x4}, 0x18)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r7}, 0x9)
futex_waitv(&(0x7f0000001a00)=[{0x4, &(0x7f0000000840)=0xf, 0x2, 0x2000000}, {0x2, &(0x7f0000000180)=0x101, 0x2}, {0x0, &(0x7f00000008c0)=0xa, 0x82}, {0x4, &(0x7f0000000900)=0x9, 0x82}, {0x9, &(0x7f0000000940)=0xc9, 0x2}, {0x4, 0x0, 0x82}, {0xffffffff00000001, &(0x7f0000000a40)=0x3, 0x2}, {0x4, &(0x7f0000000ac0)=0x9, 0x82}, {0x7ff, &(0x7f0000000b00)=0x6, 0x82}, {0x9, 0x0, 0x2}, {0x1, 0x0, 0x82}, {0xa42, 0x0, 0x82}, {0x9, &(0x7f0000000c00)=0x101, 0x82}, {0xfffffffffffffffb, &(0x7f0000000c40)=0x4, 0x82}, {0xfffffffffffffff7, &(0x7f0000000c80)=0x1ff, 0x82}, {0x7, &(0x7f0000000cc0)=0x4948, 0x2}, {0xfffffffffffffff0, &(0x7f0000000d00)=0xf6, 0x2}, {0x4, &(0x7f0000000d40)=0xd, 0x82}, {0xffffffffffffffff, &(0x7f0000000d80)=0x10000, 0x2}, {0x8, &(0x7f0000000dc0)=0xfffffffffffffff8, 0x82}, {0xfb5, 0x0, 0x2}, {0x7f7b, 0x0, 0x2}, {0xc, 0x0, 0x82}, {0x8, 0x0, 0x2}, {0x52, 0x0, 0x82}, {0x0, 0x0, 0x2}, {0x9, 0x0, 0x2}, {0xb2, 0x0, 0x82}, {0xfffffffffffffffb, 0x0, 0x82}, {0x80000000, 0x0, 0x80}, {0x579, 0x0, 0x2}, {0x8000, 0x0, 0x2}, {0x1, 0x0, 0x82}, {0x1, 0x0}, {0x400, 0x0, 0x2}, {0xaf, 0x0, 0x82}, {0x9, 0x0, 0x2}, {0x392e, 0x0, 0x2}, {0x3, 0x0, 0x2}, {0x1af4, 0x0, 0x82}, {0x3, 0x0, 0x82}, {0xeaf, 0x0, 0x2}, {0x7, 0x0, 0x2}, {0xba6, 0x0, 0x82}, {0x80000000, 0x0, 0x2}, {0x400, 0x0}, {0xcad, 0x0, 0x2}, {0x65, 0x0, 0x2}, {0x1, 0x0, 0x82}, {0x5c00000000000000, 0x0, 0x2}], 0x32, 0x0, &(0x7f00000020c0)={0x0, 0x989680}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r9}, 0x10)
setitimer(0x0, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000280)={0xa, 0xdfff, 0x0, @loopback, 0x9}, 0x1c)
sendfile(r4, 0xffffffffffffffff, &(0x7f0000000000)=0x4, 0x80000000001002)
rt_tgsigqueueinfo(0x0, 0x0, 0x8, 0x0)
r10 = io_uring_setup(0x1612, &(0x7f0000000200)={0x0, 0xfffffffc, 0x1, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS2(r10, 0xf, &(0x7f0000001580)={0x1, 0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000040)=""/168, 0xa8}], &(0x7f0000001540)=[0x2]}, 0x20)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0xa, &(0x7f0000000b40)=ANY=[@ANYBLOB="183500000200000000000000000000008500000e000000000000000004000000000000000000000018500000010000000000000000000000182b0000", @ANYRESOCT=r6, @ANYBLOB="020d26000000"], &(0x7f00000004c0)='GPL\x00', 0x8001, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x0, r6, 0x8, &(0x7f0000000540)={0x7, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x1, 0x4, 0x5, 0x80000001}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000005c0)=[0x1, 0x1, 0x1], &(0x7f0000000600)=[{0x5, 0x5, 0xb, 0x8}], 0x10, 0x7ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000400)='fsi_master_aspeed_opb_write\x00', r11, 0x0, 0x6}, 0x18)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r12 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r12, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)

669.01998ms ago: executing program 2 (id=738):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0xfffffffffffffdc6, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10}]}}]}, 0xa4}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./file0\x00', 0xc80, &(0x7f0000020100)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b26209f1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc563b62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x1, 0x27c, &(0x7f0000000600)="$eJzs281qE1EYxvGnH9ov20Sr1VbEF93oZmjjFYTSghhQaiN+gDC1Ew2ZJiUTKhGx3bn1LoTi0p0g3kA3XoELd9247EIc6UxskzaiFXRs8/9tzhvOPOGcnDPhLGY2775aKhUCp+DW1N1l6pX6tSWl1a0exboabXdUH1ezNV0dzX26cPve/RvZXG5mzmw2O38tY2YjF98/ff7m0ofa0J23I+/6tJF+uPkl83ljbGN889v8k2JgxcDKlZq5tlCp1NwF37PFYlByzG75nht4ViwHXrWlv+BXlpfr5pYXhweXq14QmFuuW8mrW61itWrd3MdusWyO49jwoPAr+fW5OTeb9Cjwd1WrWXda0sS+nvx6IgMCAACJanP+X+P83yk4/3eC7fP/g8b924rzPwAAAAAAAAAAAAAAAAAAAAAAh8FWGKbCMEz9aI9J0Rs+YePzgKRBSUOSTkgaljQiKSUpLemkpFOSRiWdlnRG0piks5LOSRpv+q6k54r9kln/gSSnjCbc/52N9e9sTS/u9ktLL1fyK/m4jfuzBRXly9OkUvoarWVDXM9ez81MWiSt80urjfzqSr6nNT+l1PaGaZefivPWmu+L9t1OPqPU9gZrl8+0zffryuWmvKOUPj5SRb4Woz25m38xZTZ9M7cnPxFdd9Q5tqPt+jnOz/rj/AH2x57ft1cTvcnOHVJQf1Zyfd+rUlAcheK1/othHP4i6X8m/Au7i570SAAAAAAAAAAAAAAAAAAAB/GnTwiGq3H+dy5Oeo4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOz1PQAA//+5gF2o")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r3, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)
ioctl$USBDEVFS_ALLOC_STREAMS(r3, 0x8008551c, 0x0)
perf_event_open(0x0, 0x0, 0xb, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, &(0x7f0000000340)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r6 = syz_io_uring_setup(0x10d2, &(0x7f0000000340)={0x0, 0x7734, 0x800, 0x1, 0xe9}, &(0x7f00000001c0), &(0x7f0000000140))
r7 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21)
io_uring_register$IORING_REGISTER_EVENTFD(r6, 0x4, &(0x7f0000000280)=r7, 0x1)

617.271041ms ago: executing program 4 (id=739):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x503, &(0x7f0000000fc0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='ext4_es_lookup_extent_exit\x00', r0, 0x0, 0x5}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x11, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000003, 0x5d031, 0xffffffffffffffff, 0x0)
getitimer(0x1, &(0x7f0000000240))
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x10448)
syz_usb_connect$uac1(0x2, 0xde, 0x0, 0x0)
pwrite64(r7, &(0x7f0000000140), 0x0, 0x8000c61)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
fcntl$setlease(r8, 0x400, 0x1)
close(r8)
unlinkat(r8, 0x0, 0x200)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)

616.78177ms ago: executing program 1 (id=740):
gettid()
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48)
open(0x0, 0x145142, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
setreuid(0x0, 0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

459.977423ms ago: executing program 2 (id=741):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r1)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2004c890}, 0x2000c800)

410.229544ms ago: executing program 2 (id=742):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r2, 0x0, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x40004)
setsockopt$sock_linger(r2, 0x1, 0x3c, 0x0, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x24008094)
sendmsg$nl_route(r2, 0x0, 0x4081)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)

304.439755ms ago: executing program 2 (id=743):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22, 0x0, @local, 0x3}, 0x1c)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x8, 0xdd18b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x332b, 0x4, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
gettid()
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000500)='ext2\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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")
open(0x0, 0x145142, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

169.813507ms ago: executing program 3 (id=744):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000000)
socket$inet6(0xa, 0x2, 0x4d)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}, {&(0x7f0000000300)="439e9c06fc666cabc8569d63a866b31ff3ceda1e28f23f455e96a02001fc3fb089ed9e5234", 0x25}], 0x2}}], 0x2, 0x4048884)

469.589µs ago: executing program 4 (id=745):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfec9}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r1, r2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001380)={0x11, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sigaltstack(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
gettid()
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000680), 0x2, 0x0)
write$UHID_SET_REPORT_REPLY(r5, &(0x7f00000006c0)={0xe, {0x0, 0x0, 0x8}}, 0xc)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
io_uring_enter(r0, 0xdb4, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=746):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f00000002c0), &(0x7f0000000300)=r2}, 0x20)
mprotect(&(0x7f0000c94000/0x3000)=nil, 0x3000, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb215c990518c90923ba010018000000000000000c0000000c87c4ebc548d331f4000000f40000903659efe11858b6ea396f47ddb685566d4e601afe1dce96f31f4e26aac7d16af8f6d8d155302401c5b564ec77e93461cc44a3c71cb8e7ca60d638e625a91351407820d3f5049a5848398792e91e290f442901abe320e3019bb59dc4141ee4331f47d83f814ef56d14e043f690fae9982b8fb340aceec880cb6c45423696dcc0f230560eb8635f669cbc6c2bb7da18d50e7fb0d151823700afa0c8d48d66b3"], 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000006f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @local}, 0x1c)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x3, &(0x7f00000001c0)=""/207, &(0x7f0000000000)=0xcf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
tkill(0x0, 0x12)

kernel console output (not intermixed with test programs):

4294967295 subj=root:sysadm_r:sysadm_t pid=4544 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52912fe929 code=0x7ffc0000
[   67.340265][   T29] audit: type=1326 audit(1750012249.502:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4544 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52912fe929 code=0x7ffc0000
[   67.363617][   T29] audit: type=1326 audit(1750012249.502:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4544 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f52912fe929 code=0x7ffc0000
[   67.386975][   T29] audit: type=1326 audit(1750012249.502:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4544 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52912fe929 code=0x7ffc0000
[   67.410311][   T29] audit: type=1326 audit(1750012249.502:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4544 comm="syz.4.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f52912fe929 code=0x7ffc0000
[   67.539718][ T4529] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.767579][ T4563] netlink: 'syz.4.298': attribute type 13 has an invalid length.
[   67.775435][ T4563] netlink: 'syz.4.298': attribute type 27 has an invalid length.
[   68.159127][ T4588] loop2: detected capacity change from 0 to 1024
[   68.170557][ T4588] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.207029][ T4588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.222698][ T4598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.302'.
[   68.232437][ T4598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.302'.
[   68.271359][ T4602] loop3: detected capacity change from 0 to 512
[   68.291214][ T4602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.313227][ T4602] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.375557][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.386913][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.399648][ T4614] SELinux: syz.1.308 (4614) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   68.446440][ T4618] siw: device registration error -23
[   68.472578][ T4620] loop1: detected capacity change from 0 to 1764
[   68.481791][ T4620] iso9660: Unknown parameter 'noroæ®ü\de0x0000000000000000'
[   69.197171][ T4655] FAULT_INJECTION: forcing a failure.
[   69.197171][ T4655] name failslab, interval 1, probability 0, space 0, times 0
[   69.209992][ T4655] CPU: 1 UID: 0 PID: 4655 Comm: syz.4.317 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   69.210027][ T4655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   69.210043][ T4655] Call Trace:
[   69.210051][ T4655]  <TASK>
[   69.210125][ T4655]  __dump_stack+0x1d/0x30
[   69.210150][ T4655]  dump_stack_lvl+0xe8/0x140
[   69.210174][ T4655]  dump_stack+0x15/0x1b
[   69.210194][ T4655]  should_fail_ex+0x265/0x280
[   69.210232][ T4655]  should_failslab+0x8c/0xb0
[   69.210299][ T4655]  kmem_cache_alloc_noprof+0x50/0x310
[   69.210328][ T4655]  ? fcntl_dirnotify+0x1b9/0x590
[   69.210394][ T4655]  fcntl_dirnotify+0x1b9/0x590
[   69.210425][ T4655]  ? vfs_write+0x75e/0x8e0
[   69.210465][ T4655]  do_fcntl+0x53b/0xdf0
[   69.210496][ T4655]  ? selinux_file_fcntl+0x1b4/0x1e0
[   69.210579][ T4655]  __se_sys_fcntl+0xb1/0x120
[   69.210610][ T4655]  __x64_sys_fcntl+0x43/0x50
[   69.210642][ T4655]  x64_sys_call+0x1f1d/0x2fb0
[   69.210732][ T4655]  do_syscall_64+0xd2/0x200
[   69.210756][ T4655]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.210790][ T4655]  ? clear_bhb_loop+0x40/0x90
[   69.210948][ T4655]  ? clear_bhb_loop+0x40/0x90
[   69.210976][ T4655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.211003][ T4655] RIP: 0033:0x7f52912fe929
[   69.211022][ T4655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.211043][ T4655] RSP: 002b:00007f528f967038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[   69.211105][ T4655] RAX: ffffffffffffffda RBX: 00007f5291525fa0 RCX: 00007f52912fe929
[   69.211121][ T4655] RDX: 0000000000000003 RSI: 0000000000000402 RDI: 0000000000000003
[   69.211136][ T4655] RBP: 00007f528f967090 R08: 0000000000000000 R09: 0000000000000000
[   69.211147][ T4655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.211158][ T4655] R13: 0000000000000000 R14: 00007f5291525fa0 R15: 00007ffd8aa270a8
[   69.211175][ T4655]  </TASK>
[   69.574425][ T4674] loop3: detected capacity change from 0 to 512
[   69.598901][ T4674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.611876][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   69.631591][ T4674] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.659057][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.4.323'.
[   69.669211][ T4686] netlink: 4 bytes leftover after parsing attributes in process `syz.4.323'.
[   69.743922][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.744720][ T4703] SELinux: syz.2.326 (4703) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   69.788553][ T4699] loop4: detected capacity change from 0 to 164
[   69.821626][ T4708] netlink: 'syz.3.328': attribute type 39 has an invalid length.
[   69.831337][ T4699] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   69.844031][ T4710] SELinux: syz.2.330 (4710) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   69.848506][ T4699] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   69.868112][ T4699] Symlink component flag not implemented
[   69.874067][ T4699] Symlink component flag not implemented
[   69.874190][ T4711] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   69.888344][ T4699] Symlink component flag not implemented (7)
[   69.896416][ T4699] Symlink component flag not implemented (116)
[   69.906781][ T4715] netlink: 8 bytes leftover after parsing attributes in process `syz.2.331'.
[   69.915925][ T4715] netlink: 8 bytes leftover after parsing attributes in process `syz.2.331'.
[   69.928681][ T4715] loop2: detected capacity change from 0 to 512
[   69.984165][ T4721] siw: device registration error -23
[   70.043877][ T4727] ipvlan2: entered promiscuous mode
[   70.050846][ T4727] bridge0: port 3(ipvlan2) entered blocking state
[   70.057451][ T4727] bridge0: port 3(ipvlan2) entered disabled state
[   70.064023][ T4727] ipvlan2: entered allmulticast mode
[   70.069418][ T4727] bridge0: entered allmulticast mode
[   70.075201][ T4727] ipvlan2: left allmulticast mode
[   70.080323][ T4727] bridge0: left allmulticast mode
[   70.150729][ T4734] SELinux: syz.3.342 (4734) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   70.194438][ T4736] netlink: 4 bytes leftover after parsing attributes in process `syz.2.341'.
[   70.267686][ T4744] loop2: detected capacity change from 0 to 164
[   70.286708][ T4744] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.309631][ T4744] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.317394][ T4529] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.333112][ T4747] FAULT_INJECTION: forcing a failure.
[   70.333112][ T4747] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.346376][ T4747] CPU: 1 UID: 0 PID: 4747 Comm: syz.4.345 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   70.346431][ T4747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   70.346447][ T4747] Call Trace:
[   70.346455][ T4747]  <TASK>
[   70.346465][ T4747]  __dump_stack+0x1d/0x30
[   70.346492][ T4747]  dump_stack_lvl+0xe8/0x140
[   70.346564][ T4747]  dump_stack+0x15/0x1b
[   70.346623][ T4747]  should_fail_ex+0x265/0x280
[   70.346663][ T4747]  should_fail+0xb/0x20
[   70.346698][ T4747]  should_fail_usercopy+0x1a/0x20
[   70.346814][ T4747]  _copy_from_user+0x1c/0xb0
[   70.346840][ T4747]  __sys_connect+0xd0/0x2b0
[   70.346884][ T4747]  __x64_sys_connect+0x3f/0x50
[   70.346919][ T4747]  x64_sys_call+0x1daa/0x2fb0
[   70.347011][ T4747]  do_syscall_64+0xd2/0x200
[   70.347034][ T4747]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   70.347137][ T4747]  ? clear_bhb_loop+0x40/0x90
[   70.347164][ T4747]  ? clear_bhb_loop+0x40/0x90
[   70.347252][ T4747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.347278][ T4747] RIP: 0033:0x7f52912fe929
[   70.347296][ T4747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.347319][ T4747] RSP: 002b:00007f528f967038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   70.347418][ T4747] RAX: ffffffffffffffda RBX: 00007f5291525fa0 RCX: 00007f52912fe929
[   70.347434][ T4747] RDX: 000000000000001e RSI: 0000200000000340 RDI: 0000000000000005
[   70.347449][ T4747] RBP: 00007f528f967090 R08: 0000000000000000 R09: 0000000000000000
[   70.347512][ T4747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.347527][ T4747] R13: 0000000000000000 R14: 00007f5291525fa0 R15: 00007ffd8aa270a8
[   70.347551][ T4747]  </TASK>
[   70.347928][ T4744] Symlink component flag not implemented
[   70.357248][ T4529] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.360327][ T4744] Symlink component flag not implemented
[   70.377627][ T4749] loop3: detected capacity change from 0 to 164
[   70.387193][ T4744] Symlink component flag not implemented (7)
[   70.399222][ T4749] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.403886][ T4744] Symlink component flag not implemented (116)
[   70.573725][ T4749] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   70.582623][ T4749] Symlink component flag not implemented
[   70.588355][ T4749] Symlink component flag not implemented
[   70.594418][ T4749] Symlink component flag not implemented (7)
[   70.600527][ T4749] Symlink component flag not implemented (116)
[   70.612075][ T4529] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.647414][ T4529] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.663383][ T4761] syzkaller1: entered promiscuous mode
[   70.669126][ T4761] syzkaller1: entered allmulticast mode
[   70.676941][ T4758] netlink: 8 bytes leftover after parsing attributes in process `syz.3.350'.
[   70.687866][ T4758] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.750235][ T4771] SELinux: syz.2.354 (4771) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   70.904256][ T4785] loop4: detected capacity change from 0 to 128
[   70.934020][ T4785] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   70.950762][ T4791] syz_tun: entered allmulticast mode
[   70.969177][ T4785] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   70.983983][ T4789] loop3: detected capacity change from 0 to 164
[   71.093649][ T4791] syz_tun: left allmulticast mode
[   71.129960][ T4789] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   71.163877][ T4789] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   71.189063][ T4789] Symlink component flag not implemented
[   71.194840][ T4789] Symlink component flag not implemented
[   71.202398][ T4789] Symlink component flag not implemented (7)
[   71.208471][ T4789] Symlink component flag not implemented (116)
[   71.385972][ T4798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.361'.
[   71.410533][ T4798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.361'.
[   71.463824][ T4803] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.471276][ T4805] loop1: detected capacity change from 0 to 512
[   71.531727][ T4810] FAULT_INJECTION: forcing a failure.
[   71.531727][ T4810] name failslab, interval 1, probability 0, space 0, times 0
[   71.544424][ T4810] CPU: 1 UID: 0 PID: 4810 Comm: syz.2.367 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   71.544486][ T4810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.544497][ T4810] Call Trace:
[   71.544502][ T4810]  <TASK>
[   71.544508][ T4810]  __dump_stack+0x1d/0x30
[   71.544531][ T4810]  dump_stack_lvl+0xe8/0x140
[   71.544616][ T4810]  dump_stack+0x15/0x1b
[   71.544660][ T4810]  should_fail_ex+0x265/0x280
[   71.544696][ T4810]  ? genl_start+0x117/0x390
[   71.544724][ T4810]  should_failslab+0x8c/0xb0
[   71.544752][ T4810]  __kmalloc_cache_noprof+0x4c/0x320
[   71.544842][ T4810]  genl_start+0x117/0x390
[   71.544871][ T4810]  __netlink_dump_start+0x331/0x520
[   71.544951][ T4810]  genl_family_rcv_msg_dumpit+0x115/0x180
[   71.544981][ T4810]  ? __pfx_genl_start+0x10/0x10
[   71.545041][ T4810]  ? __pfx_genl_dumpit+0x10/0x10
[   71.545068][ T4810]  ? __pfx_genl_done+0x10/0x10
[   71.545104][ T4810]  genl_rcv_msg+0x3f0/0x460
[   71.545150][ T4810]  ? __pfx_nl80211_dump_mpp+0x10/0x10
[   71.545195][ T4810]  netlink_rcv_skb+0x123/0x220
[   71.545224][ T4810]  ? __pfx_genl_rcv_msg+0x10/0x10
[   71.545337][ T4810]  genl_rcv+0x28/0x40
[   71.545414][ T4810]  netlink_unicast+0x59e/0x670
[   71.545453][ T4810]  netlink_sendmsg+0x58b/0x6b0
[   71.545505][ T4810]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.545526][ T4810]  __sock_sendmsg+0x142/0x180
[   71.545557][ T4810]  ____sys_sendmsg+0x31e/0x4e0
[   71.545634][ T4810]  ___sys_sendmsg+0x17b/0x1d0
[   71.545665][ T4810]  __x64_sys_sendmsg+0xd4/0x160
[   71.545691][ T4810]  x64_sys_call+0x2999/0x2fb0
[   71.545716][ T4810]  do_syscall_64+0xd2/0x200
[   71.545737][ T4810]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.545821][ T4810]  ? clear_bhb_loop+0x40/0x90
[   71.545976][ T4810]  ? clear_bhb_loop+0x40/0x90
[   71.545996][ T4810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.546015][ T4810] RIP: 0033:0x7f79a86ae929
[   71.546030][ T4810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.546097][ T4810] RSP: 002b:00007f79a6d17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.546118][ T4810] RAX: ffffffffffffffda RBX: 00007f79a88d5fa0 RCX: 00007f79a86ae929
[   71.546133][ T4810] RDX: 0000000024000000 RSI: 0000200000000680 RDI: 0000000000000006
[   71.546146][ T4810] RBP: 00007f79a6d17090 R08: 0000000000000000 R09: 0000000000000000
[   71.546162][ T4810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.546173][ T4810] R13: 0000000000000000 R14: 00007f79a88d5fa0 R15: 00007ffdb74bd6c8
[   71.546191][ T4810]  </TASK>
[   71.851391][ T4805] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.864069][ T4805] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.873247][ T4816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.369'.
[   71.887872][ T4803] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.940112][ T4803] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.953504][ T4818] netlink: 4 bytes leftover after parsing attributes in process `syz.2.368'.
[   71.962819][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.014263][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.033788][ T4803] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.089560][ T4829] loop2: detected capacity change from 0 to 512
[   72.126974][ T4831] loop1: detected capacity change from 0 to 164
[   72.138238][ T4831] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.138372][   T29] kauditd_printk_skb: 297 callbacks suppressed
[   72.138386][   T29] audit: type=1326 audit(1750012254.422:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c6826d290 code=0x7ffc0000
[   72.138561][   T29] audit: type=1326 audit(1750012254.422:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c6826d290 code=0x7ffc0000
[   72.138651][   T29] audit: type=1326 audit(1750012254.422:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   72.138910][ T4831] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   72.138975][   T29] audit: type=1326 audit(1750012254.422:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   72.139463][ T4831] Symlink component flag not implemented
[   72.139473][ T4831] Symlink component flag not implemented
[   72.139502][ T4831] Symlink component flag not implemented (7)
[   72.139513][ T4831] Symlink component flag not implemented (116)
[   72.139790][   T29] audit: type=1326 audit(1750012254.422:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   72.139822][   T29] audit: type=1326 audit(1750012254.422:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.1.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   72.162821][ T4803] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.282780][ T4829] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.329587][ T4803] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.338332][ T4829] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.381539][ T4803] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.385059][ T4803] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.408310][   T29] audit: type=1326 audit(1750012254.692:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4842 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   72.408529][   T29] audit: type=1326 audit(1750012254.692:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4842 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   72.408767][   T29] audit: type=1326 audit(1750012254.692:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4842 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   72.408930][   T29] audit: type=1326 audit(1750012254.692:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4842 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   72.430750][ T4844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'.
[   72.431021][ T4844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'.
[   72.440494][ T4841] loop4: detected capacity change from 0 to 2048
[   72.450767][ T4846] FAULT_INJECTION: forcing a failure.
[   72.450767][ T4846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.574156][ T4846] CPU: 0 UID: 0 PID: 4846 Comm: syz.3.378 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   72.574188][ T4846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.574214][ T4846] Call Trace:
[   72.574219][ T4846]  <TASK>
[   72.574226][ T4846]  __dump_stack+0x1d/0x30
[   72.574246][ T4846]  dump_stack_lvl+0xe8/0x140
[   72.574268][ T4846]  dump_stack+0x15/0x1b
[   72.574283][ T4846]  should_fail_ex+0x265/0x280
[   72.574318][ T4846]  should_fail+0xb/0x20
[   72.574348][ T4846]  should_fail_usercopy+0x1a/0x20
[   72.574388][ T4846]  _copy_from_user+0x1c/0xb0
[   72.574424][ T4846]  ? __pfx_vlan_ioctl_handler+0x10/0x10
[   72.574458][ T4846]  vlan_ioctl_handler+0x4c/0x4f0
[   72.574495][ T4846]  ? __pfx_vlan_ioctl_handler+0x10/0x10
[   72.574605][ T4846]  sock_ioctl+0x4a7/0x610
[   72.574629][ T4846]  ? __pfx_sock_ioctl+0x10/0x10
[   72.574650][ T4846]  __se_sys_ioctl+0xcb/0x140
[   72.574687][ T4846]  __x64_sys_ioctl+0x43/0x50
[   72.574775][ T4846]  x64_sys_call+0x19a8/0x2fb0
[   72.574802][ T4846]  do_syscall_64+0xd2/0x200
[   72.574822][ T4846]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.574847][ T4846]  ? clear_bhb_loop+0x40/0x90
[   72.574885][ T4846]  ? clear_bhb_loop+0x40/0x90
[   72.574913][ T4846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.574940][ T4846] RIP: 0033:0x7fca1bd5e929
[   72.574958][ T4846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.574980][ T4846] RSP: 002b:00007fca1a3c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   72.575003][ T4846] RAX: ffffffffffffffda RBX: 00007fca1bf85fa0 RCX: 00007fca1bd5e929
[   72.575018][ T4846] RDX: 0000200000000400 RSI: 0000000000008982 RDI: 0000000000000004
[   72.575051][ T4846] RBP: 00007fca1a3c7090 R08: 0000000000000000 R09: 0000000000000000
[   72.575082][ T4846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.575149][ T4846] R13: 0000000000000000 R14: 00007fca1bf85fa0 R15: 00007fffa7656ed8
[   72.575186][ T4846]  </TASK>
[   72.703148][ T4841]  loop4: p1 < > p3 p4 < >
[   72.703890][ T4841] loop4: p3 start 4284289 is beyond EOD, truncated
[   72.718657][ T4852] FAULT_INJECTION: forcing a failure.
[   72.718657][ T4852] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   72.718683][ T4852] CPU: 1 UID: 0 PID: 4852 Comm: syz.3.380 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   72.718706][ T4852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.718720][ T4852] Call Trace:
[   72.718726][ T4852]  <TASK>
[   72.718734][ T4852]  __dump_stack+0x1d/0x30
[   72.718756][ T4852]  dump_stack_lvl+0xe8/0x140
[   72.718776][ T4852]  dump_stack+0x15/0x1b
[   72.718871][ T4852]  should_fail_ex+0x265/0x280
[   72.718926][ T4852]  should_fail_alloc_page+0xf2/0x100
[   72.718972][ T4852]  __alloc_frozen_pages_noprof+0xff/0x360
[   72.719104][ T4852]  alloc_pages_mpol+0xb3/0x250
[   72.719139][ T4852]  vma_alloc_folio_noprof+0x1aa/0x300
[   72.719251][ T4852]  handle_mm_fault+0xec2/0x2be0
[   72.719285][ T4852]  ? mas_walk+0xf2/0x120
[   72.719366][ T4852]  do_user_addr_fault+0x636/0x1090
[   72.719400][ T4852]  ? fpregs_restore_userregs+0xe2/0x1d0
[   72.719451][ T4852]  ? switch_fpu_return+0xe/0x20
[   72.719576][ T4852]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   72.719608][ T4852]  exc_page_fault+0x62/0xa0
[   72.719635][ T4852]  asm_exc_page_fault+0x26/0x30
[   72.719653][ T4852] RIP: 0033:0x7fca1bc20ca3
[   72.719671][ T4852] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   72.719706][ T4852] RSP: 002b:00007fca1a3c64a0 EFLAGS: 00010206
[   72.719721][ T4852] RAX: 0000000000007000 RBX: 00007fca1a3c6540 RCX: 00007fca11fa7000
[   72.719734][ T4852] RDX: 00007fca1a3c66e0 RSI: 0000000000000003 RDI: 00007fca1a3c65e0
[   72.719757][ T4852] RBP: 0000000000000079 R08: 0000000000000008 R09: 000000000000009f
[   72.719769][ T4852] R10: 00000000000000c6 R11: 00007fca1a3c6540 R12: 0000000000000001
[   72.719785][ T4852] R13: 00007fca1bdfc020 R14: 0000000000000003 R15: 00007fca1a3c65e0
[   72.719807][ T4852]  </TASK>
[   72.719827][ T4852] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   72.722394][ T4852] loop3: detected capacity change from 0 to 512
[   72.722887][ T4852] EXT4-fs: dax option not supported
[   72.752546][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   72.752666][ T3514] udevd[3514]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   72.987169][ T4856] netlink: 4 bytes leftover after parsing attributes in process `syz.4.381'.
[   73.039992][ T4858] loop3: detected capacity change from 0 to 512
[   73.239807][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811964da00: rx timeout, send abort
[   73.267601][ T4858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.365146][ T4858] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.388346][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.449633][ T4864] loop1: detected capacity change from 0 to 164
[   73.457097][ T4864] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   73.458222][ T4864] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   73.486411][ T4864] Symlink component flag not implemented
[   73.486424][ T4864] Symlink component flag not implemented
[   73.486460][ T4864] Symlink component flag not implemented (7)
[   73.486473][ T4864] Symlink component flag not implemented (116)
[   73.538978][ T4870] FAULT_INJECTION: forcing a failure.
[   73.538978][ T4870] name failslab, interval 1, probability 0, space 0, times 0
[   73.551715][ T4870] CPU: 1 UID: 0 PID: 4870 Comm: syz.1.386 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   73.551750][ T4870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.551766][ T4870] Call Trace:
[   73.551774][ T4870]  <TASK>
[   73.551798][ T4870]  __dump_stack+0x1d/0x30
[   73.551819][ T4870]  dump_stack_lvl+0xe8/0x140
[   73.551837][ T4870]  dump_stack+0x15/0x1b
[   73.551852][ T4870]  should_fail_ex+0x265/0x280
[   73.551885][ T4870]  should_failslab+0x8c/0xb0
[   73.551910][ T4870]  kmem_cache_alloc_noprof+0x50/0x310
[   73.551998][ T4870]  ? audit_log_start+0x365/0x6c0
[   73.552030][ T4870]  audit_log_start+0x365/0x6c0
[   73.552128][ T4870]  ? should_fail_ex+0xdb/0x280
[   73.552170][ T4870]  audit_seccomp+0x48/0x100
[   73.552205][ T4870]  ? __seccomp_filter+0x68c/0x10d0
[   73.552242][ T4870]  __seccomp_filter+0x69d/0x10d0
[   73.552350][ T4870]  ? bpf_trace_run2+0x124/0x1c0
[   73.552420][ T4870]  ? __se_sys_memfd_create+0x577/0x590
[   73.552468][ T4870]  __secure_computing+0x82/0x150
[   73.552497][ T4870]  syscall_trace_enter+0xcf/0x1e0
[   73.552546][ T4870]  do_syscall_64+0xac/0x200
[   73.552568][ T4870]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.552713][ T4870]  ? clear_bhb_loop+0x40/0x90
[   73.552739][ T4870]  ? clear_bhb_loop+0x40/0x90
[   73.552766][ T4870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.552837][ T4870] RIP: 0033:0x7f3c6826e963
[   73.552851][ T4870] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   73.552871][ T4870] RSP: 002b:00007f3c668d6d68 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   73.552894][ T4870] RAX: ffffffffffffffda RBX: 00000000000005dd RCX: 00007f3c6826e963
[   73.552910][ T4870] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   73.552925][ T4870] RBP: 00002000000006c2 R08: 00000000ffffffff R09: 0000000000000000
[   73.552940][ T4870] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000008
[   73.552997][ T4870] R13: 00007f3c668d6dec R14: 00007f3c668d6df0 R15: 00007ffdbe74c908
[   73.553019][ T4870]  </TASK>
[   73.557255][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.599465][ T4870] loop1: detected capacity change from 0 to 2048
[   73.744567][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811964dc00: rx timeout, send abort
[   73.744595][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811964da00: abort rx timeout. Force session deactivation
[   73.804230][ T4876] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.828962][ T4881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.389'.
[   73.836394][ T3302]  loop1: p1 < > p3 p4 < >
[   73.839951][ T4881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.389'.
[   73.851529][ T3302] loop1: p3 start 4284289 is beyond EOD, truncated
[   73.862192][ T4870]  loop1: p1 < > p3 p4 < >
[   73.869595][ T4870] loop1: p3 start 4284289 is beyond EOD, truncated
[   73.878168][ T4876] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.896730][ T4883] siw: device registration error -23
[   73.906709][ T2999]  loop1: p1 < > p3 p4 < >
[   73.912659][ T2999] loop1: p3 start 4284289 is beyond EOD, truncated
[   73.936745][ T4876] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.949737][ T4887] netlink: 96 bytes leftover after parsing attributes in process `syz.2.392'.
[   73.952625][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   73.971649][ T4885] loop1: detected capacity change from 0 to 512
[   73.978554][ T4885] EXT4-fs: Ignoring removed i_version option
[   73.988216][ T4876] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.999858][ T4885] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   74.015148][ T3514] udevd[3514]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   74.041087][ T3514] udevd[3514]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   74.052601][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   74.074303][ T3514] udevd[3514]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   74.097607][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   74.122146][ T4885] EXT4-fs (loop1): orphan cleanup on readonly fs
[   74.131323][ T4885] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.391: bg 0: block 131: padding at end of block bitmap is not set
[   74.147429][ T4885] EXT4-fs (loop1): Remounting filesystem read-only
[   74.154202][ T4885] EXT4-fs (loop1): 1 truncate cleaned up
[   74.160521][ T4885] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.189560][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.244622][    C1] vcan0: j1939_tp_rxtimer: 0xffff88811964dc00: abort rx timeout. Force session deactivation
[   74.307736][ T4905] loop1: detected capacity change from 0 to 512
[   74.449586][ T4905] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.449666][ T4905] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.933493][ T4934] loop2: detected capacity change from 0 to 512
[   74.949005][ T4934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.962756][ T4934] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.047732][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.097480][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.287088][ T4969] siw: device registration error -23
[   75.569913][ T4997] netlink: 'syz.2.410': attribute type 1 has an invalid length.
[   75.622448][ T5012] capability: warning: `syz.2.410' uses 32-bit capabilities (legacy support in use)
[   75.633166][ T5012] program syz.2.410 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.725229][ T5023] loop2: detected capacity change from 0 to 512
[   75.762710][ T5023] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.762847][ T5023] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.862258][ T5037] netlink: 'syz.1.417': attribute type 1 has an invalid length.
[   75.888795][ T5037] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.997178][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.322512][ T5067] loop4: detected capacity change from 0 to 512
[   76.323330][ T5067] EXT4-fs: Ignoring removed mblk_io_submit option
[   76.383487][ T5067] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   76.383906][ T5067] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[   76.421527][ T5066] usb usb1: usbfs: process 5066 (syz.1.421) did not claim interface 0 before use
[   76.712221][ T5071] loop1: detected capacity change from 0 to 512
[   76.761297][ T5071] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.761399][ T5071] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.991952][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.213834][ T5067] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5067 comm=syz.4.420
[   77.226852][   T29] kauditd_printk_skb: 226 callbacks suppressed
[   77.226868][   T29] audit: type=1400 audit(1750012259.492:1630): avc:  denied  { setopt } for  pid=5060 comm="syz.4.420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   77.418276][ T5086] loop1: detected capacity change from 0 to 2048
[   77.431063][ T5086] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   77.431161][   T29] audit: type=1326 audit(1750012259.692:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.463212][   T29] audit: type=1326 audit(1750012259.692:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.486534][   T29] audit: type=1326 audit(1750012259.692:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.509954][   T29] audit: type=1326 audit(1750012259.692:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.533325][   T29] audit: type=1326 audit(1750012259.692:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.556759][   T29] audit: type=1326 audit(1750012259.692:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.580400][   T29] audit: type=1326 audit(1750012259.692:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.603863][   T29] audit: type=1326 audit(1750012259.692:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.627385][   T29] audit: type=1326 audit(1750012259.692:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5083 comm="syz.0.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   77.703887][ T5091] __nla_validate_parse: 9 callbacks suppressed
[   77.703904][ T5091] netlink: 4 bytes leftover after parsing attributes in process `syz.0.427'.
[   77.726617][ T5089] loop2: detected capacity change from 0 to 164
[   77.737619][ T5091] bridge_slave_1: left allmulticast mode
[   77.743299][ T5091] bridge_slave_1: left promiscuous mode
[   77.749117][ T5091] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.795754][ T5091] bridge_slave_0: left allmulticast mode
[   77.801546][ T5091] bridge_slave_0: left promiscuous mode
[   77.807286][ T5091] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.826856][ T5089] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   77.840167][ T5089] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   77.860721][ T5089] Symlink component flag not implemented
[   77.866522][ T5089] Symlink component flag not implemented
[   77.887744][ T5089] Symlink component flag not implemented (7)
[   77.893794][ T5089] Symlink component flag not implemented (116)
[   78.071136][ T5108] netlink: 20 bytes leftover after parsing attributes in process `syz.0.430'.
[   78.095376][ T5108] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   78.103617][ T5108] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   78.111978][ T5108] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   78.120221][ T5108] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   78.134270][ T5108] vxlan0: entered promiscuous mode
[   78.339344][ T5119] loop1: detected capacity change from 0 to 1024
[   78.356770][ T5119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.383162][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.508168][ T5127] loop1: detected capacity change from 0 to 164
[   78.516327][ T5127] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   78.527146][ T5127] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   78.535629][ T5127] Symlink component flag not implemented
[   78.541384][ T5127] Symlink component flag not implemented
[   78.547191][ T5127] Symlink component flag not implemented (7)
[   78.553250][ T5127] Symlink component flag not implemented (116)
[   78.693794][ T5131] loop1: detected capacity change from 0 to 2048
[   78.745741][ T3302]  loop1: p1 < > p3 p4 < >
[   78.751047][ T3302] loop1: p3 start 4284289 is beyond EOD, truncated
[   78.760382][ T5131]  loop1: p1 < > p3 p4 < >
[   78.765700][ T5131] loop1: p3 start 4284289 is beyond EOD, truncated
[   78.813402][ T4876] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.824040][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   78.825093][ T3514] udevd[3514]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   78.843836][ T4876] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.859212][ T5133] sd 0:0:1:0: device reset
[   78.863639][ T4876] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.870952][ T4876] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.888979][ T5133] loop1: detected capacity change from 0 to 1024
[   78.917225][ T5133] EXT4-fs: Ignoring removed nobh option
[   78.922936][ T5133] EXT4-fs: Ignoring removed bh option
[   78.958722][ T5142] siw: device registration error -23
[   78.970508][ T5133] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.028673][ T5146] loop3: detected capacity change from 0 to 2048
[   79.035309][ T5149] loop4: detected capacity change from 0 to 1024
[   79.040238][ T5133] EXT4-fs (loop1): shut down requested (2)
[   79.068015][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.068417][ T5149] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.090056][ T5146] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[   79.121841][ T5153] loop1: detected capacity change from 0 to 512
[   79.157156][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.167926][ T5153] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   79.202963][ T5155] usb usb1: usbfs: process 5155 (syz.2.447) did not claim interface 0 before use
[   79.249338][ T5153] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.272674][ T5153] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.294541][ T5153] FAULT_INJECTION: forcing a failure.
[   79.294541][ T5153] name failslab, interval 1, probability 0, space 0, times 0
[   79.307303][ T5153] CPU: 1 UID: 0 PID: 5153 Comm: syz.1.448 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   79.307399][ T5153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.307420][ T5153] Call Trace:
[   79.307427][ T5153]  <TASK>
[   79.307435][ T5153]  __dump_stack+0x1d/0x30
[   79.307460][ T5153]  dump_stack_lvl+0xe8/0x140
[   79.307484][ T5153]  dump_stack+0x15/0x1b
[   79.307505][ T5153]  should_fail_ex+0x265/0x280
[   79.307577][ T5153]  should_failslab+0x8c/0xb0
[   79.307603][ T5153]  kmem_cache_alloc_node_noprof+0x57/0x320
[   79.307637][ T5153]  ? __alloc_skb+0x101/0x320
[   79.307744][ T5153]  __alloc_skb+0x101/0x320
[   79.307774][ T5153]  ? audit_log_start+0x365/0x6c0
[   79.307843][ T5153]  audit_log_start+0x380/0x6c0
[   79.307901][ T5153]  audit_seccomp+0x48/0x100
[   79.307936][ T5153]  ? __seccomp_filter+0x68c/0x10d0
[   79.307965][ T5153]  __seccomp_filter+0x69d/0x10d0
[   79.307991][ T5153]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   79.308150][ T5153]  ? vfs_write+0x75e/0x8e0
[   79.308234][ T5153]  __secure_computing+0x82/0x150
[   79.308264][ T5153]  syscall_trace_enter+0xcf/0x1e0
[   79.308294][ T5153]  do_syscall_64+0xac/0x200
[   79.308377][ T5153]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   79.308416][ T5153]  ? clear_bhb_loop+0x40/0x90
[   79.308442][ T5153]  ? clear_bhb_loop+0x40/0x90
[   79.308463][ T5153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.308491][ T5153] RIP: 0033:0x7f3c6826e929
[   79.308510][ T5153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.308532][ T5153] RSP: 002b:00007f3c668d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[   79.308634][ T5153] RAX: ffffffffffffffda RBX: 00007f3c68495fa0 RCX: 00007f3c6826e929
[   79.308652][ T5153] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000008
[   79.308667][ T5153] RBP: 00007f3c668d7090 R08: 0000000000000000 R09: 0000000000000000
[   79.308682][ T5153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.308698][ T5153] R13: 0000000000000000 R14: 00007f3c68495fa0 R15: 00007ffdbe74c908
[   79.308722][ T5153]  </TASK>
[   79.549893][ T5163] loop2: detected capacity change from 0 to 512
[   79.566041][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.566501][ T5163] EXT4-fs: quotafile must be on filesystem root
[   79.605274][ T5170] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.662350][ T5172] loop1: detected capacity change from 0 to 1024
[   79.695097][ T5178] loop2: detected capacity change from 0 to 1024
[   79.697073][ T5172] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.717204][ T5178] EXT4-fs: Ignoring removed bh option
[   79.721508][ T5172] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.724405][ T5170] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.745756][ T5178] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   79.758661][ T5179] sd 0:0:1:0: device reset
[   79.770565][ T5178] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   79.780108][ T5178] EXT4-fs (loop2): orphan cleanup on readonly fs
[   79.788555][ T5172] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   79.789018][ T5170] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.818404][ T5172] EXT4-fs (loop1): Remounting filesystem read-only
[   79.822238][ T5178] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.456: Invalid inode table block 0 in block_group 0
[   79.849827][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.854155][ T5178] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   79.865472][ T5179] loop3: detected capacity change from 0 to 1024
[   79.871997][ T5178] EXT4-fs error (device loop2): ext4_quota_write:7322: inode #3: comm syz.2.456: mark_inode_dirty error
[   79.888658][ T5178] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.456: Failed to acquire dquot type 0
[   79.900135][ T5179] EXT4-fs: Ignoring removed nobh option
[   79.905793][ T5179] EXT4-fs: Ignoring removed bh option
[   79.911528][ T5178] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.456: Invalid inode table block 0 in block_group 0
[   79.930134][ T5178] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   79.943476][ T5178] EXT4-fs error (device loop2): ext4_ext_truncate:4475: inode #15: comm syz.2.456: mark_inode_dirty error
[   79.955573][ T5170] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.977446][ T5178] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.456: Invalid inode table block 0 in block_group 0
[   79.978746][ T5179] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.012966][ T5179] EXT4-fs (loop3): shut down requested (2)
[   80.023178][ T5178] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   80.036248][ T5178] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   80.050890][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.052889][ T5170] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.068151][ T5178] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.456: Invalid inode table block 0 in block_group 0
[   80.095260][ T5170] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.099372][ T5178] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   80.108776][ T5170] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.157118][ T5178] EXT4-fs error (device loop2): ext4_truncate:4597: inode #15: comm syz.2.456: mark_inode_dirty error
[   80.166952][ T5170] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.189283][ T5178] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   80.225792][ T5178] EXT4-fs (loop2): 1 truncate cleaned up
[   80.236027][ T5178] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.270400][ T5214] netlink: 4 bytes leftover after parsing attributes in process `syz.3.461'.
[   80.313548][ T5178] syz_tun: entered allmulticast mode
[   80.347886][ T5228] loop3: detected capacity change from 0 to 164
[   80.365404][ T5228] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   80.365772][ T5178] syzkaller1: entered promiscuous mode
[   80.377186][ T5228] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   80.379123][ T5178] syzkaller1: entered allmulticast mode
[   80.415289][ T5228] Symlink component flag not implemented
[   80.421046][ T5228] Symlink component flag not implemented
[   80.435830][ T5228] Symlink component flag not implemented (7)
[   80.441874][ T5228] Symlink component flag not implemented (116)
[   80.465991][ T5177] syz_tun: left allmulticast mode
[   80.488065][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.630269][ T5249] xt_CT: No such helper "netbios-ns"
[   80.658445][ T5253] netlink: 4 bytes leftover after parsing attributes in process `syz.3.471'.
[   80.718708][ T5253] netlink: 4 bytes leftover after parsing attributes in process `syz.3.471'.
[   80.809789][ T5262] tipc: Started in network mode
[   80.814846][ T5262] tipc: Node identity 2a2ec440d1b4, cluster identity 4711
[   80.822081][ T5262] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   80.841953][ T5266] loop4: detected capacity change from 0 to 1024
[   80.853611][ T5262] tipc: Resetting bearer <eth:syzkaller0>
[   80.859799][ T5266] EXT4-fs: Ignoring removed bh option
[   80.873216][ T5261] tipc: Disabling bearer <eth:syzkaller0>
[   80.879816][ T5266] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   80.908580][ T5266] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   80.925917][ T5270] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[   80.960741][ T5266] EXT4-fs (loop4): orphan cleanup on readonly fs
[   80.983634][ T5266] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.477: Invalid inode table block 0 in block_group 0
[   81.001828][ T5274] netlink: 36 bytes leftover after parsing attributes in process `+}[@'.
[   81.031092][ T5266] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   81.047543][ T5266] EXT4-fs error (device loop4): ext4_quota_write:7322: inode #3: comm syz.4.477: mark_inode_dirty error
[   81.066393][ T5266] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.477: Failed to acquire dquot type 0
[   81.079413][ T5266] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.477: Invalid inode table block 0 in block_group 0
[   81.092244][ T5266] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   81.103223][ T5266] EXT4-fs error (device loop4): ext4_ext_truncate:4475: inode #15: comm syz.4.477: mark_inode_dirty error
[   81.114840][ T5266] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.477: Invalid inode table block 0 in block_group 0
[   81.129756][ T5266] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   81.139594][ T5266] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   81.142290][ T5280] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   81.149599][ T5266] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.477: Invalid inode table block 0 in block_group 0
[   81.174285][ T5266] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   81.183963][ T5266] EXT4-fs error (device loop4): ext4_truncate:4597: inode #15: comm syz.4.477: mark_inode_dirty error
[   81.196492][ T5266] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   81.208289][ T5266] EXT4-fs (loop4): 1 truncate cleaned up
[   81.214610][ T5266] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.250079][ T5266] syz_tun: entered allmulticast mode
[   81.260914][ T5266] syzkaller1: entered promiscuous mode
[   81.266561][ T5266] syzkaller1: entered allmulticast mode
[   81.341413][ T5287] loop1: detected capacity change from 0 to 164
[   81.350059][ T5287] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   81.359213][ T5287] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   81.367719][ T5287] Symlink component flag not implemented
[   81.373444][ T5287] Symlink component flag not implemented
[   81.379649][ T5287] Symlink component flag not implemented (7)
[   81.385703][ T5287] Symlink component flag not implemented (116)
[   81.535778][ T5289] FAULT_INJECTION: forcing a failure.
[   81.535778][ T5289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.549003][ T5289] CPU: 1 UID: 0 PID: 5289 Comm: syz.1.486 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   81.549029][ T5289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   81.549057][ T5289] Call Trace:
[   81.549066][ T5289]  <TASK>
[   81.549076][ T5289]  __dump_stack+0x1d/0x30
[   81.549102][ T5289]  dump_stack_lvl+0xe8/0x140
[   81.549123][ T5289]  dump_stack+0x15/0x1b
[   81.549136][ T5289]  should_fail_ex+0x265/0x280
[   81.549194][ T5289]  should_fail+0xb/0x20
[   81.549218][ T5289]  should_fail_usercopy+0x1a/0x20
[   81.549263][ T5289]  copy_fpstate_to_sigframe+0x628/0x7d0
[   81.549292][ T5289]  ? copy_fpstate_to_sigframe+0xe6/0x7d0
[   81.549393][ T5289]  ? x86_task_fpu+0x36/0x60
[   81.549423][ T5289]  get_sigframe+0x34d/0x490
[   81.549465][ T5289]  ? get_signal+0xdc8/0xf70
[   81.549498][ T5289]  x64_setup_rt_frame+0xa8/0x580
[   81.549517][ T5289]  arch_do_signal_or_restart+0x27c/0x480
[   81.549540][ T5289]  exit_to_user_mode_loop+0x7a/0x100
[   81.549562][ T5289]  do_syscall_64+0x1d6/0x200
[   81.549620][ T5289]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   81.549642][ T5289]  ? clear_bhb_loop+0x40/0x90
[   81.549660][ T5289]  ? clear_bhb_loop+0x40/0x90
[   81.549702][ T5289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.549720][ T5289] RIP: 0033:0x7f3c6826e927
[   81.549762][ T5289] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[   81.549778][ T5289] RSP: 002b:00007f3c668d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[   81.549794][ T5289] RAX: 0000000000000113 RBX: 00007f3c68495fa0 RCX: 00007f3c6826e929
[   81.549804][ T5289] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000005
[   81.549815][ T5289] RBP: 00007f3c668d7090 R08: 0000000000000f3a R09: 0000000000000000
[   81.549825][ T5289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.549835][ T5289] R13: 0000000000000000 R14: 00007f3c68495fa0 R15: 00007ffdbe74c908
[   81.549904][ T5289]  </TASK>
[   81.784239][ T5295] loop3: detected capacity change from 0 to 1024
[   81.799716][ T5295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.825646][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.879555][ T5301] loop1: detected capacity change from 0 to 128
[   81.936948][ T5308] netlink: 12 bytes leftover after parsing attributes in process `syz.3.492'.
[   81.946060][ T5308] netlink: 'syz.3.492': attribute type 2 has an invalid length.
[   81.953724][ T5308] netlink: 'syz.3.492': attribute type 1 has an invalid length.
[   81.961546][ T5308] netlink: 4 bytes leftover after parsing attributes in process `syz.3.492'.
[   82.104229][ T5319] mmap: syz.0.496 (5319) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   82.169923][ T5333] loop1: detected capacity change from 0 to 1024
[   82.201973][ T5333] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.233220][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.253046][   T29] kauditd_printk_skb: 556 callbacks suppressed
[   82.253063][   T29] audit: type=1326 audit(1750012264.532:2190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5318 comm="syz.0.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.302975][   T29] audit: type=1400 audit(1750012264.582:2191): avc:  denied  { append } for  pid=5350 comm="syz.1.504" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   82.324656][ T5354] netlink: 88 bytes leftover after parsing attributes in process `syz.2.502'.
[   82.338587][   T29] audit: type=1400 audit(1750012264.622:2192): avc:  denied  { connect } for  pid=5335 comm="+}[@" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   82.363596][   T29] audit: type=1400 audit(1750012264.642:2193): avc:  denied  { create } for  pid=5350 comm="syz.1.504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   82.393010][ T5354] wireguard0: entered promiscuous mode
[   82.401215][   T29] audit: type=1400 audit(1750012264.682:2194): avc:  denied  { create } for  pid=5357 comm="syz.3.506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   82.450924][ T5365] loop3: detected capacity change from 0 to 512
[   82.478579][ T5360] netdevsim netdevsim1: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2
[   82.537500][ T5365] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.548933][   T29] audit: type=1326 audit(1750012264.802:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5368 comm="syz.0.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.552484][ T5365] ext4 filesystem being mounted at /103/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.573556][   T29] audit: type=1326 audit(1750012264.802:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5368 comm="syz.0.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.607541][   T29] audit: type=1326 audit(1750012264.802:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5368 comm="syz.0.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.607581][   T29] audit: type=1326 audit(1750012264.802:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5368 comm="syz.0.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.607618][   T29] audit: type=1326 audit(1750012264.802:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5368 comm="syz.0.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3e78ee929 code=0x7ffc0000
[   82.617438][ T5374] FAULT_INJECTION: forcing a failure.
[   82.617438][ T5374] name failslab, interval 1, probability 0, space 0, times 0
[   82.617464][ T5374] CPU: 0 UID: 0 PID: 5374 Comm: syz.0.510 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   82.617488][ T5374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.617501][ T5374] Call Trace:
[   82.617507][ T5374]  <TASK>
[   82.617515][ T5374]  __dump_stack+0x1d/0x30
[   82.617538][ T5374]  dump_stack_lvl+0xe8/0x140
[   82.617561][ T5374]  dump_stack+0x15/0x1b
[   82.617580][ T5374]  should_fail_ex+0x265/0x280
[   82.617618][ T5374]  should_failslab+0x8c/0xb0
[   82.617641][ T5374]  kmem_cache_alloc_noprof+0x50/0x310
[   82.617666][ T5374]  ? vm_area_alloc+0x2c/0xb0
[   82.617693][ T5374]  vm_area_alloc+0x2c/0xb0
[   82.617723][ T5374]  mmap_region+0xa43/0x1580
[   82.617779][ T5374]  do_mmap+0x9b3/0xbe0
[   82.617838][ T5374]  vm_mmap_pgoff+0x17a/0x2e0
[   82.617875][ T5374]  ksys_mmap_pgoff+0xc2/0x310
[   82.617905][ T5374]  ? __x64_sys_mmap+0x49/0x70
[   82.617927][ T5374]  x64_sys_call+0x1602/0x2fb0
[   82.617946][ T5374]  do_syscall_64+0xd2/0x200
[   82.617966][ T5374]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.617998][ T5374]  ? clear_bhb_loop+0x40/0x90
[   82.618024][ T5374]  ? clear_bhb_loop+0x40/0x90
[   82.618058][ T5374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.618085][ T5374] RIP: 0033:0x7fe3e78ee963
[   82.618103][ T5374] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   82.618125][ T5374] RSP: 002b:00007fe3e5f56d68 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   82.618147][ T5374] RAX: ffffffffffffffda RBX: 00000000000005c6 RCX: 00007fe3e78ee963
[   82.618161][ T5374] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   82.618174][ T5374] RBP: 0000200000000602 R08: 00000000ffffffff R09: 0000000000000000
[   82.618185][ T5374] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[   82.618196][ T5374] R13: 00007fe3e5f56dec R14: 00007fe3e5f56df0 R15: 00007fff29085748
[   82.618214][ T5374]  </TASK>
[   82.797188][ T5381] FAULT_INJECTION: forcing a failure.
[   82.797188][ T5381] name failslab, interval 1, probability 0, space 0, times 0
[   82.797270][ T5381] CPU: 1 UID: 0 PID: 5381 Comm: syz.1.512 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   82.797329][ T5381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.797345][ T5381] Call Trace:
[   82.797353][ T5381]  <TASK>
[   82.797364][ T5381]  __dump_stack+0x1d/0x30
[   82.797391][ T5381]  dump_stack_lvl+0xe8/0x140
[   82.797417][ T5381]  dump_stack+0x15/0x1b
[   82.797469][ T5381]  should_fail_ex+0x265/0x280
[   82.797511][ T5381]  ? fw_change+0x47f/0x770
[   82.797599][ T5381]  should_failslab+0x8c/0xb0
[   82.797720][ T5381]  __kmalloc_cache_noprof+0x4c/0x320
[   82.797766][ T5381]  fw_change+0x47f/0x770
[   82.797845][ T5381]  ? __pfx_fw_change+0x10/0x10
[   82.797885][ T5381]  tc_new_tfilter+0xde4/0x10a0
[   82.797932][ T5381]  ? __pfx_tc_new_tfilter+0x10/0x10
[   82.798029][ T5381]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   82.798066][ T5381]  netlink_rcv_skb+0x123/0x220
[   82.798181][ T5381]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   82.798274][ T5381]  rtnetlink_rcv+0x1c/0x30
[   82.798301][ T5381]  netlink_unicast+0x59e/0x670
[   82.798404][ T5381]  netlink_sendmsg+0x58b/0x6b0
[   82.798432][ T5381]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.798458][ T5381]  __sock_sendmsg+0x142/0x180
[   82.798491][ T5381]  ____sys_sendmsg+0x31e/0x4e0
[   82.798654][ T5381]  ___sys_sendmsg+0x17b/0x1d0
[   82.798720][ T5381]  __x64_sys_sendmsg+0xd4/0x160
[   82.798780][ T5381]  x64_sys_call+0x2999/0x2fb0
[   82.798811][ T5381]  do_syscall_64+0xd2/0x200
[   82.798902][ T5381]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   82.798938][ T5381]  ? clear_bhb_loop+0x40/0x90
[   82.799022][ T5381]  ? clear_bhb_loop+0x40/0x90
[   82.799112][ T5381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.799140][ T5381] RIP: 0033:0x7f3c6826e929
[   82.799162][ T5381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.799184][ T5381] RSP: 002b:00007f3c668d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.799210][ T5381] RAX: ffffffffffffffda RBX: 00007f3c68495fa0 RCX: 00007f3c6826e929
[   82.799227][ T5381] RDX: 0000000004000800 RSI: 0000200000006040 RDI: 0000000000000004
[   82.799244][ T5381] RBP: 00007f3c668d7090 R08: 0000000000000000 R09: 0000000000000000
[   82.799286][ T5381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   82.799326][ T5381] R13: 0000000000000000 R14: 00007f3c68495fa0 R15: 00007ffdbe74c908
[   82.799353][ T5381]  </TASK>
[   82.933579][ T5387] loop1: detected capacity change from 0 to 512
[   83.060932][ T5393] __nla_validate_parse: 1 callbacks suppressed
[   83.060952][ T5393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.518'.
[   83.098002][ T5387] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.102133][ T5393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.518'.
[   83.107684][ T5387] ext4 filesystem being mounted at /125/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   83.311436][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.317510][ T5401] loop2: detected capacity change from 0 to 2048
[   83.347424][ T5401] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   83.531469][ T5410] loop9: detected capacity change from 0 to 7
[   83.534669][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.547394][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.555259][ T3302]  loop9: unable to read partition table
[   83.558006][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.558116][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.558234][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.558342][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.558447][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.558588][ T3302] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.614065][ T5410] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.614978][ T5410] Buffer I/O error on dev loop9, logical block 0, async page read
[   83.615277][ T5410]  loop9: unable to read partition table
[   83.615528][ T5410] loop_reread_partitions: partition scan of loop9 (þ被üŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[   83.615528][ T5410] 
Uªÿÿÿÿÿÿ) failed (rc=-5)
[   83.746980][ T5422] FAULT_INJECTION: forcing a failure.
[   83.746980][ T5422] name failslab, interval 1, probability 0, space 0, times 0
[   83.747014][ T5422] CPU: 0 UID: 0 PID: 5422 Comm: syz.0.537 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   83.747073][ T5422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.747085][ T5422] Call Trace:
[   83.747090][ T5422]  <TASK>
[   83.747096][ T5422]  __dump_stack+0x1d/0x30
[   83.747120][ T5422]  dump_stack_lvl+0xe8/0x140
[   83.747151][ T5422]  dump_stack+0x15/0x1b
[   83.747172][ T5422]  should_fail_ex+0x265/0x280
[   83.747212][ T5422]  ? alloc_netdev_mqs+0x829/0xab0
[   83.747248][ T5422]  should_failslab+0x8c/0xb0
[   83.747270][ T5422]  __kmalloc_cache_noprof+0x4c/0x320
[   83.747406][ T5422]  alloc_netdev_mqs+0x829/0xab0
[   83.747439][ T5422]  rtnl_create_link+0x239/0x710
[   83.747478][ T5422]  rtnl_newlink_create+0x14c/0x620
[   83.747552][ T5422]  ? security_capable+0x83/0x90
[   83.747662][ T5422]  ? netlink_ns_capable+0x86/0xa0
[   83.747699][ T5422]  rtnl_newlink+0xf29/0x12d0
[   83.747735][ T5422]  ? bpf_trace_run3+0x12c/0x1d0
[   83.747786][ T5422]  ? __memcg_slab_free_hook+0x135/0x230
[   83.747932][ T5422]  ? __kfree_skb+0x109/0x150
[   83.747971][ T5422]  ? __rcu_read_unlock+0x4f/0x70
[   83.748001][ T5422]  ? avc_has_perm_noaudit+0x1b1/0x200
[   83.748081][ T5422]  ? selinux_capable+0x1f9/0x270
[   83.748125][ T5422]  ? security_capable+0x83/0x90
[   83.748165][ T5422]  ? ns_capable+0x7d/0xb0
[   83.748190][ T5422]  ? __pfx_rtnl_newlink+0x10/0x10
[   83.748264][ T5422]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   83.748299][ T5422]  netlink_rcv_skb+0x123/0x220
[   83.748340][ T5422]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   83.748381][ T5422]  rtnetlink_rcv+0x1c/0x30
[   83.748475][ T5422]  netlink_unicast+0x59e/0x670
[   83.748515][ T5422]  netlink_sendmsg+0x58b/0x6b0
[   83.748543][ T5422]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.748569][ T5422]  __sock_sendmsg+0x142/0x180
[   83.748659][ T5422]  ____sys_sendmsg+0x31e/0x4e0
[   83.748705][ T5422]  ___sys_sendmsg+0x17b/0x1d0
[   83.748776][ T5422]  __x64_sys_sendmsg+0xd4/0x160
[   83.748896][ T5422]  x64_sys_call+0x2999/0x2fb0
[   83.748925][ T5422]  do_syscall_64+0xd2/0x200
[   83.748949][ T5422]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   83.749017][ T5422]  ? clear_bhb_loop+0x40/0x90
[   83.749045][ T5422]  ? clear_bhb_loop+0x40/0x90
[   83.749074][ T5422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.749125][ T5422] RIP: 0033:0x7fe3e78ee929
[   83.749152][ T5422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.749189][ T5422] RSP: 002b:00007fe3e5f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   83.749215][ T5422] RAX: ffffffffffffffda RBX: 00007fe3e7b16080 RCX: 00007fe3e78ee929
[   83.749233][ T5422] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[   83.749251][ T5422] RBP: 00007fe3e5f36090 R08: 0000000000000000 R09: 0000000000000000
[   83.749268][ T5422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.749334][ T5422] R13: 0000000000000000 R14: 00007fe3e7b16080 R15: 00007fff29085748
[   83.749360][ T5422]  </TASK>
[   84.218569][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.248275][ T5433] netlink: 4 bytes leftover after parsing attributes in process `syz.3.532'.
[   84.277104][ T5433] netlink: 4 bytes leftover after parsing attributes in process `syz.3.532'.
[   84.277268][ T5437] loop2: detected capacity change from 0 to 512
[   84.317893][ T5437] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.330637][ T5437] ext4 filesystem being mounted at /109/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.451524][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.726941][ T5454] netlink: 44 bytes leftover after parsing attributes in process `syz.2.539'.
[   84.805280][ T5458] loop2: detected capacity change from 0 to 128
[   84.869387][ T5458] syz.2.541: attempt to access beyond end of device
[   84.869387][ T5458] loop2: rw=0, sector=121, nr_sectors = 120 limit=128
[   84.921037][ T2574] kworker/u8:8: attempt to access beyond end of device
[   84.921037][ T2574] loop2: rw=1, sector=241, nr_sectors = 800 limit=128
[   84.982082][ T5465] Driver unsupported XDP return value 0 on prog  (id 391) dev N/A, expect packet loss!
[   84.994593][ T5465] lo speed is unknown, defaulting to 1000
[   84.994644][ T5465] lo speed is unknown, defaulting to 1000
[   84.999093][ T5465] lo speed is unknown, defaulting to 1000
[   85.022622][ T5465] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   85.055139][ T5465] lo speed is unknown, defaulting to 1000
[   85.063255][ T5465] lo speed is unknown, defaulting to 1000
[   85.071484][ T5465] lo speed is unknown, defaulting to 1000
[   85.084531][ T5465] lo speed is unknown, defaulting to 1000
[   85.094872][ T5465] lo speed is unknown, defaulting to 1000
[   85.161913][ T5469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.546'.
[   85.168545][ T5467] loop2: detected capacity change from 0 to 2048
[   85.173617][ T5469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.546'.
[   85.191687][ T5467] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   85.287606][ T5472] loop3: detected capacity change from 0 to 1024
[   85.314908][ T5472] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.341547][ T5264] syz_tun: left allmulticast mode
[   85.365456][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.375133][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.435867][ T5481] dvmrp1: entered allmulticast mode
[   85.520680][ T5487] loop1: detected capacity change from 0 to 1024
[   85.534338][ T5487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.567946][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.768045][ T5495] loop1: detected capacity change from 0 to 1024
[   85.777401][ T5495] EXT4-fs: Ignoring removed bh option
[   85.790010][ T5498] netlink: 44 bytes leftover after parsing attributes in process `syz.0.554'.
[   85.811917][ T5495] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   85.833250][ T5495] EXT4-fs error (device loop1): ext4_quota_enable:7124: comm syz.1.553: inode #2304: comm syz.1.553: iget: illegal inode #
[   85.846769][ T5495] EXT4-fs (loop1): Remounting filesystem read-only
[   85.853326][ T5495] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[   85.868861][ T5495] EXT4-fs (loop1): mount failed
[   85.915875][ T5495] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.936347][ T5495] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.122478][ T5511] loop2: detected capacity change from 0 to 512
[   86.217684][ T5511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.232466][ T5511] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.423074][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.471859][ T5523] loop3: detected capacity change from 0 to 1024
[   86.482250][ T5523] EXT4-fs: Ignoring removed bh option
[   86.488418][ T5523] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.500358][ T5523] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   86.508601][ T5523] EXT4-fs (loop3): orphan cleanup on readonly fs
[   86.516171][ T5523] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.560: Invalid inode table block 0 in block_group 0
[   86.528946][ T5523] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   86.538864][ T5523] EXT4-fs error (device loop3): ext4_quota_write:7322: inode #3: comm syz.3.560: mark_inode_dirty error
[   86.561846][ T5523] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.560: Failed to acquire dquot type 0
[   86.578448][ T5523] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.560: Invalid inode table block 0 in block_group 0
[   86.591717][ T5523] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   86.602104][ T5523] EXT4-fs error (device loop3): ext4_ext_truncate:4475: inode #15: comm syz.3.560: mark_inode_dirty error
[   86.614320][ T5523] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.560: Invalid inode table block 0 in block_group 0
[   86.627295][ T5532] loop2: detected capacity change from 0 to 512
[   86.628529][ T5523] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   86.643875][ T5523] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   86.654347][ T5523] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.560: Invalid inode table block 0 in block_group 0
[   86.668091][ T5523] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   86.679133][ T5532] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.685461][ T5537] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[   86.696625][ T5532] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.706818][ T5537] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[   86.713800][ T5523] EXT4-fs error (device loop3): ext4_truncate:4597: inode #15: comm syz.3.560: mark_inode_dirty error
[   86.736199][ T5523] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   86.745178][ T5523] EXT4-fs (loop3): 1 truncate cleaned up
[   86.769794][ T5523] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.817327][ T5523] syz_tun: entered allmulticast mode
[   86.828610][ T5523] syzkaller1: entered promiscuous mode
[   86.828629][ T5523] syzkaller1: entered allmulticast mode
[   86.897713][ T5521] syz_tun: left allmulticast mode
[   86.916687][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.052433][ T5554] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   87.259372][ T5564] loop3: detected capacity change from 0 to 256
[   87.325818][ T5567] FAULT_INJECTION: forcing a failure.
[   87.325818][ T5567] name failslab, interval 1, probability 0, space 0, times 0
[   87.325879][ T5567] CPU: 0 UID: 0 PID: 5567 Comm: syz.3.577 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   87.325911][ T5567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   87.325926][ T5567] Call Trace:
[   87.325932][ T5567]  <TASK>
[   87.325940][ T5567]  __dump_stack+0x1d/0x30
[   87.325974][ T5567]  dump_stack_lvl+0xe8/0x140
[   87.325992][ T5567]  dump_stack+0x15/0x1b
[   87.326012][ T5567]  should_fail_ex+0x265/0x280
[   87.326074][ T5567]  should_failslab+0x8c/0xb0
[   87.326206][ T5567]  kmem_cache_alloc_noprof+0x50/0x310
[   87.326233][ T5567]  ? alloc_empty_file+0x76/0x200
[   87.326300][ T5567]  ? perf_callchain_kernel+0x301/0x330
[   87.326354][ T5567]  alloc_empty_file+0x76/0x200
[   87.326382][ T5567]  path_openat+0x68/0x2170
[   87.326477][ T5567]  ? __bpf_get_stackid+0x166/0x800
[   87.326509][ T5567]  ? _parse_integer_limit+0x170/0x190
[   87.326537][ T5567]  ? _parse_integer+0x27/0x40
[   87.326567][ T5567]  ? kstrtoull+0x111/0x140
[   87.326659][ T5567]  ? kstrtouint+0x76/0xc0
[   87.326685][ T5567]  do_filp_open+0x109/0x230
[   87.326728][ T5567]  do_sys_openat2+0xa6/0x110
[   87.326791][ T5567]  __x64_sys_creat+0x65/0x90
[   87.326831][ T5567]  x64_sys_call+0x114d/0x2fb0
[   87.326856][ T5567]  do_syscall_64+0xd2/0x200
[   87.326878][ T5567]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   87.326935][ T5567]  ? clear_bhb_loop+0x40/0x90
[   87.326958][ T5567]  ? clear_bhb_loop+0x40/0x90
[   87.327019][ T5567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.327045][ T5567] RIP: 0033:0x7fca1bd5e929
[   87.327063][ T5567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.327088][ T5567] RSP: 002b:00007fca1a3a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   87.327111][ T5567] RAX: ffffffffffffffda RBX: 00007fca1bf86080 RCX: 00007fca1bd5e929
[   87.327124][ T5567] RDX: 0000000000000000 RSI: c9028ba210c11f8b RDI: 00002000000000c0
[   87.327208][ T5567] RBP: 00007fca1a3a6090 R08: 0000000000000000 R09: 0000000000000000
[   87.327223][ T5567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.327235][ T5567] R13: 0000000000000001 R14: 00007fca1bf86080 R15: 00007fffa7656ed8
[   87.327324][ T5567]  </TASK>
[   87.524096][ T5572] siw: device registration error -23
[   87.561164][ T5572] lo speed is unknown, defaulting to 1000
[   87.714963][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.745073][   T29] kauditd_printk_skb: 261 callbacks suppressed
[   87.745104][   T29] audit: type=1326 audit(1750012270.022:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.791126][ T5576] loop1: detected capacity change from 0 to 164
[   87.808556][ T5576] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   87.824914][ T5576] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   87.852160][ T5576] Symlink component flag not implemented
[   87.857970][ T5576] Symlink component flag not implemented
[   87.870331][   T29] audit: type=1326 audit(1750012270.062:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.893785][   T29] audit: type=1326 audit(1750012270.062:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.905892][ T5576] Symlink component flag not implemented (7)
[   87.917154][   T29] audit: type=1326 audit(1750012270.062:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.917264][   T29] audit: type=1326 audit(1750012270.062:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.923211][ T5576] Symlink component flag not implemented (116)
[   87.976411][   T29] audit: type=1326 audit(1750012270.062:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   87.999770][   T29] audit: type=1326 audit(1750012270.062:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   88.023245][   T29] audit: type=1326 audit(1750012270.062:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   88.046667][   T29] audit: type=1326 audit(1750012270.062:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   88.070025][   T29] audit: type=1326 audit(1750012270.062:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5575 comm="syz.1.582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3c6826e929 code=0x7ffc0000
[   88.132674][ T5583] loop3: detected capacity change from 0 to 164
[   88.169081][ T5583] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   88.260605][ T5591] FAULT_INJECTION: forcing a failure.
[   88.260605][ T5591] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.273772][ T5591] CPU: 1 UID: 0 PID: 5591 Comm: syz.0.587 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   88.273857][ T5591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   88.273872][ T5591] Call Trace:
[   88.273880][ T5591]  <TASK>
[   88.273887][ T5591]  __dump_stack+0x1d/0x30
[   88.273932][ T5591]  dump_stack_lvl+0xe8/0x140
[   88.274022][ T5591]  dump_stack+0x15/0x1b
[   88.274037][ T5591]  should_fail_ex+0x265/0x280
[   88.274090][ T5591]  should_fail+0xb/0x20
[   88.274116][ T5591]  should_fail_usercopy+0x1a/0x20
[   88.274229][ T5591]  _copy_to_user+0x20/0xa0
[   88.274279][ T5591]  semctl_main+0x79c/0xd40
[   88.274329][ T5591]  __se_sys_semctl+0x274/0x2d0
[   88.274360][ T5591]  __x64_sys_semctl+0x55/0x70
[   88.274390][ T5591]  x64_sys_call+0x2ec1/0x2fb0
[   88.274488][ T5591]  do_syscall_64+0xd2/0x200
[   88.274504][ T5591]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   88.274529][ T5591]  ? clear_bhb_loop+0x40/0x90
[   88.274553][ T5591]  ? clear_bhb_loop+0x40/0x90
[   88.274588][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.274608][ T5591] RIP: 0033:0x7fe3e78ee929
[   88.274622][ T5591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.274639][ T5591] RSP: 002b:00007fe3e5f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[   88.274714][ T5591] RAX: ffffffffffffffda RBX: 00007fe3e7b15fa0 RCX: 00007fe3e78ee929
[   88.274725][ T5591] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000
[   88.274736][ T5591] RBP: 00007fe3e5f57090 R08: 0000000000000000 R09: 0000000000000000
[   88.274747][ T5591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.274758][ T5591] R13: 0000000000000000 R14: 00007fe3e7b15fa0 R15: 00007fff29085748
[   88.274777][ T5591]  </TASK>
[   88.468007][ T5585] loop1: detected capacity change from 0 to 512
[   88.477369][ T5585] ext4: Unknown parameter 'nolazytime"noload'
[   88.507087][ T5593] __nla_validate_parse: 2 callbacks suppressed
[   88.507105][ T5593] netlink: 4 bytes leftover after parsing attributes in process `syz.4.589'.
[   88.525609][ T5593] netlink: 4 bytes leftover after parsing attributes in process `syz.4.589'.
[   88.589426][ T5601] loop4: detected capacity change from 0 to 512
[   88.719333][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.733769][ T5601] ext4 filesystem being mounted at /99/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.755037][ T5605] lo speed is unknown, defaulting to 1000
[   89.090234][ T5616] lo speed is unknown, defaulting to 1000
[   89.327922][ T5627] netlink: 'syz.2.599': attribute type 6 has an invalid length.
[   89.390873][ T5631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.601'.
[   89.391136][ T5631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.601'.
[   89.461745][ T5635] process 'syz.0.603' launched '/dev/fd/3' with NULL argv: empty string added
[   89.505190][ T5638] lo speed is unknown, defaulting to 1000
[   89.546231][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.677376][ T5647] siw: device registration error -23
[   89.701537][ T5647] lo speed is unknown, defaulting to 1000
[   89.832552][ T5653] loop4: detected capacity change from 0 to 164
[   89.847685][ T5654] openvswitch: netlink: Message has 6 unknown bytes.
[   89.856967][ T5656] SELinux:  policydb magic number 0xc0 does not match expected magic number 0xf97cff8c
[   89.860739][ T5654] netlink: 'syz.3.612': attribute type 10 has an invalid length.
[   89.872864][ T5656] SELinux: failed to load policy
[   89.874432][ T5654] netlink: 40 bytes leftover after parsing attributes in process `syz.3.612'.
[   89.880258][ T5656] netlink: '+}[@': attribute type 10 has an invalid length.
[   89.895857][ T5656] netlink: 40 bytes leftover after parsing attributes in process `+}[@'.
[   89.906097][ T5653] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   89.923300][ T5653] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   89.937458][ T5654] team0: Port device geneve1 added
[   89.951774][ T5656] dummy0: entered promiscuous mode
[   89.957558][ T5656] bridge0: port 3(dummy0) entered blocking state
[   89.963980][ T5656] bridge0: port 3(dummy0) entered disabled state
[   89.970918][ T5656] dummy0: entered allmulticast mode
[   89.977055][ T5656] bridge0: port 3(dummy0) entered blocking state
[   89.983505][ T5656] bridge0: port 3(dummy0) entered forwarding state
[   90.012354][ T5653] Symlink component flag not implemented
[   90.018131][ T5653] Symlink component flag not implemented
[   90.024367][ T5653] Symlink component flag not implemented (7)
[   90.030432][ T5653] Symlink component flag not implemented (116)
[   90.052777][ T5665] netlink: 4 bytes leftover after parsing attributes in process `syz.3.612'.
[   90.055750][ T5664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.614'.
[   90.078114][ T5664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.614'.
[   90.309939][ T5680] loop4: detected capacity change from 0 to 164
[   90.457263][ T5685] lo speed is unknown, defaulting to 1000
[   90.630702][ T5680] FAULT_INJECTION: forcing a failure.
[   90.630702][ T5680] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   90.644053][ T5680] CPU: 0 UID: 0 PID: 5680 Comm: syz.4.620 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   90.644144][ T5680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.644160][ T5680] Call Trace:
[   90.644168][ T5680]  <TASK>
[   90.644178][ T5680]  __dump_stack+0x1d/0x30
[   90.644202][ T5680]  dump_stack_lvl+0xe8/0x140
[   90.644265][ T5680]  dump_stack+0x15/0x1b
[   90.644350][ T5680]  should_fail_ex+0x265/0x280
[   90.644533][ T5680]  should_fail_alloc_page+0xf2/0x100
[   90.644560][ T5680]  __alloc_frozen_pages_noprof+0xff/0x360
[   90.644603][ T5680]  alloc_pages_mpol+0xb3/0x250
[   90.644632][ T5680]  alloc_pages_noprof+0x90/0x130
[   90.644726][ T5680]  pgd_alloc+0x51/0x2e0
[   90.644748][ T5680]  mm_init+0x37c/0x850
[   90.644800][ T5680]  ? kmem_cache_alloc_noprof+0x220/0x310
[   90.644831][ T5680]  ? mm_alloc+0x2b/0xa0
[   90.644889][ T5680]  mm_alloc+0x81/0xa0
[   90.644914][ T5680]  alloc_bprm+0x20e/0x350
[   90.644956][ T5680]  do_execveat_common+0x12e/0x750
[   90.644987][ T5680]  ? getname_flags+0x154/0x3b0
[   90.645013][ T5680]  __x64_sys_execveat+0x73/0x90
[   90.645064][ T5680]  x64_sys_call+0x2dae/0x2fb0
[   90.645091][ T5680]  do_syscall_64+0xd2/0x200
[   90.645184][ T5680]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   90.645213][ T5680]  ? clear_bhb_loop+0x40/0x90
[   90.645237][ T5680]  ? clear_bhb_loop+0x40/0x90
[   90.645269][ T5680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.645292][ T5680] RIP: 0033:0x7f52912fe929
[   90.645311][ T5680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.645337][ T5680] RSP: 002b:00007f528f967038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   90.645427][ T5680] RAX: ffffffffffffffda RBX: 00007f5291525fa0 RCX: 00007f52912fe929
[   90.645440][ T5680] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   90.645465][ T5680] RBP: 00007f528f967090 R08: 0000000000001000 R09: 0000000000000000
[   90.645528][ T5680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.645543][ T5680] R13: 0000000000000000 R14: 00007f5291525fa0 R15: 00007ffd8aa270a8
[   90.645562][ T5680]  </TASK>
[   90.925077][ T5690] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[   90.998429][ T5696] loop3: detected capacity change from 0 to 164
[   91.006670][ T5696] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   91.027448][ T5696] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   91.045553][ T5696] Symlink component flag not implemented
[   91.051351][ T5696] Symlink component flag not implemented
[   91.063250][ T5696] Symlink component flag not implemented (7)
[   91.069509][ T5696] Symlink component flag not implemented (116)
[   91.082444][ T5695] loop4: detected capacity change from 0 to 1024
[   91.117104][ T5695] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.140507][ T5695] netlink: 228 bytes leftover after parsing attributes in process `syz.4.627'.
[   91.174500][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.320041][ T5715] loop4: detected capacity change from 0 to 1024
[   91.393401][ T5723] lo speed is unknown, defaulting to 1000
[   91.447567][ T5715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.524782][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.599209][ T5736] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.630826][ T5736] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.713714][ T5736] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.745584][ T5736] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.843189][ T5746] loop2: detected capacity change from 0 to 164
[   91.855116][ T5746] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   91.866846][ T5746] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   91.887953][ T5746] Symlink component flag not implemented
[   91.893705][ T5746] Symlink component flag not implemented
[   91.893886][ T5748] loop1: detected capacity change from 0 to 8192
[   91.904033][ T5746] Symlink component flag not implemented (7)
[   91.911980][ T5746] Symlink component flag not implemented (116)
[   92.176578][ T5752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.185682][ T5752] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.594721][ T5762] FAULT_INJECTION: forcing a failure.
[   92.594721][ T5762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.607935][ T5762] CPU: 0 UID: 0 PID: 5762 Comm: syz.4.647 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   92.608019][ T5762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.608030][ T5762] Call Trace:
[   92.608037][ T5762]  <TASK>
[   92.608106][ T5762]  __dump_stack+0x1d/0x30
[   92.608127][ T5762]  dump_stack_lvl+0xe8/0x140
[   92.608147][ T5762]  dump_stack+0x15/0x1b
[   92.608163][ T5762]  should_fail_ex+0x265/0x280
[   92.608193][ T5762]  should_fail+0xb/0x20
[   92.608240][ T5762]  should_fail_usercopy+0x1a/0x20
[   92.608302][ T5762]  _copy_from_user+0x1c/0xb0
[   92.608322][ T5762]  io_sqe_files_register+0x1e5/0x4f0
[   92.608355][ T5762]  __se_sys_io_uring_register+0xb01/0xeb0
[   92.608382][ T5762]  ? fput+0x8f/0xc0
[   92.608412][ T5762]  ? ksys_write+0x192/0x1a0
[   92.608450][ T5762]  __x64_sys_io_uring_register+0x55/0x70
[   92.608530][ T5762]  x64_sys_call+0xc91/0x2fb0
[   92.608554][ T5762]  do_syscall_64+0xd2/0x200
[   92.608618][ T5762]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   92.608653][ T5762]  ? clear_bhb_loop+0x40/0x90
[   92.608680][ T5762]  ? clear_bhb_loop+0x40/0x90
[   92.608708][ T5762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.608735][ T5762] RIP: 0033:0x7f52912fe929
[   92.608753][ T5762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.608826][ T5762] RSP: 002b:00007f528f967038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   92.608850][ T5762] RAX: ffffffffffffffda RBX: 00007f5291525fa0 RCX: 00007f52912fe929
[   92.608861][ T5762] RDX: 0000200000000180 RSI: 0000000000000002 RDI: 0000000000000003
[   92.608875][ T5762] RBP: 00007f528f967090 R08: 0000000000000000 R09: 0000000000000000
[   92.608891][ T5762] R10: 00000000000000fe R11: 0000000000000246 R12: 0000000000000001
[   92.608906][ T5762] R13: 0000000000000000 R14: 00007f5291525fa0 R15: 00007ffd8aa270a8
[   92.608993][ T5762]  </TASK>
[   92.815479][ T5764] loop4: detected capacity change from 0 to 1024
[   92.837942][ T5764] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.891969][   T29] kauditd_printk_skb: 187 callbacks suppressed
[   92.891992][   T29] audit: type=1400 audit(1750012275.172:2656): avc:  denied  { write } for  pid=5768 comm="syz.2.649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   92.920158][   T29] audit: type=1400 audit(1750012275.202:2657): avc:  denied  { nlmsg_write } for  pid=5768 comm="syz.2.649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   92.947167][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.972488][ T5769] loop2: detected capacity change from 0 to 256
[   92.985794][ T5769] vfat: Unknown parameter '0000000376746465766000000000000000000000000000ÿÿ'
[   93.041318][ T5778] loop3: detected capacity change from 0 to 164
[   93.050474][ T5778] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   93.076129][ T5778] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   93.103214][   T29] audit: type=1326 audit(1750012275.322:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.126657][   T29] audit: type=1326 audit(1750012275.322:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.150094][   T29] audit: type=1326 audit(1750012275.322:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.173476][   T29] audit: type=1326 audit(1750012275.322:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.196970][   T29] audit: type=1326 audit(1750012275.322:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.220541][   T29] audit: type=1326 audit(1750012275.322:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.243995][   T29] audit: type=1326 audit(1750012275.322:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.267414][   T29] audit: type=1326 audit(1750012275.322:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5777 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   93.275765][ T5778] Symlink component flag not implemented
[   93.297278][ T5778] Symlink component flag not implemented
[   93.309085][ T5778] Symlink component flag not implemented (7)
[   93.315150][ T5778] Symlink component flag not implemented (116)
[   93.315710][ T5780] FAULT_INJECTION: forcing a failure.
[   93.315710][ T5780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.334494][ T5780] CPU: 1 UID: 0 PID: 5780 Comm: syz.4.655 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   93.334573][ T5780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   93.334586][ T5780] Call Trace:
[   93.334593][ T5780]  <TASK>
[   93.334601][ T5780]  __dump_stack+0x1d/0x30
[   93.334622][ T5780]  dump_stack_lvl+0xe8/0x140
[   93.334692][ T5780]  dump_stack+0x15/0x1b
[   93.334708][ T5780]  should_fail_ex+0x265/0x280
[   93.334788][ T5780]  should_fail+0xb/0x20
[   93.334817][ T5780]  should_fail_usercopy+0x1a/0x20
[   93.334896][ T5780]  _copy_from_user+0x1c/0xb0
[   93.334917][ T5780]  ___sys_sendmsg+0xc1/0x1d0
[   93.334955][ T5780]  __x64_sys_sendmsg+0xd4/0x160
[   93.335039][ T5780]  x64_sys_call+0x2999/0x2fb0
[   93.335135][ T5780]  do_syscall_64+0xd2/0x200
[   93.335153][ T5780]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   93.335180][ T5780]  ? clear_bhb_loop+0x40/0x90
[   93.335202][ T5780]  ? clear_bhb_loop+0x40/0x90
[   93.335265][ T5780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.335286][ T5780] RIP: 0033:0x7f52912fe929
[   93.335301][ T5780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.335360][ T5780] RSP: 002b:00007f528f967038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.335381][ T5780] RAX: ffffffffffffffda RBX: 00007f5291525fa0 RCX: 00007f52912fe929
[   93.335397][ T5780] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000006
[   93.335412][ T5780] RBP: 00007f528f967090 R08: 0000000000000000 R09: 0000000000000000
[   93.335427][ T5780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.335442][ T5780] R13: 0000000000000000 R14: 00007f5291525fa0 R15: 00007ffd8aa270a8
[   93.335465][ T5780]  </TASK>
[   93.541230][ T5783] loop2: detected capacity change from 0 to 1024
[   93.549453][ T5783] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.583642][ T5783] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   93.605573][ T5785] __nla_validate_parse: 11 callbacks suppressed
[   93.605590][ T5785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.657'.
[   93.625127][ T5785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.657'.
[   94.583608][ T5818] FAULT_INJECTION: forcing a failure.
[   94.583608][ T5818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.596785][ T5818] CPU: 1 UID: 0 PID: 5818 Comm: syz.2.667 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   94.596868][ T5818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   94.596881][ T5818] Call Trace:
[   94.596888][ T5818]  <TASK>
[   94.596896][ T5818]  __dump_stack+0x1d/0x30
[   94.596922][ T5818]  dump_stack_lvl+0xe8/0x140
[   94.596945][ T5818]  dump_stack+0x15/0x1b
[   94.596965][ T5818]  should_fail_ex+0x265/0x280
[   94.597035][ T5818]  should_fail+0xb/0x20
[   94.597065][ T5818]  should_fail_usercopy+0x1a/0x20
[   94.597169][ T5818]  _copy_from_iter+0xcf/0xe40
[   94.597194][ T5818]  ? __build_skb_around+0x1a0/0x200
[   94.597234][ T5818]  skb_copy_datagram_from_iter+0xb1/0x490
[   94.597290][ T5818]  tun_get_user+0xa0e/0x2500
[   94.597331][ T5818]  ? ref_tracker_alloc+0x1f2/0x2f0
[   94.597473][ T5818]  ? selinux_file_permission+0x1e4/0x320
[   94.597503][ T5818]  tun_chr_write_iter+0x15e/0x210
[   94.597535][ T5818]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   94.597612][ T5818]  vfs_write+0x4a0/0x8e0
[   94.597654][ T5818]  ksys_write+0xda/0x1a0
[   94.597671][ T5818]  __x64_sys_write+0x40/0x50
[   94.597690][ T5818]  x64_sys_call+0x2cdd/0x2fb0
[   94.597857][ T5818]  do_syscall_64+0xd2/0x200
[   94.597875][ T5818]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   94.597900][ T5818]  ? clear_bhb_loop+0x40/0x90
[   94.597919][ T5818]  ? clear_bhb_loop+0x40/0x90
[   94.597939][ T5818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.598012][ T5818] RIP: 0033:0x7f79a86ae929
[   94.598031][ T5818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.598051][ T5818] RSP: 002b:00007f79a6d17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   94.598069][ T5818] RAX: ffffffffffffffda RBX: 00007f79a88d5fa0 RCX: 00007f79a86ae929
[   94.598080][ T5818] RDX: 0000000000000082 RSI: 0000200000000200 RDI: 0000000000000004
[   94.598145][ T5818] RBP: 00007f79a6d17090 R08: 0000000000000000 R09: 0000000000000000
[   94.598160][ T5818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.598176][ T5818] R13: 0000000000000000 R14: 00007f79a88d5fa0 R15: 00007ffdb74bd6c8
[   94.598198][ T5818]  </TASK>
[   94.601543][ T5816] loop4: detected capacity change from 0 to 128
[   94.841308][ T5816] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 1)
[   94.850003][ T5816] FAT-fs (loop4): Filesystem has been set read-only
[   94.872211][ T5816] loop4: detected capacity change from 0 to 512
[   94.914302][ T5826] netlink: 32 bytes leftover after parsing attributes in process `syz.3.669'.
[   94.925608][ T5816] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   94.942027][ T5816] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[   94.978935][ T5829] netlink: 4 bytes leftover after parsing attributes in process `syz.2.671'.
[   95.001818][ T5829] netlink: 4 bytes leftover after parsing attributes in process `syz.2.671'.
[   95.027721][ T5816] EXT4-fs error (device loop4): __ext4_get_inode_loc:4792: comm syz.4.666: Invalid inode table block 0 in block_group 0
[   95.041739][ T5816] EXT4-fs (loop4): get root inode failed
[   95.047454][ T5816] EXT4-fs (loop4): mount failed
[   95.101857][ T5839] loop2: detected capacity change from 0 to 164
[   95.115200][ T5842] 9pnet_fd: Insufficient options for proto=fd
[   95.115959][ T5839] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   95.169977][ T5816] netlink: 56 bytes leftover after parsing attributes in process `syz.4.666'.
[   95.198770][ T5843] FAULT_INJECTION: forcing a failure.
[   95.198770][ T5843] name failslab, interval 1, probability 0, space 0, times 0
[   95.211679][ T5843] CPU: 1 UID: 0 PID: 5843 Comm: syz.1.670 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   95.211773][ T5843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   95.211789][ T5843] Call Trace:
[   95.211795][ T5843]  <TASK>
[   95.211805][ T5843]  __dump_stack+0x1d/0x30
[   95.211832][ T5843]  dump_stack_lvl+0xe8/0x140
[   95.211897][ T5843]  dump_stack+0x15/0x1b
[   95.211915][ T5843]  should_fail_ex+0x265/0x280
[   95.211945][ T5843]  should_failslab+0x8c/0xb0
[   95.211973][ T5843]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   95.212039][ T5843]  ? kstrdup_const+0x3e/0x50
[   95.212122][ T5843]  kstrdup+0x3e/0xd0
[   95.212183][ T5843]  kstrdup_const+0x3e/0x50
[   95.212210][ T5843]  alloc_vfsmnt+0xe7/0x360
[   95.212243][ T5843]  clone_mnt+0x41/0x750
[   95.212354][ T5843]  copy_tree+0x2f1/0x820
[   95.212386][ T5843]  copy_mnt_ns+0x120/0x5e0
[   95.212449][ T5843]  ? kmem_cache_alloc_noprof+0x220/0x310
[   95.212481][ T5843]  ? create_new_namespaces+0x3c/0x3d0
[   95.212588][ T5843]  create_new_namespaces+0x83/0x3d0
[   95.212622][ T5843]  unshare_nsproxy_namespaces+0xe8/0x120
[   95.212660][ T5843]  ksys_unshare+0x3d0/0x6d0
[   95.212695][ T5843]  ? ksys_write+0x192/0x1a0
[   95.212731][ T5843]  __x64_sys_unshare+0x1f/0x30
[   95.212838][ T5843]  x64_sys_call+0x2d4b/0x2fb0
[   95.212866][ T5843]  do_syscall_64+0xd2/0x200
[   95.212889][ T5843]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   95.212914][ T5843]  ? clear_bhb_loop+0x40/0x90
[   95.212993][ T5843]  ? clear_bhb_loop+0x40/0x90
[   95.213014][ T5843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.213034][ T5843] RIP: 0033:0x7f3c6826e929
[   95.213052][ T5843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.213108][ T5843] RSP: 002b:00007f3c66895038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   95.213126][ T5843] RAX: ffffffffffffffda RBX: 00007f3c68496160 RCX: 00007f3c6826e929
[   95.213138][ T5843] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040020000
[   95.213150][ T5843] RBP: 00007f3c66895090 R08: 0000000000000000 R09: 0000000000000000
[   95.213197][ T5843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.213213][ T5843] R13: 0000000000000000 R14: 00007f3c68496160 R15: 00007ffdbe74c908
[   95.213232][ T5843]  </TASK>
[   95.457172][ T5839] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   95.493170][ T5839] Symlink component flag not implemented
[   95.498931][ T5839] Symlink component flag not implemented
[   95.520801][ T5839] Symlink component flag not implemented (7)
[   95.526933][ T5839] Symlink component flag not implemented (116)
[   95.716774][ T5860] xt_policy: output policy not valid in PREROUTING and INPUT
[   95.812440][ T5865] loop2: detected capacity change from 0 to 512
[   95.826941][ T5865] EXT4-fs (loop2): can't read group descriptor 0
[   95.931221][ T5877] loop1: detected capacity change from 0 to 512
[   95.955754][ T5877] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.055397][ T5890] 9pnet_fd: Insufficient options for proto=fd
[   96.102552][ T5897] loop1: detected capacity change from 0 to 1024
[   96.112841][ T5897] EXT4-fs: Ignoring removed bh option
[   96.194228][ T5897] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.216845][ T5897] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   96.225203][ T5897] EXT4-fs (loop1): orphan cleanup on readonly fs
[   96.256027][ T5897] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.689: Invalid inode table block 0 in block_group 0
[   96.275784][ T5897] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.351241][ T5897] EXT4-fs error (device loop1): ext4_quota_write:7322: inode #3: comm syz.1.689: mark_inode_dirty error
[   96.398522][ T5923] loop2: detected capacity change from 0 to 1024
[   96.406805][ T5897] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.689: Failed to acquire dquot type 0
[   96.408680][ T5923] EXT4-fs: Ignoring removed bh option
[   96.437520][ T5923] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.451392][ T5897] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.689: Invalid inode table block 0 in block_group 0
[   96.473302][ T5897] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.486264][ T5923] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   96.499968][ T5897] EXT4-fs error (device loop1): ext4_ext_truncate:4475: inode #15: comm syz.1.689: mark_inode_dirty error
[   96.507329][ T5923] EXT4-fs (loop2): orphan cleanup on readonly fs
[   96.518513][ T5923] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.693: Invalid inode table block 0 in block_group 0
[   96.536717][ T5923] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.546785][ T5897] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.689: Invalid inode table block 0 in block_group 0
[   96.575454][ T5897] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.585009][ T5923] EXT4-fs error (device loop2): ext4_quota_write:7322: inode #3: comm syz.2.693: mark_inode_dirty error
[   96.596514][ T5923] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.693: Failed to acquire dquot type 0
[   96.597560][ T5897] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   96.624240][ T5923] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.693: Invalid inode table block 0 in block_group 0
[   96.640517][ T5937] loop4: detected capacity change from 0 to 512
[   96.649907][ T5897] EXT4-fs error (device loop1): __ext4_get_inode_loc:4792: comm syz.1.689: Invalid inode table block 0 in block_group 0
[   96.669806][ T5923] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.683225][ T5937] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.701885][ T5923] EXT4-fs error (device loop2): ext4_ext_truncate:4475: inode #15: comm syz.2.693: mark_inode_dirty error
[   96.731550][ T5897] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.731670][ T5897] EXT4-fs error (device loop1): ext4_truncate:4597: inode #15: comm syz.1.689: mark_inode_dirty error
[   96.731820][ T5897] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   96.731914][ T5897] EXT4-fs (loop1): 1 truncate cleaned up
[   96.737552][ T5897] syz_tun: entered allmulticast mode
[   96.741864][ T5897] syzkaller1: entered promiscuous mode
[   96.741885][ T5897] syzkaller1: entered allmulticast mode
[   96.775626][ T5923] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.693: Invalid inode table block 0 in block_group 0
[   96.820764][ T5896] syz_tun: left allmulticast mode
[   96.883373][ T5942] loop1: detected capacity change from 0 to 512
[   96.890621][ T5923] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.890791][ T5923] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   96.890970][ T5923] EXT4-fs error (device loop2): __ext4_get_inode_loc:4792: comm syz.2.693: Invalid inode table block 0 in block_group 0
[   96.892278][ T5923] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   96.893666][ T5923] EXT4-fs error (device loop2): ext4_truncate:4597: inode #15: comm syz.2.693: mark_inode_dirty error
[   96.895577][ T5923] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   96.896731][ T5923] EXT4-fs (loop2): 1 truncate cleaned up
[   96.905380][ T5942] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   96.924228][ T5923] syz_tun: entered allmulticast mode
[   96.952414][ T5944] loop3: detected capacity change from 0 to 512
[   96.973435][ T5923] syzkaller1: entered promiscuous mode
[   96.994264][ T5923] syzkaller1: entered allmulticast mode
[   97.137827][ T5922] syz_tun: left allmulticast mode
[   97.164379][ T5944] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.268839][ T5969] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   97.268887][ T5969] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.319215][ T5969] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   97.319272][ T5969] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.369046][ T5969] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   97.369091][ T5969] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.422056][ T5969] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   97.422092][ T5969] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.449303][ T5976] netlink: 4 bytes leftover after parsing attributes in process `syz.3.705'.
[   97.471931][ T5969] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   97.472062][ T5969] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.491900][ T5969] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   97.492005][ T5969] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.497015][ T5969] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   97.497062][ T5969] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.507001][ T5969] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   97.507049][ T5969] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.603406][ T5996] loop3: detected capacity change from 0 to 512
[   97.603792][ T5996] EXT4-fs: Ignoring removed bh option
[   97.616372][ T5996] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.616396][ T5996] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   97.618698][ T5996] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[   97.619151][ T5996] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   97.699379][ T6003] lo: entered allmulticast mode
[   97.746081][ T6002] lo: left allmulticast mode
[   97.808779][ T6011] ipvlan2: entered promiscuous mode
[   97.809726][ T6011] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   97.811071][ T6011] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   97.844806][ T6018] netlink: 20 bytes leftover after parsing attributes in process `syz.0.710'.
[   98.360060][ T6038] siw: device registration error -23
[   98.531972][ T6038] lo speed is unknown, defaulting to 1000
[   98.722415][ T6019] SET target dimension over the limit!
[   99.056557][ T6043] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.148201][ T6043] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.190575][ T6048] lo: entered allmulticast mode
[   99.236950][ T6043] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.277301][ T6047] lo: left allmulticast mode
[   99.316976][ T6043] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.328666][ T6052] FAULT_INJECTION: forcing a failure.
[   99.328666][ T6052] name failslab, interval 1, probability 0, space 0, times 0
[   99.341589][ T6052] CPU: 1 UID: 0 PID: 6052 Comm: syz.3.722 Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[   99.341622][ T6052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   99.341637][ T6052] Call Trace:
[   99.341678][ T6052]  <TASK>
[   99.341685][ T6052]  __dump_stack+0x1d/0x30
[   99.341706][ T6052]  dump_stack_lvl+0xe8/0x140
[   99.341723][ T6052]  dump_stack+0x15/0x1b
[   99.341738][ T6052]  should_fail_ex+0x265/0x280
[   99.341783][ T6052]  should_failslab+0x8c/0xb0
[   99.341812][ T6052]  kmem_cache_alloc_noprof+0x50/0x310
[   99.341843][ T6052]  ? security_inode_alloc+0x37/0x100
[   99.341873][ T6052]  security_inode_alloc+0x37/0x100
[   99.341936][ T6052]  inode_init_always_gfp+0x4b7/0x500
[   99.342008][ T6052]  ? __pfx_proc_alloc_inode+0x10/0x10
[   99.342033][ T6052]  alloc_inode+0x58/0x170
[   99.342103][ T6052]  new_inode+0x1d/0xe0
[   99.342123][ T6052]  proc_pid_make_inode+0x1f/0xd0
[   99.342155][ T6052]  proc_map_files_instantiate+0x81/0x130
[   99.342184][ T6052]  proc_fill_cache+0x1c4/0x240
[   99.342231][ T6052]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[   99.342261][ T6052]  proc_map_files_readdir+0x500/0x680
[   99.342290][ T6052]  iterate_dir+0x111/0x330
[   99.342342][ T6052]  ? mutex_lock+0xd/0x30
[   99.342372][ T6052]  __se_sys_getdents64+0x88/0x1b0
[   99.342406][ T6052]  ? __pfx_filldir64+0x10/0x10
[   99.342449][ T6052]  __x64_sys_getdents64+0x43/0x50
[   99.342480][ T6052]  x64_sys_call+0x1302/0x2fb0
[   99.342555][ T6052]  do_syscall_64+0xd2/0x200
[   99.342583][ T6052]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   99.342615][ T6052]  ? clear_bhb_loop+0x40/0x90
[   99.342640][ T6052]  ? clear_bhb_loop+0x40/0x90
[   99.342700][ T6052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.342780][ T6052] RIP: 0033:0x7fca1bd5e929
[   99.342795][ T6052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.342836][ T6052] RSP: 002b:00007fca1a3c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   99.342857][ T6052] RAX: ffffffffffffffda RBX: 00007fca1bf85fa0 RCX: 00007fca1bd5e929
[   99.342869][ T6052] RDX: 0000000000000ff6 RSI: 0000200000001fc0 RDI: 0000000000000005
[   99.342880][ T6052] RBP: 00007fca1a3c7090 R08: 0000000000000000 R09: 0000000000000000
[   99.342916][ T6052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   99.342927][ T6052] R13: 0000000000000000 R14: 00007fca1bf85fa0 R15: 00007fffa7656ed8
[   99.342949][ T6052]  </TASK>
[   99.828869][ T6043] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.861104][ T6043] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.882940][ T6043] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.896493][   T29] kauditd_printk_skb: 189 callbacks suppressed
[   99.896509][   T29] audit: type=1326 audit(1750012282.162:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   99.926227][   T29] audit: type=1326 audit(1750012282.162:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   99.949594][   T29] audit: type=1326 audit(1750012282.162:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   99.973015][   T29] audit: type=1326 audit(1750012282.162:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[   99.996446][   T29] audit: type=1326 audit(1750012282.162:2855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.019809][   T29] audit: type=1326 audit(1750012282.162:2856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.043337][   T29] audit: type=1326 audit(1750012282.162:2857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.106772][   T29] audit: type=1326 audit(1750012282.392:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.111110][ T6043] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.130175][   T29] audit: type=1326 audit(1750012282.392:2859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.182910][   T29] audit: type=1326 audit(1750012282.452:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6053 comm="syz.3.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca1bd5e929 code=0x7ffc0000
[  100.213543][ T6061] loop1: detected capacity change from 0 to 512
[  100.259693][ T6060] loop3: detected capacity change from 0 to 256
[  100.266942][ T6061] EXT4-fs mount: 16 callbacks suppressed
[  100.266955][ T6061] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.296884][ T6060] FAT-fs (loop3): bogus number of FAT sectors
[  100.303072][ T6060] FAT-fs (loop3): Can't find a valid FAT filesystem
[  100.315494][ T6061] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  100.906103][ T6100] bond1: entered promiscuous mode
[  100.906125][ T6100] bond1: entered allmulticast mode
[  100.906475][ T6100] 8021q: adding VLAN 0 to HW filter on device bond1
[  100.910751][ T6100] bond1 (unregistering): Released all slaves
[  101.208800][ T6118] loop2: detected capacity change from 0 to 128
[  101.243004][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243004][ T6118] loop2: rw=2049, sector=140, nr_sectors = 8 limit=128
[  101.243092][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243092][ T6118] loop2: rw=2049, sector=156, nr_sectors = 1 limit=128
[  101.243132][ T6118] buffer_io_error: 4 callbacks suppressed
[  101.243168][ T6118] Buffer I/O error on dev loop2, logical block 156, lost async page write
[  101.243261][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243261][ T6118] loop2: rw=2049, sector=157, nr_sectors = 1 limit=128
[  101.243289][ T6118] Buffer I/O error on dev loop2, logical block 157, lost async page write
[  101.243533][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243533][ T6118] loop2: rw=2049, sector=158, nr_sectors = 1 limit=128
[  101.243554][ T6118] Buffer I/O error on dev loop2, logical block 158, lost async page write
[  101.243581][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243581][ T6118] loop2: rw=2049, sector=159, nr_sectors = 1 limit=128
[  101.243603][ T6118] Buffer I/O error on dev loop2, logical block 159, lost async page write
[  101.243719][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243719][ T6118] loop2: rw=2049, sector=160, nr_sectors = 1 limit=128
[  101.243740][ T6118] Buffer I/O error on dev loop2, logical block 160, lost async page write
[  101.243763][ T6118] syz.2.738: attempt to access beyond end of device
[  101.243763][ T6118] loop2: rw=2049, sector=161, nr_sectors = 1 limit=128
[  101.243825][ T6118] Buffer I/O error on dev loop2, logical block 161, lost async page write
[  101.244148][ T6118] syz.2.738: attempt to access beyond end of device
[  101.244148][ T6118] loop2: rw=2049, sector=132, nr_sectors = 1 limit=128
[  101.244175][ T6118] Buffer I/O error on dev loop2, logical block 132, lost async page write
[  101.249044][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.249078][ T6118] syz.2.738: attempt to access beyond end of device
[  101.249078][ T6118] loop2: rw=2049, sector=133, nr_sectors = 1 limit=128
[  101.249117][ T6118] Buffer I/O error on dev loop2, logical block 133, lost async page write
[  101.249183][ T3309] ==================================================================
[  101.249172][ T6118] syz.2.738: attempt to access beyond end of device
[  101.249172][ T6118] loop2: rw=2049, sector=150, nr_sectors = 1 limit=128
[  101.249210][ T6118] Buffer I/O error on dev loop2, logical block 150, lost async page write
[  101.249225][ T3309] BUG: KCSAN: data-race in data_push_tail / vsnprintf
[  101.249244][ T6118] Buffer I/O error on dev loop2, logical block 151, lost async page write
[  101.249271][ T3309] 
[  101.249277][ T3309] write to 0xffffffff88e37f2b of 41 bytes by task 6118 on cpu 0:
[  101.249292][ T3309]  vsnprintf+0x2ce/0x890
[  101.249317][ T3309]  vscnprintf+0x41/0x90
[  101.249337][ T3309]  printk_sprint+0x30/0x2d0
[  101.249353][ T3309]  vprintk_store+0x599/0x860
[  101.249368][ T3309]  vprintk_emit+0x178/0x650
[  101.249384][ T3309]  vprintk_default+0x26/0x30
[  101.249414][ T3309]  vprintk+0x1d/0x30
[  101.249443][ T3309]  _printk+0x79/0xa0
[  101.249475][ T3309]  submit_bio_noacct+0x808/0x8f0
[  101.249498][ T3309]  submit_bio+0x227/0x240
[  101.249517][ T3309]  submit_bh_wbc+0x2e0/0x320
[  101.249547][ T3309]  __block_write_full_folio+0x5ab/0x8f0
[  101.249577][ T3309]  block_write_full_folio+0x2c2/0x2e0
[  101.249599][ T3309]  mpage_writepages+0x6cf/0x1250
[  101.249624][ T3309]  fat_writepages+0x24/0x30
[  101.249657][ T3309]  do_writepages+0x1c6/0x310
[  101.249684][ T3309]  filemap_write_and_wait_range+0x144/0x340
[  101.249720][ T3309]  direct_write_fallback+0x73/0x100
[  101.249737][ T3309]  __generic_file_write_iter+0xfd/0x120
[  101.249756][ T3309]  generic_file_write_iter+0x8d/0x2f0
[  101.249778][ T3309]  vfs_write+0x4a0/0x8e0
[  101.249814][ T3309]  ksys_write+0xda/0x1a0
[  101.249832][ T3309]  __x64_sys_write+0x40/0x50
[  101.249852][ T3309]  x64_sys_call+0x2cdd/0x2fb0
[  101.249877][ T3309]  do_syscall_64+0xd2/0x200
[  101.249898][ T3309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.249917][ T3309] 
[  101.249922][ T3309] read to 0xffffffff88e37f50 of 8 bytes by task 3309 on cpu 1:
[  101.249936][ T3309]  data_push_tail+0xfd/0x420
[  101.249971][ T3309]  data_alloc+0xbf/0x2b0
[  101.249997][ T3309]  prb_reserve+0x808/0xaf0
[  101.250023][ T3309]  vprintk_store+0x56d/0x860
[  101.250038][ T3309]  vprintk_emit+0x178/0x650
[  101.250055][ T3309]  vprintk_default+0x26/0x30
[  101.250077][ T3309]  vprintk+0x1d/0x30
[  101.250106][ T3309]  _printk+0x79/0xa0
[  101.250139][ T3309]  __ext4_msg+0x18f/0x1a0
[  101.250165][ T3309]  ext4_put_super+0x90/0x7d0
[  101.250195][ T3309]  generic_shutdown_super+0xe6/0x210
[  101.250223][ T3309]  kill_block_super+0x2a/0x70
[  101.250243][ T3309]  ext4_kill_sb+0x42/0x80
[  101.250267][ T3309]  deactivate_locked_super+0x72/0x1c0
[  101.250300][ T3309]  deactivate_super+0x97/0xa0
[  101.250328][ T3309]  cleanup_mnt+0x269/0x2e0
[  101.250354][ T3309]  __cleanup_mnt+0x19/0x20
[  101.250379][ T3309]  task_work_run+0x12e/0x1a0
[  101.250411][ T3309]  exit_to_user_mode_loop+0xe4/0x100
[  101.250439][ T3309]  do_syscall_64+0x1d6/0x200
[  101.250459][ T3309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.250484][ T3309] 
[  101.250488][ T3309] value changed: 0x00000000ffffe220 -> 0x706f6f6c0a656369
[  101.250502][ T3309] 
[  101.250506][ T3309] Reported by Kernel Concurrency Sanitizer on:
[  101.250518][ T3309] CPU: 1 UID: 0 PID: 3309 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-00236-g8c6bc74c7f89 #0 PREEMPT(voluntary) 
[  101.250550][ T3309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  101.250563][ T3309] ==================================================================
[  101.272712][ T6120] loop4: detected capacity change from 0 to 512
[  101.302345][ T6120] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.302486][ T6120] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.308822][ T6120] EXT4-fs error (device loop4): ext4_lookup:1787: inode #12: comm syz.4.739: iget: bad i_size value: 2533274857506816
[  101.310441][ T6120] EXT4-fs error (device loop4): ext4_lookup:1787: inode #12: comm syz.4.739: iget: bad i_size value: 2533274857506816
[  101.643872][ T6145] loop2: detected capacity change from 0 to 2048
[  101.671143][ T6145] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[  101.867543][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.805813][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog