last executing test programs:

40.396629017s ago: executing program 0 (id=98):
syz_clone3(&(0x7f0000000200)={0x80018000, &(0x7f0000000000)=<r0=>0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=<r1=>0x0, {0x4e5}, &(0x7f00000000c0)=""/176, 0xb0, &(0x7f0000000180)=""/61, &(0x7f00000001c0)=[0xffffffffffffffff, 0x0], 0x2}, 0x58)
stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000340)={r1, 0xffffffffffffffff, r3}, 0xc) (async)
setsockopt$MISDN_TIME_STAMP(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000380), 0x4)
r4 = signalfd4(0xffffffffffffffff, &(0x7f00000003c0)={[0xb77]}, 0x8, 0x1000)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r5=>r0, {0x4}}, './file0\x00'})
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r4)
sendmsg$NL80211_CMD_DEL_PMK(r6, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x68, r7, 0x1, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x1c}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}}, 0x20000000) (async)
recvmmsg(r4, &(0x7f00000027c0)=[{{&(0x7f00000005c0)=@ieee802154, 0x80, &(0x7f0000002740)=[{&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f0000002640)=""/242, 0xf2}], 0x3, &(0x7f0000002780)=""/47, 0x2f}, 0x10000}], 0x1, 0x40002000, 0x0) (async)
r8 = openat$incfs(r4, &(0x7f0000002800)='.log\x00', 0x0, 0x108)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r8, 0xc018937a, &(0x7f0000002840)={{0x1, 0x1, 0x18, <r9=>r6, {0x2}}, './file0\x00'})
r10 = open(&(0x7f0000002880)='./file1\x00', 0x4884c0, 0x48) (async)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r4, 0x84, 0x74, &(0x7f00000028c0)=""/187, &(0x7f0000002980)=0xbb)
quotactl_fd$Q_GETQUOTA(r10, 0xffffffff80000702, r2, &(0x7f00000029c0)) (async)
sendmsg$NL80211_CMD_SET_CHANNEL(r4, &(0x7f0000002b00)={&(0x7f0000002a40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a80)={0x2c, r7, 0x2, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r8, 0x6, 0x2, &(0x7f0000002b40)={0x2, "30014e"}, 0x6)
setsockopt$IP_VS_SO_SET_EDIT(r4, 0x0, 0x483, &(0x7f0000002b80)={0x2b, @dev={0xac, 0x14, 0x14, 0x40}, 0x4e24, 0x3, 'lblcr\x00', 0x31, 0x4d1, 0x16}, 0x2c) (async)
close_range(r4, r4, 0x0)
r11 = syz_genetlink_get_family_id$mptcp(&(0x7f0000002c00), r6)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000002d00)={'erspan0\x00', &(0x7f0000002c40)={'gre0\x00', <r12=>0x0, 0x80, 0x80, 0xa2, 0x6, {{0x20, 0x4, 0x3, 0xa, 0x80, 0x67, 0x0, 0x7, 0x29, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, {[@noop, @lsrr={0x83, 0xb, 0xaa, [@private=0xa010101, @dev={0xac, 0x14, 0x14, 0x29}]}, @generic={0x94, 0xb, "1bda85140a6e341258"}, @timestamp={0x44, 0xc, 0x53, 0x0, 0x2, [0x5, 0x1]}, @timestamp_addr={0x44, 0x24, 0x69, 0x1, 0x9, [{@rand_addr=0x64010102, 0x1}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x5}, {@multicast2, 0x60c}, {@loopback, 0x3}]}, @rr={0x7, 0x7, 0x86, [@private=0xa010101]}, @lsrr={0x83, 0x1b, 0x3a, [@rand_addr=0x64010102, @rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @broadcast]}]}}}}}) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000002dc0)={'erspan0\x00', &(0x7f0000002d40)={'gretap0\x00', <r13=>0x0, 0x7, 0x7, 0xec64, 0x3101, {{0xc, 0x4, 0x0, 0x1, 0x30, 0x66, 0x0, 0x78, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, {[@timestamp_addr={0x44, 0x1c, 0xcd, 0x1, 0x7, [{@broadcast, 0x401}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x1}, {@multicast2, 0xfffffb69}]}]}}}}})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000002e80)={r4, 0x58, &(0x7f0000002e00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r14=>0x0}}, 0x10)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r5, &(0x7f0000003000)={&(0x7f0000002bc0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000002fc0)={&(0x7f0000002ec0)={0xcc, r11, 0x4, 0x70bd29, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x40, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x1e}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r12}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x17}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x38, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r13}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r14}]}, @MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}]}, 0xcc}, 0x1, 0x0, 0x0, 0x40}, 0x8001) (async)
r15 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r16 = syz_genetlink_get_family_id$batadv(&(0x7f0000003080), r10)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r15, &(0x7f0000003180)={&(0x7f0000003040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000003140)={&(0x7f00000030c0)={0x58, r16, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x2}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x6}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x33}]}, 0x58}, 0x1, 0x0, 0x0, 0x800}, 0x40) (async)
bind$802154_raw(r8, &(0x7f00000031c0)={0x24, @none={0x0, 0x3}}, 0x14)
cachestat(r9, &(0x7f0000003200)={0x6, 0x100000000}, &(0x7f0000003240), 0x0)
ioctl$BLKCRYPTOGENERATEKEY(0xffffffffffffffff, 0xc030128a, &(0x7f0000003340)={&(0x7f00000032c0)=""/125, 0x7d})

40.262613708s ago: executing program 0 (id=99):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000980)='kfree\x00', r0}, 0x18)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10, 0x0}, 0x300060c1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000300)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x28, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x48}}}}}, 0x28}}, 0x0)
close(r1)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0xffffffffffffff48, &(0x7f0000001240))
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff})
getsockopt$sock_buf(r7, 0x1, 0x1f, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)

39.690686014s ago: executing program 0 (id=110):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
read(r0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f00000000c0)=ANY=[], 0x8, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1fc, 0x0)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRESOCT, @ANYRES16=r1], 0x48)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000380)={'syztnl1\x00', <r4=>0x0, 0x2f, 0xf, 0x5, 0x4, 0x48, @local, @mcast1, 0x8000, 0x10, 0x57, 0x8fa}})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYRESHEX=r1, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket(0x10, 0x803, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=ANY=[@ANYRES8=r6], 0x38}}, 0x0)
socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x100}, 0x1, 0x7}, 0x14)
r9 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000000bc0)=[{&(0x7f0000000880)=""/197, 0xc5}], 0x1, 0x3, 0xa)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000300))
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x200, <r10=>0x0}, 0x8)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xa, 0x7, &(0x7f0000000280)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf3e56898b3664b48, '\x00', 0x0, @fallback=0x1c, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r12=>0xffffffffffffffff, <r13=>0xffffffffffffffff})
sendmsg$inet(r13, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYRES8=r8], 0x128}, 0x0)
recvmsg$unix(r12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
close(0x4)
epoll_create1(0x80000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r11}, 0x18)

38.02140078s ago: executing program 0 (id=134):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x1f, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)

38.01674497s ago: executing program 0 (id=135):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8102)
ioctl$SCSI_IOCTL_START_UNIT(r5, 0x5)
clock_gettime(0x0, &(0x7f00000002c0)={<r6=>0x0, <r7=>0x0})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r9}, 0x10)
clock_settime(0x0, &(0x7f0000000380)={r6, r7+60000000})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

37.917721758s ago: executing program 0 (id=138):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x180c8, &(0x7f0000000a00)={[{@fat=@check_strict}, {@nodots}, {@fat=@fmask={'fmask', 0x3d, 0x100000001}}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x6}}]}, 0x1, 0x242, &(0x7f0000000700)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x28600, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='./bus\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000202, 0x0, 0x0, 0x0)
bind$can_j1939(r1, &(0x7f0000000340)={0x1d, r2, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
unshare(0x22020600)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xe, 0x4, 0x4, 0x12}, 0x50)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000004c0)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f62726964676500140001007767320000"], 0xa8}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1}, 0x38)
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2, 0x2, {0x0, 0x1, 0x2}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$can_j1939(r1, &(0x7f0000000300)={0x1d, r2, 0x0, {0x1, 0xf0}, 0xfd}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r2, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xc}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)

22.765150065s ago: executing program 32 (id=138):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x180c8, &(0x7f0000000a00)={[{@fat=@check_strict}, {@nodots}, {@fat=@fmask={'fmask', 0x3d, 0x100000001}}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x6}}]}, 0x1, 0x242, &(0x7f0000000700)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x28600, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='./bus\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000202, 0x0, 0x0, 0x0)
bind$can_j1939(r1, &(0x7f0000000340)={0x1d, r2, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
unshare(0x22020600)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xe, 0x4, 0x4, 0x12}, 0x50)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000004c0)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f62726964676500140001007767320000"], 0xa8}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1}, 0x38)
bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2, 0x2, {0x0, 0x1, 0x2}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
connect$can_j1939(r1, &(0x7f0000000300)={0x1d, r2, 0x0, {0x1, 0xf0}, 0xfd}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r2, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xc}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)

11.994172078s ago: executing program 1 (id=512):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x1f, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)

11.887208876s ago: executing program 1 (id=514):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x7ffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x7ffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000a40)=ANY=[@ANYRESHEX=0x0, @ANYBLOB="021b82d356963d529865f0ea52042e07282e7ccac9c10748534e666c151fef579361d96dd45c1b03", @ANYBLOB="d9f769315cf5fbd6aab32c256d1becec8a22927bf6195526a5e23ae8e4ceb298043bb2df8acbb0b0676ee4896ff67179b68c43d9c63021db91dfcfc3bba27af475cc1f2aac0285d7f7671ca6c9c624bb0f87933b37f1a43f5430e54c4a4a4d1b81c7f86a1c3d35ccf51fb287446357bfc4e42240ae319f3ee771e65d078bc160f3fc5518cc671ddd34c53529b396c74989f1a778617a29c76b63939a0a71d646f65b1fde0a49c9351672123430485fa9a6ce385bdf8468b37ec7cc6ac83dbc1af8faea6754dc1ace142153157c2c24299294aa891695ce4807277e63b654c0c5f2f406c7e75091d84ca75342b54e7a82d800432e0c7913", @ANYRESOCT=r0, @ANYRES16=r0], &(0x7f0000000300)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000012000000850000001500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000012000000850000001500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000400)={'ip6tnl0\x00', &(0x7f0000000280)={'ip6gre0\x00', <r3=>0x0, 0x29, 0x0, 0x4, 0x7, 0x2, @mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8, 0x1, 0x4, 0x9}})
socket$inet_sctp(0x2, 0x1, 0x84)
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
write$binfmt_script(r4, &(0x7f0000000040)={'#! ', './file0', [], 0xa, "fb4d8344d3"}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
preadv(r5, &(0x7f0000000000)=[{&(0x7f0000000240)=""/133, 0x85}], 0x1, 0x2, 0x0) (async)
preadv(r5, &(0x7f0000000000)=[{&(0x7f0000000240)=""/133, 0x85}], 0x1, 0x2, 0x0)
memfd_secret(0x0) (async)
r6 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r6, 0x0)
ftruncate(r6, 0x51a9497)
socket$l2tp6(0xa, 0x2, 0x73) (async)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
connect$l2tp6(r7, &(0x7f0000000180)={0xa, 0x0, 0x1000097, @local, 0x4, 0x3}, 0x20) (async)
connect$l2tp6(r7, &(0x7f0000000180)={0xa, 0x0, 0x1000097, @local, 0x4, 0x3}, 0x20)
getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000100)) (async)
getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000100))
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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", @ANYRES32=0x1, @ANYBLOB="00000100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000000000000500"/28], 0x50)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000005700)={{r9}, &(0x7f0000005680), &(0x7f00000056c0)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@bloom_filter={0x1e, 0xe16, 0x67, 0xe, 0x100d1, 0x1, 0x28ff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2, 0xa}, 0x50) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@bloom_filter={0x1e, 0xe16, 0x67, 0xe, 0x100d1, 0x1, 0x28ff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2, 0xa}, 0x50)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0) (async)
r11 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_tracing={0x1a, 0x16, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xae, 0x0, 0x0, 0x0, 0xfffffffa}, [@alu={0x7, 0x0, 0x1, 0xa, 0x3, 0x6, 0x10}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x371d}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x5}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}]}, &(0x7f0000000040)='GPL\x00', 0xd, 0xe0, &(0x7f00000004c0)=""/224, 0x40f00, 0x1, '\x00', r3, 0x1a, r6, 0x8, &(0x7f00000005c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000600)={0x5, 0x1, 0x4, 0x4}, 0x10, 0x1d97e, r0, 0x4, &(0x7f0000000840)=[r8, r9, r10, r11, 0x1], &(0x7f0000000880)=[{0x5, 0x5, 0xc, 0x3}, {0x2, 0xfff, 0x7, 0x8}, {0x3, 0x1, 0x3, 0x4}, {0x2, 0x3, 0x8, 0x5}], 0x10, 0x8}, 0x94)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r11, 0x40345410, &(0x7f0000000980)={{0x3, 0x3, 0x3dd8, 0x2, 0x7f}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) (async)
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r12, 0xc0502100, &(0x7f0000000580))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r12, 0xc0502100, &(0x7f0000000480))
epoll_create1(0x0)

10.942847303s ago: executing program 1 (id=539):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
getuid()

10.901800696s ago: executing program 1 (id=540):
socket$nl_rdma(0x10, 0x3, 0x14) (async)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0c1001"], 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000008000000005"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(0x0, r1)
sendmsg$NFT_MSG_GETOBJ(r1, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0x10000000})
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = dup(r3)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x3ac90c4, &(0x7f0000000100)=ANY=[@ANYRES64=r2, @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESDEC=r4])
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="200000001a140100000000000000000008000300000000000800"], 0x20}}, 0x0) (async)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="200000001a140100000000000000000008000300000000000800"], 0x20}}, 0x0)
r6 = socket$kcm(0x10, 0x3, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
recvmsg(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000018c0)=""/4154, 0x103a}], 0x1}, 0x40000000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2105099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
move_mount(r7, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0) (async)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
umount2(&(0x7f0000000280)='./file0/file0/file0\x00', 0xa)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'netpci0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060101000000000000001400000000050005000a000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e657400000000632afd86840d7d5ec0e89793d5132f196f8a2aa92af57fac698f2df14cbe0506e3cf1c1ce10e5d61b0529687da04d8407f8bf9d7921d9a6b17f40bb6d7a35a992b50ac4dcc74bcc82ea479cc9a5d4a99609898b02b4d0add269034ddbe0a1e5e0b160b637d7d5831"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) (async)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060101000000000000001400000000050005000a000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e657400000000632afd86840d7d5ec0e89793d5132f196f8a2aa92af57fac698f2df14cbe0506e3cf1c1ce10e5d61b0529687da04d8407f8bf9d7921d9a6b17f40bb6d7a35a992b50ac4dcc74bcc82ea479cc9a5d4a99609898b02b4d0add269034ddbe0a1e5e0b160b637d7d5831"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)

10.773400747s ago: executing program 1 (id=543):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@oldalloc}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{0x0}], 0x1}, 0x40000100)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000007}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000007c0)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r3, &(0x7f00000001c0)=ANY=[], 0x32600)

10.643201717s ago: executing program 1 (id=546):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r2=>0x0})
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000580)=[{{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x1, 0x0, 0x1}, {0x2, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1}}], 0x18)
r3 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x80800)
connect$packet(r3, &(0x7f0000000080)={0x11, 0x19, r2, 0x1, 0x8, 0x6, @remote}, 0x14)
bind$can_raw(r1, &(0x7f0000000200)={0x1d, r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r2, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)

10.374822179s ago: executing program 33 (id=546):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r2=>0x0})
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000580)=[{{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x1, 0x0, 0x1}, {0x2, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1}}], 0x18)
r3 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x80800)
connect$packet(r3, &(0x7f0000000080)={0x11, 0x19, r2, 0x1, 0x8, 0x6, @remote}, 0x14)
bind$can_raw(r1, &(0x7f0000000200)={0x1d, r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r2, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)

3.360163787s ago: executing program 5 (id=651):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1, 0x1, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x85}], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000002140)=""/4096, 0x1000}], 0x1, 0x141, 0x0)

3.300179232s ago: executing program 5 (id=654):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYRESDEC], &(0x7f0000000180)='GPL\x00', 0x8001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
getresuid(&(0x7f0000000a00), &(0x7f0000000b80), &(0x7f0000000bc0))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000840)='xprtrdma_err_unrecognized\x00', r5, 0x0, 0x3}, 0xb6)
mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=tcp'])
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000880))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

3.07966165s ago: executing program 5 (id=658):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3c, &(0x7f0000000b40)=ANY=[@ANYBLOB="18110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000410000007b8af8ff00000000bfa20000000000df06020000f8ffffffb703000065000000b70400008500000082007be8f50000850000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ff000000000100000000005070b94138eba307040000f0ffffffb702fdffffffffffffff00000000000000fca923cd1c50eea1e18dbf79ce86f84f46ed5a3d67518910078d27708130e930ea51bd698dc6f52d57793f16a7c159c5421f7543bd4325414e51690a629abd92eb5557e5311ca8d234eed01b10a20ebbc5cc5bef70d944dc019b87a7b1cc32bf0514468b28c6", @ANYRES32=r0, @ANYRESHEX=r0, @ANYRES32, @ANYBLOB="0000000000000000b702000000000000000000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x19)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000007000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYRES8=r4], 0xfc}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000080)='\x00', &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='timer_start\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r7}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
r8 = fsmount(r0, 0x1, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mq_getsetattr(r8, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendfile(r9, r8, &(0x7f0000000000)=0xffffffff, 0x4)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)

3.067382481s ago: executing program 6 (id=659):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r1 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_type(r1, &(0x7f00000009c0), 0xd4ba0ff)
removexattr(&(0x7f0000000000)='./file0/file1\x00', &(0x7f00000002c0)=@known='user.incfs.size\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')
unshare(0x2a020400)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
r2 = syz_io_uring_setup(0x10b, &(0x7f0000000140), &(0x7f0000000300), &(0x7f0000000280))
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x33, 0x0, @val=@perf_event={0xe1}}, 0x18)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x7, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)={0x28, 0x12, 0x1, 0x3, 0x0, "", [@nested={0x10, 0x0, 0x0, 0x0, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, @typed={0x8, 0x41, 0x0, 0x0, @ipv4=@remote}]}, 0x28}], 0x1, 0x0, 0x0, 0x40801}, 0x4000800)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x1c, r3, 0x1c77b3ffb7919603, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000100}, 0x24000000)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000000)={'gretap0\x00', &(0x7f00000000c0)={'gretap0\x00', 0x0, 0x8, 0x8, 0x0, 0x6, {{0x13, 0x4, 0x1, 0x8, 0x4c, 0x64, 0x0, 0x5, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x44}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x27, 0x89, [@loopback, @rand_addr=0x64010101, @multicast2, @broadcast, @rand_addr=0x64010102, @local, @broadcast, @remote, @loopback]}, @end, @timestamp={0x44, 0xc, 0x43, 0x0, 0xb, [0x4, 0x6]}, @noop, @noop]}}}}})
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x0)
setresuid(r6, r6, r6)
syslog(0x9, 0x0, 0x0)
chdir(&(0x7f0000000540)='./cgroup\x00')

2.932560612s ago: executing program 5 (id=660):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@oldalloc}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000007}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000007c0)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r3, &(0x7f00000001c0)=ANY=[], 0x32600)

2.922686333s ago: executing program 3 (id=662):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_page_free\x00', r5}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380), 0x84d03, 0x0)

2.562731182s ago: executing program 6 (id=665):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@oldalloc}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000007c0)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r2, &(0x7f00000001c0)=ANY=[], 0x32600)

2.269863615s ago: executing program 5 (id=669):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYRESDEC], &(0x7f0000000180)='GPL\x00', 0x8001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
getresuid(&(0x7f0000000a00), &(0x7f0000000b80), &(0x7f0000000bc0))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000840)='xprtrdma_err_unrecognized\x00', r5, 0x0, 0x3}, 0xb6)
mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=tcp'])
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000880))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
write$binfmt_misc(r0, &(0x7f0000000180)="e502", 0x2)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.126685197s ago: executing program 5 (id=672):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xf72b3000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000100)=@assoc_value, 0x8)
ioprio_set$uid(0x3, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x4, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x3404c8d4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r4}, 0x10)
munlockall()
close(0x3)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

2.117050098s ago: executing program 34 (id=672):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xf72b3000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000100)=@assoc_value, 0x8)
ioprio_set$uid(0x3, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x4, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x3404c8d4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r4}, 0x10)
munlockall()
close(0x3)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

2.073347941s ago: executing program 3 (id=675):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000980)='kfree\x00', r0}, 0x18)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10, 0x0}, 0x300060c1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000300)=0xa, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x28, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x48}}}}}, 0x28}}, 0x0)
close(r1)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
creat(&(0x7f00000000c0)='./bus\x00', 0x182)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
getsockopt$sock_buf(r5, 0x1, 0x1f, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)

1.959850811s ago: executing program 6 (id=676):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800001965ba917c62e1", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x20000023896)

1.772464766s ago: executing program 3 (id=677):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000060060000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000040)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x50, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r4, 0x400, 0x1)
fremovexattr(r4, &(0x7f0000000040)=@known='system.posix_acl_default\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5, 0x0, 0x7}, 0x18)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b4, &(0x7f0000000600)="$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")
r6 = open(&(0x7f0000000240)='./file1\x00', 0x14d142, 0x0)
ftruncate(r6, 0x2007ffc)
sendfile(r6, r6, 0x0, 0x800000009)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)

1.445930712s ago: executing program 2 (id=679):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000980)='kfree\x00', r0}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getsockopt$sock_buf(r1, 0x1, 0x1f, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)

1.383552457s ago: executing program 6 (id=680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r3, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0x80, 0x2, 0x1, 0x101, 0x0, 0x0, {0x7, 0x0, 0x7}, [@CTA_SYNPROXY={0x44, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xc64}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x200}, @CTA_SYNPROXY_ITS={0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8000}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x7f}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0xe23e}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_LABELS_MASK={0x8, 0x17, [0x10000]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0xba}]}, 0x80}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r5=>0x0})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000340)={'gretap0\x00', &(0x7f00000002c0)={'syztnl2\x00', r5, 0x7, 0x7800, 0xd78a, 0x1b, {{0x12, 0x4, 0x1, 0x14, 0x48, 0x65, 0x0, 0x1, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, {[@generic={0x94, 0xb, "94be23f0601f7af01d"}, @end, @timestamp_addr={0x44, 0x14, 0x7, 0x1, 0x5, [{@dev={0xac, 0x14, 0x14, 0x12}, 0x4ff}, {@local}]}, @cipso={0x86, 0x14, 0x1, [{0x1, 0xe, "c1d5c0ba9980e52c4966d401"}]}]}}}}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sys_enter\x00', r6}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8982, &(0x7f0000000080))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.311896413s ago: executing program 2 (id=681):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0, 0x0, 0x1}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000280)={@remote, <r3=>0x0}, &(0x7f00000002c0)=0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x214, &(0x7f0000000480)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb90402200800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370401a8001600200001401c00010003580461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3b8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6f4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x8810)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r6=>0x0})
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000580)=[{{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x1, 0x0, 0x1}, {0x2, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1}}], 0x18)
mknod$loop(0x0, 0x6000, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x80800)
connect$packet(r9, &(0x7f0000000080)={0x11, 0x19, r6, 0x1, 0x8, 0x6, @remote}, 0x14)
bind$can_raw(r2, &(0x7f0000000200)={0x1d, r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r10, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r6, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)

1.039451395s ago: executing program 4 (id=684):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x45, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x8000000}, 0x50) (fail_nth: 2)

845.647121ms ago: executing program 4 (id=685):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0, 0x0, 0x1}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000280)={@remote, <r3=>0x0}, &(0x7f00000002c0)=0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x214, &(0x7f0000000480)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb90402200800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370401a8001600200001401c00010003580461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3b8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6f4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x8810)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r6=>0x0})
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000580)=[{{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x1, 0x0, 0x1}, {0x2, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1}}], 0x18)
mknod$loop(0x0, 0x6000, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x80800)
connect$packet(r9, &(0x7f0000000080)={0x11, 0x19, r6, 0x1, 0x8, 0x6, @remote}, 0x14)
bind$can_raw(r2, &(0x7f0000000200)={0x1d, r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r10, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r6, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)

745.955179ms ago: executing program 6 (id=687):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c094, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000015850000001700000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000008850000000700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3, 0x0, 0x400007}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
io_pgetevents(0x0, 0x6, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000a40)=ANY=[@ANYBLOB="58000000100039042abd7078aab2e56e91008a3090094a2968e7a14807aa00ead01aaef14edac0d28452d3ffffff", @ANYRES32=0x0, @ANYBLOB="03000000c31006003800128008000100736974002c00028006000e000010000008000300ac1414bb08000200ac14142d08000c00ee0000000800140001000100"], 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080006000000e8fe55a1180015000600142603600e120800110000000401a8001600050001", 0x37}], 0x1}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="d800000010008104685fa3aa7143a0f8c81ded0b25000000e8fe09a11800150006001400000000120800030043000040a8002b", 0x33}], 0x1}, 0xc001)
r7 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000900), 0x2000, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000b40)={'syztnl1\x00', &(0x7f0000000ac0)={'ip6tnl0\x00', <r8=>0x0, 0x4, 0x8, 0x1, 0x7, 0x40, @remote, @private0, 0x8, 0x8, 0x20, 0x3}})
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x17, 0xf, &(0x7f0000000d00)=ANY=[@ANYBLOB="180000007c13007e00000000ff03000018110000", @ANYRES32=r7, @ANYBLOB="0000000040000000b702000014000000b7830000000000038500000083000000bf09056be863f80000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500"/101], &(0x7f0000000980)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, @cgroup_sysctl, 0xffffffffffffffff, 0x8, &(0x7f0000000b80)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000bc0)={0x4, 0xf, 0x5, 0x5}, 0x10, 0x0, r2, 0x0, &(0x7f0000000c00)=[r1], 0x0, 0x10, 0x4}, 0x94)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfe33)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x11)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r9)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x759, &(0x7f0000000780)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}, 0x0}, {@data_journal}, {@journal_dev={'journal_dev', 0x3d, 0xf}}, {@i_version}, {@nobarrier}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xb6a}}, {@data_err_ignore}], [], 0x2c}, 0x2, 0x4f9, &(0x7f0000000200)="$eJzs3ElvHFUeAPB/te04zjL2ZNYsM+mZzAgLRBw764FDgkDKBQkJhMLR2E4U4iQoNlISWcRBKEgcQPkELDckPgEnuCBAHEBcibgipAj5ksABFarqatN2ub2l7cbx7yd151XVq37v31Uv/ZZuB7BpVbOnJGJHRHwXEb21zbkZqrV/7s9Mjfw8MzWSRJo+91OS57s3MzVSz1o/b3ux0V+JqLyRxN5ysd0T165fGB4fH7tS7BiYrBSpi8Pnxs6NXRo6ceLI4Z7jx4aOtiTOrE739rx2ed/u0y/efmbkzO2Xvvgoq29aHG+Mo6Yvf96y7BI6SnuqUZ37Xjb4//KrviHsbEgnndlzpX2VYdmyuza7XF15+++Njnyrpjeefr2tlQPWVJqmaXdp7+xn2XTaKElqJ6TpzRR4CCTR7hoA7VH/oL83k41Up0bK4+CH291TkY+AsrjvF4/akc58BFvtq42Nutao/L9GxJnpX97NHrHgPAQAQGt9cipiW9HvqD9qRyrx94Z8fyrWhvoi4s8RsSsi/lL0X/4Wkef9R0T8s+GcHctYBajO2y73f77pKRKN3dWWyfp/TxRrW3P7f7M17+sotnbm8XclZ8+Pjx0q3pP+6OrOtgfLLz07rfbpU9++06z8akP/L3tk5df7gkU9fuycN0E3Ojw5/KBx1929mb+xN8rxJ9GZ1FMRuyNizypeP3vPzj/64b5mx+fEn8VZiv/t5i/euYoKzZO+H/FI7fpPx7z4o1j/S/L1yYuvDExcu/74+cb1ycHjx4aODmyN8bFDA/W7ouzLr289WyRLw4hFrn+9aazpQlp2/bcteP/Prlz2ZanZ9dqJlZdx686bTcc0q73/tyTP5+n6+uzV4cnJK4MRW5Lp8v6h38+9OtwzJ38Wf/+Bhdv/rohf3yvO2xsR2U38r4j4d0TsL+r+n4j4b0QcWCT+z5/838vNhpBLx7+2svhHV3T9myVOfhWx8KGOC599XCr4rWop/q5odv2P5Kn+Ys/o8OTWpeJarKaNiQd+AwEAAGAD2J/P0yaVg8VE046oVA4ejNg+O4MyMfnY2cuvXhqtzef2RVelPtPV2zAfOljMDWfb2VlDDdvZ8cP5vHGapmlPtp2N38d3tjd02PS2N2n/mR/KP2kBHjYrWkdr9os2YEOa3/7vLPvM1n8hA1hfLfgeDbBBaf+weS27/a/Vr+CAtlmo/d+IuN+GqgDrbKH2/0Jpz8l1qQuwvoz/YfNaffv3ZQDY6Hz+w6a0rB/JryKx6/QieZLOtSm0eaISi/8VgL6I+p56n2bxF/y+EtGaGna0NNKeOde0smCerdGKsqKyZJ7OFfwhhvVNVP4Y1agluiNiibt39ma7UU9cX+uK5Y3gg/b+7wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDgfgsAAP//RUTTKw==")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="180000010000000000000000000000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

745.658039ms ago: executing program 3 (id=688):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c0000000800124000000000050005000a000000050004000000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
clock_settime(0x0, &(0x7f0000000380))
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000000306010200000000000000000a0000010500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

742.59602ms ago: executing program 2 (id=689):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000037c0)=ANY=[@ANYRESOCT, @ANYRESHEX=0x0, @ANYRES32, @ANYRES32, @ANYRESOCT=0x0], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0x0, &(0x7f0000000300), &(0x7f0000000100)='GPL\x00', 0x1, 0x1000, &(0x7f0000001780)=""/4096, 0x41100, 0x18, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x9, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xe5}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000820000009500"/50], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_create1(0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
close(r2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
chroot(&(0x7f0000000040)='./file0\x00')
socket(0x15, 0x5, 0x0)
r5 = socket$igmp(0x2, 0x3, 0x2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7, 0x0, 0xfffffffffffffffe}, 0x18)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_FLUSH(r5, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4)

599.592211ms ago: executing program 3 (id=690):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@oldalloc}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000007}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000007c0)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(r2, &(0x7f00000001c0)=ANY=[], 0x32600)

376.396209ms ago: executing program 4 (id=691):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
get_robust_list(0x0, 0x0, &(0x7f0000000580))

351.076951ms ago: executing program 2 (id=692):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
timer_create(0x0, &(0x7f0000000100)={0x0, 0xd, 0x2, @thr={&(0x7f0000000900), &(0x7f0000000a40)}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60cf, 0x8})
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
mount$9p_xen(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000002c0), 0x80000, &(0x7f0000000680)={'trans=xen,', {[{@msize={'msize', 0x3d, 0x4b}}]}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}}, 0x24}}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

220.326121ms ago: executing program 4 (id=693):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="01dfffffff9a26000000210000000c00018008000100", @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@random="e90c630faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0xff, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2, 0x1, 0x3, 0x2, 0x0, @val=0x80}}}}}}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xffff, 0x8}}}}}, 0x0)

205.239883ms ago: executing program 4 (id=694):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x44040}, 0x4000)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r5 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r7}, 0x10)
keyctl$KEYCTL_MOVE(0x4, 0x0, 0x0, 0x0, 0x0)
fallocate(r5, 0x0, 0xbf5, 0x2000402)
r8 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="09000000030000000800000004"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000fcffff0318110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xc8}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r12}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x45, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x8000000}, 0x50)

165.885836ms ago: executing program 2 (id=695):
syslog(0x9, 0x0, 0x0)

14.580698ms ago: executing program 6 (id=696):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000060060000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000040)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x50, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r4, 0x400, 0x1)
fremovexattr(r4, &(0x7f0000000040)=@known='system.posix_acl_default\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5, 0x0, 0x7}, 0x18)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b4, &(0x7f0000000600)="$eJzs3b9rO2UYAPDn0jQJCiaCkwge6OD05duuLinSQjGTkkEdtNgWpAlCCwV/YOzk6uKmq4sguPlPuPgfCK6Cmx0KJ5e7a5KaxkSb1h+fz9K37z3P+z7vNdfSIU/eeW54cpjG8cXHP0WrlUStG924TKITtah8GjO6nwcA8G92mWXxa1ZYJS+JiNb6ygIA1mjlv//frb0kAGDNXn/jzVd3er3d19K0FXvDz877+X/2+dfi+s5xvBeDOIrH0Y6riOxaMd7LsmxUT3OdeHE4Ou/nmcO3fyjX3/klYpy/Fe3ojKdm8/d7u1tpYSp/lNfxRLl/N8/fjnY8M2f//d7u9pz86DfipRem6n8U7fjx3Xg/BnE4LqLIj1rEJ1tp+kr2xW8fvZWXl+cno/N+cxw3kW3c848GAAAAAAAAAAAAAAAAAAAAAID/sEdl75xmjPv35FNl/52Nq/ybzUgrndn+PEV+Ui10oz/QKIuvqv48j9M0zcrASX49nq1H/WFODQAAAAAAAAAAAAAAAAAAAP8sZx98eHIwGByd3smg6gZQva3/r67TnZp5PhYHNyd71crhgpVjo4pJIhaWkR9iiVKr7Yu2B6ud9Msotnj6tpq/+XbpBb/+87OXg80lYv7moHp1nRwk8+9hM6qZVvUi+X46phFL7tW45dJTZQVL1tyYe6m98tkbT44HowUxkSx6Ll7+uai7nEluPkSN8V2dm75ZDqbSZ2Nay96N4kn5g+S6W0dyN798AAAAAAAAAAAAAAAAAACAGZM3/c65eLEwtZY111YWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANyryef/rzAYlclLBDfi9OyBjwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMD/wO8BAAD//3tlWs8=")
r6 = open(&(0x7f0000000240)='./file1\x00', 0x14d142, 0x0)
ftruncate(r6, 0x2007ffc)
sendfile(r6, r6, 0x0, 0x800000009)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)

14.211158ms ago: executing program 2 (id=697):
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x5c, 0x24, 0xd0f, 0x470bd30, 0x25dfdbff, {0x60, 0x0, 0x0, r3, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0x0, 0xfff1}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}, @qdisc_kind_options=@q_ingress={0xc}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xf, 0x4, 0xff, 0x81, 0x0, 0x6080, 0xef3}}, {0x4}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x44080)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x4000)

13.694798ms ago: executing program 3 (id=698):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0, 0x0, 0x1}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000280)={@remote, <r3=>0x0}, &(0x7f00000002c0)=0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x214, &(0x7f0000000480)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', r3, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="d8000000180081054e81f782db4cb90402200800fe00fe05e8fe55a10a0015000600142603600e1208000f007f370401a8001600200001401c00010003580461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090014d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00350db798262f3d40fad95667e006dcdf63951f215c3b8b6ad2cba0e2375ee535e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6f4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x8810)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r6=>0x0})
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000580)=[{{0x4, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x1, 0x0, 0x1}, {0x2, 0x1}}, {{0x3, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1}}], 0x18)
mknod$loop(0x0, 0x6000, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x80800)
connect$packet(r9, &(0x7f0000000080)={0x11, 0x19, r6, 0x1, 0x8, 0x6, @remote}, 0x14)
bind$can_raw(r2, &(0x7f0000000200)={0x1d, r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r10, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', 0xffffffffffffffff, 0x0, 0x100}, 0x18)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r6, {0x1}, {0xffff, 0xfff1}, {0x1}}}, 0x24}}, 0x0)

0s ago: executing program 4 (id=699):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x85}, @exit], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000002140)=""/4096, 0x1000}], 0x1, 0x141, 0x0)

kernel console output (not intermixed with test programs):

8/0x2170
[   54.082705][ T4459]  ? _parse_integer_limit+0x170/0x190
[   54.082735][ T4459]  ? kstrtoull+0x111/0x140
[   54.082755][ T4459]  ? kstrtouint+0x76/0xc0
[   54.082841][ T4459]  do_filp_open+0x109/0x230
[   54.082950][ T4459]  do_sys_openat2+0xa6/0x110
[   54.082995][ T4459]  __x64_sys_openat+0xf2/0x120
[   54.083040][ T4459]  x64_sys_call+0x2e9c/0x2ff0
[   54.083069][ T4459]  do_syscall_64+0xd2/0x200
[   54.083124][ T4459]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.083204][ T4459]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.083232][ T4459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.083260][ T4459] RIP: 0033:0x7f411185ebe9
[   54.083278][ T4459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.083379][ T4459] RSP: 002b:00007f41102c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   54.083405][ T4459] RAX: ffffffffffffffda RBX: 00007f4111a85fa0 RCX: 00007f411185ebe9
[   54.083422][ T4459] RDX: 0000000000002040 RSI: 0000200000000080 RDI: ffffffffffffff9c
[   54.083438][ T4459] RBP: 00007f41102c7090 R08: 0000000000000000 R09: 0000000000000000
[   54.083453][ T4459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.083469][ T4459] R13: 00007f4111a86038 R14: 00007f4111a85fa0 R15: 00007fff634d4418
[   54.083492][ T4459]  </TASK>
[   54.139474][ T4461] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #18: comm syz.2.163: corrupted inode contents
[   54.142459][   T29] kauditd_printk_skb: 411 callbacks suppressed
[   54.142529][   T29] audit: type=1400 audit(1755214340.845:907): avc:  denied  { ioctl } for  pid=4452 comm="syz.2.163" path="/31/file1/file1" dev="loop2" ino=15 ioctlcmd=0x6609 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   54.150280][ T4461] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #18: comm syz.2.163: mark_inode_dirty error
[   54.355282][   T29] audit: type=1326 audit(1755214341.105:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.360542][ T4461] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #18: comm syz.2.163: corrupted inode contents
[   54.394650][   T29] audit: type=1326 audit(1755214341.105:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.396022][ T4461] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.163: mark_inode_dirty error
[   54.419330][   T29] audit: type=1326 audit(1755214341.105:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.433536][ T4461] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.163: mark inode dirty (error -117)
[   54.455465][   T29] audit: type=1326 audit(1755214341.105:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.496291][   T29] audit: type=1326 audit(1755214341.105:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.520184][   T29] audit: type=1326 audit(1755214341.135:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.522137][ T4461] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   54.544872][   T29] audit: type=1326 audit(1755214341.135:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.577411][   T29] audit: type=1326 audit(1755214341.135:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.601193][   T29] audit: type=1326 audit(1755214341.135:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4469 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   54.723065][ T4477] program syz.4.170 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   54.733011][ T4477] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   54.800960][ T4483] loop3: detected capacity change from 0 to 2048
[   54.844008][ T3294] Alternate GPT is invalid, using primary GPT.
[   54.851019][ T3294]  loop3: p2 p3 p7
[   54.852471][ T4492] capability: warning: `syz.2.177' uses deprecated v2 capabilities in a way that may be insecure
[   54.876392][ T4483] Alternate GPT is invalid, using primary GPT.
[   54.883174][ T4483]  loop3: p2 p3 p7
[   54.908747][ T2991] Alternate GPT is invalid, using primary GPT.
[   54.915500][ T2991]  loop3: p2 p3 p7
[   55.086890][ T4499] capability: warning: `syz.4.180' uses 32-bit capabilities (legacy support in use)
[   55.105287][ T4497] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1017 sclass=netlink_route_socket pid=4497 comm=syz.1.179
[   55.183835][ T4502] loop4: detected capacity change from 0 to 2048
[   55.568808][ T4519] program syz.4.187 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.590489][ T4519] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   55.679435][ T4524] loop2: detected capacity change from 0 to 512
[   55.695240][ T4524] EXT4-fs: Ignoring removed oldalloc option
[   55.723119][ T4524] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.780647][ T4524] EXT4-fs (loop2): 1 truncate cleaned up
[   55.851667][ T4521] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.873088][ T4521] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.960286][ T4483] syz.3.174 (4483) used greatest stack depth: 7096 bytes left
[   55.973329][ T4531] loop4: detected capacity change from 0 to 1024
[   56.012183][ T4531] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.092661][ T4531] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   56.116023][ T4531] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 1 with error 28
[   56.128611][ T4531] EXT4-fs (loop4): This should not happen!! Data will be lost
[   56.128611][ T4531] 
[   56.138549][ T4531] EXT4-fs (loop4): Total free blocks count 0
[   56.144962][ T4531] EXT4-fs (loop4): Free/Dirty block details
[   56.151230][ T4531] EXT4-fs (loop4): free_blocks=4293918720
[   56.157262][ T4531] EXT4-fs (loop4): dirty_blocks=16
[   56.162701][ T4531] EXT4-fs (loop4): Block reservation details
[   56.169057][ T4531] EXT4-fs (loop4): i_reserved_data_blocks=1
[   56.239250][ T4540] loop2: detected capacity change from 0 to 1024
[   56.355640][ T4544] program syz.2.193 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   56.365350][ T4544] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   56.610324][ T4554] random: crng reseeded on system resumption
[   56.890078][ T4560] tmpfs: Unknown parameter 'ú¬ÕîI¹îÓža"רL†—ÇÒxkmó
'
[   57.012830][ T4561] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.201' sets config #0
[   57.621735][ T4565] loop4: detected capacity change from 0 to 512
[   57.642257][ T4565] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.675429][ T4565] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.812176][ T4573] tipc: Started in network mode
[   57.817100][ T4573] tipc: Node identity 4, cluster identity 4711
[   57.823576][ T4573] tipc: Node number set to 4
[   58.241050][ T4583] program syz.4.204 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.260280][ T4583] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   58.328606][ T4590] loop4: detected capacity change from 0 to 512
[   58.398722][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.410075][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.426863][ T4600] loop4: detected capacity change from 0 to 512
[   58.433630][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.448300][ T4600] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.457209][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.469541][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.480103][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.480911][ T4600] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.511850][ T4606] loop1: detected capacity change from 0 to 164
[   58.518653][ T4606] iso9660: Unknown parameter ''
[   58.531108][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.558535][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.580380][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.593111][ T4598] netlink: 60 bytes leftover after parsing attributes in process `syz.2.213'.
[   58.627558][ T4609] loop1: detected capacity change from 0 to 512
[   58.638768][ T4611] loop4: detected capacity change from 0 to 2048
[   58.646214][ T4609] EXT4-fs: Ignoring removed i_version option
[   58.652767][ T4609] EXT4-fs: Ignoring removed bh option
[   58.673926][ T4609] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.735577][ T4620] loop2: detected capacity change from 0 to 512
[   58.742508][ T4620] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.779911][ T4623] SELinux:  Context system_u:object_r:inetd_exec_t:s0 is not valid (left unmapped).
[   58.814437][ T4623] 9pnet: Could not find request transport: 0xffffffffffffffff
[   58.828848][ T4626] program syz.2.221 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.838451][ T4626] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   58.965228][ T4634] FAULT_INJECTION: forcing a failure.
[   58.965228][ T4634] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   58.978516][ T4634] CPU: 1 UID: 0 PID: 4634 Comm: syz.2.225 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   58.978579][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.978595][ T4634] Call Trace:
[   58.978603][ T4634]  <TASK>
[   58.978613][ T4634]  __dump_stack+0x1d/0x30
[   58.978650][ T4634]  dump_stack_lvl+0xe8/0x140
[   58.978676][ T4634]  dump_stack+0x15/0x1b
[   58.978697][ T4634]  should_fail_ex+0x265/0x280
[   58.978765][ T4634]  should_fail+0xb/0x20
[   58.978788][ T4634]  should_fail_usercopy+0x1a/0x20
[   58.978817][ T4634]  strncpy_from_user+0x25/0x230
[   58.978897][ T4634]  __se_sys_memfd_create+0x1ff/0x590
[   58.978929][ T4634]  __x64_sys_memfd_create+0x31/0x40
[   58.978996][ T4634]  x64_sys_call+0x2abe/0x2ff0
[   58.979024][ T4634]  do_syscall_64+0xd2/0x200
[   58.979055][ T4634]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.979079][ T4634]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.979105][ T4634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.979184][ T4634] RIP: 0033:0x7f1f4d84ebe9
[   58.979283][ T4634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.979380][ T4634] RSP: 002b:00007f1f4c2aee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   58.979404][ T4634] RAX: ffffffffffffffda RBX: 0000000000000336 RCX: 00007f1f4d84ebe9
[   58.979417][ T4634] RDX: 00007f1f4c2aeef0 RSI: 0000000000000000 RDI: 00007f1f4d8d27e8
[   58.979457][ T4634] RBP: 0000200000000880 R08: 00007f1f4c2aebb7 R09: 00007f1f4c2aee40
[   58.979473][ T4634] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000000c0
[   58.979488][ T4634] R13: 00007f1f4c2aeef0 R14: 00007f1f4c2aeeb0 R15: 0000200000000380
[   58.979588][ T4634]  </TASK>
[   59.034907][ T4639] loop1: detected capacity change from 0 to 512
[   59.166471][ T4639] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.191848][ T4639] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.205178][ T4643] FAULT_INJECTION: forcing a failure.
[   59.205178][ T4643] name failslab, interval 1, probability 0, space 0, times 0
[   59.218142][ T4643] CPU: 1 UID: 0 PID: 4643 Comm: syz.2.228 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   59.218228][ T4643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.218244][ T4643] Call Trace:
[   59.218251][ T4643]  <TASK>
[   59.218260][ T4643]  __dump_stack+0x1d/0x30
[   59.218288][ T4643]  dump_stack_lvl+0xe8/0x140
[   59.218373][ T4643]  dump_stack+0x15/0x1b
[   59.218389][ T4643]  should_fail_ex+0x265/0x280
[   59.218437][ T4643]  should_failslab+0x8c/0xb0
[   59.218469][ T4643]  kmem_cache_alloc_node_noprof+0x57/0x320
[   59.218564][ T4643]  ? __alloc_skb+0x101/0x320
[   59.218676][ T4643]  __alloc_skb+0x101/0x320
[   59.218718][ T4643]  netlink_alloc_large_skb+0xba/0xf0
[   59.218761][ T4643]  netlink_sendmsg+0x3cf/0x6b0
[   59.218783][ T4643]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.218903][ T4643]  __sock_sendmsg+0x145/0x180
[   59.218981][ T4643]  ____sys_sendmsg+0x31e/0x4e0
[   59.219013][ T4643]  ___sys_sendmsg+0x17b/0x1d0
[   59.219051][ T4643]  __x64_sys_sendmsg+0xd4/0x160
[   59.219145][ T4643]  x64_sys_call+0x191e/0x2ff0
[   59.219172][ T4643]  do_syscall_64+0xd2/0x200
[   59.219202][ T4643]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.219276][ T4643]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.219316][ T4643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.219339][ T4643] RIP: 0033:0x7f1f4d84ebe9
[   59.219355][ T4643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.219434][ T4643] RSP: 002b:00007f1f4c2af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.219459][ T4643] RAX: ffffffffffffffda RBX: 00007f1f4da75fa0 RCX: 00007f1f4d84ebe9
[   59.219530][ T4643] RDX: 0000000000000884 RSI: 0000200000000000 RDI: 0000000000000003
[   59.219543][ T4643] RBP: 00007f1f4c2af090 R08: 0000000000000000 R09: 0000000000000000
[   59.219556][ T4643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.219569][ T4643] R13: 00007f1f4da76038 R14: 00007f1f4da75fa0 R15: 00007ffdf2cc7868
[   59.219588][ T4643]  </TASK>
[   59.443612][   T29] kauditd_printk_skb: 375 callbacks suppressed
[   59.443631][   T29] audit: type=1400 audit(1755214346.478:1290): avc:  denied  { prog_load } for  pid=4638 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   59.469677][   T29] audit: type=1400 audit(1755214346.478:1291): avc:  denied  { bpf } for  pid=4638 comm="syz.1.227" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   59.490391][   T29] audit: type=1400 audit(1755214346.488:1292): avc:  denied  { map_create } for  pid=4638 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   59.509685][   T29] audit: type=1400 audit(1755214346.488:1293): avc:  denied  { map_read map_write } for  pid=4638 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   59.529836][   T29] audit: type=1400 audit(1755214346.488:1294): avc:  denied  { create } for  pid=4638 comm="syz.1.227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   59.549787][   T29] audit: type=1400 audit(1755214346.488:1295): avc:  denied  { module_request } for  pid=4638 comm="syz.1.227" kmod="net-pf-11" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   59.575062][   T29] audit: type=1400 audit(1755214346.558:1296): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   59.595541][   T29] audit: type=1400 audit(1755214346.558:1297): avc:  denied  { read write } for  pid=3304 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   59.620642][   T29] audit: type=1400 audit(1755214346.558:1298): avc:  denied  { open } for  pid=3304 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   59.645128][   T29] audit: type=1400 audit(1755214346.558:1299): avc:  denied  { ioctl } for  pid=3304 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   59.678004][ T4649] loop3: detected capacity change from 0 to 512
[   59.678191][ T4647] loop2: detected capacity change from 0 to 512
[   59.685625][ T4649] EXT4-fs: Ignoring removed oldalloc option
[   59.697838][ T4649] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   59.711283][ T4649] EXT4-fs (loop3): 1 truncate cleaned up
[   59.729131][ T4647] EXT4-fs: Ignoring removed i_version option
[   59.735344][ T4647] EXT4-fs: Ignoring removed bh option
[   59.742091][   T55] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[   59.771452][   T55] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   59.783839][   T55] EXT4-fs (loop4): This should not happen!! Data will be lost
[   59.783839][   T55] 
[   59.793640][   T55] EXT4-fs (loop4): Total free blocks count 0
[   59.799727][   T55] EXT4-fs (loop4): Free/Dirty block details
[   59.805860][   T55] EXT4-fs (loop4): free_blocks=4096
[   59.811119][   T55] EXT4-fs (loop4): dirty_blocks=16
[   59.813239][ T4647] ext4 filesystem being mounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.816256][   T55] EXT4-fs (loop4): Block reservation details
[   59.816274][   T55] EXT4-fs (loop4): i_reserved_data_blocks=1
[   60.136066][ T4666] program syz.2.233 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.145938][ T4666] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   60.268545][ T4669] loop3: detected capacity change from 0 to 8192
[   60.349588][ T4678] netlink: 'syz.1.239': attribute type 4 has an invalid length.
[   60.360363][ T4680] loop4: detected capacity change from 0 to 512
[   60.381168][ T4683] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma?
[   60.408953][ T4680] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.463524][ T4680] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.499182][ T4696] program syz.2.245 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.534499][ T4696] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   60.617040][ T4702] loop2: detected capacity change from 0 to 512
[   60.742190][ T4702] EXT4-fs: Ignoring removed oldalloc option
[   60.758704][ T4702] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   60.812823][ T4702] EXT4-fs (loop2): 1 truncate cleaned up
[   61.147334][ T4718] loop3: detected capacity change from 0 to 512
[   61.164584][ T4718] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   61.167973][ T4720] 9pnet_fd: p9_fd_create_unix (4720): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   61.175515][ T4721] 9pnet_fd: p9_fd_create_unix (4721): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   61.272653][ T4718] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   61.382000][ T4718] EXT4-fs (loop3): 1 truncate cleaned up
[   61.502962][ T4735] program syz.1.258 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   61.513811][ T4735] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   61.538398][ T4741] random: crng reseeded on system resumption
[   61.557268][ T4742] loop4: detected capacity change from 0 to 1024
[   61.564227][ T4742] EXT4-fs: Ignoring removed orlov option
[   61.587198][ T4746] FAULT_INJECTION: forcing a failure.
[   61.587198][ T4746] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.600754][ T4746] CPU: 0 UID: 0 PID: 4746 Comm: syz.1.260 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   61.600790][ T4746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   61.600802][ T4746] Call Trace:
[   61.600810][ T4746]  <TASK>
[   61.600820][ T4746]  __dump_stack+0x1d/0x30
[   61.600847][ T4746]  dump_stack_lvl+0xe8/0x140
[   61.601049][ T4746]  dump_stack+0x15/0x1b
[   61.601065][ T4746]  should_fail_ex+0x265/0x280
[   61.601088][ T4746]  should_fail+0xb/0x20
[   61.601110][ T4746]  should_fail_usercopy+0x1a/0x20
[   61.601151][ T4746]  _copy_from_user+0x1c/0xb0
[   61.601189][ T4746]  sock_do_ioctl+0xe6/0x220
[   61.601268][ T4746]  sock_ioctl+0x41b/0x610
[   61.601295][ T4746]  ? __pfx_sock_ioctl+0x10/0x10
[   61.601324][ T4746]  __se_sys_ioctl+0xcb/0x140
[   61.601424][ T4746]  __x64_sys_ioctl+0x43/0x50
[   61.601460][ T4746]  x64_sys_call+0x1816/0x2ff0
[   61.601482][ T4746]  do_syscall_64+0xd2/0x200
[   61.601560][ T4746]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   61.601591][ T4746]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   61.601638][ T4746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.601686][ T4746] RIP: 0033:0x7f411185ebe9
[   61.601702][ T4746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.601719][ T4746] RSP: 002b:00007f41102c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.601787][ T4746] RAX: ffffffffffffffda RBX: 00007f4111a85fa0 RCX: 00007f411185ebe9
[   61.601804][ T4746] RDX: 0000200000000f00 RSI: 0000000000008946 RDI: 0000000000000006
[   61.601818][ T4746] RBP: 00007f41102c7090 R08: 0000000000000000 R09: 0000000000000000
[   61.601830][ T4746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.601841][ T4746] R13: 00007f4111a86038 R14: 00007f4111a85fa0 R15: 00007fff634d4418
[   61.601860][ T4746]  </TASK>
[   61.999635][ T4755] loop1: detected capacity change from 0 to 512
[   62.037735][ T4755] EXT4-fs: Ignoring removed oldalloc option
[   62.066155][ T4755] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   62.106022][ T4755] EXT4-fs (loop1): 1 truncate cleaned up
[   62.504650][ T4775] C: renamed from team_slave_0 (while UP)
[   62.531360][ T4775] netlink: 'syz.4.269': attribute type 1 has an invalid length.
[   62.561598][ T4775] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   62.578717][ T4779] can0: slcan on ttyS3.
[   62.601861][ T4773] nfs4: Unknown parameter '$'
[   62.642412][ T4779] can0 (unregistered): slcan off ttyS3.
[   62.656110][ T4775] can0: slcan on ttyS3.
[   62.677930][ T4775] loop4: detected capacity change from 0 to 512
[   62.700512][ T4775] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1024)!
[   62.711237][ T4775] EXT4-fs (loop4): group descriptors corrupted!
[   62.741971][ T4785] program syz.2.271 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   62.758119][ T4785] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   62.810158][ T4790] FAULT_INJECTION: forcing a failure.
[   62.810158][ T4790] name failslab, interval 1, probability 0, space 0, times 0
[   62.823295][ T4790] CPU: 0 UID: 0 PID: 4790 Comm: syz.2.272 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   62.823325][ T4790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   62.823338][ T4790] Call Trace:
[   62.823346][ T4790]  <TASK>
[   62.823356][ T4790]  __dump_stack+0x1d/0x30
[   62.823384][ T4790]  dump_stack_lvl+0xe8/0x140
[   62.823406][ T4790]  dump_stack+0x15/0x1b
[   62.823422][ T4790]  should_fail_ex+0x265/0x280
[   62.823477][ T4790]  should_failslab+0x8c/0xb0
[   62.823561][ T4790]  kmem_cache_alloc_noprof+0x50/0x310
[   62.823598][ T4790]  ? alloc_empty_file+0x76/0x200
[   62.823634][ T4790]  ? mntput+0x4b/0x80
[   62.823750][ T4790]  alloc_empty_file+0x76/0x200
[   62.823782][ T4790]  path_openat+0x68/0x2170
[   62.823805][ T4790]  ? _parse_integer_limit+0x170/0x190
[   62.823836][ T4790]  ? kstrtoull+0x111/0x140
[   62.823868][ T4790]  ? kstrtouint+0x76/0xc0
[   62.823947][ T4790]  do_filp_open+0x109/0x230
[   62.823977][ T4790]  do_sys_openat2+0xa6/0x110
[   62.824013][ T4790]  __x64_sys_openat+0xf2/0x120
[   62.824120][ T4790]  x64_sys_call+0x2e9c/0x2ff0
[   62.824149][ T4790]  do_syscall_64+0xd2/0x200
[   62.824185][ T4790]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   62.824262][ T4790]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   62.824286][ T4790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.824329][ T4790] RIP: 0033:0x7f1f4d84ebe9
[   62.824349][ T4790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.824369][ T4790] RSP: 002b:00007f1f4c2af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   62.824388][ T4790] RAX: ffffffffffffffda RBX: 00007f1f4da75fa0 RCX: 00007f1f4d84ebe9
[   62.824400][ T4790] RDX: 0000000000000002 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[   62.824412][ T4790] RBP: 00007f1f4c2af090 R08: 0000000000000000 R09: 0000000000000000
[   62.824424][ T4790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.824497][ T4790] R13: 00007f1f4da76038 R14: 00007f1f4da75fa0 R15: 00007ffdf2cc7868
[   62.824515][ T4790]  </TASK>
[   63.039832][ T4774] can0 (unregistered): slcan off ttyS3.
[   63.134283][ T4801] loop4: detected capacity change from 0 to 512
[   63.159104][ T4801] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.183623][ T4801] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.221759][ T4812] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[   63.304390][ T4823] netlink: 'syz.2.276': attribute type 1 has an invalid length.
[   63.433328][ T4834] loop4: detected capacity change from 0 to 128
[   63.447284][ T4836] loop2: detected capacity change from 0 to 1024
[   63.457940][ T4836] EXT4-fs: Ignoring removed bh option
[   63.482502][ T4834] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   63.483461][ T4836] EXT4-fs: inline encryption not supported
[   63.516541][ T4836] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   63.537690][ T4836] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   63.561733][ T4836] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.279: lblock 2 mapped to illegal pblock 2 (length 1)
[   63.576089][ T4836] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.279: lblock 0 mapped to illegal pblock 48 (length 1)
[   63.721710][ T4836] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.279: Failed to acquire dquot type 0
[   63.763255][ T4836] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   63.806318][ T4836] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.279: mark_inode_dirty error
[   63.848519][ T4844] loop1: detected capacity change from 0 to 2048
[   63.862733][ T4836] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   63.890508][ T4836] EXT4-fs (loop2): 1 orphan inode deleted
[   63.899637][ T4836] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.279: lblock 0 mapped to illegal pblock 16 (length 1)
[   63.918633][ T4836] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 16: comm syz.2.279: lblock 0 mapped to illegal pblock 16 (length 1)
[   63.932951][ T3650] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1)
[   63.949346][ T4844] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.972467][ T3650] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:10: Failed to release dquot type 0
[   63.988407][ T4836] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.996253][ T4836] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.005584][ T4836] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.013502][ T4836] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.050155][ T4850] loop1: detected capacity change from 0 to 1024
[   64.110355][ T4854] program syz.1.282 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   64.120202][ T4854] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   64.153636][ T3304] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[   64.167370][ T3304] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   64.190758][ T3304] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   64.318178][ T4868] __nla_validate_parse: 32 callbacks suppressed
[   64.318203][ T4868] netlink: 8 bytes leftover after parsing attributes in process `syz.2.289'.
[   64.355554][ T4867] loop4: detected capacity change from 0 to 512
[   64.368034][ T4867] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.381694][ T4871] loop2: detected capacity change from 0 to 512
[   64.407678][ T4867] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.410306][ T4871] EXT4-fs: Ignoring removed oldalloc option
[   64.437590][ T4871] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   64.462443][   T29] kauditd_printk_skb: 279 callbacks suppressed
[   64.462480][   T29] audit: type=1400 audit(1755214351.788:1574): avc:  denied  { unmount } for  pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   64.477508][ T4871] EXT4-fs (loop2): 1 truncate cleaned up
[   64.501709][   T29] audit: type=1400 audit(1755214351.828:1575): avc:  denied  { prog_run } for  pid=4876 comm="syz.1.292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   64.531772][   T29] audit: type=1400 audit(1755214351.828:1576): avc:  denied  { read write } for  pid=3300 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   64.556352][   T29] audit: type=1400 audit(1755214351.828:1577): avc:  denied  { open } for  pid=3300 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   64.581211][   T29] audit: type=1400 audit(1755214351.828:1578): avc:  denied  { ioctl } for  pid=3300 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   64.607210][   T29] audit: type=1400 audit(1755214351.848:1579): avc:  denied  { mount } for  pid=4870 comm="syz.2.291" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   64.629348][   T29] audit: type=1400 audit(1755214351.858:1580): avc:  denied  { create } for  pid=4880 comm="syz.4.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   64.631651][ T4881] netlink: 12 bytes leftover after parsing attributes in process `syz.4.293'.
[   64.650193][   T29] audit: type=1400 audit(1755214351.908:1581): avc:  denied  { create } for  pid=4880 comm="syz.4.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   64.680462][   T29] audit: type=1400 audit(1755214351.908:1582): avc:  denied  { read } for  pid=4880 comm="syz.4.293" dev="nsfs" ino=4026532432 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   64.701989][   T29] audit: type=1400 audit(1755214351.908:1583): avc:  denied  { open } for  pid=4880 comm="syz.4.293" path="net:[4026532432]" dev="nsfs" ino=4026532432 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   64.729741][ T4881] vlan2: entered promiscuous mode
[   64.734921][ T4881] team0: entered promiscuous mode
[   64.740652][ T4881] C: entered promiscuous mode
[   64.745915][ T4881] team_slave_1: entered promiscuous mode
[   64.761858][ T4886] program syz.1.294 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   64.771512][ T4886] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   64.818496][ T4888] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8297 sclass=netlink_route_socket pid=4888 comm=syz.1.295
[   64.923734][ T4890] binfmt_misc: register: failed to install interpreter file ./file0
[   64.959726][ T4897] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   64.970158][ T4897] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   64.999306][ T4900] program syz.3.300 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.009285][ T4900] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   65.082275][ T4906] loop1: detected capacity change from 0 to 512
[   65.097306][ T4906] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   65.124567][ T4908] netlink: 56 bytes leftover after parsing attributes in process `syz.3.304'.
[   65.139875][ T4906] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.157420][ T4908] C: renamed from team_slave_0 (while UP)
[   65.168463][ T4908] netlink: 'syz.3.304': attribute type 1 has an invalid length.
[   65.179388][ T4908] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   65.233008][ T4908] can0: slcan on ttyS3.
[   65.300659][ T4917] can0 (unregistered): slcan off ttyS3.
[   65.311843][ T4908] can0: slcan on ttyS3.
[   65.336258][ T4908] loop3: detected capacity change from 0 to 512
[   65.381324][ T4908] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   65.398817][ T4929] netlink: 'syz.2.308': attribute type 3 has an invalid length.
[   65.415546][ T4908] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[   65.434092][ T4908] System zones: 1-12
[   65.438190][ T4908] EXT4-fs (loop3): orphan cleanup on readonly fs
[   65.445579][ T4908] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.304: bg 0: block 361: padding at end of block bitmap is not set
[   65.461400][ T4908] EXT4-fs (loop3): Remounting filesystem read-only
[   65.468383][ T4908] EXT4-fs (loop3): 1 truncate cleaned up
[   65.561298][ T4907] can0 (unregistered): slcan off ttyS3.
[   65.802964][ T4964] random: crng reseeded on system resumption
[   65.819182][ T4962] loop4: detected capacity change from 0 to 1024
[   65.833221][ T4962] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.312: Failed to acquire dquot type 0
[   65.851395][ T4962] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   65.918286][ T4962] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.312: corrupted inode contents
[   65.969796][ T4962] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.312: mark_inode_dirty error
[   66.011307][ T4962] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.312: corrupted inode contents
[   66.036730][ T4962] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.312: mark_inode_dirty error
[   66.058045][ T4962] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.312: corrupted inode contents
[   66.081112][ T4962] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   66.093264][ T4962] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.312: corrupted inode contents
[   66.107714][ T4962] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.312: mark_inode_dirty error
[   66.119749][ T4962] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   66.130946][ T4962] EXT4-fs (loop4): 1 truncate cleaned up
[   66.166094][ T4975] loop1: detected capacity change from 0 to 512
[   66.175031][ T4975] EXT4-fs: Ignoring removed i_version option
[   66.181445][ T4975] EXT4-fs: Ignoring removed bh option
[   66.209337][ T4975] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.262909][ T4981] loop2: detected capacity change from 0 to 256
[   66.295440][ T4983] can0: slcan on ttyS3.
[   66.321146][ T4983] can0 (unregistered): slcan off ttyS3.
[   66.447886][ T4987] mmap: syz.2.319 (4987) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   66.835183][ T4989] loop4: detected capacity change from 0 to 1024
[   66.870784][ T4989] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.917594][ T4989] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.321: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.942551][ T4995] loop1: detected capacity change from 0 to 164
[   66.949941][ T4995] iso9660: Unknown parameter 'òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿ'
[   67.022680][ T4989] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.321: Failed to acquire dquot type 0
[   67.068548][ T4989] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.321: Freeing blocks not in datazone - block = 0, count = 4096
[   67.119172][ T4989] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.321: Invalid inode bitmap blk 0 in block_group 0
[   67.133361][ T3652] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:11: lblock 1 mapped to illegal pblock 1 (length 1)
[   67.149000][ T3652] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:11: Failed to release dquot type 0
[   67.161851][ T4989] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[   67.171029][ T4989] EXT4-fs (loop4): 1 orphan inode deleted
[   67.225231][ T5002] loop4: detected capacity change from 0 to 512
[   67.245792][ T5002] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   67.292219][ T5002] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.442850][ T5012] program syz.1.328 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   67.468862][ T5012] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   67.549100][ T5019] loop1: detected capacity change from 0 to 128
[   67.664150][ T5019] syz.1.331: attempt to access beyond end of device
[   67.664150][ T5019] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[   67.701467][ T5019] syz.1.331: attempt to access beyond end of device
[   67.701467][ T5019] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   67.730498][ T5019] syz.1.331: attempt to access beyond end of device
[   67.730498][ T5019] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   67.760048][ T5019] syz.1.331: attempt to access beyond end of device
[   67.760048][ T5019] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   67.790142][ T5019] syz.1.331: attempt to access beyond end of device
[   67.790142][ T5019] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   67.818799][ T5019] syz.1.331: attempt to access beyond end of device
[   67.818799][ T5019] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   67.847494][ T5019] syz.1.331: attempt to access beyond end of device
[   67.847494][ T5019] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   67.862048][ T5019] syz.1.331: attempt to access beyond end of device
[   67.862048][ T5019] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   67.877543][ T5019] syz.1.331: attempt to access beyond end of device
[   67.877543][ T5019] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   67.892702][ T5019] syz.1.331: attempt to access beyond end of device
[   67.892702][ T5019] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[   68.134633][ T5025] program syz.1.334 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.180682][ T5025] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   68.450139][ T5043] FAULT_INJECTION: forcing a failure.
[   68.450139][ T5043] name failslab, interval 1, probability 0, space 0, times 0
[   68.463323][ T5043] CPU: 1 UID: 0 PID: 5043 Comm: syz.4.338 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   68.463418][ T5043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.463434][ T5043] Call Trace:
[   68.463441][ T5043]  <TASK>
[   68.463448][ T5043]  __dump_stack+0x1d/0x30
[   68.463472][ T5043]  dump_stack_lvl+0xe8/0x140
[   68.463497][ T5043]  dump_stack+0x15/0x1b
[   68.463526][ T5043]  should_fail_ex+0x265/0x280
[   68.463547][ T5043]  should_failslab+0x8c/0xb0
[   68.463670][ T5043]  kmem_cache_alloc_noprof+0x50/0x310
[   68.463702][ T5043]  ? skb_clone+0x151/0x1f0
[   68.463727][ T5043]  skb_clone+0x151/0x1f0
[   68.463771][ T5043]  __netlink_deliver_tap+0x2c9/0x500
[   68.463795][ T5043]  netlink_unicast+0x66b/0x690
[   68.463900][ T5043]  netlink_sendmsg+0x58b/0x6b0
[   68.463938][ T5043]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.464021][ T5043]  __sock_sendmsg+0x145/0x180
[   68.464056][ T5043]  ____sys_sendmsg+0x31e/0x4e0
[   68.464084][ T5043]  ___sys_sendmsg+0x17b/0x1d0
[   68.464119][ T5043]  __x64_sys_sendmsg+0xd4/0x160
[   68.464224][ T5043]  x64_sys_call+0x191e/0x2ff0
[   68.464251][ T5043]  do_syscall_64+0xd2/0x200
[   68.464291][ T5043]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.464316][ T5043]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   68.464363][ T5043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.464383][ T5043] RIP: 0033:0x7feb4d7febe9
[   68.464400][ T5043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.464422][ T5043] RSP: 002b:00007feb4c267038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.464442][ T5043] RAX: ffffffffffffffda RBX: 00007feb4da25fa0 RCX: 00007feb4d7febe9
[   68.464525][ T5043] RDX: 00000000200c4094 RSI: 0000200000000580 RDI: 0000000000000007
[   68.464537][ T5043] RBP: 00007feb4c267090 R08: 0000000000000000 R09: 0000000000000000
[   68.464548][ T5043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.464562][ T5043] R13: 00007feb4da26038 R14: 00007feb4da25fa0 R15: 00007ffea162bd58
[   68.464584][ T5043]  </TASK>
[   68.683194][ T5042] loop1: detected capacity change from 0 to 1024
[   68.690908][ T5042] EXT4-fs: Ignoring removed bh option
[   68.782800][ T5048] loop4: detected capacity change from 0 to 512
[   68.825518][ T5026] chnl_net:caif_netlink_parms(): no params data found
[   68.837371][ T5048] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   68.848781][ T5051] program syz.2.341 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.872250][ T5051] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   68.885847][ T5053] tipc: Started in network mode
[   68.890972][ T5053] tipc: Node identity e0000002, cluster identity 4711
[   68.898029][ T5053] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   68.928051][ T5048] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.945506][ T5053] syz_tun: entered allmulticast mode
[   68.953120][ T5052] syz_tun: left allmulticast mode
[   69.066729][ T5026] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.073908][ T5026] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.128307][ T5026] bridge_slave_0: entered allmulticast mode
[   69.138420][ T5026] bridge_slave_0: entered promiscuous mode
[   69.151488][ T5026] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.158861][ T5026] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.171344][ T5026] bridge_slave_1: entered allmulticast mode
[   69.178280][ T5026] bridge_slave_1: entered promiscuous mode
[   69.326251][ T5026] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.362150][ T5026] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.418967][ T5026] team0: Port device team_slave_0 added
[   69.438436][ T5026] team0: Port device team_slave_1 added
[   69.444458][ T5074] netlink: 60 bytes leftover after parsing attributes in process `syz.2.345'.
[   69.453416][ T5074] netlink: 60 bytes leftover after parsing attributes in process `syz.2.345'.
[   69.492040][ T5026] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.499145][ T5026] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.525952][ T5026] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.601909][ T5026] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.608921][ T5026] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.636190][ T5026] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.649433][ T5079] FAULT_INJECTION: forcing a failure.
[   69.649433][ T5079] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.662785][ T5079] CPU: 0 UID: 0 PID: 5079 Comm: syz.2.347 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   69.662824][ T5079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.662840][ T5079] Call Trace:
[   69.662848][ T5079]  <TASK>
[   69.662927][ T5079]  __dump_stack+0x1d/0x30
[   69.662953][ T5079]  dump_stack_lvl+0xe8/0x140
[   69.662976][ T5079]  dump_stack+0x15/0x1b
[   69.662992][ T5079]  should_fail_ex+0x265/0x280
[   69.663016][ T5079]  should_fail+0xb/0x20
[   69.663090][ T5079]  should_fail_usercopy+0x1a/0x20
[   69.663120][ T5079]  _copy_to_user+0x20/0xa0
[   69.663159][ T5079]  simple_read_from_buffer+0xb5/0x130
[   69.663187][ T5079]  proc_fail_nth_read+0x10e/0x150
[   69.663245][ T5079]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.663276][ T5079]  vfs_read+0x1a5/0x770
[   69.663304][ T5079]  ? __rcu_read_unlock+0x4f/0x70
[   69.663374][ T5079]  ? __fget_files+0x184/0x1c0
[   69.663410][ T5079]  ksys_read+0xda/0x1a0
[   69.663511][ T5079]  __x64_sys_read+0x40/0x50
[   69.663541][ T5079]  x64_sys_call+0x27bc/0x2ff0
[   69.663570][ T5079]  do_syscall_64+0xd2/0x200
[   69.663598][ T5079]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.663627][ T5079]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   69.663699][ T5079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.663727][ T5079] RIP: 0033:0x7f1f4d84d5fc
[   69.663747][ T5079] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   69.663828][ T5079] RSP: 002b:00007f1f4c2af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   69.663907][ T5079] RAX: ffffffffffffffda RBX: 00007f1f4da75fa0 RCX: 00007f1f4d84d5fc
[   69.663924][ T5079] RDX: 000000000000000f RSI: 00007f1f4c2af0a0 RDI: 0000000000000004
[   69.664010][ T5079] RBP: 00007f1f4c2af090 R08: 0000000000000000 R09: 0000000000000000
[   69.664026][ T5079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.664042][ T5079] R13: 00007f1f4da76038 R14: 00007f1f4da75fa0 R15: 00007ffdf2cc7868
[   69.664067][ T5079]  </TASK>
[   69.943915][ T5026] hsr_slave_0: entered promiscuous mode
[   69.950087][ T5026] hsr_slave_1: entered promiscuous mode
[   69.965158][ T5026] debugfs: 'hsr0' already exists in 'hsr'
[   69.971263][ T5026] Cannot create hsr debugfs directory
[   69.978640][   T29] kauditd_printk_skb: 351 callbacks suppressed
[   69.978713][   T29] audit: type=1400 audit(1755214357.395:1930): avc:  denied  { create } for  pid=5082 comm="syz.2.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   70.010779][   T29] audit: type=1400 audit(1755214357.425:1931): avc:  denied  { getopt } for  pid=5082 comm="syz.2.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   70.030461][   T29] audit: type=1400 audit(1755214357.425:1932): avc:  denied  { mounton } for  pid=5082 comm="syz.2.349" path="/proc/232/task" dev="proc" ino=8813 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[   70.053556][   T29] audit: type=1400 audit(1755214357.425:1933): avc:  denied  { mount } for  pid=5082 comm="syz.2.349" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   70.092309][ T5077] atomic_op ffff888119b12928 conn xmit_atomic 0000000000000000
[   70.092880][   T29] audit: type=1400 audit(1755214357.505:1934): avc:  denied  { map } for  pid=5076 comm="syz.3.346" path="socket:[8810]" dev="sockfs" ino=8810 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   70.123372][   T29] audit: type=1400 audit(1755214357.505:1935): avc:  denied  { read write } for  pid=5076 comm="syz.3.346" path="socket:[8810]" dev="sockfs" ino=8810 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   70.147517][   T29] audit: type=1400 audit(1755214357.515:1936): avc:  denied  { create } for  pid=5076 comm="syz.3.346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   70.167106][   T29] audit: type=1400 audit(1755214357.515:1937): avc:  denied  { bind } for  pid=5076 comm="syz.3.346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   70.181959][ T5088] loop4: detected capacity change from 0 to 512
[   70.186802][   T29] audit: type=1400 audit(1755214357.515:1938): avc:  denied  { write } for  pid=5076 comm="syz.3.346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   70.193694][ T5088] EXT4-fs: Ignoring removed i_version option
[   70.218910][ T5088] EXT4-fs: Ignoring removed bh option
[   70.224671][   T29] audit: type=1400 audit(1755214357.595:1939): avc:  denied  { bind } for  pid=5087 comm="syz.4.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   70.285270][ T5093] loop2: detected capacity change from 0 to 512
[   70.294395][ T5093] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.316520][ T5095] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   70.328271][ T5088] EXT4-fs mount: 62 callbacks suppressed
[   70.328292][ T5088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.355224][ T5093] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   70.372201][ T5093] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.381733][ T5088] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.401642][ T5095] syz_tun: entered allmulticast mode
[   70.429622][ T5094] syz_tun: left allmulticast mode
[   70.453237][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   70.466345][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.473795][ T5026] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   70.485811][ T5026] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   70.496346][ T5026] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   70.516878][ T5026] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   70.539083][ T5104] loop1: detected capacity change from 0 to 512
[   70.548423][ T5108] loop4: detected capacity change from 0 to 512
[   70.559091][ T5113] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.565738][ T5108] EXT4-fs: Ignoring removed i_version option
[   70.577017][ T5108] EXT4-fs: Ignoring removed bh option
[   70.596466][ T5104] EXT4-fs (loop1): orphan cleanup on readonly fs
[   70.617657][ T5026] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.634575][ T5026] 8021q: adding VLAN 0 to HW filter on device team0
[   70.643253][ T5104] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.355: Failed to acquire dquot type 1
[   70.644167][ T5120] program syz.3.359 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.658644][ T5104] EXT4-fs (loop1): 1 truncate cleaned up
[   70.679800][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.680902][ T5104] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.687064][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.710819][ T5120] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   70.719966][ T5104] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   70.730146][   T55] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.737532][   T55] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.740229][ T5108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.760852][ T5104] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 8
[   70.798829][ T5108] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.843110][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.935599][ T5026] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.945098][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.007529][ T5145] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.044559][ T5145] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.059447][ T5150] smc: net device bond0 applied user defined pnetid SYZ0
[   71.075863][ T5148] loop1: detected capacity change from 0 to 512
[   71.102911][ T5148] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.144409][ T5148] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   71.161129][ T5148] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.196386][ T5026] veth0_vlan: entered promiscuous mode
[   71.214592][ T5026] veth1_vlan: entered promiscuous mode
[   71.239609][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   71.281792][ T5026] veth0_macvtap: entered promiscuous mode
[   71.292008][ T5026] veth1_macvtap: entered promiscuous mode
[   71.307126][ T5026] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.317480][ T5166] smc: net device bond0 erased user defined pnetid SYZ0
[   71.320271][ T5026] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.370107][   T55] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.381859][   T55] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.404173][   T55] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.413609][   T55] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.437584][ T5171] program syz.1.371 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.448970][ T5171] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   71.631924][ T5186] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=5186 comm=syz.5.375
[   71.704645][ T5196] program syz.1.382 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.736228][ T5196] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   71.974227][ T5209] netlink: 4 bytes leftover after parsing attributes in process `syz.4.387'.
[   71.984173][ T5209] netlink: 4 bytes leftover after parsing attributes in process `syz.4.387'.
[   72.040766][ T5215] syz_tun: entered allmulticast mode
[   72.050277][ T5215] netlink: 'syz.1.388': attribute type 4 has an invalid length.
[   72.067841][ T5215] dvmrp1: entered allmulticast mode
[   72.075507][ T5194] SELinux:  Context Ü is not valid (left unmapped).
[   72.075973][ T5211] syz_tun: left allmulticast mode
[   72.139318][ T5223] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.139519][ T5223] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.164358][ T5221] loop1: detected capacity change from 0 to 1024
[   72.200228][ T5221] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   72.234400][ T5221] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.234418][ T5221] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.236099][ T5221] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.236149][ T5221] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.384551][ T5235] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.384689][ T5235] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.437942][ T5237] loop5: detected capacity change from 0 to 512
[   72.448812][ T5237] EXT4-fs: Ignoring removed oldalloc option
[   72.458411][ T5237] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   72.466007][ T5237] EXT4-fs (loop5): 1 truncate cleaned up
[   72.476353][ T5237] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.780144][ T5026] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.995181][ T5245] netlink: 'syz.3.400': attribute type 1 has an invalid length.
[   73.026628][ T5245] bond1: entered promiscuous mode
[   73.032052][ T5245] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.041812][ T5245] netlink: 28 bytes leftover after parsing attributes in process `syz.3.400'.
[   73.214282][ T5290] loop1: detected capacity change from 0 to 512
[   73.243385][ T5290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.256860][ T5290] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.277832][ T5290] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   73.292136][ T5294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.416'.
[   73.305957][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.313368][ T5294] vlan1: entered allmulticast mode
[   73.320350][ T5294] bridge0: entered allmulticast mode
[   73.325998][ T5294] bridge2: port 1(vlan1) entered blocking state
[   73.332482][ T5294] bridge2: port 1(vlan1) entered disabled state
[   73.344338][ T5294] vlan1: entered promiscuous mode
[   73.350001][ T5294] bridge0: entered promiscuous mode
[   73.363250][ T5294] netlink: 32 bytes leftover after parsing attributes in process `syz.2.416'.
[   73.453947][ T5303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.420'.
[   73.545937][ T5307] netlink: 16 bytes leftover after parsing attributes in process `syz.3.422'.
[   74.261048][ T5342] loop1: detected capacity change from 0 to 512
[   74.274348][ T5342] EXT4-fs: Ignoring removed oldalloc option
[   74.309597][ T5342] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.347617][ T5342] EXT4-fs (loop1): 1 truncate cleaned up
[   74.355479][ T5342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.514406][ T5369] FAULT_INJECTION: forcing a failure.
[   74.514406][ T5369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.527940][ T5369] CPU: 1 UID: 0 PID: 5369 Comm: syz.3.442 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   74.527991][ T5369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   74.528007][ T5369] Call Trace:
[   74.528015][ T5369]  <TASK>
[   74.528023][ T5369]  __dump_stack+0x1d/0x30
[   74.528081][ T5369]  dump_stack_lvl+0xe8/0x140
[   74.528100][ T5369]  dump_stack+0x15/0x1b
[   74.528147][ T5369]  should_fail_ex+0x265/0x280
[   74.528173][ T5369]  should_fail+0xb/0x20
[   74.528207][ T5369]  should_fail_usercopy+0x1a/0x20
[   74.528235][ T5369]  _copy_from_user+0x1c/0xb0
[   74.528268][ T5369]  __sys_bpf+0x178/0x7b0
[   74.528386][ T5369]  __x64_sys_bpf+0x41/0x50
[   74.528424][ T5369]  x64_sys_call+0x2aea/0x2ff0
[   74.528446][ T5369]  do_syscall_64+0xd2/0x200
[   74.528474][ T5369]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.528504][ T5369]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   74.528558][ T5369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.528585][ T5369] RIP: 0033:0x7f898017ebe9
[   74.528603][ T5369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.528622][ T5369] RSP: 002b:00007f897ebdf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   74.528646][ T5369] RAX: ffffffffffffffda RBX: 00007f89803a5fa0 RCX: 00007f898017ebe9
[   74.528658][ T5369] RDX: 0000000000000050 RSI: 0000200000000700 RDI: 0000000000000000
[   74.528670][ T5369] RBP: 00007f897ebdf090 R08: 0000000000000000 R09: 0000000000000000
[   74.528696][ T5369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.528719][ T5369] R13: 00007f89803a6038 R14: 00007f89803a5fa0 R15: 00007ffe7aeaad88
[   74.528743][ T5369]  </TASK>
[   74.842183][ T5382] netlink: 'syz.5.446': attribute type 1 has an invalid length.
[   74.856141][ T5382] netlink: 4 bytes leftover after parsing attributes in process `syz.5.446'.
[   74.875685][ T5382] hsr_slave_1 (unregistering): left promiscuous mode
[   74.940305][ T5384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=5384 comm=syz.4.448
[   74.954235][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.983628][ T5389] loop2: detected capacity change from 0 to 1024
[   74.992893][ T5389] EXT4-fs: Ignoring removed orlov option
[   75.007325][   T29] kauditd_printk_skb: 294 callbacks suppressed
[   75.007340][   T29] audit: type=1400 audit(1755214362.425:2232): avc:  denied  { create } for  pid=5390 comm="syz.1.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   75.009028][ T5392] netlink: 8 bytes leftover after parsing attributes in process `syz.1.451'.
[   75.039773][   T29] audit: type=1326 audit(1755214362.455:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.066445][   T29] audit: type=1326 audit(1755214362.455:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.082329][ T5395] FAULT_INJECTION: forcing a failure.
[   75.082329][ T5395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.090507][   T29] audit: type=1326 audit(1755214362.455:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.103380][ T5395] CPU: 1 UID: 0 PID: 5395 Comm: syz.1.451 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   75.103414][ T5395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.103456][ T5395] Call Trace:
[   75.103466][ T5395]  <TASK>
[   75.103478][ T5395]  __dump_stack+0x1d/0x30
[   75.103510][ T5395]  dump_stack_lvl+0xe8/0x140
[   75.103538][ T5395]  dump_stack+0x15/0x1b
[   75.103563][ T5395]  should_fail_ex+0x265/0x280
[   75.103593][ T5395]  should_fail+0xb/0x20
[   75.103618][ T5395]  should_fail_usercopy+0x1a/0x20
[   75.103684][ T5395]  _copy_from_user+0x1c/0xb0
[   75.103793][ T5395]  ___sys_sendmsg+0xc1/0x1d0
[   75.103850][ T5395]  __x64_sys_sendmsg+0xd4/0x160
[   75.103889][ T5395]  x64_sys_call+0x191e/0x2ff0
[   75.103923][ T5395]  do_syscall_64+0xd2/0x200
[   75.103960][ T5395]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.103995][ T5395]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.104031][ T5395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.104142][ T5395] RIP: 0033:0x7f411185ebe9
[   75.104163][ T5395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.104250][ T5395] RSP: 002b:00007f41102a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.104277][ T5395] RAX: ffffffffffffffda RBX: 00007f4111a86090 RCX: 00007f411185ebe9
[   75.104295][ T5395] RDX: 00000000000048c0 RSI: 0000200000000440 RDI: 0000000000000005
[   75.104313][ T5395] RBP: 00007f41102a6090 R08: 0000000000000000 R09: 0000000000000000
[   75.104330][ T5395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.104347][ T5395] R13: 00007f4111a86128 R14: 00007f4111a86090 R15: 00007fff634d4418
[   75.104402][ T5395]  </TASK>
[   75.304467][   T29] audit: type=1326 audit(1755214362.455:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.339155][ T5389] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.339285][   T29] audit: type=1326 audit(1755214362.495:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.376047][   T29] audit: type=1326 audit(1755214362.495:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.376088][   T29] audit: type=1326 audit(1755214362.535:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.376149][   T29] audit: type=1326 audit(1755214362.535:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.376185][   T29] audit: type=1326 audit(1755214362.535:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5391 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f898017ebe9 code=0x7ffc0000
[   75.524469][ T5402] loop1: detected capacity change from 0 to 512
[   75.575226][ T5402] EXT4-fs (loop1): orphan cleanup on readonly fs
[   75.585286][ T5402] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.455: Failed to acquire dquot type 1
[   75.620531][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.633069][ T5402] EXT4-fs (loop1): 1 truncate cleaned up
[   75.660074][ T5402] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   75.684325][ T5409] netlink: 12 bytes leftover after parsing attributes in process `syz.5.456'.
[   75.752914][ T5412] FAULT_INJECTION: forcing a failure.
[   75.752914][ T5412] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.766408][ T5412] CPU: 0 UID: 0 PID: 5412 Comm: syz.2.458 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   75.766444][ T5412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   75.766458][ T5412] Call Trace:
[   75.766466][ T5412]  <TASK>
[   75.766498][ T5412]  __dump_stack+0x1d/0x30
[   75.766525][ T5412]  dump_stack_lvl+0xe8/0x140
[   75.766549][ T5412]  dump_stack+0x15/0x1b
[   75.766571][ T5412]  should_fail_ex+0x265/0x280
[   75.766597][ T5412]  should_fail+0xb/0x20
[   75.766674][ T5412]  should_fail_usercopy+0x1a/0x20
[   75.766703][ T5412]  _copy_from_user+0x1c/0xb0
[   75.766786][ T5412]  ___sys_sendmsg+0xc1/0x1d0
[   75.766929][ T5412]  __x64_sys_sendmsg+0xd4/0x160
[   75.766959][ T5412]  x64_sys_call+0x191e/0x2ff0
[   75.766981][ T5412]  do_syscall_64+0xd2/0x200
[   75.767007][ T5412]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.767099][ T5412]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   75.767130][ T5412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.767156][ T5412] RIP: 0033:0x7f1f4d84ebe9
[   75.767174][ T5412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.767254][ T5412] RSP: 002b:00007f1f4c2af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.767303][ T5412] RAX: ffffffffffffffda RBX: 00007f1f4da75fa0 RCX: 00007f1f4d84ebe9
[   75.767319][ T5412] RDX: 0000000020008000 RSI: 0000200000000500 RDI: 0000000000000003
[   75.767332][ T5412] RBP: 00007f1f4c2af090 R08: 0000000000000000 R09: 0000000000000000
[   75.767347][ T5412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.767362][ T5412] R13: 00007f1f4da76038 R14: 00007f1f4da75fa0 R15: 00007ffdf2cc7868
[   75.767384][ T5412]  </TASK>
[   75.948911][ T5402] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   75.998647][ T5402] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 8
[   76.032881][ T5422] netlink: 'syz.3.463': attribute type 21 has an invalid length.
[   76.040866][ T5422] netlink: 132 bytes leftover after parsing attributes in process `syz.3.463'.
[   76.050050][ T5422] netlink: 'syz.3.463': attribute type 1 has an invalid length.
[   76.068820][ T5422] netlink: 4 bytes leftover after parsing attributes in process `syz.3.463'.
[   76.078629][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.109663][ T5418] lo speed is unknown, defaulting to 1000
[   76.129885][ T5418] lo speed is unknown, defaulting to 1000
[   76.137871][ T5429] FAULT_INJECTION: forcing a failure.
[   76.137871][ T5429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.151919][ T5429] CPU: 0 UID: 0 PID: 5429 Comm: syz.1.466 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   76.152036][ T5429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.152053][ T5429] Call Trace:
[   76.152061][ T5429]  <TASK>
[   76.152070][ T5429]  __dump_stack+0x1d/0x30
[   76.152097][ T5429]  dump_stack_lvl+0xe8/0x140
[   76.152123][ T5429]  dump_stack+0x15/0x1b
[   76.152215][ T5429]  should_fail_ex+0x265/0x280
[   76.152263][ T5429]  should_fail+0xb/0x20
[   76.152315][ T5429]  should_fail_usercopy+0x1a/0x20
[   76.152340][ T5429]  strncpy_from_user+0x25/0x230
[   76.152375][ T5429]  ? __fget_files+0x184/0x1c0
[   76.152434][ T5429]  __se_sys_add_key+0x86/0x350
[   76.152462][ T5429]  __x64_sys_add_key+0x67/0x80
[   76.152485][ T5429]  x64_sys_call+0x28c4/0x2ff0
[   76.152553][ T5429]  do_syscall_64+0xd2/0x200
[   76.152583][ T5429]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.152610][ T5429]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.152712][ T5429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.152736][ T5429] RIP: 0033:0x7f411185ebe9
[   76.152753][ T5429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.152773][ T5429] RSP: 002b:00007f41102c7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[   76.152795][ T5429] RAX: ffffffffffffffda RBX: 00007f4111a85fa0 RCX: 00007f411185ebe9
[   76.152809][ T5429] RDX: 00002000000009c0 RSI: 0000000000000000 RDI: 0000200000000040
[   76.152875][ T5429] RBP: 00007f41102c7090 R08: 000000001bef1245 R09: 0000000000000000
[   76.152888][ T5429] R10: 000000000000002b R11: 0000000000000246 R12: 0000000000000001
[   76.152902][ T5429] R13: 00007f4111a86038 R14: 00007f4111a85fa0 R15: 00007fff634d4418
[   76.152923][ T5429]  </TASK>
[   76.154342][ T5418] lo speed is unknown, defaulting to 1000
[   76.344635][ T5433] netlink: 'syz.2.461': attribute type 13 has an invalid length.
[   76.361099][ T5418] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   76.368953][ T5418] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   76.382800][ T5433] gretap0: refused to change device tx_queue_len
[   76.406675][ T5433] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   76.428753][ T5418] lo speed is unknown, defaulting to 1000
[   76.444927][ T5436] wg2: entered promiscuous mode
[   76.449834][ T5436] wg2: entered allmulticast mode
[   76.461185][ T5418] lo speed is unknown, defaulting to 1000
[   76.468490][ T5418] lo speed is unknown, defaulting to 1000
[   76.476185][ T5418] lo speed is unknown, defaulting to 1000
[   76.485269][ T5418] lo speed is unknown, defaulting to 1000
[   76.493439][ T5418] lo speed is unknown, defaulting to 1000
[   76.739307][ T5452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.476'.
[   76.867923][ T5466] 9pnet_fd: Insufficient options for proto=fd
[   76.875306][ T5466] FAULT_INJECTION: forcing a failure.
[   76.875306][ T5466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.888819][ T5466] CPU: 0 UID: 0 PID: 5466 Comm: syz.4.481 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   76.888858][ T5466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   76.888876][ T5466] Call Trace:
[   76.888884][ T5466]  <TASK>
[   76.888893][ T5466]  __dump_stack+0x1d/0x30
[   76.888935][ T5466]  dump_stack_lvl+0xe8/0x140
[   76.888957][ T5466]  dump_stack+0x15/0x1b
[   76.888980][ T5466]  should_fail_ex+0x265/0x280
[   76.889008][ T5466]  should_fail+0xb/0x20
[   76.889032][ T5466]  should_fail_usercopy+0x1a/0x20
[   76.889061][ T5466]  _copy_to_user+0x20/0xa0
[   76.889121][ T5466]  simple_read_from_buffer+0xb5/0x130
[   76.889156][ T5466]  proc_fail_nth_read+0x10e/0x150
[   76.889242][ T5466]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.889321][ T5466]  vfs_read+0x1a5/0x770
[   76.889343][ T5466]  ? __traceiter_kfree+0x2e/0x50
[   76.889366][ T5466]  ? __rcu_read_unlock+0x4f/0x70
[   76.889390][ T5466]  ? __fget_files+0x184/0x1c0
[   76.889484][ T5466]  ksys_read+0xda/0x1a0
[   76.889588][ T5466]  __x64_sys_read+0x40/0x50
[   76.889623][ T5466]  x64_sys_call+0x27bc/0x2ff0
[   76.889646][ T5466]  do_syscall_64+0xd2/0x200
[   76.889674][ T5466]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.889726][ T5466]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   76.889767][ T5466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.889812][ T5466] RIP: 0033:0x7feb4d7fd5fc
[   76.889864][ T5466] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   76.889882][ T5466] RSP: 002b:00007feb4c267030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   76.889902][ T5466] RAX: ffffffffffffffda RBX: 00007feb4da25fa0 RCX: 00007feb4d7fd5fc
[   76.889915][ T5466] RDX: 000000000000000f RSI: 00007feb4c2670a0 RDI: 0000000000000006
[   76.889929][ T5466] RBP: 00007feb4c267090 R08: 0000000000000000 R09: 0000000000000000
[   76.889942][ T5466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.890020][ T5466] R13: 00007feb4da26038 R14: 00007feb4da25fa0 R15: 00007ffea162bd58
[   76.890040][ T5466]  </TASK>
[   77.544744][ T5486] netlink: 8 bytes leftover after parsing attributes in process `syz.5.492'.
[   77.559075][ T5487] netlink: 16 bytes leftover after parsing attributes in process `syz.3.490'.
[   77.577745][ T5489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.491'.
[   77.596878][ T5491] loop3: detected capacity change from 0 to 1024
[   77.599288][ T5489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.491'.
[   77.614793][ T5491] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.643081][ T5491] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.493: lblock 1 mapped to illegal pblock 1 (length 1)
[   77.671588][ T5491] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.493: Failed to acquire dquot type 0
[   77.692970][ T5491] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.493: Freeing blocks not in datazone - block = 0, count = 4096
[   77.710938][ T5491] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.493: Invalid inode bitmap blk 0 in block_group 0
[   77.735795][   T12] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   77.752273][ T5491] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   77.776277][ T5491] EXT4-fs (loop3): 1 orphan inode deleted
[   77.786958][ T5491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.807929][   T12] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 0
[   77.864566][ T5509] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5509 comm=syz.4.499
[   77.944196][ T5491] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.980970][ T5517] lo: entered allmulticast mode
[   78.011869][ T5517] lo: left allmulticast mode
[   78.103534][ T5523] loop3: detected capacity change from 0 to 1024
[   78.162363][ T5523] EXT4-fs: Ignoring removed orlov option
[   78.168126][ T5523] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.183855][ T5526] loop1: detected capacity change from 0 to 512
[   78.227594][ T5526] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.273480][ T5526] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.308298][ T5523] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.451978][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.477550][ T5538] netlink: 'syz.5.508': attribute type 27 has an invalid length.
[   78.524928][ T5545] FAULT_INJECTION: forcing a failure.
[   78.524928][ T5545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.538155][ T5545] CPU: 1 UID: 0 PID: 5545 Comm: syz.3.510 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   78.538193][ T5545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   78.538209][ T5545] Call Trace:
[   78.538217][ T5545]  <TASK>
[   78.538299][ T5545]  __dump_stack+0x1d/0x30
[   78.538327][ T5545]  dump_stack_lvl+0xe8/0x140
[   78.538352][ T5545]  dump_stack+0x15/0x1b
[   78.538382][ T5545]  should_fail_ex+0x265/0x280
[   78.538409][ T5545]  should_fail+0xb/0x20
[   78.538432][ T5545]  should_fail_usercopy+0x1a/0x20
[   78.538494][ T5545]  strncpy_from_user+0x25/0x230
[   78.538568][ T5545]  path_setxattrat+0xeb/0x310
[   78.538758][ T5545]  __x64_sys_lsetxattr+0x71/0x90
[   78.538790][ T5545]  x64_sys_call+0x2877/0x2ff0
[   78.538860][ T5545]  do_syscall_64+0xd2/0x200
[   78.538941][ T5545]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   78.538973][ T5545]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   78.539003][ T5545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.539028][ T5545] RIP: 0033:0x7f898017ebe9
[   78.539043][ T5545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.539140][ T5545] RSP: 002b:00007f897ebdf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   78.539166][ T5545] RAX: ffffffffffffffda RBX: 00007f89803a5fa0 RCX: 00007f898017ebe9
[   78.539182][ T5545] RDX: 0000200000000280 RSI: 0000200000000000 RDI: 0000200000000400
[   78.539269][ T5545] RBP: 00007f897ebdf090 R08: 0000000000000000 R09: 0000000000000000
[   78.539284][ T5545] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000001
[   78.539299][ T5545] R13: 00007f89803a6038 R14: 00007f89803a5fa0 R15: 00007ffe7aeaad88
[   78.539323][ T5545]  </TASK>
[   78.721801][ T5538] loop5: detected capacity change from 0 to 2048
[   78.752122][ T5538] ext4: Unknown parameter 'dont_appraise'
[   78.792514][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.818187][ T5538] Invalid logical block size (1352)
[   78.830363][ T5548] loop3: detected capacity change from 0 to 1024
[   78.867147][ T5548] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.963754][ T5561] loop5: detected capacity change from 0 to 512
[   78.989813][ T5561] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   78.998758][ T5561] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[   79.051940][ T5575] loop2: detected capacity change from 0 to 512
[   79.052318][ T5575] EXT4-fs: Ignoring removed oldalloc option
[   79.055465][ T5575] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   79.073815][ T5575] EXT4-fs (loop2): 1 truncate cleaned up
[   79.074291][ T5575] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.164337][ T5575] lo speed is unknown, defaulting to 1000
[   79.287153][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.459889][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.508260][ T5609] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5609 comm=syz.5.530
[   79.807996][ T5629] netlink: 'gtp': attribute type 10 has an invalid length.
[   79.815183][ T5627] netlink: 'syz.2.537': attribute type 27 has an invalid length.
[   79.889072][ T5627] loop2: detected capacity change from 0 to 2048
[   79.911349][ T5627] ext4: Unknown parameter 'dont_appraise'
[   79.962242][ T5627] Invalid logical block size (1352)
[   80.008058][ T5642] __nla_validate_parse: 6 callbacks suppressed
[   80.008074][ T5642] netlink: 216 bytes leftover after parsing attributes in process `syz.2.542'.
[   80.062397][ T5649] FAULT_INJECTION: forcing a failure.
[   80.062397][ T5649] name failslab, interval 1, probability 0, space 0, times 0
[   80.075856][ T5649] CPU: 1 UID: 0 PID: 5649 Comm: syz.5.544 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   80.075890][ T5649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.075905][ T5649] Call Trace:
[   80.075913][ T5649]  <TASK>
[   80.075921][ T5649]  __dump_stack+0x1d/0x30
[   80.075974][ T5649]  dump_stack_lvl+0xe8/0x140
[   80.076011][ T5649]  dump_stack+0x15/0x1b
[   80.076067][ T5649]  should_fail_ex+0x265/0x280
[   80.076093][ T5649]  ? __hw_addr_add_ex+0x162/0x440
[   80.076191][ T5649]  should_failslab+0x8c/0xb0
[   80.076217][ T5649]  __kmalloc_cache_noprof+0x4c/0x320
[   80.076312][ T5649]  __hw_addr_add_ex+0x162/0x440
[   80.076359][ T5649]  ? __pfx_macvtap_setup+0x10/0x10
[   80.076390][ T5649]  dev_addr_init+0xb1/0x120
[   80.076513][ T5649]  alloc_netdev_mqs+0x1c5/0xa20
[   80.076544][ T5649]  rtnl_create_link+0x239/0x710
[   80.076573][ T5649]  rtnl_newlink_create+0x14c/0x620
[   80.076647][ T5649]  ? security_capable+0x83/0x90
[   80.076679][ T5649]  ? netlink_ns_capable+0x86/0xa0
[   80.076720][ T5649]  rtnl_newlink+0xf29/0x12d0
[   80.076835][ T5649]  ? xas_load+0x413/0x430
[   80.076859][ T5649]  ? __memcg_slab_free_hook+0x135/0x230
[   80.076902][ T5649]  ? __rcu_read_unlock+0x4f/0x70
[   80.076929][ T5649]  ? avc_has_perm_noaudit+0x1b1/0x200
[   80.077018][ T5649]  ? cred_has_capability+0x210/0x280
[   80.077080][ T5649]  ? selinux_capable+0x31/0x40
[   80.077135][ T5649]  ? security_capable+0x83/0x90
[   80.077165][ T5649]  ? ns_capable+0x7d/0xb0
[   80.077194][ T5649]  ? __pfx_rtnl_newlink+0x10/0x10
[   80.077303][ T5649]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   80.077341][ T5649]  netlink_rcv_skb+0x120/0x220
[   80.077365][ T5649]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   80.077408][ T5649]  rtnetlink_rcv+0x1c/0x30
[   80.077448][ T5649]  netlink_unicast+0x5c0/0x690
[   80.077510][ T5649]  netlink_sendmsg+0x58b/0x6b0
[   80.077540][ T5649]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.077563][ T5649]  __sock_sendmsg+0x145/0x180
[   80.077591][ T5649]  ____sys_sendmsg+0x31e/0x4e0
[   80.077615][ T5649]  ___sys_sendmsg+0x17b/0x1d0
[   80.077671][ T5649]  __x64_sys_sendmsg+0xd4/0x160
[   80.077705][ T5649]  x64_sys_call+0x191e/0x2ff0
[   80.077765][ T5649]  do_syscall_64+0xd2/0x200
[   80.077835][ T5649]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.077867][ T5649]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.077900][ T5649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.078006][ T5649] RIP: 0033:0x7fa0c527ebe9
[   80.078026][ T5649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.078045][ T5649] RSP: 002b:00007fa0c3ce7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.078082][ T5649] RAX: ffffffffffffffda RBX: 00007fa0c54a5fa0 RCX: 00007fa0c527ebe9
[   80.078095][ T5649] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   80.078111][ T5649] RBP: 00007fa0c3ce7090 R08: 0000000000000000 R09: 0000000000000000
[   80.078125][ T5649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.078137][ T5649] R13: 00007fa0c54a6038 R14: 00007fa0c54a5fa0 R15: 00007ffcc88e8588
[   80.078156][ T5649]  </TASK>
[   80.409460][ T3659] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.464689][ T5653] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=5653 comm=syz.5.548
[   80.483576][ T3659] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.558893][ T3659] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.575800][ T5660] netlink: 'syz.2.550': attribute type 21 has an invalid length.
[   80.585616][ T5660] netlink: 132 bytes leftover after parsing attributes in process `syz.2.550'.
[   80.594770][ T5660] netlink: 'syz.2.550': attribute type 1 has an invalid length.
[   80.615138][ T5660] netlink: 4 bytes leftover after parsing attributes in process `syz.2.550'.
[   80.625682][   T29] kauditd_printk_skb: 518 callbacks suppressed
[   80.625698][   T29] audit: type=1326 audit(1755214368.045:2755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.666947][ T5666] netlink: 'syz.4.553': attribute type 27 has an invalid length.
[   80.682099][ T3659] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.685569][ T5666] loop4: detected capacity change from 0 to 2048
[   80.696230][   T29] audit: type=1326 audit(1755214368.075:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.722590][   T29] audit: type=1326 audit(1755214368.085:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.739098][ T5666] ext4: Unknown parameter 'dont_appraise'
[   80.746341][   T29] audit: type=1326 audit(1755214368.085:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5672 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7feb4d8314a5 code=0x7ffc0000
[   80.776210][   T29] audit: type=1326 audit(1755214368.085:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.799630][   T29] audit: type=1326 audit(1755214368.085:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.824171][   T29] audit: type=1326 audit(1755214368.085:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.842732][ T5666] Invalid logical block size (1352)
[   80.847943][   T29] audit: type=1326 audit(1755214368.085:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.867676][ T5657] lo speed is unknown, defaulting to 1000
[   80.878001][   T29] audit: type=1326 audit(1755214368.085:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.908149][   T29] audit: type=1326 audit(1755214368.085:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5665 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb4d7febe9 code=0x7ffc0000
[   80.948008][ T5677] FAULT_INJECTION: forcing a failure.
[   80.948008][ T5677] name failslab, interval 1, probability 0, space 0, times 0
[   80.960957][ T5677] CPU: 0 UID: 0 PID: 5677 Comm: syz.5.554 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   80.960990][ T5677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.961006][ T5677] Call Trace:
[   80.961014][ T5677]  <TASK>
[   80.961024][ T5677]  __dump_stack+0x1d/0x30
[   80.961079][ T5677]  dump_stack_lvl+0xe8/0x140
[   80.961159][ T5677]  dump_stack+0x15/0x1b
[   80.961176][ T5677]  should_fail_ex+0x265/0x280
[   80.961258][ T5677]  ? p9_fd_create+0xba/0x280
[   80.961295][ T5677]  should_failslab+0x8c/0xb0
[   80.961325][ T5677]  __kmalloc_cache_noprof+0x4c/0x320
[   80.961388][ T5677]  p9_fd_create+0xba/0x280
[   80.961490][ T5677]  p9_client_create+0x608/0xbc0
[   80.961524][ T5677]  v9fs_session_init+0xf7/0xde0
[   80.961590][ T5677]  ? avc_has_perm_noaudit+0x1b1/0x200
[   80.961657][ T5677]  ? should_fail_ex+0xdb/0x280
[   80.961682][ T5677]  ? v9fs_mount+0x51/0x5c0
[   80.961746][ T5677]  ? should_failslab+0x8c/0xb0
[   80.961854][ T5677]  ? __kmalloc_cache_noprof+0x189/0x320
[   80.961894][ T5677]  v9fs_mount+0x67/0x5c0
[   80.961985][ T5677]  ? selinux_capable+0x31/0x40
[   80.962015][ T5677]  ? __pfx_v9fs_mount+0x10/0x10
[   80.962093][ T5677]  legacy_get_tree+0x78/0xd0
[   80.962123][ T5677]  vfs_get_tree+0x57/0x1d0
[   80.962150][ T5677]  do_new_mount+0x207/0x5e0
[   80.962178][ T5677]  ? security_capable+0x83/0x90
[   80.962283][ T5677]  path_mount+0x4a4/0xb20
[   80.962313][ T5677]  ? user_path_at+0x109/0x130
[   80.962357][ T5677]  __se_sys_mount+0x28f/0x2e0
[   80.962386][ T5677]  ? fput+0x8f/0xc0
[   80.962444][ T5677]  __x64_sys_mount+0x67/0x80
[   80.962473][ T5677]  x64_sys_call+0x2b4d/0x2ff0
[   80.962495][ T5677]  do_syscall_64+0xd2/0x200
[   80.962523][ T5677]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   80.962558][ T5677]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   80.962636][ T5677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.962663][ T5677] RIP: 0033:0x7fa0c527ebe9
[   80.962683][ T5677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.962706][ T5677] RSP: 002b:00007fa0c3ce7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   80.962763][ T5677] RAX: ffffffffffffffda RBX: 00007fa0c54a5fa0 RCX: 00007fa0c527ebe9
[   80.962779][ T5677] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000000
[   80.962794][ T5677] RBP: 00007fa0c3ce7090 R08: 0000200000000140 R09: 0000000000000000
[   80.962836][ T5677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.962851][ T5677] R13: 00007fa0c54a6038 R14: 00007fa0c54a5fa0 R15: 00007ffcc88e8588
[   80.962877][ T5677]  </TASK>
[   81.256967][ T5657] chnl_net:caif_netlink_parms(): no params data found
[   81.289195][ T5682] netlink: 4 bytes leftover after parsing attributes in process `syz.3.556'.
[   81.299910][ T5682] netlink: 4 bytes leftover after parsing attributes in process `syz.3.556'.
[   81.349739][ T3659] bridge_slave_1: left allmulticast mode
[   81.355693][ T3659] bridge_slave_1: left promiscuous mode
[   81.361388][ T3659] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.384914][ T3659] bridge_slave_0: left allmulticast mode
[   81.390668][ T3659] bridge_slave_0: left promiscuous mode
[   81.396491][ T3659] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.435898][ T5691] loop2: detected capacity change from 0 to 512
[   81.504074][ T3659] dvmrp1 (unregistering): left allmulticast mode
[   81.572923][ T3659] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.582066][ T3659] bond_slave_0: left promiscuous mode
[   81.588903][ T3659] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.603639][ T3659] bond_slave_1: left promiscuous mode
[   81.617212][ T3659] $Hÿ (unregistering): Released all slaves
[   81.646434][ T5694] team_slave_0: entered promiscuous mode
[   81.652420][ T5694] team_slave_1: entered promiscuous mode
[   81.660279][ T5694] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   81.677616][ T3659] tipc: Left network mode
[   81.686022][ T3659] hsr_slave_0: left promiscuous mode
[   81.703848][ T3659] hsr_slave_1: left promiscuous mode
[   81.722660][ T3659] veth1_macvtap: left promiscuous mode
[   81.728233][ T3659] veth0_macvtap: left promiscuous mode
[   81.737699][ T3659] veth1_vlan: left promiscuous mode
[   81.750506][ T3659] veth0_vlan: left promiscuous mode
[   81.752114][ T5725] netlink: 'syz.2.570': attribute type 21 has an invalid length.
[   81.856758][ T3659] team0 (unregistering): Port device team_slave_1 removed
[   81.868747][ T3659] team0 (unregistering): Port device team_slave_0 removed
[   81.908260][ T5698] 8021q: adding VLAN 0 to HW filter on device macvlan3
[   81.925184][ T5725] netlink: 132 bytes leftover after parsing attributes in process `syz.2.570'.
[   81.934351][ T5725] netlink: 'syz.2.570': attribute type 1 has an invalid length.
[   81.948369][ T5725] netlink: 4 bytes leftover after parsing attributes in process `syz.2.570'.
[   81.954645][ T5729] pimreg: entered allmulticast mode
[   81.971377][ T5701] lo speed is unknown, defaulting to 1000
[   81.978933][ T5747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.571'.
[   81.980823][ T5738] pimreg: left allmulticast mode
[   81.988553][ T5747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.571'.
[   82.047696][ T5751] loop5: detected capacity change from 0 to 4096
[   82.087480][ T5707] lo speed is unknown, defaulting to 1000
[   82.094826][ T5657] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.101947][ T5657] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.119834][ T5657] bridge_slave_0: entered allmulticast mode
[   82.126649][ T5657] bridge_slave_0: entered promiscuous mode
[   82.134117][ T5751] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.135881][ T5657] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.154071][ T5657] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.162112][ T5657] bridge_slave_1: entered allmulticast mode
[   82.169188][ T5755] loop2: detected capacity change from 0 to 512
[   82.169200][ T5657] bridge_slave_1: entered promiscuous mode
[   82.187891][ T5755] EXT4-fs: Ignoring removed oldalloc option
[   82.196664][ T5657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.209186][ T5755] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   82.209286][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.5.572'.
[   82.234154][ T5657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.262720][ T5755] EXT4-fs (loop2): 1 truncate cleaned up
[   82.268987][ T5755] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.291060][ T5751] IPVS: Error joining to the multicast group
[   82.336950][ T5657] team0: Port device team_slave_0 added
[   82.347414][ T5657] team0: Port device team_slave_1 added
[   82.427970][ T5657] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.435293][ T5657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.461895][ T5657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.476790][ T5026] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.527065][ T5755] lo speed is unknown, defaulting to 1000
[   82.536243][ T5775] loop3: detected capacity change from 0 to 512
[   82.542154][ T5657] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.549771][ T5657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.576086][ T5657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.607073][ T5775] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.620544][ T5775] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.749039][ T5657] hsr_slave_0: entered promiscuous mode
[   82.773573][ T5657] hsr_slave_1: entered promiscuous mode
[   82.790972][ T5657] debugfs: 'hsr0' already exists in 'hsr'
[   82.796759][ T5657] Cannot create hsr debugfs directory
[   82.935784][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.992418][ T5809] netlink: 'syz.5.583': attribute type 21 has an invalid length.
[   83.033717][ T5809] netlink: 'syz.5.583': attribute type 1 has an invalid length.
[   83.051988][ T5657] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   83.062510][ T5657] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   83.084309][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.136117][ T5657] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   83.181088][ T5657] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   83.252420][ T5833] random: crng reseeded on system resumption
[   83.291372][ T5827] loop4: detected capacity change from 0 to 512
[   83.372416][ T5657] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.394103][ T5657] 8021q: adding VLAN 0 to HW filter on device team0
[   83.405576][ T5827] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.431305][ T5827] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.433913][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.450891][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.543820][ T5657] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   83.554500][ T5657] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.597948][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.605793][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.718023][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.928250][ T5657] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.275089][ T5895] pimreg: entered allmulticast mode
[   84.303859][ T5895] pimreg: left allmulticast mode
[   84.423734][ T5657] veth0_vlan: entered promiscuous mode
[   84.481589][ T5657] veth1_vlan: entered promiscuous mode
[   84.557584][ T5657] veth0_macvtap: entered promiscuous mode
[   84.582305][ T5657] veth1_macvtap: entered promiscuous mode
[   84.616352][ T5657] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.639201][ T5657] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.682857][   T51] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.714682][   T51] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.748891][   T51] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.801345][   T51] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.955185][ T5958] geneve2: entered promiscuous mode
[   84.960514][ T5958] geneve2: entered allmulticast mode
[   85.081852][ T5983] __nla_validate_parse: 9 callbacks suppressed
[   85.081873][ T5983] netlink: 4 bytes leftover after parsing attributes in process `syz.5.614'.
[   85.193966][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'.
[   85.227934][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'.
[   85.407913][ T6021] netlink: 12 bytes leftover after parsing attributes in process `syz.5.619'.
[   85.412867][ T6024] netlink: 12 bytes leftover after parsing attributes in process `syz.2.620'.
[   85.458212][ T6024] loop2: detected capacity change from 0 to 512
[   85.520326][ T6024] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.551137][ T6024] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.631117][   T29] kauditd_printk_skb: 2758 callbacks suppressed
[   85.631170][   T29] audit: type=1326 audit(1755214373.055:5523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f346641ebe9 code=0x7ffc0000
[   85.665408][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.683179][   T29] audit: type=1326 audit(1755214373.055:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466415ba7 code=0x7ffc0000
[   85.706721][   T29] audit: type=1326 audit(1755214373.055:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34663badd9 code=0x7ffc0000
[   85.706931][   T29] audit: type=1326 audit(1755214373.055:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f346641ebe9 code=0x7ffc0000
[   85.754110][   T29] audit: type=1326 audit(1755214373.055:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466415ba7 code=0x7ffc0000
[   85.778050][   T29] audit: type=1326 audit(1755214373.055:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34663badd9 code=0x7ffc0000
[   85.801713][   T29] audit: type=1326 audit(1755214373.055:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f346641ebe9 code=0x7ffc0000
[   85.801748][   T29] audit: type=1326 audit(1755214373.055:5530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3466415ba7 code=0x7ffc0000
[   85.801834][   T29] audit: type=1326 audit(1755214373.055:5531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f34663badd9 code=0x7ffc0000
[   85.801873][   T29] audit: type=1326 audit(1755214373.055:5532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5942 comm="syz.6.547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f346641ebe9 code=0x7ffc0000
[   85.882800][ T6047] loop4: detected capacity change from 0 to 512
[   85.886755][ T6047] EXT4-fs: Ignoring removed oldalloc option
[   85.887296][ T6047] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   85.888325][ T6047] EXT4-fs (loop4): 1 truncate cleaned up
[   85.889019][ T6047] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.022816][ T6047] lo speed is unknown, defaulting to 1000
[   86.069364][ T6054] loop2: detected capacity change from 0 to 512
[   86.079473][ T6058] netlink: 4 bytes leftover after parsing attributes in process `syz.6.629'.
[   86.088886][ T6058] netlink: 4 bytes leftover after parsing attributes in process `syz.6.629'.
[   86.110762][ T6054] EXT4-fs: Ignoring removed oldalloc option
[   86.141859][ T6054] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   86.186386][ T6054] EXT4-fs (loop2): 1 truncate cleaned up
[   86.198003][ T6054] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.257891][ T6054] lo speed is unknown, defaulting to 1000
[   86.320779][ T6072] loop6: detected capacity change from 0 to 512
[   86.327571][ T6072] EXT4-fs: Ignoring removed i_version option
[   86.333820][ T6072] EXT4-fs: Ignoring removed bh option
[   86.401303][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.401915][ T6072] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.451592][ T6072] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   86.513431][ T6077] pimreg: entered allmulticast mode
[   86.577856][ T6077] pimreg: left allmulticast mode
[   86.624225][ T5657] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.636567][ T6081] random: crng reseeded on system resumption
[   86.654116][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.731820][ T6085] 9pnet: Could not find request transport: tcp73709551615
[   86.783684][ T6094] netlink: 12 bytes leftover after parsing attributes in process `syz.6.642'.
[   86.813439][ T6094] netlink: 20 bytes leftover after parsing attributes in process `syz.6.642'.
[   86.822977][ T6094] netlink: 20 bytes leftover after parsing attributes in process `syz.6.642'.
[   86.882693][ T6094] loop6: detected capacity change from 0 to 1024
[   86.904943][ T6094] EXT4-fs: Ignoring removed orlov option
[   86.919136][ T6100] loop2: detected capacity change from 0 to 512
[   86.930232][ T6100] EXT4-fs: Ignoring removed oldalloc option
[   86.943876][ T6094] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.973538][ T6100] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.009136][ T6100] EXT4-fs (loop2): 1 truncate cleaned up
[   87.018609][ T5657] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.028855][ T6100] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.095974][ T6100] lo speed is unknown, defaulting to 1000
[   87.419658][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.508880][ T6124] loop4: detected capacity change from 0 to 1024
[   87.524979][ T6124] EXT4-fs: Ignoring removed orlov option
[   87.626335][ T6126] 9pnet: Could not find request transport: tcp73709551615
[   87.637146][ T6124] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.754647][ T6135] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.655: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   87.833991][ T6142] loop5: detected capacity change from 0 to 512
[   87.843435][ T6142] EXT4-fs: Ignoring removed oldalloc option
[   87.879298][ T6142] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   87.923486][ T6151] random: crng reseeded on system resumption
[   88.073751][ T6142] EXT4-fs (loop5): 1 truncate cleaned up
[   88.088244][ T6142] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.164358][ T6142] lo speed is unknown, defaulting to 1000
[   88.282628][ T6163] loop6: detected capacity change from 0 to 512
[   88.302243][ T6163] EXT4-fs: Ignoring removed oldalloc option
[   88.326387][ T6163] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[   88.390283][ T6163] EXT4-fs (loop6): 1 truncate cleaned up
[   88.409089][ T6163] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.424249][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.438471][ T6167] loop2: detected capacity change from 0 to 128
[   88.456053][ T6163] lo speed is unknown, defaulting to 1000
[   88.464570][ T6167] vfat: Unknown parameter '0xffffffffffffffff'
[   88.495197][ T6167] random: crng reseeded on system resumption
[   88.508008][ T5026] EXT4-fs error (device loop5): ext4_lookup:1787: inode #11: comm syz-executor: iget: bad extra_isize 46 (inode size 256)
[   88.526550][ T5026] EXT4-fs (loop5): Remounting filesystem read-only
[   88.538216][ T6167] loop2: detected capacity change from 0 to 512
[   88.577790][ T5026] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.616084][ T6167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.658715][ T6167] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.707071][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.724701][ T6037] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.755332][ T6180] loop3: detected capacity change from 0 to 512
[   88.762394][ T6180] EXT4-fs: Ignoring removed i_version option
[   88.768456][ T6180] EXT4-fs: Ignoring removed bh option
[   88.794693][ T6185] loop4: detected capacity change from 0 to 512
[   88.825834][ T6037] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.838200][ T6180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.840574][ T5657] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.861540][ T6180] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.894628][ T6185] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.918862][ T6185] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.954669][ T6037] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.005978][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.017816][ T6199] FAULT_INJECTION: forcing a failure.
[   89.017816][ T6199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.032085][ T6199] CPU: 0 UID: 0 PID: 6199 Comm: syz.2.686 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   89.032116][ T6199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.032154][ T6199] Call Trace:
[   89.032162][ T6199]  <TASK>
[   89.032172][ T6199]  __dump_stack+0x1d/0x30
[   89.032199][ T6199]  dump_stack_lvl+0xe8/0x140
[   89.032221][ T6199]  dump_stack+0x15/0x1b
[   89.032250][ T6199]  should_fail_ex+0x265/0x280
[   89.032277][ T6199]  should_fail+0xb/0x20
[   89.032299][ T6199]  should_fail_usercopy+0x1a/0x20
[   89.032328][ T6199]  _copy_to_user+0x20/0xa0
[   89.032425][ T6199]  simple_read_from_buffer+0xb5/0x130
[   89.032522][ T6199]  proc_fail_nth_read+0x10e/0x150
[   89.032558][ T6199]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   89.032656][ T6199]  vfs_read+0x1a5/0x770
[   89.032682][ T6199]  ? __rcu_read_unlock+0x4f/0x70
[   89.032710][ T6199]  ? __fget_files+0x184/0x1c0
[   89.032734][ T6199]  ksys_read+0xda/0x1a0
[   89.032754][ T6199]  __x64_sys_read+0x40/0x50
[   89.032786][ T6199]  x64_sys_call+0x27bc/0x2ff0
[   89.032818][ T6199]  do_syscall_64+0xd2/0x200
[   89.032890][ T6199]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.032980][ T6199]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.033013][ T6199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.033032][ T6199] RIP: 0033:0x7f1f4d84d5fc
[   89.033045][ T6199] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   89.033110][ T6199] RSP: 002b:00007f1f4c2af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   89.033149][ T6199] RAX: ffffffffffffffda RBX: 00007f1f4da75fa0 RCX: 00007f1f4d84d5fc
[   89.033161][ T6199] RDX: 000000000000000f RSI: 00007f1f4c2af0a0 RDI: 0000000000000005
[   89.033171][ T6199] RBP: 00007f1f4c2af090 R08: 0000000000000000 R09: 0000000000000000
[   89.033211][ T6199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.033221][ T6199] R13: 00007f1f4da76038 R14: 00007f1f4da75fa0 R15: 00007ffdf2cc7868
[   89.033237][ T6199]  </TASK>
[   89.037623][ T6037] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.268906][ T6203] loop3: detected capacity change from 0 to 256
[   89.301989][ T6181] lo speed is unknown, defaulting to 1000
[   89.434320][ T6037] bridge_slave_1: left allmulticast mode
[   89.440312][ T6037] bridge_slave_1: left promiscuous mode
[   89.446387][ T6037] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.449136][ T6213] netlink: 'syz.2.681': attribute type 21 has an invalid length.
[   89.468718][ T6037] bridge_slave_0: left allmulticast mode
[   89.474760][ T6037] bridge_slave_0: left promiscuous mode
[   89.480636][ T6037] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.565205][ T3300] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.594032][ T6220] loop4: detected capacity change from 0 to 256
[   89.608777][ T6220] msdos: Unknown parameter 'dotV'
[   89.714067][ T6037] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   89.734761][ T6037] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   89.753202][ T6225] FAULT_INJECTION: forcing a failure.
[   89.753202][ T6225] name failslab, interval 1, probability 0, space 0, times 0
[   89.766058][ T6225] CPU: 0 UID: 0 PID: 6225 Comm: syz.4.684 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   89.766091][ T6225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   89.766108][ T6225] Call Trace:
[   89.766115][ T6225]  <TASK>
[   89.766124][ T6225]  __dump_stack+0x1d/0x30
[   89.766152][ T6225]  dump_stack_lvl+0xe8/0x140
[   89.766177][ T6225]  dump_stack+0x15/0x1b
[   89.766266][ T6225]  should_fail_ex+0x265/0x280
[   89.766293][ T6225]  should_failslab+0x8c/0xb0
[   89.766368][ T6225]  __kmalloc_noprof+0xa5/0x3e0
[   89.766400][ T6225]  ? bpf_map_meta_alloc+0x116/0x340
[   89.766438][ T6225]  bpf_map_meta_alloc+0x116/0x340
[   89.766548][ T6225]  htab_of_map_alloc+0x21/0x80
[   89.766592][ T6225]  map_create+0x840/0xca0
[   89.766624][ T6225]  ? security_bpf+0x2b/0x90
[   89.766659][ T6225]  __sys_bpf+0x545/0x7b0
[   89.766715][ T6225]  __x64_sys_bpf+0x41/0x50
[   89.766739][ T6225]  x64_sys_call+0x2aea/0x2ff0
[   89.766762][ T6225]  do_syscall_64+0xd2/0x200
[   89.766869][ T6225]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   89.766933][ T6225]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   89.766963][ T6225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.767026][ T6225] RIP: 0033:0x7feb4d7febe9
[   89.767046][ T6225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.767069][ T6225] RSP: 002b:00007feb4c267038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.767092][ T6225] RAX: ffffffffffffffda RBX: 00007feb4da25fa0 RCX: 00007feb4d7febe9
[   89.767105][ T6225] RDX: 0000000000000050 RSI: 00002000000008c0 RDI: 0000000000000000
[   89.767121][ T6225] RBP: 00007feb4c267090 R08: 0000000000000000 R09: 0000000000000000
[   89.767137][ T6225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.767196][ T6225] R13: 00007feb4da26038 R14: 00007feb4da25fa0 R15: 00007ffea162bd58
[   89.767224][ T6225]  </TASK>
[   89.768904][ T6037] bond0 (unregistering): Released all slaves
[   89.887640][ T6227] netlink: 'syz.4.685': attribute type 21 has an invalid length.
[   89.982414][ T6213] netlink: 'syz.2.681': attribute type 1 has an invalid length.
[   90.017824][ T6227] netlink: 'syz.4.685': attribute type 1 has an invalid length.
[   90.043143][ T6037] hsr_slave_0: left promiscuous mode
[   90.056517][ T6037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.064196][ T6037] batman_adv: batadv0: Removing interface: batadv_slave_0
[   90.076055][ T6037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.083859][ T6037] batman_adv: batadv0: Removing interface: batadv_slave_1
[   90.098958][ T6037] team_slave_0: left promiscuous mode
[   90.104426][ T6037] team_slave_1: left promiscuous mode
[   90.115919][ T6227] __nla_validate_parse: 5 callbacks suppressed
[   90.115933][ T6227] netlink: 4 bytes leftover after parsing attributes in process `syz.4.685'.
[   90.131754][ T6037] veth1_vlan: left promiscuous mode
[   90.137168][ T6037] veth0_vlan: left promiscuous mode
[   90.182525][ T6238] loop3: detected capacity change from 0 to 512
[   90.190121][ T6238] EXT4-fs: Ignoring removed oldalloc option
[   90.198068][ T6238] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   90.210277][ T6238] EXT4-fs (loop3): 1 truncate cleaned up
[   90.216648][ T6238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.246961][ T6037] team0 (unregistering): Port device team_slave_1 removed
[   90.257082][ T6037] team0 (unregistering): Port device team_slave_0 removed
[   90.331252][ T6234] C: renamed from team_slave_0 (while UP)
[   90.344872][ T6234] netlink: 'syz.6.687': attribute type 1 has an invalid length.
[   90.353963][ T6234] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[   90.373348][ T6239] can0: slcan on ttyS3.
[   90.378254][ T6230] loop6: detected capacity change from 0 to 512
[   90.398043][ T6230] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   90.414987][ T6181] chnl_net:caif_netlink_parms(): no params data found
[   90.423021][ T6241] can0 (unregistered): slcan off ttyS3.
[   90.435218][ T6230] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[   90.444685][ T6230] System zones: 1-12
[   90.450875][ T6230] EXT4-fs (loop6): orphan cleanup on readonly fs
[   90.457042][ T6238] lo speed is unknown, defaulting to 1000
[   90.479069][ T6244] can0: slcan on ttyS3.
[   90.492193][ T6230] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.687: bg 0: block 361: padding at end of block bitmap is not set
[   90.519264][ T6230] EXT4-fs (loop6): Remounting filesystem read-only
[   90.519388][ T6250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.692'.
[   90.526137][ T6230] EXT4-fs (loop6): 1 truncate cleaned up
[   90.541027][ T6230] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   90.585174][ T6181] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.592342][ T6181] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.599834][ T6181] bridge_slave_0: entered allmulticast mode
[   90.607096][ T6181] bridge_slave_0: entered promiscuous mode
[   90.616321][ T6181] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.623567][ T6181] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.624197][ T6181] bridge_slave_1: entered allmulticast mode
[   90.638482][ T6181] bridge_slave_1: entered promiscuous mode
[   90.653214][ T6262] loop4: detected capacity change from 0 to 512
[   90.665478][ T6262] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.691416][ T6181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.703294][ T6181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.713060][ T6229] can0 (unregistered): slcan off ttyS3.
[   90.779459][ T3300] ==================================================================
[   90.787778][ T3300] BUG: KCSAN: data-race in __bpf_get_stackid / __bpf_get_stackid
[   90.795622][ T3300] 
[   90.797954][ T3300] write to 0xffff88812d952c04 of 4 bytes by task 2991 on cpu 0:
[   90.805594][ T3300]  __bpf_get_stackid+0x77a/0x800
[   90.810583][ T3300]  bpf_get_stackid+0xee/0x120
[   90.815272][ T3300]  bpf_get_stackid_raw_tp+0xf6/0x120
[   90.820606][ T3300]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[   90.826354][ T3300]  bpf_trace_run3+0x10c/0x1d0
[   90.831142][ T3300]  kmem_cache_free+0x257/0x300
[   90.835923][ T3300]  __fput+0x555/0x650
[   90.840306][ T3300]  fput_close_sync+0x6e/0x120
[   90.845183][ T3300]  __x64_sys_close+0x56/0xf0
[   90.849956][ T3300]  x64_sys_call+0x2738/0x2ff0
[   90.854731][ T3300]  do_syscall_64+0xd2/0x200
[   90.859258][ T3300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.865258][ T3300] 
[   90.867591][ T3300] read to 0xffff88812d952c04 of 4 bytes by task 3300 on cpu 1:
[   90.875143][ T3300]  __bpf_get_stackid+0x33a/0x800
[   90.880120][ T3300]  bpf_get_stackid+0xee/0x120
[   90.884988][ T3300]  bpf_get_stackid_raw_tp+0xf6/0x120
[   90.890295][ T3300]  bpf_prog_e6fc920cfeff8120+0x2a/0x32
[   90.895877][ T3300]  bpf_trace_run3+0x10c/0x1d0
[   90.900572][ T3300]  kmem_cache_free+0x257/0x300
[   90.905443][ T3300]  user_path_at+0x109/0x130
[   90.910053][ T3300]  __x64_sys_umount+0x85/0xe0
[   90.914827][ T3300]  x64_sys_call+0xdd2/0x2ff0
[   90.919778][ T3300]  do_syscall_64+0xd2/0x200
[   90.924446][ T3300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.930353][ T3300] 
[   90.933026][ T3300] value changed: 0x00000009 -> 0x0000000a
[   90.938859][ T3300] 
[   90.941306][ T3300] Reported by Kernel Concurrency Sanitizer on:
[   90.947564][ T3300] CPU: 1 UID: 0 PID: 3300 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(voluntary) 
[   90.960166][ T3300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.970235][ T3300] ==================================================================
[   90.982484][ T6268] loop6: detected capacity change from 0 to 256
[   90.996182][ T6271] netlink: 'syz.3.698': attribute type 21 has an invalid length.
[   91.014333][ T6181] team0: Port device team_slave_0 added
[   91.025465][ T6181] team0: Port device team_slave_1 added
[   91.038900][ T6271] netlink: 132 bytes leftover after parsing attributes in process `syz.3.698'.
[   91.047982][ T6271] netlink: 'syz.3.698': attribute type 1 has an invalid length.
[   91.152524][ T6181] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.159653][ T6181] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.185984][ T6181] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.203653][ T6271] netlink: 4 bytes leftover after parsing attributes in process `syz.3.698'.
[   91.225164][ T6181] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.232504][ T6181] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.259248][ T6181] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.298111][ T6181] hsr_slave_0: entered promiscuous mode
[   91.304676][ T6181] hsr_slave_1: entered promiscuous mode
[   91.310956][ T6181] debugfs: 'hsr0' already exists in 'hsr'
[   91.316801][ T6181] Cannot create hsr debugfs directory
[   91.425302][ T6181] netdevsim netdevsim7 netdevsim0: renamed from eth0
[   91.434782][ T6181] netdevsim netdevsim7 netdevsim1: renamed from eth1
[   91.444308][ T6181] netdevsim netdevsim7 netdevsim2: renamed from eth2
[   91.453534][ T6181] netdevsim netdevsim7 netdevsim3: renamed from eth3
[   91.500197][ T6181] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.517254][ T6181] 8021q: adding VLAN 0 to HW filter on device team0
[   91.527727][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.535298][ T5952] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.548164][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.555383][ T5952] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.622974][ T6181] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.734128][ T6181] veth0_vlan: entered promiscuous mode
[   91.742299][ T6181] veth1_vlan: entered promiscuous mode
[   91.759190][ T6181] veth0_macvtap: entered promiscuous mode
[   91.767258][ T6181] veth1_macvtap: entered promiscuous mode
[   91.779318][ T6181] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.791673][ T6181] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.805217][ T5989] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.814981][ T5989] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.828325][ T5989] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.837988][ T5989] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0