last executing test programs:

1.877788855s ago: executing program 3 (id=415):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

1.809825406s ago: executing program 3 (id=417):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00m\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r5}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000001000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmsg$unix(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f00000002c0)=""/14, 0xe}, {&(0x7f0000000740)=""/232, 0xe8}, {&(0x7f0000000400)=""/131, 0x83}, {&(0x7f0000000840)=""/145, 0x91}, {&(0x7f0000000900)=""/136, 0x88}, {&(0x7f0000000640)=""/117, 0x75}, {&(0x7f0000000a40)=""/60, 0x3c}, {&(0x7f0000000a80)=""/45, 0x2d}, {&(0x7f0000000bc0)=""/203, 0xcb}], 0x9, &(0x7f0000000d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}, 0x892b4618e8d4452e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readahead(0xffffffffffffffff, 0xfffffffffffffff8, 0x9)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="000004002daae558b17974f696", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x18, 0xf, &(0x7f0000000e00)=ANY=[@ANYBLOB="0d00000000000000000000800000000018110000a45a57ddd9f7b7356d3576ce128f1bf8eba6bf60e02d7c2774ebcef8fd64ae40679dae0259621a3cd8bed97f85ac44e6d22ba62deffef03248386986", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r10}, 0x10)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x80400, 0x0)
mkdirat(r11, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x408)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
syz_usb_connect$cdc_ecm(0x4, 0xf2, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x310, 0xe, 0x9, 0x0, 0xff, 0x3}, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="0d0f050000"]})
modify_ldt$write(0x1, 0x0, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.102534315s ago: executing program 0 (id=430):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)={0x58, r5, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r6}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

1.073877486s ago: executing program 3 (id=432):
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r5, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)
prlimit64(r0, 0xe, &(0x7f0000000040)={0x8000000000000001, 0x3}, 0xfffffffffffffffd)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="020300030c00000000070000000000000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000004700000d00000000030005000000000002"], 0x60}, 0x1, 0x7}, 0x0)
r8 = syz_pidfd_open(r0, 0x0)
setns(r8, 0x20000)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_ext={0x1c, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7d709393}, [@exit, @map_fd={0x18, 0xb, 0x1, 0x0, r7}]}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x2b, &(0x7f0000000400)=""/43, 0x40f00, 0x20, '\x00', r5, 0x0, r9, 0x8, &(0x7f00000005c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x2, 0x0, 0x80000000, 0x4}, 0x10, 0x8882, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000640)=[{0x5, 0x1, 0x1, 0x7}, {0x2, 0x5, 0x9, 0x8}], 0x10, 0x4, @void, @value}, 0x94)

1.037058426s ago: executing program 3 (id=434):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d080006007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1008002, &(0x7f0000000080)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r4 = socket(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYRESHEX=r4], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r5, &(0x7f00000002c0)="c180d405829eb5eb6d5911dd0058622b1a35479d1e989adab7ce49cfb1ab3dcbaf65776f18eb985a28e5c073", &(0x7f0000000a40)=""/99}, 0x20)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x58, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0x6, 0x2, "9f2b"}, @TCA_NETEM_LOSS={0xfffffffffffffe4d}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

972.162817ms ago: executing program 3 (id=436):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0xe46, &(0x7f0000000380)={0x0, 0x5f39, 0x0, 0x4001, 0x2b7}, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
close(r2)
ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r4, 0x29, 0x6, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @remote}, r5}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @local}, r5}}, 0x48)
close_range(r3, 0xffffffffffffffff, 0x400000000000000)

950.399057ms ago: executing program 2 (id=438):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000007000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

907.714128ms ago: executing program 2 (id=440):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f0000000200)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "45fbb2dc360044ecddde6a633618cd31989978b9991976a68678baf9f27c0df9ff428159a15b6c7cf23893f3d1cb22918cb5c1a8da114e6489dd8950345ab4c2", 0x1f}, 0x48, 0xfffffffffffffffb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000280)={0x0, "cdce248ca477ff2a9dd9163bd550c575fe3f5a90639b178d8d69977ecdd1e2bcfff94d3a64760071fe90c63006a51d43d2df9a2bb527e83e0bd67da00779d11e", 0x12}, 0x48, r1)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000004c0)={'bond_slave_0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

811.742079ms ago: executing program 2 (id=442):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00m\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r5}, 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000001000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
recvmsg$unix(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f00000002c0)=""/14, 0xe}, {&(0x7f0000000740)=""/232, 0xe8}, {&(0x7f0000000400)=""/131, 0x83}, {&(0x7f0000000840)=""/145, 0x91}, {&(0x7f0000000900)=""/136, 0x88}, {&(0x7f0000000640)=""/117, 0x75}, {&(0x7f0000000a40)=""/60, 0x3c}, {&(0x7f0000000a80)=""/45, 0x2d}, {&(0x7f0000000bc0)=""/203, 0xcb}], 0x9, &(0x7f0000000d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}, 0x892b4618e8d4452e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
readahead(0xffffffffffffffff, 0xfffffffffffffff8, 0x9)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="000004002daae558b17974f696", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x18, 0xf, &(0x7f0000000e00)=ANY=[@ANYBLOB="0d00000000000000000000800000000018110000a45a57ddd9f7b7356d3576ce128f1bf8eba6bf60e02d7c2774ebcef8fd64ae40679dae0259621a3cd8bed97f85ac44e6d22ba62deffef03248386986", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r10}, 0x10)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x80400, 0x0)
mkdirat(r11, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x408)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
syz_usb_connect$cdc_ecm(0x4, 0xf2, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x310, 0xe, 0x9, 0x0, 0xff, 0x3}, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="0d0f050000"]})
modify_ldt$write(0x1, 0x0, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

810.563669ms ago: executing program 0 (id=444):
openat$misdntimer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
pipe(0x0)
r2 = fsopen(0x0, 0x0)
fsmount(r2, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_settime(0x0, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000400db00000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$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")

674.558191ms ago: executing program 0 (id=448):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
setresgid(0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x28, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000000c0)='kfree\x00', r3}, 0x18)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
msgget$private(0x0, 0x100)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)

611.933922ms ago: executing program 4 (id=450):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffa}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000540)='kfree\x00', r0}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000280)='projid_map\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000002c0)={0x0, 0x0})
syz_io_uring_setup(0x2e3b, &(0x7f0000000080)={0x0, 0x482b, 0x10100, 0x1}, 0x0, &(0x7f0000000300))
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
r3 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x6)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r4, &(0x7f00000003c0)='./file0\x00')

586.630923ms ago: executing program 4 (id=451):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$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")

509.464583ms ago: executing program 0 (id=452):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f0000000200)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "45fbb2dc360044ecddde6a633618cd31989978b9991976a68678baf9f27c0df9ff428159a15b6c7cf23893f3d1cb22918cb5c1a8da114e6489dd8950345ab4c2", 0x1f}, 0x48, 0xfffffffffffffffb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000280)={0x0, "cdce248ca477ff2a9dd9163bd550c575fe3f5a90639b178d8d69977ecdd1e2bcfff94d3a64760071fe90c63006a51d43d2df9a2bb527e83e0bd67da00779d11e", 0x12}, 0x48, r1)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000004c0)={'bond_slave_0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

461.750984ms ago: executing program 0 (id=454):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
link(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000000c0)='./file0\x00')
getpid()
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0xfe8e, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000005c0)={r2, &(0x7f00000004c0)="2252bdd25935db5bda3a64970d076549085a40972386684f10acc8ecf322c8925c7704c42eb93f1e9eb45be2cbb0e003c5555af2e662597caf869480a44ca65363a46120e254e566dfca8b899ce2fc39ffcb0602e03dd6519fb779e6c95bb202f92995fd7294d4b9427b4c5b7bff1a33be1135bab26ee901bcea6011bd2d095cfef41253c1cea298f94f3a57754d36e01c8c66eb12d7126fa013adca0100c1e8ed144ba97b6a9a", &(0x7f0000000580)=""/16, 0x4}, 0x20)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0100001000130400000000fbdbdf25fe80000000000000000000000000ac1414bb000000000000000000000000000000000000fffc0000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000010000000000000000000000000000000032000000ac1414000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b000000000000000000000000000000060000000000000000000000010400000000000000000000000000000200000000000000000000004c001200726663343130362867636d28616573292900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000"], 0x13c}}, 0x4000080)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
open_tree(0xffffffffffffffff, &(0x7f00000006c0)='./file0\x00', 0x0)

461.007644ms ago: executing program 4 (id=455):
sync()
newfstatat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840), 0x800)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000240)=[{0xc5, 0x0, 0x0, 0xffffffff}, {0x9, 0xff, 0x3c, 0x2}, {0xad8a, 0x9, 0x4, 0x35}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xc97c, 0x0, @perf_bp={0x0, 0x764922f6ef795283}, 0x8, 0x400000000, 0x8409, 0x5, 0x0, 0x3c, 0xfffe}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r2, @ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000009c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000380)={[{@barrier_val}, {@resuid}, {@block_validity}, {@errors_remount}], [{@fscontext={'fscontext', 0x3d, 'root'}}]}, 0x1, 0x7b4, &(0x7f0000000a00)="$eJzs3c9rXNUeAPDvnfxs2veaBw9e+zbNSgulk7bGVkEw4kIECwVd24bJNMRMMiUzKU0IaBFBEEGLC0E3rv1Rd25F1/4NbkSkpWparLiQkTs/kml+TCZtJmmbzwducs6dc+fc75x7zz0z9zATwJ41lP7JRByOiA+SiIP19UlE9FRT3RGjtXJ3lxZz6ZJEpfLqb0m1zJ2lxVw0bZPaX88ciojv3ok4lllbb2l+YWqsUMjP1vPD5elLw6X5heOT02MT+Yn8zOmTIyOnzjx95vT2xfrHDwsHbn740pNfjf719v+uv/99EqNxoP5YcxzbZSiG6q9JT/oS3uPF7a5slyW7vQPcl/TU7Kqd5XE4DkZXNQUAPM7S638FANhjkk2v/z1GCADwWGl8DnBnaTHXWHb3E4mddeuFiOivxd+4v1l7pLt+z66/eh904E4S3fU7orGN97uGIuLTb17/Il2iQ/chAdbz1tWIuDA4tLb/T9bMWdiqE22UGVqV1//Bzvk2Hf88s974L7M8/onl8c+KvnXO3fsxFNHbnF97/mdurLvh89tQeX3891xtblsaaNP4b3nS2mBXPfevNHMkIiYL+bRv+3dEHI2evouThfzJFnUcvf337Y0eax7//X7tjc/T+tP/KyUyN7r77t1mfKw89iAxN7t1NeL/3Stz++6u6f/7q2Pd1e2frjvX6omPrCRffvbdTzYqlsafxttY1sbfWZXPIp6I9eNvSFrOTxxOm/9E7e/6dXz908cDG9Xf3P7pktbfeC+wE9L2H2gd/2DSPF+ztL31bx7/+sd/b/JaNd3oPK6MlcuzJyN6k1fWrj+1sm0j3yifxl+LdHX8mZbHf/pO8EKbMXbf/PXLDeN/MyLaa/+OTLFM4x/fUvtvPXH97lTXhvG31f4j1dTR+pp2+r92d/BBXjsAAAAAAAAAAAAAAAAAAAAAAAAAaFcmIg5EkskupzOZbLb2G97/jYFMoVgqH7tYnJsZj+pvZQ9GT6bxVZcHa/mk8f2ng035U6vyT0XEfyLio7591Xw2VyyM73bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFC3f4Pf/0/90rfbewcAdEz/piVu5+/JViqVSgf3BwDovM2v/wDA46bF9X/fTu4HALBzvP8HgL3H9R8A9h7XfwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrs3Nmz6VL5c2kxl+bHL8/PTRUvHx/Pl6ay03O5bK44eyk7USxOFPLZXHF6s+crFIuXRmJm7spwOV8qD5fmF85PF+dmyucnp8cm8ufzPTsSFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABsTWl+YWqsUMjPtkpk2ijzUCTei4iHYDc6kUhim5+wu34E7Hg4vfWK29/q5+M/HmpV5tomh/HoQ9GCj1hiFzslAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEfIPwEAAP//o3AcRg==")

417.590994ms ago: executing program 0 (id=456):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

332.708886ms ago: executing program 1 (id=459):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x2000, 0x0, 0x0, 0x0, 0x3cd})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)

286.127206ms ago: executing program 4 (id=460):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

268.019696ms ago: executing program 1 (id=461):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fffffa}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000540)='kfree\x00', r0}, 0x18)
syz_open_procfs(0x0, &(0x7f0000000280)='projid_map\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000002c0)={0x0, 0x0})
syz_io_uring_setup(0x2e3b, &(0x7f0000000080)={0x0, 0x482b, 0x10100, 0x1}, 0x0, &(0x7f0000000300))
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
r3 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x6)
symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r4, &(0x7f00000003c0)='./file0\x00')

244.166047ms ago: executing program 2 (id=462):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$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")

240.069887ms ago: executing program 1 (id=463):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
setresgid(0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x28, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000000c0)='kfree\x00', r3}, 0x18)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
msgget$private(0x0, 0x100)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)

239.438287ms ago: executing program 4 (id=464):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f0000000200)={'fscrypt:', @desc1}, &(0x7f0000000300)={0x0, "45fbb2dc360044ecddde6a633618cd31989978b9991976a68678baf9f27c0df9ff428159a15b6c7cf23893f3d1cb22918cb5c1a8da114e6489dd8950345ab4c2", 0x1f}, 0x48, 0xfffffffffffffffb)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000280)={0x0, "cdce248ca477ff2a9dd9163bd550c575fe3f5a90639b178d8d69977ecdd1e2bcfff94d3a64760071fe90c63006a51d43d2df9a2bb527e83e0bd67da00779d11e", 0x12}, 0x48, r1)
r5 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
r7 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000004c0)={'bond_slave_0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})

150.293518ms ago: executing program 4 (id=465):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r0}, &(0x7f0000000780), &(0x7f00000007c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

146.432368ms ago: executing program 1 (id=466):
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r5, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)
prlimit64(r0, 0xe, &(0x7f0000000040)={0x8000000000000001, 0x3}, 0xfffffffffffffffd)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
sendmsg$key(r6, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="020300030c00000000070000000000000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000004700000d00000000030005000000000002"], 0x60}, 0x1, 0x7}, 0x0)
r9 = syz_pidfd_open(r0, 0x0)
setns(r9, 0x20000)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_ext={0x1c, 0x6, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x7d709393}, [@exit, @map_fd={0x18, 0xb, 0x1, 0x0, r7}]}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x2b, &(0x7f0000000400)=""/43, 0x40f00, 0x20, '\x00', r5, 0x0, r10, 0x8, &(0x7f00000005c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x2, 0x0, 0x80000000, 0x4}, 0x10, 0x8882, r8, 0x2, 0x0, &(0x7f0000000640)=[{0x5, 0x1, 0x1, 0x7}, {0x2, 0x5, 0x9, 0x8}], 0x10, 0x4, @void, @value}, 0x94)

115.286878ms ago: executing program 2 (id=467):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$eJzs3U1vG1sZAODXzpeTm97kXu4CENBSCgVVdRK3jaouoKwQQpUQXYLUhsSNothxFDulCV2k/wGJSqxgyQ9g3RV7Ngh2bMoCiY8I1FRiYTTjSeomdpOSNI7i55FGM+eMM+85ieec+nXtE0DfuhQRWxExHBEPI2Iiq89lW9xtbcnjXm0/nd/Zfjqfi2bz/j9z6fmkLtp+JvFRds1CRPzoexE/zR2MW9/YXJ6rVMprWXmqUV2dqm9sXl+qzi2WF8srpdLszOz07Ru3SifW14vV4ezoyy//sPWtnyfNGs9q2vtxklpdH9qLE9nv/AcfIlgPDETEYPb8yVzoZXt4P/mI+DQiLqf3/0QMpH9NAOA8azYnojnRXgYAzrt8mgPL5YtZLmA88vlisZXD+yzG8pVavXHtUW19ZaGVK5uMofyjpUp5OssVTsZQLinPpMdvyqV95RsR8UlE/GJkNC0X52uVhV7+wwcA+thH++b//4y05n8A4Jwr9LoBAMCpM/8DQP8x/wNA/zH/A0D/Mf8DQP8x/wNA/zH/A0Bf+eG9e8nW3Mm+/3rh8cb6cu3x9YVyfblYXZ8vztfWVouLtdpi+p091cOuV6nVVmduxvqTyW+v1htT9Y3NB9Xa+krjQfq93g/KQ6fSKwDgXT65+OLPuYjYujOabtG2loO5Gs63fK8bAPTMQK8bAPSM1b6gfx3jNb70AJwTHZbofUshIkb3VzabzeaHaxLwgV39gvw/9Ku2/L//BQx9Rv4f+lfX/P+BF/vAedNs5o665n8c9YEAwNkmxw90ef//02z/2+zNgZ8s7H/E8/0VPlEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/9hd/7eYrdwxHvl8sRhxISImYyj3aKlSno6IjyPiTyNDI0l5psdtBgCOK/+3XLb+19WJK+P7zw7nXo+k+4j42a/u//LJXKOx9sek/l979Y3nWX2pF+0HAA6zO0+n+7YX8q+2n87vbqfZnr9/NyIKrfg728Oxsxd/MAbTfSGGImLs37ms3JJry10cx9aziPh8p/7nYjzNgbRWPt0fP4l94VTj59+Kn0/PtfbJ7+JzJ9AW6DcvkvHnbqf7Lx+X0n3n+7+QjlDHl41/yaXmd9Ix8E383fFvoMv4d+moMW7+/vuto9GD555FfHEwYjf2Ttv4sxs/1yX+lYOX6+gvX/rK5W7nmr+OuBqd47fHmmpUV6fqG5vXl6pzi+XF8kqpNDszO337xq3SVJqjnuo+G/zjzrWPu51L+j/WJX7hkP5//Wjdj9/89+GPv/qO+N/8Wqf4+fjsHfGTOfEbR4w/N/a7QrdzSfyFLv0/7O9/7YjxX/5188Cy4QBA79Q3NpfnKpXymgMHZ/8gecqegWZ0PPjOacUajvf6qWbz/4rVbcQ4iawbcBbs3fQR8brXjQEAAAAAAAAAAAAAADo6jU8s9bqPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CwAA//8wuNJ1")

87.054719ms ago: executing program 1 (id=468):
preadv(0xffffffffffffffff, 0x0, 0x0, 0x1a, 0x0)
socket$kcm(0x10, 0xe, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000a22a30456b880000145b41fe69e3ffff78616d3000000000000000000000000079616d3000000000000000000000000076657468315f742f5f626f6e640000000180c20000000000000000000180c20000000800000000000000b100000067010000900100007374617469737469630000000000000000000000000000000000000000000000180000000000000000000000000000000000000000000000000000000000646e61740000060000000000ff0300000000000000000000000000000000000010000000000000000180c20000000000bb8e66505c1aa6d062c3b52cffffffff000000006e666c6f670000000000000000000000000000000000000050000000121b6eb244c4f0fffbf04a000000007e4b000022569e338e2c551c2fc4a19597ba4c501c8b1f16fb7809c40aeea768e825383d2afb577ed2bb6dd99fd43741089cca6edb0041555449540000000000000000000000000626967e000000000000000000000008000000000000200000000000000000840200"/544]}, 0x298)

82.404639ms ago: executing program 3 (id=469):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800000004fe0000000000f00700038510000006"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="33fe0000240013"], 0xfe33)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x80000000, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
fadvise64(r5, 0xfffffffffffffff0, 0x81, 0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x20, 0xb, &(0x7f00000001c0)=ANY=[@ANYRES8=r4], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe99, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xec3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0xefffffff}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x5, 0x401, 0x101, 0x10000, r2, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x5, 0x1, @void, @value, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r7, @ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000b80)={{r7}, &(0x7f0000000980), &(0x7f0000000b40)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r8}, 0x18)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c000100636f756e746572"], 0x118}}, 0x0)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000240)=ANY=[@ANYBLOB="1d0000000400000002000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x48)
r10 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r10)

26.633719ms ago: executing program 1 (id=470):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$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")

0s ago: executing program 2 (id=471):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x2000, 0x0, 0x0, 0x0, 0x3cd})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)

kernel console output (not intermixed with test programs):

4] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   40.050592][ T3493] loop3: detected capacity change from 0 to 1024
[   40.062810][ T3485] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.070094][ T3485] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.096542][ T3484] EXT4-fs (loop4): 1 orphan inode deleted
[   40.101056][ T3493] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.117744][  T406] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[   40.118461][ T3484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.167154][ T3493] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.202270][ T3485] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   40.218674][ T3484] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.276973][ T3485] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   40.319225][ T3485] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   40.328515][ T3485] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   40.337493][ T3485] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   40.346880][ T3485] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   40.377665][ T3484] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.9: iget: bad i_size value: 360287970189639690
[   40.454176][ T3485] syz.0.7 (3485) used greatest stack depth: 10296 bytes left
[   40.489609][ T3500] FAULT_INJECTION: forcing a failure.
[   40.489609][ T3500] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   40.503125][ T3500] CPU: 1 UID: 0 PID: 3500 Comm: syz.2.10 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   40.503233][ T3500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   40.503249][ T3500] Call Trace:
[   40.503255][ T3500]  <TASK>
[   40.503261][ T3500]  __dump_stack+0x1d/0x30
[   40.503286][ T3500]  dump_stack_lvl+0xe8/0x140
[   40.503329][ T3500]  dump_stack+0x15/0x1b
[   40.503351][ T3500]  should_fail_ex+0x265/0x280
[   40.503443][ T3500]  ? __pfx_ppp_ioctl+0x10/0x10
[   40.503474][ T3500]  should_fail+0xb/0x20
[   40.503490][ T3500]  should_fail_usercopy+0x1a/0x20
[   40.503578][ T3500]  _copy_from_user+0x1c/0xb0
[   40.503609][ T3500]  ppp_get_filter+0x3e/0x160
[   40.503646][ T3500]  ppp_ioctl+0xb93/0x11c0
[   40.503672][ T3500]  ? __fget_files+0x184/0x1c0
[   40.503695][ T3500]  ? __pfx_ppp_ioctl+0x10/0x10
[   40.503793][ T3500]  __se_sys_ioctl+0xcb/0x140
[   40.503905][ T3500]  __x64_sys_ioctl+0x43/0x50
[   40.503945][ T3500]  x64_sys_call+0x19a8/0x2fb0
[   40.504074][ T3500]  do_syscall_64+0xd2/0x200
[   40.504110][ T3500]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   40.504184][ T3500]  ? clear_bhb_loop+0x40/0x90
[   40.504209][ T3500]  ? clear_bhb_loop+0x40/0x90
[   40.504269][ T3500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.504294][ T3500] RIP: 0033:0x7f20245ce929
[   40.504318][ T3500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.504336][ T3500] RSP: 002b:00007f2022c16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   40.504412][ T3500] RAX: ffffffffffffffda RBX: 00007f20247f6080 RCX: 00007f20245ce929
[   40.504428][ T3500] RDX: 0000200000000140 RSI: 0000000040107447 RDI: 0000000000000003
[   40.504444][ T3500] RBP: 00007f2022c16090 R08: 0000000000000000 R09: 0000000000000000
[   40.504461][ T3500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.504476][ T3500] R13: 0000000000000001 R14: 00007f20247f6080 R15: 00007ffd4d61c1f8
[   40.504499][ T3500]  </TASK>
[   40.521411][ T3484] Zero length message leads to an empty skb
[   40.692371][ T3503] netlink: 'syz.4.9': attribute type 4 has an invalid length.
[   40.706010][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   40.741735][ T3484] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.9: iget: bad i_size value: 360287970189639690
[   40.796784][ T3484] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   40.840999][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.844501][ T3507] loop0: detected capacity change from 0 to 2048
[   40.859312][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.907587][ T3507] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.932483][ T3510] loop4: detected capacity change from 0 to 512
[   41.007498][ T3510] EXT4-fs (loop4): 1 orphan inode deleted
[   41.029394][ T3510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.045807][  T170] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   41.061403][ T3523] IPv6: sit1: Disabled Multicast RS
[   41.067701][ T3523] sit1: entered allmulticast mode
[   41.070358][ T3510] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.221036][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.250894][ T3531] loop1: detected capacity change from 0 to 512
[   41.275636][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.280041][ T3533] FAULT_INJECTION: forcing a failure.
[   41.280041][ T3533] name failslab, interval 1, probability 0, space 0, times 0
[   41.297795][ T3533] CPU: 1 UID: 0 PID: 3533 Comm: syz.3.17 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   41.297883][ T3533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.297895][ T3533] Call Trace:
[   41.297902][ T3533]  <TASK>
[   41.297910][ T3533]  __dump_stack+0x1d/0x30
[   41.297935][ T3533]  dump_stack_lvl+0xe8/0x140
[   41.297959][ T3533]  dump_stack+0x15/0x1b
[   41.298011][ T3533]  should_fail_ex+0x265/0x280
[   41.298037][ T3533]  should_failslab+0x8c/0xb0
[   41.298067][ T3533]  __kvmalloc_node_noprof+0x126/0x4f0
[   41.298223][ T3533]  ? xt_alloc_entry_offsets+0x48/0x50
[   41.298261][ T3533]  ? refill_obj_stock+0x254/0x2e0
[   41.298301][ T3533]  xt_alloc_entry_offsets+0x48/0x50
[   41.298337][ T3533]  translate_table+0xa9/0x1070
[   41.298379][ T3533]  ? __rcu_read_unlock+0x4f/0x70
[   41.298410][ T3533]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[   41.298483][ T3533]  ? should_fail_ex+0xdb/0x280
[   41.298572][ T3533]  ? _copy_from_user+0x89/0xb0
[   41.298627][ T3533]  do_ip6t_set_ctl+0x678/0x840
[   41.298649][ T3533]  ? kstrtoull+0x111/0x140
[   41.298683][ T3533]  ? __rcu_read_unlock+0x4f/0x70
[   41.298730][ T3533]  nf_setsockopt+0x196/0x1b0
[   41.298770][ T3533]  ipv6_setsockopt+0x11a/0x130
[   41.298796][ T3533]  tcp_setsockopt+0x98/0xb0
[   41.298829][ T3533]  sock_common_setsockopt+0x66/0x80
[   41.298920][ T3533]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   41.298942][ T3533]  __sys_setsockopt+0x184/0x200
[   41.298977][ T3533]  __x64_sys_setsockopt+0x64/0x80
[   41.299085][ T3533]  x64_sys_call+0x2bd5/0x2fb0
[   41.299106][ T3533]  do_syscall_64+0xd2/0x200
[   41.299138][ T3533]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.299186][ T3533]  ? clear_bhb_loop+0x40/0x90
[   41.299219][ T3533]  ? clear_bhb_loop+0x40/0x90
[   41.299303][ T3533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.299330][ T3533] RIP: 0033:0x7f7d0426e929
[   41.299349][ T3533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.299371][ T3533] RSP: 002b:00007f7d028d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   41.299395][ T3533] RAX: ffffffffffffffda RBX: 00007f7d04495fa0 RCX: 00007f7d0426e929
[   41.299411][ T3533] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[   41.299426][ T3533] RBP: 00007f7d028d7090 R08: 0000000000000458 R09: 0000000000000000
[   41.299499][ T3533] R10: 0000200000000c80 R11: 0000000000000246 R12: 0000000000000001
[   41.299511][ T3533] R13: 0000000000000000 R14: 00007f7d04495fa0 R15: 00007fff4feea878
[   41.299529][ T3533]  </TASK>
[   41.598351][ T3531] EXT4-fs (loop1): 1 orphan inode deleted
[   41.604971][ T3531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.618220][  T170] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   41.633931][ T3531] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.659540][ T3542] loop4: detected capacity change from 0 to 512
[   41.683093][ T3540] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[   41.696746][ T3540] syzkaller0: entered promiscuous mode
[   41.702853][ T3540] syzkaller0: entered allmulticast mode
[   41.725601][ T3542] EXT4-fs (loop4): 1 orphan inode deleted
[   41.736919][ T2203] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   41.767226][ T3542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.767589][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.791080][ T3542] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.829740][ T3548] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   41.848832][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.849308][ T3550] FAULT_INJECTION: forcing a failure.
[   41.849308][ T3550] name failslab, interval 1, probability 0, space 0, times 0
[   41.870701][ T3550] CPU: 0 UID: 0 PID: 3550 Comm: syz.1.22 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   41.870777][ T3550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.870789][ T3550] Call Trace:
[   41.870795][ T3550]  <TASK>
[   41.870802][ T3550]  __dump_stack+0x1d/0x30
[   41.870831][ T3550]  dump_stack_lvl+0xe8/0x140
[   41.870849][ T3550]  dump_stack+0x15/0x1b
[   41.870867][ T3550]  should_fail_ex+0x265/0x280
[   41.870945][ T3550]  ? audit_log_d_path+0x8d/0x150
[   41.870984][ T3550]  should_failslab+0x8c/0xb0
[   41.871010][ T3550]  __kmalloc_cache_noprof+0x4c/0x320
[   41.871100][ T3550]  audit_log_d_path+0x8d/0x150
[   41.871131][ T3550]  audit_log_d_path_exe+0x42/0x70
[   41.871239][ T3550]  audit_log_task+0x1e9/0x250
[   41.871342][ T3550]  audit_seccomp+0x61/0x100
[   41.871372][ T3550]  ? __seccomp_filter+0x68c/0x10d0
[   41.871427][ T3550]  __seccomp_filter+0x69d/0x10d0
[   41.871450][ T3550]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   41.871472][ T3550]  ? vfs_write+0x75e/0x8e0
[   41.871491][ T3550]  ? __rcu_read_unlock+0x4f/0x70
[   41.871516][ T3550]  ? __fget_files+0x184/0x1c0
[   41.871592][ T3550]  __secure_computing+0x82/0x150
[   41.871615][ T3550]  syscall_trace_enter+0xcf/0x1e0
[   41.871637][ T3550]  do_syscall_64+0xac/0x200
[   41.871712][ T3550]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.871745][ T3550]  ? clear_bhb_loop+0x40/0x90
[   41.871770][ T3550]  ? clear_bhb_loop+0x40/0x90
[   41.871868][ T3550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.871895][ T3550] RIP: 0033:0x7f62a6fae929
[   41.871914][ T3550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.871936][ T3550] RSP: 002b:00007f62a5617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   41.871960][ T3550] RAX: ffffffffffffffda RBX: 00007f62a71d5fa0 RCX: 00007f62a6fae929
[   41.871975][ T3550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   41.872027][ T3550] RBP: 00007f62a5617090 R08: 0000000000001000 R09: 0000000000000000
[   41.872039][ T3550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.872050][ T3550] R13: 0000000000000000 R14: 00007f62a71d5fa0 R15: 00007ffefdd0ef38
[   41.872067][ T3550]  </TASK>
[   42.104192][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.176839][ T3558] loop0: detected capacity change from 0 to 128
[   42.245096][ T3561] loop1: detected capacity change from 0 to 512
[   42.252140][ T3561] EXT4-fs: Ignoring removed oldalloc option
[   42.261329][ T3561] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   42.271990][ T3561] EXT4-fs (loop1): orphan cleanup on readonly fs
[   42.279845][ T3561] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.26: Failed to acquire dquot type 1
[   42.292457][ T3561] EXT4-fs (loop1): 1 truncate cleaned up
[   42.299356][ T3561] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   42.532859][ T3558] vfat: Unknown parameter 'kfree'
[   43.261610][ T3566] loop2: detected capacity change from 0 to 1024
[   43.296922][ T3566] EXT4-fs: Ignoring removed oldalloc option
[   43.315925][ T3568] xt_hashlimit: size too large, truncated to 1048576
[   43.322852][ T3568] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[   43.335414][ T3570] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[   43.344088][ T3566] EXT4-fs: Ignoring removed nomblk_io_submit option
[   43.353895][ T3570] syzkaller0: entered promiscuous mode
[   43.359986][ T3570] syzkaller0: entered allmulticast mode
[   43.379618][ T3566] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.409103][ T3548] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.492432][ T3548] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.580193][ T3548] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.651222][ T3583] FAULT_INJECTION: forcing a failure.
[   43.651222][ T3583] name failslab, interval 1, probability 0, space 0, times 0
[   43.664635][ T3583] CPU: 1 UID: 0 PID: 3583 Comm: syz.0.33 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   43.664663][ T3583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   43.664678][ T3583] Call Trace:
[   43.664686][ T3583]  <TASK>
[   43.664695][ T3583]  __dump_stack+0x1d/0x30
[   43.664794][ T3583]  dump_stack_lvl+0xe8/0x140
[   43.664814][ T3583]  dump_stack+0x15/0x1b
[   43.664835][ T3583]  should_fail_ex+0x265/0x280
[   43.664864][ T3583]  should_failslab+0x8c/0xb0
[   43.664895][ T3583]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   43.665007][ T3583]  ? sidtab_sid2str_get+0xa0/0x130
[   43.665036][ T3583]  kmemdup_noprof+0x2b/0x70
[   43.665113][ T3583]  sidtab_sid2str_get+0xa0/0x130
[   43.665146][ T3583]  security_sid_to_context_core+0x1eb/0x2e0
[   43.665173][ T3583]  security_sid_to_context+0x27/0x40
[   43.665210][ T3583]  selinux_lsm_getattr+0x1c3/0x230
[   43.665316][ T3583]  selinux_getselfattr+0x4e/0xd0
[   43.665355][ T3583]  security_getselfattr+0x24a/0x500
[   43.665473][ T3583]  __x64_sys_lsm_get_self_attr+0x51/0x60
[   43.665505][ T3583]  x64_sys_call+0x1fc6/0x2fb0
[   43.665593][ T3583]  do_syscall_64+0xd2/0x200
[   43.665644][ T3583]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.665674][ T3583]  ? clear_bhb_loop+0x40/0x90
[   43.665743][ T3583]  ? clear_bhb_loop+0x40/0x90
[   43.665765][ T3583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.665790][ T3583] RIP: 0033:0x7f9cc156e929
[   43.665809][ T3583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.665836][ T3583] RSP: 002b:00007f9cbfbd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cb
[   43.665936][ T3583] RAX: ffffffffffffffda RBX: 00007f9cc1795fa0 RCX: 00007f9cc156e929
[   43.665951][ T3583] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000068
[   43.665964][ T3583] RBP: 00007f9cbfbd7090 R08: 0000000000000000 R09: 0000000000000000
[   43.666064][ T3583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.666078][ T3583] R13: 0000000000000001 R14: 00007f9cc1795fa0 R15: 00007fff34923998
[   43.666153][ T3583]  </TASK>
[   43.910353][ T3581] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.950990][ T3548] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   43.974769][ T3548] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.001078][ T3581] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.020675][ T3548] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.048657][ T3581] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.092398][ T3548] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.128747][ T3581] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.191441][ T3588] netlink: 32 bytes leftover after parsing attributes in process `syz.3.35'.
[   44.221571][ T3588] netlink: 32 bytes leftover after parsing attributes in process `syz.3.35'.
[   44.412986][   T29] kauditd_printk_skb: 134 callbacks suppressed
[   44.413005][   T29] audit: type=1326 audit(1749051078.300:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.443261][   T29] audit: type=1326 audit(1749051078.300:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.467117][   T29] audit: type=1326 audit(1749051078.300:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.491070][   T29] audit: type=1326 audit(1749051078.300:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.514606][   T29] audit: type=1326 audit(1749051078.300:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.538248][   T29] audit: type=1326 audit(1749051078.300:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.562124][   T29] audit: type=1326 audit(1749051078.300:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.585962][   T29] audit: type=1326 audit(1749051078.300:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.609769][   T29] audit: type=1326 audit(1749051078.300:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3587 comm="syz.3.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   44.636917][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.641485][   T29] audit: type=1400 audit(1749051078.430:244): avc:  denied  { unmount } for  pid=3327 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   44.672218][ T3581] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.686652][ T3581] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.697861][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.722467][ T3581] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.731137][ T3596] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   44.743887][ T3581] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.777634][ T3600] loop1: detected capacity change from 0 to 128
[   44.785199][ T3600] vfat: Unknown parameter 'kfree'
[   44.882218][ T3605] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.905785][ T3609] loop1: detected capacity change from 0 to 512
[   44.942247][ T3609] EXT4-fs (loop1): 1 orphan inode deleted
[   44.954348][ T3609] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.954626][ T3605] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.000842][  T170] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   45.023209][ T3609] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.062964][ T3602] Falling back ldisc for ptm0.
[   45.073348][ T3619] loop0: detected capacity change from 0 to 128
[   45.082345][ T3619] vfat: Unknown parameter 'kfree'
[   45.117626][ T3605] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.147125][ T3619] netlink: 4 bytes leftover after parsing attributes in process `syz.0.43'.
[   45.159663][ T3619] netlink: 8 bytes leftover after parsing attributes in process `syz.0.43'.
[   45.198063][ T3605] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.290886][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.329322][ T3619] syz.0.43 (3619) used greatest stack depth: 10192 bytes left
[   45.363875][ T3644] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.379132][ T3645] FAULT_INJECTION: forcing a failure.
[   45.379132][ T3645] name fail_futex, interval 1, probability 0, space 0, times 1
[   45.392334][ T3645] CPU: 0 UID: 0 PID: 3645 Comm: syz.0.46 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   45.392360][ T3645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   45.392372][ T3645] Call Trace:
[   45.392379][ T3645]  <TASK>
[   45.392386][ T3645]  __dump_stack+0x1d/0x30
[   45.392437][ T3645]  dump_stack_lvl+0xe8/0x140
[   45.392461][ T3645]  dump_stack+0x15/0x1b
[   45.392529][ T3645]  should_fail_ex+0x265/0x280
[   45.392554][ T3645]  should_fail+0xb/0x20
[   45.392576][ T3645]  should_fail_futex+0x49/0x50
[   45.392600][ T3645]  futex_lock_pi_atomic+0x21c/0x9e0
[   45.392642][ T3645]  futex_lock_pi+0x17a/0x780
[   45.392681][ T3645]  ? __pfx_futex_wake_mark+0x10/0x10
[   45.392730][ T3645]  do_futex+0x21f/0x380
[   45.392773][ T3645]  __se_sys_futex+0x2ed/0x360
[   45.392803][ T3645]  __x64_sys_futex+0x78/0x90
[   45.392862][ T3645]  x64_sys_call+0x1331/0x2fb0
[   45.392886][ T3645]  do_syscall_64+0xd2/0x200
[   45.392970][ T3645]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.393061][ T3645]  ? clear_bhb_loop+0x40/0x90
[   45.393087][ T3645]  ? clear_bhb_loop+0x40/0x90
[   45.393115][ T3645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.393142][ T3645] RIP: 0033:0x7f9cc156e929
[   45.393181][ T3645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.393201][ T3645] RSP: 002b:00007f9cbfbd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   45.393219][ T3645] RAX: ffffffffffffffda RBX: 00007f9cc1795fa0 RCX: 00007f9cc156e929
[   45.393230][ T3645] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[   45.393242][ T3645] RBP: 00007f9cbfbd7090 R08: 0000000000000000 R09: 00000000fffffffc
[   45.393328][ T3645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.393342][ T3645] R13: 0000000000000000 R14: 00007f9cc1795fa0 R15: 00007fff34923998
[   45.393358][ T3645]  </TASK>
[   45.680609][ T3644] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.750319][ T3644] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.763515][ T3654] netlink: 16 bytes leftover after parsing attributes in process `syz.3.49'.
[   45.800258][ T3644] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.853819][ T3644] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   45.867032][ T3644] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.880515][ T3644] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.892959][ T3644] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.945939][ T3664] loop1: detected capacity change from 0 to 512
[   45.969925][ T3664] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   46.039183][ T3669] netlink: 32 bytes leftover after parsing attributes in process `syz.0.54'.
[   46.048904][ T3669] netlink: 32 bytes leftover after parsing attributes in process `syz.0.54'.
[   46.049180][ T3664] EXT4-fs (loop1): failed to initialize system zone (-117)
[   46.065668][ T3664] EXT4-fs (loop1): mount failed
[   46.142183][ T3664] netlink: 'syz.1.52': attribute type 1 has an invalid length.
[   46.150359][ T3664] netlink: 224 bytes leftover after parsing attributes in process `syz.1.52'.
[   46.435368][ T3685] loop1: detected capacity change from 0 to 512
[   46.443045][ T3685] EXT4-fs: Ignoring removed oldalloc option
[   46.457128][ T3685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   46.467844][ T3685] EXT4-fs (loop1): orphan cleanup on readonly fs
[   46.475486][ T3685] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.59: Failed to acquire dquot type 1
[   46.488062][ T3685] EXT4-fs (loop1): 1 truncate cleaned up
[   46.495278][ T3685] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.231380][ T3695] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.317361][ T3695] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.427507][ T3695] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.441887][ T3698] loop0: detected capacity change from 0 to 1024
[   47.510240][ T3695] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   47.523218][ T3700] FAULT_INJECTION: forcing a failure.
[   47.523218][ T3700] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.536543][ T3700] CPU: 1 UID: 0 PID: 3700 Comm: syz.2.64 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   47.536619][ T3700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   47.536634][ T3700] Call Trace:
[   47.536643][ T3700]  <TASK>
[   47.536652][ T3700]  __dump_stack+0x1d/0x30
[   47.536678][ T3700]  dump_stack_lvl+0xe8/0x140
[   47.536703][ T3700]  dump_stack+0x15/0x1b
[   47.536718][ T3700]  should_fail_ex+0x265/0x280
[   47.536737][ T3700]  should_fail+0xb/0x20
[   47.536773][ T3700]  should_fail_usercopy+0x1a/0x20
[   47.536800][ T3700]  _copy_from_user+0x1c/0xb0
[   47.536839][ T3700]  ___sys_sendmsg+0xc1/0x1d0
[   47.536887][ T3700]  __x64_sys_sendmsg+0xd4/0x160
[   47.536994][ T3700]  x64_sys_call+0x2999/0x2fb0
[   47.537015][ T3700]  do_syscall_64+0xd2/0x200
[   47.537044][ T3700]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.537088][ T3700]  ? clear_bhb_loop+0x40/0x90
[   47.537115][ T3700]  ? clear_bhb_loop+0x40/0x90
[   47.537143][ T3700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.537163][ T3700] RIP: 0033:0x7f20245ce929
[   47.537178][ T3700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.537200][ T3700] RSP: 002b:00007f2022c37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   47.537223][ T3700] RAX: ffffffffffffffda RBX: 00007f20247f5fa0 RCX: 00007f20245ce929
[   47.537259][ T3700] RDX: 0000000000004886 RSI: 0000200000000240 RDI: 0000000000000006
[   47.537271][ T3700] RBP: 00007f2022c37090 R08: 0000000000000000 R09: 0000000000000000
[   47.537286][ T3700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.537376][ T3700] R13: 0000000000000000 R14: 00007f20247f5fa0 R15: 00007ffd4d61c1f8
[   47.537393][ T3700]  </TASK>
[   48.002815][ T3698] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.052395][ T3698] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.100608][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.188856][ T3711] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.227506][ T3711] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.277604][ T3711] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.330453][ T3718] netlink: 32 bytes leftover after parsing attributes in process `syz.2.70'.
[   48.347594][ T3718] netlink: 32 bytes leftover after parsing attributes in process `syz.2.70'.
[   48.364099][ T3711] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.553562][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.772613][ T3724] netlink: 'syz.0.72': attribute type 4 has an invalid length.
[   48.780386][ T3724] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.72'.
[   48.825201][ T3728] loop0: detected capacity change from 0 to 128
[   48.832028][ T3728] vfat: Unknown parameter 'kfree'
[   48.839447][ T3728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.74'.
[   49.064664][ T3744] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.109722][ T3744] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.159069][ T3744] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.208975][ T3744] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.262890][ T3744] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.274799][ T3744] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.286338][ T3744] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.297971][ T3744] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.344936][ T3746] loop2: detected capacity change from 0 to 128
[   49.351746][ T3746] vfat: Unknown parameter 'kfree'
[   49.415489][ T3752] loop2: detected capacity change from 0 to 128
[   49.422611][ T3752] vfat: Unknown parameter 'kfree'
[   49.449643][ T3754] loop2: detected capacity change from 0 to 512
[   49.466930][ T3754] EXT4-fs (loop2): too many log groups per flexible block group
[   49.474864][ T3754] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   49.481825][ T3754] EXT4-fs (loop2): mount failed
[   49.537341][   T29] kauditd_printk_skb: 151 callbacks suppressed
[   49.537366][   T29] audit: type=1400 audit(1749051083.430:393): avc:  denied  { read open } for  pid=3761 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=482 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   49.812881][ T3795] FAULT_INJECTION: forcing a failure.
[   49.812881][ T3795] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.826122][ T3795] CPU: 1 UID: 0 PID: 3795 Comm: syz.2.91 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   49.826149][ T3795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.826160][ T3795] Call Trace:
[   49.826166][ T3795]  <TASK>
[   49.826173][ T3795]  __dump_stack+0x1d/0x30
[   49.826197][ T3795]  dump_stack_lvl+0xe8/0x140
[   49.826227][ T3795]  dump_stack+0x15/0x1b
[   49.826323][ T3795]  should_fail_ex+0x265/0x280
[   49.826349][ T3795]  should_fail+0xb/0x20
[   49.826372][ T3795]  should_fail_usercopy+0x1a/0x20
[   49.826456][ T3795]  _copy_from_user+0x1c/0xb0
[   49.826483][ T3795]  ___sys_recvmsg+0xaa/0x370
[   49.826518][ T3795]  ? 0xffffffff81000000
[   49.826533][ T3795]  ? __rcu_read_unlock+0x4f/0x70
[   49.826629][ T3795]  __x64_sys_recvmsg+0xd1/0x160
[   49.826741][ T3795]  x64_sys_call+0xf19/0x2fb0
[   49.826768][ T3795]  do_syscall_64+0xd2/0x200
[   49.826801][ T3795]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.826910][ T3795]  ? clear_bhb_loop+0x40/0x90
[   49.826974][ T3795]  ? clear_bhb_loop+0x40/0x90
[   49.826994][ T3795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.827046][ T3795] RIP: 0033:0x7f20245ce929
[   49.827064][ T3795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.827081][ T3795] RSP: 002b:00007f2022c37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   49.827100][ T3795] RAX: ffffffffffffffda RBX: 00007f20247f5fa0 RCX: 00007f20245ce929
[   49.827112][ T3795] RDX: 0000000000000012 RSI: 00002000000004c0 RDI: 0000000000000003
[   49.827123][ T3795] RBP: 00007f2022c37090 R08: 0000000000000000 R09: 0000000000000000
[   49.827143][ T3795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.827158][ T3795] R13: 0000000000000000 R14: 00007f20247f5fa0 R15: 00007ffd4d61c1f8
[   49.827180][ T3795]  </TASK>
[   50.038201][ T3695] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.048799][ T3797] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.062454][ T3695] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.076275][ T3695] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.091270][ T3695] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.101333][ T3797] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.136811][    C1] hrtimer: interrupt took 25062 ns
[   50.151282][ T3797] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.188749][   T29] audit: type=1400 audit(1749051084.060:394): avc:  granted  { setsecparam } for  pid=3801 comm="syz.0.94" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   50.254362][ T3605] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.271777][ T3810] loop0: detected capacity change from 0 to 512
[   50.282317][ T3605] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.298854][ T3797] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.312071][ T3810] EXT4-fs (loop0): too many log groups per flexible block group
[   50.320026][ T3810] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   50.332347][ T3605] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.341008][ T3810] EXT4-fs (loop0): mount failed
[   50.351138][ T3605] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.432263][ T3817] loop4: detected capacity change from 0 to 512
[   50.451686][ T3817] EXT4-fs (loop4): 1 orphan inode deleted
[   50.462180][ T3817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.484980][ T3817] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.485282][ T2203] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   50.505362][ T2203] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   50.544929][ T3711] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.554345][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.557109][ T3711] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.584501][ T3711] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.593671][ T3711] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.621551][   T29] audit: type=1326 audit(1749051084.510:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3823 comm="syz.4.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   50.656106][   T29] audit: type=1326 audit(1749051084.540:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3823 comm="syz.4.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   50.680470][   T29] audit: type=1326 audit(1749051084.540:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3823 comm="syz.4.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd5d435d290 code=0x7ffc0000
[   50.680771][ T3824] loop4: detected capacity change from 0 to 2048
[   50.704898][   T29] audit: type=1400 audit(1749051084.540:398): avc:  denied  { read } for  pid=3823 comm="syz.4.102" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   50.704944][   T29] audit: type=1400 audit(1749051084.540:399): avc:  denied  { open } for  pid=3823 comm="syz.4.102" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   50.759327][   T29] audit: type=1326 audit(1749051084.540:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3823 comm="syz.4.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   50.782818][   T29] audit: type=1326 audit(1749051084.540:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3823 comm="syz.4.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   50.782820][ T3827] loop1: detected capacity change from 0 to 512
[   50.808661][ T3824] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.827822][ T3827] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.841007][ T3827] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.863269][ T3827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.880568][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.915563][ T3836] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.927211][ T3835] __nla_validate_parse: 2 callbacks suppressed
[   50.927229][ T3835] netlink: 16 bytes leftover after parsing attributes in process `syz.1.105'.
[   50.964127][ T3835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.973651][ T3835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.983670][ T3836] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.027554][ T3836] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.077534][ T3836] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.383708][ T3853] netlink: 32 bytes leftover after parsing attributes in process `syz.0.111'.
[   51.392795][ T3853] netlink: 32 bytes leftover after parsing attributes in process `syz.0.111'.
[   51.435589][ T3856] loop3: detected capacity change from 0 to 512
[   51.448427][ T3856] EXT4-fs (loop3): 1 orphan inode deleted
[   51.454927][ T3856] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.466053][  T406] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[   51.468143][ T3856] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.510527][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.525124][ T3861] loop1: detected capacity change from 0 to 512
[   51.539414][ T3861] EXT4-fs (loop1): 1 orphan inode deleted
[   51.552836][ T3861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.565934][  T170] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   51.578233][ T3865] loop3: detected capacity change from 0 to 512
[   51.578443][ T3861] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.608058][ T3865] EXT4-fs (loop3): 1 orphan inode deleted
[   51.614374][ T3865] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.627768][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   51.628764][ T3865] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.641196][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.716844][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.748610][ T3875] loop3: detected capacity change from 0 to 512
[   51.763273][ T3875] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.117: casefold flag without casefold feature
[   51.777904][ T3875] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.117: couldn't read orphan inode 15 (err -117)
[   51.790343][ T3875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.621540][ T3899] netlink: 'syz.0.126': attribute type 10 has an invalid length.
[   52.640120][ T3899] veth0_vlan: entered allmulticast mode
[   52.686083][ T3899] veth0_vlan: left promiscuous mode
[   52.715138][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.741757][ T3899] veth0_vlan: entered promiscuous mode
[   52.779671][ T3899] team0: Device veth0_vlan failed to register rx_handler
[   52.797339][ T3900] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   52.891339][ T3900] batadv_slave_0: entered promiscuous mode
[   52.941703][ T3899] netlink: 4 bytes leftover after parsing attributes in process `syz.0.126'.
[   52.990520][ T3899] batadv_slave_0 (unregistering): left promiscuous mode
[   53.032088][ T3899] batman_adv: batadv0: Removing interface: batadv_slave_0
[   53.181160][ T3919] netlink: 32 bytes leftover after parsing attributes in process `syz.0.133'.
[   53.199679][ T3919] netlink: 32 bytes leftover after parsing attributes in process `syz.0.133'.
[   53.322500][ T3926] loop3: detected capacity change from 0 to 128
[   53.337277][ T3926] vfat: Unknown parameter 'kfree'
[   53.363792][ T3926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.135'.
[   53.431190][ T3928] loop3: detected capacity change from 0 to 512
[   53.443129][ T3928] EXT4-fs (loop3): invalid journal inode
[   53.449158][ T3928] EXT4-fs (loop3): can't get journal size
[   53.457625][ T3928] EXT4-fs (loop3): 1 truncate cleaned up
[   53.484044][ T3928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.776344][ T3797] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.819228][ T3797] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.832425][ T3797] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.865782][ T3797] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.115991][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.278280][ T3967] loop0: detected capacity change from 0 to 512
[   54.308622][ T3967] EXT4-fs (loop0): 1 orphan inode deleted
[   54.326012][  T170] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   54.340324][ T3967] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.374777][ T3967] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.457371][ T3978] loop3: detected capacity change from 0 to 512
[   54.478195][ T3836] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.548135][ T3836] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.587340][ T3836] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.598804][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.628690][ T3994] netlink: 32 bytes leftover after parsing attributes in process `syz.1.151'.
[   54.640110][ T3978] EXT4-fs (loop3): 1 orphan inode deleted
[   54.656099][ T3994] netlink: 32 bytes leftover after parsing attributes in process `syz.1.151'.
[   54.665500][ T2203] __quota_error: 228 callbacks suppressed
[   54.665523][ T2203] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   54.669479][ T3836] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.671684][ T2203] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   54.715577][ T3978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.745169][   T29] audit: type=1326 audit(1749051088.630:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.768893][   T29] audit: type=1326 audit(1749051088.630:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.792139][   T29] audit: type=1326 audit(1749051088.630:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.815674][   T29] audit: type=1326 audit(1749051088.630:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.839206][   T29] audit: type=1326 audit(1749051088.630:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.852888][ T3978] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.863411][   T29] audit: type=1326 audit(1749051088.630:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.900414][   T29] audit: type=1326 audit(1749051088.630:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.927743][   T29] audit: type=1326 audit(1749051088.740:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.954817][   T29] audit: type=1326 audit(1749051088.840:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3992 comm="syz.1.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62a6fae929 code=0x7ffc0000
[   54.957186][ T4005] loop4: detected capacity change from 0 to 128
[   54.998950][ T4003] loop0: detected capacity change from 0 to 128
[   55.014563][ T4003] vfat: Unknown parameter 'kfree'
[   55.031271][ T4003] netlink: 4 bytes leftover after parsing attributes in process `syz.0.153'.
[   55.049746][ T4005] vfat: Unknown parameter 'kfree'
[   55.226255][ T4016] loop0: detected capacity change from 0 to 1024
[   55.233242][ T4016] EXT4-fs: Ignoring removed i_version option
[   55.241099][ T4016] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.252052][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.262292][ T4016] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   55.326627][ T4016] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   55.343629][ T4016] EXT4-fs (loop0): orphan cleanup on readonly fs
[   55.350416][ T4016] EXT4-fs error (device loop0): ext4_quota_enable:7124: inode #3: comm syz.0.155: iget: bad i_size value: 1407374883559424
[   55.377263][ T4016] EXT4-fs (loop0): Remounting filesystem read-only
[   55.384206][ T4016] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   55.399420][ T4016] EXT4-fs (loop0): Cannot turn on quotas: error -117
[   55.419417][ T4019] loop4: detected capacity change from 0 to 1024
[   55.432648][ T4016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.449681][ T4019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.462136][ T4019] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.647959][ T4022] loop2: detected capacity change from 0 to 1024
[   55.747534][ T4026] loop1: detected capacity change from 0 to 128
[   55.754313][ T4026] vfat: Unknown parameter 'kfree'
[   55.754451][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.794379][ T4022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.822418][ T4032] loop1: detected capacity change from 0 to 512
[   55.851341][ T4022] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.881733][ T4032] EXT4-fs (loop1): 1 orphan inode deleted
[   55.905133][ T4032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.918685][  T170] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   55.959220][ T4032] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.051478][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.070636][ T4045] loop3: detected capacity change from 0 to 128
[   56.077869][ T4045] vfat: Unknown parameter 'kfree'
[   56.104767][ T4045] __nla_validate_parse: 3 callbacks suppressed
[   56.104784][ T4045] netlink: 4 bytes leftover after parsing attributes in process `syz.3.166'.
[   56.125991][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.222377][ T4053] loop3: detected capacity change from 0 to 512
[   56.284573][ T4053] EXT4-fs (loop3): too many log groups per flexible block group
[   56.292429][ T4053] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   56.316052][ T4053] EXT4-fs (loop3): mount failed
[   56.329070][ T4047] Falling back ldisc for ptm0.
[   56.365955][ T4068] loop0: detected capacity change from 0 to 128
[   56.398692][ T4068] netlink: 132 bytes leftover after parsing attributes in process `syz.0.170'.
[   56.420806][ T4068] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4068 comm=syz.0.170
[   56.433590][ T4068] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4068 comm=syz.0.170
[   56.491605][ T4076] loop3: detected capacity change from 0 to 512
[   56.505270][ T4078] loop0: detected capacity change from 0 to 128
[   56.535525][ T4078] vfat: Unknown parameter 'kfree'
[   56.541980][ T4076] EXT4-fs (loop3): too many log groups per flexible block group
[   56.549791][ T4076] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   56.569894][ T4078] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[   56.574826][ T4076] EXT4-fs (loop3): mount failed
[   56.678079][ T4091] FAULT_INJECTION: forcing a failure.
[   56.678079][ T4091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.691737][ T4091] CPU: 1 UID: 0 PID: 4091 Comm: syz.3.175 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   56.691767][ T4091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.691787][ T4091] Call Trace:
[   56.691795][ T4091]  <TASK>
[   56.691814][ T4091]  __dump_stack+0x1d/0x30
[   56.691836][ T4091]  dump_stack_lvl+0xe8/0x140
[   56.691914][ T4091]  dump_stack+0x15/0x1b
[   56.691934][ T4091]  should_fail_ex+0x265/0x280
[   56.691958][ T4091]  should_fail+0xb/0x20
[   56.691979][ T4091]  should_fail_usercopy+0x1a/0x20
[   56.692001][ T4091]  _copy_from_user+0x1c/0xb0
[   56.692098][ T4091]  ___sys_sendmsg+0xc1/0x1d0
[   56.692149][ T4091]  __x64_sys_sendmsg+0xd4/0x160
[   56.692222][ T4091]  x64_sys_call+0x2999/0x2fb0
[   56.692249][ T4091]  do_syscall_64+0xd2/0x200
[   56.692350][ T4091]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.692380][ T4091]  ? clear_bhb_loop+0x40/0x90
[   56.692400][ T4091]  ? clear_bhb_loop+0x40/0x90
[   56.692563][ T4091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.692669][ T4091] RIP: 0033:0x7f7d0426e929
[   56.692688][ T4091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.692710][ T4091] RSP: 002b:00007f7d028d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.692730][ T4091] RAX: ffffffffffffffda RBX: 00007f7d04495fa0 RCX: 00007f7d0426e929
[   56.692796][ T4091] RDX: 0000000000008844 RSI: 0000200000000080 RDI: 0000000000000003
[   56.692813][ T4091] RBP: 00007f7d028d7090 R08: 0000000000000000 R09: 0000000000000000
[   56.692827][ T4091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.692842][ T4091] R13: 0000000000000000 R14: 00007f7d04495fa0 R15: 00007fff4feea878
[   56.692930][ T4091]  </TASK>
[   56.901509][ T4094] loop4: detected capacity change from 0 to 256
[   56.918254][ T4096] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.176'.
[   56.937801][ T4094] FAT-fs (loop4): codepage cp850 not found
[   56.999229][ T4107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.176'.
[   57.008242][ T4107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.176'.
[   57.017663][ T4107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.176'.
[   57.091899][ T4086] netlink: 16 bytes leftover after parsing attributes in process `syz.4.174'.
[   57.138265][ T4086] netlink: 16 bytes leftover after parsing attributes in process `syz.4.174'.
[   57.182116][ T4118] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.284595][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.297217][ T4118] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.302332][ T4120] infiniband syz!: set active
[   57.312302][ T4120] infiniband syz!: added team_slave_0
[   57.337342][ T4123] loop2: detected capacity change from 0 to 512
[   57.344612][ T4120] RDS/IB: syz!: added
[   57.350422][ T4120] smc: adding ib device syz! with port count 1
[   57.358251][ T4120] smc:    ib device syz! port 1 has pnetid 
[   57.365122][ T4123] EXT4-fs (loop2): too many log groups per flexible block group
[   57.372908][ T4123] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   57.384968][ T4123] EXT4-fs (loop2): mount failed
[   57.398353][ T4118] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.461341][ T4118] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.571533][ T4118] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.621894][ T4118] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.657740][ T4118] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.671470][ T4118] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.766757][ T4140] 9pnet_fd: Insufficient options for proto=fd
[   57.789363][ T4140] rdma_op ffff888119b37580 conn xmit_rdma 0000000000000000
[   57.797542][ T4142] loop3: detected capacity change from 0 to 512
[   57.864748][ T4142] EXT4-fs (loop3): 1 orphan inode deleted
[   57.872834][ T4142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.892166][  T406] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[   57.913609][ T4149] loop1: detected capacity change from 0 to 128
[   57.924792][ T4149] vfat: Unknown parameter 'kfree'
[   57.939898][ T4149] netlink: 4 bytes leftover after parsing attributes in process `syz.1.193'.
[   57.949679][ T4142] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.969430][ T4142] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.191: iget: bad i_size value: 360287970189639690
[   58.256887][ T4163] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[   58.278200][ T4164] loop4: detected capacity change from 0 to 1024
[   58.328058][ T4164] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.340280][ T4164] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.738924][ T2203] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   58.867517][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.958386][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.101874][ T4187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.135140][ T4187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.200283][ T4192] loop3: detected capacity change from 0 to 512
[   59.207513][ T4192] EXT4-fs: Ignoring removed oldalloc option
[   59.214521][ T4192] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.246825][ T4192] EXT4-fs (loop3): orphan cleanup on readonly fs
[   59.254249][ T4192] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.198: Failed to acquire dquot type 1
[   59.268277][ T4192] EXT4-fs (loop3): 1 truncate cleaned up
[   59.274949][ T4192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.983856][ T4199] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.069770][ T4199] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.132548][   T29] kauditd_printk_skb: 84 callbacks suppressed
[   60.132565][   T29] audit: type=1400 audit(1749051094.020:712): avc:  denied  { setopt } for  pid=4204 comm="syz.1.203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   60.218920][ T4199] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.285736][ T4211] FAULT_INJECTION: forcing a failure.
[   60.285736][ T4211] name failslab, interval 1, probability 0, space 0, times 0
[   60.298780][ T4211] CPU: 0 UID: 0 PID: 4211 Comm: syz.1.205 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   60.298814][ T4211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.298830][ T4211] Call Trace:
[   60.298839][ T4211]  <TASK>
[   60.298848][ T4211]  __dump_stack+0x1d/0x30
[   60.298873][ T4211]  dump_stack_lvl+0xe8/0x140
[   60.298965][ T4211]  dump_stack+0x15/0x1b
[   60.298982][ T4211]  should_fail_ex+0x265/0x280
[   60.299028][ T4211]  should_failslab+0x8c/0xb0
[   60.299057][ T4211]  __kmalloc_noprof+0xa5/0x3e0
[   60.299220][ T4211]  ? kernfs_fop_write_iter+0xe1/0x2d0
[   60.299252][ T4211]  ? selinux_file_permission+0x1e4/0x320
[   60.299284][ T4211]  kernfs_fop_write_iter+0xe1/0x2d0
[   60.299317][ T4211]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   60.299406][ T4211]  vfs_write+0x4a0/0x8e0
[   60.299444][ T4211]  ksys_write+0xda/0x1a0
[   60.299471][ T4211]  __x64_sys_write+0x40/0x50
[   60.299497][ T4211]  x64_sys_call+0x2cdd/0x2fb0
[   60.299524][ T4211]  do_syscall_64+0xd2/0x200
[   60.299581][ T4211]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.299621][ T4211]  ? clear_bhb_loop+0x40/0x90
[   60.299726][ T4211]  ? clear_bhb_loop+0x40/0x90
[   60.299754][ T4211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.299778][ T4211] RIP: 0033:0x7f62a6fae929
[   60.299836][ T4211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.299857][ T4211] RSP: 002b:00007f62a5617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   60.299881][ T4211] RAX: ffffffffffffffda RBX: 00007f62a71d5fa0 RCX: 00007f62a6fae929
[   60.299892][ T4211] RDX: 0000000000000008 RSI: 0000200000000000 RDI: 0000000000000004
[   60.299904][ T4211] RBP: 00007f62a5617090 R08: 0000000000000000 R09: 0000000000000000
[   60.299940][ T4211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.299955][ T4211] R13: 0000000000000000 R14: 00007f62a71d5fa0 R15: 00007ffefdd0ef38
[   60.299979][ T4211]  </TASK>
[   60.569475][ T4199] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.654774][ T4199] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.749916][ T4199] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.769236][ T4226] loop0: detected capacity change from 0 to 128
[   60.798290][ T4199] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.807289][ T4226] vfat: Unknown parameter 'kfree'
[   60.850675][ T4199] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.027193][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.062599][   T29] audit: type=1400 audit(1749051094.950:713): avc:  denied  { ioctl } for  pid=4229 comm="syz.0.210" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   61.137067][ T4246] loop1: detected capacity change from 0 to 128
[   61.144703][ T4246] vfat: Unknown parameter 'kfree'
[   61.157978][ T4248] loop0: detected capacity change from 0 to 512
[   61.165575][ T4248] EXT4-fs: Ignoring removed bh option
[   61.193861][ T4246] __nla_validate_parse: 6 callbacks suppressed
[   61.193880][ T4246] netlink: 4 bytes leftover after parsing attributes in process `syz.1.214'.
[   61.987896][ T4250] syz.3.212 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[   62.002763][ T4250] CPU: 1 UID: 0 PID: 4250 Comm: syz.3.212 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   62.002858][ T4250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   62.002872][ T4250] Call Trace:
[   62.002880][ T4250]  <TASK>
[   62.002889][ T4250]  __dump_stack+0x1d/0x30
[   62.002942][ T4250]  dump_stack_lvl+0xe8/0x140
[   62.002963][ T4250]  dump_stack+0x15/0x1b
[   62.002982][ T4250]  dump_header+0x81/0x220
[   62.003016][ T4250]  oom_kill_process+0x334/0x3f0
[   62.003110][ T4250]  out_of_memory+0x979/0xb80
[   62.003148][ T4250]  try_charge_memcg+0x5e6/0x9e0
[   62.003257][ T4250]  obj_cgroup_charge_pages+0xa6/0x150
[   62.003298][ T4250]  __memcg_kmem_charge_page+0x9f/0x170
[   62.003342][ T4250]  __alloc_frozen_pages_noprof+0x188/0x360
[   62.003435][ T4250]  alloc_pages_mpol+0xb3/0x250
[   62.003467][ T4250]  alloc_pages_noprof+0x90/0x130
[   62.003617][ T4250]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   62.003669][ T4250]  __kvmalloc_node_noprof+0x312/0x4f0
[   62.003718][ T4250]  ? ip_set_alloc+0x1f/0x30
[   62.003746][ T4250]  ? ip_set_alloc+0x1f/0x30
[   62.003818][ T4250]  ? __kmalloc_cache_noprof+0x189/0x320
[   62.003863][ T4250]  ip_set_alloc+0x1f/0x30
[   62.003890][ T4250]  hash_netiface_create+0x282/0x740
[   62.003922][ T4250]  ? __pfx_hash_netiface_create+0x10/0x10
[   62.003978][ T4250]  ip_set_create+0x3c9/0x960
[   62.004030][ T4250]  nfnetlink_rcv_msg+0x4c6/0x590
[   62.004081][ T4250]  ? selinux_capable+0x1f9/0x270
[   62.004104][ T4250]  netlink_rcv_skb+0x123/0x220
[   62.004136][ T4250]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   62.004168][ T4250]  nfnetlink_rcv+0x16b/0x1690
[   62.004262][ T4250]  ? __kfree_skb+0x109/0x150
[   62.004292][ T4250]  ? nlmon_xmit+0x4f/0x60
[   62.004316][ T4250]  ? consume_skb+0x49/0x150
[   62.004344][ T4250]  ? nlmon_xmit+0x4f/0x60
[   62.004372][ T4250]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   62.004411][ T4250]  ? __dev_queue_xmit+0x11c0/0x1fb0
[   62.004440][ T4250]  ? __dev_queue_xmit+0x182/0x1fb0
[   62.004520][ T4250]  ? ref_tracker_free+0x37d/0x3e0
[   62.004567][ T4250]  ? __netlink_deliver_tap+0x4dc/0x500
[   62.004620][ T4250]  netlink_unicast+0x59e/0x670
[   62.004652][ T4250]  netlink_sendmsg+0x58b/0x6b0
[   62.004687][ T4250]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.004750][ T4250]  __sock_sendmsg+0x145/0x180
[   62.004774][ T4250]  ____sys_sendmsg+0x31e/0x4e0
[   62.004811][ T4250]  ___sys_sendmsg+0x17b/0x1d0
[   62.004900][ T4250]  __x64_sys_sendmsg+0xd4/0x160
[   62.004963][ T4250]  x64_sys_call+0x2999/0x2fb0
[   62.004987][ T4250]  do_syscall_64+0xd2/0x200
[   62.005094][ T4250]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.005125][ T4250]  ? clear_bhb_loop+0x40/0x90
[   62.005149][ T4250]  ? clear_bhb_loop+0x40/0x90
[   62.005173][ T4250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.005249][ T4250] RIP: 0033:0x7f7d0426e929
[   62.005265][ T4250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.005285][ T4250] RSP: 002b:00007f7d02895038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.005306][ T4250] RAX: ffffffffffffffda RBX: 00007f7d04496160 RCX: 00007f7d0426e929
[   62.005320][ T4250] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[   62.005464][ T4250] RBP: 00007f7d042f0ab1 R08: 0000000000000000 R09: 0000000000000000
[   62.005478][ T4250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   62.005492][ T4250] R13: 0000000000000000 R14: 00007f7d04496160 R15: 00007fff4feea878
[   62.005513][ T4250]  </TASK>
[   62.005520][ T4250] memory: usage 307200kB, limit 307200kB, failcnt 907
[   62.185777][ T4248] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   62.188900][ T4250] memory+swap: usage 309900kB, limit 9007199254740988kB, failcnt 0
[   62.195434][ T4248] EXT4-fs (loop0): 1 truncate cleaned up
[   62.199414][ T4250] kmem: usage 306780kB, limit 9007199254740988kB, failcnt 0
[   62.205553][ T4248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.210328][ T4250] Memory cgroup stats for /syz3:
[   62.223406][ T4250] cache 421888
[   62.260810][ T4252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.214'.
[   62.266241][ T4250] rss 0
[   62.266255][ T4250] shmem 0
[   62.266263][ T4250] mapped_file 421888
[   62.266311][ T4250] dirty 421888
[   62.266317][ T4250] writeback 0
[   62.266324][ T4250] workingset_refault_anon 5
[   62.266331][ T4250] workingset_refault_file 15
[   62.266338][ T4250] swap 2768896
[   62.266345][ T4250] swapcached 4096
[   62.474776][ T4250] nr_memmap_boot_pages 36287
[   62.479548][ T4250] pgpgin 36183
[   62.483049][ T4250] pglazyfree 25699
[   62.486829][ T4250] pgfault 8
[   62.490054][ T4250] a_other 0
[   62.493275][ T4250] inactive_anon 4096
[   62.497287][ T4250] active_anon 421888
[   62.501235][ T4250] inactive_file 0
[   62.504934][ T4250] active_file 0
[   62.508616][ T4250] hierarchical_memory_limit 314572800
[   62.514225][ T4250] hierarchical_memsw_limit 9223372036854771712
[   62.520525][ T4250] total_cache 421888
[   62.524524][ T4250] total_rss 0
[   62.528023][ T4250] total_shmem 0
[   62.531681][ T4250] total_mapped_file 421888
[   62.536143][ T4250] total_dirty 421888
[   62.540089][ T4250] total_writeback 0
[   62.543924][ T4250] total_workingset_refault_anon 5
[   62.549043][ T4250] total_workingset_refault_file 15
[   62.554189][ T4250] total_swap 2768896
[   62.558350][ T4250] total_swapcached 4096
[   62.562527][ T4250] total_nr_memmap_boot_pages 36287
[   62.565742][ T4262] loop2: detected capacity change from 0 to 512
[   62.567887][ T4250] total_pgpgin 36183
[   62.567900][ T4250] total_pglazyfree 25699
[   62.567909][ T4250] total_pgfault 8
[   62.567916][ T4250] total_a_other 0
[   62.567924][ T4250] total_inactive_anon 4096
[   62.567933][ T4250] total_active_anon 421888
[   62.567941][ T4250] total_inactive_file 0
[   62.568017][ T4250] total_active_file 0
[   62.568027][ T4250] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.212,pid=4243,uid=0
[   62.621395][ T4262] EXT4-fs (loop2): 1 orphan inode deleted
[   62.622840][ T4250] Memory cgroup out of memory: Killed process 4243 (syz.3.212) total-vm:100164kB, anon-rss:916kB, file-rss:26280kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[   62.774086][ T4250] syz.3.212 (4250) used greatest stack depth: 7472 bytes left
[   62.782794][ T4262] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.823794][ T4262] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.892273][   T29] audit: type=1400 audit(1749051096.780:714): avc:  denied  { write } for  pid=4267 comm="syz.4.217" name="udp" dev="proc" ino=4026532439 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   62.927743][   T37] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   62.937871][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   62.958671][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.989148][  T170] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   62.999066][  T170] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   63.032413][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.046069][ T4278] loop4: detected capacity change from 0 to 128
[   63.072540][ T4278] vfat: Unknown parameter 'kfree'
[   63.091795][ T4284] loop0: detected capacity change from 0 to 512
[   63.098606][   T29] audit: type=1400 audit(1749051096.980:715): avc:  denied  { create } for  pid=4274 comm="syz.0.215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   63.119142][   T29] audit: type=1400 audit(1749051096.980:716): avc:  denied  { write } for  pid=4274 comm="syz.0.215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   63.139760][ T4284] EXT4-fs: Ignoring removed i_version option
[   63.156112][ T4278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.220'.
[   63.166305][ T4284] EXT4-fs (loop0): orphan cleanup on readonly fs
[   63.184290][ T4284] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.215: bg 0: block 131: padding at end of block bitmap is not set
[   63.212023][ T4284] EXT4-fs (loop0): Remounting filesystem read-only
[   63.218940][ T4284] EXT4-fs (loop0): 1 truncate cleaned up
[   63.225088][ T4284] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   63.241147][   T29] audit: type=1400 audit(1749051097.130:717): avc:  denied  { watch watch_reads } for  pid=4274 comm="syz.0.215" path="/46/file0" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   63.315987][ T4287] deleting an unspecified loop device is not supported.
[   63.402695][ T4304] loop4: detected capacity change from 0 to 512
[   63.409473][ T4304] EXT4-fs: Ignoring removed oldalloc option
[   63.505301][ T4304] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.523746][   T29] audit: type=1326 audit(1749051097.400:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4298 comm="syz.3.225" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7d0426e929 code=0x0
[   63.555615][ T4304] EXT4-fs (loop4): orphan cleanup on readonly fs
[   63.564128][ T4304] Quota error (device loop4): do_check_range: Getting block 196613 out of range 1-5
[   63.573774][ T4304] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.223: Failed to acquire dquot type 1
[   63.586655][ T4304] EXT4-fs (loop4): 1 truncate cleaned up
[   63.593825][ T4304] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   64.173840][ T4314] loop1: detected capacity change from 0 to 1024
[   64.193172][ T4317] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.280408][ T4322] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.299082][ T4314] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.317787][ T4317] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.359753][ T4322] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.407976][ T4317] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.450201][ T4322] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.500259][ T4317] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.537826][ T4322] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   64.602062][ T4317] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.643123][ T4322] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.678868][ T4317] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.702568][ T4322] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.737611][ T4317] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.766818][ T4322] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.789086][ T4317] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.815253][ T4322] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.835445][ T4330] bridge_slave_0: left allmulticast mode
[   64.841288][ T4330] bridge_slave_0: left promiscuous mode
[   64.847087][ T4330] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.861697][ T4330] bridge_slave_1: left allmulticast mode
[   64.868261][ T4330] bridge_slave_1: left promiscuous mode
[   64.874149][ T4330] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.911266][ T4330] bond0: (slave bond_slave_0): Releasing backup interface
[   64.927012][ T4330] bond0: (slave bond_slave_1): Releasing backup interface
[   64.944858][ T4330] team0: Port device team_slave_0 removed
[   64.957975][ T4330] team0: Port device team_slave_1 removed
[   64.970750][ T4330] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.163400][ T4338] loop3: detected capacity change from 0 to 128
[   65.182609][ T4338] vfat: Unknown parameter 'kfree'
[   65.190411][ T4338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.235'.
[   65.242120][   T29] kauditd_printk_skb: 2 callbacks suppressed
[   65.242134][   T29] audit: type=1326 audit(1749051099.130:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4341 comm="syz.4.237" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd5d435e929 code=0x0
[   65.308610][ T4349] loop0: detected capacity change from 0 to 512
[   65.313450][   T29] audit: type=1400 audit(1749051099.180:721): avc:  denied  { setcurrent } for  pid=4344 comm="syz.3.238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   65.335105][   T29] audit: type=1401 audit(1749051099.180:722): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[   65.352637][ T4345] netlink: 4 bytes leftover after parsing attributes in process `wg1'.
[   65.398513][ T4345] team0 (unregistering): Port device team_slave_0 removed
[   65.413546][ T4353] loop2: detected capacity change from 0 to 512
[   65.424559][ T4353] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   65.484821][ T4353] EXT4-fs (loop2): 1 truncate cleaned up
[   65.514435][ T4349] EXT4-fs (loop0): 1 orphan inode deleted
[   65.526470][   T37] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   65.536478][   T37] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   65.771182][ T4349] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.833617][ T4345] team0 (unregistering): Port device team_slave_1 removed
[   65.897998][ T4349] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.239: iget: bad i_size value: 360287970189639690
[   66.142344][ T4349] netlink: 'syz.0.239': attribute type 4 has an invalid length.
[   66.174577][  T170] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   66.184610][  T170] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   66.219764][ T4349] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.239: iget: bad i_size value: 360287970189639690
[   66.305654][   T29] audit: type=1400 audit(1749051100.170:723): avc:  denied  { map } for  pid=4362 comm="syz.4.241" path="socket:[9040]" dev="sockfs" ino=9040 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   66.329929][   T29] audit: type=1400 audit(1749051100.170:724): avc:  denied  { read write accept } for  pid=4362 comm="syz.4.241" path="socket:[9040]" dev="sockfs" ino=9040 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   66.385692][ T4367] loop4: detected capacity change from 0 to 512
[   66.470754][ T4367] EXT4-fs (loop4): 1 orphan inode deleted
[   66.482872][ T4367] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.494987][  T170] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   66.506478][  T170] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   66.524225][ T4367] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.242: iget: bad i_size value: 360287970189639690
[   66.549144][ T4367] netlink: 'syz.4.242': attribute type 4 has an invalid length.
[   66.558742][ T4367] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.242: iget: bad i_size value: 360287970189639690
[   66.572525][   T56] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   66.582828][   T56] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[   66.627499][ T4374] netlink: 16 bytes leftover after parsing attributes in process `syz.1.244'.
[   66.717284][ T4376] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.898359][ T4376] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.977729][ T4376] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.993661][ T4381] loop1: detected capacity change from 0 to 1024
[   67.037590][ T4376] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.069708][ T4381] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.213707][ T4376] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.252041][ T4376] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.269759][ T4376] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.285664][ T4376] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.366553][ T4387] loop2: detected capacity change from 0 to 128
[   67.373693][ T4387] vfat: Unknown parameter 'kfree'
[   67.380183][ T4387] netlink: 4 bytes leftover after parsing attributes in process `syz.2.248'.
[   67.526377][   T29] audit: type=1326 audit(1749051101.420:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4388 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   67.573621][ T4389] loop4: detected capacity change from 0 to 2048
[   67.581103][ T4389] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   67.822141][ T4404] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.881571][ T4404] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.939062][ T4415] loop0: detected capacity change from 0 to 128
[   67.940342][ T4404] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.946362][ T4415] vfat: Unknown parameter 'kfree'
[   67.971285][ T4415] netlink: 4 bytes leftover after parsing attributes in process `syz.0.259'.
[   67.983858][ T4415] netlink: 8 bytes leftover after parsing attributes in process `syz.0.259'.
[   68.032089][ T4404] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.032528][ T4418] loop0: detected capacity change from 0 to 128
[   68.049230][ T4418] vfat: Unknown parameter 'kfree'
[   68.055806][ T4418] netlink: 4 bytes leftover after parsing attributes in process `syz.0.260'.
[   68.092879][ T4404] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.105076][ T4404] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.117353][ T4404] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.129854][ T4404] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.201322][ T4422] loop0: detected capacity change from 0 to 512
[   68.208322][ T4422] EXT4-fs: Ignoring removed oldalloc option
[   68.225669][ T4422] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.236880][ T4422] EXT4-fs (loop0): orphan cleanup on readonly fs
[   68.245236][ T4422] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.261: Failed to acquire dquot type 1
[   68.258762][ T4422] EXT4-fs (loop0): 1 truncate cleaned up
[   68.527245][ T4427] loop1: detected capacity change from 0 to 512
[   68.591968][ T4427] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.702726][ T4427] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.262: bad orphan inode 11
[   68.825527][ T4427] ext4_test_bit(bit=10, block=4) = 1
[   68.830963][ T4427] is_bad_inode(inode)=0
[   68.835149][ T4427] NEXT_ORPHAN(inode)=2080374784
[   68.840270][ T4427] max_ino=32
[   68.843673][ T4427] i_nlink=0
[   68.854090][ T4431] Falling back ldisc for ptm0.
[   68.894902][ T4429] loop2: detected capacity change from 0 to 1764
[   69.055078][ T4427] EXT4-fs (loop1): 1 truncate cleaned up
[   69.208805][ T4440] random: crng reseeded on system resumption
[   69.698835][ T4440] netlink: 'syz.2.266': attribute type 1 has an invalid length.
[   69.764555][ T4443] loop4: detected capacity change from 0 to 1024
[   69.808747][ T3327] EXT4-fs unmount: 14 callbacks suppressed
[   69.808762][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.896720][ T4443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.909172][ T4443] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.076357][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.113685][ T4473] SELinux:  Context Ü is not valid (left unmapped).
[   70.128024][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.146949][ T4477] loop2: detected capacity change from 0 to 512
[   70.163388][ T4477] EXT4-fs (loop2): 1 orphan inode deleted
[   70.166735][ T4475] loop0: detected capacity change from 0 to 512
[   70.197949][ T2203] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   70.214169][ T4477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.229206][ T4477] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.248864][ T4475] EXT4-fs (loop0): 1 orphan inode deleted
[   70.255238][ T4475] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.259530][ T4481] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.272896][ T4475] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.288975][ T2203] __quota_error: 155 callbacks suppressed
[   70.288993][ T2203] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   70.304953][ T2203] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   70.317256][   T29] audit: type=1400 audit(1749051104.190:878): avc:  denied  { unlink } for  pid=3327 comm="syz-executor" name="file0" dev="tmpfs" ino=335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 trawcon=DC
[   70.347440][ T4485] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.357741][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.369622][ T4481] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.379941][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.467828][ T4481] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.480753][ T4485] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.507595][ T4481] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.537564][ T4485] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.597794][ T4485] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.614305][ T4497] netlink: 16 bytes leftover after parsing attributes in process `syz.2.276'.
[   70.669219][ T4501] Falling back ldisc for ptm0.
[   70.803809][ T4505] loop2: detected capacity change from 0 to 512
[   70.810725][ T4505] EXT4-fs: Ignoring removed oldalloc option
[   70.821555][ T4505] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.831770][ T4505] EXT4-fs (loop2): orphan cleanup on readonly fs
[   70.839684][ T4505] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[   70.849160][ T4505] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[   70.858904][ T4505] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.279: Failed to acquire dquot type 1
[   70.871517][ T4505] EXT4-fs (loop2): 1 truncate cleaned up
[   70.878683][ T4505] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   71.520560][ T4511] loop0: detected capacity change from 0 to 512
[   71.588992][ T4511] EXT4-fs (loop0): 1 orphan inode deleted
[   71.606105][   T51] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   71.616391][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[   71.632505][ T4511] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.647509][ T4511] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.662156][ T4511] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.281: iget: bad i_size value: 360287970189639690
[   71.701692][ T4511] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.281: iget: bad i_size value: 360287970189639690
[   71.717591][   T56] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   71.727564][   T56] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[   71.751027][   T29] audit: type=1400 audit(1749051105.640:879): avc:  denied  { remount } for  pid=4510 comm="syz.0.281" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   71.773702][ T4511] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   71.805537][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.872519][ T4481] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.884464][ T4481] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.924011][ T4481] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.954188][ T4481] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.988570][ T4518] loop0: detected capacity change from 0 to 512
[   72.019622][ T4518] EXT4-fs (loop0): 1 orphan inode deleted
[   72.038178][   T51] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   72.048710][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[   72.064204][ T4522] loop4: detected capacity change from 0 to 512
[   72.072350][ T4518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.113115][ T4522] EXT4-fs (loop4): 1 orphan inode deleted
[   72.121726][ T4518] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.133725][   T51] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   72.144335][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[   72.157996][ T4522] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.173921][ T4518] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.283: iget: bad i_size value: 360287970189639690
[   72.188081][ T4522] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.203656][ T4518] netlink: 'syz.0.283': attribute type 4 has an invalid length.
[   72.216000][ T2203] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   72.226439][ T2203] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   72.251854][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.263033][ T4518] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   72.312803][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.326567][ T4526] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.285'.
[   72.415014][ T4532] netlink: 4 bytes leftover after parsing attributes in process `syz.4.285'.
[   72.424028][ T4532] netlink: 4 bytes leftover after parsing attributes in process `syz.4.285'.
[   72.436429][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.447323][ T4530] loop0: detected capacity change from 0 to 2048
[   72.447637][ T4532] netlink: 4 bytes leftover after parsing attributes in process `syz.4.285'.
[   72.456107][ T4530] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   72.526452][ T4536] loop0: detected capacity change from 0 to 512
[   72.547425][ T4536] EXT4-fs (loop0): too many log groups per flexible block group
[   72.556069][ T4536] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   72.563531][ T4536] EXT4-fs (loop0): mount failed
[   72.951643][ T4485] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.962849][ T4485] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.974518][ T4485] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.986536][ T4485] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.056219][ T4559] loop1: detected capacity change from 0 to 2048
[   73.063654][ T4559] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   73.108185][ T4562] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.167959][ T4562] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.249484][ T4562] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.299101][ T4568] loop0: detected capacity change from 0 to 2048
[   73.306746][ T4568] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   73.342102][ T4562] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.374445][ T4573] bridge: RTM_NEWNEIGH with invalid ether address
[   73.385550][ T4575] bridge: RTM_NEWNEIGH with invalid ether address
[   73.409736][ T4579] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.459098][ T4579] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.565550][ T4579] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.621396][ T4579] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.641272][ T4598] sg_write: data in/out 768/221 bytes for SCSI command 0x0-- guessing data in;
[   73.641272][ T4598]    program syz.0.305 not setting count and/or reply_len properly
[   73.689900][ T4579] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.708643][ T4579] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.725296][ T4579] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.737987][ T4579] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.776979][ T4602] loop4: detected capacity change from 0 to 2048
[   73.784502][ T4602] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   73.831277][ T4612] Falling back ldisc for ptm0.
[   73.883396][ T4622] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.894547][ T4618] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.904495][ T4618] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.921865][ T4618] loop3: detected capacity change from 0 to 256
[   73.929050][ T4626] netlink: 16 bytes leftover after parsing attributes in process `syz.4.316'.
[   73.987573][ T4622] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.037536][ T4622] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.086852][ T4628] netlink: 'syz.4.317': attribute type 10 has an invalid length.
[   74.094673][ T4628] netlink: 40 bytes leftover after parsing attributes in process `syz.4.317'.
[   74.116278][ T4628] team0: Port device geneve1 added
[   74.128506][ T4622] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.194992][ T4638] loop0: detected capacity change from 0 to 128
[   74.202425][ T4638] vfat: Unknown parameter 'kfree'
[   74.212012][ T4638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.321'.
[   74.248630][ T4640] loop4: detected capacity change from 0 to 512
[   74.271058][ T4640] EXT4-fs (loop4): too many log groups per flexible block group
[   74.279116][ T4640] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   74.286234][ T4640] EXT4-fs (loop4): mount failed
[   74.319404][ T4646] Falling back ldisc for ptm0.
[   74.374444][ T4652] netlink: 16 bytes leftover after parsing attributes in process `syz.0.327'.
[   74.402689][ T4648] loop4: detected capacity change from 0 to 2048
[   74.411033][ T4648] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   74.442406][ T4657] loop4: detected capacity change from 0 to 128
[   74.449725][ T4657] vfat: Unknown parameter 'kfree'
[   74.457887][ T4657] netlink: 4 bytes leftover after parsing attributes in process `syz.4.329'.
[   74.656229][ T4664] loop4: detected capacity change from 0 to 512
[   74.669185][ T4664] EXT4-fs (loop4): 1 orphan inode deleted
[   74.675591][ T4664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.688786][  T170] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   74.689576][ T4664] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.759057][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.781740][ T4670] loop4: detected capacity change from 0 to 128
[   74.789443][ T4670] vfat: Unknown parameter 'kfree'
[   74.798051][ T4670] netlink: 8 bytes leftover after parsing attributes in process `syz.4.333'.
[   74.841486][ T4672] loop4: detected capacity change from 0 to 128
[   74.907146][ T4676] Falling back ldisc for ptm0.
[   75.800669][   T29] kauditd_printk_skb: 268 callbacks suppressed
[   75.800686][   T29] audit: type=1326 audit(1749051109.690:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.834965][   T29] audit: type=1326 audit(1749051109.690:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.861173][   T29] audit: type=1326 audit(1749051109.690:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.861396][ T4686] loop4: detected capacity change from 0 to 2048
[   75.886976][   T29] audit: type=1326 audit(1749051109.690:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.898355][ T4686] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   75.918934][   T29] audit: type=1326 audit(1749051109.690:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.951748][   T29] audit: type=1326 audit(1749051109.690:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.975672][   T29] audit: type=1326 audit(1749051109.690:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   75.999142][   T29] audit: type=1326 audit(1749051109.720:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   76.022783][   T29] audit: type=1326 audit(1749051109.720:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   76.046963][   T29] audit: type=1326 audit(1749051109.720:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4685 comm="syz.4.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5d435e929 code=0x7ffc0000
[   76.090219][ T4689] loop4: detected capacity change from 0 to 128
[   76.107967][ T4689] vfat: Unknown parameter 'kfree'
[   76.225150][ T4698] loop0: detected capacity change from 0 to 512
[   76.237483][ T4698] EXT4-fs (loop0): too many log groups per flexible block group
[   76.245301][ T4698] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   76.252484][ T4698] EXT4-fs (loop0): mount failed
[   76.282311][ T4703] loop0: detected capacity change from 0 to 128
[   76.289722][ T4703] vfat: Unknown parameter 'kfree'
[   76.358782][ T4707] Falling back ldisc for ptm0.
[   76.624307][ T4712] loop0: detected capacity change from 0 to 128
[   76.996844][ T4721] loop4: detected capacity change from 0 to 128
[   77.003928][ T4721] vfat: Unknown parameter 'kfree'
[   77.085481][ T4723] loop4: detected capacity change from 0 to 2048
[   77.092675][ T4723] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   77.182648][ T4730] loop4: detected capacity change from 0 to 2048
[   77.183186][ T4562] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.201604][ T4562] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.213131][ T4562] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.224716][ T4562] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.275312][ T4734] loop1: detected capacity change from 0 to 128
[   77.284067][ T4734] vfat: Unknown parameter 'kfree'
[   77.345567][ T4737] bridge: RTM_NEWNEIGH with invalid ether address
[   77.666189][ T4745] __nla_validate_parse: 7 callbacks suppressed
[   77.666204][ T4745] netlink: 4 bytes leftover after parsing attributes in process `syz.3.362'.
[   77.758576][ T4622] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.758673][ T4750] loop0: detected capacity change from 0 to 128
[   77.774191][ T4750] vfat: Unknown parameter 'kfree'
[   77.779213][ T4748] FAULT_INJECTION: forcing a failure.
[   77.779213][ T4748] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.789712][ T4622] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.792915][ T4748] CPU: 0 UID: 0 PID: 4748 Comm: wg1 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   77.792951][ T4748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   77.792968][ T4748] Call Trace:
[   77.792976][ T4748]  <TASK>
[   77.792986][ T4748]  __dump_stack+0x1d/0x30
[   77.793013][ T4748]  dump_stack_lvl+0xe8/0x140
[   77.793078][ T4748]  dump_stack+0x15/0x1b
[   77.793100][ T4748]  should_fail_ex+0x265/0x280
[   77.793128][ T4748]  should_fail+0xb/0x20
[   77.793179][ T4748]  should_fail_usercopy+0x1a/0x20
[   77.793242][ T4748]  _copy_from_user+0x1c/0xb0
[   77.793275][ T4748]  ___sys_sendmsg+0xc1/0x1d0
[   77.793331][ T4748]  __x64_sys_sendmsg+0xd4/0x160
[   77.793433][ T4748]  x64_sys_call+0x2999/0x2fb0
[   77.793514][ T4748]  do_syscall_64+0xd2/0x200
[   77.793552][ T4748]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.793663][ T4748]  ? clear_bhb_loop+0x40/0x90
[   77.793691][ T4748]  ? clear_bhb_loop+0x40/0x90
[   77.793719][ T4748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.793747][ T4748] RIP: 0033:0x7f7d0426e929
[   77.793767][ T4748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.793839][ T4748] RSP: 002b:00007f7d02891038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.793863][ T4748] RAX: ffffffffffffffda RBX: 00007f7d04496080 RCX: 00007f7d0426e929
[   77.793880][ T4748] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 000000000000000a
[   77.793896][ T4748] RBP: 00007f7d02891090 R08: 0000000000000000 R09: 0000000000000000
[   77.793911][ T4748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.793927][ T4748] R13: 0000000000000000 R14: 00007f7d04496080 R15: 00007fff4feea878
[   77.794022][ T4748]  </TASK>
[   77.981736][ T4750] netlink: 4 bytes leftover after parsing attributes in process `syz.0.364'.
[   77.994681][ T4622] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.007661][ T4622] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.072232][ T4762] loop4: detected capacity change from 0 to 128
[   78.080302][ T4762] vfat: Unknown parameter 'kfree'
[   78.088211][ T4762] netlink: 4 bytes leftover after parsing attributes in process `syz.4.370'.
[   78.100085][ T4762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.370'.
[   78.192658][ T4765] loop0: detected capacity change from 0 to 2048
[   78.200703][ T4765] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   78.258826][ T4773] loop1: detected capacity change from 0 to 512
[   78.274874][ T4775] loop0: detected capacity change from 0 to 512
[   78.320612][ T4773] EXT4-fs (loop1): 1 orphan inode deleted
[   78.329160][ T4773] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.342268][   T56] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[   78.356390][ T4773] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.397133][ T4775] EXT4-fs (loop0): 1 orphan inode deleted
[   78.403472][ T4775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.417727][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   78.429116][ T4775] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.442160][ T4775] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.375: iget: bad i_size value: 360287970189639690
[   78.465682][ T4775] netlink: 'syz.0.375': attribute type 4 has an invalid length.
[   78.474756][ T4775] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.375: iget: bad i_size value: 360287970189639690
[   78.509277][ T4784] loop4: detected capacity change from 0 to 1024
[   78.698704][ T4784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.711401][ T4784] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.905587][   T12] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   78.919946][ T4775] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   78.929110][ T3327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.941161][ T4788] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.964766][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.985702][ T4794] loop1: detected capacity change from 0 to 2048
[   78.998038][ T4788] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.049355][ T4788] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.099398][ T4798] netlink: 16 bytes leftover after parsing attributes in process `syz.1.381'.
[   79.099778][ T4788] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.169509][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.192092][ T4801] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.222524][ T4788] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.244142][ T4788] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.267950][ T4801] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.285373][ T4788] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.300673][ T4788] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.313373][ T4801] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.407968][ T4801] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.463666][ T4811] loop2: detected capacity change from 0 to 2048
[   79.470915][ T4811] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   79.489452][ T4815] loop4: detected capacity change from 0 to 1764
[   79.558690][ T4818] loop0: detected capacity change from 0 to 512
[   79.563145][ T4819] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.389'.
[   79.583296][ T4821] loop4: detected capacity change from 0 to 512
[   79.594187][ T4818] EXT4-fs (loop0): 1 orphan inode deleted
[   79.606788][ T4818] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.619776][   T51] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[   79.622420][ T4818] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.635527][ T4821] EXT4-fs (loop4): 1 orphan inode deleted
[   79.648397][ T4821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.648707][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   79.662490][ T4821] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.674251][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.389'.
[   79.692536][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.389'.
[   79.715307][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.389'.
[   79.744191][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.799138][ T4832] Falling back ldisc for ptm0.
[   79.838682][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.843271][ T4836] loop0: detected capacity change from 0 to 512
[   79.878377][ T4836] EXT4-fs (loop0): too many log groups per flexible block group
[   79.886214][ T4836] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   79.888073][ T4838] Falling back ldisc for ptm0.
[   79.903298][ T4836] EXT4-fs (loop0): mount failed
[   80.127038][ T4874] loop4: detected capacity change from 0 to 512
[   80.147610][ T4874] EXT4-fs (loop4): too many log groups per flexible block group
[   80.155538][ T4874] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   80.162752][ T4874] EXT4-fs (loop4): mount failed
[   80.264819][ T4885] loop4: detected capacity change from 0 to 512
[   80.288040][ T4885] EXT4-fs (loop4): 1 orphan inode deleted
[   80.294361][ T4885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.307731][   T56] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[   80.307840][ T4885] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.341025][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.414626][ T4894] FAULT_INJECTION: forcing a failure.
[   80.414626][ T4894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.429302][ T4894] CPU: 1 UID: 0 PID: 4894 Comm: syz.3.404 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   80.429335][ T4894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   80.429349][ T4894] Call Trace:
[   80.429356][ T4894]  <TASK>
[   80.429366][ T4894]  __dump_stack+0x1d/0x30
[   80.429457][ T4894]  dump_stack_lvl+0xe8/0x140
[   80.429477][ T4894]  dump_stack+0x15/0x1b
[   80.429626][ T4894]  should_fail_ex+0x265/0x280
[   80.429654][ T4894]  should_fail+0xb/0x20
[   80.429688][ T4894]  should_fail_usercopy+0x1a/0x20
[   80.429717][ T4894]  strncpy_from_user+0x25/0x230
[   80.429775][ T4894]  path_setxattrat+0xeb/0x310
[   80.429897][ T4894]  __x64_sys_fsetxattr+0x6b/0x80
[   80.429973][ T4894]  x64_sys_call+0x2f7c/0x2fb0
[   80.429995][ T4894]  do_syscall_64+0xd2/0x200
[   80.430175][ T4894]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.430252][ T4894]  ? clear_bhb_loop+0x40/0x90
[   80.430322][ T4894]  ? clear_bhb_loop+0x40/0x90
[   80.430415][ T4894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.430505][ T4894] RIP: 0033:0x7f7d0426e929
[   80.430620][ T4894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.430642][ T4894] RSP: 002b:00007f7d028d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   80.430674][ T4894] RAX: ffffffffffffffda RBX: 00007f7d04495fa0 RCX: 00007f7d0426e929
[   80.430691][ T4894] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000000000000004
[   80.430707][ T4894] RBP: 00007f7d028d7090 R08: 0000000000000000 R09: 0000000000000000
[   80.430723][ T4894] R10: 000000000000001e R11: 0000000000000246 R12: 0000000000000001
[   80.430800][ T4894] R13: 0000000000000000 R14: 00007f7d04495fa0 R15: 00007fff4feea878
[   80.430822][ T4894]  </TASK>
[   80.672132][ T4901] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[   80.682265][ T4901] netem: incorrect ge model size
[   80.720396][ T4904] loop3: detected capacity change from 0 to 2048
[   80.728419][ T4904] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   80.810006][ T4913] loop3: detected capacity change from 0 to 512
[   80.813078][ T4915] loop2: detected capacity change from 0 to 512
[   80.841659][ T4913] EXT4-fs (loop3): 1 orphan inode deleted
[   80.848247][ T4913] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.848821][ T4915] EXT4-fs (loop2): 1 orphan inode deleted
[   80.871459][ T4913] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.879477][  T170] __quota_error: 305 callbacks suppressed
[   80.879499][  T170] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   80.893989][ T4915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.900521][  T170] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   80.913870][ T4915] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.946381][ T4913] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.411: iget: bad i_size value: 360287970189639690
[   80.973621][   T29] audit: type=1400 audit(1749051114.830:1456): avc:  denied  { create } for  pid=4912 comm="syz.3.411" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   80.999773][ T4923] loop4: detected capacity change from 0 to 512
[   81.008996][   T29] audit: type=1400 audit(1749051114.870:1457): avc:  denied  { read write open } for  pid=4914 comm="syz.2.412" path="/72/file1/bus" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.010659][ T4913] netlink: 'syz.3.411': attribute type 4 has an invalid length.
[   81.046604][ T2203] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   81.058560][ T2203] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1
[   81.082653][ T4913] EXT4-fs error (device loop3): ext4_lookup:1787: inode #15: comm syz.3.411: iget: bad i_size value: 360287970189639690
[   81.099124][ T4923] EXT4-fs (loop4): 1 orphan inode deleted
[   81.105454][ T4923] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.107468][   T37] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   81.129931][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   81.137205][ T4923] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.155459][ T4913] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   81.179193][ T3319] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.190922][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.211463][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.287109][ T4938] loop2: detected capacity change from 0 to 512
[   81.297685][ T4937] bridge: RTM_NEWNEIGH with invalid ether address
[   81.298168][   T29] audit: type=1326 audit(1749051115.190:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   81.329034][   T29] audit: type=1326 audit(1749051115.190:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   81.375307][   T29] audit: type=1326 audit(1749051115.240:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   81.400150][   T29] audit: type=1326 audit(1749051115.240:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   81.402688][ T4938] EXT4-fs (loop2): 1 orphan inode deleted
[   81.424422][   T29] audit: type=1326 audit(1749051115.240:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4933 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d0426e929 code=0x7ffc0000
[   81.456470][ T4938] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.469538][ T4938] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.469599][  T170] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   81.509246][ T4938] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.419: iget: bad i_size value: 360287970189639690
[   81.529645][ T4938] netlink: 'syz.2.419': attribute type 4 has an invalid length.
[   81.545939][  T170] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1
[   81.559843][ T4938] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.419: iget: bad i_size value: 360287970189639690
[   81.581166][ T4938] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   81.634494][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.694587][ T4957] loop4: detected capacity change from 0 to 512
[   81.701326][ T4953] loop2: detected capacity change from 0 to 512
[   81.719199][ T4953] EXT4-fs (loop2): 1 orphan inode deleted
[   81.726490][ T4953] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.729058][ T4957] EXT4-fs (loop4): 1 orphan inode deleted
[   81.740846][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   81.749950][ T4957] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.760701][ T4953] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.773490][ T4957] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.784625][   T12] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   81.803504][ T4957] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.426: iget: bad i_size value: 360287970189639690
[   81.822656][ T4957] netlink: 'syz.4.426': attribute type 4 has an invalid length.
[   81.830800][ T4957] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.426: iget: bad i_size value: 360287970189639690
[   81.844199][   T12] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[   81.857475][ T4957] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   81.857695][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.891087][ T3329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.896957][ T4965] loop2: detected capacity change from 0 to 512
[   81.916869][ T4965] EXT4-fs (loop2): too many log groups per flexible block group
[   81.926078][ T4965] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   81.934600][ T4965] EXT4-fs (loop2): mount failed
[   81.997450][ T4975] bridge: RTM_NEWNEIGH with invalid ether address
[   82.019834][ T4978] bridge: RTM_NEWNEIGH with invalid ether address
[   82.039013][ T4981] loop3: detected capacity change from 0 to 128
[   82.047908][ T4981] vfat: Unknown parameter 'kfree'
[   82.054849][ T4981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.434'.
[   82.196778][ T4801] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.212754][ T4801] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.236016][ T5000] loop4: detected capacity change from 0 to 512
[   82.242759][ T4801] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.267807][ T4801] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.295112][ T5000] EXT4-fs (loop4): too many log groups per flexible block group
[   82.303408][ T5000] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   82.323494][ T5003] loop0: detected capacity change from 0 to 2048
[   82.327483][ T5000] EXT4-fs (loop4): mount failed
[   82.399095][ T5012] Falling back ldisc for ptm0.
[   82.479518][ T5020] loop4: detected capacity change from 0 to 512
[   82.512542][ T5020] EXT4-fs (loop4): too many log groups per flexible block group
[   82.520845][ T5020] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   82.541274][ T5020] EXT4-fs (loop4): mount failed
[   82.655069][ T5037] loop1: detected capacity change from 0 to 512
[   82.678389][ T5037] EXT4-fs (loop1): too many log groups per flexible block group
[   82.688810][ T5037] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   82.696372][ T5037] EXT4-fs (loop1): mount failed
[   82.732779][ T5038] loop4: detected capacity change from 0 to 2048
[   82.742284][ T5038] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   82.744093][ T5043] Falling back ldisc for ptm0.
[   82.839452][ T5051] loop2: detected capacity change from 0 to 512
[   82.877839][ T5051] EXT4-fs (loop2): too many log groups per flexible block group
[   82.886020][ T5051] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   82.894553][ T5056] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.904155][ T5051] EXT4-fs (loop2): mount failed
[   82.925977][ T5059] bridge: RTM_NEWNEIGH with invalid ether address
[   82.948082][ T5056] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.962374][ T5061] loop2: detected capacity change from 0 to 512
[   82.987700][ T5064] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.469'.
[   83.008428][ T5061] EXT4-fs (loop2): too many log groups per flexible block group
[   83.016345][ T5061] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   83.023331][ T5061] EXT4-fs (loop2): mount failed
[   83.041772][ T5070] loop1: detected capacity change from 0 to 512
[   83.058361][ T5056] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.073770][ T3008] ==================================================================
[   83.081939][ T3008] BUG: KCSAN: data-race in d_delete / lookup_fast
[   83.085173][ T5073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.469'.
[   83.088501][ T3008] 
[   83.088515][ T3008] read-write to 0xffff888106b303c0 of 4 bytes by task 4048 on cpu 0:
[   83.088536][ T3008]  d_delete+0x15a/0x180
[   83.097349][ T5073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.469'.
[   83.099638][ T3008]  d_delete_notify+0x32/0x100
[   83.107960][ T5073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.469'.
[   83.112008][ T3008]  vfs_unlink+0x30b/0x420
[   83.112038][ T3008]  do_unlinkat+0x28e/0x4c0
[   83.112063][ T3008]  __x64_sys_unlink+0x2e/0x40
[   83.112091][ T3008]  x64_sys_call+0x22a6/0x2fb0
[   83.112115][ T3008]  do_syscall_64+0xd2/0x200
[   83.112145][ T3008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.112164][ T3008] 
[   83.112170][ T3008] read to 0xffff888106b303c0 of 4 bytes by task 3008 on cpu 1:
[   83.128743][ T5070] EXT4-fs (loop1): too many log groups per flexible block group
[   83.134765][ T3008]  lookup_fast+0xf0/0x320
[   83.134806][ T3008]  walk_component+0x3f/0x220
[   83.139319][ T5070] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   83.143792][ T3008]  path_lookupat+0xfe/0x2a0
[   83.149373][ T5070] EXT4-fs (loop1): mount failed
[   83.153182][ T3008]  filename_lookup+0x147/0x340
[   83.211890][ T3008]  do_readlinkat+0x7d/0x320
[   83.216421][ T3008]  __x64_sys_readlink+0x47/0x60
[   83.221294][ T3008]  x64_sys_call+0x2cf3/0x2fb0
[   83.226001][ T3008]  do_syscall_64+0xd2/0x200
[   83.230697][ T3008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.236600][ T3008] 
[   83.238928][ T3008] value changed: 0x00300108 -> 0x00004008
[   83.244968][ T3008] 
[   83.247324][ T3008] Reported by Kernel Concurrency Sanitizer on:
[   83.253756][ T3008] CPU: 1 UID: 0 PID: 3008 Comm: udevd Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(voluntary) 
[   83.266814][ T3008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.276886][ T3008] ==================================================================
[   83.292322][ T5077] Falling back ldisc for ptm0.
[   83.327385][ T5056] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.402963][ T5056] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.415005][ T5056] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.426994][ T5056] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.439588][ T5056] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0