last executing test programs:

2m33.602100868s ago: executing program 1 (id=412):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB="04000000000000007da28b2dd0526a", @ANYRES32=0x0, @ANYRES32], 0x50)

2m33.496448679s ago: executing program 1 (id=416):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000044700000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
ioperm(0x1, 0x8, 0x8000000000000001)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

2m33.478702509s ago: executing program 1 (id=417):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x0)
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x4, 0x0, 0x3}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x38d682})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x121301)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000000), 0x3, 0x5eb, &(0x7f0000000c00)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x64)
getdents64(r4, &(0x7f0000000f80)=""/4096, 0x1000)

2m33.21042515s ago: executing program 1 (id=421):
r0 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1c2}, &(0x7f0000000040), 0x0)
socket(0x80000000000000a, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r1 = syz_open_dev$usbfs(&(0x7f0000000c40), 0x310decfa, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.time\x00', 0x275a, 0x0)
write$binfmt_aout(r2, &(0x7f0000000100)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000380)=@raw=[@generic={0xa, 0x9, 0x0, 0x8, 0x3}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0xded}, @call={0x85, 0x0, 0x0, 0x2003d}, @ldst={0x2, 0x3, 0x4, 0x5, 0x6, 0xffffffffffffffe0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @call={0x85, 0x0, 0x0, 0x96}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
r4 = getpid()
setreuid(0xee00, 0x0)
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r4], 0x1}, 0x58)
ioctl$USBDEVFS_CONTROL(r1, 0xc0105502, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_io_uring_submit(0x0, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_extract_tcp_res$synack(0x0, 0x1, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r8}, 0x10)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)
io_uring_enter(r0, 0x2d7e, 0x0, 0x0, 0x0, 0x0)

2m32.935065712s ago: executing program 1 (id=427):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB="04000000000000007da28b2dd0526a", @ANYRES32=0x0, @ANYRES32], 0x50)

2m31.347795909s ago: executing program 1 (id=444):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}]}, 0x88}}, 0x0)

2m31.34757975s ago: executing program 32 (id=444):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = socket(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}]}, 0x88}}, 0x0)

4.16062555s ago: executing program 5 (id=2532):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, 0x0, 0x8)
bind$inet6(r0, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0xb8, 0x7ffc0002}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
connect$netlink(r3, &(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$nl_route(r3, &(0x7f0000000300)={&(0x7f0000000080), 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000020000f0000f901000000000002"], 0x1c}}, 0x0)

4.13732909s ago: executing program 5 (id=2533):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)

4.05624814s ago: executing program 5 (id=2539):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0x9, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000012c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @rand_addr, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x800)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
sendmsg$inet6(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0xfb}, {&(0x7f0000000400)="00d7dcfa632a50c7e2ca9e926aeeec4fd3a058afd83637984e4fc7799bb4d0a6d9952b4862fc0945febba09dd36d7d003a3f2bee15f73ecad8dcced49ebac0ee82b73e666fca9ee06e8fc276d930ca363e81ded9ab4bcfcfc746dde920ce0abd805d7a1139f2a0c3f865aecd944ba7dcc411355fe0fe30c6cc64fd3cc4bbefee8c1796025bb0a941efb1f7992b1f24f68f515efddd644231ab042280db0adc93716380eaf6595835be9246bd9db97a73a284f3bc2dcfeb22599809286d6a441d01abf014aba8eefcf9340f040a0bd5b63b3786b599938d86334cb1aec10768baebac305c82b7be492d10bc022fce5c4c0cff2dd7abe171558eb482156e5472f8eb8c3c4bb1750f00c0ffb2abe4bb3468f3e07bfc15f5ebbd7affadadc5047d2c82b1d075abb7c70d7a305dff7966a8f115699f773442b9b7d57173872ad693d7090b7d946c03ef5f2664400ec4f99b646a21af47f083d9b22fbfaaca86ec515a3298e94f69392bb3bd0af1ef49c7065e8ced08ade3bed0f72e9796f8365623fb405eb5a7b7ca84eb9acb24c58a1cb13c21474eb50c51f664156f53fb44a99ec636d673516c5de2a8bcf8827d6fee81b9b0c414f0eb2db33f5c8ea413b27a6db22b5090e55b9969178a5bb37bc047f59882521d0a730189c48cedd7a6571878ab68ef9fa96bc8a32f50f0c58b1e73828b9ff4194b481b72ef0cc8a0c0bc680f5ef6c81af6da535032e813a47f57f7c3eaf713c07507fa1645bc06989ceb43c0c48dcf92fb37057d4e0adece1e8b4d5b71ebb4b2b3732ecae1dae529e18056b2c21995ec2051a1453fc435c17a7a864c6761453d71d0368cc163dde0dd2423079c3b461b1271404bbb7cce5214b9733c24fb8b48c185a1d2790284848da41a6ddff3b7356ba9ed03ceb3cf346a65b4565e3a6b4dca9ff6955cc8689fc2804b0b34f45fadbd7fab3265f4d8e52c2b0fe0dc4714af1f9d3b2ca9ef9ae1a24c79ac01162ad54ee28bf1aba50a5c395f5a5632c361b070", 0x2d4}], 0x2}, 0x40001080)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000100)=@gcm_128={{0x303}, "fd9192068590ef44", "4ded6853efa14266912ec2cb350be183", "15861006", "84d6d4ab8749281f"}, 0x28)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)

2.458520638s ago: executing program 2 (id=2581):
capset(&(0x7f0000000080)={0x20071026}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2220014, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2bc, &(0x7f0000000340)="$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")
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000180)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000200)={{0x0, 0x1, 0x20000000, 0x0, 0x3}})
r1 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/cgroup\x00')
setns(r1, 0x0)
r2 = openat$zero(0xffffffffffffff9c, 0x0, 0x680100, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x90000000})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x101)
lchown(0x0, 0x0, 0xee01)
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$sock_SIOCINQ(r4, 0x541b, 0x0)
r5 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000040)="d0", 0x1}], 0x1}, 0x4004890)
r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000407d1e9c31000000000001090224000100001800090400000103000000092100000001220700090581030000000000"], 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_usb_control_io$hid(r6, &(0x7f00000008c0)={0x24, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00220d000000a0042b"], 0x0}, 0x0)
ioctl$sock_SIOCADDDLCI(r3, 0x8980, &(0x7f0000000100)={'geneve1\x00', 0xd})

2.12372589s ago: executing program 0 (id=2589):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000080)=""/36, 0x24}, {&(0x7f0000000180)=""/79, 0x4f}], 0x2, 0x0, 0x0)

2.11024101s ago: executing program 0 (id=2590):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000004800000048000000070000000c00000000000012010000000300000003000093000000000e000000000001000200000007000000cb002871b6f73f98b3000008000000090000000200000000f2ffff"], &(0x7f00000003c0)=""/118, 0x67, 0x76, 0x0, 0x5, 0x0, @void, @value}, 0x28)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000700)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x440, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="0d00000000000000b1a2a436ffffff7f10010000", @ANYRES32=0x1, @ANYBLOB="f100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400000002000000ab03000200dc0043762c741669000000ee6febd6db74fd0d0000000000000000000016a6fa04ec67346817db342ced399274104ee6c2c6c000a9cb7a86d59ecc7d46aeb8a8ca46ce9e1be913ad4a38fa063bea06feef6d3856f9d42c13a8598fcf3f51ea73b4430da979d89d3300"/128], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x9, 0x2, &(0x7f0000000d80)=ANY=[@ANYBLOB="182000006fdb991b6774cf6249e3684d9af6d9d75601983300684b316dbd5221423a5b2dc1d05f28f106b5a33b8a896817e46c562448fd2ad556129400000000000000", @ANYBLOB="0000000000040000"], &(0x7f00000002c0)='GPL\x00', 0x4d, 0x95, &(0x7f0000000640)=""/149, 0x41000, 0x20, '\x00', 0x0, @cgroup_sock=0x21, r1, 0x8, &(0x7f0000000500)={0x2, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000800)=[r2, r3], &(0x7f0000000840)=[{0x0, 0x2, 0x4, 0x7}, {0x3, 0x2}, {0x4, 0x3, 0xa, 0xa}], 0x10, 0x2, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6c}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x2}}, {@acl}, {@quota}]}, 0xfb, 0x42f, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000079, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000004040000000638a2bbd92b859bf12836b3", @ANYRES32, @ANYRES8=r1, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket(0x10, 0x3, 0x9)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00'}, 0x10)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000daf5be94bd4925210000100000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r9], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r10}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
connect$netlink(r6, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
syz_genetlink_get_family_id$smc(&(0x7f0000000540), r6)

1.916410601s ago: executing program 2 (id=2591):
inotify_init1(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000000)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r6, &(0x7f0000000200)=ANY=[], 0x6)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000002c0)='./file0\x00', 0x4, &(0x7f0000000ac0)=ANY=[@ANYBLOB='cruft,block=0x0000000000000400\x00session=0x0000000000000006,check=relaxed,utf8,cruftAuid=', @ANYRES64, @ANYBLOB="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", @ANYRES16, @ANYRES32, @ANYRESDEC], 0x0, 0x648, &(0x7f00000019c0)="$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")
creat(&(0x7f00000005c0)='./file0\x00', 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000400)={'pim6reg1\x00', 0x4000})
mq_timedreceive(r1, &(0x7f0000000300)=""/106, 0x6a, 0x7, &(0x7f0000000540)={0x0, 0x989680})
close(r7)
ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$pppl2tp(0x18, 0x1, 0x1)

1.554054152s ago: executing program 4 (id=2592):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003020000850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

1.531598002s ago: executing program 4 (id=2593):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
modify_ldt$read_default(0x2, &(0x7f00000006c0)=""/163, 0xa3)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000f14010000000000000000000d0045"], 0x20}, 0x1, 0x0, 0x0, 0x91}, 0x0)
write$UHID_INPUT(r4, 0x0, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0), r0)
syz_open_dev$vcsn(&(0x7f0000000000), 0x3, 0x48401)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000002c0)={0x0, 0xfb, 0xc6, 0x6, 0x81, "3d795764c6944652f971b5a4723a36f6", "325590316466d2650ccd1d78771636a34042687c1461e633623ace87d61c5ea490a108eb546a6f9983ebe6e3c51f26851c1b435d9df47495bcb14a945c749da9c85920d0b202f03a8d84e4061eaca7def91d14f6b8398be6b094907fe3a257764c1a5102632870456efd396b1aad30ae081c7e5d995a3eb6a730c01ee1f20b942c2c4a0dec3a9e5b20dba99104f9cb501293aae2a13344a6bd46278a8e42b6e4a276dd36fc5fd064427b1f2317b146a805"}, 0xc6, 0x0)
r7 = syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r7, 0x1, 0x0, 0x1, 0x0, 0x1000000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000900)={r2, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x76, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000640), &(0x7f0000000780), 0x8, 0x98, 0x8, 0x8, &(0x7f00000007c0)}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000a40)={'gre0\x00', &(0x7f0000000940)={'syztnl1\x00', r10, 0x20, 0x7, 0x1, 0x7, {{0xc, 0x4, 0x0, 0x0, 0x30, 0x65, 0x0, 0x1, 0x4, 0x0, @rand_addr=0x64010100, @broadcast, {[@timestamp={0x44, 0x10, 0x6e, 0x0, 0x3, [0x1, 0xb3af, 0x8]}, @ssrr={0x89, 0xb, 0x2d, [@multicast2, @rand_addr=0x64010100]}]}}}}})
r11 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r12=>0x0})
r13 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r12, @ANYBLOB="08001c00", @ANYRES32=r13], 0x24}}, 0x0)

1.495242633s ago: executing program 4 (id=2594):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00'}, 0x10)
write$tcp_congestion(0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="0600"/20, @ANYRES32=r0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000fd5c8412dd56672b00000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES16=r0, @ANYRESHEX=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e26, 0x0, @dev={0xfe, 0x80, '\x00', 0x29}, 0xfffffffc}, 0x1c)
listen(r4, 0x400000001ffffffd)
r5 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e23, 0x2007, @loopback}, 0x1c)
close(r4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32], &(0x7f0000000240)='GPL\x00', 0x80000000, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000200)=@v3, 0x18, 0x0)
r8 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r8, 0x40187013, &(0x7f0000000140)={0x0, 0x2})
r9 = socket$inet(0x2, 0x2, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
recvmmsg(r9, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
readv(r9, &(0x7f0000000a00)=[{&(0x7f0000000780)=""/205, 0xcd}], 0x1)

1.307965514s ago: executing program 3 (id=2595):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x1000000010, 0x80002, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bind$packet(r0, &(0x7f0000000440)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
sendto$inet6(r0, &(0x7f0000000280)="4103092cc1f7140001020200c52cf7c25975e005b02f0800eb2b2ff0dac8897c6b118777faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

1.307246563s ago: executing program 3 (id=2596):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fcffffff00000000008000"/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r1}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00!8', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000800)=ANY=[@ANYRES32, @ANYRES32=<r6=>r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000001d0007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0x0, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES64=r6, @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000940)=@bpf_lsm={0x1d, 0x1b, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000009000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000002990900020000000093f5ff0900000018560000060000000000000000000000184b0000faffffff0000000000000000950000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000e0d21a0193aa138885100000fcffffffbf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000580)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000700)={0x5, 0x7, 0xe4ab, 0xcf}, 0x10, r7, 0x0, 0x2, &(0x7f0000000740)=[r2], &(0x7f0000000780)=[{0x2, 0x1, 0x8, 0x8}, {0x5, 0x5, 0x9, 0x1}], 0x10, 0x7, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b701000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r9}, 0x18)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="4800000000010104000016908ba12d1e50c6efb83d807ef41c6700000000000002000000240001801400018008000100e000000108000200e00000010c0002800500010000000000"], 0x48}}, 0x0)
r13 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r13, 0x1, 0x0, 0x0, {0x2a}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
lsm_get_self_attr(0x65, 0x0, &(0x7f0000000080), 0x0)

1.229257434s ago: executing program 0 (id=2597):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
modify_ldt$read_default(0x2, &(0x7f00000006c0)=""/163, 0xa3)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000f14010000000000000000000d0045"], 0x20}, 0x1, 0x0, 0x0, 0x91}, 0x0)
write$UHID_INPUT(r4, 0x0, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0), r0)
syz_open_dev$vcsn(&(0x7f0000000000), 0x3, 0x48401)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000002c0)={0x0, 0xfb, 0xc6, 0x6, 0x81, "3d795764c6944652f971b5a4723a36f6", "325590316466d2650ccd1d78771636a34042687c1461e633623ace87d61c5ea490a108eb546a6f9983ebe6e3c51f26851c1b435d9df47495bcb14a945c749da9c85920d0b202f03a8d84e4061eaca7def91d14f6b8398be6b094907fe3a257764c1a5102632870456efd396b1aad30ae081c7e5d995a3eb6a730c01ee1f20b942c2c4a0dec3a9e5b20dba99104f9cb501293aae2a13344a6bd46278a8e42b6e4a276dd36fc5fd064427b1f2317b146a805"}, 0xc6, 0x0)
r7 = syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r7, 0x1, 0x0, 0x1, 0x0, 0x1000000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000900)={r2, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x76, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000640), &(0x7f0000000780), 0x8, 0x98, 0x8, 0x8, &(0x7f00000007c0)}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000a40)={'gre0\x00', &(0x7f0000000940)={'syztnl1\x00', r10, 0x20, 0x7, 0x1, 0x7, {{0xc, 0x4, 0x0, 0x0, 0x30, 0x65, 0x0, 0x1, 0x4, 0x0, @rand_addr=0x64010100, @broadcast, {[@timestamp={0x44, 0x10, 0x6e, 0x0, 0x3, [0x1, 0xb3af, 0x8]}, @ssrr={0x89, 0xb, 0x2d, [@multicast2, @rand_addr=0x64010100]}]}}}}})
r11 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r12=>0x0})
r13 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES16=r11, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r12, @ANYBLOB="08001c00", @ANYRES32=r13], 0x24}}, 0x0)

1.173558675s ago: executing program 0 (id=2598):
r0 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r0, &(0x7f0000001000)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xac14140c}}, 0x80, &(0x7f0000001200)=[{0x0}], 0x1, 0x0, 0x0, 0x900}, 0x0)

1.063885865s ago: executing program 2 (id=2599):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xa, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc05c5340, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r2 = socket(0x21, 0x2, 0x8)
r3 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0100000004000000008002000100000000000000", @ANYRES32, @ANYRESDEC], 0x50)
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYRES16=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x5, &(0x7f0000000540)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10)
sendmsg$nl_generic(r6, 0x0, 0x0)
statx(0xffffffffffffffff, 0x0, 0x2000, 0x800, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x1, 0x0, 0x0, 0x1, 0x0)
msgsnd(0x0, &(0x7f0000000000)=ANY=[@ANYRESHEX], 0x2000, 0x0)

1.058690955s ago: executing program 0 (id=2609):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0)
r2 = getpid()
syz_pidfd_open(r2, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
syz_clone3(&(0x7f0000000600)={0x1000, &(0x7f00000001c0), &(0x7f0000000280), &(0x7f00000002c0), {0x2}, &(0x7f0000000f80)=""/4096, 0x1000, &(0x7f0000000840)=""/156, &(0x7f0000000300)=[r2, r3], 0x2, {r1}}, 0x58)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x24, 0x7, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_RULE_USERDATA={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0xc804)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r4 = socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = io_uring_setup(0x2624, &(0x7f00000004c0)={0x0, 0xfffffffc, 0xc0, 0x0, 0x808000})
r7 = epoll_create1(0x0)
r8 = dup3(r7, r6, 0x0)
epoll_pwait2(r8, &(0x7f0000000080)=[{}], 0x1, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000001e80)={[{@inlinecrypt}]}, 0x1, 0x549, &(0x7f0000001800)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$unix(r4, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.058322465s ago: executing program 3 (id=2600):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000080)=""/36, 0x24}, {&(0x7f0000000180)=""/79, 0x4f}], 0x2, 0x0, 0x0)

1.028428085s ago: executing program 3 (id=2601):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = epoll_create1(0x80000)
r2 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000300)={0x200f})
epoll_pwait2(r1, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xffffffffffffffef)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='mm_page_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
r3 = getpid()
ioprio_get$pid(0x2, r3)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x28900, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000001f80)=""/226, 0x26, 0x81, 0x2, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
write$cgroup_subtree(r5, &(0x7f0000000100)=ANY=[], 0x36)

1.021163875s ago: executing program 5 (id=2602):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b6fffec850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3e3, &(0x7f00000004c0)="$eJzs3M1uG0UcAPD/bp20TUvtShz4uFiARCRE0qQtUAkkIi4c2hM9cMSK0xLVaVBjJFpFfAjEDSQQDwAH4BE4woF3gDNwgEoRyoGUm9Hau46J7bRpHYyS308aeWZn65nd6ax3J7MTwKFVjYiXI+JIRJyJiHK+Pc1DvN8J2X5bm+uLf2+uLybRar32ZxJJvq34riT/PJF/wXQakX6UxOMDyl27eetardFYupGnZ5srb82u3bz17PJK7erS1aXr88+dPXf+/AsX5p8f2bFurCSfPPXNxd8++7j++U9/fF/J6nsyz+s9jlGpRrV7Tna6MOrCxuxYTzwpjbEiAADsKs3v/Uvt+/9yHIntm7dyfPrjWCsHAAAAjESrVXwCAAAAB1fi2R8AAAAOuGIewNbm+mIRxjgdgf/YxkJEVDrtfycPnZxS953eiR3v945SNSJePXZpPguxT+9hAwAAABxmPyx0Fv7rH/9L45Ge/Y5HxFSxtt8IVXek+8d/0tsjLpIeGwsRL0bEnb7xv7TYpXIkTz3UHiqcSK4sN5bORMSpiJiOiaNZem6XMt594tq3w/J6x/++/PX1uaz87HN7j/R26ei//0291qw9yDGzbeODiMdKg9o/6Y759q6TeT/eWN56aVhe1v5Zexehv/3ZT62vIp4e2P+3Vy5Ndl+fdbZ9PZgtrgr9fjn59YfDyu/t/1nIyi/+FsD+y/r/1O7t314nt7te79rey/jur0s/D8u7e/sPvv5PJpfbFZzMt71TazZvzEVMJhf7t/vf1FWcj+J8Ze0//eTg3//i/i/Jf/tP9awPvRevvHf68rA8/X+8svav76n/7z3y5tSj08PKv7f+f65dmeJL3P/d3b020LjrCQAAAAAAAMBopO25fUk6042n6cxMZ57vwzGVNlbXms9cWX37er0zB7ASE2kx06vcMx90rvMaeTc9vyN9NiJOR8QX5ePt9MziaqM+7oMHAACAQ+LEkOf/zO/387IHAAAA8P9UGXcFAAAAgH3n+R8AAAAOtAdZ119EROSgRsZ9ZQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA43P4JAAD//+0cwvs=")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f00000013c0)=ANY=[], 0x700, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r4)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x20400e, &(0x7f0000000440)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nojournal_checksum}, {@jqfmt_vfsv0}, {@nolazytime}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})
write$cgroup_int(r6, &(0x7f0000000100)=0x4, 0x12)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0xfffffffffffffdfd, 0xfffffffe})
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r7=>0x0})
r8 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r7, @ANYBLOB="08001c00", @ANYRES32=r8], 0x24}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0xfc, r5, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_KEY={0xe8, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "dcab01f6ffc234443f02579b71d673399ef9be919acf565d17d0361bf6341800"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "d1199c200406687ac81ea6f2c5b108435fd5a0ece9058f158e074fc98908aa81"}, @NL802154_KEY_ATTR_ID={0x20, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xfffffffffffffffd}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "9fd77f68223234041db87c5315dd071d"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x40}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "fe951fc3d2177b84c4e8236516694245"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "777c2e970fba1dc38d8eded67f7b5913"}, @NL802154_KEY_ATTR_ID={0x1c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x29f294e2}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "7bcd9ff81fca47af7c38555e4abbc414"}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x24048020}, 0x20008004)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x14}}, 0x4000054)

958.228486ms ago: executing program 2 (id=2603):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003020000850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

918.404646ms ago: executing program 2 (id=2604):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
modify_ldt$read_default(0x2, &(0x7f00000006c0)=""/163, 0xa3)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000f14010000000000000000000d0045"], 0x20}, 0x1, 0x0, 0x0, 0x91}, 0x0)
write$UHID_INPUT(r4, 0x0, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0), r0)
syz_open_dev$vcsn(&(0x7f0000000000), 0x3, 0x48401)
lsetxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000002c0)={0x0, 0xfb, 0xc6, 0x6, 0x81, "3d795764c6944652f971b5a4723a36f6", "325590316466d2650ccd1d78771636a34042687c1461e633623ace87d61c5ea490a108eb546a6f9983ebe6e3c51f26851c1b435d9df47495bcb14a945c749da9c85920d0b202f03a8d84e4061eaca7def91d14f6b8398be6b094907fe3a257764c1a5102632870456efd396b1aad30ae081c7e5d995a3eb6a730c01ee1f20b942c2c4a0dec3a9e5b20dba99104f9cb501293aae2a13344a6bd46278a8e42b6e4a276dd36fc5fd064427b1f2317b146a805"}, 0xc6, 0x0)
r7 = syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, &(0x7f0000000440)=<r8=>0x0, &(0x7f0000000080)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000140)=@IORING_OP_RENAMEAT={0x23, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r7, 0x1, 0x0, 0x1, 0x0, 0x1000000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000900)={r2, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x4, 0x9, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x76, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}], 0x30, 0x10, &(0x7f0000000640), &(0x7f0000000780), 0x8, 0x98, 0x8, 0x8, &(0x7f00000007c0)}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000a40)={'gre0\x00', &(0x7f0000000940)={'syztnl1\x00', r10, 0x20, 0x7, 0x1, 0x7, {{0xc, 0x4, 0x0, 0x0, 0x30, 0x65, 0x0, 0x1, 0x4, 0x0, @rand_addr=0x64010100, @broadcast, {[@timestamp={0x44, 0x10, 0x6e, 0x0, 0x3, [0x1, 0xb3af, 0x8]}, @ssrr={0x89, 0xb, 0x2d, [@multicast2, @rand_addr=0x64010100]}]}}}}})
r11 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r12=>0x0})
r13 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r12, @ANYBLOB="08001c00", @ANYRES32=r13], 0x24}}, 0x0)

860.594696ms ago: executing program 3 (id=2605):
r0 = io_uring_setup(0x75c6, 0x0)
r1 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a\x99]V\xe3\xb6!\xae\xf79k\x90\x88\v8I!\xfdQ\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xd9\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xd2#\x9e\x97\xf4*\xc9\xdd[\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x95\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x02\xb9(\xf6\x1c\x83\xb1J\xec', 0x42, 0x0, 0x0)
mq_timedreceive(r1, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)
r2 = getgid()
fsetxattr$system_posix_acl(r1, &(0x7f0000000300)='system.posix_acl_default\x00', &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000010002000000000002000200", @ANYRES32=0x0, @ANYBLOB="02000600", @ANYRES32, @ANYBLOB="02000000", @ANYRES32, @ANYBLOB="65f0", @ANYRES32, @ANYBLOB="040007000000000008000300", @ANYRES32, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r2, @ANYBLOB="10000200000000002000000000000000"], 0x54, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x23, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='/dev/snd/timer\x00')

814.392486ms ago: executing program 5 (id=2606):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x1000000010, 0x80002, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
bind$packet(r0, &(0x7f0000000440)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
sendto$inet6(r0, &(0x7f0000000280)="4103092cc1f7140001020200c52cf7c25975e005b02f0800eb2b2ff0dac8897c6b118777faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

803.466237ms ago: executing program 2 (id=2607):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000400), 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x81, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r5, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f77fff00"})
r6 = syz_open_pts(r5, 0x0)
r7 = dup3(r6, r5, 0x0)
read$watch_queue(r7, 0x0, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000180))
write$vga_arbiter(r4, &(0x7f0000000040)=@other={'trylock', ' ', 'io'}, 0xb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0xa, 0x0, 0x2, 0x2}, 0x10}}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @counter={{0xc}, @void}}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x4}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd4}}, 0x8000)

793.283487ms ago: executing program 0 (id=2608):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1a, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{}, &(0x7f00000007c0), &(0x7f0000000880)}, 0x20)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r4}, 0x18)
openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
syz_clone(0x60867080, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x0, 0x1, 0xffffffff}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)
r8 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
write$binfmt_aout(r8, &(0x7f0000001800)=ANY=[@ANYBLOB="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"], 0x5af)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="18008d92b71500c1000000000000000018110000c451cfbaf9444199421e90f55de011daffdd354f6ab6054c8b3a0100e2d41a84b432f9b67f2f147b121026", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
getsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000600), &(0x7f00000008c0)=0x4)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVex:De', 0x0)
recvmsg(r2, &(0x7f0000000700)={&(0x7f0000000040)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/8, 0xffffffffffffffc2}, {&(0x7f0000000180)=""/136, 0x88}, {&(0x7f0000000240)=""/201, 0xc9}, {&(0x7f0000000340)=""/113, 0x71}, {&(0x7f0000000640)=""/149, 0x8c}, {&(0x7f0000000480)=""/251, 0xfb}, {&(0x7f0000000740)=""/122, 0x7a}], 0x7, &(0x7f0000000100)=""/2, 0x2}, 0x10060)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000002c0)='sched_switch\x00', r10}, 0x18)
flock(0xffffffffffffffff, 0x2)
r11 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r11, 0x545c, 0x0)
ioctl$TIOCVHANGUP(r11, 0x5437, 0x0)

754.519197ms ago: executing program 5 (id=2610):
inotify_init1(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000000)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r6, &(0x7f0000000200)=ANY=[], 0x6)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000002c0)='./file0\x00', 0x4, &(0x7f0000000ac0)=ANY=[@ANYBLOB='cruft,block=0x0000000000000400\x00session=0x0000000000000006,check=relaxed,utf8,cruftAuid=', @ANYRES64, @ANYBLOB="2c8ef6fff25f71854bb02441c2edff2c66736dbdda08da0968bf8783e49a23113d307830303030303000bd2551db78fc65240062c543fd92499a55c4676e4ab57351fab1f21354c2000000000000a36961e03f1f9b339e1208fe76adf824d531e4f11e82cd11bccd3e4d4cd5b4502ba9708a2827923cada4e88ec20e806b355ece7f4afbb71f1eafd72d05729509434e51cc55317bb19441bd11c979ca9786b51118d9b1c2246f0b40ab6700000000000000da855836b2ae2ca015a89c5a93917ce89bf9b25873b64212817b398012e71c56a6e54fff0f5a90c26a2b31fa0443dc5e59649e4678b04b917313b3ae5df833cf837087331201356ac926fc24fb7c21d65244421f457d954663ffc16a2f5eaf7a3033e71490413eb81a78125fbe905813b0fa518e44ce2779b29087ca0c5af3a3c05c64d6d98098d8d6c16eaa61179eb9acdbb0b8523c0fb26684c472244428cd27b2c4fa7d92d28776bff943ac830c7f4e70aa6cb4352cc2c57f79ae038939e36a954e5db9ed0cd416f21922632de28ceabe2930fc2f646809fa96a6f2e6eebdcef590508b859cb3bbefab67826828f4b7a7161e15b7b6333643fd5c2f023e5fcc4d97b3c68aaff91f7d85b5d3ea153079a7fc71cb6e8675d03eb5e1dce7d6aefde356c9b1122b888d45a8e636648a127ab8b100b7aa18234d", @ANYRES16, @ANYRES32, @ANYRESDEC], 0x0, 0x648, &(0x7f00000019c0)="$eJzs3c1u29j5x/EfZfkl/gPBH20xCIJMcibpAA6aKpI8cSCki7IUJXMqiQJJFzZQYJBO7EEQOdMmKdB4M/WmL8D0BrqbTRe9iN5A76LLAkW7K9ANC5KiJVuSJTuyk+l8P4YjiucRz0MeRQ9o8UUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECWUy+XK5ZaXmdr20zm1AO/fUp7trRF3c0m7k7tV7KSX62s6Fo269p3Bs3vJf/c1o3s2Q2tJA8rOvi/9/7/0beLhfz1pyR0HjrrAl++Pnj2uNfbfTHnRN4BKswQ1HQ7Xuh7bbvpGi/0TW1jo3x/sxGahtdyw50wctvGCdxC5AdmzblrKrXaunFLO/5Wp1m3W24+8+H3q+Xyhvl4uT/89z8uhc6m12p5nWYakzQnMQ/Nlz/NQly7bcze097u+rQkk6DKLEHVaUHVcrVaqVSrlY0HtQcPy+XiyIzyCRqJmPubFl8z8/vwBt5QIan/f7OkllbU0Za2Zcb+OKorkK/2hPa+vP5/eN89td/h+p9X+WuD5utK6//N7NnNSfV/Qi5GJn3BuBZrwvzz/bzUax3omR6rp5529WLmV17pr+nY1lvzy/Bif5pSUfIUypentmw15cr05xjVtKENlfWJNtVQKKOGPLXkKtSOQkVy1U7HJJArW5F8BTJak6O7MqqopprWZeSqpB352lJHTdVl699xHO/pabrd10/JUXlQZZag6uQQ/ToZsDH1/2dfZGNJ/f8m01BtPzUOeFfE/f3/M7p1MdkAAAAAAICLYKV/fbfS7+7flxSr4bXc8ttOCwAAAAAAzFH6zf+N5GExmXpf1oT9//jycwMAAAAAAPNhpefYWZJW04P6rcGZULMcBLBwCSkCAAAAAIA3lH7/f3NJitNrr92Sdab9fwAAAAAA8DXwu6Fr7Bfza+zG+df6BUlhd9n6yz+XFSxah93t71r7dtJi7/djRo4AiBrXrav9C/WmD0uS0meOe8Ma3BjASn9Xsif/2Jt2rX8rOJHA0kL+54tpCWwU+8/0pT7IYj7o9/vkoKC0JetlteG13JLjtx5VZNtXC5G7Hf3y+dNfScHReu497e2WPv289yTN5TCZdbif5PHFsXQK03J5lV5vIT3nYtwaX1Ej7/L3nfaqlfZbztd/QfZ+Ybij2db/N7qdxdxezR5XD/IRSNd/JVn/SikdssHap1eHsAZZVE6u+biBGJuFilKSxZ0s5s7anewhz6+fxfcWpGppdAyC4Syqw1lM3xbWv0a2xZQskm2xXlrsL2lCFutny2JkRADgbdkbVKH0Iuaj19g/WXfP8yk3vbr/8KiX9HuIV3+MsxMOF5KCES9P7WUlrStrWcyS0g/W4vUxn+jlfl1ZmfSJXj53dcv6+vPgHkj9tEey+E8cx48qab9/OFFVv0pe8NXEfsNWdSHZhPdf7f88vQB+4rPdz3afV6vrG+WPyuUHVS2mq9F/oPYAAMaYfo+dqRHWR0d71U/+/mE2dazifevokIKSPtXn6umJ7uW3ELg1fqmrQ4ch3Bvda01i0zvoHI+t6N7Evbq0lg7FVo9i8128k3uAg9j1Cx4FAAAu1+0pdXiW+n8v3+9euz52v/t4LT95h+BJsZVL3hIAAHxzuIGxVqPfWkHgdT+p1GoVO9p0TeA7PzaBV2+6xutEbuBs2p2ma7qBH/mO3zLdQMte3Q1NuNXt+kFkGn5gun7obad3fjf9W7+HbtvuRJ4TdluuHbrG8TuR7USm7oWO6W79qOWFm26Qvjjsuo7X8Bw78vyOCf2twHFLxoSuOxTo1d1O5DW8ZLJjuoHXtoMd8xO/tdV2Td0NncDrRn62wLwvr9Pwg3a62JLiM9/oEACA/0UvXx88e9zr7b44ZeJQQ3PyYwPHBy+NW+DbXkcAAHAcVRoAAAAAAAAAAAAAAAAAAAAAgHffLOf/nWliUWOapKM5v7g603IszTuxSRNL/S0x3FQ4/wL/OjJnWfmcK0dNGtPp4SxdFCXNcSMomyjOf/Nekca9Ey5s4gd72RYdF6Nir7erSSetLh+NRXH+/x2Sied/mtAUx3F8+suXNfJenbHT5I3yYukNhuDyP4sAXK7/BgAA//9C9zbL")
creat(&(0x7f00000005c0)='./file0\x00', 0x0)

650.109817ms ago: executing program 4 (id=2611):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, 0x0, 0x8)
bind$inet6(r0, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0xb8, 0x7ffc0002}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
wait4(0xffffffffffffffff, 0x0, 0x2, 0x0)

626.210507ms ago: executing program 4 (id=2612):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000080)=""/36, 0x24}, {&(0x7f0000000180)=""/79, 0x4f}], 0x2, 0x0, 0x0)

571.811767ms ago: executing program 4 (id=2613):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0x9, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000012c0)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @rand_addr, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x800)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
sendmsg$inet6(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="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", 0xfb}, {&(0x7f0000000400)="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", 0x2d4}], 0x2}, 0x40001080)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000100)=@gcm_128={{0x303}, "fd9192068590ef44", "4ded6853efa14266912ec2cb350be183", "15861006", "84d6d4ab8749281f"}, 0x28)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)

0s ago: executing program 3 (id=2614):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00'}, 0x10)
write$tcp_congestion(0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="0600"/20, @ANYRES32=r0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000fd5c8412dd56672b00000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES16=r0, @ANYRESHEX=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
listen(r5, 0x400000001ffffffd)
r6 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e23, 0x2007, @loopback}, 0x1c)
close(r5)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3], &(0x7f0000000240)='GPL\x00', 0x80000000, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000200)=@v3, 0x18, 0x0)
r9 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r9, 0x40187013, &(0x7f0000000140)={0x0, 0x2})
r10 = socket$inet(0x2, 0x2, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
recvmmsg(r10, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
readv(r10, &(0x7f0000000a00)=[{&(0x7f0000000780)=""/205, 0xcd}], 0x1)

kernel console output (not intermixed with test programs):

223][T11372] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1991'.
[  158.371957][T11370] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  158.390307][T11370] EXT4-fs (loop5): 1 truncate cleaned up
[  158.396497][T11370] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.421834][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.485992][T11379] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1994'.
[  158.516071][T11379] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  158.569587][T11395] netlink: 'syz.0.1996': attribute type 29 has an invalid length.
[  158.753343][T11424] loop5: detected capacity change from 0 to 512
[  158.774100][T11424] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  158.843322][T11424] EXT4-fs (loop5): 1 truncate cleaned up
[  158.849346][T11424] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.867013][T11424] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11424 comm=syz.5.2000
[  159.690068][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.814494][T11448] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2007'.
[  159.823728][T11454] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.2009'.
[  159.825064][T11448] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  159.963104][T11477] loop5: detected capacity change from 0 to 512
[  159.982700][T11477] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  159.999323][T11477] EXT4-fs (loop5): 1 truncate cleaned up
[  160.005452][T11477] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.031173][T11477] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11477 comm=syz.5.2014
[  160.861216][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.886322][T11506] loop0: detected capacity change from 0 to 128
[  160.971146][T11508] netlink: 'syz.5.2019': attribute type 29 has an invalid length.
[  161.381410][T11519] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2023'.
[  161.686814][T11530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2025'.
[  161.771995][T11539] loop4: detected capacity change from 0 to 512
[  161.784162][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.791683][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.799110][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.808937][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.811267][T11539] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  161.816377][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.833572][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.841012][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.848465][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.855952][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.863341][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.870760][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.878235][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.885660][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.893093][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.922958][T11539] EXT4-fs (loop4): 1 truncate cleaned up
[  161.929065][T11539] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.950965][T11539] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=11539 comm=syz.4.2029
[  161.963576][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.971034][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.978431][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.985841][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  161.993225][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.000694][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.008082][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.015486][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.022864][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.030284][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.037806][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.045223][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.052599][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.059983][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.067377][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.074778][    T9] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  162.083640][    T9] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  162.149211][T11552] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2034'.
[  162.190319][T11556] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2035'.
[  162.335480][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.342905][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.350373][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.357906][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.365305][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.372684][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.380133][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.387546][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.394924][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.402372][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.409763][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.417153][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.424525][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.431914][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.439381][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.446842][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.454206][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.461604][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.469057][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.476451][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.483823][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.491293][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.498679][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.506073][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.513442][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.520922][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.528336][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.535781][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.543307][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.550698][ T4422] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[  162.583857][ T4422] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  162.792586][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.050096][T11582] loop4: detected capacity change from 0 to 1024
[  163.083648][T11582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.091464][T11578] loop2: detected capacity change from 0 to 512
[  163.103869][T11578] EXT4-fs: inline encryption not supported
[  163.126355][T11578] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.148045][T11578] ext4 filesystem being mounted at /384/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.165676][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.209990][T11577] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  163.226595][T11577] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  163.242619][T11577] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  163.255558][T11577] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  163.279329][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.295545][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.302952][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.310457][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.319172][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.326657][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.334098][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.341566][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.349101][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.356564][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.363947][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.371396][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.378820][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.386226][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.393672][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.407378][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.414850][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.422328][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.429725][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.437119][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.444502][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.451907][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.459359][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.465241][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.466760][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.474102][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.481469][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.481493][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.488884][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.496301][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.518478][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.522614][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.525934][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.533277][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.540618][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.547969][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.555316][ T4422] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.562666][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.572629][T11600] loop4: detected capacity change from 0 to 512
[  163.577375][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.584786][T11600] EXT4-fs: inline encryption not supported
[  163.591172][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.591260][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.605332][ T4422] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  163.611756][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.628844][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.636242][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.643619][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.653633][T11600] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.667556][T11600] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.682237][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.689658][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.697160][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.704556][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.711989][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.719402][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.726851][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.734229][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.741782][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.749192][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.756611][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.763991][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.766363][T11595] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  163.771407][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.790001][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.797400][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.804879][    T9] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  163.813212][T11595] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  163.825136][    T9] hid-generic 0000:0000:0000.0020: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  163.836775][T11595] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  163.857991][T11595] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  163.908298][T11610] netlink: 'syz.0.2052': attribute type 32 has an invalid length.
[  163.927365][T11614] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2054'.
[  163.940323][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.097776][T11621] loop0: detected capacity change from 0 to 1024
[  164.303092][T11621] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.403113][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.417781][T11631] netlink: 'syz.4.2059': attribute type 29 has an invalid length.
[  164.533629][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  164.533644][   T29] audit: type=1326 audit(1733203998.730:5661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.712402][   T29] audit: type=1326 audit(1733203998.820:5662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.736148][   T29] audit: type=1326 audit(1733203998.830:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.759724][   T29] audit: type=1326 audit(1733203998.830:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.783252][   T29] audit: type=1326 audit(1733203998.840:5665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.806686][   T29] audit: type=1326 audit(1733203998.840:5666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.830228][   T29] audit: type=1326 audit(1733203998.840:5667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.841502][T11643] loop0: detected capacity change from 0 to 256
[  164.853735][   T29] audit: type=1326 audit(1733203998.840:5668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.883341][   T29] audit: type=1326 audit(1733203998.840:5669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.906863][   T29] audit: type=1326 audit(1733203998.840:5670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11630 comm="syz.4.2059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  164.925879][T11643] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  164.940166][T11643] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  164.982018][T11647] loop4: detected capacity change from 0 to 512
[  164.998317][T11649] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2065'.
[  165.022122][T11653] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2066'.
[  165.022538][T11647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.045417][T11647] ext4 filesystem being mounted at /423/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.062832][T11647] rdma_op ffff88810f113d80 conn xmit_rdma 0000000000000000
[  165.071040][T11647] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  165.080049][T11647] SELinux: failed to load policy
[  165.094536][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.130361][T11660] netlink: 'syz.4.2069': attribute type 29 has an invalid length.
[  165.202842][T11664] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2070'.
[  165.228411][T11669] loop4: detected capacity change from 0 to 512
[  165.236766][T11669] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.2071: bad orphan inode 13
[  165.247131][T11669] ext4_test_bit(bit=12, block=4) = 1
[  165.252447][T11669] is_bad_inode(inode)=0
[  165.256668][T11669] NEXT_ORPHAN(inode)=0
[  165.260782][T11669] max_ino=32
[  165.264034][T11669] i_nlink=1
[  165.267641][T11669] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.289423][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.462696][T11675] netlink: 'syz.3.2073': attribute type 29 has an invalid length.
[  165.524021][T11683] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2076'.
[  165.551143][T11685] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2077'.
[  165.586968][T11688] loop3: detected capacity change from 0 to 512
[  165.604163][T11688] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.623070][T11688] ext4 filesystem being mounted at /444/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.717457][T11694] loop5: detected capacity change from 0 to 512
[  165.724946][T11694] EXT4-fs: inline encryption not supported
[  165.747053][T11688] rdma_op ffff88813746cd80 conn xmit_rdma 0000000000000000
[  165.757350][T11688] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  165.766375][T11688] SELinux: failed to load policy
[  165.798217][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.824074][T11694] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.838281][T11694] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.860672][T11694] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  165.873130][T11694] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  165.885888][T11694] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  165.914646][T11694] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  166.060793][T11703] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2082'.
[  166.078612][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.200207][T11707] loop4: detected capacity change from 0 to 256
[  166.231975][T11707] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.253447][T11707] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.302812][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.310328][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.317735][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.325442][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.332860][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.340281][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.347727][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.355178][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.362679][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.370175][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.377623][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.381184][T11714] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2083'.
[  166.384995][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.401455][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.408882][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.450163][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.457608][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.465071][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.472674][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.480207][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.487604][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.495051][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.502463][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.509885][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.517304][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.521170][T11716] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2086'.
[  166.524679][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.524702][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.524725][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.524746][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.524770][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.570591][ T3378] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  166.582650][ T3378] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  167.112394][T11711] syz.5.2083 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  167.123456][T11711] CPU: 1 UID: 0 PID: 11711 Comm: syz.5.2083 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  167.128676][T11737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2094'.
[  167.134257][T11711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  167.153168][T11711] Call Trace:
[  167.153177][T11711]  <TASK>
[  167.159385][T11711]  dump_stack_lvl+0xf2/0x150
[  167.164027][T11711]  dump_stack+0x15/0x1a
[  167.168181][T11711]  dump_header+0x83/0x2d0
[  167.172503][T11711]  oom_kill_process+0x341/0x4c0
[  167.177347][T11711]  out_of_memory+0x9af/0xbe0
[  167.181936][T11711]  ? css_next_descendant_pre+0x11c/0x140
[  167.187616][T11711]  mem_cgroup_out_of_memory+0x13e/0x190
[  167.193241][T11711]  try_charge_memcg+0x508/0x7f0
[  167.198140][T11711]  charge_memcg+0x50/0xc0
[  167.202462][T11711]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[  167.208479][T11711]  __read_swap_cache_async+0x236/0x480
[  167.213940][T11711]  swap_cluster_readahead+0x279/0x3f0
[  167.219352][T11711]  swapin_readahead+0xe4/0x6f0
[  167.224127][T11711]  ? __lruvec_stat_mod_folio+0xdb/0x120
[  167.229672][T11711]  ? swap_cache_get_folio+0x77/0x210
[  167.234951][T11711]  do_swap_page+0x31b/0x2550
[  167.239650][T11711]  ? __rcu_read_lock+0x36/0x50
[  167.244453][T11711]  ? __pfx_default_wake_function+0x10/0x10
[  167.250252][T11711]  handle_mm_fault+0x8e4/0x2ac0
[  167.255100][T11711]  exc_page_fault+0x3b9/0x650
[  167.259779][T11711]  asm_exc_page_fault+0x26/0x30
[  167.264697][T11711] RIP: 0033:0x7f9f297a7cb0
[  167.269100][T11711] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[  167.288696][T11711] RSP: 002b:00007ffec307c418 EFLAGS: 00010202
[  167.294874][T11711] RAX: 00000000fffffffa RBX: 00007f9f29945fa0 RCX: 0000000000000000
[  167.302836][T11711] RDX: 00007ffec307c460 RSI: 0000000000000000 RDI: 0000000000000000
[  167.310795][T11711] RBP: 00007f9f29947ba0 R08: 0000000003d7b6eb R09: 7fffffffffffffff
[  167.318806][T11711] R10: 0000000000000000 R11: 0000000000000010 R12: 0000000000028ce7
[  167.326769][T11711] R13: 00007f9f29946080 R14: 0000000000000032 R15: ffffffffffffffff
[  167.334803][T11711]  </TASK>
[  167.338212][T11711] memory: usage 307200kB, limit 307200kB, failcnt 184
[  167.344979][T11711] memory+swap: usage 314952kB, limit 9007199254740988kB, failcnt 0
[  167.353027][T11711] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  167.360325][T11711] Memory cgroup stats for /syz5:
[  167.360804][T11711] cache 0
[  167.368720][T11711] rss 0
[  167.371481][T11711] shmem 0
[  167.374408][T11711] mapped_file 0
[  167.377962][T11711] dirty 0
[  167.380889][T11711] writeback 4096
[  167.384452][T11711] workingset_refault_anon 164
[  167.389145][T11711] workingset_refault_file 3904
[  167.393896][T11711] swap 7938048
[  167.397301][T11711] swapcached 4096
[  167.400976][T11711] pgpgin 316874
[  167.404553][T11711] pgpgout 316873
[  167.408128][T11711] pgfault 337895
[  167.411692][T11711] pgmajfault 61
[  167.415161][T11711] inactive_anon 4096
[  167.419047][T11711] active_anon 0
[  167.422569][T11711] inactive_file 0
[  167.423449][T11742] loop2: detected capacity change from 0 to 1024
[  167.426208][T11711] active_file 0
[  167.426217][T11711] unevictable 0
[  167.439468][T11711] hierarchical_memory_limit 314572800
[  167.444829][T11711] hierarchical_memsw_limit 9223372036854771712
[  167.451032][T11711] total_cache 0
[  167.454482][T11711] total_rss 0
[  167.457791][T11711] total_shmem 0
[  167.461243][T11711] total_mapped_file 0
[  167.465260][T11711] total_dirty 0
[  167.468773][T11711] total_writeback 4096
[  167.472829][T11711] total_workingset_refault_anon 164
[  167.478064][T11711] total_workingset_refault_file 3904
[  167.483341][T11711] total_swap 7938048
[  167.487260][T11711] total_swapcached 4096
[  167.491400][T11711] total_pgpgin 316874
[  167.495400][T11711] total_pgpgout 316873
[  167.499563][T11711] total_pgfault 337895
[  167.503620][T11711] total_pgmajfault 61
[  167.507721][T11711] total_inactive_anon 4096
[  167.512128][T11711] total_active_anon 0
[  167.516256][T11711] total_inactive_file 0
[  167.520427][T11711] total_active_file 0
[  167.524390][T11711] total_unevictable 0
[  167.528372][T11711] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.712,pid=5879,uid=0
[  167.542942][T11711] Memory cgroup out of memory: Killed process 5879 (syz.5.712) total-vm:95460kB, anon-rss:676kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  167.600812][T11742] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.688242][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.032316][T11755] ebt_limit: overflow, try lower: 570423552/2483027968
[  168.162746][T11712] syz.5.2083 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  168.176954][T11712] CPU: 0 UID: 0 PID: 11712 Comm: syz.5.2083 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  168.187730][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  168.197811][T11712] Call Trace:
[  168.201106][T11712]  <TASK>
[  168.204053][T11712]  dump_stack_lvl+0xf2/0x150
[  168.208727][T11712]  dump_stack+0x15/0x1a
[  168.212961][T11712]  dump_header+0x83/0x2d0
[  168.217310][T11712]  oom_kill_process+0x341/0x4c0
[  168.222165][T11712]  out_of_memory+0x9af/0xbe0
[  168.226762][T11712]  ? css_next_descendant_pre+0x11c/0x140
[  168.232469][T11712]  mem_cgroup_out_of_memory+0x13e/0x190
[  168.238070][T11712]  try_charge_memcg+0x508/0x7f0
[  168.243026][T11712]  obj_cgroup_charge_pages+0xbd/0x1a0
[  168.248473][T11712]  __memcg_kmem_charge_page+0x9d/0x170
[  168.253950][T11712]  __alloc_pages_noprof+0x1bc/0x340
[  168.258402][T11759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2099'.
[  168.259155][T11712]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  168.273378][T11712]  alloc_pages_noprof+0xe1/0x100
[  168.278336][T11712]  __vmalloc_node_range_noprof+0x6eb/0xe80
[  168.284194][T11712]  __kvmalloc_node_noprof+0x121/0x170
[  168.289594][T11712]  ? ip_set_alloc+0x1f/0x30
[  168.294160][T11712]  ip_set_alloc+0x1f/0x30
[  168.298501][T11712]  hash_netiface_create+0x273/0x730
[  168.303712][T11712]  ? __nla_parse+0x40/0x60
[  168.308137][T11712]  ? __pfx_hash_netiface_create+0x10/0x10
[  168.313884][T11712]  ip_set_create+0x359/0x8a0
[  168.318496][T11712]  ? memchr+0x1/0x50
[  168.322403][T11712]  ? __nla_parse+0x40/0x60
[  168.326965][T11712]  nfnetlink_rcv_msg+0x4a9/0x570
[  168.331930][T11712]  netlink_rcv_skb+0x12c/0x230
[  168.336738][T11712]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  168.342213][T11712]  nfnetlink_rcv+0x16c/0x15d0
[  168.346899][T11712]  ? kmem_cache_free+0xdc/0x2d0
[  168.351816][T11712]  ? nlmon_xmit+0x51/0x60
[  168.356144][T11712]  ? __kfree_skb+0x102/0x150
[  168.360779][T11712]  ? consume_skb+0x49/0x160
[  168.365353][T11712]  ? nlmon_xmit+0x51/0x60
[  168.369705][T11712]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  168.375003][T11712]  ? __dev_queue_xmit+0xb6e/0x2090
[  168.380123][T11712]  ? ref_tracker_free+0x3a5/0x410
[  168.385254][T11712]  ? __dev_queue_xmit+0x186/0x2090
[  168.390372][T11712]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  168.395843][T11712]  netlink_unicast+0x599/0x670
[  168.400605][T11712]  netlink_sendmsg+0x5cc/0x6e0
[  168.405521][T11712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  168.410828][T11712]  __sock_sendmsg+0x140/0x180
[  168.415603][T11712]  ____sys_sendmsg+0x312/0x410
[  168.420366][T11712]  __sys_sendmsg+0x19d/0x230
[  168.425099][T11712]  __x64_sys_sendmsg+0x46/0x50
[  168.429873][T11712]  x64_sys_call+0x2734/0x2dc0
[  168.434662][T11712]  do_syscall_64+0xc9/0x1c0
[  168.439155][T11712]  ? clear_bhb_loop+0x55/0xb0
[  168.443898][T11712]  ? clear_bhb_loop+0x55/0xb0
[  168.448590][T11712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.454519][T11712] RIP: 0033:0x7f9f2977ff19
[  168.459011][T11712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.478615][T11712] RSP: 002b:00007f9f27df7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  168.487078][T11712] RAX: ffffffffffffffda RBX: 00007f9f29945fa0 RCX: 00007f9f2977ff19
[  168.495036][T11712] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005
[  168.503001][T11712] RBP: 00007f9f297f3986 R08: 0000000000000000 R09: 0000000000000000
[  168.511005][T11712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  168.519514][T11712] R13: 0000000000000000 R14: 00007f9f29945fa0 R15: 00007ffec307c328
[  168.527486][T11712]  </TASK>
[  168.530688][T11712] memory: usage 307200kB, limit 307200kB, failcnt 461
[  168.537755][T11712] memory+swap: usage 307704kB, limit 9007199254740988kB, failcnt 0
[  168.545682][T11712] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[  168.552964][T11712] Memory cgroup stats for /syz5:
[  168.556147][T11712] cache 0
[  168.564018][T11712] rss 8192
[  168.567052][T11712] shmem 0
[  168.569993][T11712] mapped_file 0
[  168.573446][T11712] dirty 0
[  168.576443][T11712] writeback 0
[  168.579719][T11712] workingset_refault_anon 175
[  168.584381][T11712] workingset_refault_file 3904
[  168.589185][T11712] swap 516096
[  168.592463][T11712] swapcached 24576
[  168.596317][T11712] pgpgin 316885
[  168.599905][T11712] pgpgout 316879
[  168.603470][T11712] pgfault 337903
[  168.607067][T11712] pgmajfault 65
[  168.610518][T11712] inactive_anon 0
[  168.614164][T11712] active_anon 24576
[  168.618033][T11712] inactive_file 0
[  168.621664][T11712] active_file 0
[  168.625144][T11712] unevictable 0
[  168.628598][T11712] hierarchical_memory_limit 314572800
[  168.633971][T11712] hierarchical_memsw_limit 9223372036854771712
[  168.640147][T11712] total_cache 0
[  168.643723][T11712] total_rss 8192
[  168.647291][T11712] total_shmem 0
[  168.650745][T11712] total_mapped_file 0
[  168.654727][T11712] total_dirty 0
[  168.658373][T11712] total_writeback 0
[  168.662177][T11712] total_workingset_refault_anon 175
[  168.667441][T11712] total_workingset_refault_file 3904
[  168.672719][T11712] total_swap 516096
[  168.676579][T11712] total_swapcached 24576
[  168.680810][T11712] total_pgpgin 316885
[  168.684780][T11712] total_pgpgout 316879
[  168.688864][T11712] total_pgfault 337903
[  168.692921][T11712] total_pgmajfault 65
[  168.696916][T11712] total_inactive_anon 0
[  168.701066][T11712] total_active_anon 24576
[  168.705455][T11712] total_inactive_file 0
[  168.709599][T11712] total_active_file 0
[  168.713653][T11712] total_unevictable 0
[  168.717639][T11712] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2083,pid=11711,uid=0
[  168.732397][T11712] Memory cgroup out of memory: Killed process 11711 (syz.5.2083) total-vm:93280kB, anon-rss:616kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000
[  169.245384][T11794] loop2: detected capacity change from 0 to 512
[  169.266822][T11794] EXT4-fs: Ignoring removed i_version option
[  169.272918][T11794] EXT4-fs: Ignoring removed nobh option
[  169.295568][T11794] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  169.325968][T11794] EXT4-fs (loop2): 1 truncate cleaned up
[  169.332017][T11794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.366486][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.445400][T11806] loop2: detected capacity change from 0 to 1024
[  169.469908][T11806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.525342][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.849531][T11819] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  170.037770][T11834] __nla_validate_parse: 3 callbacks suppressed
[  170.037785][T11834] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2112'.
[  170.072680][   T29] kauditd_printk_skb: 159 callbacks suppressed
[  170.072695][   T29] audit: type=1326 audit(1733204004.270:5830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11827 comm="syz.3.2111" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd0a491ff19 code=0x0
[  170.119482][T11832] ebt_limit: overflow, try lower: 570423552/2483027968
[  170.133644][T11836] loop5: detected capacity change from 0 to 128
[  170.337143][T11845] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2114'.
[  170.667761][T11866] loop0: detected capacity change from 0 to 512
[  170.674200][T11866] EXT4-fs: Ignoring removed i_version option
[  170.680325][T11866] EXT4-fs: Ignoring removed nobh option
[  170.715318][T11866] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  170.762244][T11866] EXT4-fs (loop0): 1 truncate cleaned up
[  170.768387][T11866] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.798886][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.806452][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.813832][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.821293][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.828703][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.836156][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.843567][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.850996][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.858467][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.865983][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.873376][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.880813][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.888271][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.895664][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.903135][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.910560][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.917959][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.925370][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.932870][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.940488][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.948018][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.955436][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.962883][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.970299][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.977700][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.985076][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  170.986495][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.992531][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  171.008927][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  171.016409][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  171.023793][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  171.031794][    T9] hid-generic 0000:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  171.092797][T11886] loop4: detected capacity change from 0 to 1024
[  171.103955][T11886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.142762][T11890] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2121'.
[  171.156121][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.336768][T11911] loop5: detected capacity change from 0 to 512
[  171.379040][T11911] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.401882][T11911] ext4 filesystem being mounted at /312/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.428289][T11911] rdma_op ffff88812def5d80 conn xmit_rdma 0000000000000000
[  171.449833][T11911] SELinux:  policydb version 0 does not match my version range 15-33
[  171.477628][T11911] SELinux: failed to load policy
[  171.483345][T11916] syzkaller0: entered promiscuous mode
[  171.488854][T11916] syzkaller0: entered allmulticast mode
[  171.516837][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.551977][T11919] loop2: detected capacity change from 0 to 512
[  171.560777][T11919] EXT4-fs: inline encryption not supported
[  171.652840][T11929] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2133'.
[  171.697850][T11932] loop3: detected capacity change from 0 to 512
[  171.704327][T11932] EXT4-fs: Ignoring removed i_version option
[  171.710447][T11932] EXT4-fs: Ignoring removed nobh option
[  171.710882][T11919] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.733204][T11919] ext4 filesystem being mounted at /406/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.745743][T11932] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  171.749337][T11918] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  171.769055][T11934] loop5: detected capacity change from 0 to 512
[  171.779363][T11918] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  171.781327][T11932] EXT4-fs (loop3): 1 truncate cleaned up
[  171.796381][T11932] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.826544][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.836929][T11934] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.852826][T11939] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2136'.
[  171.868937][T11918] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  171.880368][T11934] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.885322][T11918] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  171.906739][T11934] rdma_op ffff88814ce7c580 conn xmit_rdma 0000000000000000
[  171.919840][T11934] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  171.928404][T11934] SELinux: failed to load policy
[  171.958403][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.972430][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.024671][T11945] loop2: detected capacity change from 0 to 512
[  172.041376][T11947] loop5: detected capacity change from 0 to 128
[  172.048608][T11948] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2140'.
[  172.083072][T11945] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.097379][T11945] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.124008][T11953] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2141'.
[  172.124102][T11945] rdma_op ffff88814ce7c980 conn xmit_rdma 0000000000000000
[  172.154585][T11957] loop5: detected capacity change from 0 to 512
[  172.164825][T11953] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  172.169870][T11945] SELinux:  policydb version 0 does not match my version range 15-33
[  172.185375][T11945] SELinux: failed to load policy
[  172.239986][T11957] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.256151][T11957] ext4 filesystem being mounted at /316/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.272867][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.338348][T11957] rdma_op ffff88814ce7cd80 conn xmit_rdma 0000000000000000
[  172.343532][T11972] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2143'.
[  172.378322][T11978] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2145'.
[  172.388305][T11957] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  172.396980][T11957] SELinux: failed to load policy
[  172.442888][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.479514][T11987] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2147'.
[  172.541561][T11991] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  172.696725][T12014] loop0: detected capacity change from 0 to 256
[  172.743480][T12014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.779529][T12014] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.354281][T12055] loop0: detected capacity change from 0 to 128
[  173.506741][   T29] audit: type=1326 audit(1733204007.710:5831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12057 comm="syz.5.2161" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f2977ff19 code=0x0
[  173.718873][T12076] loop0: detected capacity change from 0 to 512
[  173.729141][T12076] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.2168: bad orphan inode 13
[  173.741294][   T29] audit: type=1326 audit(1733204007.940:5832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12071 comm="syz.4.2166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x0
[  173.765694][T12076] ext4_test_bit(bit=12, block=4) = 1
[  173.770997][T12076] is_bad_inode(inode)=0
[  173.775172][T12076] NEXT_ORPHAN(inode)=0
[  173.779244][T12076] max_ino=32
[  173.782470][T12076] i_nlink=1
[  173.788989][T12076] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.811833][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.839241][T12081] loop2: detected capacity change from 0 to 128
[  173.894850][   T29] audit: type=1326 audit(1733204008.090:5833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12080 comm="syz.0.2169" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x0
[  174.535327][T12093] netlink: 'syz.4.2173': attribute type 1 has an invalid length.
[  174.567314][T12095] loop4: detected capacity change from 0 to 512
[  174.575145][T12095] EXT4-fs: Ignoring removed i_version option
[  174.581161][T12095] EXT4-fs: Ignoring removed nobh option
[  174.596443][T12095] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  174.609291][T12095] EXT4-fs (loop4): 1 truncate cleaned up
[  174.618523][T12095] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.643577][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.745151][   T29] audit: type=1326 audit(1733204008.940:5834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12097 comm="syz.4.2175" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x0
[  174.899417][T12109] loop2: detected capacity change from 0 to 512
[  174.918541][T12109] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.2179: bad orphan inode 13
[  174.928838][T12109] ext4_test_bit(bit=12, block=4) = 1
[  174.934158][T12109] is_bad_inode(inode)=0
[  174.938377][T12109] NEXT_ORPHAN(inode)=0
[  174.942439][T12109] max_ino=32
[  174.945702][T12109] i_nlink=1
[  174.952901][T12109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.990118][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.180211][T12117] loop5: detected capacity change from 0 to 512
[  175.207272][T12117] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.220105][T12117] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.238849][T12117] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  175.247668][T12117] SELinux: failed to load policy
[  175.313990][   T29] audit: type=1326 audit(1733204009.510:5835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12120 comm="syz.5.2182" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f2977ff19 code=0x0
[  175.433603][T12124] loop0: detected capacity change from 0 to 512
[  175.446527][T12124] ext4 filesystem being mounted at /453/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.463037][T12124] rdma_op ffff888118835580 conn xmit_rdma 0000000000000000
[  175.471188][T12124] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  175.480003][T12124] SELinux: failed to load policy
[  175.502901][T12128] __nla_validate_parse: 7 callbacks suppressed
[  175.502932][T12128] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2184'.
[  175.530815][T12130] loop4: detected capacity change from 0 to 512
[  175.547688][T12130] ext4 filesystem being mounted at /450/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.563697][T12130] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  175.572379][T12130] SELinux: failed to load policy
[  175.596002][   T29] audit: type=1326 audit(1733204009.800:5836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12131 comm="syz.0.2186" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x0
[  175.652503][T12142] netlink: 'syz.4.2188': attribute type 32 has an invalid length.
[  175.745289][T12147] loop4: detected capacity change from 0 to 512
[  175.753191][T12147] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.2190: bad orphan inode 13
[  175.763368][T12147] ext4_test_bit(bit=12, block=4) = 1
[  175.768705][T12147] is_bad_inode(inode)=0
[  175.772912][T12147] NEXT_ORPHAN(inode)=0
[  175.777025][T12147] max_ino=32
[  175.780230][T12147] i_nlink=1
[  175.806945][T12150] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2191'.
[  175.818035][T12150] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  175.874260][T12158] loop2: detected capacity change from 0 to 512
[  175.900497][T12158] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.915835][T12158] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  175.926976][T12158] SELinux: failed to load policy
[  175.967919][T12173] netlink: 'syz.2.2193': attribute type 1 has an invalid length.
[  175.975698][T12173] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2193'.
[  176.077641][T12179] loop2: detected capacity change from 0 to 512
[  176.084174][T12179] EXT4-fs: inline encryption not supported
[  176.106671][T12179] ext4 filesystem being mounted at /420/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.133261][T12179] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  176.133786][T12195] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2197'.
[  176.145190][T12179] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  176.164770][T12179] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  176.177411][T12179] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  176.215667][T12199] netlink: 200 bytes leftover after parsing attributes in process `syz.3.2199'.
[  176.249028][T12203] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2201'.
[  176.327722][T12211] netlink: 200 bytes leftover after parsing attributes in process `syz.5.2202'.
[  176.345136][T12217] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.352535][T12220] loop2: detected capacity change from 0 to 512
[  176.360337][T12217] SELinux: failed to load policy
[  176.369794][T12220] EXT4-fs: Ignoring removed i_version option
[  176.375874][T12220] EXT4-fs: Ignoring removed nobh option
[  176.383989][T12220] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  176.399596][T12225] loop0: detected capacity change from 0 to 512
[  176.410043][T12220] EXT4-fs (loop2): 1 truncate cleaned up
[  176.428004][T12225] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.2205: bad orphan inode 13
[  176.442772][T12225] ext4_test_bit(bit=12, block=4) = 1
[  176.448232][T12225] is_bad_inode(inode)=0
[  176.452409][T12225] NEXT_ORPHAN(inode)=0
[  176.456565][T12225] max_ino=32
[  176.459761][T12225] i_nlink=1
[  176.498218][T12238] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2209'.
[  176.534442][T12244] loop2: detected capacity change from 0 to 512
[  176.546993][T12244] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  176.551895][   T29] audit: type=1326 audit(1733204010.750:5837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12230 comm="syz.3.2206" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd0a491ff19 code=0x0
[  176.587003][T12244] EXT4-fs (loop2): 1 truncate cleaned up
[  176.610869][T12244] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12244 comm=syz.2.2210
[  176.657344][T12260] loop0: detected capacity change from 0 to 512
[  176.677040][T12260] ext4 filesystem being mounted at /460/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.693591][T12260] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.702215][T12260] SELinux: failed to load policy
[  176.733674][T12264] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2214'.
[  176.783825][T12264] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  176.880725][T12288] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  176.896450][T12288] SELinux: failed to load policy
[  176.927747][T12283] loop0: detected capacity change from 0 to 512
[  176.935411][T12283] EXT4-fs: inline encryption not supported
[  176.956639][T12283] ext4 filesystem being mounted at /462/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.969624][T12283] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  176.981120][T12283] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  176.992145][T12283] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  177.003647][T12283] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  177.036754][T12304] netlink: 200 bytes leftover after parsing attributes in process `syz.0.2219'.
[  177.482844][T12329] loop2: detected capacity change from 0 to 512
[  177.497156][T12329] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.511566][T12329] rdma_op ffff88814ce7cd80 conn xmit_rdma 0000000000000000
[  177.519359][T12329] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  177.527983][T12329] SELinux: failed to load policy
[  177.716852][T12335] FAULT_INJECTION: forcing a failure.
[  177.716852][T12335] name failslab, interval 1, probability 0, space 0, times 0
[  177.729529][T12335] CPU: 1 UID: 0 PID: 12335 Comm: syz.2.2229 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  177.740368][T12335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  177.750467][T12335] Call Trace:
[  177.753736][T12335]  <TASK>
[  177.756665][T12335]  dump_stack_lvl+0xf2/0x150
[  177.761272][T12335]  dump_stack+0x15/0x1a
[  177.765483][T12335]  should_fail_ex+0x223/0x230
[  177.770164][T12335]  should_failslab+0x8f/0xb0
[  177.774761][T12335]  kmem_cache_alloc_noprof+0x52/0x320
[  177.780208][T12335]  ? security_file_alloc+0x32/0x100
[  177.785482][T12335]  security_file_alloc+0x32/0x100
[  177.790554][T12335]  init_file+0x5b/0x1b0
[  177.794749][T12335]  alloc_empty_file+0xea/0x200
[  177.799518][T12335]  path_openat+0x6a/0x1fa0
[  177.804042][T12335]  ? _parse_integer_limit+0x167/0x180
[  177.809477][T12335]  ? _parse_integer+0x27/0x30
[  177.814176][T12335]  ? kstrtoull+0x110/0x140
[  177.818590][T12335]  ? kstrtouint+0x77/0xc0
[  177.822916][T12335]  ? kstrtouint_from_user+0xb0/0xe0
[  177.828114][T12335]  do_filp_open+0x107/0x230
[  177.832684][T12335]  do_sys_openat2+0xab/0x120
[  177.837274][T12335]  __x64_sys_openat+0xf3/0x120
[  177.842040][T12335]  x64_sys_call+0x2b30/0x2dc0
[  177.846720][T12335]  do_syscall_64+0xc9/0x1c0
[  177.851227][T12335]  ? clear_bhb_loop+0x55/0xb0
[  177.855996][T12335]  ? clear_bhb_loop+0x55/0xb0
[  177.860705][T12335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.866690][T12335] RIP: 0033:0x7f33d73fe880
[  177.871146][T12335] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  177.890761][T12335] RSP: 002b:00007f33d5a34b90 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  177.899181][T12335] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f33d73fe880
[  177.907376][T12335] RDX: 0000000000000002 RSI: 00007f33d5a34c30 RDI: 00000000ffffff9c
[  177.915357][T12335] RBP: 00007f33d5a34c30 R08: 0000000000000000 R09: 00007f33d5a349a7
[  177.923401][T12335] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  177.931374][T12335] R13: 0000000000000000 R14: 00007f33d75c6160 R15: 00007ffdc0852f08
[  177.939371][T12335]  </TASK>
[  177.965346][T12337] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  178.210332][T12355] loop0: detected capacity change from 0 to 256
[  178.229490][T12355] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.240392][T12355] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  178.605205][   T29] audit: type=1326 audit(1733204012.800:5838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12381 comm="syz.2.2243" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33d73fff19 code=0x0
[  179.161719][   T29] audit: type=1326 audit(1733204013.360:5839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12417 comm="syz.3.2250" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd0a491ff19 code=0x0
[  179.293902][T12420] sd 0:0:1:0: device reset
[  179.324706][   T29] audit: type=1400 audit(1733204013.520:5840): avc:  denied  { ioctl } for  pid=12425 comm="syz.0.2251" path="socket:[30532]" dev="sockfs" ino=30532 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  179.367122][T12428] loop0: detected capacity change from 0 to 512
[  179.389172][T12428] ext4 filesystem being mounted at /481/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.404343][T12428] rdma_op ffff88814ce78180 conn xmit_rdma 0000000000000000
[  179.412977][T12428] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  179.421623][T12428] SELinux: failed to load policy
[  179.446290][T12437] loop0: detected capacity change from 0 to 512
[  179.452863][T12437] EXT4-fs: Ignoring removed i_version option
[  179.458927][T12437] EXT4-fs: Ignoring removed nobh option
[  179.465284][T12437] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  179.487499][T12437] EXT4-fs (loop0): 1 truncate cleaned up
[  179.515578][   T29] audit: type=1326 audit(1733204013.720:5841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  179.520584][T12445] pim6reg1: entered promiscuous mode
[  179.544197][T12445] pim6reg1: entered allmulticast mode
[  179.552466][   T29] audit: type=1326 audit(1733204013.740:5842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  179.575905][   T29] audit: type=1326 audit(1733204013.740:5843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  179.592504][T12450] loop5: detected capacity change from 0 to 128
[  179.599231][   T29] audit: type=1326 audit(1733204013.740:5844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm=34B9DF737F exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  179.635593][T12450] FAT-fs (loop5): error, clusters badly computed (4 != 3)
[  179.642779][T12450] FAT-fs (loop5): Filesystem has been set read-only
[  179.649737][T12450] FAT-fs (loop5): error, clusters badly computed (5 != 4)
[  179.656980][T12450] FAT-fs (loop5): error, clusters badly computed (6 != 5)
[  179.700685][T12456] loop5: detected capacity change from 0 to 512
[  179.718626][T12456] ext4 filesystem being mounted at /331/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.973476][T12471] loop3: detected capacity change from 0 to 512
[  179.992311][T12471] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.2269: bad orphan inode 13
[  180.002672][T12471] ext4_test_bit(bit=12, block=4) = 1
[  180.008024][T12471] is_bad_inode(inode)=0
[  180.012194][T12471] NEXT_ORPHAN(inode)=0
[  180.016300][T12471] max_ino=32
[  180.019504][T12471] i_nlink=1
[  180.125501][T12481] loop3: detected capacity change from 0 to 1024
[  180.276333][T12486] loop2: detected capacity change from 0 to 128
[  180.429969][T12492] sg_write: data in/out 231/14 bytes for SCSI command 0x0-- guessing data in;
[  180.429969][T12492]    program syz.2.2276 not setting count and/or reply_len properly
[  180.587561][T12500] loop2: detected capacity change from 0 to 512
[  180.594169][T12500] EXT4-fs: inline encryption not supported
[  180.614806][T12500] ext4 filesystem being mounted at /440/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.628456][T12500] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  180.642982][T12500] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  180.654601][T12500] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  180.667262][T12500] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  180.686573][   T29] kauditd_printk_skb: 106 callbacks suppressed
[  180.686587][   T29] audit: type=1326 audit(1733204014.890:5951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12505 comm="syz.5.2281" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f2977ff19 code=0x0
[  180.740891][T12506] ebt_limit: overflow, try lower: 570423552/2483027968
[  180.816083][T12513] loop2: detected capacity change from 0 to 256
[  180.827282][   T29] audit: type=1400 audit(1733204015.030:5952): avc:  denied  { mounton } for  pid=12512 comm="syz.2.2283" path="/442/bus" dev="tmpfs" ino=2367 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  180.828003][T12513] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.858851][T12513] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.067536][   T29] audit: type=1326 audit(1733204015.270:5953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.093525][   T29] audit: type=1326 audit(1733204015.270:5954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.117136][   T29] audit: type=1326 audit(1733204015.270:5955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.140709][   T29] audit: type=1326 audit(1733204015.270:5956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.164240][   T29] audit: type=1326 audit(1733204015.270:5957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.187777][   T29] audit: type=1326 audit(1733204015.270:5958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.211409][   T29] audit: type=1326 audit(1733204015.270:5959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.235007][   T29] audit: type=1326 audit(1733204015.290:5960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12514 comm="syz.3.2284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a491ff19 code=0x7ffc0000
[  181.451273][T12524] __nla_validate_parse: 13 callbacks suppressed
[  181.451283][T12524] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2288'.
[  181.477729][T12526] netlink: 132840 bytes leftover after parsing attributes in process `syz.2.2289'.
[  181.574939][T12536] loop2: detected capacity change from 0 to 512
[  182.177398][T12538] loop3: detected capacity change from 0 to 512
[  182.191889][T12538] EXT4-fs: inline encryption not supported
[  182.219022][T12538] ext4 filesystem being mounted at /478/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.232964][T12538] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  182.237436][T12545] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2296'.
[  182.250832][T12538] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  182.265052][T12538] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  182.278240][T12538] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  182.316113][T12548] loop0: detected capacity change from 0 to 256
[  182.338681][T12548] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  182.358013][T12548] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.399219][T12559] netlink: 132840 bytes leftover after parsing attributes in process `syz.2.2301'.
[  182.446672][T12564] delete_channel: no stack
[  182.457364][T12565] delete_channel: no stack
[  182.474910][T12569] ebt_limit: overflow, try lower: 570423552/2483027968
[  183.071330][T12574] sd 0:0:1:0: device reset
[  183.078073][T12574] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2306'.
[  183.323828][T12600] loop2: detected capacity change from 0 to 256
[  183.339291][T12600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  183.350261][T12600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  183.853864][T12613] loop4: detected capacity change from 0 to 512
[  183.866235][T12613] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  183.886432][T12613] EXT4-fs (loop4): 1 truncate cleaned up
[  183.910477][T12613] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12613 comm=syz.4.2324
[  183.954179][T12620] loop0: detected capacity change from 0 to 2048
[  183.996988][T12623] ebt_limit: overflow, try lower: 570423552/2483027968
[  184.005474][T12620]  loop0: p3 < > p4 < >
[  184.009644][T12620] loop0: partition table partially beyond EOD, truncated
[  184.016838][T12620] loop0: p3 start 4284289 is beyond EOD, truncated
[  184.119752][T12628] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.2329'.
[  184.167985][T12634] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  184.176695][T12634] SELinux: failed to load policy
[  184.246267][T12636] tmpfs: Bad value for 'mpol'
[  184.253135][T12636] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2333'.
[  184.871909][T12654] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2340'.
[  184.982647][T12663] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  184.991422][T12663] SELinux: failed to load policy
[  185.212025][T12680] ebt_limit: overflow, try lower: 570423552/2483027968
[  185.738740][T12689] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2352'.
[  185.818920][T12696] SELinux:  policydb version 0 does not match my version range 15-33
[  185.827131][T12696] SELinux: failed to load policy
[  185.979533][T12703] loop5: detected capacity change from 0 to 128
[  186.016454][   T29] kauditd_printk_skb: 285 callbacks suppressed
[  186.016469][   T29] audit: type=1326 audit(1733204020.220:6246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.057308][   T29] audit: type=1326 audit(1733204020.220:6247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.080907][   T29] audit: type=1326 audit(1733204020.220:6248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.104526][   T29] audit: type=1326 audit(1733204020.220:6249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.128125][   T29] audit: type=1326 audit(1733204020.220:6250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.131363][T12711] loop0: detected capacity change from 0 to 128
[  186.151640][   T29] audit: type=1326 audit(1733204020.220:6251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.151706][   T29] audit: type=1326 audit(1733204020.220:6252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.205045][   T29] audit: type=1326 audit(1733204020.250:6253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.229106][   T29] audit: type=1326 audit(1733204020.270:6254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.252727][   T29] audit: type=1326 audit(1733204020.270:6255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12708 comm="syz.5.2360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9f2977ff19 code=0x7ffc0000
[  186.297009][T12711] ext4 filesystem being mounted at /506/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  186.330083][T12719] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2363'.
[  186.431442][T12726] SELinux:  policydb version 0 does not match my version range 15-33
[  186.446362][T12726] SELinux: failed to load policy
[  186.595742][T12734] ebt_limit: overflow, try lower: 570423552/2483027968
[  186.635626][ T3304] EXT4-fs unmount: 40 callbacks suppressed
[  186.635643][ T3304] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  186.709758][T12739] FAULT_INJECTION: forcing a failure.
[  186.709758][T12739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.725567][T12739] CPU: 0 UID: 0 PID: 12739 Comm: syz.0.2369 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  186.736344][T12739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  186.746456][T12739] Call Trace:
[  186.749789][T12739]  <TASK>
[  186.752824][T12739]  dump_stack_lvl+0xf2/0x150
[  186.757542][T12739]  dump_stack+0x15/0x1a
[  186.761759][T12739]  should_fail_ex+0x223/0x230
[  186.766577][T12739]  should_fail+0xb/0x10
[  186.770739][T12739]  should_fail_usercopy+0x1a/0x20
[  186.775819][T12739]  _copy_from_user+0x1e/0xb0
[  186.780491][T12739]  generic_map_update_batch+0x379/0x520
[  186.786151][T12739]  ? __pfx_generic_map_update_batch+0x10/0x10
[  186.792265][T12739]  bpf_map_do_batch+0x28c/0x3f0
[  186.797156][T12739]  __sys_bpf+0x2e5/0x7a0
[  186.801404][T12739]  __x64_sys_bpf+0x43/0x50
[  186.805855][T12739]  x64_sys_call+0x2914/0x2dc0
[  186.810561][T12739]  do_syscall_64+0xc9/0x1c0
[  186.815072][T12739]  ? clear_bhb_loop+0x55/0xb0
[  186.819761][T12739]  ? clear_bhb_loop+0x55/0xb0
[  186.824488][T12739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.830530][T12739] RIP: 0033:0x7f0bc1bcff19
[  186.834988][T12739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.854600][T12739] RSP: 002b:00007f0bc0247058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  186.863060][T12739] RAX: ffffffffffffffda RBX: 00007f0bc1d95fa0 RCX: 00007f0bc1bcff19
[  186.871058][T12739] RDX: 0000000000000038 RSI: 0000000020000200 RDI: 000000000000001a
[  186.879024][T12739] RBP: 00007f0bc02470a0 R08: 0000000000000000 R09: 0000000000000000
[  186.887045][T12739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.895011][T12739] R13: 0000000000000000 R14: 00007f0bc1d95fa0 R15: 00007ffdc591b3e8
[  186.903032][T12739]  </TASK>
[  186.932400][T12741] IPv6: NLM_F_CREATE should be specified when creating new route
[  186.994974][T12747] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2374'.
[  187.037713][T12745] loop0: detected capacity change from 0 to 512
[  187.044233][T12745] EXT4-fs: inline encryption not supported
[  187.060589][T12752] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2376'.
[  187.073055][T12745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.086022][T12745] ext4 filesystem being mounted at /509/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.118446][T12745] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  187.135999][T12745] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  187.159403][T12745] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  187.173298][T12761] FAULT_INJECTION: forcing a failure.
[  187.173298][T12761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.173508][T12745] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  187.186436][T12761] CPU: 0 UID: 0 PID: 12761 Comm: syz.2.2378 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  187.186466][T12761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  187.186482][T12761] Call Trace:
[  187.186490][T12761]  <TASK>
[  187.224088][T12761]  dump_stack_lvl+0xf2/0x150
[  187.228751][T12761]  dump_stack+0x15/0x1a
[  187.232959][T12761]  should_fail_ex+0x223/0x230
[  187.237635][T12761]  should_fail+0xb/0x10
[  187.241844][T12761]  should_fail_usercopy+0x1a/0x20
[  187.246862][T12761]  _copy_to_user+0x20/0xa0
[  187.251350][T12761]  cp_statx+0x30b/0x360
[  187.255578][T12761]  __se_sys_statx+0x25a/0x270
[  187.260396][T12761]  __x64_sys_statx+0x67/0x80
[  187.265054][T12761]  x64_sys_call+0x1031/0x2dc0
[  187.269721][T12761]  do_syscall_64+0xc9/0x1c0
[  187.274227][T12761]  ? clear_bhb_loop+0x55/0xb0
[  187.278899][T12761]  ? clear_bhb_loop+0x55/0xb0
[  187.283567][T12761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.289523][T12761] RIP: 0033:0x7f33d73fff19
[  187.293927][T12761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.313527][T12761] RSP: 002b:00007f33d5a77058 EFLAGS: 00000246 ORIG_RAX: 000000000000014c
[  187.321956][T12761] RAX: ffffffffffffffda RBX: 00007f33d75c5fa0 RCX: 00007f33d73fff19
[  187.329978][T12761] RDX: 0000000000001000 RSI: 0000000000000000 RDI: 0000000000000006
[  187.338004][T12761] RBP: 00007f33d5a770a0 R08: 0000000020000440 R09: 0000000000000000
[  187.345964][T12761] R10: 0000000000000010 R11: 0000000000000246 R12: 0000000000000001
[  187.354047][T12761] R13: 0000000000000000 R14: 00007f33d75c5fa0 R15: 00007ffdc0852f08
[  187.362015][T12761]  </TASK>
[  187.430826][T12775] loop3: detected capacity change from 0 to 256
[  187.439750][T12775] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.440860][T12773] loop2: detected capacity change from 0 to 512
[  187.448198][T12775] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  187.465760][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.498837][T12773] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.515454][T12773] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.542068][T12773] rdma_op ffff88812b3fed80 conn xmit_rdma 0000000000000000
[  187.550099][T12773] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  187.559929][T12773] SELinux: failed to load policy
[  187.587141][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.634050][T12787] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2386'.
[  187.671115][T12789] loop2: detected capacity change from 0 to 256
[  187.694141][T12789] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  187.712495][T12789] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.107256][T12800] netlink: 'syz.3.2392': attribute type 4 has an invalid length.
[  188.399344][T12827] SELinux:  policydb version 0 does not match my version range 15-33
[  188.408079][T12827] SELinux: failed to load policy
[  188.458263][T12834] syz.3.2404[12834] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.458324][T12834] syz.3.2404[12834] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.470959][T12834] syz.3.2404[12834] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.502738][T12834] netlink: 148 bytes leftover after parsing attributes in process `syz.3.2404'.
[  188.536088][T12834] syzkaller1: entered promiscuous mode
[  188.541627][T12834] syzkaller1: entered allmulticast mode
[  188.601060][T12840] FAULT_INJECTION: forcing a failure.
[  188.601060][T12840] name failslab, interval 1, probability 0, space 0, times 0
[  188.613799][T12840] CPU: 1 UID: 0 PID: 12840 Comm: syz.2.2409 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  188.624572][T12840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  188.634640][T12840] Call Trace:
[  188.637981][T12840]  <TASK>
[  188.640911][T12840]  dump_stack_lvl+0xf2/0x150
[  188.645524][T12840]  dump_stack+0x15/0x1a
[  188.649769][T12840]  should_fail_ex+0x223/0x230
[  188.654490][T12840]  ? audit_log_d_path+0x96/0x250
[  188.659465][T12840]  should_failslab+0x8f/0xb0
[  188.664136][T12840]  __kmalloc_cache_noprof+0x4e/0x320
[  188.669524][T12840]  audit_log_d_path+0x96/0x250
[  188.674304][T12840]  ? __rcu_read_unlock+0x4e/0x70
[  188.679278][T12840]  audit_log_d_path_exe+0x42/0x70
[  188.684316][T12840]  audit_log_task+0x192/0x1c0
[  188.688996][T12840]  audit_seccomp+0x68/0x130
[  188.693548][T12840]  __seccomp_filter+0x6fa/0x1180
[  188.698526][T12840]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  188.704190][T12840]  ? vfs_write+0x596/0x920
[  188.708611][T12840]  ? putname+0xcf/0xf0
[  188.712683][T12840]  __secure_computing+0x9f/0x1c0
[  188.717643][T12840]  syscall_trace_enter+0xd1/0x1f0
[  188.722684][T12840]  ? fpregs_assert_state_consistent+0x83/0xa0
[  188.728768][T12840]  do_syscall_64+0xaa/0x1c0
[  188.733351][T12840]  ? clear_bhb_loop+0x55/0xb0
[  188.738061][T12840]  ? clear_bhb_loop+0x55/0xb0
[  188.742744][T12840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.748639][T12840] RIP: 0033:0x7f33d73fff19
[  188.753055][T12840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.772674][T12840] RSP: 002b:00007f33d5a77058 EFLAGS: 00000246 ORIG_RAX: 00000000000000f3
[  188.781095][T12840] RAX: ffffffffffffffda RBX: 00007f33d75c5fa0 RCX: 00007f33d73fff19
[  188.789084][T12840] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[  188.797068][T12840] RBP: 00007f33d5a770a0 R08: 0000000000000000 R09: 0000000000000000
[  188.805092][T12840] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  188.813076][T12840] R13: 0000000000000000 R14: 00007f33d75c5fa0 R15: 00007ffdc0852f08
[  188.821060][T12840]  </TASK>
[  188.867337][T12858] loop5: detected capacity change from 0 to 512
[  188.875901][T12858] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  188.896847][T12858] EXT4-fs (loop5): 1 truncate cleaned up
[  188.902919][T12858] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.921513][T12858] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12858 comm=syz.5.2414
[  189.440172][T12867] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2417'.
[  189.467202][T12867] FAULT_INJECTION: forcing a failure.
[  189.467202][T12867] name failslab, interval 1, probability 0, space 0, times 0
[  189.479933][T12867] CPU: 0 UID: 0 PID: 12867 Comm: syz.0.2417 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  189.490732][T12867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  189.500846][T12867] Call Trace:
[  189.504206][T12867]  <TASK>
[  189.507137][T12867]  dump_stack_lvl+0xf2/0x150
[  189.511748][T12867]  dump_stack+0x15/0x1a
[  189.515895][T12867]  should_fail_ex+0x223/0x230
[  189.520571][T12867]  should_failslab+0x8f/0xb0
[  189.525195][T12867]  __kmalloc_noprof+0xab/0x3f0
[  189.530145][T12867]  ? _ib_alloc_device+0x37/0x430
[  189.535130][T12867]  _ib_alloc_device+0x37/0x430
[  189.539908][T12867]  siw_newlink+0xb6/0x6e0
[  189.544261][T12867]  nldev_newlink+0x32f/0x360
[  189.548867][T12867]  ? __pfx_nldev_newlink+0x10/0x10
[  189.554038][T12867]  rdma_nl_rcv+0x46f/0x5a0
[  189.558521][T12867]  ? should_fail_ex+0xd7/0x230
[  189.563334][T12867]  netlink_unicast+0x599/0x670
[  189.568128][T12867]  netlink_sendmsg+0x5cc/0x6e0
[  189.572961][T12867]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.578242][T12867]  __sock_sendmsg+0x140/0x180
[  189.582917][T12867]  ____sys_sendmsg+0x312/0x410
[  189.587708][T12867]  __sys_sendmsg+0x19d/0x230
[  189.592377][T12867]  __x64_sys_sendmsg+0x46/0x50
[  189.597142][T12867]  x64_sys_call+0x2734/0x2dc0
[  189.601895][T12867]  do_syscall_64+0xc9/0x1c0
[  189.606403][T12867]  ? clear_bhb_loop+0x55/0xb0
[  189.611124][T12867]  ? clear_bhb_loop+0x55/0xb0
[  189.615804][T12867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.621787][T12867] RIP: 0033:0x7f0bc1bcff19
[  189.626256][T12867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.645865][T12867] RSP: 002b:00007f0bc0247058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.654264][T12867] RAX: ffffffffffffffda RBX: 00007f0bc1d95fa0 RCX: 00007f0bc1bcff19
[  189.662260][T12867] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 000000000000000a
[  189.670234][T12867] RBP: 00007f0bc02470a0 R08: 0000000000000000 R09: 0000000000000000
[  189.678214][T12867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.686204][T12867] R13: 0000000000000000 R14: 00007f0bc1d95fa0 R15: 00007ffdc591b3e8
[  189.694199][T12867]  </TASK>
[  189.788220][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.882031][T12887] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2425'.
[  189.891077][T12887] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2425'.
[  189.900073][T12887] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2425'.
[  189.917368][T12887] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2425'.
[  189.946120][T12887] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2425'.
[  189.962162][T12892] syz.5.2426[12892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.962225][T12892] syz.5.2426[12892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.980384][T12892] syz.5.2426[12892] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  190.111295][T12894] loop2: detected capacity change from 0 to 512
[  190.228658][T12894] EXT4-fs: inline encryption not supported
[  190.255437][T12907] loop4: detected capacity change from 0 to 512
[  190.327535][T12894] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.353532][T12907] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  190.368896][T12894] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.401801][T12894] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  190.414709][T12907] EXT4-fs (loop4): 1 truncate cleaned up
[  190.420626][T12894] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  190.422268][T12907] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.432143][T12894] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  190.451664][T12907] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12907 comm=syz.4.2432
[  190.455652][T12894] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  190.494101][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.516284][T12924] SELinux:  policydb version 0 does not match my version range 15-33
[  190.524686][T12924] SELinux: failed to load policy
[  190.593886][T12934] syz.2.2441[12934] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  190.593941][T12934] syz.2.2441[12934] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  190.605484][T12934] syz.2.2441[12934] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  190.640174][T12936] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.766721][T12936] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.818005][T12936] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.869290][T12936] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.898987][T12961] SELinux:  policydb version 0 does not match my version range 15-33
[  190.908578][T12961] SELinux: failed to load policy
[  190.925029][T12936] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  190.951882][T12936] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  190.972488][T12936] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.007931][T12968] loop2: detected capacity change from 0 to 512
[  191.016518][T12968] EXT4-fs: inline encryption not supported
[  191.022964][T12936] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.063213][T12968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.081519][T12968] ext4 filesystem being mounted at /488/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.125381][T12968] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  191.156030][T12968] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  191.196387][T12968] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  191.210282][T12968] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  191.222641][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.247504][T12981] tipc: Started in network mode
[  191.252384][T12981] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  191.261585][T12981] tipc: Enabled bearer <udp:syz0>, priority 10
[  191.315694][   T29] kauditd_printk_skb: 465 callbacks suppressed
[  191.315707][   T29] audit: type=1326 audit(1733204025.510:6721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.316400][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.321959][   T29] audit: type=1326 audit(1733204025.510:6722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.377854][   T29] audit: type=1326 audit(1733204025.510:6723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.401519][   T29] audit: type=1326 audit(1733204025.510:6724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.425060][   T29] audit: type=1326 audit(1733204025.510:6725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.448684][   T29] audit: type=1326 audit(1733204025.510:6726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.449848][T12991] SELinux:  policydb version 0 does not match my version range 15-33
[  191.472261][   T29] audit: type=1326 audit(1733204025.510:6727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.472290][   T29] audit: type=1326 audit(1733204025.510:6728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.527415][   T29] audit: type=1326 audit(1733204025.550:6729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.545246][T12991] SELinux: failed to load policy
[  191.550991][   T29] audit: type=1326 audit(1733204025.550:6730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12988 comm="syz.0.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0bc1bcff19 code=0x7ffc0000
[  191.617016][T12993] FAULT_INJECTION: forcing a failure.
[  191.617016][T12993] name failslab, interval 1, probability 0, space 0, times 0
[  191.629734][T12993] CPU: 1 UID: 0 PID: 12993 Comm: syz.2.2458 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  191.640589][T12993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  191.650641][T12993] Call Trace:
[  191.654362][T12993]  <TASK>
[  191.657332][T12993]  dump_stack_lvl+0xf2/0x150
[  191.661937][T12993]  dump_stack+0x15/0x1a
[  191.666151][T12993]  should_fail_ex+0x223/0x230
[  191.670862][T12993]  should_failslab+0x8f/0xb0
[  191.675500][T12993]  kmem_cache_alloc_node_noprof+0x59/0x320
[  191.681307][T12993]  ? alloc_vmap_area+0x1e1/0x1830
[  191.686479][T12993]  ? memcg_list_lru_alloc+0xce/0x4e0
[  191.691797][T12993]  alloc_vmap_area+0x1e1/0x1830
[  191.696660][T12993]  ? should_fail_ex+0x31/0x230
[  191.701556][T12993]  ? should_fail_ex+0xd7/0x230
[  191.706338][T12993]  ? should_failslab+0x8f/0xb0
[  191.711126][T12993]  ? __kmalloc_cache_node_noprof+0x18c/0x320
[  191.717121][T12993]  __get_vm_area_node+0x162/0x1c0
[  191.722140][T12993]  __vmalloc_node_range_noprof+0x280/0xe80
[  191.728006][T12993]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  191.733544][T12993]  ? mntput_no_expire+0x70/0x3c0
[  191.738539][T12993]  ? avc_has_perm_noaudit+0x1cc/0x210
[  191.743932][T12993]  ? selinux_capable+0x1f2/0x260
[  191.748922][T12993]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  191.754494][T12993]  __vmalloc_noprof+0x5e/0x70
[  191.759168][T12993]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  191.764792][T12993]  bpf_prog_alloc_no_stats+0x49/0x380
[  191.770151][T12993]  ? bpf_prog_alloc+0x28/0x150
[  191.774905][T12993]  bpf_prog_alloc+0x3a/0x150
[  191.779510][T12993]  bpf_prog_load+0x4d1/0x1070
[  191.784175][T12993]  ? __rcu_read_unlock+0x4e/0x70
[  191.789232][T12993]  __sys_bpf+0x463/0x7a0
[  191.793467][T12993]  __x64_sys_bpf+0x43/0x50
[  191.797883][T12993]  x64_sys_call+0x2914/0x2dc0
[  191.802564][T12993]  do_syscall_64+0xc9/0x1c0
[  191.807102][T12993]  ? clear_bhb_loop+0x55/0xb0
[  191.811817][T12993]  ? clear_bhb_loop+0x55/0xb0
[  191.816481][T12993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.822373][T12993] RIP: 0033:0x7f33d73fff19
[  191.826787][T12993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.846383][T12993] RSP: 002b:00007f33d5a77058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  191.854801][T12993] RAX: ffffffffffffffda RBX: 00007f33d75c5fa0 RCX: 00007f33d73fff19
[  191.862806][T12993] RDX: 0000000000000094 RSI: 00000000200005c0 RDI: 0000000000000005
[  191.870778][T12993] RBP: 00007f33d5a770a0 R08: 0000000000000000 R09: 0000000000000000
[  191.878870][T12993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.886831][T12993] R13: 0000000000000001 R14: 00007f33d75c5fa0 R15: 00007ffdc0852f08
[  191.894847][T12993]  </TASK>
[  191.898039][T12993] syz.2.2458: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  191.914062][T12993] CPU: 1 UID: 0 PID: 12993 Comm: syz.2.2458 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  191.924837][T12993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  191.934892][T12993] Call Trace:
[  191.938171][T12993]  <TASK>
[  191.941108][T12993]  dump_stack_lvl+0xf2/0x150
[  191.945822][T12993]  dump_stack+0x15/0x1a
[  191.949985][T12993]  warn_alloc+0x145/0x1b0
[  191.954364][T12993]  __vmalloc_node_range_noprof+0x2a5/0xe80
[  191.960242][T12993]  ? mntput_no_expire+0x70/0x3c0
[  191.965197][T12993]  ? avc_has_perm_noaudit+0x1cc/0x210
[  191.970569][T12993]  ? selinux_capable+0x1f2/0x260
[  191.975492][T12993]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  191.981048][T12993]  __vmalloc_noprof+0x5e/0x70
[  191.985833][T12993]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  191.991385][T12993]  bpf_prog_alloc_no_stats+0x49/0x380
[  191.996751][T12993]  ? bpf_prog_alloc+0x28/0x150
[  192.001502][T12993]  bpf_prog_alloc+0x3a/0x150
[  192.006140][T12993]  bpf_prog_load+0x4d1/0x1070
[  192.010805][T12993]  ? __rcu_read_unlock+0x4e/0x70
[  192.015746][T12993]  __sys_bpf+0x463/0x7a0
[  192.019980][T12993]  __x64_sys_bpf+0x43/0x50
[  192.024426][T12993]  x64_sys_call+0x2914/0x2dc0
[  192.029155][T12993]  do_syscall_64+0xc9/0x1c0
[  192.033644][T12993]  ? clear_bhb_loop+0x55/0xb0
[  192.038394][T12993]  ? clear_bhb_loop+0x55/0xb0
[  192.043071][T12993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.048985][T12993] RIP: 0033:0x7f33d73fff19
[  192.053423][T12993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.073025][T12993] RSP: 002b:00007f33d5a77058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  192.081488][T12993] RAX: ffffffffffffffda RBX: 00007f33d75c5fa0 RCX: 00007f33d73fff19
[  192.089590][T12993] RDX: 0000000000000094 RSI: 00000000200005c0 RDI: 0000000000000005
[  192.097725][T12993] RBP: 00007f33d5a770a0 R08: 0000000000000000 R09: 0000000000000000
[  192.105685][T12993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.113650][T12993] R13: 0000000000000001 R14: 00007f33d75c5fa0 R15: 00007ffdc0852f08
[  192.121616][T12993]  </TASK>
[  192.124713][T12993] Mem-Info:
[  192.127927][T12993] active_anon:5184 inactive_anon:4 isolated_anon:0
[  192.127927][T12993]  active_file:3934 inactive_file:8601 isolated_file:0
[  192.127927][T12993]  unevictable:33535 dirty:418 writeback:0
[  192.127927][T12993]  slab_reclaimable:2234 slab_unreclaimable:14384
[  192.127927][T12993]  mapped:39234 shmem:578 pagetables:942
[  192.127927][T12993]  sec_pagetables:0 bounce:0
[  192.127927][T12993]  kernel_misc_reclaimable:0
[  192.127927][T12993]  free:1853653 free_pcp:17759 free_cma:0
[  192.173093][T12993] Node 0 active_anon:20736kB inactive_anon:16kB active_file:15736kB inactive_file:34404kB unevictable:134140kB isolated(anon):0kB isolated(file):0kB mapped:156936kB dirty:1672kB writeback:0kB shmem:2312kB writeback_tmp:0kB kernel_stack:3024kB pagetables:3768kB sec_pagetables:0kB all_unreclaimable? no
[  192.201481][T12993] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  192.228368][T12993] lowmem_reserve[]: 0 2866 7844 0
[  192.233497][T12993] Node 0 DMA32 free:2950380kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953912kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  192.253476][T13000] loop3: detected capacity change from 0 to 736
[  192.261949][T12993] lowmem_reserve[]: 0 0 4978 0
[  192.273030][T12993] Node 0 Normal free:4446096kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:21316kB inactive_anon:16kB active_file:15736kB inactive_file:34404kB unevictable:148060kB writepending:1672kB present:5242880kB managed:5098208kB mlocked:148112kB bounce:0kB free_pcp:55560kB local_pcp:45932kB free_cma:0kB
[  192.304308][T12993] lowmem_reserve[]: 0 0 0 0
[  192.308854][T12993] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  192.321613][T12993] Node 0 DMA32: 5*4kB (M) 1*8kB (M) 5*16kB (M) 6*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950380kB
[  192.337775][T12993] Node 0 Normal: 1*4kB (M) 2*8kB (UE) 275*16kB (UME) 266*32kB (UE) 152*64kB (UE) 421*128kB (UME) 335*256kB (UME) 197*512kB (UME) 147*1024kB (UM) 87*2048kB (UM) 939*4096kB (UM) = 4438020kB
[  192.340704][T13000] ISOFS: Logical zone size(8) < hardware blocksize(1024)
[  192.356608][T12993] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  192.356627][T12993] 24610 total pagecache pages
[  192.356634][T12993] 0 pages in swap cache
[  192.356639][T12993] Free swap  = 124460kB
[  192.356645][T12993] Total swap = 124996kB
[  192.356652][T12993] 2097051 pages RAM
[  192.356658][T12993] 0 pages HighMem/MovableOnly
[  192.398609][T12993] 80181 pages reserved
[  192.402973][ T1037] tipc: Node number set to 4269801491
[  192.415740][T13000] bond1: entered promiscuous mode
[  192.420807][T13000] bond1: entered allmulticast mode
[  192.426573][T13000] 8021q: adding VLAN 0 to HW filter on device bond1
[  192.438557][T13000] bond1 (unregistering): Released all slaves
[  192.484329][T13012] loop0: detected capacity change from 0 to 512
[  192.511393][T13016] loop2: detected capacity change from 0 to 512
[  192.521763][T13016] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  192.539030][T13016] EXT4-fs (loop2): 1 truncate cleaned up
[  192.540510][T13012] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.545068][T13016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.558824][T13012] ext4 filesystem being mounted at /531/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.579901][T13016] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13016 comm=syz.2.2467
[  192.603467][T13012] rdma_op ffff8881286fdd80 conn xmit_rdma 0000000000000000
[  192.612027][T13012] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  192.620890][T13012] SELinux: failed to load policy
[  192.637817][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.808540][T13024] __nla_validate_parse: 7 callbacks suppressed
[  192.808550][T13024] netlink: 132980 bytes leftover after parsing attributes in process `syz.5.2470'.
[  193.386830][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.416674][T13034] loop2: detected capacity change from 0 to 512
[  193.444638][T13034] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.2473: iget: bogus i_mode (0)
[  193.465301][T13034] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2473: couldn't read orphan inode 17 (err -117)
[  193.481853][T13034] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.499150][T13034] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.2473: bg 0: block 7: invalid block bitmap
[  193.612497][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.661332][T13042] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2476'.
[  193.716774][T13046] loop3: detected capacity change from 0 to 512
[  193.748887][T13053] syz.2.2480[13053] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.772209][T13046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.806334][T13055] netlink: 132980 bytes leftover after parsing attributes in process `syz.0.2481'.
[  193.847076][T13046] ext4 filesystem being mounted at /517/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.899664][T13046] rdma_op ffff888141c67d80 conn xmit_rdma 0000000000000000
[  193.903475][T13062] netlink: 'syz.2.2484': attribute type 10 has an invalid length.
[  193.907781][T13046] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  193.923487][T13046] SELinux: failed to load policy
[  193.945979][T13062] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.964228][T13062] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  193.975749][T13068] loop2: detected capacity change from 0 to 512
[  193.989546][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.009728][T13068] EXT4-fs error (device loop2): ext4_get_branch:178: inode #13: block 1024: comm syz.2.2484: invalid block
[  194.023163][T13074] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2488'.
[  194.028061][T13068] EXT4-fs (loop2): Remounting filesystem read-only
[  194.042795][T13068] EXT4-fs (loop2): 1 truncate cleaned up
[  194.062037][T13068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.074349][T13068] SELinux: (dev loop2, type ext4) getxattr errno 5
[  194.082889][T13068] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.741171][T13097] loop5: detected capacity change from 0 to 512
[  194.767785][T13097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.780626][T13097] ext4 filesystem being mounted at /362/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.799677][T13097] rdma_op ffff8881186b1d80 conn xmit_rdma 0000000000000000
[  194.807897][T13097] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  194.822158][T13097] SELinux: failed to load policy
[  194.839121][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.859806][T13104] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2499'.
[  194.878219][T13106] loop5: detected capacity change from 0 to 1024
[  194.885919][T13106] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  194.904084][T13106] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  194.912550][T13106] EXT4-fs (loop5): orphan cleanup on readonly fs
[  194.920262][T13106] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  194.923717][T13111] FAULT_INJECTION: forcing a failure.
[  194.923717][T13111] name failslab, interval 1, probability 0, space 0, times 0
[  194.934909][T13106] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  194.947630][T13111] CPU: 1 UID: 0 PID: 13111 Comm: syz.0.2501 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  194.954326][T13106] EXT4-fs error (device loop5): ext4_free_blocks:6589: comm syz.5.2498: Freeing blocks not in datazone - block = 0, count = 4096
[  194.964827][T13111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.964872][T13111] Call Trace:
[  194.964879][T13111]  <TASK>
[  194.964886][T13111]  dump_stack_lvl+0xf2/0x150
[  194.964919][T13111]  dump_stack+0x15/0x1a
[  194.964944][T13111]  should_fail_ex+0x223/0x230
[  194.964969][T13111]  should_failslab+0x8f/0xb0
[  194.980598][T13106] EXT4-fs (loop5): Remounting filesystem read-only
[  194.988275][T13111]  kmem_cache_alloc_noprof+0x52/0x320
[  194.991694][T13106] EXT4-fs (loop5): 1 orphan inode deleted
[  194.994473][T13111]  ? dst_alloc+0xc0/0x100
[  194.999418][T13106] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  195.003195][T13111]  dst_alloc+0xc0/0x100
[  195.007991][T13106] SELinux: (dev loop5, type ext4) getxattr errno 5
[  195.012432][T13111]  ? ip_rt_get_source+0x172/0x390
[  195.020428][T13106] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.024257][T13111]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[  195.077750][T13111]  ip_route_output_key_hash+0x7b/0xb0
[  195.083124][T13111]  __ip4_datagram_connect+0x4c0/0x7b0
[  195.088517][T13111]  __ip6_datagram_connect+0x5a0/0x830
[  195.093957][T13111]  ? release_sock+0x117/0x150
[  195.098633][T13111]  ip6_datagram_connect_v6_only+0x52/0x80
[  195.104351][T13111]  inet_dgram_connect+0x11d/0x1b0
[  195.109443][T13111]  ? __pfx_inet_dgram_connect+0x10/0x10
[  195.114988][T13111]  __sys_connect+0x18f/0x1b0
[  195.119614][T13111]  __x64_sys_connect+0x41/0x50
[  195.124437][T13111]  x64_sys_call+0x22a7/0x2dc0
[  195.129136][T13111]  do_syscall_64+0xc9/0x1c0
[  195.133689][T13111]  ? clear_bhb_loop+0x55/0xb0
[  195.138398][T13111]  ? clear_bhb_loop+0x55/0xb0
[  195.143114][T13111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.149125][T13111] RIP: 0033:0x7f0bc1bcff19
[  195.153569][T13111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.173185][T13111] RSP: 002b:00007f0bc0247058 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  195.181588][T13111] RAX: ffffffffffffffda RBX: 00007f0bc1d95fa0 RCX: 00007f0bc1bcff19
[  195.189610][T13111] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003
[  195.197731][T13111] RBP: 00007f0bc02470a0 R08: 0000000000000000 R09: 0000000000000000
[  195.205774][T13111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.213737][T13111] R13: 0000000000000000 R14: 00007f0bc1d95fa0 R15: 00007ffdc591b3e8
[  195.221774][T13111]  </TASK>
[  195.307573][T13122] mmap: syz.2.2505 (13122) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  195.309090][T13113] loop4: detected capacity change from 0 to 512
[  195.331399][T13113] EXT4-fs: inline encryption not supported
[  195.368344][T13113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.390885][T13133] loop5: detected capacity change from 0 to 256
[  195.398092][T13113] ext4 filesystem being mounted at /498/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.416309][T13133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.425653][T13113] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  195.427857][T13133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.441063][T13113] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  195.456406][T13113] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  195.458369][T13136] loop0: detected capacity change from 0 to 512
[  195.469614][T13113] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  195.497933][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.506511][T13136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.519790][T13136] ext4 filesystem being mounted at /543/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.527929][T13140] netlink: 132840 bytes leftover after parsing attributes in process `syz.4.2510'.
[  195.546626][T13136] rdma_op ffff888148e87d80 conn xmit_rdma 0000000000000000
[  195.562035][T13136] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  195.573174][T13136] SELinux: failed to load policy
[  195.586616][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.260692][T13161] netlink: 300 bytes leftover after parsing attributes in process `syz.2.2517'.
[  196.525508][   T29] kauditd_printk_skb: 197 callbacks suppressed
[  196.525524][   T29] audit: type=1326 audit(1733204030.730:6926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.534893][T13168] FAULT_INJECTION: forcing a failure.
[  196.534893][T13168] name failslab, interval 1, probability 0, space 0, times 0
[  196.555814][   T29] audit: type=1326 audit(1733204030.730:6927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.568460][T13168] CPU: 0 UID: 0 PID: 13168 Comm: syz.4.2520 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  196.592038][   T29] audit: type=1326 audit(1733204030.730:6928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.602625][T13168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  196.602639][T13168] Call Trace:
[  196.602646][T13168]  <TASK>
[  196.602653][T13168]  dump_stack_lvl+0xf2/0x150
[  196.626173][   T29] audit: type=1326 audit(1733204030.730:6929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.636152][T13168]  dump_stack+0x15/0x1a
[  196.636180][T13168]  should_fail_ex+0x223/0x230
[  196.639464][   T29] audit: type=1326 audit(1733204030.730:6930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.642384][T13168]  ? audit_log_d_path+0x96/0x250
[  196.646957][   T29] audit: type=1326 audit(1733204030.730:6931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.670405][T13168]  should_failslab+0x8f/0xb0
[  196.674555][   T29] audit: type=1326 audit(1733204030.730:6932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.679197][T13168]  __kmalloc_cache_noprof+0x4e/0x320
[  196.679225][T13168]  audit_log_d_path+0x96/0x250
[  196.702654][   T29] audit: type=1326 audit(1733204030.730:6933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.707531][T13168]  ? __rcu_read_unlock+0x4e/0x70
[  196.730964][   T29] audit: type=1326 audit(1733204030.730:6934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.735498][T13168]  audit_log_d_path_exe+0x42/0x70
[  196.735524][T13168]  audit_log_task+0x192/0x1c0
[  196.735573][T13168]  audit_seccomp+0x68/0x130
[  196.759012][   T29] audit: type=1326 audit(1733204030.730:6935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13167 comm="syz.4.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff2df92ff19 code=0x7ffc0000
[  196.764267][T13168]  __seccomp_filter+0x6fa/0x1180
[  196.838480][T13173] SELinux:  policydb version 0 does not match my version range 15-33
[  196.858406][T13168]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  196.858443][T13168]  ? vfs_write+0x596/0x920
[  196.858494][T13168]  __secure_computing+0x9f/0x1c0
[  196.864436][T13173] SELinux: failed to load policy
[  196.871443][T13168]  syscall_trace_enter+0xd1/0x1f0
[  196.896743][T13168]  ? fpregs_assert_state_consistent+0x83/0xa0
[  196.896797][T13168]  do_syscall_64+0xaa/0x1c0
[  196.896814][T13168]  ? clear_bhb_loop+0x55/0xb0
[  196.896830][T13168]  ? clear_bhb_loop+0x55/0xb0
[  196.896848][T13168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.896948][T13168] RIP: 0033:0x7ff2df92ff19
[  196.896962][T13168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.896979][T13168] RSP: 002b:00007ff2ddfa7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[  196.896996][T13168] RAX: ffffffffffffffda RBX: 00007ff2dfaf5fa0 RCX: 00007ff2df92ff19
[  196.897009][T13168] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  196.897023][T13168] RBP: 00007ff2ddfa70a0 R08: 0000000000000000 R09: 0000000000000000
[  196.897037][T13168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.897053][T13168] R13: 0000000000000000 R14: 00007ff2dfaf5fa0 R15: 00007ffc8bee7618
[  196.897068][T13168]  </TASK>
[  196.911259][T13176] SELinux:  policydb version 0 does not match my version range 15-33
[  197.020842][T13176] SELinux: failed to load policy
[  197.121789][T13188] SELinux:  policydb version 0 does not match my version range 15-33
[  197.148203][T13188] SELinux: failed to load policy
[  197.227135][T13199] SELinux:  policydb version 0 does not match my version range 15-33
[  197.255731][T13199] SELinux: failed to load policy
[  197.272353][T13210] SELinux:  policydb version 0 does not match my version range 15-33
[  197.290864][T13210] SELinux: failed to load policy
[  197.344469][T13220] loop4: detected capacity change from 0 to 512
[  197.358352][T13220] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.399503][T13220] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  197.419386][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.466449][T13239] loop4: detected capacity change from 0 to 512
[  197.496773][T13239] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.509461][T13239] ext4 filesystem being mounted at /511/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.523672][T13239] rdma_op ffff88814c46f580 conn xmit_rdma 0000000000000000
[  197.531656][T13239] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  197.540310][T13239] SELinux: failed to load policy
[  197.553370][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.865028][T13271] SELinux:  policydb version 0 does not match my version range 15-33
[  197.873223][T13271] SELinux: failed to load policy
[  197.891379][T13273] netlink: 132840 bytes leftover after parsing attributes in process `syz.4.2560'.
[  198.045526][T13298] SELinux:  policydb version 0 does not match my version range 15-33
[  198.053634][T13298] SELinux: failed to load policy
[  198.073853][T13300] netlink: 132840 bytes leftover after parsing attributes in process `syz.4.2572'.
[  198.621177][T13324] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.666412][T13324] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.673928][T13325] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2580'.
[  198.726316][T13324] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.766620][T13324] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.830567][T13324] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  198.840628][T13324] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  198.850825][T13324] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  198.861321][T13324] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  198.887371][T13328] loop2: detected capacity change from 0 to 256
[  198.897212][T13328] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.905764][T13328] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  199.106697][T13333] SELinux:  policydb version 0 does not match my version range 15-33
[  199.114829][T13333] SELinux: failed to load policy
[  199.236560][T13350] loop0: detected capacity change from 0 to 512
[  199.243342][T13350] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  199.254878][T13350] EXT4-fs (loop0): 1 truncate cleaned up
[  199.260910][T13350] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.279720][T13350] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13350 comm=syz.0.2590
[  199.484808][T13354] loop2: detected capacity change from 0 to 164
[  199.491867][T13354] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  199.789812][T13357] netlink: 132840 bytes leftover after parsing attributes in process `syz.4.2592'.
[  200.039673][T13369] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.076383][T13369] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.092006][T13370] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2596'.
[  200.109425][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.136940][T13369] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.176805][T13369] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.221053][T13369] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.231503][T13369] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.242233][T13369] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.252561][T13369] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.336826][T13386] loop5: detected capacity change from 0 to 512
[  200.347578][T13382] loop0: detected capacity change from 0 to 512
[  200.359486][T13386] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.361574][T13382] EXT4-fs: inline encryption not supported
[  200.397070][T13393] netlink: 132840 bytes leftover after parsing attributes in process `syz.2.2603'.
[  200.397315][T13382] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.426757][T13382] ext4 filesystem being mounted at /565/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.453065][T13382] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  200.465809][T13382] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm +}[@: mark_inode_dirty error
[  200.480125][T13401] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  200.490686][T13382] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm +}[@: corrupted inode contents
[  200.502239][T13382] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm +}[@: mark_inode_dirty error
[  200.524998][ T4796] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.545734][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.634400][T13412] netem: change failed
[  200.645880][T13414] loop5: detected capacity change from 0 to 164
[  200.652941][T13414] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  201.367739][ T2142] ==================================================================
[  201.375837][ T2142] BUG: KCSAN: data-race in n_tty_flush_buffer / n_tty_lookahead_flow_ctrl
[  201.384325][ T2142] 
[  201.386626][ T2142] write to 0xffffc90003f8a270 of 8 bytes by task 13407 on cpu 0:
[  201.394318][ T2142]  n_tty_flush_buffer+0x9f/0x190
[  201.399247][ T2142]  tty_ldisc_hangup+0x72/0x370
[  201.404029][ T2142]  __tty_hangup+0x3b1/0x530
[  201.408526][ T2142]  tty_vhangup+0x17/0x20
[  201.412766][ T2142]  pty_close+0x262/0x280
[  201.417004][ T2142]  tty_release+0x206/0x930
[  201.421416][ T2142]  __fput+0x17a/0x6d0
[  201.425388][ T2142]  ____fput+0x1c/0x30
[  201.429358][ T2142]  task_work_run+0x13a/0x1a0
[  201.433937][ T2142]  get_signal+0xe78/0x1000
[  201.438347][ T2142]  arch_do_signal_or_restart+0x95/0x4b0
[  201.443890][ T2142]  syscall_exit_to_user_mode+0x62/0x120
[  201.449429][ T2142]  do_syscall_64+0xd6/0x1c0
[  201.453920][ T2142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.459810][ T2142] 
[  201.462119][ T2142] read-write to 0xffffc90003f8a270 of 8 bytes by task 2142 on cpu 1:
[  201.470171][ T2142]  n_tty_lookahead_flow_ctrl+0x48/0x130
[  201.475710][ T2142]  tty_port_default_lookahead_buf+0x8a/0xc0
[  201.481605][ T2142]  flush_to_ldisc+0x31c/0x410
[  201.486277][ T2142]  process_scheduled_works+0x483/0x9a0
[  201.491728][ T2142]  worker_thread+0x51d/0x6f0
[  201.496318][ T2142]  kthread+0x1d1/0x210
[  201.500374][ T2142]  ret_from_fork+0x4b/0x60
[  201.504777][ T2142]  ret_from_fork_asm+0x1a/0x30
[  201.509529][ T2142] 
[  201.511835][ T2142] value changed: 0x00000000000027ff -> 0x0000000000000000
[  201.518929][ T2142] 
[  201.521236][ T2142] Reported by Kernel Concurrency Sanitizer on:
[  201.527367][ T2142] CPU: 1 UID: 0 PID: 2142 Comm: kworker/u8:8 Not tainted 6.13.0-rc1-syzkaller-00002-gcdd30ebb1b9f #0
[  201.538204][ T2142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  201.548247][ T2142] Workqueue: events_unbound flush_to_ldisc
[  201.554056][ T2142] ==================================================================