last executing test programs:

2.755313345s ago: executing program 0 (id=641):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x2000414, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, 0x0, 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f00000010c0)="0000a05a29ca94ee826641391f5090bde81ff52b3d808e304e", 0x19)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x64842, 0x11)
pread64(r2, &(0x7f00000004c0)=""/62, 0x3e, 0x6)

2.735038086s ago: executing program 0 (id=642):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380100001000010003000000fddbdf257f000001000000000000848500000000ac1414bb0000000000000000000000e8ffffffffffffff000000000f84000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000400000033000000ac1414bb0000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000fdffffffffffffff000000000000010000000000000000007b0000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000a0000006b0000000000000048000100686d616328736861312900"/240], 0x138}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x82, 0x881, &(0x7f0000019300)="1a000000020000008ae35f91f95a258daaf54208503b354e213a0ec3ce8518bd53673d1caccf6573ca6fe245314ddfd9e46fa06ec7f3818676edbeff4067c566ea1cde8c5e7e08c15f09630646ca5ea139e8d332b820dcaa391275c913ba6da9591a54a62a000bc8da95fd33cbf00dbe0abf8e0f3fcf7284b1565dd7ee25174933227e71571f6643dcb719c57d558e2661b83cbb2665171f578a30cd873bf32ca0b283fe00a59487abdde93b142dd8155db4e671d1baddcb33863cc2dcb16fb2b9", 0xfffffffffffffdbc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1b1, &(0x7f0000000280)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNGETVNETBE(r4, 0x800454df, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000440)=ANY=[], 0x9)
syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x7fff}, 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

2.255157324s ago: executing program 0 (id=651):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r1)
inotify_init1(0x800)
fcntl$setstatus(r1, 0x4, 0x2c00)
r2 = gettid()
fcntl$setown(r1, 0x8, r2)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rmdir(&(0x7f0000000100)='./control\x00')

1.669032263s ago: executing program 4 (id=663):
r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000002c0), 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000300)={[{0x56, 'cpuacct'}, {0x0, 'cpuacct'}, {0x2d, 'freezer'}, {0x16, 'cpu'}, {0x2b, 'cpu'}, {0x2b, 'cpu'}, {0x2d, 'pids'}]}, 0x30) (async, rerun: 64)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000640)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) (async)
ioprio_get$pid(0x3, 0x0)
r3 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x800)
sendto$inet6(r3, &(0x7f0000000400)="6b3ac4b893b628174dd0497ac942a80839ec19bc777dbaea53842e50e83096c6a70eb2a99489544b997288c1ecfebd5febe5d8ebbe3ee189af81a5acd34501cd4d18fb8da9ccb2eae3460bda8ace49416e5c7cc6c88d899551def929d53685fde0ce89deb69687ecdeeb6459565ac63ddf943d73abded93d66228f37d114bc18ab59a70e73523a7f2bd22f452cf0b9c9e0949d603b6fc59d4d2759f3d961dbe1d25873f41967c4b9828c1205a13a5679ff98141111f18da04f151f33d3a2bd65acca5b59e263d6a05c985a3613383f304bd327537488c3f7", 0xd8, 0x8040, &(0x7f0000000240)={0xa, 0x4e24, 0x2, @loopback, 0x7}, 0x1c) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r4, 0x0, 0x4}, 0x18) (async)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

1.638945984s ago: executing program 3 (id=664):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0x3}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
close(r2)

1.559871375s ago: executing program 4 (id=665):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r2)

1.465564406s ago: executing program 3 (id=666):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000001500)="b25b365c0254a7c6fc7ea6155a71b613b02d1645aab67271075189c3540c4dd19ebfb3c4acf87f2eeb258e62cc6ae96db360d874500cb86b4185ee533bf708", 0x3f}, {&(0x7f0000002800)="cf", 0x1}, {&(0x7f0000000380)="08e0ac8fb1d99df61d7b518d0a62071e7ec69f658d5a52d7eb7ea31db43f8cf570f335a80860ac4cc240dc149d8468493db8aad089f590d62e0bcb9d1dcee636ee311ee51839b7201745baef82209b2ab741dc5ea481ae9dcebe39b1101a42a8c82de46107541c240ad0d9ee4a9340cffd72aaea692a60993637c81d23a0d0ebbae66f1eb2771df2482c043d8715ae788b56cc91eaa4d6bbdec82d8f91eb822d0b5f3ebd86", 0xa5}, {0x0}, {&(0x7f0000002b40)='-', 0x1}], 0x5}}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000001580)="ce90bfdbcfb8a86a74f6799f98c36e23e210f053830ac8e978a0785884001a7099c4b9016f1a65a57390caf78c272cbf9711f94505dd525af1ff7d013438df5b844226f41b81e58eb73366", 0x4b}, {&(0x7f00000007c0)="f2e659a0b00d26c2ee15bbdf21c625bd1e67dee03c0d5862d425c076b8577bb0b50607802b1c3ab21a39c9eb5b6ca033319be5ed6e5d21f0f39fee6a8c98dc0bc39a76bf896971072aec737f00aee7ead58ba42e1f7efe0c445b1d1d5de272c3d774e063c4ade85dd1cf6c8c85472590721bb64c154d689cec735b3ac1b8f96dedff166668803830d4d526e16c68", 0x8e}, {&(0x7f0000002e40)="d4", 0x1}], 0x3}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000003000)="e1", 0x1}, {&(0x7f00000010c0)="fa", 0x1}, {&(0x7f0000001680)="d8", 0x1}, {&(0x7f0000001600)="f2964dd16e01d56b414499264923beda58d7da0313c1ccafe53965750f25bdaa6b56a87307ec23d48b6f35ce49a813a2bc3cb23fdf42826bdc16788ff466919594de5bf8a1fa5d825947271ade4a95efeb170c", 0x53}, {&(0x7f0000000580)="b8a2f681134502fe2f602543e7bf1919be9eb6378d8fc15ac1699c0c424dc215b3ec95771fb5a5fa942353cba2caf2acea06b89d8425f97404638b33f24a9b32ab61cd414aa8acaa07ba1b0ea45b2361f8442e6af44fa5e9f10de0aa6dc5d9a9a43a20771650db53f5432f5abd100417", 0x70}, {&(0x7f0000000500)="01", 0x1}, {&(0x7f0000000280)="87", 0x1}], 0x7}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000140)}, {&(0x7f0000000340)='\x00', 0x1}, {&(0x7f0000000880)="87141af223663a746046bdc339de81564cdbc76b336cf021dc7c2550b78b77295a37c903f475800f412569837c24ddf6b71979c1b606045926349dcd37c3077cb901d70a559c57ff65222c60c7bb8241d643c290505f23e07dc853", 0x5b}, {&(0x7f0000000900)="11e08017bdf05fba2a819e173635d3d3e587f540a7622b34ab1069b87bf90bd82a92f94be0630ec07478c68309574d4fb0b1cb100d7d7a2461a1b6ec9df5e794356055d324ef4b72a433640925616bb2bd694ad8453d43bbbb91f97aa18dd52c9372c785e178180fe94fe7cac6ac486e131d1da39a4bab332c8a634ea393612b1be8d2b7d6dece01f6d5891bcf73f2d902c003facf086a1d84c11781cbb3ec57798068f71764c936cd63", 0xaa}, {&(0x7f00000009c0)="c71924d7ea9bc5971a0c58640e8be19cab192cbcc2e315e72c441a5b0c0bb0fa1728e32d3bd7cd210bc2e5abeba55e9d8626bc0e11a884d140c83c4d40f46ea66a5bdab9888ffe03d639b5c19ae7243b451e6572bacf66051d51b9fb2f22ca8b69f8a53f890035bcb884820df6246909e21fda8c820c1a3a1b678ebfdf", 0x7d}], 0x5}}], 0x4, 0x4000000)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000000)=0x7fffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x8f)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)

1.447942527s ago: executing program 4 (id=667):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000ac0), 0x1, 0x44a, &(0x7f0000000400)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x2)
pwritev2(r0, &(0x7f0000000240), 0x0, 0x7c00, 0x0, 0x3)

1.389868327s ago: executing program 2 (id=669):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@dioread_nolock}, {@data_err_ignore}]}, 0xfe, 0x55c, &(0x7f0000001280)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)
chdir(&(0x7f0000000140)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x11a43)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0x7, 0x0)
shutdown(r1, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x104)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, 0xffffffffffffffff, 0x20, 0x0, 0x0, 0xffffffffffffffff})

1.366592008s ago: executing program 1 (id=670):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r0, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x285}, &(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000480)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
dup3(r6, r4, 0x80000)

1.365826688s ago: executing program 0 (id=671):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
symlink(0x0, &(0x7f00000017c0)='./file0\x00')

1.322757719s ago: executing program 0 (id=672):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
symlink(0x0, &(0x7f00000017c0)='./file0\x00')

1.307073009s ago: executing program 0 (id=673):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4882d48f}, 0x94)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x20000000, 0x4b}, 0x10, 0x0, 0x0, 0x1, 0x10000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)={'#! ', './file0'}, 0xb)
r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000480), 0x2002, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f00000004c0)=0x2, 0x4)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3e, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8000, &(0x7f0000000440)=0xfffffffffffffffd, 0x1, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x40200, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000000)={0xfffffff8, 0x0, 0x400}, 0x10)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c0000001200970300000000000000000700", @ANYRES64], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x880)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000001040)='xen_mmu_pte_clear\x00', 0xffffffffffffffff, 0x0, 0x800000af8}, 0x18)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000140)='sched_switch\x00', r8, 0x0, 0xa}, 0x18)
symlink(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='./file0/file0\x00')
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, "ff00f7000000000000000000af88008300"})
syz_open_pts(r9, 0x141601)

1.306003119s ago: executing program 3 (id=674):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) (async)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) (async)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14) (async, rerun: 64)
recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0) (async, rerun: 64)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
r3 = socket(0x400000000010, 0x3, 0x0) (async)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd25, 0x25df9bfb, {0x0, 0x0, 0x0, r5, {0xd, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_route={{0xa}, {0x54, 0x2, [@TCA_ROUTE4_ACT={0x50, 0x6, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xa, 0x5, 0x4, 0x9, 0x8}, 0x51}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

1.23130288s ago: executing program 4 (id=675):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x1a000}, 0x1, 0x0, 0x0, 0x404c040}, 0x0)
sendmsg$key(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

1.079318353s ago: executing program 2 (id=676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xe, &(0x7f0000000200)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x802, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r3, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x24, r4, 0x331, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4804}, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r8, r7, 0x25, 0x0, @void}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000280)={@empty, @initdev, <r10=>0x0}, &(0x7f00000002c0)=0xc)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000300)={'syztnl0\x00', <r11=>0x0, 0x8, 0x7, 0x207bafbe, 0xd, {{0x40, 0x4, 0x3, 0x9, 0x100, 0x68, 0x0, 0x3, 0x4, 0x0, @broadcast, @broadcast, {[@cipso={0x86, 0x4d, 0x3, [{0x6, 0x10, "68ba17fcad29e98f52ffbf0a88f5"}, {0x5, 0x7, "1ac5679dfe"}, {0x7, 0xb, "3a1dce8a0cee9c513d"}, {0x5, 0x9, "733fe5ab622413"}, {0x1, 0xc, "eeb24762ba3489e2b68b"}, {0x5, 0x7, "ee275cb62f"}, {0x5, 0x9, "815d70c17eae09"}]}, @noop, @lsrr={0x83, 0x7, 0x2a, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @generic={0x7, 0x4, "380f"}, @timestamp_addr={0x44, 0x1c, 0xc2, 0x1, 0xd, [{@broadcast, 0x80}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x62}, {@local, 0x8}]}, @lsrr={0x83, 0xf, 0x71, [@multicast1, @remote, @loopback]}, @cipso={0x86, 0x68, 0x3, [{0x2, 0xa, "b4d60df4247d97cf"}, {0x0, 0xb, "0b2a3139a57997a66e"}, {0x7, 0xd, "a424fe70cc2a1132ac93a8"}, {0x6, 0x4, "c71d"}, {0x1, 0x7, "be08e4d28d"}, {0x6, 0x11, "98ebdc4165b2364856cafe38899355"}, {0x6, 0xe, "1010ca17d53284b0a1a4a614"}, {0x7, 0x6, "80ab4934"}, {0x5, 0x10, "73c0123156a9f608603d4588d5fa"}]}]}}}}})
r12 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000500)={'tunl0\x00', <r13=>0x0})
sendmsg$nl_route(r12, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="48000000100003002abd70000000000000000000", @ANYRES32=r13, @ANYBLOB="0000000000000000280012800900010069706970000000001800028004001900080014000900000006000f"], 0x48}, 0x1, 0x2}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000480)={<r14=>0x0, @dev, @local}, &(0x7f00000004c0)=0xc)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000005c0)={'gretap0\x00', &(0x7f0000000500)={'syztnl0\x00', <r15=>0x0, 0x7800, 0x7, 0xb1, 0x6, {{0x1d, 0x4, 0x2, 0x9, 0x74, 0x67, 0x0, 0xf, 0x2f, 0x0, @loopback, @multicast2, {[@timestamp={0x44, 0x14, 0xe8, 0x0, 0xf, [0x3, 0x5d, 0x244, 0x4]}, @timestamp_prespec={0x44, 0x4c, 0x25, 0x3, 0x1, [{@private=0xa010102, 0x8}, {@multicast2, 0xffffff66}, {@remote, 0x3}, {@private=0xa010102, 0x9}, {@multicast1, 0x7cad}, {@multicast2, 0x9ba}, {@private=0xa010101, 0x4}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x100}, {@rand_addr=0x64010101, 0xfff}]}]}}}}})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r3, &(0x7f0000000740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000600)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x300048c0}, 0x44)
setsockopt$inet6_buf(r2, 0x29, 0x39, 0x0, 0x0)

1.072950822s ago: executing program 4 (id=677):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
write$selinux_attr(r1, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d) (fail_nth: 8)

746.820058ms ago: executing program 1 (id=678):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r2)

699.144499ms ago: executing program 4 (id=679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f00000003c0)='./bus\x00', &(0x7f0000000540)='system.posix_acl_access\x00', &(0x7f0000000680)=ANY=[@ANYBLOB="02000000012914a9e4000000040000000000000010000100000000002000000000000000fab92023bb9b284db3f8bd47a092b677e1cc62ec3dbd8f04a0274d531e2909512eef4823c1c5ae863627ce0bbbe1120aa63a1b3578a4c23d8a5ca72d58848ce8f37800e68210308ca3e7f4d3e2d47e3ea1cbcdd0535c5197c1f51378294b85701cd81d38d56c2c8d61253408ede7e055614a97475ded7714084e079e91"], 0x24, 0x1)
getxattr(&(0x7f0000000140)='./bus\x00', &(0x7f00000001c0)=@known='system.posix_acl_access\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102000028"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bc00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBENT(r3, 0x4b46, &(0x7f00000000c0)={0x2, 0xab, 0x5})
syz_io_uring_setup(0x2421, 0x0, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000000)='securityfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fspick(r5, &(0x7f00000002c0)='.\x00', 0x0)
r6 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x16, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000130a0603000000000000000085000000970aa4ff2e018f5d5187f2e8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x6fb0ba43e80ff8ad, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000400)={r0, 0x20, &(0x7f0000000380)={&(0x7f0000000340)=""/39, 0x27, <r7=>0x0, &(0x7f0000000740)=""/4096, 0x1000}}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa2000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6}}, 0x20)
syz_io_uring_setup(0x112, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff}, &(0x7f00000003c0)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x5c, 0x0, 0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='./file0\x00', 0xffffffffffffffff, 0x3000})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r11 = socket$nl_rdma(0x10, 0x3, 0x14)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r12}, 0x10)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="200000000f14010029b97800fedbdf250d0045"], 0x20}, 0x1, 0x0, 0x0, 0x40004}, 0x48010)

698.454839ms ago: executing program 3 (id=680):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
syz_genetlink_get_family_id$SEG6(&(0x7f0000000100), r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = syz_io_uring_setup(0x3480, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000680)=<r5=>0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x18)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

641.616849ms ago: executing program 1 (id=681):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x44)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x3}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="070000000400000008020000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00c5696d000000010000000004002c794400"/34], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="18009566659a96797897670028a6ed3f00000000000092ce00000000000000", @ANYRESDEC, @ANYBLOB="00000010000000b7030000bfdac690850000001b100000b700000000000000950000000000366a39fffb1e7cff3d219cfcfdf805432a07894e88c952f5f3532e8322105e778b76e56db85329d0685522a9caa8281b8146c77484a334d8616626f87621ac1b9f6ae31bac4e530693f1405336ec81802d2e5cd1c6c62fd5e2fa87f2e86ecbb059fb00000000003a1315818ac2aa64ae00be600a00"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800002000002200ebae1fad40e183af3259e4558c6b00000000000000009500000000000000c3363f5ce256ec8de42bf1b5e5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
pipe(&(0x7f0000005880)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fsetxattr$security_selinux(r2, &(0x7f00000000c0), &(0x7f0000000040)='system_u:object_r:dhcp_state_t:s0\x00', 0x1e, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='f2fs_issue_flush\x00', r2}, 0xfd9c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x70, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

612.89275ms ago: executing program 1 (id=682):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000001000/0x3000)=nil)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xe, 0x0)
r1 = creat(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$P9_RREADLINK(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r7)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r8, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008000)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000340), r7)
sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002cbd7000fbdbdf2506"], 0x2c}, 0x1, 0x0, 0x0, 0x44010}, 0x0)

535.080761ms ago: executing program 2 (id=683):
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x5}}, './file0\x00'})
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703020008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x2000000, 0x0, 0x0, 0x0, 0xa1, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
unshare(0x2c020400)
r4 = open(&(0x7f0000000200)='./bus\x00', 0x1050c1, 0x1d6)
fgetxattr(r4, &(0x7f0000000880)=ANY=[@ANYBLOB="757365722e2f6465762f6275732f0573622f3030232f30302300"], 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x0, 0x41, &(0x7f00000002c0)="c2", 0x1, 0x10, 0xd21, 0xfffffffe, 0x5, 0x71ab, 0x0})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x14, &(0x7f00000006c0)=ANY=[@ANYBLOB="186a00000c000000000000004c00000085200000050000001863000006000000000000000b000000453a180008000000558bc0ff00000000b7080000000000007b8af8ff00000000b7080000000000fc7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7058f687463a600e3b8d7c4659e00000800000085000000a5000000b554183dcc5bb1bc050ff4ef2178399b325037b801347fc4fb43e9f7a99f5e6599ef22a901a59d4ec5dd43c8ef6993de2b6a5ba48080274e25fd54f70e6cdb6384fba1fd5d8bfd2f0b388eea74dc99fee7e35f5b9056fef32580144eba7645f86e1bde49e71c91c6f2a4b1c48973e57317ae73f64b2725fab2531e8a969b42c1cd7964e8f8f4af70e650d3ea8ff3adc96b53630624ee064c2833de70fafbe73a1d77fca5"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', r5, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x2, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x0, 0x3, 0x600000, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000480)=[{0x2, 0x3, 0x7}, {0x0, 0x3, 0xc}, {0x1, 0x2, 0xa, 0x1}, {0x4, 0x3, 0x8, 0xc}, {0x4, 0x3, 0x4, 0x4}], 0x10, 0x12}, 0x94)
r6 = creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
r8 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r8, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r6)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_GET_POWER_SAVE(r7, &(0x7f0000000840)={&(0x7f0000000300), 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x28, r10, 0x200, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r11}, @val={0xc, 0x99, {0x64b, 0x3f}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0xc001}, 0x8010)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r9, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1}}, 0x40)

487.431052ms ago: executing program 3 (id=684):
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r3)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000280)={0x0, 0xfffffffffffffe72, &(0x7f0000000200)={&(0x7f0000000640)={0x24, r4, 0x2cb3b0415539fbbb, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff81}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0) (async)
bind$inet(0xffffffffffffffff, 0x0, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x2)

459.586333ms ago: executing program 2 (id=685):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0xfeffff, 0x380, 0x3f000002, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0xf0, 0xffffff0c}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x8, 0x1e, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000fbffffff000000000900000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083200000bf090000000000005509010000000000950000000000000095000000000000001812000084fc10331b9571e7a219b256e38ee70350c239ae7e56ed4b3fdc6cb04633a306919154695fd5049b4867d1472512a3073e2383830ef05bd1b24e3d43be8c69ef4076f8c767e231a4ef7d7067", @ANYRES32, @ANYBLOB="000000000000b70300000000000000b7000000000000001800000000000000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000005e90000f0ffffff734620000000000023770900ff0100006d681000040000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000540)='GPL\x00', 0x7, 0x5d, &(0x7f0000000640)=""/93, 0x41000, 0x8, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x8, &(0x7f00000007c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000800)={0x4, 0x3, 0xbe, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f0000000b80)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000bc0)=[{0x44, 0x1, 0x0, 0xb}, {0x2, 0x5, 0xb, 0x3}, {0x2, 0x4, 0x3, 0x7}], 0x10, 0x3d}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffeff, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x1ff, {0x0, 0x0, 0x0, r5, {0xfff2}, {}, {0x8, 0x10}}}, 0x24}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x13, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYRESHEX=r3, @ANYRES8=r2], 0x0, 0x7, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x10, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, 0x0, &(0x7f0000000040))
write$cgroup_subtree(r8, &(0x7f00000006c0)=ANY=[@ANYRES32=r3, @ANYRES32=r2, @ANYRESOCT=0x0, @ANYBLOB="2c36e7c55320a7db3cc88b164afa4c593be0153ca50a8ed7068605eed4cdb0042a47585d8ba640987f78c46eabc5c0afe3739eb32d148969b4f0ff01f698cba5fd0758028607df747e33be0e68f456f02958320f4e4b9ffea937713cbc28e37b8153a9e84e27ad6d8f6facb2e2"], 0xfe33)
r9 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r9}, &(0x7f0000bbdffc))

320.618145ms ago: executing program 2 (id=686):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@dioread_nolock}, {@data_err_ignore}]}, 0xfe, 0x55c, &(0x7f0000001280)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)
chdir(&(0x7f0000000140)='./file0\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x11a43)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0x7, 0x0)
shutdown(r1, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x104)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0xc, 0xffffffffffffffff, 0x20, 0x0, 0x0, 0xffffffffffffffff})

320.255915ms ago: executing program 3 (id=687):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x200000, @empty, 0x1}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000240)={0x0, 'gre0\x00', {0x2}, 0x6})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2f, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r4, 0x84, 0x19, &(0x7f0000000340)={0x0, 0x1}, 0x8)
flistxattr(r0, &(0x7f00000001c0)=""/11, 0xb)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r1, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYRES8=r2, @ANYRESOCT=0x0], 0xfffffdef}}, 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r7, @ANYBLOB="010000000000fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000040)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r8, 0x0, 0x4}, 0x18)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x8f6}, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000300))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)

49.849649ms ago: executing program 1 (id=688):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)

48.931919ms ago: executing program 2 (id=689):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7, 0x1000}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18)
io_uring_setup(0x1dde, &(0x7f00000000c0)={0x0, 0x45d3, 0x1, 0x0, 0x1ffffff})
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000440), 0x1000)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000002480)="$eJzs3E+LHEUYB+B315iNG/ePGqMJiIVe9NJk9+BFL4tsQDKgJFkhEYSO26vDtDPD9LAwIkZPXv0cIojgTRBvetmL30DwthePEcSWndEko5PDSEiH5Xku80LVb6jqphuq6erD1774sLNXZXv5MBYXFmKxH5FupUixGP/4NF5+9cefnrty7fqlrVZr+3JKF7eubrySUlp9/vt3Pv7qhR+Gp9/+dvW7pThYf/fwt81fD84enDv88+oH7Sq1q9TtDVOebvR6w/xGWaTddtXJUnqrLPKqSO1uVQym2vfKXr8/Snl3d2W5PyiqKuXdUeoUozTspeFglPL383Y3ZVmWVpaD+Z24Xe18eauu64i6fjRORl3X9WOxHKfj8ViJ1ViL9Xginoyn4kw8HWfjmXg2vvnl69FRAgAAAAAAAAAAAAAAAAAAALh/5t3/f27cq+lRAwAAAAAAAAAAAAAAAAAAwPFy5dr1S1ut1vbllE5FlJ/v7+zvTH4n7Vt70Y4yirgQa/FHjHf/T0zqi2+0ti+ksfX4rLz5d/7m/s4j0/mN8ecEZuY3Jvk0nV+K5bvzm7EWZ2bnN2fmT8VLL96Vz2Itfn4velHGbhxl7+Q/2Ujp9Tdb/8qfH/cDAACA4yBLt81cv2fZvdon+TmeD0ytr4+y5080OnUiohp91MnLshgoHvriZLPD+L2u6+YPQkPFva+UpYj43/+8EBEPxwT/UzR9Z+JBuHPSmx4JAAAAAAAAAAAA83gQrxM2PUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHwVAAD//+pd0x0=")
r3 = open(&(0x7f0000000180)='./file2\x00', 0x4000, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r5}, 0x18)
r6 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r6, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f0000000340)={0x0, 0xffffffffffffff8e, &(0x7f0000000480)={&(0x7f0000000b40)={0x24, r8, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8}]}]}]}, 0x24}}, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r10}, 0x18)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="0180000000000000000001000000000000000b00000000030014"], 0x28}}, 0x40000)
preadv2(r2, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0xa)
sendmsg$NFT_BATCH(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000a40)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0xa4, 0x18, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_HOOK={0x44, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pim6reg1\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x40}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x80000000}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x81}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELOBJ={0x20, 0x14, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWCHAIN={0xc8, 0x3, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_CHAIN_COUNTERS={0x28, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x9}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5}]}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}, @NFTA_CHAIN_USERDATA={0x67, 0xc, "39525ae598a88d08495aaba58f19f20fca6a0900d7b73d9df4033df253560bebce08f0788aa34aa9f5cc8705e01124441c26b93d1cd050319706b5e87e13f26dbb982a5bfe7bbd404809ad96aca2213e188707a4d9b662810310e05c70934421516875"}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELFLOWTABLE={0x12a, 0x18, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_HOOK={0xb4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'pimreg1\x00'}, {0x14, 0x1, 'ipvlan1\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x7c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip6gre0\x00'}, {0x14, 0x1, 'ipvlan1\x00'}, {0x14, 0x1, 'vlan1\x00'}, {0x14, 0x1, 'vcan0\x00'}, {0x14, 0x1, 'team0\x00'}, {0x14, 0x1, 'vlan1\x00'}]}]}]}, @NFT_MSG_NEWTABLE={0x2a4, 0x0, 0xa, 0x101, 0x0, 0x0, {0xa}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_USERDATA={0xd4, 0x6, "0ec94b4106777490838efcb7e7cd178b4cce55e2af9d45371b810beaab3a7514b615b7c8bbf3c68c081b0a4d7549266b76473db1cff5ec41f1cffb3cc2edf295f82f1655f53c3bc8b0fd5751fca4907721a7c50fdbeb359845552b26dbb7f20ce464c98c57f9c7485a548a3982b5538f4cfba07a5a1e61d24cc98e78e66c480f41b3e1395697239433d91533a1281d775c12fc8af18927c14f02c339972d35eba7bc205f484e49b2d25558589c27f21b21c8a8971ca22a9a702e8864bd8ca9da9dfeb32d26febf966b210ec47b4af979"}, @NFTA_TABLE_USERDATA={0xbc, 0x6, "6dd6d080e8e020cb43bb1fc573615b107f43d189a2cfef0dd53ae4e57ca4e2d6c3e33ac900e4416b3c846a66bfb0a93465e2d053e98dc8249dc33e6edbee3083d77db70bde636911e6305c7599cd235add262e70e5b11bfcd4429db89a560878a58525604de23f11dd2a9b6dbb97c83f613e171d25b7c6fa0440168a4ea98bcc0251e62ca58eb65ea7776cb7aeca0d0aac5a8119450436f70f4c3e58bb0f0d3065ebb8c5a33f6466db8249a213ec46dbd335f79ef2e05d57"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_USERDATA={0xd2, 0x6, "8ac53e594a474faa41cbb8c81b7e72cc2aa0c82ad08a4c960ec68f6a73accb16cfaec99fcee9ed17a98bc0bb6241122c0a98148edfedc093c97d7f455b4e1315aedd00b75099e9c4175f2df0bf1ae44d74cc72e2efbb8d60ca626888d6beaa5fe62ae111fec6946393a30161b2f63c0d88a1ce66de4c68e76fb2bf0e7562820881bd4eab03052e99239ca51ed544742a70117cc93230e67d889f9fd080c5a7bf486b7fb107035bc19860398f43db42e75050a956025372e972a3c866eb294c2d19ea146e09cd8b5790c61e1c4f91"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x52c}, 0x1, 0x0, 0x0, 0x20000001}, 0x804)
memfd_secret(0x0)

0s ago: executing program 1 (id=690):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x8}, 0x18) (async, rerun: 32)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20) (async)
close(r4)
ftruncate(r1, 0xc17a)
r6 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r6, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$kcm(0x21, 0x2, 0x2) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r10}, 0x10)
sendmsg$kcm(r9, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r7, 0x0, 0xf}, 0x18)
open_tree(0xffffffffffffffff, 0x0, 0x80800)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r11 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r11, 0x2007ffc) (async)
sendfile(r11, r11, 0x0, 0x800000009)

kernel console output (not intermixed with test programs):

osed
[   40.571890][ T3987] vhci_hcd: connection closed
[   40.572368][ T3981] vhci_hcd: connection closed
[   40.576724][ T4000] vhci_hcd: connection closed
[   40.581717][ T3974] vhci_hcd: connection reset by peer
[   40.608319][ T4003] loop4: detected capacity change from 0 to 2048
[   40.614777][  T174] vhci_hcd: stop threads
[   40.619061][  T174] vhci_hcd: release socket
[   40.623506][  T174] vhci_hcd: disconnect device
[   40.624030][ T3998] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   40.628357][  T174] vhci_hcd: stop threads
[   40.642317][  T174] vhci_hcd: release socket
[   40.646787][  T174] vhci_hcd: disconnect device
[   40.669626][ T3998] EXT4-fs (loop3): 1 truncate cleaned up
[   40.676364][ T4003] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.689345][  T174] vhci_hcd: stop threads
[   40.690195][ T3998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.693834][  T174] vhci_hcd: release socket
[   40.710749][  T174] vhci_hcd: disconnect device
[   40.737770][  T174] vhci_hcd: stop threads
[   40.738210][ T4002] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   40.742049][  T174] vhci_hcd: release socket
[   40.742062][  T174] vhci_hcd: disconnect device
[   40.759584][  T174] vhci_hcd: stop threads
[   40.763872][  T174] vhci_hcd: release socket
[   40.768295][  T174] vhci_hcd: disconnect device
[   40.773051][   T29] kauditd_printk_skb: 575 callbacks suppressed
[   40.773061][   T29] audit: type=1326 audit(1753689522.707:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fec7f5ad310 code=0x7ffc0000
[   40.802773][   T29] audit: type=1326 audit(1753689522.707:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fec7f5ad6f7 code=0x7ffc0000
[   40.826102][   T29] audit: type=1326 audit(1753689522.707:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fec7f5ad310 code=0x7ffc0000
[   40.849477][   T29] audit: type=1326 audit(1753689522.707:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   40.873021][   T29] audit: type=1326 audit(1753689522.707:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   40.901987][ T4003] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   40.910905][   T29] audit: type=1326 audit(1753689522.753:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   40.934260][   T29] audit: type=1326 audit(1753689522.762:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   40.957678][   T29] audit: type=1326 audit(1753689522.762:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   40.981136][   T29] audit: type=1326 audit(1753689522.762:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   41.004501][   T29] audit: type=1326 audit(1753689522.762:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3997 comm="syz.3.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   41.057852][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.071326][ T4019] loop2: detected capacity change from 0 to 1024
[   41.095883][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.113460][ T4019] EXT4-fs: Ignoring removed orlov option
[   41.161584][ T4019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.245616][ T4028] loop3: detected capacity change from 0 to 512
[   41.253886][ T4028] EXT4-fs: inline encryption not supported
[   41.259784][ T4028] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.266373][ T4028] EXT4-fs: Ignoring removed i_version option
[   41.287963][ T4028] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   41.335567][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.345949][ T4028] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal
[   41.380728][ T4039] loop2: detected capacity change from 0 to 512
[   41.387547][ T4039] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.438134][ T4039] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   41.509645][ T4039] EXT4-fs (loop2): 1 truncate cleaned up
[   41.515689][ T4039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.601056][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.635683][ T4058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.173'.
[   41.841313][ T4072] loop3: detected capacity change from 0 to 2048
[   41.879353][ T4072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.996165][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.285643][ T4016] syz.1.165 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[   42.295472][ T4016] CPU: 0 UID: 0 PID: 4016 Comm: syz.1.165 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   42.295560][ T4016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   42.295571][ T4016] Call Trace:
[   42.295578][ T4016]  <TASK>
[   42.295587][ T4016]  __dump_stack+0x1d/0x30
[   42.295611][ T4016]  dump_stack_lvl+0xe8/0x140
[   42.295649][ T4016]  dump_stack+0x15/0x1b
[   42.295747][ T4016]  dump_header+0x81/0x220
[   42.295785][ T4016]  oom_kill_process+0x334/0x3f0
[   42.295824][ T4016]  out_of_memory+0x979/0xb80
[   42.295865][ T4016]  try_charge_memcg+0x5e6/0x9e0
[   42.295905][ T4016]  charge_memcg+0x51/0xc0
[   42.295939][ T4016]  __mem_cgroup_charge+0x28/0xb0
[   42.296011][ T4016]  shmem_get_folio_gfp+0x470/0xd60
[   42.296045][ T4016]  shmem_write_begin+0xa8/0x190
[   42.296086][ T4016]  generic_perform_write+0x184/0x490
[   42.296117][ T4016]  shmem_file_write_iter+0xc5/0xf0
[   42.296140][ T4016]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   42.296161][ T4016]  vfs_write+0x4a0/0x8e0
[   42.296199][ T4016]  __x64_sys_pwrite64+0xfd/0x150
[   42.296290][ T4016]  x64_sys_call+0xe45/0x2fb0
[   42.296380][ T4016]  do_syscall_64+0xd2/0x200
[   42.296401][ T4016]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.296447][ T4016]  ? clear_bhb_loop+0x40/0x90
[   42.296502][ T4016]  ? clear_bhb_loop+0x40/0x90
[   42.296588][ T4016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.296609][ T4016] RIP: 0033:0x7f125f41e9a9
[   42.296625][ T4016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.296703][ T4016] RSP: 002b:00007f125da66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   42.296802][ T4016] RAX: ffffffffffffffda RBX: 00007f125f646080 RCX: 00007f125f41e9a9
[   42.296813][ T4016] RDX: 00000000200000c1 RSI: 00002000000000c0 RDI: 0000000000000008
[   42.296824][ T4016] RBP: 00007f125f4a0d69 R08: 0000000000000000 R09: 0000000000000000
[   42.296893][ T4016] R10: 0000000000009000 R11: 0000000000000246 R12: 0000000000000000
[   42.296904][ T4016] R13: 0000000000000000 R14: 00007f125f646080 R15: 00007ffe7a15c448
[   42.296993][ T4016]  </TASK>
[   42.297000][ T4016] memory: usage 307200kB, limit 307200kB, failcnt 720
[   42.515117][ T4016] memory+swap: usage 235868kB, limit 9007199254740988kB, failcnt 0
[   42.523056][ T4016] kmem: usage 214072kB, limit 9007199254740988kB, failcnt 0
[   42.530399][ T4016] Memory cgroup stats for /syz1:
[   42.545746][ T4016] cache 2805760
[   42.554265][ T4016] rss 118784
[   42.557476][ T4016] shmem 2797568
[   42.560980][ T4016] mapped_file 135168
[   42.564868][ T4016] dirty 8192
[   42.568052][ T4016] writeback 0
[   42.571401][ T4016] workingset_refault_anon 83
[   42.575979][ T4016] workingset_refault_file 77
[   42.580668][ T4016] swap 2174976
[   42.584129][ T4016] swapcached 122880
[   42.588013][ T4016] pgpgin 22329
[   42.591387][ T4016] pgpgout 21612
[   42.594859][ T4016] pgfault 23288
[   42.598306][ T4016] pgmajfault 67
[   42.601781][ T4016] inactive_anon 1482752
[   42.605986][ T4016] active_anon 1441792
[   42.609960][ T4016] inactive_file 8192
[   42.613890][ T4016] active_file 0
[   42.617345][ T4016] unevictable 0
[   42.620804][ T4016] hierarchical_memory_limit 314572800
[   42.626201][ T4016] hierarchical_memsw_limit 9223372036854771712
[   42.632395][ T4016] total_cache 2805760
[   42.636466][ T4016] total_rss 118784
[   42.640342][ T4016] total_shmem 2797568
[   42.644383][ T4016] total_mapped_file 135168
[   42.648851][ T4016] total_dirty 8192
[   42.652566][ T4016] total_writeback 0
[   42.656429][ T4016] total_workingset_refault_anon 83
[   42.661561][ T4016] total_workingset_refault_file 77
[   42.666884][ T4016] total_swap 2174976
[   42.670852][ T4016] total_swapcached 122880
[   42.675298][ T4016] total_pgpgin 22329
[   42.679222][ T4016] total_pgpgout 21612
[   42.683191][ T4016] total_pgfault 23288
[   42.687170][ T4016] total_pgmajfault 67
[   42.691180][ T4016] total_inactive_anon 1482752
[   42.696013][ T4016] total_active_anon 1441792
[   42.700545][ T4016] total_inactive_file 8192
[   42.705031][ T4016] total_active_file 0
[   42.709007][ T4016] total_unevictable 0
[   42.713041][ T4016] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.165,pid=4009,uid=0
[   42.719448][ T4009] syz.1.165 (4009) used greatest stack depth: 9688 bytes left
[   42.727682][ T4016] Memory cgroup out of memory: Killed process 4010 (syz.1.165) total-vm:98128kB, anon-rss:1024kB, file-rss:26528kB, shmem-rss:1808kB, UID:0 pgtables:144kB oom_score_adj:1000
[   42.738077][ T4022] syz.1.165 (4022) used greatest stack depth: 8472 bytes left
[   42.827598][ T4010] syz.1.165 (4010) used greatest stack depth: 7160 bytes left
[   42.963554][ T4086] loop1: detected capacity change from 0 to 128
[   42.984961][ T4086] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   43.014789][ T4086] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   43.064285][ T4091] loop1: detected capacity change from 0 to 2048
[   43.095375][ T4091] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.114539][ T4092] lo speed is unknown, defaulting to 1000
[   43.171228][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.322403][ T4076] syz.3.182 (4076) used greatest stack depth: 6952 bytes left
[   43.504428][ T4108] __nla_validate_parse: 1 callbacks suppressed
[   43.504443][ T4108] netlink: 28 bytes leftover after parsing attributes in process `syz.3.193'.
[   43.534805][ T4106] loop0: detected capacity change from 0 to 1024
[   43.558083][ T4106] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   43.585851][ T4110] netlink: 'syz.1.188': attribute type 7 has an invalid length.
[   43.594697][ T4106] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.192: lblock 1 mapped to illegal pblock 1 (length 1)
[   43.609424][ T4106] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.192: Failed to acquire dquot type 0
[   43.622162][ T4106] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.192: Freeing blocks not in datazone - block = 0, count = 4096
[   43.640310][ T4106] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.192: Invalid inode bitmap blk 0 in block_group 0
[   43.653492][   T41] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1)
[   43.654112][ T4106] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   43.677507][   T41] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0
[   43.679027][ T4106] EXT4-fs (loop0): 1 orphan inode deleted
[   43.695289][ T4106] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.724347][ T4106] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.192: iget: bad extra_isize 65535 (inode size 256)
[   43.738289][ T4106] EXT4-fs error (device loop0): ext4_lookup:1787: inode #15: comm syz.0.192: iget: bad extra_isize 65535 (inode size 256)
[   43.785342][ T4113] lo speed is unknown, defaulting to 1000
[   43.833916][ T4116] loop1: detected capacity change from 0 to 512
[   43.856638][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.873644][ T4116] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   43.900366][ T4116] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e11c, mo2=0002]
[   43.913615][ T4116] System zones: 1-12
[   43.917643][ T4116] EXT4-fs (loop1): orphan cleanup on readonly fs
[   43.918872][ T4125] loop0: detected capacity change from 0 to 512
[   43.946577][ T4116] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.188: bg 0: block 361: padding at end of block bitmap is not set
[   43.969184][ T4116] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   43.989276][ T4125] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   44.023136][ T4116] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.188: invalid indirect mapped block 12 (level 1)
[   44.036777][ T4125] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.197: casefold flag without casefold feature
[   44.056549][ T4116] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.188: invalid indirect mapped block 2 (level 2)
[   44.075951][ T4116] EXT4-fs (loop1): 1 truncate cleaned up
[   44.081782][ T4125] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.197: couldn't read orphan inode 15 (err -117)
[   44.089682][ T4116] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[   44.106053][ T4125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.211891][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[   44.277774][ T4140] loop1: detected capacity change from 0 to 512
[   44.288879][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.301364][ T4137] loop2: detected capacity change from 0 to 512
[   44.305525][ T4140] EXT4-fs (loop1): orphan cleanup on readonly fs
[   44.309699][ T4137] EXT4-fs (loop2): invalid inodes per group: 0
[   44.309699][ T4137] 
[   44.314840][ T4140] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.199: bg 0: block 248: padding at end of block bitmap is not set
[   44.353932][ T4140] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.199: Failed to acquire dquot type 1
[   44.379084][ T4140] EXT4-fs (loop1): 1 truncate cleaned up
[   44.388596][ T4144] program syz.0.202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   44.404127][ T4140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.443468][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.511542][ T4157] loop1: detected capacity change from 0 to 512
[   44.600077][ T4163] netlink: 8 bytes leftover after parsing attributes in process `syz.2.206'.
[   44.609014][ T4163] netlink: 8 bytes leftover after parsing attributes in process `syz.2.206'.
[   44.623412][ T4157] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.636368][ T4157] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   44.656981][ T4157] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.207: bg 0: block 289: padding at end of block bitmap is not set
[   44.698332][ T4157] 
: renamed from bond0 (while UP)
[   44.727020][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.913791][ T4170] serio: Serial port ptm0
[   45.028409][ T4172] vlan2: entered allmulticast mode
[   45.369409][ T4183] loop0: detected capacity change from 0 to 128
[   45.377232][ T4184] x_tables: unsorted underflow at hook 4
[   45.384412][ T4183] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   45.400791][ T4183] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   45.437963][   T41] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   45.480639][ T4186] loop2: detected capacity change from 0 to 2048
[   45.507650][ T4186] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.526708][ T4192] loop9: detected capacity change from 0 to 7
[   45.533332][ T4192] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.555559][ T4192] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.565073][ T4192]  loop9: unable to read partition table
[   45.584220][ T4192] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[   45.584220][ T4192] 
) failed (rc=-5)
[   45.598365][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.599461][ T3301] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.631293][ T4193] netlink: 'syz.0.219': attribute type 13 has an invalid length.
[   45.643015][ T3301] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.657758][ T3301] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.676392][ T3301] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.693231][ T3301] Buffer I/O error on dev loop9, logical block 0, async page read
[   45.703021][ T4196] netlink: 148 bytes leftover after parsing attributes in process `syz.2.220'.
[   45.770077][ T4198] loop2: detected capacity change from 0 to 512
[   45.778408][ T4198] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   45.801466][ T4193] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.810620][ T4193] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.819776][ T4193] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.829129][ T4193] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   45.858394][ T4198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.893811][ T4198] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.930305][ T4204] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   45.979012][ T4206] loop1: detected capacity change from 0 to 512
[   45.993920][   T10] usb 1-1: enqueue for inactive port 0
[   45.999491][   T10] usb 1-1: enqueue for inactive port 0
[   46.030090][ T4206] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.223: corrupted inode contents
[   46.046363][ T4206] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #16: comm syz.1.223: mark_inode_dirty error
[   46.070755][ T4206] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.223: corrupted inode contents
[   46.083125][   T10] vhci_hcd: vhci_device speed not set
[   46.102150][ T4206] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.223: mark_inode_dirty error
[   46.113637][ T4208] netlink: 'syz.0.224': attribute type 61 has an invalid length.
[   46.121760][ T4206] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.223: corrupted inode contents
[   46.134814][ T4206] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   46.143667][ T4206] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.223: corrupted inode contents
[   46.166546][ T4206] EXT4-fs error (device loop1): ext4_truncate:4597: inode #16: comm syz.1.223: mark_inode_dirty error
[   46.169976][ T4208] lo speed is unknown, defaulting to 1000
[   46.184432][ T4206] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   46.201446][ T4206] EXT4-fs (loop1): 1 truncate cleaned up
[   46.207594][ T4206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.229879][  T273] __quota_error: 358 callbacks suppressed
[   46.229968][  T273] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   46.245631][  T273] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[   46.268400][ T4206] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.290277][ T4206] netlink: 48 bytes leftover after parsing attributes in process `syz.1.223'.
[   46.317570][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.352395][ T4214] loop1: detected capacity change from 0 to 512
[   46.381481][ T4214] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.225: corrupted inode contents
[   46.393677][ T4214] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #16: comm syz.1.225: mark_inode_dirty error
[   46.407184][ T4214] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.225: corrupted inode contents
[   46.419207][ T4214] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.225: mark_inode_dirty error
[   46.431592][ T4214] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.225: corrupted inode contents
[   46.449837][ T4214] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   46.496107][ T4214] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.225: corrupted inode contents
[   46.512621][ T4214] EXT4-fs error (device loop1): ext4_truncate:4597: inode #16: comm syz.1.225: mark_inode_dirty error
[   46.536353][ T4214] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   46.547120][ T4214] EXT4-fs (loop1): 1 truncate cleaned up
[   46.563703][ T4218] loop0: detected capacity change from 0 to 512
[   46.570171][  T273] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   46.579948][  T273] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[   46.600345][ T4214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.629784][ T4218] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   46.649283][ T4214] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.670639][ T4214] FAULT_INJECTION: forcing a failure.
[   46.670639][ T4214] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.683806][ T4214] CPU: 1 UID: 0 PID: 4214 Comm: syz.1.225 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   46.683834][ T4214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   46.683848][ T4214] Call Trace:
[   46.683901][ T4214]  <TASK>
[   46.683908][ T4214]  __dump_stack+0x1d/0x30
[   46.683929][ T4214]  dump_stack_lvl+0xe8/0x140
[   46.684010][ T4214]  dump_stack+0x15/0x1b
[   46.684028][ T4214]  should_fail_ex+0x265/0x280
[   46.684061][ T4214]  should_fail+0xb/0x20
[   46.684091][ T4214]  should_fail_usercopy+0x1a/0x20
[   46.684135][ T4214]  _copy_from_user+0x1c/0xb0
[   46.684156][ T4214]  ___sys_sendmsg+0xc1/0x1d0
[   46.684249][ T4214]  __x64_sys_sendmsg+0xd4/0x160
[   46.684271][ T4214]  x64_sys_call+0x2999/0x2fb0
[   46.684293][ T4214]  do_syscall_64+0xd2/0x200
[   46.684310][ T4214]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.684333][ T4214]  ? clear_bhb_loop+0x40/0x90
[   46.684420][ T4214]  ? clear_bhb_loop+0x40/0x90
[   46.684438][ T4214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.684456][ T4214] RIP: 0033:0x7f125f41e9a9
[   46.684469][ T4214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.684484][ T4214] RSP: 002b:00007f125da87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.684500][ T4214] RAX: ffffffffffffffda RBX: 00007f125f645fa0 RCX: 00007f125f41e9a9
[   46.684576][ T4214] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000004
[   46.684587][ T4214] RBP: 00007f125da87090 R08: 0000000000000000 R09: 0000000000000000
[   46.684613][ T4214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.684623][ T4214] R13: 0000000000000000 R14: 00007f125f645fa0 R15: 00007ffe7a15c448
[   46.684638][ T4214]  </TASK>
[   46.865619][ T4218] System zones: 1-12
[   46.871808][ T4218] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.226: error while reading EA inode 32 err=-116
[   46.885223][ T4218] EXT4-fs (loop0): Remounting filesystem read-only
[   46.891873][ T4218] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   46.910944][ T4218] EXT4-fs (loop0): 1 orphan inode deleted
[   46.917475][ T4218] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.931110][ T4218] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.945746][ T4226] team0: Port device team_slave_0 removed
[   46.952085][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.010300][ T4229] loop1: detected capacity change from 0 to 2048
[   47.042219][ T4229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.126449][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.146890][ T4236] netlink: 24 bytes leftover after parsing attributes in process `syz.0.231'.
[   47.222734][ T4244] syz.1.236 uses obsolete (PF_INET,SOCK_PACKET)
[   47.459030][ T4251] 9pnet_fd: Insufficient options for proto=fd
[   47.483275][ T4251] lo speed is unknown, defaulting to 1000
[   48.033313][   T29] audit: type=1326 audit(1753689529.417:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.070044][   T29] audit: type=1326 audit(1753689529.417:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.093521][   T29] audit: type=1326 audit(1753689529.417:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.116997][   T29] audit: type=1326 audit(1753689529.417:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.140394][   T29] audit: type=1326 audit(1753689529.417:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.163819][   T29] audit: type=1326 audit(1753689529.417:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.187273][   T29] audit: type=1326 audit(1753689529.417:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.210623][   T29] audit: type=1326 audit(1753689529.417:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4273 comm="syz.1.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   48.264695][ T4279] loop1: detected capacity change from 0 to 512
[   48.278280][ T4279] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   48.287299][ T4279] System zones: 1-12
[   48.291732][ T4279] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.242: error while reading EA inode 32 err=-116
[   48.305265][ T4279] EXT4-fs (loop1): Remounting filesystem read-only
[   48.311833][ T4279] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   48.321984][ T4279] EXT4-fs (loop1): 1 orphan inode deleted
[   48.331862][ T4279] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.375979][ T4279] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.402093][ T4287] loop2: detected capacity change from 0 to 512
[   48.412335][ T4287] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c0ac, mo2=0102]
[   48.420303][ T4287] System zones: 1-12
[   48.425560][ T4287] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.245: error while reading EA inode 32 err=-116
[   48.438828][ T4287] EXT4-fs (loop2): Remounting filesystem read-only
[   48.439403][ T4291] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   48.445550][ T4287] EXT4-fs (loop2): 1 orphan inode deleted
[   48.459514][ T4287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.478253][ T4287] netlink: 8 bytes leftover after parsing attributes in process `syz.2.245'.
[   48.498399][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.548987][ T4294] loop2: detected capacity change from 0 to 512
[   48.590260][ T4299] loop1: detected capacity change from 0 to 512
[   48.607135][ T4301] sg_write: data in/out 744063487/136 bytes for SCSI command 0x8f-- guessing data in;
[   48.607135][ T4301]    program syz.0.249 not setting count and/or reply_len properly
[   48.645858][ T4301] loop0: detected capacity change from 0 to 2048
[   48.655645][ T4306] loop3: detected capacity change from 0 to 512
[   48.665190][ T4306] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   48.677844][ T4299] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.686385][ T4306] EXT4-fs (loop3): 1 truncate cleaned up
[   48.692423][ T4294] ext4 filesystem being mounted at /55/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   48.696898][ T4299] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.750229][ T4294] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.246: bg 0: block 289: padding at end of block bitmap is not set
[   48.790668][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.798244][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.805708][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2
[   48.813174][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.820629][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.841193][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.848723][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.856236][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.863819][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.871273][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.878742][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.886944][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.894616][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.902058][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.909510][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.916950][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.924400][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.932067][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.940349][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.947855][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.955433][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.962924][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.970326][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.977814][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.985222][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   48.992633][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.000159][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.007691][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.015164][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.022622][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.030143][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.037567][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.045022][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.052462][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.059873][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.067346][ T3367] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.090083][ T3367] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   49.120818][ T4324] netlink: 68 bytes leftover after parsing attributes in process `syz.0.254'.
[   49.149720][ T4321] fido_id[4321]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   49.210742][ T3415] usb usb2-port1: attempt power cycle
[   49.225622][ T4323] netlink: 68 bytes leftover after parsing attributes in process `syz.0.254'.
[   49.326905][ T4333] 9pnet_fd: Insufficient options for proto=fd
[   49.349942][ T4333] lo speed is unknown, defaulting to 1000
[   49.847686][ T4306] syz.3.251 (4306) used greatest stack depth: 6064 bytes left
[   50.241658][ T4349] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.410725][ T4357] pim6reg: entered allmulticast mode
[   50.433987][ T4357] pim6reg: left allmulticast mode
[   50.618389][ T4361] loop2: detected capacity change from 0 to 512
[   50.631750][ T4361] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   50.643782][ T4361] System zones: 1-12
[   50.648182][ T4361] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.267: error while reading EA inode 32 err=-116
[   50.660886][ T4361] EXT4-fs (loop2): Remounting filesystem read-only
[   50.667572][ T4361] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   50.678521][ T4361] EXT4-fs (loop2): 1 orphan inode deleted
[   50.719873][ T4370] loop3: detected capacity change from 0 to 512
[   50.728976][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.754139][ T4370] loop3: detected capacity change from 0 to 512
[   50.764487][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.783086][ T4370] loop3: detected capacity change from 0 to 512
[   50.801062][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.822020][ T4370] loop3: detected capacity change from 0 to 512
[   50.830615][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.857022][ T4371] lo speed is unknown, defaulting to 1000
[   50.868786][ T4370] loop3: detected capacity change from 0 to 512
[   50.897771][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.920104][ T4370] loop3: detected capacity change from 0 to 512
[   50.946205][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   50.978494][ T4370] loop3: detected capacity change from 0 to 512
[   51.006003][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   51.010894][ T4378] netlink: 16 bytes leftover after parsing attributes in process `syz.2.270'.
[   51.054273][ T4370] loop3: detected capacity change from 0 to 512
[   51.070001][ T4378] 9pnet_fd: Insufficient options for proto=fd
[   51.086631][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   51.232511][ T4370] loop3: detected capacity change from 0 to 512
[   51.244340][ T3415] usb usb2-port1: unable to enumerate USB device
[   51.260685][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   51.282287][ T4370] loop3: detected capacity change from 0 to 512
[   51.289146][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   51.333264][ T4370] loop3: detected capacity change from 0 to 512
[   51.355850][ T4370] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   51.549132][ T4394] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4394 comm=syz.0.276
[   51.551881][ T4398] loop3: detected capacity change from 0 to 512
[   51.588007][ T4398] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.598644][ T4400] loop2: detected capacity change from 0 to 1024
[   51.601006][ T4398] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.277: bg 0: block 289: padding at end of block bitmap is not set
[   51.690620][   T29] kauditd_printk_skb: 166 callbacks suppressed
[   51.690635][   T29] audit: type=1400 audit(1753689532.795:1805): avc:  denied  { accept } for  pid=4414 comm="syz.3.281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   51.719369][ T4415] netlink: 268 bytes leftover after parsing attributes in process `syz.3.281'.
[   51.728764][ T4415] unsupported nla_type 65024
[   51.843963][   T29] audit: type=1326 audit(1753689532.933:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.869359][   T29] audit: type=1326 audit(1753689532.943:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.892797][   T29] audit: type=1326 audit(1753689532.943:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.916059][   T29] audit: type=1326 audit(1753689532.943:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.939403][   T29] audit: type=1326 audit(1753689532.943:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.962701][   T29] audit: type=1326 audit(1753689532.943:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   51.986117][   T29] audit: type=1326 audit(1753689532.943:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   52.009624][   T29] audit: type=1326 audit(1753689532.943:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   52.032933][   T29] audit: type=1326 audit(1753689532.943:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4424 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   52.100967][ T4433] loop3: detected capacity change from 0 to 512
[   52.112296][ T4433] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.289: corrupted in-inode xattr: invalid ea_ino
[   52.126187][ T4433] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.289: couldn't read orphan inode 15 (err -117)
[   52.151432][ T4435] loop1: detected capacity change from 0 to 128
[   52.220418][ T4440] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.227550][ T4440] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.259411][ T4440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   52.269261][ T4440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   52.295120][ T4440] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.304334][ T4440] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.313353][ T4440] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.322355][ T4440] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   52.362059][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.371127][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.380181][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.397371][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.406356][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.415430][ T4444] netlink: 108 bytes leftover after parsing attributes in process `syz.1.293'.
[   52.521996][ T4453] loop1: detected capacity change from 0 to 128
[   52.528807][ T4453] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   52.541712][ T4453] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   52.563395][  T174] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   52.585654][ T4457] loop1: detected capacity change from 0 to 512
[   52.616005][ T4457] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.629393][ T4457] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.297: bg 0: block 289: padding at end of block bitmap is not set
[   52.860825][ T4473] loop1: detected capacity change from 0 to 512
[   52.882048][ T4473] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.302: corrupted in-inode xattr: invalid ea_ino
[   52.902365][ T4473] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.302: couldn't read orphan inode 15 (err -117)
[   53.163122][ T4488] loop1: detected capacity change from 0 to 128
[   53.171660][ T4488] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   53.188179][ T4488] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   53.209922][  T273] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   53.212241][ T4492] sctp: [Deprecated]: syz.3.309 (pid 4492) Use of int in max_burst socket option.
[   53.212241][ T4492] Use struct sctp_assoc_value instead
[   53.259760][ T4496] process 'syz.3.311' launched './file0' with NULL argv: empty string added
[   53.305851][ T4498] loop3: detected capacity change from 0 to 512
[   53.326700][ T4503] loop1: detected capacity change from 0 to 2048
[   53.330897][ T4498] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.346477][ T4498] netlink: 'syz.3.312': attribute type 39 has an invalid length.
[   53.354795][ T3418] usb usb2-port1: attempt power cycle
[   53.572875][ T4513] loop0: detected capacity change from 0 to 512
[   53.584017][ T4513] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   53.592681][ T4513] System zones: 1-12
[   53.596930][ T4513] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.315: error while reading EA inode 32 err=-116
[   53.609962][ T4513] EXT4-fs (loop0): Remounting filesystem read-only
[   53.616530][ T4513] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   53.626799][ T4513] EXT4-fs (loop0): 1 orphan inode deleted
[   53.926051][ T4530] loop3: detected capacity change from 0 to 1024
[   53.960729][ T4530] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.983130][ T4530] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.320: Invalid block bitmap block 0 in block_group 0
[   53.997851][ T4530] EXT4-fs (loop3): Remounting filesystem read-only
[   54.022032][ T4530] EXT4-fs (loop3): 1 orphan inode deleted
[   54.066126][ T4536] loop3: detected capacity change from 0 to 128
[   54.084829][ T4536] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   54.096986][ T4536] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   54.165771][ T4538] hub 6-0:1.0: USB hub found
[   54.170440][ T4538] hub 6-0:1.0: 8 ports detected
[   54.577710][ T4554] loop3: detected capacity change from 0 to 512
[   54.586526][ T4554] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   54.594470][ T4554] System zones: 1-12
[   54.598835][ T4554] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.328: error while reading EA inode 32 err=-116
[   54.611824][ T4554] EXT4-fs (loop3): Remounting filesystem read-only
[   54.618497][ T4554] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   54.629033][ T4554] EXT4-fs (loop3): 1 orphan inode deleted
[   54.679378][ T4558] raw_sendmsg: syz.0.329 forgot to set AF_INET. Fix it!
[   54.770877][ T4567] loop3: detected capacity change from 0 to 512
[   54.797801][ T4567] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.871720][ T4579] __nla_validate_parse: 73 callbacks suppressed
[   54.871731][ T4579] netlink: 12 bytes leftover after parsing attributes in process `syz.2.336'.
[   54.954666][ T4583] pim6reg1: entered promiscuous mode
[   54.960013][ T4583] pim6reg1: entered allmulticast mode
[   55.059961][ T4594] loop2: detected capacity change from 0 to 164
[   55.069463][ T4594] syz.2.340: attempt to access beyond end of device
[   55.069463][ T4594] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   55.083522][ T4594] syz.2.340: attempt to access beyond end of device
[   55.083522][ T4594] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   55.168586][ T4596] loop2: detected capacity change from 0 to 512
[   55.176921][ T4596] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   55.185543][ T4596] System zones: 1-12
[   55.189994][ T4596] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.341: error while reading EA inode 32 err=-116
[   55.203116][ T4596] EXT4-fs (loop2): Remounting filesystem read-only
[   55.209805][ T4596] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   55.220560][ T4596] EXT4-fs (loop2): 1 orphan inode deleted
[   55.282117][ T4603] netlink: 12 bytes leftover after parsing attributes in process `syz.1.343'.
[   55.298523][ T4603] loop1: detected capacity change from 0 to 512
[   55.308206][ T4603] EXT4-fs (loop1): 1 truncate cleaned up
[   55.355974][ T3418] usb usb2-port1: unable to enumerate USB device
[   55.373234][ T4608] lo speed is unknown, defaulting to 1000
[   55.668129][ T4630] loop1: detected capacity change from 0 to 512
[   55.674872][ T4630] EXT4-fs: Ignoring removed nobh option
[   55.692795][ T4635] netlink: 96 bytes leftover after parsing attributes in process `syz.4.355'.
[   55.693804][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #3: comm syz.1.353: corrupted inode contents
[   55.713665][ T4630] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #3: comm syz.1.353: mark_inode_dirty error
[   55.715038][ T4635] loop4: detected capacity change from 0 to 164
[   55.748500][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #3: comm syz.1.353: corrupted inode contents
[   55.762817][ T4630] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #3: comm syz.1.353: mark_inode_dirty error
[   55.780790][ T4630] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.353: Failed to acquire dquot type 0
[   55.805429][ T4642] netlink: 12 bytes leftover after parsing attributes in process `syz.2.357'.
[   55.810599][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.353: corrupted inode contents
[   55.826731][ T4630] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #16: comm syz.1.353: mark_inode_dirty error
[   55.836348][ T4642] loop2: detected capacity change from 0 to 512
[   55.839012][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.353: corrupted inode contents
[   55.856407][ T4630] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.353: mark_inode_dirty error
[   55.869825][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.353: corrupted inode contents
[   55.888528][ T4642] EXT4-fs (loop2): 1 truncate cleaned up
[   55.894807][ T4630] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   55.918358][ T4630] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.353: corrupted inode contents
[   55.930815][ T4630] EXT4-fs error (device loop1): ext4_truncate:4597: inode #16: comm syz.1.353: mark_inode_dirty error
[   55.942946][ T4650] loop4: detected capacity change from 0 to 128
[   55.965407][ T4650] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   55.977388][ T4630] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   55.989434][ T4630] EXT4-fs (loop1): 1 truncate cleaned up
[   55.995272][ T4653] loop2: detected capacity change from 0 to 2048
[   56.007710][ T4650] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.012806][ T4630] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.048776][ T4658] FAULT_INJECTION: forcing a failure.
[   56.048776][ T4658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.061946][ T4658] CPU: 0 UID: 0 PID: 4658 Comm: syz.0.363 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   56.062034][ T4658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.062073][ T4658] Call Trace:
[   56.062079][ T4658]  <TASK>
[   56.062085][ T4658]  __dump_stack+0x1d/0x30
[   56.062105][ T4658]  dump_stack_lvl+0xe8/0x140
[   56.062121][ T4658]  dump_stack+0x15/0x1b
[   56.062135][ T4658]  should_fail_ex+0x265/0x280
[   56.062238][ T4658]  should_fail+0xb/0x20
[   56.062271][ T4658]  should_fail_usercopy+0x1a/0x20
[   56.062306][ T4658]  _copy_to_user+0x20/0xa0
[   56.062327][ T4658]  bpf_verifier_vlog+0x36e/0x5b0
[   56.062354][ T4658]  btf_verifier_log+0xad/0xe0
[   56.062435][ T4658]  btf_struct_log+0x3d/0x50
[   56.062458][ T4658]  __btf_verifier_log_type+0x26c/0x330
[   56.062488][ T4658]  btf_struct_check_meta+0x2fd/0x810
[   56.062553][ T4658]  ? __kvmalloc_node_noprof+0x260/0x4e0
[   56.062584][ T4658]  btf_parse_type_sec+0x2a4/0x1560
[   56.062662][ T4658]  ? btf_check_sec_info+0x1cc/0x1f0
[   56.062696][ T4658]  ? btf_parse_hdr+0x39e/0x3b0
[   56.062723][ T4658]  btf_new_fd+0x2b4/0x790
[   56.062835][ T4658]  bpf_btf_load+0x112/0x130
[   56.062869][ T4658]  __sys_bpf+0x561/0x790
[   56.062901][ T4658]  __x64_sys_bpf+0x41/0x50
[   56.062942][ T4658]  x64_sys_call+0x2478/0x2fb0
[   56.062964][ T4658]  do_syscall_64+0xd2/0x200
[   56.062986][ T4658]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.063090][ T4658]  ? clear_bhb_loop+0x40/0x90
[   56.063113][ T4658]  ? clear_bhb_loop+0x40/0x90
[   56.063136][ T4658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.063185][ T4658] RIP: 0033:0x7fdc08bbe9a9
[   56.063198][ T4658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.063216][ T4658] RSP: 002b:00007fdc07227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   56.063276][ T4658] RAX: ffffffffffffffda RBX: 00007fdc08de5fa0 RCX: 00007fdc08bbe9a9
[   56.063360][ T4658] RDX: 0000000000000028 RSI: 00002000000000c0 RDI: 0000000000000012
[   56.063372][ T4658] RBP: 00007fdc07227090 R08: 0000000000000000 R09: 0000000000000000
[   56.063384][ T4658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   56.063396][ T4658] R13: 0000000000000001 R14: 00007fdc08de5fa0 R15: 00007ffec5d03768
[   56.063411][ T4658]  </TASK>
[   56.066853][ T4653] netlink: 36 bytes leftover after parsing attributes in process `syz.2.361'.
[   56.143261][ T4664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.361'.
[   56.185901][ T2194] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.338270][ T4670] netlink: 'syz.1.366': attribute type 1 has an invalid length.
[   56.390583][ T4670] bond0: (slave ip6gretap1): Enslaving as a backup interface with an up link
[   56.447714][ T4670] veth3: entered promiscuous mode
[   56.460693][ T4670] bond0: (slave veth3): Enslaving as a backup interface with a down link
[   56.509598][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.517099][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.524646][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.532191][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.539628][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.547187][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.554587][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.562065][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.569689][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.577383][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.584957][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.592530][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.600111][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.607691][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.615251][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.622730][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.630311][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.637844][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.645267][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.652704][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.653223][ T4690] loop0: detected capacity change from 0 to 128
[   56.660236][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   56.670144][ T4690] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   56.673805][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.686354][ T4690] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.692968][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.692991][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.717159][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.724769][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.732200][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.739699][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.741061][ T4691] loop1: detected capacity change from 0 to 1024
[   56.747140][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.760860][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.768303][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.775887][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.783415][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.789476][ T4691] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.373: Allocating blocks 385-513 which overlap fs metadata
[   56.790863][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.808832][ T4691] EXT4-fs (loop1): pa ffff8881069f9150: logic 16, phys. 129, len 24
[   56.811949][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.819941][ T4691] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, 
[   56.827300][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.827338][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.827360][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.835783][ T4691] free 0, pa_free 8
[   56.843179][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.869198][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.876651][ T1094] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   56.884663][   T41] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   56.893883][ T1094] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   56.911145][ T4698] FAULT_INJECTION: forcing a failure.
[   56.911145][ T4698] name failslab, interval 1, probability 0, space 0, times 0
[   56.923834][ T4698] CPU: 0 UID: 0 PID: 4698 Comm: syz.0.375 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   56.923859][ T4698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.923870][ T4698] Call Trace:
[   56.923877][ T4698]  <TASK>
[   56.923884][ T4698]  __dump_stack+0x1d/0x30
[   56.923946][ T4698]  dump_stack_lvl+0xe8/0x140
[   56.923965][ T4698]  dump_stack+0x15/0x1b
[   56.923983][ T4698]  should_fail_ex+0x265/0x280
[   56.924021][ T4698]  should_failslab+0x8c/0xb0
[   56.924043][ T4698]  kmem_cache_alloc_node_noprof+0x57/0x320
[   56.924137][ T4698]  ? __alloc_skb+0x101/0x320
[   56.924168][ T4698]  __alloc_skb+0x101/0x320
[   56.924263][ T4698]  __ip_append_data+0x1a1d/0x24b0
[   56.924295][ T4698]  ? __pfx_raw_getfrag+0x10/0x10
[   56.924363][ T4698]  ? ip_route_output_key_hash_rcu+0x1371/0x1440
[   56.924396][ T4698]  ip_append_data+0xd6/0x130
[   56.924421][ T4698]  ? __pfx_raw_getfrag+0x10/0x10
[   56.924534][ T4698]  raw_sendmsg+0xc67/0xe50
[   56.924603][ T4698]  ? __pfx_raw_sendmsg+0x10/0x10
[   56.924657][ T4698]  inet_sendmsg+0xc2/0xd0
[   56.924675][ T4698]  __sock_sendmsg+0x102/0x180
[   56.924724][ T4698]  __sys_sendto+0x268/0x330
[   56.924762][ T4698]  __x64_sys_sendto+0x76/0x90
[   56.924828][ T4698]  x64_sys_call+0x2eb6/0x2fb0
[   56.924849][ T4698]  do_syscall_64+0xd2/0x200
[   56.924867][ T4698]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.924892][ T4698]  ? clear_bhb_loop+0x40/0x90
[   56.924981][ T4698]  ? clear_bhb_loop+0x40/0x90
[   56.925002][ T4698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.925102][ T4698] RIP: 0033:0x7fdc08bbe9a9
[   56.925116][ T4698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.925178][ T4698] RSP: 002b:00007fdc07227038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   56.925196][ T4698] RAX: ffffffffffffffda RBX: 00007fdc08de5fa0 RCX: 00007fdc08bbe9a9
[   56.925209][ T4698] RDX: 000000000000ffec RSI: 0000200000000040 RDI: 0000000000000006
[   56.925222][ T4698] RBP: 00007fdc07227090 R08: 0000200000000340 R09: 0000000000000010
[   56.925234][ T4698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.925247][ T4698] R13: 0000000000000000 R14: 00007fdc08de5fa0 R15: 00007ffec5d03768
[   56.925265][ T4698]  </TASK>
[   57.150946][ T4688] ref_ctr_offset mismatch. inode: 0xda offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x8000000
[   57.183597][ T4702] loop3: detected capacity change from 0 to 512
[   57.190161][ T4701] loop0: detected capacity change from 0 to 512
[   57.204961][ T4702] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.376: casefold flag without casefold feature
[   57.218224][ T4704] loop2: detected capacity change from 0 to 2048
[   57.219461][ T4702] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.376: couldn't read orphan inode 15 (err -117)
[   57.247898][ T4701] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.372354][ T4712] loop2: detected capacity change from 0 to 512
[   57.387943][   T29] kauditd_printk_skb: 448 callbacks suppressed
[   57.387957][   T29] audit: type=1400 audit(1753689538.047:2259): avc:  denied  { connect } for  pid=4713 comm="syz.1.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   57.419686][ T4712] ext4 filesystem being mounted at /77/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.459395][ T4712] netlink: 64 bytes leftover after parsing attributes in process `syz.2.380'.
[   57.480075][   T29] audit: type=1400 audit(1753689538.139:2260): avc:  denied  { bind } for  pid=4713 comm="syz.1.379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   57.502191][   T29] audit: type=1326 audit(1753689538.158:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.534965][   T29] audit: type=1326 audit(1753689538.185:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.558521][   T29] audit: type=1326 audit(1753689538.185:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.581879][   T29] audit: type=1326 audit(1753689538.185:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.605312][   T29] audit: type=1326 audit(1753689538.185:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.628805][   T29] audit: type=1326 audit(1753689538.185:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.652134][   T29] audit: type=1326 audit(1753689538.185:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.675535][   T29] audit: type=1326 audit(1753689538.185:2268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4719 comm="syz.4.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   57.802912][ T4732] loop1: detected capacity change from 0 to 128
[   57.827115][ T4732] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   57.851340][ T4735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.382'.
[   57.860281][ T4735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.382'.
[   57.870915][ T4732] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.894629][ T1753] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   57.925089][ T4739] loop2: detected capacity change from 0 to 512
[   57.983891][ T4739] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.995850][ T4742] loop1: detected capacity change from 0 to 2048
[   58.027862][ T4742] EXT4-fs: Ignoring removed oldalloc option
[   58.033870][ T4742] EXT4-fs: Ignoring removed bh option
[   58.039303][ T4742] EXT4-fs: Ignoring removed bh option
[   58.045428][ T4742] EXT4-fs: dax option not supported
[   58.048052][ T4739] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.386: bg 0: block 289: padding at end of block bitmap is not set
[   58.065517][ T4746] infiniband syz2: set active
[   58.070233][ T4746] infiniband syz2: added veth0_to_bond
[   58.070302][ T4742] loop1: detected capacity change from 0 to 512
[   58.106936][ T4742] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   58.120168][ T4742] EXT4-fs error (device loop1): xattr_find_entry:333: inode #15: comm syz.1.387: corrupted xattr entries
[   58.172053][ T4746] RDS/IB: syz2: added
[   58.185895][ T4746] smc: adding ib device syz2 with port count 1
[   58.197831][ T4754] loop2: detected capacity change from 0 to 2048
[   58.205348][ T4742] EXT4-fs (loop1): 1 truncate cleaned up
[   58.247350][ T4746] smc:    ib device syz2 port 1 has pnetid 
[   58.299697][ T4742] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.387: corrupted in-inode xattr: e_name out of bounds
[   58.568689][ T4765] bridge0: entered promiscuous mode
[   58.574108][ T4765] macsec1: entered promiscuous mode
[   58.580196][ T4765] bridge0: port 3(macsec1) entered blocking state
[   58.587059][ T4765] bridge0: port 3(macsec1) entered disabled state
[   58.593825][ T4765] macsec1: entered allmulticast mode
[   58.599256][ T4765] bridge0: entered allmulticast mode
[   58.606334][ T4765] macsec1: left allmulticast mode
[   58.611536][ T4765] bridge0: left allmulticast mode
[   58.628041][ T4765] bridge0: left promiscuous mode
[   58.694532][ T4771] loop4: detected capacity change from 0 to 128
[   58.701716][ T4771] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.756083][ T4771] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.790871][ T1753] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.831346][ T4778] netlink: 'syz.0.401': attribute type 10 has an invalid length.
[   58.835417][ T4780] loop4: detected capacity change from 0 to 512
[   58.840440][ T4778] team0: Port device dummy0 added
[   58.884420][ T4780] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.920269][ T4780] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.400: bg 0: block 289: padding at end of block bitmap is not set
[   58.953399][ T4789] netlink: 16 bytes leftover after parsing attributes in process `syz.3.403'.
[   59.037264][ T4794] loop0: detected capacity change from 0 to 512
[   59.233773][ T4809] FAULT_INJECTION: forcing a failure.
[   59.233773][ T4809] name failslab, interval 1, probability 0, space 0, times 0
[   59.246538][ T4809] CPU: 0 UID: 0 PID: 4809 Comm: syz.0.409 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   59.246595][ T4809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   59.246606][ T4809] Call Trace:
[   59.246612][ T4809]  <TASK>
[   59.246621][ T4809]  __dump_stack+0x1d/0x30
[   59.246644][ T4809]  dump_stack_lvl+0xe8/0x140
[   59.246665][ T4809]  dump_stack+0x15/0x1b
[   59.246680][ T4809]  should_fail_ex+0x265/0x280
[   59.246719][ T4809]  should_failslab+0x8c/0xb0
[   59.246798][ T4809]  kmem_cache_alloc_noprof+0x50/0x310
[   59.246871][ T4809]  ? getname_flags+0x80/0x3b0
[   59.246932][ T4809]  getname_flags+0x80/0x3b0
[   59.246956][ T4809]  do_sys_openat2+0x60/0x110
[   59.246985][ T4809]  __x64_sys_openat+0xf2/0x120
[   59.247077][ T4809]  x64_sys_call+0x1af/0x2fb0
[   59.247100][ T4809]  do_syscall_64+0xd2/0x200
[   59.247117][ T4809]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.247141][ T4809]  ? clear_bhb_loop+0x40/0x90
[   59.247159][ T4809]  ? clear_bhb_loop+0x40/0x90
[   59.247224][ T4809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.247247][ T4809] RIP: 0033:0x7fdc08bbe9a9
[   59.247263][ T4809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.247295][ T4809] RSP: 002b:00007fdc07227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   59.247315][ T4809] RAX: ffffffffffffffda RBX: 00007fdc08de5fa0 RCX: 00007fdc08bbe9a9
[   59.247328][ T4809] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[   59.247339][ T4809] RBP: 00007fdc07227090 R08: 0000000000000000 R09: 0000000000000000
[   59.247403][ T4809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.247416][ T4809] R13: 0000000000000000 R14: 00007fdc08de5fa0 R15: 00007ffec5d03768
[   59.247434][ T4809]  </TASK>
[   59.496865][ T4820] loop3: detected capacity change from 0 to 512
[   59.520656][ T4820] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.410: corrupted in-inode xattr: invalid ea_ino
[   59.559922][ T4820] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.410: couldn't read orphan inode 15 (err -117)
[   59.561171][ T4824] loop1: detected capacity change from 0 to 2048
[   59.677191][ T4825] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4825 comm=syz.0.412
[   59.704139][ T4831] loop3: detected capacity change from 0 to 512
[   59.728440][ T4838] hub 9-0:1.0: USB hub found
[   59.734517][ T4838] hub 9-0:1.0: 8 ports detected
[   59.755688][ T4831] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   59.772067][ T4843] netlink: 'syz.1.418': attribute type 1 has an invalid length.
[   59.773390][ T4831] System zones: 1-12
[   59.786222][ T4831] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.416: error while reading EA inode 32 err=-116
[   59.805796][ T4831] EXT4-fs (loop3): Remounting filesystem read-only
[   59.812424][ T4831] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   59.813623][ T4846] loop2: detected capacity change from 0 to 2048
[   59.822573][ T4831] EXT4-fs (loop3): 1 orphan inode deleted
[   59.843640][ T4843] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.853353][ T4848] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[   59.876764][ T4843] loop1: detected capacity change from 0 to 1024
[   59.883414][ T4843] EXT4-fs: Ignoring removed i_version option
[   59.900446][ T4849] net_ratelimit: 113 callbacks suppressed
[   59.900460][ T4849] sctp: failed to load transform for md5: -2
[   59.934836][ T4843] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   59.993415][ T3415] hid-generic 0000:0004:0000.0003: unknown main item tag 0x0
[   60.000990][ T3415] hid-generic 0000:0004:0000.0003: unknown main item tag 0x0
[   60.008473][ T3415] hid-generic 0000:0004:0000.0003: unknown main item tag 0x0
[   60.052980][ T4843] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.418: Invalid block bitmap block 0 in block_group 0
[   60.072576][ T4843] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.418: Failed to acquire dquot type 0
[   60.107045][ T4843] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.418: Freeing blocks not in datazone - block = 0, count = 4096
[   60.122923][ T3415] hid-generic 0000:0004:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   60.133130][ T4873] pim6reg1: entered promiscuous mode
[   60.138500][ T4873] pim6reg1: entered allmulticast mode
[   60.145527][ T4875] netlink: 'syz.4.430': attribute type 3 has an invalid length.
[   60.151143][ T4876] fido_id[4876]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   60.167632][ T4843] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.418: Invalid inode bitmap blk 0 in block_group 0
[   60.173446][ T4873] x_tables: duplicate underflow at hook 1
[   60.186970][   T31] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 0
[   60.214485][ T4880] loop0: detected capacity change from 0 to 512
[   60.222251][ T4843] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[   60.231720][ T4843] EXT4-fs (loop1): 1 orphan inode deleted
[   60.289983][ T4880] ext4 filesystem being mounted at /99/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.302350][ T4880] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.431: bg 0: block 289: padding at end of block bitmap is not set
[   60.321611][ T4880] 
: renamed from bond0
[   60.328212][ T4888] loop4: detected capacity change from 0 to 512
[   60.340933][ T4888] EXT4-fs: Ignoring removed mblk_io_submit option
[   60.348103][ T4888] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   60.368195][ T4888] EXT4-fs (loop4): 1 truncate cleaned up
[   60.572937][ T4916] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.590757][ T4916] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.617348][ T4918] pimreg: entered allmulticast mode
[   60.623947][ T4918] pimreg: left allmulticast mode
[   60.647832][ T4924] loop1: detected capacity change from 0 to 512
[   60.666585][ T4924] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.708119][ T4924] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.445: bg 0: block 289: padding at end of block bitmap is not set
[   60.831723][ T4935] serio: Serial port ptm0
[   60.960704][ T4944] 9pnet_fd: Insufficient options for proto=fd
[   60.984172][ T4944] lo speed is unknown, defaulting to 1000
[   61.293322][ T4954] loop3: detected capacity change from 0 to 128
[   61.301264][ T4954] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   61.328278][ T4954] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.353532][ T4959] loop2: detected capacity change from 0 to 1024
[   61.370745][   T31] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   61.397469][ T4966] loop4: detected capacity change from 0 to 512
[   61.413549][ T4966] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.425319][ T4966] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.460: bg 0: block 289: padding at end of block bitmap is not set
[   61.513202][ T4976] __nla_validate_parse: 6 callbacks suppressed
[   61.513216][ T4976] netlink: 24 bytes leftover after parsing attributes in process `syz.1.461'.
[   61.555199][ T4980] netlink: 4 bytes leftover after parsing attributes in process `syz.2.463'.
[   61.711828][ T4992] netlink: 8 bytes leftover after parsing attributes in process `syz.4.466'.
[   61.720759][ T4992] netlink: 8 bytes leftover after parsing attributes in process `syz.4.466'.
[   61.781585][ T4996] openvswitch: netlink: Message has 6 unknown bytes.
[   61.916424][ T5007] loop3: detected capacity change from 0 to 512
[   61.945615][ T5007] ext4 filesystem being mounted at /110/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.962136][ T5007] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.472: bg 0: block 289: padding at end of block bitmap is not set
[   62.194621][ T5030] loop2: detected capacity change from 0 to 128
[   62.201489][ T5030] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   62.228784][ T5030] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   62.268145][ T2194] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   62.315744][ T5038] loop3: detected capacity change from 0 to 512
[   62.331463][ T5038] loop3: detected capacity change from 0 to 512
[   62.344731][ T5038] EXT4-fs: Ignoring removed nobh option
[   62.391490][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.483: corrupted inode contents
[   62.405974][ T5038] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #3: comm syz.3.483: mark_inode_dirty error
[   62.419705][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.483: corrupted inode contents
[   62.432596][ T5038] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.483: mark_inode_dirty error
[   62.467469][ T5049] loop2: detected capacity change from 0 to 512
[   62.472217][ T5038] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.483: Failed to acquire dquot type 0
[   62.487247][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.483: corrupted inode contents
[   62.502291][ T5049] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.506063][ T5038] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #16: comm syz.3.483: mark_inode_dirty error
[   62.519674][ T5049] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.487: bg 0: block 289: padding at end of block bitmap is not set
[   62.545623][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.483: corrupted inode contents
[   62.558198][ T5038] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.483: mark_inode_dirty error
[   62.580500][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.483: corrupted inode contents
[   62.610333][ T5055] netlink: 60 bytes leftover after parsing attributes in process `syz.1.489'.
[   62.631060][ T5038] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   62.644798][ T5038] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.483: corrupted inode contents
[   62.683651][ T5038] EXT4-fs error (device loop3): ext4_truncate:4597: inode #16: comm syz.3.483: mark_inode_dirty error
[   62.710251][ T5038] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   62.714450][ T5061] lo speed is unknown, defaulting to 1000
[   62.721279][ T5038] EXT4-fs (loop3): 1 truncate cleaned up
[   62.739795][ T5038] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.838539][   T29] kauditd_printk_skb: 500 callbacks suppressed
[   62.838553][   T29] audit: type=1400 audit(1753690056.080:2764): avc:  denied  { associate } for  pid=5070 comm="syz.2.496" name="1" dev="devpts" ino=4 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   62.935965][   T29] audit: type=1326 audit(1753690056.164:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5066 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   62.959460][   T29] audit: type=1326 audit(1753690056.164:2766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5066 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125f41e9a9 code=0x7ffc0000
[   62.971997][ T5078] loop0: detected capacity change from 0 to 1024
[   63.039545][   T29] audit: type=1326 audit(1753690056.265:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.063431][   T29] audit: type=1326 audit(1753690056.265:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.087061][   T29] audit: type=1326 audit(1753690056.265:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.110453][   T29] audit: type=1326 audit(1753690056.265:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.133779][   T29] audit: type=1326 audit(1753690056.265:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.157353][   T29] audit: type=1326 audit(1753690056.265:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.180712][   T29] audit: type=1326 audit(1753690056.265:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5079 comm="syz.3.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec7f5ae9a9 code=0x7ffc0000
[   63.282730][ T5082] No such timeout policy "syz0"
[   63.326119][ T5090] serio: Serial port ptm0
[   63.364780][ T5094] loop3: detected capacity change from 0 to 512
[   63.383955][ T5096] netlink: 'syz.2.503': attribute type 21 has an invalid length.
[   63.395388][ T5096] netlink: 132 bytes leftover after parsing attributes in process `syz.2.503'.
[   63.404466][ T5096] netlink: 20 bytes leftover after parsing attributes in process `syz.2.503'.
[   63.437272][ T5094] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.468312][ T5100] serio: Serial port ptm1
[   63.469063][ T5105] loop4: detected capacity change from 0 to 128
[   63.487704][ T5094] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.502: bg 0: block 289: padding at end of block bitmap is not set
[   63.505961][ T5105] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.539495][ T5106] loop2: detected capacity change from 0 to 1024
[   63.646693][ T5106] EXT4-fs: Ignoring removed orlov option
[   63.652412][ T5106] EXT4-fs: Ignoring removed nomblk_io_submit option
[   63.670110][ T5114] loop3: detected capacity change from 0 to 128
[   63.706578][ T5114] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.796990][ T5125] tmpfs: Bad value for 'mpol'
[   63.824723][ T5125] SELinux: syz.0.511 (5125) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   63.854200][ T5114] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.921414][   T31] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.022627][ T5139] loop3: detected capacity change from 0 to 512
[   64.024363][ T5140] loop0: detected capacity change from 0 to 128
[   64.035729][ T5139] EXT4-fs: Ignoring removed oldalloc option
[   64.052247][ T5139] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.515: Parent and EA inode have the same ino 15
[   64.052549][ T5140] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.100934][ T5140] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.131363][ T5139] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.515: Parent and EA inode have the same ino 15
[   64.169061][ T5139] EXT4-fs (loop3): 1 orphan inode deleted
[   64.199887][ T1967] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.211345][ T5150] 9pnet_fd: Insufficient options for proto=fd
[   64.234283][ T5152] loop4: detected capacity change from 0 to 128
[   64.251368][ T5152] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.264447][ T5152] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.299138][ T2194] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.450140][ T5167] netlink: 88 bytes leftover after parsing attributes in process `syz.3.527'.
[   64.484743][ T5154] loop1: detected capacity change from 0 to 1024
[   64.515081][ T5154] EXT4-fs: Ignoring removed oldalloc option
[   64.521195][ T5154] EXT4-fs: Ignoring removed bh option
[   64.525487][ T5171] loop0: detected capacity change from 0 to 2048
[   64.542868][ T5167] loop3: detected capacity change from 0 to 4096
[   64.569085][ T5173] lo speed is unknown, defaulting to 1000
[   64.794968][ T5194] loop0: detected capacity change from 0 to 128
[   64.802093][ T5194] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.815073][ T5194] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.836421][ T2194] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   64.861892][ T5198] loop0: detected capacity change from 0 to 164
[   64.882153][ T5200] serio: Serial port ptm0
[   64.980627][ T5203] loop0: detected capacity change from 0 to 512
[   64.998491][ T5203] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   65.011286][ T5203] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.538: bg 0: block 289: padding at end of block bitmap is not set
[   65.163789][ T5218] loop3: detected capacity change from 0 to 2048
[   65.247876][ T5229] loop3: detected capacity change from 0 to 128
[   65.255981][ T5227] loop0: detected capacity change from 0 to 1024
[   65.261568][ T5229] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   65.273314][ T5231] loop1: detected capacity change from 0 to 512
[   65.282320][ T5229] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.297647][ T5231] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   65.311946][ T5231] System zones: 1-12
[   65.316456][ T1753] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   65.325922][ T5231] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.547: error while reading EA inode 32 err=-116
[   65.343469][ T5231] EXT4-fs (loop1): Remounting filesystem read-only
[   65.350079][ T5231] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   65.368426][ T5231] EXT4-fs (loop1): 1 orphan inode deleted
[   65.425620][ T5244] loop2: detected capacity change from 0 to 1024
[   65.445184][ T5244] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.472540][ T5249] syz_tun: entered allmulticast mode
[   65.488996][ T5244] netlink: 88 bytes leftover after parsing attributes in process `syz.2.551'.
[   65.515155][ T5248] syz_tun: left allmulticast mode
[   65.573584][ T5258] netlink: 360 bytes leftover after parsing attributes in process `syz.4.556'.
[   65.596960][ T5258] loop4: detected capacity change from 0 to 1024
[   65.609606][ T5258] ext3: Invalid uid '0x00000000ffffffff'
[   65.741016][ T5269] 9pnet_fd: Insufficient options for proto=fd
[   65.767438][ T5269] lo speed is unknown, defaulting to 1000
[   66.012558][ T5273] loop4: detected capacity change from 0 to 1024
[   66.047141][ T5273] EXT4-fs: Ignoring removed orlov option
[   66.053010][ T5273] EXT4-fs: Ignoring removed nomblk_io_submit option
[   66.099292][ T5277] loop1: detected capacity change from 0 to 8192
[   66.368066][ T5291] xt_CT: You must specify a L4 protocol and not use inversions on it
[   66.501896][ T5300] syz_tun: entered allmulticast mode
[   66.515195][ T5299] syz_tun: left allmulticast mode
[   66.572853][ T5309] FAULT_INJECTION: forcing a failure.
[   66.572853][ T5309] name failslab, interval 1, probability 0, space 0, times 0
[   66.585591][ T5309] CPU: 1 UID: 0 PID: 5309 Comm: syz.3.573 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   66.585619][ T5309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   66.585631][ T5309] Call Trace:
[   66.585638][ T5309]  <TASK>
[   66.585646][ T5309]  __dump_stack+0x1d/0x30
[   66.585711][ T5309]  dump_stack_lvl+0xe8/0x140
[   66.585728][ T5309]  dump_stack+0x15/0x1b
[   66.585811][ T5309]  should_fail_ex+0x265/0x280
[   66.585839][ T5309]  should_failslab+0x8c/0xb0
[   66.585860][ T5309]  kmem_cache_alloc_noprof+0x50/0x310
[   66.585910][ T5309]  ? audit_log_start+0x365/0x6c0
[   66.585980][ T5309]  audit_log_start+0x365/0x6c0
[   66.586009][ T5309]  audit_seccomp+0x48/0x100
[   66.586034][ T5309]  ? __seccomp_filter+0x68c/0x10d0
[   66.586056][ T5309]  __seccomp_filter+0x69d/0x10d0
[   66.586138][ T5309]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   66.586169][ T5309]  ? vfs_write+0x75e/0x8e0
[   66.586203][ T5309]  __secure_computing+0x82/0x150
[   66.586296][ T5309]  syscall_trace_enter+0xcf/0x1e0
[   66.586319][ T5309]  do_syscall_64+0xac/0x200
[   66.586338][ T5309]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.586407][ T5309]  ? clear_bhb_loop+0x40/0x90
[   66.586427][ T5309]  ? clear_bhb_loop+0x40/0x90
[   66.586447][ T5309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.586521][ T5309] RIP: 0033:0x7fec7f5ae9a9
[   66.586537][ T5309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.586614][ T5309] RSP: 002b:00007fec7dc17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[   66.586634][ T5309] RAX: ffffffffffffffda RBX: 00007fec7f7d5fa0 RCX: 00007fec7f5ae9a9
[   66.586647][ T5309] RDX: ffffffffffbffff8 RSI: 0000000000000001 RDI: 0000200000b2c000
[   66.586660][ T5309] RBP: 00007fec7dc17090 R08: 0000000000000000 R09: 0000000000000000
[   66.586673][ T5309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.586684][ T5309] R13: 0000000000000000 R14: 00007fec7f7d5fa0 R15: 00007ffd4e294998
[   66.586715][ T5309]  </TASK>
[   66.822125][ T5310] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   66.830933][ T5310] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   66.839682][ T5310] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   66.848487][ T5310] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   66.862423][ T5320] loop0: detected capacity change from 0 to 256
[   66.868776][ T5310] vxlan0: entered promiscuous mode
[   66.886184][ T5320] FAT-fs (loop0): Directory bread(block 64) failed
[   66.890951][ T5312] lo speed is unknown, defaulting to 1000
[   66.892708][ T5320] FAT-fs (loop0): Directory bread(block 65) failed
[   66.915760][ T5320] FAT-fs (loop0): Directory bread(block 66) failed
[   66.922566][ T5320] FAT-fs (loop0): Directory bread(block 67) failed
[   66.929427][ T5320] FAT-fs (loop0): Directory bread(block 68) failed
[   66.968105][ T5320] FAT-fs (loop0): Directory bread(block 69) failed
[   66.975071][ T5320] FAT-fs (loop0): Directory bread(block 70) failed
[   66.984974][ T5320] FAT-fs (loop0): Directory bread(block 71) failed
[   67.012393][ T5325] FAULT_INJECTION: forcing a failure.
[   67.012393][ T5325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.025640][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.3.577 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   67.025671][ T5325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.025683][ T5325] Call Trace:
[   67.025689][ T5325]  <TASK>
[   67.025728][ T5325]  __dump_stack+0x1d/0x30
[   67.025750][ T5325]  dump_stack_lvl+0xe8/0x140
[   67.025771][ T5325]  dump_stack+0x15/0x1b
[   67.025789][ T5325]  should_fail_ex+0x265/0x280
[   67.025843][ T5325]  should_fail+0xb/0x20
[   67.025872][ T5325]  should_fail_usercopy+0x1a/0x20
[   67.025905][ T5325]  _copy_from_user+0x1c/0xb0
[   67.025927][ T5325]  ___sys_sendmsg+0xc1/0x1d0
[   67.026019][ T5325]  __x64_sys_sendmsg+0xd4/0x160
[   67.026043][ T5325]  x64_sys_call+0x2999/0x2fb0
[   67.026067][ T5325]  do_syscall_64+0xd2/0x200
[   67.026087][ T5325]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.026115][ T5325]  ? clear_bhb_loop+0x40/0x90
[   67.026155][ T5325]  ? clear_bhb_loop+0x40/0x90
[   67.026178][ T5325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.026201][ T5325] RIP: 0033:0x7fec7f5ae9a9
[   67.026217][ T5325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.026243][ T5325] RSP: 002b:00007fec7dc17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.026292][ T5325] RAX: ffffffffffffffda RBX: 00007fec7f7d5fa0 RCX: 00007fec7f5ae9a9
[   67.026306][ T5325] RDX: 000000002800c804 RSI: 00002000000002c0 RDI: 0000000000000003
[   67.026319][ T5325] RBP: 00007fec7dc17090 R08: 0000000000000000 R09: 0000000000000000
[   67.026332][ T5325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.026345][ T5325] R13: 0000000000000000 R14: 00007fec7f7d5fa0 R15: 00007ffd4e294998
[   67.026400][ T5325]  </TASK>
[   67.078749][ T5320] FAT-fs (loop0): Directory bread(block 72) failed
[   67.216532][ T5320] FAT-fs (loop0): Directory bread(block 73) failed
[   67.413610][ T5337] 9pnet_fd: Insufficient options for proto=fd
[   67.490031][ T5339] lo speed is unknown, defaulting to 1000
[   67.677565][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.677565][  T174] loop0: rw=1, sector=1832, nr_sectors = 32 limit=256
[   67.693990][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.693990][  T174] loop0: rw=1, sector=1896, nr_sectors = 32 limit=256
[   67.708584][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.708584][  T174] loop0: rw=1, sector=1960, nr_sectors = 32 limit=256
[   67.724249][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.724249][  T174] loop0: rw=1, sector=2024, nr_sectors = 32 limit=256
[   67.738126][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.738126][  T174] loop0: rw=1, sector=2088, nr_sectors = 32 limit=256
[   67.751986][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.751986][  T174] loop0: rw=1, sector=2152, nr_sectors = 32 limit=256
[   67.765703][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.765703][  T174] loop0: rw=1, sector=2216, nr_sectors = 32 limit=256
[   67.779827][ T5343] FAULT_INJECTION: forcing a failure.
[   67.779827][ T5343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.792947][ T5343] CPU: 0 UID: 0 PID: 5343 Comm: syz.4.583 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   67.793056][ T5343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.793067][ T5343] Call Trace:
[   67.793087][ T5343]  <TASK>
[   67.793094][ T5343]  __dump_stack+0x1d/0x30
[   67.793183][ T5343]  dump_stack_lvl+0xe8/0x140
[   67.793204][ T5343]  dump_stack+0x15/0x1b
[   67.793222][ T5343]  should_fail_ex+0x265/0x280
[   67.793267][ T5343]  should_fail+0xb/0x20
[   67.793292][ T5343]  should_fail_usercopy+0x1a/0x20
[   67.793452][ T5343]  _copy_from_user+0x1c/0xb0
[   67.793469][ T5343]  ___sys_sendmsg+0xc1/0x1d0
[   67.793495][ T5343]  __x64_sys_sendmsg+0xd4/0x160
[   67.793518][ T5343]  x64_sys_call+0x2999/0x2fb0
[   67.793542][ T5343]  do_syscall_64+0xd2/0x200
[   67.793564][ T5343]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.793587][ T5343]  ? clear_bhb_loop+0x40/0x90
[   67.793650][ T5343]  ? clear_bhb_loop+0x40/0x90
[   67.793673][ T5343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.793712][ T5343] RIP: 0033:0x7fb0165ae9a9
[   67.793725][ T5343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.793819][ T5343] RSP: 002b:00007fb014c17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.793835][ T5343] RAX: ffffffffffffffda RBX: 00007fb0167d5fa0 RCX: 00007fb0165ae9a9
[   67.793871][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.793871][  T174] loop0: rw=1, sector=2280, nr_sectors = 32 limit=256
[   67.793907][ T5343] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[   67.793918][ T5343] RBP: 00007fb014c17090 R08: 0000000000000000 R09: 0000000000000000
[   67.793929][ T5343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.793941][ T5343] R13: 0000000000000000 R14: 00007fb0167d5fa0 R15: 00007ffeb2693528
[   67.793958][ T5343]  </TASK>
[   67.983988][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.983988][  T174] loop0: rw=1, sector=2344, nr_sectors = 32 limit=256
[   67.997811][  T174] kworker/u8:5: attempt to access beyond end of device
[   67.997811][  T174] loop0: rw=1, sector=2408, nr_sectors = 32 limit=256
[   68.064479][ T5359] FAULT_INJECTION: forcing a failure.
[   68.064479][ T5359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.077730][ T5359] CPU: 1 UID: 0 PID: 5359 Comm: syz.4.588 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   68.077779][ T5359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.077793][ T5359] Call Trace:
[   68.077850][ T5359]  <TASK>
[   68.077856][ T5359]  __dump_stack+0x1d/0x30
[   68.077876][ T5359]  dump_stack_lvl+0xe8/0x140
[   68.077896][ T5359]  dump_stack+0x15/0x1b
[   68.077911][ T5359]  should_fail_ex+0x265/0x280
[   68.077958][ T5359]  should_fail+0xb/0x20
[   68.077983][ T5359]  should_fail_usercopy+0x1a/0x20
[   68.078013][ T5359]  _copy_from_user+0x1c/0xb0
[   68.078031][ T5359]  __sys_bpf+0x178/0x790
[   68.078140][ T5359]  __x64_sys_bpf+0x41/0x50
[   68.078216][ T5359]  x64_sys_call+0x2478/0x2fb0
[   68.078235][ T5359]  do_syscall_64+0xd2/0x200
[   68.078251][ T5359]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.078299][ T5359]  ? clear_bhb_loop+0x40/0x90
[   68.078317][ T5359]  ? clear_bhb_loop+0x40/0x90
[   68.078336][ T5359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.078376][ T5359] RIP: 0033:0x7fb0165ae9a9
[   68.078389][ T5359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.078404][ T5359] RSP: 002b:00007fb014c17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   68.078420][ T5359] RAX: ffffffffffffffda RBX: 00007fb0167d5fa0 RCX: 00007fb0165ae9a9
[   68.078431][ T5359] RDX: 0000000000000028 RSI: 00002000000000c0 RDI: 0000000000000012
[   68.078441][ T5359] RBP: 00007fb014c17090 R08: 0000000000000000 R09: 0000000000000000
[   68.078451][ T5359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.078596][ T5359] R13: 0000000000000001 R14: 00007fb0167d5fa0 R15: 00007ffeb2693528
[   68.078611][ T5359]  </TASK>
[   68.291601][   T29] kauditd_printk_skb: 362 callbacks suppressed
[   68.291664][   T29] audit: type=1326 audit(1753690061.120:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f32a3aaab89 code=0x7ffc0000
[   68.321205][   T29] audit: type=1326 audit(1753690061.120:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.402620][ T5368] loop0: detected capacity change from 0 to 2048
[   68.409503][   T29] audit: type=1326 audit(1753690061.148:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.432923][   T29] audit: type=1326 audit(1753690061.148:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.456243][   T29] audit: type=1326 audit(1753690061.148:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.479872][   T29] audit: type=1326 audit(1753690061.175:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.503378][   T29] audit: type=1326 audit(1753690061.175:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.505048][ T5372] loop4: detected capacity change from 0 to 128
[   68.526743][   T29] audit: type=1326 audit(1753690061.175:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.526769][   T29] audit: type=1326 audit(1753690061.175:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.579890][   T29] audit: type=1326 audit(1753690061.175:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5351 comm="syz.2.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32a3b0e9a9 code=0x7ffc0000
[   68.584660][ T5372] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   68.615741][ T5370] FAULT_INJECTION: forcing a failure.
[   68.615741][ T5370] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.628812][ T5370] CPU: 1 UID: 0 PID: 5370 Comm: syz.3.593 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   68.628891][ T5370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.628901][ T5370] Call Trace:
[   68.628906][ T5370]  <TASK>
[   68.628912][ T5370]  __dump_stack+0x1d/0x30
[   68.628931][ T5370]  dump_stack_lvl+0xe8/0x140
[   68.628949][ T5370]  dump_stack+0x15/0x1b
[   68.628964][ T5370]  should_fail_ex+0x265/0x280
[   68.628991][ T5370]  should_fail+0xb/0x20
[   68.629014][ T5370]  should_fail_usercopy+0x1a/0x20
[   68.629059][ T5370]  _copy_from_user+0x1c/0xb0
[   68.629077][ T5370]  ___sys_sendmsg+0xc1/0x1d0
[   68.629149][ T5370]  __x64_sys_sendmsg+0xd4/0x160
[   68.629167][ T5370]  x64_sys_call+0x2999/0x2fb0
[   68.629230][ T5370]  do_syscall_64+0xd2/0x200
[   68.629247][ T5370]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.629270][ T5370]  ? clear_bhb_loop+0x40/0x90
[   68.629288][ T5370]  ? clear_bhb_loop+0x40/0x90
[   68.629365][ T5370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.629383][ T5370] RIP: 0033:0x7fec7f5ae9a9
[   68.629396][ T5370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.629412][ T5370] RSP: 002b:00007fec7dc17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.629452][ T5370] RAX: ffffffffffffffda RBX: 00007fec7f7d5fa0 RCX: 00007fec7f5ae9a9
[   68.629462][ T5370] RDX: 0000000000000800 RSI: 0000200000000300 RDI: 0000000000000005
[   68.629479][ T5370] RBP: 00007fec7dc17090 R08: 0000000000000000 R09: 0000000000000000
[   68.629489][ T5370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.629499][ T5370] R13: 0000000000000000 R14: 00007fec7f7d5fa0 R15: 00007ffd4e294998
[   68.629520][ T5370]  </TASK>
[   68.819219][ T5372] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   68.862026][ T1753] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   68.865287][ T5379] FAULT_INJECTION: forcing a failure.
[   68.865287][ T5379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.884342][ T5379] CPU: 0 UID: 0 PID: 5379 Comm: syz.3.597 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   68.884368][ T5379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   68.884429][ T5379] Call Trace:
[   68.884435][ T5379]  <TASK>
[   68.884443][ T5379]  __dump_stack+0x1d/0x30
[   68.884465][ T5379]  dump_stack_lvl+0xe8/0x140
[   68.884484][ T5379]  dump_stack+0x15/0x1b
[   68.884539][ T5379]  should_fail_ex+0x265/0x280
[   68.884580][ T5379]  should_fail+0xb/0x20
[   68.884605][ T5379]  should_fail_usercopy+0x1a/0x20
[   68.884660][ T5379]  _copy_from_user+0x1c/0xb0
[   68.884682][ T5379]  ___sys_sendmsg+0xc1/0x1d0
[   68.884724][ T5379]  __x64_sys_sendmsg+0xd4/0x160
[   68.884743][ T5379]  x64_sys_call+0x2999/0x2fb0
[   68.884832][ T5379]  do_syscall_64+0xd2/0x200
[   68.884853][ T5379]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.884880][ T5379]  ? clear_bhb_loop+0x40/0x90
[   68.884901][ T5379]  ? clear_bhb_loop+0x40/0x90
[   68.884949][ T5379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.885000][ T5379] RIP: 0033:0x7fec7f5ae9a9
[   68.885016][ T5379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.885034][ T5379] RSP: 002b:00007fec7dc17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.885054][ T5379] RAX: ffffffffffffffda RBX: 00007fec7f7d5fa0 RCX: 00007fec7f5ae9a9
[   68.885065][ T5379] RDX: 0000000000008800 RSI: 0000200000000180 RDI: 0000000000000003
[   68.885075][ T5379] RBP: 00007fec7dc17090 R08: 0000000000000000 R09: 0000000000000000
[   68.885086][ T5379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.885099][ T5379] R13: 0000000000000000 R14: 00007fec7f7d5fa0 R15: 00007ffd4e294998
[   68.885186][ T5379]  </TASK>
[   69.409699][ T5399] __nla_validate_parse: 2 callbacks suppressed
[   69.409717][ T5399] netlink: 8 bytes leftover after parsing attributes in process `syz.1.603'.
[   69.424764][ T5399] netlink: 8 bytes leftover after parsing attributes in process `syz.1.603'.
[   69.471757][ T5368] EXT4-fs mount: 111 callbacks suppressed
[   69.471774][ T5368] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.567794][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.849006][ T5410] netlink: 24 bytes leftover after parsing attributes in process `+ê'.
[   69.920864][ T5414] netlink: 'syz.3.609': attribute type 1 has an invalid length.
[   69.928923][ T5414] netlink: 88 bytes leftover after parsing attributes in process `syz.3.609'.
[   69.968495][ T5415] 9pnet_fd: Insufficient options for proto=fd
[   69.991748][ T5415] lo speed is unknown, defaulting to 1000
[   70.313322][ T5425] loop4: detected capacity change from 0 to 2048
[   70.355222][ T5425] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.377885][ T5432] SELinux: failed to load policy
[   70.443029][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.607843][ T5457] netlink: 12 bytes leftover after parsing attributes in process `syz.1.623'.
[   70.623578][ T5459] netlink: 8 bytes leftover after parsing attributes in process `syz.3.621'.
[   70.632475][ T5459] netlink: 8 bytes leftover after parsing attributes in process `syz.3.621'.
[   70.656286][ T5462] serio: Serial port ptm0
[   70.727070][ T5457] 8021q: adding VLAN 0 to HW filter on device bond2
[   70.753841][ T5463] vlan0: entered allmulticast mode
[   70.759018][ T5463] bond2: entered allmulticast mode
[   70.807237][ T5467] @: renamed from vlan0 (while UP)
[   70.892264][ T5471] loop2: detected capacity change from 0 to 512
[   70.934260][ T5471] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   70.945124][ T5471] System zones: 1-12
[   70.954740][ T5471] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.628: error while reading EA inode 32 err=-116
[   70.976639][ T5471] EXT4-fs (loop2): Remounting filesystem read-only
[   70.983222][ T5471] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   70.999352][ T5471] EXT4-fs (loop2): 1 orphan inode deleted
[   71.008226][ T5471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.043009][ T5476] ip6t_srh: unknown srh match flags  4000
[   71.087976][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.290477][ T5503] loop0: detected capacity change from 0 to 128
[   71.296714][ T5504] loop2: detected capacity change from 0 to 512
[   71.299282][ T5503] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   71.316207][ T5503] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   71.324771][ T5504] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   71.340384][ T5504] System zones: 1-12
[   71.345252][ T5504] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.640: error while reading EA inode 32 err=-116
[   71.361111][ T5508] loop0: detected capacity change from 0 to 128
[   71.371742][ T5504] EXT4-fs (loop2): Remounting filesystem read-only
[   71.378342][ T5504] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   71.388706][ T5504] EXT4-fs (loop2): 1 orphan inode deleted
[   71.393167][ T5508] FAT-fs (loop0): error, clusters badly computed (5 != 1)
[   71.395392][ T5504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.401661][ T5508] FAT-fs (loop0): Filesystem has been set read-only
[   71.423391][ T5508] FAT-fs (loop0): error, clusters badly computed (6 != 2)
[   71.430550][ T5508] FAT-fs (loop0): error, clusters badly computed (7 != 3)
[   71.437858][ T5508] FAT-fs (loop0): error, clusters badly computed (8 != 4)
[   71.445163][ T5508] FAT-fs (loop0): error, clusters badly computed (9 != 5)
[   71.452550][ T5508] FAT-fs (loop0): error, clusters badly computed (10 != 6)
[   71.459918][ T5508] FAT-fs (loop0): error, clusters badly computed (11 != 7)
[   71.467418][ T5508] FAT-fs (loop0): error, clusters badly computed (12 != 8)
[   71.474665][ T5508] FAT-fs (loop0): error, clusters badly computed (13 != 9)
[   71.482454][ T5508] FAT-fs (loop0): error, clusters badly computed (14 != 10)
[   71.489890][ T5508] FAT-fs (loop0): error, clusters badly computed (15 != 11)
[   71.497386][ T5508] FAT-fs (loop0): error, clusters badly computed (16 != 12)
[   71.525759][ T5508] FAT-fs (loop0): error, clusters badly computed (17 != 13)
[   71.538428][ T5509] lo speed is unknown, defaulting to 1000
[   71.550257][ T5518] loop3: detected capacity change from 0 to 512
[   71.563042][ T5508] FAT-fs (loop0): error, clusters badly computed (18 != 14)
[   71.570629][ T5508] FAT-fs (loop0): error, clusters badly computed (19 != 15)
[   71.578509][ T5508] FAT-fs (loop0): error, clusters badly computed (20 != 16)
[   71.586129][ T5508] FAT-fs (loop0): error, clusters badly computed (21 != 17)
[   71.593484][ T5518] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   71.601901][ T5518] System zones: 1-12
[   71.606489][ T5508] FAT-fs (loop0): error, clusters badly computed (22 != 18)
[   71.614122][ T5518] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.645: error while reading EA inode 32 err=-116
[   71.626545][ T5508] FAT-fs (loop0): error, clusters badly computed (23 != 19)
[   71.636757][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.649249][ T5518] EXT4-fs (loop3): Remounting filesystem read-only
[   71.655819][ T5518] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   71.674697][ T5518] EXT4-fs (loop3): 1 orphan inode deleted
[   71.681251][ T5518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.737703][ T5527] usb usb1: usbfs: process 5527 (+}[@) did not claim interface 0 before use
[   71.749808][ T5527] openvswitch: netlink: Message has 6 unknown bytes.
[   71.754177][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.760998][ T5527] loop2: detected capacity change from 0 to 512
[   71.783094][ T5527] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   71.796217][ T5527] EXT4-fs (loop2): invalid journal inode
[   71.846868][ T5536] loop3: detected capacity change from 0 to 1024
[   71.855276][ T5527] loop2: detected capacity change from 0 to 512
[   71.868410][ T5527] EXT4-fs: Ignoring removed orlov option
[   71.874769][ T5527] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.885109][ T5536] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.909387][ T5527] EXT4-fs (loop2): orphan cleanup on readonly fs
[   71.939396][ T5536] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.957643][ T5527] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set
[   71.972436][ T5527] EXT4-fs (loop2): Remounting filesystem read-only
[   71.979669][ T5527] EXT4-fs (loop2): 1 truncate cleaned up
[   71.984084][ T5551] EXT4-fs (loop3): Online defrag not supported with bigalloc
[   71.991313][ T5527] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.014445][ T5536] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.063966][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.073370][ T5556] loop4: detected capacity change from 0 to 4096
[   72.084824][ T5556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.104311][ T5536] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.136635][ T5559] loop2: detected capacity change from 0 to 1024
[   72.165139][ T5559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.185566][ T5536] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.226458][ T5563] loop1: detected capacity change from 0 to 2048
[   72.249570][ T5563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.268657][ T5536] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.280821][ T5536] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.292506][ T5536] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.301642][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.304182][ T5536] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.333494][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.400950][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.444360][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.470174][ T5581] loop1: detected capacity change from 0 to 512
[   72.483098][ T5581] EXT4-fs: Ignoring removed nobh option
[   72.498070][ T5581] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   72.509686][ T5581] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it
[   72.520115][ T5581] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.661: Corrupt directory, running e2fsck is recommended
[   72.545231][ T5581] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[   72.557951][ T5581] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.661: corrupted in-inode xattr: invalid ea_ino
[   72.578951][ T5581] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.661: couldn't read orphan inode 15 (err -117)
[   72.599916][ T5581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.639394][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.653800][ T5592] loop4: detected capacity change from 0 to 512
[   72.676506][ T5592] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.667: corrupted in-inode xattr: invalid ea_ino
[   72.720168][ T5600] loop2: detected capacity change from 0 to 1024
[   72.729518][ T5592] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.667: couldn't read orphan inode 15 (err -117)
[   72.760273][ T5600] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.777746][ T5592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.827689][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.010671][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.036926][ T5621] FAULT_INJECTION: forcing a failure.
[   73.036926][ T5621] name failslab, interval 1, probability 0, space 0, times 0
[   73.049624][ T5621] CPU: 0 UID: 0 PID: 5621 Comm: syz.4.677 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   73.049695][ T5621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   73.049707][ T5621] Call Trace:
[   73.049712][ T5621]  <TASK>
[   73.049719][ T5621]  __dump_stack+0x1d/0x30
[   73.049739][ T5621]  dump_stack_lvl+0xe8/0x140
[   73.049756][ T5621]  dump_stack+0x15/0x1b
[   73.049789][ T5621]  should_fail_ex+0x265/0x280
[   73.049889][ T5621]  should_failslab+0x8c/0xb0
[   73.049911][ T5621]  kmem_cache_alloc_noprof+0x50/0x310
[   73.050037][ T5621]  ? audit_log_start+0x365/0x6c0
[   73.050068][ T5621]  audit_log_start+0x365/0x6c0
[   73.050128][ T5621]  audit_log+0x5e/0xd0
[   73.050158][ T5621]  security_bounded_transition+0x361/0x3d0
[   73.050181][ T5621]  selinux_lsm_setattr+0x469/0x660
[   73.050252][ T5621]  selinux_setprocattr+0x4f/0x70
[   73.050279][ T5621]  security_setprocattr+0x1a4/0x1d0
[   73.050305][ T5621]  proc_pid_attr_write+0x1eb/0x220
[   73.050335][ T5621]  ? __pfx_proc_pid_attr_write+0x10/0x10
[   73.050385][ T5621]  vfs_write+0x266/0x8e0
[   73.050414][ T5621]  ? __rcu_read_unlock+0x4f/0x70
[   73.050434][ T5621]  ? __fget_files+0x184/0x1c0
[   73.050522][ T5621]  ksys_write+0xda/0x1a0
[   73.050554][ T5621]  __x64_sys_write+0x40/0x50
[   73.050582][ T5621]  x64_sys_call+0x2cdd/0x2fb0
[   73.050602][ T5621]  do_syscall_64+0xd2/0x200
[   73.050668][ T5621]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.050765][ T5621]  ? clear_bhb_loop+0x40/0x90
[   73.050784][ T5621]  ? clear_bhb_loop+0x40/0x90
[   73.050835][ T5621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.050856][ T5621] RIP: 0033:0x7fb0165ae9a9
[   73.050924][ T5621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.050968][ T5621] RSP: 002b:00007fb014c17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   73.050989][ T5621] RAX: ffffffffffffffda RBX: 00007fb0167d5fa0 RCX: 00007fb0165ae9a9
[   73.051003][ T5621] RDX: 000000000000001d RSI: 0000200000000100 RDI: 0000000000000005
[   73.051015][ T5621] RBP: 00007fb014c17090 R08: 0000000000000000 R09: 0000000000000000
[   73.051025][ T5621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.051036][ T5621] R13: 0000000000000000 R14: 00007fb0167d5fa0 R15: 00007ffeb2693528
[   73.051051][ T5621]  </TASK>
[   73.513862][ T5636] usb usb7: usbfs: process 5636 (syz.2.683) did not claim interface 0 before use
[   73.655089][ T5645] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'.
[   73.781507][ T5638] netlink: 24 bytes leftover after parsing attributes in process `syz.1.682'.
[   73.801054][ T5650] 8021q: VLANs not supported on gre0
[   73.811742][ T5649] loop2: detected capacity change from 0 to 1024
[   73.873014][ T5649] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.897571][ T5653] netlink: 36 bytes leftover after parsing attributes in process `syz.3.687'.
[   73.942152][   T29] kauditd_printk_skb: 593 callbacks suppressed
[   73.942165][   T29] audit: type=1326 audit(1753690066.335:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.039562][   T29] audit: type=1326 audit(1753690066.400:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.101449][ T5661] loop1: detected capacity change from 0 to 1024
[   74.109838][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.123498][   T29] audit: type=1326 audit(1753690066.483:3735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.146877][   T29] audit: type=1326 audit(1753690066.483:3736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.171210][   T29] audit: type=1326 audit(1753690066.483:3737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.194884][   T29] audit: type=1326 audit(1753690066.483:3738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.218371][   T29] audit: type=1326 audit(1753690066.492:3739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.241856][   T29] audit: type=1326 audit(1753690066.492:3740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.265380][   T29] audit: type=1326 audit(1753690066.492:3741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.288978][   T29] audit: type=1326 audit(1753690066.492:3742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.4.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb0165ae9a9 code=0x7ffc0000
[   74.317542][ T5661] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.336213][ T3311] ==================================================================
[   74.344320][ T3311] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[   74.354146][ T3311] 
[   74.356468][ T3311] read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 1:
[   74.364630][ T3311]  tick_do_update_jiffies64+0x113/0x1c0
[   74.367836][ T5608] syz.0.673 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   74.370178][ T3311]  tick_nohz_handler+0x7f/0x2d0
[   74.370202][ T3311]  __hrtimer_run_queues+0x20c/0x5a0
[   74.384193][ T5608] CPU: 1 UID: 0 PID: 5608 Comm: syz.0.673 Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   74.384224][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.384246][ T5608] Call Trace:
[   74.384253][ T5608]  <TASK>
[   74.384262][ T5608]  __dump_stack+0x1d/0x30
[   74.384282][ T5608]  dump_stack_lvl+0xe8/0x140
[   74.384333][ T5608]  dump_stack+0x15/0x1b
[   74.384372][ T5608]  dump_header+0x81/0x220
[   74.384448][ T5608]  oom_kill_process+0x334/0x3f0
[   74.384481][ T5608]  out_of_memory+0x979/0xb80
[   74.384577][ T5608]  try_charge_memcg+0x5e6/0x9e0
[   74.384620][ T5608]  obj_cgroup_charge_pages+0xa6/0x150
[   74.384651][ T5608]  __memcg_kmem_charge_page+0x9f/0x170
[   74.384705][ T5608]  __alloc_frozen_pages_noprof+0x188/0x360
[   74.384820][ T5608]  alloc_pages_mpol+0xb3/0x250
[   74.384852][ T5608]  alloc_pages_noprof+0x90/0x130
[   74.384917][ T5608]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   74.384960][ T5608]  __kvmalloc_node_noprof+0x30f/0x4e0
[   74.384989][ T5608]  ? ip_set_alloc+0x1f/0x30
[   74.385156][ T5608]  ? ip_set_alloc+0x1f/0x30
[   74.385185][ T5608]  ? __kmalloc_cache_noprof+0x189/0x320
[   74.385219][ T5608]  ip_set_alloc+0x1f/0x30
[   74.385249][ T5608]  hash_netiface_create+0x282/0x740
[   74.385311][ T5608]  ? __pfx_hash_netiface_create+0x10/0x10
[   74.385344][ T5608]  ip_set_create+0x3c9/0x960
[   74.385475][ T5608]  ? __nla_parse+0x40/0x60
[   74.385495][ T5608]  nfnetlink_rcv_msg+0x4c6/0x590
[   74.385522][ T5608]  ? should_fail_ex+0x30/0x280
[   74.385614][ T5608]  ? selinux_capable+0x1f9/0x270
[   74.385647][ T5608]  netlink_rcv_skb+0x123/0x220
[   74.385789][ T5608]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   74.385822][ T5608]  nfnetlink_rcv+0x16b/0x1690
[   74.385848][ T5608]  ? css_rstat_updated+0xcd/0x5b0
[   74.385945][ T5608]  ? page_counter_charge+0x207/0x230
[   74.385974][ T5608]  ? __rcu_read_unlock+0x4f/0x70
[   74.386034][ T5608]  ? obj_cgroup_charge_pages+0xf7/0x150
[   74.386122][ T5608]  ? __rcu_read_unlock+0x4f/0x70
[   74.386144][ T5608]  ? __memcg_kmem_charge_page+0xd1/0x170
[   74.386198][ T5608]  ? mas_next_slot+0x69b/0x6f0
[   74.386220][ T5608]  ? __rcu_read_unlock+0x4f/0x70
[   74.386241][ T5608]  ? cmp_ex_search+0x25/0x40
[   74.386318][ T5608]  ? should_fail_ex+0x30/0x280
[   74.386362][ T5608]  ? selinux_nlmsg_lookup+0x99/0x890
[   74.386396][ T5608]  ? selinux_netlink_send+0x59f/0x5f0
[   74.386463][ T5608]  ? __rcu_read_unlock+0x34/0x70
[   74.386485][ T5608]  ? __netlink_lookup+0x266/0x2a0
[   74.386581][ T5608]  netlink_unicast+0x5a8/0x680
[   74.386615][ T5608]  netlink_sendmsg+0x58b/0x6b0
[   74.386637][ T5608]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.386658][ T5608]  __sock_sendmsg+0x142/0x180
[   74.386707][ T5608]  ____sys_sendmsg+0x31e/0x4e0
[   74.386729][ T5608]  ___sys_sendmsg+0x17b/0x1d0
[   74.386761][ T5608]  __x64_sys_sendmsg+0xd4/0x160
[   74.386860][ T5608]  x64_sys_call+0x2999/0x2fb0
[   74.386883][ T5608]  do_syscall_64+0xd2/0x200
[   74.386926][ T5608]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   74.386953][ T5608]  ? clear_bhb_loop+0x40/0x90
[   74.387037][ T5608]  ? clear_bhb_loop+0x40/0x90
[   74.387112][ T5608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.387134][ T5608] RIP: 0033:0x7fdc08bbe9a9
[   74.387151][ T5608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.387196][ T5608] RSP: 002b:00007fdc07227038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.387215][ T5608] RAX: ffffffffffffffda RBX: 00007fdc08de5fa0 RCX: 00007fdc08bbe9a9
[   74.387228][ T5608] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[   74.387240][ T5608] RBP: 00007fdc08c40d69 R08: 0000000000000000 R09: 0000000000000000
[   74.387253][ T5608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.387266][ T5608] R13: 0000000000000000 R14: 00007fdc08de5fa0 R15: 00007ffec5d03768
[   74.387288][ T5608]  </TASK>
[   74.387341][ T5608] memory: usage 307200kB, limit 307200kB, failcnt 314
[   74.388985][ T3311]  hrtimer_interrupt+0x21a/0x460
[   74.394211][ T5608] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[   74.406463][ T3311]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[   74.406492][ T3311]  sysvec_apic_timer_interrupt+0x6f/0x80
[   74.416571][ T5608] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[   74.419792][ T3311]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   74.422715][ T5608] Memory cgroup stats for 
[   74.427012][ T3311]  kcsan_setup_watchpoint+0x415/0x430
[   74.427038][ T3311]  sized_strscpy+0xf1/0x1a0
[   74.427055][ T3311]  bpf_get_current_comm+0x44/0xb0
[   74.431636][ T5608] /syz0
[   74.435762][ T3311]  bpf_prog_22b6409c2f5c9c11+0x38/0x40
[   74.440098][ T5608] :
[   74.444897][ T3311]  bpf_trace_run2+0x107/0x1c0
[   74.457887][ T5608] cache 0
[   74.459652][ T3311]  __traceiter_kfree+0x2b/0x50
[   74.459684][ T3311]  kfree+0x27b/0x320
[   74.465128][ T5608] rss 0
[   74.465136][ T5608] shmem 0
[   74.470907][ T3311]  shrink_lruvec+0x2a5/0x1b40
[   74.470925][ T3311]  shrink_node+0x686/0x2120
[   74.470945][ T3311]  do_try_to_free_pages+0x3f6/0xcd0
[   74.470962][ T3311]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[   74.475705][ T5608] mapped_file 0
[   74.480636][ T3311]  try_charge_memcg+0x358/0x9e0
[   74.480668][ T3311]  charge_memcg+0x51/0xc0
[   74.486551][ T5608] dirty 0
[   74.486559][ T5608] writeback 4096
[   74.491904][ T3311]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   74.496401][ T5608] workingset_refault_anon 78
[   74.496411][ T5608] workingset_refault_file 128
[   74.500875][ T3311]  __read_swap_cache_async+0x1df/0x350
[   74.500905][ T3311]  swap_cluster_readahead+0x277/0x3e0
[   74.506426][ T5608] swap 200704
[   74.506435][ T5608] swapcached 69632
[   74.510739][ T3311]  swapin_readahead+0xde/0x6f0
[   74.515926][ T5608] pgpgin 83288
[   74.515935][ T5608] pgpgout 83270
[   74.521629][ T3311]  do_swap_page+0x301/0x2430
[   74.521648][ T3311]  handle_mm_fault+0x9a5/0x2be0
[   74.521666][ T3311]  do_user_addr_fault+0x636/0x1090
[   74.526225][ T5608] pgfault 54701
[   74.526291][ T5608] pgmajfault 45
[   74.530615][ T3311]  exc_page_fault+0x62/0xa0
[   74.535557][ T5608] inactive_anon 69632
[   74.540273][ T3311]  asm_exc_page_fault+0x26/0x30
[   74.545240][ T5608] active_anon 0
[   74.549947][ T3311] 
[   74.549955][ T3311] read to 0xffffffff868099c0 of 8 bytes by task 3311 on cpu 0:
[   74.555405][ T5608] inactive_file 4096
[   74.560038][ T3311]  mem_cgroup_flush_stats_ratelimited+0x29/0x70
[   74.565080][ T5608] active_file 0
[   74.570305][ T3311]  count_shadow_nodes+0x6a/0x230
[   74.575301][ T5608] unevictable 0
[   74.580798][ T3311]  do_shrink_slab+0x60/0x680
[   74.585742][ T5608] hierarchical_memory_limit 314572800
[   74.591316][ T3311]  shrink_slab+0x448/0x760
[   74.596108][ T5608] hierarchical_memsw_limit 9223372036854771712
[   74.600970][ T3311]  shrink_node+0x6c3/0x2120
[   74.605533][ T5608] total_cache 0
[   74.605541][ T5608] total_rss 0
[   74.610270][ T3311]  do_try_to_free_pages+0x3f6/0xcd0
[   74.610289][ T3311]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[   74.610312][ T3311]  try_charge_memcg+0x358/0x9e0
[   74.610340][ T3311]  charge_memcg+0x51/0xc0
[   74.615598][ T5608] total_shmem 0
[   74.615607][ T5608] total_mapped_file 0
[   74.620944][ T3311]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   74.625873][ T5608] total_dirty 0
[   74.625881][ T5608] total_writeback 4096
[   74.630868][ T3311]  __read_swap_cache_async+0x1df/0x350
[   74.630896][ T3311]  swap_cluster_readahead+0x376/0x3e0
[   74.630922][ T3311]  swapin_readahead+0xde/0x6f0
[   74.635679][ T5608] total_workingset_refault_anon 78
[   74.635689][ T5608] total_workingset_refault_file 128
[   74.640417][ T3311]  do_swap_page+0x301/0x2430
[   74.640434][ T3311]  handle_mm_fault+0x9a5/0x2be0
[   74.640450][ T3311]  do_user_addr_fault+0x636/0x1090
[   74.645707][ T5608] total_swap 200704
[   74.650355][ T3311]  exc_page_fault+0x62/0xa0
[   74.650383][ T3311]  asm_exc_page_fault+0x26/0x30
[   74.650401][ T3311] 
[   74.655127][ T5608] total_swapcached 69632
[   74.655136][ T5608] total_pgpgin 83288
[   74.659778][ T3311] value changed: 0x00000000ffffa65f -> 0x00000000ffffa660
[   74.664624][ T5608] total_pgpgout 83270
[   74.669253][ T3311] 
[   74.669258][ T3311] Reported by Kernel Concurrency Sanitizer on:
[   74.673745][ T5608] total_pgfault 54701
[   74.679770][ T3311] CPU: 0 UID: 0 PID: 3311 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller-00142-gb711733e89a3 #0 PREEMPT(voluntary) 
[   74.684535][ T5608] total_pgmajfault 45
[   74.689081][ T3311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   74.695003][ T5608] total_inactive_anon 69632
[   74.699339][ T3311] ==================================================================
[   74.723860][ T5667] loop2: detected capacity change from 0 to 8192
[   74.727463][ T5608] total_active_anon 0
[   74.727473][ T5608] total_inactive_file 4096
[   74.727480][ T5608] total_active_file 0
[   74.727487][ T5608] total_unevictable 0
[   74.727495][ T5608] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0
[   74.937778][ T5660] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.690: Allocating blocks 449-513 which overlap fs metadata
[   74.940208][ T5608] ,oom_memcg=
[   74.998806][ T5659] EXT4-fs (loop1): pa ffff888106a98930: logic 48, phys. 177, len 21
[   75.000114][ T5608] /syz0
[   75.003986][ T5659] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, 
[   75.010205][ T5608] ,task_memcg=/syz0,task=syz.0.673,pid=5607,uid=0
[   75.010242][ T5608] Memory cgroup out of memory: Killed process 5607 (syz.0.673) total-vm:93760kB, anon-rss:944kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000
[   75.013681][ T5659] free 0, pa_free 4
[   75.329376][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.