last executing test programs:

2.729092201s ago: executing program 2 (id=2071):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getuid()
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x97a3}, 0x18)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fcntl$lock(r1, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r3, 0x4b45, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0xfffc, 0x2fd, 0x1, 0x101}})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x80, 0x0, 0x0, 0x2d, 0x0, 0x4e93, 0x18445, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xc0000000000000, 0xfffe}, 0x8080, 0xa9, 0x80000000, 0x5, 0x400000a5, 0x0, 0x8, 0x0, 0x4, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_clone(0x41064400, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x22020600)
getsockopt$inet6_buf(r4, 0x29, 0x6, 0x0, &(0x7f00000005c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)

2.381826466s ago: executing program 2 (id=2076):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x8, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_config_ext={0x4, 0xaea}, 0x10005, 0x32, 0xfffffbff, 0x3, 0x1, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f00000001c0)='cpu<-0\t\t\t')

2.239974092s ago: executing program 2 (id=2078):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x414, &(0x7f00000000c0)=ANY=[], 0x1, 0x2c7, &(0x7f0000000980)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
rename(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.217712023s ago: executing program 2 (id=2079):
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[], 0x48)
r0 = socket$kcm(0x29, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000001400)={&(0x7f0000001080)=@l2tp6={0xa, 0x0, 0x97b, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x80, &(0x7f0000001340)=[{&(0x7f0000001300)="f477b985695356433914", 0xa}], 0x1, &(0x7f0000001380)=[{0x78, 0x117, 0x2, "a8a95074007ccb48215002fcd58d3a377b6f198dbed0b1cb242455a0bc9a17c6974002365b03b71530f92c88f4787758ea0b04a544e99914dc0b5b7ef5a47bba5695ee57df9ddaecbc306b908b942e2c20c5603438ab7c42a356676da618174f25cbee06"}], 0x78}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x8, 0xf9, 0x7ffc1ffb}]})
timerfd_create(0x7, 0x0)
clock_gettime(0x0, &(0x7f0000000f40)={<r1=>0x0, <r2=>0x0})
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1}})
sendmsg$NFT_BATCH(r3, &(0x7f0000001040)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001000)={&(0x7f0000002000)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELFLOWTABLE={0x20, 0x18, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWRULE={0x458, 0x6, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x368, 0x4, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x38, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FIB_RESULT={0x8}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}}}, {0x10, 0x1, 0x0, 0x1, @target={{0xb}, @void}}, {0x5c, 0x1, 0x0, 0x1, @tproxy={{0xb}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_TPROXY_REG_PORT={0x8, 0x3, 0x1, 0x0, 0x13}, @NFTA_TPROXY_FAMILY={0x8}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_REG_PORT={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_TPROXY_FAMILY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_TPROXY_REG_ADDR={0x8}]}}}, {0x38, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_OSF_DREG={0x8}, @NFTA_OSF_TTL={0x5, 0x2, 0x7}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_FLAGS={0x8}]}}}, {0x270, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x25c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x19}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_IMMEDIATE_DATA={0xfc, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5f, 0x1, "dbe71c80140ae5a6398f884cc9165468c6911cb816bb304ac846426a55a2cc9e3a236861bfc9f46f678c6970df024205c2753c5c402a1af5d46600c6e3d3d500dd3440c24de10ae71956fa84b97bd511372343bd9d92f3b6e0606a"}, @NFTA_DATA_VALUE={0x35, 0x1, "e9603ee4162c58544843b26693db62b7cf95e2cb64fc8176a8499f062ba4a4aacb143112ff2af165f8cabd7077205b2dfc"}, @NFTA_DATA_VERDICT={0x60, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_IMMEDIATE_DATA={0x12c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x58, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VALUE={0xc5, 0x1, "58d4d727c91c9c032ee2653e26b83b41f7c1ce718d7a3ebba28494499b4d632fcf0ed5e74a33e085a14bffa13419476ffd16bbc472eb7edc012dc7537fc4762d8ceb5d03b6f3599d6e3d3ffbfbf9db0c577e71080ff51a7a25171b70220aee944c9a8515c489346f711afcab370229f406c2f6e84a2ae13911e4c7bfd90db7f9297332332f716312e5de61748b52c289e25373e464d7e7d7a6277d7368e709a71b3cacd9e6d0b6668d5d6036c3376100551bcc60a6d65d0b90c0592099bdcf1e77"}, @NFTA_DATA_VALUE={0x8, 0x1, "1d10e0f3"}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x16}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x94, 0x4, 0x0, 0x1, [{0x90, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x80, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_DYNSET_SET_ID={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_DYNSET_TIMEOUT={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_DYNSET_EXPR={0x44, 0x7, 0x0, 0x1, {{0xb}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8}, @NFTA_LOOKUP_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_LOOKUP_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xe}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xa}]}}}, @NFTA_DYNSET_SREG_KEY={0x8, 0x4, 0x1, 0x0, 0x14}]}}}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELCHAIN={0x28, 0x5, 0xa, 0x3de3e0c2ce8fcb99, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2de54b27}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6ca41114}]}]}, @NFT_MSG_DELSETELEM={0x4d4, 0xe, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_SET_ELEM_LIST_ELEMENTS={0x4c0, 0x3, 0x0, 0x1, [{0x120, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_KEY_END={0xec, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VALUE={0xcf, 0x1, "48fd854f189859c1b0e9c692ee14281ae1b3760e3c89964940d585ed2c663d9f9e1ab157b6e49a035e1d5329c203c841c332b846123663edb05f5ee9b4812fffbc0f0a7ddd652d82c4a43ac02935a406001edab493aedf7c6f1c0d947d4e31c1a919afda43108a883631022492c93ebf2639d66116a256880e969b6ba35e365966d48b2decb1fd09f873fee6d9347fa6a0cefbd1d3f1a1fef2a07cd23f541b551ab71b468f66f8ce8f9bc347cbe418ed6a3ea024676ec96e67e25b1dee236fd9629b857e06bdcc3a7dba8b"}]}]}, {0x39c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @bitwise={{0xc}, @void}}, @NFTA_SET_ELEM_EXPR={0x30, 0x7, 0x0, 0x1, @connlimit={{0xe}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}]}}}, @NFTA_SET_ELEM_KEY_END={0x1b8, 0xa, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x5}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xbf, 0x1, "c527d9c1ad42b452a4017d383caf40b4cd99f8dddf86664438035bf1d0835609a10f6989a18474237edcb0996c45bb9581cfb1c295ff021f4a28764857800b69adbd2ebadca601ee752b3a1fdcc9a92d978e144d31dca648f712c8bf067237836db1925cf9a53c6b933f225c3b43eee40a0f9a6bdc140a3150a00cd98b2da9cb144bfd33b312701015fb6578c7e0e043278f7a383257b913d168e709ce71925a316c5e42b0e26ea3d40be42f1d60c3748e6a317ce09e9bd30695bc"}, @NFTA_DATA_VALUE={0xb8, 0x1, "6c8f5df29832636ec3b7ebcae63c411378b237444b2304c5950d72c3487ff8275acc2bd28af2283d8e7cdc09d1db8c8459ae48f103616c14492267c3596ecc239efdcd9bd0b75cbc14b65b0e771aa90bddbf33835e2b7be59215a5531d62b6c20a228e261f5beb31646999906e9d086057f4048dffa2c74c41e078da2f7773db940515b0455f6009fea9a648139016e78a225b3da04b3caf9e61df26dde784e22a3cf4c9a1f9b4dc7560fa80b08be65eb1c11de4"}, @NFTA_DATA_VERDICT={0x4}]}, @NFTA_SET_ELEM_USERDATA={0x69, 0x6, 0x1, 0x0, "f3ebaba59df4ff4233f20134f800fcfa3dab856ff6ef30e51e67aedc14fb801c3724f736e610bc025ee829aea0c1d357113f7e32eba0f0fd1d879f6398f6d9fbea4881f7f1f5b82c25f400e801bb295c987053bebf6d77b52d40f0cc73eb27a6b480d831ab"}, @NFTA_SET_ELEM_DATA={0x10c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x1}]}, @NFTA_DATA_VALUE={0xa1, 0x1, "585cdd96d3750651b970ecbfe16d5cd9629b660c44f94c09bbf8b197a541d8c36ccf553ec14cd09ef1f3ef3d2cd79e8e6692b51dda081b7b30e631b73867307dd7ba2cf6c73a63a25953561b3fbf75a6d7f6fe94f7e446f0f60af5ce133c56c33f5baff126bbd9a13e9afb9a310e0daec894466a2949b2f9dd6dee48afd0c375956c975f331dccfd4eaa11720efd2b410b6baa723361b510f47ad297fd"}, @NFTA_DATA_VALUE={0x18, 0x1, "34feefdc6e098068b925e53e950d84185bee2459"}]}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @notrack={{0xc}, @void}}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x99c}, 0x1, 0x0, 0x0, 0x8000}, 0x24006890)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000e80)="8ed3164adccbbae2e88c7d49fd2d9f3677f3349fe621358aa9cf1fe73f7b177db836d66571837b85f13d4449402e8917c1a691310911d4050fecbcbe733549e88fcc6ce52e5b109122b642004c9dfa508c5ba18cf7ec631a6f0224f252375508a911b0b41517792d7d916062926f91d5035d7f6bbd2fee32eb7bdd29e8ffded4b578a610d8240769dda0a1c461b5", 0x8e, 0x5, &(0x7f0000000f80)={r1, r2+60000000})
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)

2.108482108s ago: executing program 2 (id=2082):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6000d16)
lsetxattr$security_capability(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000005c0)='sched_switch\x00', r3}, 0x10)
r4 = semget$private(0x0, 0x6, 0x0)
semtimedop(r4, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(r4, &(0x7f00000000c0)=[{0x2}], 0x1)

2.068716869s ago: executing program 2 (id=2083):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001880)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001700)={r1, &(0x7f0000000580)="0e7375fdf350daeb7a243ba81d1272d61e6ae6568147c308c44e2e2d6789407e9f1fce2f651748f9fd66cd25bddb445b5be905e26b9a2d7287cc051b8baf70387548638136209734b21a161033d95da037c855115a40c0db31a55e7591bc63d32853195c92077d87864829b5f25cc820", &(0x7f0000000700)=""/4096, 0x4}, 0x20)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000200)={<r6=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000061121800000000020000000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r5, 0x84, 0x7a, &(0x7f0000000340)={r6, @in={{0x2, 0x4e21, @rand_addr=0x64010102}}}, &(0x7f0000000040)=0x84)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x97)

1.317987243s ago: executing program 3 (id=2096):
r0 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x8, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
r1 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000180)=[r1, r0], 0x2)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000280)='./file1\x00', 0x12, &(0x7f0000000240)=ANY=[], 0x1, 0x1237, &(0x7f00000006c0)="$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")
truncate(&(0x7f0000000080)='./file2\x00', 0x2328)
ioctl$FIOCLEX(r0, 0x5451)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x20)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000100)={0x3920e, r2, 0x3, 0x1, 0x3, 0x6})

1.076035383s ago: executing program 3 (id=2102):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0, 0x0, 0x2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3ac3209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b135ab6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385beef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6c30ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88372091cd397b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca00000000000000000000007925d0f1256330b9e2aa9a18cea8e009116f63c6c7d8f7f95bf0f6731e5eb1dcdc534f357b9f08e7a9a3aebeca145d695053b5bef004ca24e6c57ed10f01488d38b8b0b68d93e3cf630837915d518fde2115e66615786fe7b9216de958119cf762cac77ac829a02f48e72c0d2841880b2c"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@barrier_val={'barrier', 0x3d, 0xde2}}]}, 0xfd, 0x269, &(0x7f0000000a00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
rename(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mknod$loop(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, 0x1)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x3, 0x0, &(0x7f0000000140))
link(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r3, &(0x7f0000001f80)=""/4097, 0x1001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r4 = syz_io_uring_setup(0x304, &(0x7f0000000300)={0x0, 0x8006585, 0x400, 0x2, 0x200118}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000580)=0x7ffffffc, 0x0, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd=r7, 0x0, 0x0, 0x0, 0xa, 0x1, {0x0, 0x0, r2}})
io_uring_enter(r4, 0x8aa, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r4, 0x18, &(0x7f00000006c0)={0xfffffffffffffff7, r8, 0x2, {0x27fffffffffffff, 0x4}, 0x54}, 0x1)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x18)
open_tree(0xffffffffffffff9c, &(0x7f0000001740)='./file1\x00', 0x800000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

1.031426145s ago: executing program 4 (id=2104):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x18)
rt_sigqueueinfo(r0, 0x21, &(0x7f0000000000)={0xfe})

942.801109ms ago: executing program 4 (id=2105):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r1, &(0x7f00000000c0), 0x0}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r3, 0x0, 0xffff}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000005c0)=@bpf_lsm={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000b00)={0x14, 0x0, 0x200, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x814}, 0x4004)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
kexec_load(0x3e00, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

941.346439ms ago: executing program 0 (id=2106):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
syz_emit_ethernet(0x15, &(0x7f0000000280)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, @val={@void, {0x8100, 0x0, 0x1, 0x1}}, {@x25={0x805, {0x2, 0x9}}}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
getpeername$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000340)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000380)={'syztnl2\x00', &(0x7f0000000a80)={'ip6gre0\x00', r4, 0x29, 0x61, 0x9e, 0x1ff, 0x60, @private2, @mcast1, 0x7, 0x7800, 0x2, 0x1}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x60}, 0x94)
r5 = memfd_create(&(0x7f0000000e80)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xb1p\xce\xb3\x00\x1dz\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xb8\t\xd6\xd5>N&\x00\x00\x00\x00\x00\x00\x00\a\xf5\xe4\x9b5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1b\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\\\xb0:\xaf\xc5~\xbcJ e\r\x00\x00\x00\x002\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ4\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x852P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1exQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd9#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1.E\b1\xcb\xa2\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\v\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xfb\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=+zd\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!\x00\x02\x00\x00\x00\x00\x00\x00\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F\x00\x00\x00\x00\x00\x00\x00\x00\x00.R\x96\xdf\xf9\xac\xad\xe8\xc6,\xc4\x9a\r\x88Ub\x03\xa3\xcaH\xd5\x87[\t\xa8\xd9\xa6\xd9\xa32\xe0z\x15\x1eZ\x1en\xf2@\xa0', 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)="0000d337", 0x4)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000580)=@mangle={'mangle\x00', 0x44, 0x6, 0x4a0, 0x138, 0x0, 0x368, 0x1d0, 0x138, 0x408, 0x408, 0x408, 0x408, 0x408, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x11000000, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x0, 0x4}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0xff000000, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x11, 0x0, 0x28}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x10, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0xffffff00, 'vlan1\x00', 'nr0\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @multicast2, 0xff, 0xffffff00, 'ip6gre0\x00', 'virt_wifi0\x00', {0xff}, {}, 0x2e, 0x0, 0x1}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00', {0xe6d959333babc205}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x500)
syz_open_dev$tty20(0xc, 0x4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000b00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010074797a300000000008000240000000032c000000030a01030000ef7d9ae6ff00000000020000000900010073797a3000000000090003000000110001", @ANYRESHEX=r3], 0x7c}}, 0x4004)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a0302000000000000000002000000090002007379"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a01080000000000000000020000010900020073797a30000000000900010073797a30000000002c0003800800024000000000080001400000000018000380140001007767310000000000000000000000000014000000110001"], 0x80}}, 0x4000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
chmod(&(0x7f0000000440)='./file0/file0\x00', 0x10a)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000003c0), 0x7a1c40, 0x0)

895.899731ms ago: executing program 3 (id=2107):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r2, 0x4b4a, 0x0)

890.816551ms ago: executing program 4 (id=2108):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

826.492734ms ago: executing program 1 (id=2109):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYRES64, @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

783.672046ms ago: executing program 3 (id=2110):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e23, 0xbd, @remote, 0x8}}}, 0xffffffffffffff11)
close(r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
socket(0x10, 0x2, 0x0)
r4 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x39c4, 0x2, 0x4, 0xfffffffe}, &(0x7f0000000580)=<r5=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r4, 0x66a8, 0x4000, 0xf, 0x0, 0x18)

766.121916ms ago: executing program 4 (id=2111):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="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"], 0x1, 0x11f4, &(0x7f0000001280)="$eJzs3M+LG2UYB/DHbWvr1v2h1moL0he96GXo7sGLgiyyBWlAaRuhFYSpO9GQMQmZsBARV09e/TvEozdBvOllL/4N3vbisQdxxMTapsRDqXTa8Plc8pD3/cLzkjDwDvPO0ZvffNrrVFknH8fKE2/FyjAi3UqRYiVu+zJee+PnX166ev3G5Z1Wa/dKSpd2rm29nlJav/DjB59/9/JP49Pvf7/+w8k43Pzw6Pft3w7PHp47+vPaJ90qdavUH4xTnm4OBuP8ZlmkvW7Vy1J6ryzyqkjdflWM5sY75WA4nKS8v7e2OhwVVZXy/iT1ikkaD9J4NEn5x3m3n7IsS2urwYNof3urruuIuj4RT0Zd1/VTsRqn4+lYi/XYiM14Jp6N5+JMPB9n44V4Mc5NZzXdNwAAAAAAAAAAAAAAAAAAACyXBzr/f6Hh5gEAAAAAAAAAAAAAAAAAAGBJXL1+4/JOq7V7JaVTEeXX++399uxzNr7TiW6UUcTF2Ig/Ynr6f2ZWX3qntXsxTW3GV+XBP/mD/fax+fzW9HUCC/Nbs3yaz5+M1bvz27ERZxbntxfmT8Wrr9yVz2Ijfv0oBlHGXvydvZP/Yiult99t3ZM/P50HAAAAyyBL/1q4f8+y/xqf5e/j/sA9++vjcf54s2snopp81svLshg1XtzuaPbNQUQ8Io0tcXHi0Wjj/y2Ozf2Rmu/nMS2auybx8Nz50ZvuBAAAAAAAAAAAgPvxMB4nbHqNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/MUOHAsAAAAACPO3TqNjAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4KgAA//86R81g")
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f4)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)

746.666717ms ago: executing program 0 (id=2112):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000400)='kfree\x00', r0, 0x0, 0x4}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x1c, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
sendmsg$NL80211_CMD_DEL_PMK(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, r3, 0x200, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x4000004)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='mnt/encrypted_dir\x00', 0x200)
r4 = socket(0x10, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000000480)=@gcm_256={{0x303}, "000200", "e123c5876ff425b1ebe250a8486be34705f4f827ae60ecb65e528248d5552bff", "7e25837b", "15d0db2c77179e1a"}, 0x38)
write$binfmt_script(r5, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd87}, &(0x7f0000000240)=0x40)
writev(r5, &(0x7f0000000100)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
close_range(r4, r5, 0x0)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x24, 0xd, 0x6, 0x1, 0x0, 0x0, {0x7, 0x0, 0x9}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4018010}, 0x8c0)

702.257189ms ago: executing program 1 (id=2113):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x100)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0x1}}, './file0\x00'})
shutdown(r3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x7)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0xfffffffc, 0x5, 0x0, 'queue0\x00', 0x10000})
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r6}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000380))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r6, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x1, 0x9, &(0x7f0000000400)=[0x0], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x7f, &(0x7f0000000540)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f0000000180), &(0x7f0000000100), 0x8, 0x66, 0x8, 0x8, &(0x7f0000000680)}}, 0x10)
sendmsg$nl_xfrm(r3, &(0x7f0000000a00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000840)=@newsa={0x178, 0x10, 0x2, 0x70bd29, 0x25dfdbff, {{@in=@empty, @in=@loopback, 0x4e20, 0x0, 0x4e20, 0x6, 0x2, 0x0, 0x20, 0x87, r7, 0xffffffffffffffff}, {@in6=@mcast2, 0x4d6, 0xff}, @in=@multicast2, {0x7, 0x1, 0x1000000, 0x4, 0x3ff, 0x4, 0x3, 0x23}, {0xd669, 0x400, 0xfffffffffffffffc, 0xff}, {0x2, 0x8001, 0x3}, 0x70bd26, 0x3501, 0x2, 0x4, 0x7, 0x3}, [@extra_flags={0x8, 0x18, 0x8}, @replay_thresh={0x8, 0xb, 0x6}, @replay_esn_val={0x24, 0x17, {0x2, 0x70bd25, 0x70bd25, 0x70bd2a, 0x70bd2d, 0x4, [0x1, 0x4]}}, @algo_crypt={0x53, 0x2, {{'cbc-camellia-aesni\x00'}, 0x58, "b7e4f0ae11123f1dc4fb0b"}}]}, 0x178}, 0x1, 0x0, 0x0, 0xc4}, 0x840)
sendmsg$key(r4, &(0x7f00000007c0)={0x300, 0x0, &(0x7f0000000080)={&(0x7f0000000b00)=ANY=[@ANYBLOB="020a06000300000028bd7008fcd1df25010018"], 0x18}}, 0x40)

656.110881ms ago: executing program 3 (id=2114):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

622.650763ms ago: executing program 1 (id=2115):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x15, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0xfffffffffffffe57, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000778dcb16ae4ab789880367373e1dd8de4dcc98cc67149f13c6aad99cdeef5df3efbcc33082a213e675d889cded8c814dd21cf0919fea35339acc9f7a3fb0a1dd0166a7b1a9019c9cb4eb7f73f2d0f34443e42b242f4e454504d594fe85941821a4a82e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r2, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe1b, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00'}, 0x18)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
io_uring_setup(0x22625, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xa)
r6 = dup(r5)
r7 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r7, 0x200004)
sendfile(r6, r7, 0x0, 0x80001d00c0d1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000001040)={0x20400, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, &(0x7f0000001000)=[0x0], 0x1}, 0x58)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))

578.659195ms ago: executing program 0 (id=2116):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x15, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0xfffffffffffffe57, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x8}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000778dcb16ae4ab789880367373e1dd8de4dcc98cc67149f13c6aad99cdeef5df3efbcc33082a213e675d889cded8c814dd21cf0919fea35339acc9f7a3fb0a1dd0166a7b1a9019c9cb4eb7f73f2d0f34443e42b242f4e454504d594fe85941821a4a82e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r2, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe1b, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00'}, 0x18)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
io_uring_setup(0x22625, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xa)
r6 = dup(r5)
r7 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r7, 0x200004)
sendfile(r6, r7, 0x0, 0x80001d00c0d1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000001040)={0x20400, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, &(0x7f0000001000)=[0x0], 0x1}, 0x58)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))

575.793545ms ago: executing program 3 (id=2117):
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xf, &(0x7f0000000580)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsopen(0x0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r1)
r3 = open(&(0x7f0000000300)='./file0\x00', 0x400, 0x0)
fcntl$setlease(r3, 0x400, 0x1)
r4 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
write$binfmt_script(r4, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

462.52545ms ago: executing program 1 (id=2118):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0, 0x0, 0x2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@barrier_val={'barrier', 0x3d, 0xde2}}]}, 0xfd, 0x269, &(0x7f0000000a00)="$eJzs3U9oHFUcB/Df7B/jJotEvQjiHxARDYR4E7zEi0JAQhARVIiIeJJEiAnesp68eNCzSkDwEkpvTXssvYReWgo9pW0O6aXQhh4aemgPW3Znt2ySDW33b9n5fGCYmbz35r0J832zLMxsAJk1GRGzEZGPiKmIKEZE0lrh7XSZbOxulLYXI6rVL+4m9XrpfqrZbiIiKhHxUUShWba29c3e/Z3P3vtjtfju/1tflwZ1fq3293Y/P/h3/vczcx+uXb56ez6J2Sg3ylrPo5eSNn8rJBGv9KOz50RSGPYIeBoLv56+Vsv9qxHxTj3/xcg1IvvnygsXivHBPye1/evOldcHOVag96rVYu0eWKkCmZOLiHIkuemISLdzuenp9DP89fx47qfllV+mflxeXfph2DMV0CvlSHY/PTd2duJI/m/l0/wDo6scsfvlwuaN2vZBftijAfqm9dv2N9JVLf9T362/H/IPmSP/kF3yD9kl/zACOsyu/EN2dZP/F/s0JmAw3P9hhBWbG5W2xfIP2SX/MKL+a/fU6WHyD9nVmn8AIFuqY8N+AhkYlmHPPwAAAAAAAAAAAAAAAAAAwHEbpe3F5jKoPi/+HbH/SUQU2vWfr/8ecfNt4+P3klq1x5K0WVe+favLA3TpVM+evi511Oqlm73qvzOX3uzPcX87vHviP2d9KaJSqzxTKBy//pLG9de5l59QXvy+yw6e0dG3An781WD7P+rh5nD7n9uJOF+bf2bazT+5eK2+bj//lFtfsdyhnx90eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG5lEAAAD//4oibec=")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
rename(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mknod$loop(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, 0x1)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x3, 0x0, &(0x7f0000000140))
link(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r3, &(0x7f0000001f80)=""/4097, 0x1001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r4 = syz_io_uring_setup(0x304, &(0x7f0000000300)={0x0, 0x8006585, 0x400, 0x2, 0x200118}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000580)=0x7ffffffc, 0x0, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd=r7, 0x0, 0x0, 0x0, 0xa, 0x1, {0x0, 0x0, r2}})
io_uring_enter(r4, 0x8aa, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r4, 0x18, &(0x7f00000006c0)={0xfffffffffffffff7, r8, 0x2, {0x27fffffffffffff, 0x4}, 0x54}, 0x1)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x18)
open_tree(0xffffffffffffff9c, &(0x7f0000001740)='./file1\x00', 0x800000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f0000000180)})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

455.49724ms ago: executing program 0 (id=2119):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="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"], 0x1, 0x11f4, &(0x7f0000001280)="$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")
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f4)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)

291.831238ms ago: executing program 4 (id=2120):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r2, 0x4b4a, 0x0)

252.120019ms ago: executing program 1 (id=2121):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x1, @dev={0xfe, 0x80, '\x00', 0x33}, 0x4000000}, 0x1c)

209.984331ms ago: executing program 1 (id=2122):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getuid()
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x97a3}, 0x18)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fcntl$lock(r1, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r3, 0x4b45, 0x1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0xfffc, 0x2fd, 0x1, 0x101}})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x80, 0x0, 0x0, 0x2d, 0x0, 0x4e93, 0x18445, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0xc0000000000000, 0xfffe}, 0x8080, 0xa9, 0x80000000, 0x5, 0x400000a5, 0x0, 0x8, 0x0, 0x4, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_clone(0x41064400, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x22020600)
getsockopt$inet6_buf(r4, 0x29, 0x6, 0x0, &(0x7f00000005c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)

209.410311ms ago: executing program 4 (id=2123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYRESDEC, @ANYRESOCT, @ANYBLOB, @ANYRES32, @ANYBLOB="5c1b3683036447d9723f9cea24a738663d20fb0c8b3c0da92963fc0d35433c84ad2764922abe4dc086b03d7d492578639418349ea21a", @ANYRESDEC=r0, @ANYBLOB, @ANYRES64, @ANYBLOB="f4a43ac2fbfbc4ee1f3a1e10a7a47936b1f55e2ead2bf0aeb3b00e2b762688b34c0092b0d50fb3926e2b00928a5869f52c09d6f171b29ad127013ae674c2a4b6f776c4853d730758c9", @ANYRESHEX], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x400, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x378, 0x3a8, 0x3a8, 0x378, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x200, 0x238, 0x700, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve1\x00', {0xf1, 0x0, 0x33, 0x0, 0x0, 0x1, 0x7fffffff}}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x2, 0x1}, {0xffffffffffffffff, 0x1, 0x2}, {0x1, 0x2, 0x2}, 0x4f6, 0x5}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x460)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xf, &(0x7f0000000580)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsopen(0x0, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r2)
r4 = open(&(0x7f0000000300)='./file0\x00', 0x400, 0x0)
fcntl$setlease(r4, 0x400, 0x1)
r5 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
write$binfmt_script(r5, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0)
unshare(0x60600)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

117.305115ms ago: executing program 0 (id=2124):
r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6bf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
write$selinux_access(r0, &(0x7f0000001a80)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73"], 0x56)

0s ago: executing program 0 (id=2125):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYBLOB="00e789da34e04a1ffb124b2c2fb684c70b90bbb45efd97899a16f2df4fa2e8f06ac2c5352509e3c51d882eb3ec0dd3b1c96e980163890d2d0d1b8d3d62f6d77b0209e166e2ca4c35483d49316daf522556a16cab12d75a852bc680da7ea837480feb2060a1e20a59b7745235030000004ed0351cb5b416ba1c57217be5a338392f831617ee8c35bb61f0a9eeed3b1226b18c4b455ab222d7ae1b5258d5643d70000000000000000000ae468a387d9e63008000000000000063a454d1ab8760076a893752105f030c49caf2fdfe6bc9743a68593b576e2f2f6ab69e1b974ac90855ac250f8f73e16bc593730b88d7a3346b945e276875915040ce4901262cd8ce8191ee84e3ce5526a0a43b707cc711a3311f840cad641a013c6dd783aa895227b3d50a86e15a57e26666aaa296b7ddc4c8f421cf9d76d344bf6522f5d1138659d3de84ce13b085a2ed9d66c93767378423521cc4ea440e0ac3b953e1ca1675a716a97a5c3106aba648f119eeab4747b9b53000475e0a34514ccf397ea6f170e018122a98f135beac48d2ed195e20fdd226c7f5a20000ad1fcfbee59924e161280a8b78fe34b2fa3efa7c1d4268bf090000ecb4ece3234c232659fee3ff9e6d21e008a570bb490a65b84ea8b6d6507355cb1112fae6e3456bf8da53e1df20458e59456822dbb8dbd7ce0f928d5fbd6414fe8ab5277f3fd5ce6be044993f93e697a69484cc0e65ec742443c84e21a440998c8d69c12c2db7aee2872c6e0671d639e8f6bece219dcd0f69b9867dfc3187c882c035809c81832d7416f90c734be30c2faf0c22bfc8d95dfc7b9bac96b838c98ae5a75b9dc9e967ef5edf311bbebd7ca803cea8f5b9ec5b3edd6c44d633b71bde97a3c10a468432ff3d4e63ce3ecfa640d44b70b68744d26e72389e6c61767725d2c692443bc949c28b1a374e541bd352ca2f3bf64d883862dc24d8e27d86b6e38bc269f110c3d563f8e4ec9a98016b6b58157deeefa8fa022514bdc75f794094700cb8fa2b61310cbf9058bce5f2399055929e0fc732e0d5db926fe1b09a2993ff038d8099c229bda0801f8b81719d73b4abac97f704a0942051bae38b00b69d7fa69d738f99f73b19082ec0c99442d97ddbf68a4822aa2a2673478f81f14f67beee619b9d9882f7eabfb5000000000000000000003ff8795b5ec2de11479e781396117c84449647684239c9b9475b389a6a76d36c31f39539d928d2c58f188b4bf713d0915df4cc7de48a930935dbb01c9422d604467d209fd1421c7fc503cabde4bb193ff3654377c6e4fb72dcfc835f760bae7447068c2e43433e3d77c6805b559a04f3ebb741a9bbf57274b1da7800000000000000000000000000000000000000001c4f225672f3465b2638e921d80d58dca4ee4592d8cc0c06b2e390b7b1c713a46bc8ece9be25f055a59032576bc00a844c32b46040a607eaeb886ec0cb8e90c5a4075caa8a358ab81e78ad794a20f772b73466a43cd696401521793e54b1c4aa58d506b661f393e7233337473f36c2dbb15ae673afe82ebe45cc6f776162e43b74d9b9ca6f68d6bc8261600b27431e0f6f4f1e0947f69d2d812ebc9d2a8869b14a84dbdcdc5055b97a241e2f707740bb966b6c58408aceb9f6a943f614d2a6093c60c0dfb511b02f191ef6fa6e5a1a86687a44ec6098439a2ef55a4ba07e2b0f62ae86e1458f63f6b8b2d2b9990495f17b6d1052b19472a97d41204a8be48e380be2e6885c7de0807f2c154ad4f25b16027bc4aeb85dc798e7eef25631bfd79c8e0aff725dcd4b91c61bf8d72f74e4dbae"], 0x1, 0x11f4, &(0x7f0000001280)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(0x0, 0x64842, 0x389b0d52417bb201)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x18)
linkat(r5, &(0x7f0000000240)='./bus\x00', 0xffffffffffffffff, 0x0, 0x1000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000580)=@mangle={'mangle\x00', 0x44, 0x6, 0x4a0, 0x138, 0x0, 0x368, 0x1d0, 0x138, 0x408, 0x408, 0x408, 0x408, 0x408, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x11000000, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00', 0x0, {0x0, 0x4}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0xff000000, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x11, 0x0, 0x28}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x10, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0xffffff00, 'vlan1\x00', 'nr0\x00', {}, {0xff}}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @multicast2, 0xff, 0xffffff00, 'ip6gre0\x00', 'virt_wifi0\x00', {0xff}, {}, 0x2e, 0x0, 0x1}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00', {0xe6d959333babc205}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x500)

kernel console output (not intermixed with test programs):

al swap = 124996kB
[  110.838889][ T7325] 2097051 pages RAM
[  110.844951][ T7325] 0 pages HighMem/MovableOnly
[  110.850346][ T7325] 81087 pages reserved
[  110.855768][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.021078][ T7343] loop0: detected capacity change from 0 to 128
[  111.044773][ T7343] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  111.089341][ T7343] ext4 filesystem being mounted at /222/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.111173][ T7349] loop2: detected capacity change from 0 to 8192
[  111.142221][ T3316] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  111.190359][ T7354] lo speed is unknown, defaulting to 1000
[  111.199995][ T7354] lo speed is unknown, defaulting to 1000
[  111.315538][ T7365] loop0: detected capacity change from 0 to 1024
[  111.326768][ T7365] EXT4-fs: Ignoring removed orlov option
[  111.346153][ T7365] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  111.370205][ T7365] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.395803][ T7365] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  111.420247][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.469052][ T7372] loop0: detected capacity change from 0 to 128
[  111.611657][ T7381] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.622686][ T7381] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.632904][ T7381] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.644314][ T7381] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.654461][ T7381] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.665979][ T7380] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.714274][   T29] kauditd_printk_skb: 678 callbacks suppressed
[  111.714294][   T29] audit: type=1326 audit(1764102852.666:13064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.756051][   T29] audit: type=1326 audit(1764102852.666:13065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.785352][   T29] audit: type=1326 audit(1764102852.666:13066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.815600][   T29] audit: type=1326 audit(1764102852.666:13067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.845554][   T29] audit: type=1326 audit(1764102852.666:13068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.876049][   T29] audit: type=1326 audit(1764102852.666:13069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.906819][   T29] audit: type=1326 audit(1764102852.666:13070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.936341][   T29] audit: type=1326 audit(1764102852.666:13071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.966099][   T29] audit: type=1326 audit(1764102852.666:13072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  111.994099][   T29] audit: type=1326 audit(1764102852.666:13073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7382 comm="syz.0.1294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  112.021404][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  112.038080][ T7385] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  112.050410][ T7392] loop3: detected capacity change from 0 to 8192
[  112.060165][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  112.136445][ T7397] loop1: detected capacity change from 0 to 512
[  112.164057][ T7397] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.182254][ T7397] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  112.209685][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.255502][ T7404] loop1: detected capacity change from 0 to 1024
[  112.264215][ T7404] EXT4-fs: Ignoring removed orlov option
[  112.274091][ T7404] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.299563][ T7406] __nla_validate_parse: 10 callbacks suppressed
[  112.299647][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1302'.
[  112.300225][ T7404] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.309225][ T7406] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1302'.
[  112.324881][ T7404] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  112.342058][ T7406] netlink: 'syz.3.1302': attribute type 1 has an invalid length.
[  112.363224][ T7406] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1302'.
[  112.375728][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.440848][ T7414] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1305'.
[  112.508452][ T7417] lo speed is unknown, defaulting to 1000
[  112.514860][ T7417] lo speed is unknown, defaulting to 1000
[  112.770005][ T7429] loop3: detected capacity change from 0 to 8192
[  113.070353][ T7436] loop3: detected capacity change from 0 to 128
[  113.104088][ T7438] netlink: 'syz.3.1314': attribute type 8 has an invalid length.
[  113.156469][ T7442] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1316'.
[  113.323623][ T7446] siw: device registration error -23
[  113.423586][ T7449] selinux_netlink_send: 8 callbacks suppressed
[  113.423605][ T7449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=7449 comm=syz.0.1319
[  113.448010][ T7449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=7449 comm=syz.0.1319
[  113.462895][ T7449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=7449 comm=syz.0.1319
[  113.477723][ T7449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=7449 comm=syz.0.1319
[  113.498416][ T7446] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  113.509190][ T7446] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  113.542974][ T7455] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7455 comm=syz.0.1321
[  113.560154][ T7455] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1321'.
[  113.681811][ T7472] loop0: detected capacity change from 0 to 1024
[  113.695385][ T7471] loop4: detected capacity change from 0 to 128
[  113.700888][ T7472] EXT4-fs: Ignoring removed orlov option
[  113.711515][ T7471] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.726613][ T7471] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.739636][ T7472] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  113.739898][ T7476] loop1: detected capacity change from 0 to 128
[  113.752782][ T7472] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.771344][ T7476] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.778900][ T7472] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  113.807421][ T7476] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.845494][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  113.856576][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.895363][ T7484] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7484 comm=syz.0.1332
[  113.916947][ T7484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1332'.
[  113.989467][ T3312] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  114.047505][ T7492] netlink: 'syz.1.1336': attribute type 8 has an invalid length.
[  114.059757][ T7490] loop0: detected capacity change from 0 to 128
[  114.098649][ T7490] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  114.123789][ T7490] ext4 filesystem being mounted at /239/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.274773][ T7511] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  114.283999][ T7511] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  114.349898][ T7513] loop1: detected capacity change from 0 to 128
[  114.367489][ T7513] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.569762][ T7521] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7521 comm=syz.1.1344
[  114.587475][ T7521] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1344'.
[  114.694735][ T7525] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=7525 comm=syz.1.1347
[  114.703460][   T10] net_ratelimit: 3 callbacks suppressed
[  114.703497][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.708756][ T7525] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=7525 comm=syz.1.1347
[  114.740693][ T7525] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=7525 comm=syz.1.1347
[  114.929830][ T7541] loop2: detected capacity change from 0 to 8192
[  114.977379][ T7547] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1356'.
[  115.110646][ T7552] loop4: detected capacity change from 0 to 128
[  115.173534][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  115.332349][ T7552] ext4 filesystem being mounted at /262/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.643801][ T7559] loop2: detected capacity change from 0 to 128
[  115.669313][ T7559] ext4 filesystem being mounted at /274/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.907547][ T3436] Bluetooth: hci0: Frame reassembly failed (-84)
[  115.917658][ T7572] loop3: detected capacity change from 0 to 1024
[  115.936746][ T7572] EXT4-fs: Ignoring removed orlov option
[  115.946506][ T7576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1367'.
[  115.992117][ T7576] netlink: 'syz.0.1367': attribute type 1 has an invalid length.
[  116.053844][ T3401] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  116.091950][ T7594] siw: device registration error -23
[  116.204186][ T7603] loop3: detected capacity change from 0 to 128
[  116.213521][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  116.247265][ T7594] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  116.257321][ T7594] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  116.416063][ T7617] loop3: detected capacity change from 0 to 1024
[  116.430705][ T7617] EXT4-fs: Ignoring removed orlov option
[  116.531535][ T7625] netlink: 'syz.3.1387': attribute type 8 has an invalid length.
[  116.657200][ T7631] loop3: detected capacity change from 0 to 512
[  116.691484][ T7631] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  116.796668][ T7635] loop3: detected capacity change from 0 to 512
[  116.820950][ T7635] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  117.012670][   T85] Bluetooth: hci1: Frame reassembly failed (-84)
[  117.033557][   T29] kauditd_printk_skb: 612 callbacks suppressed
[  117.033643][   T29] audit: type=1326 audit(1764102857.976:13686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.098812][   T29] audit: type=1326 audit(1764102857.986:13687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.128036][   T29] audit: type=1326 audit(1764102857.986:13688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.160525][   T29] audit: type=1326 audit(1764102857.986:13689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.194501][   T29] audit: type=1326 audit(1764102857.986:13690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.222079][   T29] audit: type=1326 audit(1764102857.986:13691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.251996][   T29] audit: type=1326 audit(1764102857.986:13692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.282412][   T29] audit: type=1326 audit(1764102857.986:13693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.317077][   T29] audit: type=1326 audit(1764102857.986:13694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.349420][   T29] audit: type=1326 audit(1764102857.986:13695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7644 comm="syz.0.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  117.379426][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  117.439378][ T7655] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  117.462121][ T7662] loop1: detected capacity change from 0 to 512
[  117.477648][ T7660] loop2: detected capacity change from 0 to 8192
[  117.511388][ T7662] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  117.547797][ T7666] __nla_validate_parse: 5 callbacks suppressed
[  117.547812][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1402'.
[  117.566443][ T7666] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1402'.
[  117.611305][ T7666] netlink: 'syz.0.1402': attribute type 1 has an invalid length.
[  117.621173][ T7666] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1402'.
[  117.779294][ T7671] loop0: detected capacity change from 0 to 8192
[  117.920468][ T7688] netlink: 'syz.1.1411': attribute type 8 has an invalid length.
[  117.955225][ T7690] loop1: detected capacity change from 0 to 1024
[  117.962644][ T7690] EXT4-fs: Ignoring removed orlov option
[  117.973496][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  117.976319][ T7643] Bluetooth: hci0: command 0x1003 tx timeout
[  117.992732][ T7690] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  118.033951][ T7690] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  118.132042][ T7696] loop1: detected capacity change from 0 to 128
[  118.149409][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1415'.
[  118.275454][ T7702] loop1: detected capacity change from 0 to 8192
[  118.334678][ T7702]  loop1: p2 p4
[  118.354315][ T7702] loop1: p2 start 4293394690 is beyond EOD, truncated
[  118.362279][ T7702] loop1: p4 size 50331648 extends beyond EOD, truncated
[  118.453749][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.655165][ T7711] lo speed is unknown, defaulting to 1000
[  118.662940][ T7711] lo speed is unknown, defaulting to 1000
[  119.013414][   T44] Bluetooth: hci1: command 0x1003 tx timeout
[  119.013469][ T3516] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  119.095227][ T3401] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.134018][ T7725] loop0: detected capacity change from 0 to 128
[  119.149846][ T7727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1426'.
[  119.151440][ T7725] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.160662][ T7727] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1426'.
[  119.192211][ T7727] netlink: 'syz.1.1426': attribute type 1 has an invalid length.
[  119.200339][ T7727] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1426'.
[  119.301056][ T7736] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.313712][ T7736] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.323933][ T7736] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.335599][ T7738] loop1: detected capacity change from 0 to 1024
[  119.348804][ T7738] EXT4-fs: Ignoring removed orlov option
[  119.455144][ T7749] loop1: detected capacity change from 0 to 128
[  119.469468][ T7749] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.568082][ T7751] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  119.578465][ T7751] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  119.640391][ T7765] loop0: detected capacity change from 0 to 128
[  119.719404][ T7760] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  119.745022][ T7770] loop1: detected capacity change from 0 to 512
[  119.752375][ T7772] selinux_netlink_send: 20 callbacks suppressed
[  119.752487][ T7772] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7772 comm=syz.0.1441
[  119.786050][ T7772] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1441'.
[  119.810121][ T7778] loop4: detected capacity change from 0 to 1024
[  119.828957][ T7778] EXT4-fs: Ignoring removed orlov option
[  119.833974][ T7770] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  119.981614][ T7795] loop1: detected capacity change from 0 to 128
[  120.005418][ T7795] ext4 filesystem being mounted at /329/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.148595][ T7805] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  120.309027][ T7813] lo speed is unknown, defaulting to 1000
[  120.316992][ T7813] lo speed is unknown, defaulting to 1000
[  120.543580][ T3376] net_ratelimit: 4 callbacks suppressed
[  120.543597][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.566385][ T7820] loop1: detected capacity change from 0 to 128
[  120.637918][ T7822] loop1: detected capacity change from 0 to 1024
[  120.646137][ T7822] EXT4-fs: Ignoring removed orlov option
[  120.739423][ T7825] loop1: detected capacity change from 0 to 1024
[  120.749721][ T7825] EXT4-fs: Ignoring removed orlov option
[  120.784507][ T7825] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  120.793322][ T7827] loop3: detected capacity change from 0 to 128
[  120.812825][ T7827] ext4 filesystem being mounted at /299/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.837107][ T7825] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  120.917156][ T7836] loop0: detected capacity change from 0 to 128
[  120.929803][ T7836] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.990583][ T7845] loop3: detected capacity change from 0 to 512
[  121.019626][ T7845] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  121.025736][ T7849] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7849 comm=syz.4.1469
[  121.047102][ T7849] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1469'.
[  121.122873][ T7855] netlink: 'syz.3.1472': attribute type 8 has an invalid length.
[  121.163574][ T7851] loop4: detected capacity change from 0 to 8192
[  121.214869][ T3304]  loop4: p2 p4
[  121.219251][ T3304] loop4: p2 start 4293394690 is beyond EOD, truncated
[  121.228518][ T3304] loop4: p4 size 50331648 extends beyond EOD, truncated
[  121.239842][ T7859] loop3: detected capacity change from 0 to 128
[  121.249752][ T7853] FAULT_INJECTION: forcing a failure.
[  121.249752][ T7853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.268165][ T7853] CPU: 1 UID: 0 PID: 7853 Comm: syz.0.1471 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  121.268261][ T7853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  121.268276][ T7853] Call Trace:
[  121.268282][ T7853]  <TASK>
[  121.268292][ T7853]  __dump_stack+0x1d/0x30
[  121.268356][ T7853]  dump_stack_lvl+0xe8/0x140
[  121.268382][ T7853]  dump_stack+0x15/0x1b
[  121.268423][ T7853]  should_fail_ex+0x265/0x280
[  121.268467][ T7853]  should_fail+0xb/0x20
[  121.268488][ T7853]  should_fail_usercopy+0x1a/0x20
[  121.268510][ T7853]  _copy_from_user+0x1c/0xb0
[  121.268538][ T7853]  kstrtouint_from_user+0x69/0xf0
[  121.268573][ T7853]  ? 0xffffffff81000000
[  121.268596][ T7853]  ? selinux_file_permission+0x1e4/0x320
[  121.268629][ T7853]  proc_fail_nth_write+0x50/0x160
[  121.268871][ T7853]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  121.268934][ T7853]  vfs_write+0x269/0x960
[  121.268964][ T7853]  ? vfs_read+0x4e6/0x770
[  121.268992][ T7853]  ? __rcu_read_unlock+0x4f/0x70
[  121.269116][ T7853]  ? __fget_files+0x184/0x1c0
[  121.269151][ T7853]  ksys_write+0xda/0x1a0
[  121.269177][ T7853]  __x64_sys_write+0x40/0x50
[  121.269202][ T7853]  x64_sys_call+0x2802/0x3000
[  121.269249][ T7853]  do_syscall_64+0xd2/0x200
[  121.269277][ T7853]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  121.269312][ T7853]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  121.269355][ T7853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.269389][ T7853] RIP: 0033:0x7fa3de46e1ff
[  121.269469][ T7853] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  121.269487][ T7853] RSP: 002b:00007fa3dced7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  121.269509][ T7853] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3de46e1ff
[  121.269525][ T7853] RDX: 0000000000000001 RSI: 00007fa3dced70a0 RDI: 0000000000000006
[  121.269539][ T7853] RBP: 00007fa3dced7090 R08: 0000000000000000 R09: 0000000000000000
[  121.269553][ T7853] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  121.269566][ T7853] R13: 00007fa3de6c6038 R14: 00007fa3de6c5fa0 R15: 00007ffd436e4fa8
[  121.269587][ T7853]  </TASK>
[  121.272607][ T7851]  loop4: p2 p4
[  121.274232][ T7859] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.284793][ T7851] loop4: p2 start 4293394690 is beyond EOD, truncated
[  121.554336][ T7851] loop4: p4 size 50331648 extends beyond EOD, truncated
[  121.583740][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.641038][ T7872] warn_alloc: 6 callbacks suppressed
[  121.641057][ T7872] syz.0.1478: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  121.667742][ T7872] CPU: 1 UID: 0 PID: 7872 Comm: syz.0.1478 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  121.667774][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  121.667788][ T7872] Call Trace:
[  121.667796][ T7872]  <TASK>
[  121.667804][ T7872]  __dump_stack+0x1d/0x30
[  121.667903][ T7872]  dump_stack_lvl+0xe8/0x140
[  121.667924][ T7872]  dump_stack+0x15/0x1b
[  121.667941][ T7872]  warn_alloc+0x12b/0x1a0
[  121.668034][ T7872]  ? __rcu_read_unlock+0x4f/0x70
[  121.668062][ T7872]  __vmalloc_node_range_noprof+0x9d/0xed0
[  121.668096][ T7872]  ? __futex_wait+0x1fa/0x260
[  121.668196][ T7872]  ? __pfx_futex_wake_mark+0x10/0x10
[  121.668216][ T7872]  ? __rcu_read_unlock+0x4f/0x70
[  121.668242][ T7872]  ? avc_has_perm_noaudit+0x1b1/0x200
[  121.668262][ T7872]  ? should_fail_ex+0x30/0x280
[  121.668332][ T7872]  ? xskq_create+0x36/0xe0
[  121.668357][ T7872]  vmalloc_user_noprof+0x7d/0xb0
[  121.668390][ T7872]  ? xskq_create+0x80/0xe0
[  121.668486][ T7872]  xskq_create+0x80/0xe0
[  121.668510][ T7872]  xsk_init_queue+0x95/0xf0
[  121.668532][ T7872]  xsk_setsockopt+0x3f5/0x640
[  121.668554][ T7872]  ? __pfx_xsk_setsockopt+0x10/0x10
[  121.668576][ T7872]  __sys_setsockopt+0x184/0x200
[  121.668632][ T7872]  __x64_sys_setsockopt+0x64/0x80
[  121.668667][ T7872]  x64_sys_call+0x20ec/0x3000
[  121.668690][ T7872]  do_syscall_64+0xd2/0x200
[  121.668717][ T7872]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  121.668758][ T7872]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  121.668812][ T7872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.668834][ T7872] RIP: 0033:0x7fa3de46f749
[  121.668850][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.668877][ T7872] RSP: 002b:00007fa3dced7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  121.668897][ T7872] RAX: ffffffffffffffda RBX: 00007fa3de6c5fa0 RCX: 00007fa3de46f749
[  121.668909][ T7872] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  121.668922][ T7872] RBP: 00007fa3de4f3f91 R08: 0000000000000004 R09: 0000000000000000
[  121.668935][ T7872] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.668947][ T7872] R13: 00007fa3de6c6038 R14: 00007fa3de6c5fa0 R15: 00007ffd436e4fa8
[  121.668966][ T7872]  </TASK>
[  121.669027][ T7872] Mem-Info:
[  121.922180][ T7882] loop3: detected capacity change from 0 to 1024
[  121.927430][ T7872] active_anon:9674 inactive_anon:1 isolated_anon:0
[  121.927430][ T7872]  active_file:12239 inactive_file:2317 isolated_file:0
[  121.927430][ T7872]  unevictable:0 dirty:391 writeback:0
[  121.927430][ T7872]  slab_reclaimable:3251 slab_unreclaimable:30871
[  121.927430][ T7872]  mapped:29815 shmem:1305 pagetables:1291
[  121.927430][ T7872]  sec_pagetables:0 bounce:0
[  121.927430][ T7872]  kernel_misc_reclaimable:0
[  121.927430][ T7872]  free:1873775 free_pcp:8295 free_cma:0
[  121.957600][ T7882] EXT4-fs: Ignoring removed orlov option
[  122.015005][ T7872] Node 0 active_anon:38696kB inactive_anon:4kB active_file:48956kB inactive_file:9268kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:119260kB dirty:1564kB writeback:0kB shmem:5220kB kernel_stack:3472kB pagetables:5164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  122.039042][ T7880] loop2: detected capacity change from 0 to 128
[  122.057961][ T7872] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  122.068855][   T29] kauditd_printk_skb: 550 callbacks suppressed
[  122.068875][   T29] audit: type=1326 audit(1764102863.016:14246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5f0d02e3aa code=0x7ffc0000
[  122.102122][ T7872] lowmem_reserve[]:
[  122.112670][ T7880] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.138291][ T7872]  0
[  122.147868][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.157289][ T7872]  2881 7859
[  122.160990][   T29] audit: type=1326 audit(1764102863.066:14247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f5f0d02e3aa code=0x7ffc0000
[  122.170333][ T7872]  7859
[  122.174051][   T29] audit: type=1326 audit(1764102863.066:14248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f5f0d02de97 code=0x7ffc0000
[  122.174088][   T29] audit: type=1326 audit(1764102863.066:14249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f5f0d030eea code=0x7ffc0000
[  122.204433][ T7872] 
[  122.271062][ T7872] Node 0 DMA32 free:2946728kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950256kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  122.274913][   T29] audit: type=1326 audit(1764102863.226:14250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5f0d02df90 code=0x7ffc0000
[  122.310129][ T7872] lowmem_reserve[]: 0 0 4978 4978
[  122.347175][ T7872] Node 0 Normal free:4535428kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34556kB inactive_anon:4kB active_file:48956kB inactive_file:9164kB unevictable:0kB writepending:1544kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:31012kB local_pcp:11780kB free_cma:0kB
[  122.385211][ T7872] lowmem_reserve[]: 0 0 0 0
[  122.391042][ T7872] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  122.411377][ T7872] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946728kB
[  122.417720][   T29] audit: type=1326 audit(1764102863.296:14251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f5f0d02e497 code=0x7ffc0000
[  122.434324][ T7872] Node 0 Normal: 1368*4kB (UM) 587*8kB (UME) 
[  122.464946][   T29] audit: type=1326 audit(1764102863.296:14252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5f0d02df90 code=0x7ffc0000
[  122.471917][ T7872] 144*16kB (UME) 51*32kB (UE) 82*64kB 
[  122.498508][   T29] audit: type=1326 audit(1764102863.296:14253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f0d02f749 code=0x7ffc0000
[  122.498523][ T7872] (UME) 
[  122.498546][   T29] audit: type=1326 audit(1764102863.296:14254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f0d02f749 code=0x7ffc0000
[  122.498572][   T29] audit: type=1326 audit(1764102863.296:14255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.2.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5f0d02f749 code=0x7ffc0000
[  122.504816][ T7872] 74*128kB (UME) 32*256kB (UME) 14*512kB (UME) 2*1024kB (UM) 6*2048kB (UM) 1093*4096kB (UM) = 4535448kB
[  122.609707][ T7872] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  122.621675][ T7872] 14855 total pagecache pages
[  122.627127][ T7872] 2 pages in swap cache
[  122.632321][ T7872] Free swap  = 124988kB
[  122.638011][ T7872] Total swap = 124996kB
[  122.643573][ T7872] 2097051 pages RAM
[  122.648640][ T7872] 0 pages HighMem/MovableOnly
[  122.653759][ T7872] 81087 pages reserved
[  122.662304][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.710524][ T7896] loop0: detected capacity change from 0 to 128
[  122.721459][ T7895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=7895 comm=syz.1.1486
[  122.738261][ T7895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=7895 comm=syz.1.1486
[  122.754954][ T7895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=7895 comm=syz.1.1486
[  122.764858][ T7896] ext4 filesystem being mounted at /274/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.771958][ T7895] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=7895 comm=syz.1.1486
[  122.913929][ T7913] loop0: detected capacity change from 0 to 1024
[  122.949558][ T7913] EXT4-fs: Ignoring removed orlov option
[  122.966697][ T7920] FAULT_INJECTION: forcing a failure.
[  122.966697][ T7920] name failslab, interval 1, probability 0, space 0, times 0
[  122.983033][ T7920] CPU: 0 UID: 0 PID: 7920 Comm: syz.1.1495 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  122.983083][ T7920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  122.983099][ T7920] Call Trace:
[  122.983107][ T7920]  <TASK>
[  122.983142][ T7920]  __dump_stack+0x1d/0x30
[  122.983184][ T7920]  dump_stack_lvl+0xe8/0x140
[  122.983204][ T7920]  dump_stack+0x15/0x1b
[  122.983221][ T7920]  should_fail_ex+0x265/0x280
[  122.983258][ T7920]  should_failslab+0x8c/0xb0
[  122.983286][ T7920]  kmem_cache_alloc_noprof+0x50/0x480
[  122.983322][ T7920]  ? skb_clone+0x151/0x1f0
[  122.983371][ T7920]  skb_clone+0x151/0x1f0
[  122.983393][ T7920]  pfkey_sendmsg+0x2cc/0x900
[  122.983428][ T7920]  ? avc_has_perm+0xf7/0x180
[  122.983457][ T7920]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  122.983533][ T7920]  __sock_sendmsg+0x145/0x180
[  122.983564][ T7920]  ____sys_sendmsg+0x31e/0x4e0
[  122.983593][ T7920]  ___sys_sendmsg+0x17b/0x1d0
[  122.983626][ T7920]  __x64_sys_sendmsg+0xd4/0x160
[  122.983659][ T7920]  x64_sys_call+0x191e/0x3000
[  122.983687][ T7920]  do_syscall_64+0xd2/0x200
[  122.983714][ T7920]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  122.983802][ T7920]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  122.983897][ T7920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.983918][ T7920] RIP: 0033:0x7ff0dbdcf749
[  122.983934][ T7920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.983952][ T7920] RSP: 002b:00007ff0da837038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.983971][ T7920] RAX: ffffffffffffffda RBX: 00007ff0dc025fa0 RCX: 00007ff0dbdcf749
[  122.983984][ T7920] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000007
[  122.984067][ T7920] RBP: 00007ff0da837090 R08: 0000000000000000 R09: 0000000000000000
[  122.984083][ T7920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.984098][ T7920] R13: 00007ff0dc026038 R14: 00007ff0dc025fa0 R15: 00007fff8400e848
[  122.984116][ T7920]  </TASK>
[  123.256485][ T7913] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  123.268918][ T7926] loop3: detected capacity change from 0 to 1024
[  123.278800][ T7926] EXT4-fs: Ignoring removed orlov option
[  123.288982][ T7913] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  123.334823][ T7930] loop1: detected capacity change from 0 to 512
[  123.358540][ T7932] loop0: detected capacity change from 0 to 128
[  123.381940][ T7930] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  123.430793][ T7938] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7938 comm=syz.0.1502
[  123.457456][ T7936] loop3: detected capacity change from 0 to 8192
[  123.465929][ T7938] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1502'.
[  123.510305][ T7940] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.577015][ T7940] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.604783][ T7946] loop0: detected capacity change from 0 to 512
[  123.618377][ T7946] ext4: Unknown parameter 'obj_role'
[  123.644795][ T7946] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.675016][ T7940] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.735934][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.747945][ T7940] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.822718][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  123.837501][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  123.860073][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  123.861185][ T7961] loop0: detected capacity change from 0 to 1024
[  123.870864][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  123.894327][ T7961] EXT4-fs: Ignoring removed orlov option
[  123.914794][ T7960] lo speed is unknown, defaulting to 1000
[  123.914921][ T7961] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  123.922273][ T7960] lo speed is unknown, defaulting to 1000
[  123.941136][ T7961] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  124.031069][ T7968] loop0: detected capacity change from 0 to 8192
[  124.046525][ T7971] netlink: 'syz.1.1513': attribute type 8 has an invalid length.
[  124.083800][ T3304]  loop0: p2 p4
[  124.089177][ T3304] loop0: p2 start 4293394690 is beyond EOD, truncated
[  124.097527][ T3304] loop0: p4 size 50331648 extends beyond EOD, truncated
[  124.111622][ T7968]  loop0: p2 p4
[  124.117557][ T7968] loop0: p2 start 4293394690 is beyond EOD, truncated
[  124.126937][ T7968] loop0: p4 size 50331648 extends beyond EOD, truncated
[  124.213976][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  124.257943][ T7980] loop3: detected capacity change from 0 to 8192
[  124.512731][ T8001] loop1: detected capacity change from 0 to 1024
[  124.521147][ T8001] EXT4-fs: Ignoring removed orlov option
[  124.654117][ T8008] lo speed is unknown, defaulting to 1000
[  124.661628][ T8008] lo speed is unknown, defaulting to 1000
[  124.775945][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  124.926773][ T8018] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8018 comm=syz.1.1530
[  124.941861][ T8018] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1530'.
[  124.982939][ T8019] lo speed is unknown, defaulting to 1000
[  124.990013][ T8019] lo speed is unknown, defaulting to 1000
[  124.998729][ T8022] loop1: detected capacity change from 0 to 128
[  125.023193][ T8022] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.161559][ T8031] loop1: detected capacity change from 0 to 512
[  125.173981][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.209052][ T8031] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1533'.
[  125.257360][ T8034] loop1: detected capacity change from 0 to 128
[  125.272748][ T8034] ext4 filesystem being mounted at /360/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.395016][ T8047] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8047 comm=syz.0.1539
[  125.411091][ T8047] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8047 comm=syz.0.1539
[  125.424942][ T8047] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=8047 comm=syz.0.1539
[  125.444156][ T8047] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=8047 comm=syz.0.1539
[  125.491168][ T8053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8053 comm=syz.0.1541
[  125.511717][ T8053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8053 comm=syz.0.1541
[  125.526851][ T8053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=8053 comm=syz.0.1541
[  125.541148][ T8053] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=8053 comm=syz.0.1541
[  125.657331][ T8062] loop3: detected capacity change from 0 to 8192
[  125.665520][ T8064] loop1: detected capacity change from 0 to 1024
[  125.681248][ T8060] loop0: detected capacity change from 0 to 8192
[  125.691991][ T8064] EXT4-fs: Ignoring removed orlov option
[  125.816122][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.847911][ T8074] loop4: detected capacity change from 0 to 128
[  125.899679][ T8074] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.924626][ T8078] loop1: detected capacity change from 0 to 512
[  125.937008][ T8079] capability: warning: `syz.2.1551' uses 32-bit capabilities (legacy support in use)
[  125.959384][ T8078] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  125.974758][ T8078] EXT4-fs (loop1): group descriptors corrupted!
[  126.121307][ T8093] netlink: 'syz.0.1555': attribute type 8 has an invalid length.
[  126.141680][ T8097] siw: device registration error -23
[  126.179322][ T8099] loop3: detected capacity change from 0 to 512
[  126.200541][ T8099] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  126.281718][ T8111] lo speed is unknown, defaulting to 1000
[  126.290948][ T8111] lo speed is unknown, defaulting to 1000
[  126.358821][ T8121] loop3: detected capacity change from 0 to 512
[  126.391684][ T8121] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  126.491202][ T8127] loop3: detected capacity change from 0 to 128
[  126.505678][ T8127] ext4 filesystem being mounted at /333/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.655112][ T8134] loop3: detected capacity change from 0 to 128
[  126.778844][ T8143] netlink: 'syz.3.1575': attribute type 27 has an invalid length.
[  126.855516][ T3421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  126.996959][ T8146] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8146 comm=syz.4.1576
[  127.012370][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1576'.
[  127.088731][ T8150] loop4: detected capacity change from 0 to 1024
[  127.098149][ T8150] EXT4-fs: Ignoring removed orlov option
[  127.106339][ T8150] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.287934][   T29] kauditd_printk_skb: 697 callbacks suppressed
[  127.287952][   T29] audit: type=1326 audit(1764102868.236:14953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.331301][   T29] audit: type=1326 audit(1764102868.276:14954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.342371][ T8166] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  127.358879][   T29] audit: type=1326 audit(1764102868.276:14955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.358928][   T29] audit: type=1326 audit(1764102868.276:14956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359038][   T29] audit: type=1326 audit(1764102868.276:14957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359083][   T29] audit: type=1326 audit(1764102868.276:14958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359122][   T29] audit: type=1326 audit(1764102868.276:14959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359180][   T29] audit: type=1326 audit(1764102868.276:14960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359300][   T29] audit: type=1326 audit(1764102868.276:14961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.359354][   T29] audit: type=1326 audit(1764102868.276:14962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8168 comm="syz.1.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  127.644578][ T8177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1586'.
[  127.657879][ T8177] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1586'.
[  127.661399][ T8179] loop4: detected capacity change from 0 to 128
[  127.671955][ T8177] netlink: 'syz.1.1586': attribute type 1 has an invalid length.
[  127.686363][ T8177] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1586'.
[  127.710211][ T8179] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.731142][ T8183] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1588'.
[  127.743987][ T8183] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1588'.
[  127.757295][ T8183] netlink: 'syz.3.1588': attribute type 1 has an invalid length.
[  127.767031][ T8183] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1588'.
[  127.896482][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  127.909303][ T8195] loop4: detected capacity change from 0 to 8192
[  127.933890][ T8199] loop3: detected capacity change from 0 to 256
[  127.952167][ T8199] FAT-fs (loop3): Directory bread(block 64) failed
[  127.960996][ T8199] FAT-fs (loop3): Directory bread(block 65) failed
[  127.969802][ T8199] FAT-fs (loop3): Directory bread(block 66) failed
[  127.981911][ T8199] FAT-fs (loop3): Directory bread(block 67) failed
[  127.992777][ T8199] FAT-fs (loop3): Directory bread(block 68) failed
[  128.001160][ T8199] FAT-fs (loop3): Directory bread(block 69) failed
[  128.010120][ T8199] FAT-fs (loop3): Directory bread(block 70) failed
[  128.019203][ T8199] FAT-fs (loop3): Directory bread(block 71) failed
[  128.028598][ T8199] FAT-fs (loop3): Directory bread(block 72) failed
[  128.038774][ T8199] FAT-fs (loop3): Directory bread(block 73) failed
[  128.210351][ T8213] siw: device registration error -23
[  128.218882][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  128.232786][ T8211] netlink: 'syz.2.1600': attribute type 1 has an invalid length.
[  128.265810][ T8205] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  128.370883][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[  128.520680][ T8232] netlink: 'syz.2.1606': attribute type 8 has an invalid length.
[  128.570545][ T8236] loop2: detected capacity change from 0 to 256
[  128.592234][ T8236] FAT-fs (loop2): Directory bread(block 64) failed
[  128.603703][ T8236] FAT-fs (loop2): Directory bread(block 65) failed
[  128.611639][ T8236] FAT-fs (loop2): Directory bread(block 66) failed
[  128.619717][ T8236] FAT-fs (loop2): Directory bread(block 67) failed
[  128.627425][ T8236] FAT-fs (loop2): Directory bread(block 68) failed
[  128.634372][ T8236] FAT-fs (loop2): Directory bread(block 69) failed
[  128.642258][ T8236] FAT-fs (loop2): Directory bread(block 70) failed
[  128.650598][ T8236] FAT-fs (loop2): Directory bread(block 71) failed
[  128.658058][ T8236] FAT-fs (loop2): Directory bread(block 72) failed
[  128.671291][ T8236] FAT-fs (loop2): Directory bread(block 73) failed
[  128.678905][ T8238] loop1: detected capacity change from 0 to 1024
[  128.687028][ T8238] EXT4-fs: Ignoring removed orlov option
[  128.697248][ T8238] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  128.742848][ T8241] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  128.790735][ T8245] __nla_validate_parse: 5 callbacks suppressed
[  128.790749][ T8245] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1612'.
[  128.810025][ T8245] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1612'.
[  128.822996][ T8245] netlink: 'syz.2.1612': attribute type 1 has an invalid length.
[  128.831085][ T8245] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1612'.
[  128.861383][ T8247] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1613'.
[  128.891645][ T8247] team0 (unregistering): Port device team_slave_0 removed
[  128.930987][ T8250] loop1: detected capacity change from 0 to 512
[  128.936204][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  128.960701][ T8250] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  129.107956][ T8261] loop1: detected capacity change from 0 to 8192
[  129.221979][ T8276] loop0: detected capacity change from 0 to 128
[  129.243449][ T8276] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.270932][ T8279] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1626'.
[  129.310601][ T8281] siw: device registration error -23
[  129.420134][ T8293] siw: device registration error -23
[  129.440235][ T8295] loop0: detected capacity change from 0 to 1024
[  129.448773][ T8295] EXT4-fs: Ignoring removed orlov option
[  129.525756][ T8303] netlink: 'syz.0.1633': attribute type 8 has an invalid length.
[  129.976122][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  129.997080][ T8314] loop2: detected capacity change from 0 to 128
[  130.090711][ T8321] loop2: detected capacity change from 0 to 1024
[  130.099717][ T8321] EXT4-fs: Ignoring removed orlov option
[  130.212981][ T8330] loop4: detected capacity change from 0 to 128
[  130.226594][ T8330] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.314393][ T8341] selinux_netlink_send: 9 callbacks suppressed
[  130.314441][ T8341] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8341 comm=syz.1.1649
[  130.336446][ T8341] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8341 comm=syz.1.1649
[  130.353043][ T8341] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=8341 comm=syz.1.1649
[  130.353318][ T8339] loop4: detected capacity change from 0 to 8192
[  130.369930][ T8341] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=8341 comm=syz.1.1649
[  130.380756][ T3516] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  130.395980][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  130.434201][ T8346] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1651'.
[  130.445868][ T8346] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1651'.
[  130.459507][ T8346] netlink: 'syz.1.1651': attribute type 1 has an invalid length.
[  130.467598][ T8346] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1651'.
[  130.506401][ T8349] loop1: detected capacity change from 0 to 128
[  130.524937][ T8349] ext4 filesystem being mounted at /382/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.660182][ T8360] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1655'.
[  130.677945][ T8360] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1655'.
[  130.749132][ T8368] siw: device registration error -23
[  130.795780][ T8374] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8374 comm=syz.2.1661
[  130.813104][ T8374] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8374 comm=syz.2.1661
[  130.828611][ T8374] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=8374 comm=syz.2.1661
[  130.844363][ T8374] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=8374 comm=syz.2.1661
[  131.015897][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.039116][ T8387] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  131.082181][ T8397] netlink: 'syz.1.1670': attribute type 1 has an invalid length.
[  131.170035][ T8410] loop2: detected capacity change from 0 to 512
[  131.211168][ T8410] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  131.236221][ T8418] loop3: detected capacity change from 0 to 1024
[  131.249046][ T8418] EXT4-fs: inline encryption not supported
[  131.255227][ T8418] EXT4-fs: Ignoring removed orlov option
[  131.264151][ T8418] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  131.264402][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.303981][ T8418] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840c018, mo2=0002]
[  131.320191][ T8418] System zones: 0-1, 3-12
[  131.329430][ T8418] FAULT_INJECTION: forcing a failure.
[  131.329430][ T8418] name failslab, interval 1, probability 0, space 0, times 0
[  131.344602][ T8418] CPU: 0 UID: 0 PID: 8418 Comm: syz.3.1679 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  131.344634][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  131.344650][ T8418] Call Trace:
[  131.344657][ T8418]  <TASK>
[  131.344666][ T8418]  __dump_stack+0x1d/0x30
[  131.344695][ T8418]  dump_stack_lvl+0xe8/0x140
[  131.344777][ T8418]  dump_stack+0x15/0x1b
[  131.344800][ T8418]  should_fail_ex+0x265/0x280
[  131.344836][ T8418]  should_failslab+0x8c/0xb0
[  131.344864][ T8418]  __kmalloc_node_track_caller_noprof+0xa5/0x580
[  131.344948][ T8418]  ? uhid_dev_create2+0x92/0x440
[  131.344988][ T8418]  kmemdup_noprof+0x2b/0x70
[  131.345020][ T8418]  uhid_dev_create2+0x92/0x440
[  131.345108][ T8418]  uhid_dev_create+0x22e/0x280
[  131.345149][ T8418]  uhid_char_write+0x5a3/0x650
[  131.345188][ T8418]  ? __pfx_uhid_char_write+0x10/0x10
[  131.345279][ T8418]  vfs_write+0x269/0x960
[  131.345310][ T8418]  ? __rcu_read_unlock+0x4f/0x70
[  131.345343][ T8418]  ? __fget_files+0x184/0x1c0
[  131.345373][ T8418]  ksys_write+0xda/0x1a0
[  131.345432][ T8418]  __x64_sys_write+0x40/0x50
[  131.345458][ T8418]  x64_sys_call+0x2802/0x3000
[  131.345481][ T8418]  do_syscall_64+0xd2/0x200
[  131.345557][ T8418]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  131.345594][ T8418]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  131.345629][ T8418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.345726][ T8418] RIP: 0033:0x7fb9336af749
[  131.345742][ T8418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.345761][ T8418] RSP: 002b:00007fb932117038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  131.345780][ T8418] RAX: ffffffffffffffda RBX: 00007fb933905fa0 RCX: 00007fb9336af749
[  131.345793][ T8418] RDX: 0000000000000120 RSI: 0000200000000a00 RDI: 0000000000000007
[  131.345805][ T8418] RBP: 00007fb932117090 R08: 0000000000000000 R09: 0000000000000000
[  131.345867][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.345886][ T8418] R13: 00007fb933906038 R14: 00007fb933905fa0 R15: 00007ffd56f9dbb8
[  131.345905][ T8418]  </TASK>
[  131.348345][ T8424] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  131.656566][ T8428] loop2: detected capacity change from 0 to 512
[  131.821311][ T8447] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8447 comm=syz.2.1689
[  131.836537][ T8447] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8447 comm=syz.2.1689
[  131.905228][ T8453] siw: device registration error -23
[  132.058646][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  132.330492][ T8476] warn_alloc: 15 callbacks suppressed
[  132.330509][ T8476] syz.1.1699: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  132.357749][ T8476] CPU: 1 UID: 0 PID: 8476 Comm: syz.1.1699 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  132.357784][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  132.357800][ T8476] Call Trace:
[  132.357808][ T8476]  <TASK>
[  132.357819][ T8476]  __dump_stack+0x1d/0x30
[  132.357841][ T8476]  dump_stack_lvl+0xe8/0x140
[  132.357883][ T8476]  dump_stack+0x15/0x1b
[  132.357948][ T8476]  warn_alloc+0x12b/0x1a0
[  132.357995][ T8476]  ? __rcu_read_unlock+0x4f/0x70
[  132.358097][ T8476]  __vmalloc_node_range_noprof+0x9d/0xed0
[  132.358182][ T8476]  ? __futex_wait+0x1fa/0x260
[  132.358264][ T8476]  ? __pfx_futex_wake_mark+0x10/0x10
[  132.358291][ T8476]  ? __rcu_read_unlock+0x4f/0x70
[  132.358320][ T8476]  ? avc_has_perm_noaudit+0x1b1/0x200
[  132.358387][ T8476]  ? should_fail_ex+0x30/0x280
[  132.358473][ T8476]  ? xskq_create+0x36/0xe0
[  132.358497][ T8476]  vmalloc_user_noprof+0x7d/0xb0
[  132.358538][ T8476]  ? xskq_create+0x80/0xe0
[  132.358607][ T8476]  xskq_create+0x80/0xe0
[  132.358636][ T8476]  xsk_init_queue+0x95/0xf0
[  132.358727][ T8476]  xsk_setsockopt+0x3f5/0x640
[  132.358750][ T8476]  ? __pfx_xsk_setsockopt+0x10/0x10
[  132.358773][ T8476]  __sys_setsockopt+0x184/0x200
[  132.358818][ T8476]  __x64_sys_setsockopt+0x64/0x80
[  132.358851][ T8476]  x64_sys_call+0x20ec/0x3000
[  132.358874][ T8476]  do_syscall_64+0xd2/0x200
[  132.358940][ T8476]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  132.358969][ T8476]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  132.359023][ T8476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.359055][ T8476] RIP: 0033:0x7ff0dbdcf749
[  132.359071][ T8476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.359090][ T8476] RSP: 002b:00007ff0da837038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  132.359110][ T8476] RAX: ffffffffffffffda RBX: 00007ff0dc025fa0 RCX: 00007ff0dbdcf749
[  132.359123][ T8476] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  132.359136][ T8476] RBP: 00007ff0dbe53f91 R08: 0000000000000004 R09: 0000000000000000
[  132.359227][ T8476] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.359240][ T8476] R13: 00007ff0dc026038 R14: 00007ff0dc025fa0 R15: 00007fff8400e848
[  132.359259][ T8476]  </TASK>
[  132.359269][ T8476] Mem-Info:
[  132.642654][ T8476] active_anon:11465 inactive_anon:1 isolated_anon:0
[  132.642654][ T8476]  active_file:12239 inactive_file:2281 isolated_file:0
[  132.642654][ T8476]  unevictable:0 dirty:352 writeback:0
[  132.642654][ T8476]  slab_reclaimable:3259 slab_unreclaimable:30832
[  132.642654][ T8476]  mapped:32724 shmem:3047 pagetables:1255
[  132.642654][ T8476]  sec_pagetables:0 bounce:0
[  132.642654][ T8476]  kernel_misc_reclaimable:0
[  132.642654][ T8476]  free:1868129 free_pcp:11663 free_cma:0
[  132.701587][ T8476] Node 0 active_anon:45860kB inactive_anon:4kB active_file:48956kB inactive_file:9124kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:130896kB dirty:1408kB writeback:0kB shmem:12188kB kernel_stack:3520kB pagetables:5020kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  132.737905][ T8476] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  132.772054][ T8476] lowmem_reserve[]: 0 2881 7859 7859
[  132.779697][ T8476] Node 0 DMA32 free:2946728kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950256kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:0kB free_cma:0kB
[  132.818150][ T8476] lowmem_reserve[]: 0 0 4978 4978
[  132.824116][ T8476] Node 0 Normal free:4510428kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:45860kB inactive_anon:4kB active_file:48956kB inactive_file:9124kB unevictable:0kB writepending:1408kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:43124kB local_pcp:18664kB free_cma:0kB
[  132.866275][ T8476] lowmem_reserve[]: 0 0 0 0
[  132.872401][ T8476] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  132.890802][ T8476] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946728kB
[  132.913166][ T8476] Node 0 Normal: 3*4kB (UME) 2*8kB (UM) 2*16kB (UM) 57*32kB (UM) 82*64kB (UME) 36*128kB (UME) 19*256kB (UME) 7*512kB (UME) 3*1024kB (UM) 1*2048kB (M) 1095*4096kB (UM) = 4510428kB
[  132.934252][ T8476] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  132.946248][ T8476] 17562 total pagecache pages
[  132.949306][ T8479] loop2: detected capacity change from 0 to 1024
[  132.952305][ T8476] 2 pages in swap cache
[  132.966995][ T8476] Free swap  = 124988kB
[  132.971995][ T8476] Total swap = 124996kB
[  132.977552][ T8476] 2097051 pages RAM
[  132.981838][ T8476] 0 pages HighMem/MovableOnly
[  132.988146][ T8476] 81087 pages reserved
[  132.992746][   T29] kauditd_printk_skb: 501 callbacks suppressed
[  132.992789][   T29] audit: type=1326 audit(1764102873.936:15464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.027266][   T29] audit: type=1326 audit(1764102873.936:15465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.056843][   T29] audit: type=1326 audit(1764102873.936:15466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.088636][   T29] audit: type=1326 audit(1764102873.936:15467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.118187][   T29] audit: type=1326 audit(1764102873.936:15468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.146864][   T29] audit: type=1326 audit(1764102873.946:15469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.178590][   T29] audit: type=1326 audit(1764102873.946:15470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.206792][   T29] audit: type=1326 audit(1764102873.946:15471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.209050][ T8479] EXT4-fs: Ignoring removed orlov option
[  133.236267][   T29] audit: type=1326 audit(1764102873.946:15472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.250362][ T8488] loop1: detected capacity change from 0 to 512
[  133.270370][   T29] audit: type=1326 audit(1764102873.946:15473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8477 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3de46f749 code=0x7ffc0000
[  133.309577][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  133.321031][ T8479] EXT4-fs mount: 97 callbacks suppressed
[  133.321064][ T8479] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.354504][ T8488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.359417][ T8482] lo speed is unknown, defaulting to 1000
[  133.379192][ T8482] lo speed is unknown, defaulting to 1000
[  133.403034][ T8488] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  133.421143][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.442183][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.528809][ T8504] loop4: detected capacity change from 0 to 8192
[  133.652242][ T8515] loop1: detected capacity change from 0 to 512
[  133.686946][ T8515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.711375][ T8515] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  133.735135][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.784054][ T8518] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  133.794680][ T8518] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  133.814715][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  133.855848][ T8532] loop0: detected capacity change from 0 to 128
[  133.965939][ T8544] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  134.005461][ T8548] __nla_validate_parse: 10 callbacks suppressed
[  134.005477][ T8548] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1726'.
[  134.024384][ T8548] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1726'.
[  134.035082][ T8548] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1726'.
[  134.171640][ T8565] loop1: detected capacity change from 0 to 512
[  134.204925][ T8565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.215783][ T8569] loop0: detected capacity change from 0 to 1024
[  134.232021][ T8569] EXT4-fs: Ignoring removed orlov option
[  134.260562][ T8569] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.279083][ T8565] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  134.307118][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.335806][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.348811][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.376002][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.436689][ T8585] loop4: detected capacity change from 0 to 256
[  134.467221][ T8585] FAT-fs (loop4): Directory bread(block 64) failed
[  134.476123][ T8585] FAT-fs (loop4): Directory bread(block 65) failed
[  134.494070][ T8585] FAT-fs (loop4): Directory bread(block 66) failed
[  134.512678][ T8585] FAT-fs (loop4): Directory bread(block 67) failed
[  134.521264][ T8585] FAT-fs (loop4): Directory bread(block 68) failed
[  134.529150][ T8585] FAT-fs (loop4): Directory bread(block 69) failed
[  134.536302][ T8585] FAT-fs (loop4): Directory bread(block 70) failed
[  134.565477][ T8591] netlink: 'syz.2.1744': attribute type 8 has an invalid length.
[  134.575463][ T8585] FAT-fs (loop4): Directory bread(block 71) failed
[  134.584825][ T8581] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  134.594019][ T8581] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  134.620673][ T8585] FAT-fs (loop4): Directory bread(block 72) failed
[  134.629709][ T8585] FAT-fs (loop4): Directory bread(block 73) failed
[  134.664969][ T8599] loop1: detected capacity change from 0 to 1024
[  134.679997][ T8597] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1746'.
[  134.692520][ T8594] loop2: detected capacity change from 0 to 8192
[  134.694363][ T8599] EXT4-fs: Ignoring removed orlov option
[  134.762771][ T8599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.807194][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.860612][ T8607] lo speed is unknown, defaulting to 1000
[  134.868510][ T8607] lo speed is unknown, defaulting to 1000
[  135.026556][ T8614] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  135.075732][ T8616] loop2: detected capacity change from 0 to 128
[  135.103500][ T8618] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1753'.
[  135.116948][ T8618] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1753'.
[  135.140129][ T8618] netlink: 'syz.0.1753': attribute type 1 has an invalid length.
[  135.149760][ T8618] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1753'.
[  135.224207][ T8623] loop0: detected capacity change from 0 to 128
[  135.248175][ T8623] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  135.270888][ T8623] ext4 filesystem being mounted at /313/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.354984][ T3316] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.397730][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1759'.
[  135.415936][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  135.513672][ T8640] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  135.526680][ T8642] loop0: detected capacity change from 0 to 512
[  135.558703][ T8642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.579323][ T8642] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  135.614595][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.650479][ T8648] selinux_netlink_send: 12 callbacks suppressed
[  135.650494][ T8648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=8648 comm=syz.4.1766
[  135.674497][ T8648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=8648 comm=syz.4.1766
[  135.690107][ T8648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=8648 comm=syz.4.1766
[  135.704280][ T8648] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=8648 comm=syz.4.1766
[  135.734729][ T8650] netlink: 'syz.3.1767': attribute type 8 has an invalid length.
[  135.753203][ T8652] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  135.851488][ T8661] loop0: detected capacity change from 0 to 128
[  135.903637][ T8663] loop4: detected capacity change from 0 to 128
[  135.939674][ T8663] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  135.952947][ T8663] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.079154][ T8677] loop3: detected capacity change from 0 to 512
[  136.120768][ T8680] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  136.151554][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.179178][ T8677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.219915][ T8677] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  136.244615][ T8694] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8694 comm=syz.0.1784
[  136.271835][ T8694] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1784'.
[  136.291919][ T8692] loop1: detected capacity change from 0 to 128
[  136.307056][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.318070][ T8695] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1782'.
[  136.354728][ T8692] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  136.404196][ T8692] ext4 filesystem being mounted at /421/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.432054][ T8706] netlink: 'syz.3.1786': attribute type 1 has an invalid length.
[  136.462640][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  136.496298][ T3312] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.530142][ T8715] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  136.597035][ T8719] loop3: detected capacity change from 0 to 128
[  136.686678][ T8729] netlink: 'syz.0.1797': attribute type 1 has an invalid length.
[  136.704564][ T8719] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  136.739891][ T8719] ext4 filesystem being mounted at /365/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.865840][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  137.090213][ T8749] loop2: detected capacity change from 0 to 512
[  137.140911][ T8749] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.168357][ T8749] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  137.214828][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.322936][ T8763] loop4: detected capacity change from 0 to 2048
[  137.335697][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.367279][ T8763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.382482][ T8763] ext4 filesystem being mounted at /328/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.495478][ T8775] ip6t_rpfilter: unknown options
[  137.496580][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.511200][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.677177][ T3436] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:7: bg 0: block 345: padding at end of block bitmap is not set
[  137.696219][ T3436] EXT4-fs (loop4): Remounting filesystem read-only
[  137.758872][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.774569][ T8782] loop3: detected capacity change from 0 to 512
[  137.785650][ T8779] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  137.795258][ T8779] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  137.805457][ T8782] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.848319][ T8782] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  137.876882][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.948541][ T8803] siw: device registration error -23
[  138.079435][   T29] kauditd_printk_skb: 504 callbacks suppressed
[  138.079453][   T29] audit: type=1326 audit(1764102879.026:15978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.125441][ T8811] loop3: detected capacity change from 0 to 128
[  138.137743][ T8811] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.179248][   T29] audit: type=1326 audit(1764102879.076:15979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.206580][   T29] audit: type=1326 audit(1764102879.076:15980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.236435][   T29] audit: type=1326 audit(1764102879.076:15981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.266340][   T29] audit: type=1326 audit(1764102879.076:15982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.276272][ T8811] ext4 filesystem being mounted at /372/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.293147][   T29] audit: type=1326 audit(1764102879.076:15983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.335102][   T29] audit: type=1326 audit(1764102879.076:15984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  138.365690][   T29] audit: type=1326 audit(1764102879.076:15985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb9336af783 code=0x7ffc0000
[  138.393439][   T29] audit: type=1326 audit(1764102879.076:15986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb9336ae1ff code=0x7ffc0000
[  138.423119][   T29] audit: type=1326 audit(1764102879.076:15987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8810 comm="syz.3.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb9336af7d7 code=0x7ffc0000
[  138.466572][ T8819] loop4: detected capacity change from 0 to 128
[  138.487247][ T8819] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.511689][ T8819] ext4 filesystem being mounted at /334/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.536086][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  138.580602][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.634629][ T8831] loop3: detected capacity change from 0 to 128
[  138.683620][ T8833] loop2: detected capacity change from 0 to 128
[  138.707542][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.736662][ T8833] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  138.755572][ T8835] netlink: 'syz.4.1837': attribute type 8 has an invalid length.
[  138.795243][ T8839] loop3: detected capacity change from 0 to 512
[  138.834925][ T8839] EXT4-fs (loop3): failed to initialize system zone (-117)
[  138.865110][ T8839] EXT4-fs (loop3): mount failed
[  138.871333][ T8843] loop4: detected capacity change from 0 to 8192
[  139.134414][ T8857] FAULT_INJECTION: forcing a failure.
[  139.134414][ T8857] name failslab, interval 1, probability 0, space 0, times 0
[  139.151648][ T8857] CPU: 0 UID: 0 PID: 8857 Comm: syz.0.1843 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  139.151742][ T8857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  139.151758][ T8857] Call Trace:
[  139.151767][ T8857]  <TASK>
[  139.151778][ T8857]  __dump_stack+0x1d/0x30
[  139.151801][ T8857]  dump_stack_lvl+0xe8/0x140
[  139.151963][ T8857]  dump_stack+0x15/0x1b
[  139.152003][ T8857]  should_fail_ex+0x265/0x280
[  139.152044][ T8857]  ? alloc_super+0x3d/0x550
[  139.152078][ T8857]  should_failslab+0x8c/0xb0
[  139.152109][ T8857]  __kmalloc_cache_noprof+0x4c/0x4a0
[  139.152217][ T8857]  alloc_super+0x3d/0x550
[  139.152245][ T8857]  sget_fc+0x24e/0x6e0
[  139.152318][ T8857]  ? __pfx_set_anon_super_fc+0x10/0x10
[  139.152342][ T8857]  ? __pfx_ramfs_fill_super+0x10/0x10
[  139.152440][ T8857]  get_tree_nodev+0x2a/0x100
[  139.152464][ T8857]  ramfs_get_tree+0x1c/0x30
[  139.152542][ T8857]  vfs_get_tree+0x57/0x1d0
[  139.152573][ T8857]  vfs_cmd_create+0x8a/0x140
[  139.152767][ T8857]  vfs_fsconfig_locked+0x6f/0x210
[  139.152923][ T8857]  __se_sys_fsconfig+0x648/0x770
[  139.152984][ T8857]  __x64_sys_fsconfig+0x67/0x80
[  139.153034][ T8857]  x64_sys_call+0x1f83/0x3000
[  139.153060][ T8857]  do_syscall_64+0xd2/0x200
[  139.153083][ T8857]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  139.153117][ T8857]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  139.153202][ T8857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.153285][ T8857] RIP: 0033:0x7fa3de46f749
[  139.153305][ T8857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.153328][ T8857] RSP: 002b:00007fa3dce95038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  139.153351][ T8857] RAX: ffffffffffffffda RBX: 00007fa3de6c6180 RCX: 00007fa3de46f749
[  139.153363][ T8857] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000007
[  139.153412][ T8857] RBP: 00007fa3dce95090 R08: 0000000000000000 R09: 0000000000000000
[  139.153428][ T8857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.153444][ T8857] R13: 00007fa3de6c6218 R14: 00007fa3de6c6180 R15: 00007ffd436e4fa8
[  139.153467][ T8857]  </TASK>
[  139.500595][ T8861] loop3: detected capacity change from 0 to 1024
[  139.527883][ T8861] EXT4-fs: Ignoring removed orlov option
[  139.549573][ T8861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.576275][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  139.645620][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.665661][ T8875] loop0: detected capacity change from 0 to 256
[  139.674446][ T8873] siw: device registration error -23
[  139.749791][ T8875] FAT-fs (loop0): Directory bread(block 64) failed
[  139.774771][ T8875] FAT-fs (loop0): Directory bread(block 65) failed
[  139.784489][ T8875] FAT-fs (loop0): Directory bread(block 66) failed
[  139.793613][ T8875] FAT-fs (loop0): Directory bread(block 67) failed
[  139.801567][ T8875] FAT-fs (loop0): Directory bread(block 68) failed
[  139.809167][ T8875] FAT-fs (loop0): Directory bread(block 69) failed
[  139.817304][ T8875] FAT-fs (loop0): Directory bread(block 70) failed
[  139.826197][ T8875] FAT-fs (loop0): Directory bread(block 71) failed
[  139.836005][ T8875] FAT-fs (loop0): Directory bread(block 72) failed
[  139.848880][ T8875] FAT-fs (loop0): Directory bread(block 73) failed
[  139.856585][ T8887] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  139.865874][ T8887] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  139.935660][ T8886] loop2: detected capacity change from 0 to 8192
[  140.042710][ T8891] loop0: detected capacity change from 0 to 128
[  140.064340][ T8891] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  140.093556][ T8891] ext4 filesystem being mounted at /350/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.201913][ T3316] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  140.341039][ T8909] loop2: detected capacity change from 0 to 1024
[  140.350344][ T8909] EXT4-fs: Ignoring removed orlov option
[  140.360751][ T8909] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.383529][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  140.423686][ T8913] loop0: detected capacity change from 0 to 128
[  140.445007][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.509382][ T8921] loop0: detected capacity change from 0 to 128
[  140.529813][ T8921] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  140.544799][ T8921] ext4 filesystem being mounted at /353/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.615733][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  140.649270][ T3316] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  140.759656][ T8932] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  140.819103][ T8941] __nla_validate_parse: 8 callbacks suppressed
[  140.819121][ T8941] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1874'.
[  140.838287][ T8941] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1874'.
[  140.899223][ T8943] loop3: detected capacity change from 0 to 128
[  140.922739][ T8943] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  140.950462][ T8943] ext4 filesystem being mounted at /383/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.990712][ T8948] FAULT_INJECTION: forcing a failure.
[  140.990712][ T8948] name failslab, interval 1, probability 0, space 0, times 0
[  141.008052][ T8948] CPU: 0 UID: 0 PID: 8948 Comm: syz.0.1878 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  141.008154][ T8948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  141.008167][ T8948] Call Trace:
[  141.008174][ T8948]  <TASK>
[  141.008181][ T8948]  __dump_stack+0x1d/0x30
[  141.008251][ T8948]  dump_stack_lvl+0xe8/0x140
[  141.008278][ T8948]  dump_stack+0x15/0x1b
[  141.008295][ T8948]  should_fail_ex+0x265/0x280
[  141.008333][ T8948]  should_failslab+0x8c/0xb0
[  141.008364][ T8948]  kmem_cache_alloc_lru_noprof+0x55/0x490
[  141.008474][ T8948]  ? __d_alloc+0x3d/0x340
[  141.008577][ T8948]  __d_alloc+0x3d/0x340
[  141.008668][ T8948]  ? mpol_shared_policy_init+0xbd/0x4c0
[  141.008700][ T8948]  d_alloc_pseudo+0x1e/0x80
[  141.008760][ T8948]  alloc_file_pseudo+0x71/0x160
[  141.008782][ T8948]  __shmem_file_setup+0x1de/0x210
[  141.008803][ T8948]  shmem_file_setup+0x3b/0x50
[  141.008820][ T8948]  __se_sys_memfd_create+0x2c3/0x590
[  141.009049][ T8948]  __x64_sys_memfd_create+0x31/0x40
[  141.009146][ T8948]  x64_sys_call+0x2ac2/0x3000
[  141.009175][ T8948]  do_syscall_64+0xd2/0x200
[  141.009267][ T8948]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  141.009351][ T8948]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  141.009449][ T8948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.009572][ T8948] RIP: 0033:0x7fa3de46f749
[  141.009592][ T8948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.009613][ T8948] RSP: 002b:00007fa3dced6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  141.009649][ T8948] RAX: ffffffffffffffda RBX: 0000000000000458 RCX: 00007fa3de46f749
[  141.009664][ T8948] RDX: 00007fa3dced6ef0 RSI: 0000000000000000 RDI: 00007fa3de4f4960
[  141.009690][ T8948] RBP: 0000200000000180 R08: 00007fa3dced6bb7 R09: 00007fa3dced6e40
[  141.009704][ T8948] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000100
[  141.009719][ T8948] R13: 00007fa3dced6ef0 R14: 00007fa3dced6eb0 R15: 0000200000000040
[  141.009809][ T8948]  </TASK>
[  141.296601][ T8952] netlink: 'syz.0.1879': attribute type 8 has an invalid length.
[  141.345999][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  141.460907][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1888'.
[  141.472751][ T8969] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1888'.
[  141.510688][ T8973] loop1: detected capacity change from 0 to 128
[  141.527486][ T8973] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  141.569648][ T8964] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  141.588454][ T8973] ext4 filesystem being mounted at /432/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.628915][ T8982] netlink: 'syz.3.1891': attribute type 8 has an invalid length.
[  141.655735][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.696262][ T8989] loop4: detected capacity change from 0 to 128
[  141.716132][ T8989] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  141.732111][ T8989] ext4 filesystem being mounted at /341/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.842096][ T3312] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  141.928626][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.000215][ T9007] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  142.083851][ T9009] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1901'.
[  142.187341][ T9016] netlink: 'syz.1.1904': attribute type 8 has an invalid length.
[  142.199482][ T9018] siw: device registration error -23
[  142.256080][ T9022] loop2: detected capacity change from 0 to 128
[  142.264970][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1907'.
[  142.279907][ T9021] loop1: detected capacity change from 0 to 512
[  142.289883][ T9022] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  142.317564][ T9021] EXT4-fs (loop1): failed to initialize system zone (-117)
[  142.338020][ T9021] EXT4-fs (loop1): mount failed
[  142.431877][ T9031] loop0: detected capacity change from 0 to 128
[  142.449870][ T9031] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.485835][ T9035] loop3: detected capacity change from 0 to 512
[  142.520789][ T9031] ext4 filesystem being mounted at /362/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.636883][ T9035] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.688680][ T9053] netlink: 'syz.2.1917': attribute type 8 has an invalid length.
[  142.728013][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  142.738596][ T9035] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  142.750016][ T3316] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.812377][ T9060] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1921'.
[  142.826781][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.841440][ T9060] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1921'.
[  142.863506][ T9065] loop2: detected capacity change from 0 to 512
[  142.870719][ T9065] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  142.897169][ T9065] EXT4-fs (loop2): orphan cleanup on readonly fs
[  142.921514][ T9065] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  142.934991][ T9072] siw: device registration error -23
[  142.955241][ T9065] EXT4-fs (loop2): Remounting filesystem read-only
[  142.967497][ T9074] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  142.973120][ T9065] EXT4-fs (loop2): 1 truncate cleaned up
[  142.995743][ T9065] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  143.061300][ T9081] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1929'.
[  143.125923][ T9081] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9081 comm=syz.1.1929
[  143.141865][ T9081] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1929'.
[  143.288583][   T29] kauditd_printk_skb: 674 callbacks suppressed
[  143.288633][   T29] audit: type=1326 audit(1764102884.236:16662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.325829][   T29] audit: type=1326 audit(1764102884.236:16663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.360781][ T9097] loop3: detected capacity change from 0 to 128
[  143.369384][   T29] audit: type=1326 audit(1764102884.276:16664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.399727][   T29] audit: type=1326 audit(1764102884.276:16665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.428163][   T29] audit: type=1326 audit(1764102884.276:16666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.457412][   T29] audit: type=1326 audit(1764102884.306:16667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.487451][   T29] audit: type=1326 audit(1764102884.306:16668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.516521][   T29] audit: type=1326 audit(1764102884.306:16669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.546270][   T29] audit: type=1326 audit(1764102884.306:16670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb9336af749 code=0x7ffc0000
[  143.576671][   T29] audit: type=1326 audit(1764102884.306:16671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9096 comm="syz.3.1935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb9336af783 code=0x7ffc0000
[  143.605829][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.616188][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.637210][ T9097] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  143.653721][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.666483][ T9097] ext4 filesystem being mounted at /397/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.688796][ T9105] loop1: detected capacity change from 0 to 128
[  143.738816][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.784883][ T9113] loop1: detected capacity change from 0 to 128
[  143.802600][ T9113] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  143.823704][ T9113] ext4 filesystem being mounted at /450/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.864025][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.938857][ T3312] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  144.016190][ T9128] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  144.046197][ T9135] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  144.056527][ T9135] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  144.092436][ T9131] lo speed is unknown, defaulting to 1000
[  144.133993][ T9131] lo speed is unknown, defaulting to 1000
[  144.224792][ T9151] loop4: detected capacity change from 0 to 128
[  144.246369][ T9151] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.261038][ T9151] ext4 filesystem being mounted at /353/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.399548][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  144.425131][ T9165] loop3: detected capacity change from 0 to 512
[  144.479589][ T9165] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.495877][ T9163] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  144.498182][ T9169] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9169 comm=syz.4.1958
[  144.524915][ T9165] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  144.556527][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.581561][ T9176] loop2: detected capacity change from 0 to 512
[  144.608350][ T9176] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.642839][ T9176] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  144.672857][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.775638][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  144.819176][ T9192] lo speed is unknown, defaulting to 1000
[  144.833141][ T9192] lo speed is unknown, defaulting to 1000
[  144.873005][ T9200] loop0: detected capacity change from 0 to 128
[  144.886332][ T9200] ext4 filesystem being mounted at /366/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.068105][ T9209] loop1: detected capacity change from 0 to 512
[  145.116843][ T9209] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  145.170065][ T9213] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  145.234112][ T9218] netlink: 'syz.1.1973': attribute type 8 has an invalid length.
[  145.465581][ T9231] loop4: detected capacity change from 0 to 128
[  145.481899][ T9231] ext4 filesystem being mounted at /356/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.603784][ T9240] loop1: detected capacity change from 0 to 128
[  145.614131][ T9240] EXT4-fs: Invalid journal IO priority (must be 0-7)
[  145.712176][ T9244] netlink: 'syz.1.1985': attribute type 8 has an invalid length.
[  145.733096][ T9246] loop2: detected capacity change from 0 to 128
[  145.757775][ T9246] ext4 filesystem being mounted at /383/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.815826][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  145.870322][ T9254] __nla_validate_parse: 8 callbacks suppressed
[  145.870341][ T9254] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1988'.
[  145.911837][ T9257] FAULT_INJECTION: forcing a failure.
[  145.911837][ T9257] name failslab, interval 1, probability 0, space 0, times 0
[  145.927713][ T9257] CPU: 1 UID: 0 PID: 9257 Comm: syz.4.1984 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  145.927746][ T9257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  145.927761][ T9257] Call Trace:
[  145.927767][ T9257]  <TASK>
[  145.927774][ T9257]  __dump_stack+0x1d/0x30
[  145.927795][ T9257]  dump_stack_lvl+0xe8/0x140
[  145.927813][ T9257]  dump_stack+0x15/0x1b
[  145.927886][ T9257]  should_fail_ex+0x265/0x280
[  145.927917][ T9257]  ? copy_cgroup_ns+0x162/0x380
[  145.927935][ T9257]  should_failslab+0x8c/0xb0
[  145.928018][ T9257]  __kmalloc_cache_noprof+0x4c/0x4a0
[  145.928061][ T9257]  copy_cgroup_ns+0x162/0x380
[  145.928090][ T9257]  create_new_namespaces+0x1c2/0x3d0
[  145.928127][ T9257]  unshare_nsproxy_namespaces+0xe8/0x120
[  145.928212][ T9257]  ksys_unshare+0x3d0/0x6d0
[  145.928245][ T9257]  ? ksys_write+0x192/0x1a0
[  145.928288][ T9257]  __x64_sys_unshare+0x1f/0x30
[  145.928317][ T9257]  x64_sys_call+0x2915/0x3000
[  145.928337][ T9257]  do_syscall_64+0xd2/0x200
[  145.928356][ T9257]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  145.928605][ T9257]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  145.928710][ T9257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.928734][ T9257] RIP: 0033:0x7fc006bff749
[  145.928752][ T9257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.928829][ T9257] RSP: 002b:00007fc005625038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  145.928883][ T9257] RAX: ffffffffffffffda RBX: 00007fc006e56180 RCX: 00007fc006bff749
[  145.928894][ T9257] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000062040200
[  145.928905][ T9257] RBP: 00007fc005625090 R08: 0000000000000000 R09: 0000000000000000
[  145.928916][ T9257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.928927][ T9257] R13: 00007fc006e56218 R14: 00007fc006e56180 R15: 00007ffeecee3b08
[  145.928944][ T9257]  </TASK>
[  145.949185][ T9256] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  146.146756][ T9262] loop1: detected capacity change from 0 to 512
[  146.253959][ T9268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1995'.
[  146.256721][ T9264] FAULT_INJECTION: forcing a failure.
[  146.256721][ T9264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.283848][ T9264] CPU: 1 UID: 0 PID: 9264 Comm: syz.2.1991 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.283883][ T9264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  146.283899][ T9264] Call Trace:
[  146.283908][ T9264]  <TASK>
[  146.283936][ T9264]  __dump_stack+0x1d/0x30
[  146.283958][ T9264]  dump_stack_lvl+0xe8/0x140
[  146.283978][ T9264]  dump_stack+0x15/0x1b
[  146.284069][ T9264]  should_fail_ex+0x265/0x280
[  146.284177][ T9264]  should_fail+0xb/0x20
[  146.284252][ T9264]  should_fail_usercopy+0x1a/0x20
[  146.284278][ T9264]  _copy_to_iter+0xd2/0xe70
[  146.284306][ T9264]  ? _raw_spin_unlock+0x26/0x50
[  146.284338][ T9264]  ? finish_task_switch+0xad/0x2b0
[  146.284438][ T9264]  ? __schedule+0x6b9/0xb30
[  146.284465][ T9264]  copy_page_to_iter+0x18f/0x2d0
[  146.284492][ T9264]  anon_pipe_read+0x236/0x750
[  146.284536][ T9264]  ? __pfx_autoremove_wake_function+0x10/0x10
[  146.284620][ T9264]  aio_read+0x1dd/0x2e0
[  146.284671][ T9264]  io_submit_one+0xab2/0x11d0
[  146.284739][ T9264]  __se_sys_io_submit+0xfb/0x280
[  146.284774][ T9264]  __x64_sys_io_submit+0x43/0x50
[  146.284810][ T9264]  x64_sys_call+0x2d6c/0x3000
[  146.284918][ T9264]  do_syscall_64+0xd2/0x200
[  146.284938][ T9264]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  146.284966][ T9264]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  146.285003][ T9264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.285061][ T9264] RIP: 0033:0x7f5f0d02f749
[  146.285079][ T9264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.285101][ T9264] RSP: 002b:00007f5f0ba97038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  146.285137][ T9264] RAX: ffffffffffffffda RBX: 00007f5f0d285fa0 RCX: 00007f5f0d02f749
[  146.285153][ T9264] RDX: 00002000000002c0 RSI: 000000000000fdef RDI: 00007f5f0ddc2000
[  146.285166][ T9264] RBP: 00007f5f0ba97090 R08: 0000000000000000 R09: 0000000000000000
[  146.285178][ T9264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.285189][ T9264] R13: 00007f5f0d286038 R14: 00007f5f0d285fa0 R15: 00007ffec275e238
[  146.285278][ T9264]  </TASK>
[  146.543588][ T9268] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1995'.
[  146.557441][ T9274] Driver unsupported XDP return value 0 on prog  (id 1751) dev N/A, expect packet loss!
[  146.581083][ T9262] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  146.623635][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  146.791430][ T9289] loop1: detected capacity change from 0 to 128
[  146.837828][ T9289] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.859873][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  146.897568][ T9304] loop2: detected capacity change from 0 to 256
[  146.908594][ T9303] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  146.918732][ T9303] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  146.943865][ T9292] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  146.953333][ T9292] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  146.996017][ T9304] FAT-fs (loop2): Directory bread(block 64) failed
[  147.004535][ T9304] FAT-fs (loop2): Directory bread(block 65) failed
[  147.015284][ T9304] FAT-fs (loop2): Directory bread(block 66) failed
[  147.023808][ T9304] FAT-fs (loop2): Directory bread(block 67) failed
[  147.036960][ T9304] FAT-fs (loop2): Directory bread(block 68) failed
[  147.044598][ T9304] FAT-fs (loop2): Directory bread(block 69) failed
[  147.052218][ T9304] FAT-fs (loop2): Directory bread(block 70) failed
[  147.055955][ T9316] warn_alloc: 11 callbacks suppressed
[  147.055975][ T9316] syz.4.2011: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  147.071322][ T9304] FAT-fs (loop2): Directory bread(block 71) failed
[  147.082835][ T9316] CPU: 0 UID: 0 PID: 9316 Comm: syz.4.2011 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  147.082954][ T9316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  147.082972][ T9316] Call Trace:
[  147.082980][ T9316]  <TASK>
[  147.082991][ T9316]  __dump_stack+0x1d/0x30
[  147.083044][ T9316]  dump_stack_lvl+0xe8/0x140
[  147.083150][ T9316]  dump_stack+0x15/0x1b
[  147.083176][ T9316]  warn_alloc+0x12b/0x1a0
[  147.083225][ T9316]  ? __rcu_read_unlock+0x4f/0x70
[  147.083264][ T9316]  __vmalloc_node_range_noprof+0x9d/0xed0
[  147.083320][ T9316]  ? __futex_wait+0x1fa/0x260
[  147.083409][ T9316]  ? __pfx_futex_wake_mark+0x10/0x10
[  147.083438][ T9316]  ? __rcu_read_unlock+0x4f/0x70
[  147.083475][ T9316]  ? avc_has_perm_noaudit+0x1b1/0x200
[  147.083517][ T9316]  ? should_fail_ex+0x30/0x280
[  147.083641][ T9316]  ? xskq_create+0x36/0xe0
[  147.083676][ T9316]  vmalloc_user_noprof+0x7d/0xb0
[  147.083722][ T9316]  ? xskq_create+0x80/0xe0
[  147.083803][ T9316]  xskq_create+0x80/0xe0
[  147.083837][ T9316]  xsk_init_queue+0x95/0xf0
[  147.083869][ T9316]  xsk_setsockopt+0x3f5/0x640
[  147.083898][ T9316]  ? __pfx_xsk_setsockopt+0x10/0x10
[  147.083951][ T9316]  __sys_setsockopt+0x184/0x200
[  147.083999][ T9316]  __x64_sys_setsockopt+0x64/0x80
[  147.084046][ T9316]  x64_sys_call+0x20ec/0x3000
[  147.084106][ T9316]  do_syscall_64+0xd2/0x200
[  147.084135][ T9316]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  147.084174][ T9316]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  147.084253][ T9316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.084283][ T9316] RIP: 0033:0x7fc006bff749
[  147.084327][ T9316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.084392][ T9316] RSP: 002b:00007fc005667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.084420][ T9316] RAX: ffffffffffffffda RBX: 00007fc006e55fa0 RCX: 00007fc006bff749
[  147.084439][ T9316] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  147.084455][ T9316] RBP: 00007fc006c83f91 R08: 0000000000000004 R09: 0000000000000000
[  147.084502][ T9316] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  147.084520][ T9316] R13: 00007fc006e56038 R14: 00007fc006e55fa0 R15: 00007ffeecee3b08
[  147.084587][ T9316]  </TASK>
[  147.084663][ T9316] Mem-Info:
[  147.101136][ T9304] FAT-fs (loop2): Directory bread(block 72) failed
[  147.101246][ T9316] active_anon:8579 inactive_anon:1 isolated_anon:0
[  147.101246][ T9316]  active_file:18827 inactive_file:2318 isolated_file:0
[  147.101246][ T9316]  unevictable:0 dirty:383 writeback:0
[  147.101246][ T9316]  slab_reclaimable:3290 slab_unreclaimable:30876
[  147.101246][ T9316]  mapped:29850 shmem:210 pagetables:1162
[  147.101246][ T9316]  sec_pagetables:0 bounce:0
[  147.101246][ T9316]  kernel_misc_reclaimable:0
[  147.101246][ T9316]  free:1854200 free_pcp:21796 free_cma:0
[  147.132045][ T9304] FAT-fs (loop2): Directory bread(block 73) failed
[  147.133161][ T9316] Node 0 active_anon:34316kB inactive_anon:4kB active_file:75308kB inactive_file:9272kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:119400kB dirty:1532kB writeback:0kB shmem:840kB kernel_stack:3536kB pagetables:4648kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  147.472154][ T9316] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  147.509410][ T9316] lowmem_reserve[]: 0 2881 7859 7859
[  147.516881][ T9316] Node 0 DMA32 free:2946728kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2950256kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  147.552067][ T9316] lowmem_reserve[]: 0 0 4978 4978
[  147.557789][ T9316] Node 0 Normal free:4438936kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34432kB inactive_anon:4kB active_file:75308kB inactive_file:9620kB unevictable:0kB writepending:1532kB zspages:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:97764kB local_pcp:50712kB free_cma:0kB
[  147.596864][ T9316] lowmem_reserve[]: 0 0 0 0
[  147.603102][ T9316] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  147.618801][ T9316] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 2*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2946728kB
[  147.638653][ T9316] Node 0 Normal: 593*4kB (M) 366*8kB (UME) 115*16kB (M) 243*32kB (UME) 74*64kB (UME) 35*128kB (UM) 9*256kB (UM) 2*512kB (M) 6*1024kB (UM) 3*2048kB (UM) 1074*4096kB (UM) = 4438852kB
[  147.662291][ T9316] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  147.672658][ T9316] 21436 total pagecache pages
[  147.678175][ T9316] 2 pages in swap cache
[  147.683502][ T9316] Free swap  = 124988kB
[  147.688125][ T9316] Total swap = 124996kB
[  147.692823][ T9316] 2097051 pages RAM
[  147.697058][ T9316] 0 pages HighMem/MovableOnly
[  147.702163][ T9316] 81087 pages reserved
[  147.830429][ T9339] loop3: detected capacity change from 0 to 512
[  147.848049][ T6346] Bluetooth: hci0: Frame reassembly failed (-84)
[  147.857485][ T9339] ext4 filesystem being mounted at /420/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.895517][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  147.963724][ T9349] loop0: detected capacity change from 0 to 128
[  147.979317][ T9349] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  148.050575][ T9352] loop0: detected capacity change from 0 to 128
[  148.081629][ T9355] siw: device registration error -23
[  148.089535][ T9357] loop3: detected capacity change from 0 to 128
[  148.102758][ T9357] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  148.130885][ T9359] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2026'.
[  148.143888][ T9359] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2026'.
[  148.156250][ T9359] netlink: 'syz.0.2026': attribute type 1 has an invalid length.
[  148.166355][ T9359] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2026'.
[  148.201453][ T9362] loop3: detected capacity change from 0 to 512
[  148.258561][ T9362] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  148.317792][ T9377] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9377 comm=syz.0.2032
[  148.333895][ T9377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2032'.
[  148.368121][ T9379] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  148.388090][   T29] kauditd_printk_skb: 533 callbacks suppressed
[  148.388108][   T29] audit: type=1326 audit(1764102889.336:17205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.427368][ T9381] loop1: detected capacity change from 0 to 128
[  148.433651][   T29] audit: type=1326 audit(1764102889.356:17206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.468005][   T29] audit: type=1326 audit(1764102889.356:17207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.497290][   T29] audit: type=1326 audit(1764102889.356:17208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.527593][   T29] audit: type=1326 audit(1764102889.356:17209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.557482][   T29] audit: type=1326 audit(1764102889.356:17210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.563587][ T9381] ext4 filesystem being mounted at /472/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.586115][   T29] audit: type=1326 audit(1764102889.356:17211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff0dbdcf749 code=0x7ffc0000
[  148.629104][   T29] audit: type=1326 audit(1764102889.356:17212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff0dbdcf783 code=0x7ffc0000
[  148.656986][   T29] audit: type=1326 audit(1764102889.356:17213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff0dbdce1ff code=0x7ffc0000
[  148.683717][   T29] audit: type=1326 audit(1764102889.356:17214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9380 comm="syz.1.2034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff0dbdcf7d7 code=0x7ffc0000
[  148.831276][ T9396] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  148.893250][ T9399] loop3: detected capacity change from 0 to 8192
[  148.936178][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.015851][ T9404] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  149.186843][ T9419] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  149.248868][ T9422] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  149.309441][ T9430] loop2: detected capacity change from 0 to 128
[  149.327118][ T9430] ext4 filesystem being mounted at /396/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.359972][ T9435] siw: device registration error -23
[  149.390757][ T9432] lo speed is unknown, defaulting to 1000
[  149.398137][ T9432] lo speed is unknown, defaulting to 1000
[  149.544335][ T9451] loop0: detected capacity change from 0 to 8192
[  149.721511][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.866223][ T9464] loop3: detected capacity change from 0 to 256
[  149.903402][ T9464] FAT-fs (loop3): Directory bread(block 64) failed
[  149.903435][ T3516] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  149.911135][ T9464] FAT-fs (loop3): Directory bread(block 65) failed
[  149.911185][ T9464] FAT-fs (loop3): Directory bread(block 66) failed
[  149.918302][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  149.946262][ T9464] FAT-fs (loop3): Directory bread(block 67) failed
[  149.955397][ T9464] FAT-fs (loop3): Directory bread(block 68) failed
[  149.963101][ T9464] FAT-fs (loop3): Directory bread(block 69) failed
[  149.972259][ T9464] FAT-fs (loop3): Directory bread(block 70) failed
[  149.981783][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  149.991326][ T9464] FAT-fs (loop3): Directory bread(block 71) failed
[  149.999094][ T9464] FAT-fs (loop3): Directory bread(block 72) failed
[  150.029277][ T9464] FAT-fs (loop3): Directory bread(block 73) failed
[  150.345198][ T9478] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2070'.
[  150.356423][ T9478] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2070'.
[  150.370558][ T9478] netlink: 'syz.2.2070': attribute type 1 has an invalid length.
[  150.380261][ T9478] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2070'.
[  150.507428][ T9484] lo speed is unknown, defaulting to 1000
[  150.524242][ T9484] lo speed is unknown, defaulting to 1000
[  150.646568][ T9494] loop4: detected capacity change from 0 to 128
[  150.660771][ T9494] ext4 filesystem being mounted at /368/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.780816][ T9501] loop4: detected capacity change from 0 to 256
[  150.799208][ T9501] FAT-fs (loop4): Directory bread(block 64) failed
[  150.807273][ T9501] FAT-fs (loop4): Directory bread(block 65) failed
[  150.816916][ T9501] FAT-fs (loop4): Directory bread(block 66) failed
[  150.826251][ T9501] FAT-fs (loop4): Directory bread(block 67) failed
[  150.842442][ T9501] FAT-fs (loop4): Directory bread(block 68) failed
[  150.857337][ T9503] loop2: detected capacity change from 0 to 128
[  150.858335][ T9501] FAT-fs (loop4): Directory bread(block 69) failed
[  150.866539][ T9503] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.875990][ T9501] FAT-fs (loop4): Directory bread(block 70) failed
[  150.894582][ T9501] FAT-fs (loop4): Directory bread(block 71) failed
[  150.903679][ T9501] FAT-fs (loop4): Directory bread(block 72) failed
[  150.912100][ T9501] FAT-fs (loop4): Directory bread(block 73) failed
[  150.941566][ T9505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=9505 comm=syz.2.2079
[  150.956369][ T9505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=9505 comm=syz.2.2079
[  150.972286][ T9505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=9505 comm=syz.2.2079
[  150.987767][ T9505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=9505 comm=syz.2.2079
[  151.015815][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  151.235098][ T9527] loop0: detected capacity change from 0 to 128
[  151.272698][ T9527] ext4 filesystem being mounted at /392/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.407942][ T9538] loop1: detected capacity change from 0 to 512
[  151.416638][ T9538] EXT4-fs: inline encryption not supported
[  151.434128][ T9538] EXT4-fs (loop1): Number of reserved GDT blocks insanely large: 935
[  151.616741][ T9544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2584 sclass=netlink_route_socket pid=9544 comm=syz.0.2092
[  151.633531][ T9544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=9544 comm=syz.0.2092
[  151.650163][ T9544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2565 sclass=netlink_route_socket pid=9544 comm=syz.0.2092
[  151.665746][ T9544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=9544 comm=syz.0.2092
[  151.689058][ T9546] lo speed is unknown, defaulting to 1000
[  151.698524][ T9546] lo speed is unknown, defaulting to 1000
[  151.754406][ T9541] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  151.833210][ T9552] loop3: detected capacity change from 0 to 512
[  151.868216][ T9555] loop0: detected capacity change from 0 to 128
[  151.877404][ T9552] ext4 filesystem being mounted at /436/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.935450][ T9559] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2098'.
[  152.056114][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  152.070460][ T9567] loop0: detected capacity change from 0 to 512
[  152.107066][ T9569] loop3: detected capacity change from 0 to 128
[  152.135404][ T9567] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  152.145955][ T9569] ext4 filesystem being mounted at /437/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.274881][ T9587] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  152.334696][ T9589] loop1: detected capacity change from 0 to 128
[  152.446630][ T9594] loop4: detected capacity change from 0 to 8192
[  152.708452][ T9614] loop1: detected capacity change from 0 to 128
[  152.730490][ T9614] ext4 filesystem being mounted at /490/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.760134][ T9616] loop0: detected capacity change from 0 to 8192
[  152.783712][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  153.025330][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  153.059872][ T9630] lo speed is unknown, defaulting to 1000
[  153.069892][ T9630] lo speed is unknown, defaulting to 1000
[  153.095683][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  153.147753][ T9636] loop0: detected capacity change from 0 to 8192
[  153.169193][ T3306] ==================================================================
[  153.179102][ T3306] BUG: KCSAN: data-race in _copy_to_iter / fat16_ent_put
[  153.187302][ T3306] 
[  153.189660][ T3306] write to 0xffff88811a944f16 of 2 bytes by task 9636 on cpu 1:
[  153.202056][ T3306]  fat16_ent_put+0x28/0x60
[  153.207485][ T3306]  fat_alloc_clusters+0x4d1/0xa80
[  153.214643][ T3306]  fat_get_block+0x258/0x5e0
[  153.220541][ T3306]  __block_write_begin_int+0x400/0xf90
[  153.227792][ T3306]  cont_write_begin+0x5fc/0x970
[  153.233669][ T3306]  fat_write_begin+0x4f/0xe0
[  153.239523][ T3306]  cont_write_begin+0x1b0/0x970
[  153.246184][ T3306]  fat_write_begin+0x4f/0xe0
[  153.251611][ T3306]  generic_cont_expand_simple+0xb0/0x150
[  153.258723][ T3306]  fat_cont_expand+0x3e/0x170
[  153.264599][ T3306]  fat_fallocate+0x177/0x1c0
[  153.270369][ T3306]  vfs_fallocate+0x3b6/0x400
[  153.276194][ T3306]  __x64_sys_fallocate+0x7a/0xd0
[  153.281788][ T3306]  x64_sys_call+0x2518/0x3000
[  153.286863][ T3306]  do_syscall_64+0xd2/0x200
[  153.293472][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.300609][ T3306] 
[  153.304645][ T3306] read to 0xffff88811a944e00 of 512 bytes by task 3306 on cpu 0:
[  153.314079][ T3306]  _copy_to_iter+0x130/0xe70
[  153.320158][ T3306]  copy_page_to_iter+0x18f/0x2d0
[  153.327341][ T3306]  filemap_read+0x407/0xa00
[  153.332857][ T3306]  blkdev_read_iter+0x22d/0x2e0
[  153.338290][ T3306]  vfs_read+0x64c/0x770
[  153.344307][ T3306]  ksys_read+0xda/0x1a0
[  153.349264][ T3306]  __x64_sys_read+0x40/0x50
[  153.355417][ T3306]  x64_sys_call+0x27c0/0x3000
[  153.361790][ T3306]  do_syscall_64+0xd2/0x200
[  153.366501][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.374270][ T3306] 
[  153.377361][ T3306] Reported by Kernel Concurrency Sanitizer on:
[  153.385797][ T3306] CPU: 0 UID: 0 PID: 3306 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  153.397621][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  153.412468][ T3306] ==================================================================
[  153.423821][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  153.431874][ T3516] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  154.135436][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  155.175382][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  155.813646][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  156.215349][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.255442][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  157.493680][ T3401] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  158.295532][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  159.335759][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  160.375230][ T3639] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  160.543567][ T1031] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  161.415701][   T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  162.455543][ T3376] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  162.616627][ T3388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog