last executing test programs:

1m28.145079313s ago: executing program 1 (id=1584):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) (async)
socket(0x400000000010, 0x3, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x14, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x3dff}]}, 0x14}], 0x1, 0x0, 0x0, 0xfffffffd}, 0x0) (async)
perf_event_open(&(0x7f0000000500)={0x4, 0x80, 0x65, 0x9, 0x0, 0x0, 0x0, 0x210e, 0xc0002, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b80, 0x2, @perf_bp={0x0, 0xf}, 0x14105, 0x32, 0xfffffbff, 0x2, 0x4c98, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0xb) (async)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) (async)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000017c0)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x33fe0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000240)={[{@errors_remount}, {@noinit_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@errors_remount}, {@block_validity}, {@grpjquota}]}, 0x3, 0x45b, &(0x7f00000010c0)="$eJzs281rHOUfAPDvTJL217dfYq0vfVGjVQy+JE1atQcvioIHBcFLPcYkLbXbRpoIthStIvUoBcGjeBT8CzzpRdST4FXvUijSi9XTyuzOdF+6u0nTTabNfj4w2eeZeWbn+c4zz+4z82QDGFjj2Z8kYmdE/B4Ro/Vsa4Hx+sv1axfm/rl2YS6JavWtv5Jaub+vXZgrihb77cgzE2lE+mkS+zscd+nc+VOzlcrC2Tw/tXz6vamlc+efPXl69sTCiYUzM0ePHjk8/cLzM8/1Jc57srru+3DxwN7X3r78xtyxy+/8/G1SxN8WR5+M99r4RLXa58OVa1dTOhlexQ5D61gZVi1rhqy5Rmr9fzSGotF4o/HqJ6VWDlhX1VyXzRerwCaWRNk1AMpRfNFn97/FsnGjj/Jdfal+A5TFfT1f6luGI83LjLTd3/bTeEQcu/jvV9kS6/McAgCgxffZ+OeZTuO/NO5vKvf/2FqbGxrL51J2R8S9EbEnIu6LqJV9ICIe7HSQHhMC7ZMkN49/0itrj25l2fjvxXxuq3X8V4z+Ymwoz+2qxT+SHD9ZWThUOycREzGyNctP9zjGD6/89nm3bc3jv2zJjl+MBfN6XBne2rrP/Ozy7O3E3OzqxxH7hjvFn9yYCUgiYm9E7FvjMU4+9c2BbttWjr+H1cwzraD6dcST9fa/GG3xF5Le85NT/4vKwqGp4qq42S+/Xnqz2/FvK/4+yNp/e8fr/0b8Y0nzfO3Srbx7vXdf+uOzrvc0k2u6/hsrtuSvH8wuL5+djtiSvF6vdPP6mca+Rb4on8U/cbBz/98djTOxPyKyi/ihiHg4Ih7Jo3s0Ih6LiIM9zsJPLz/+bq8zVHb7z7e1/1hrkbb2byS2RPuazomhUz9+1/qOjeTqPv+O1FIT+Zra59+XveNaTb1u9WoGAACAu1UaETsjSSdvpNN0crL+P/x7YntaWVxafvr44vtn5uu/ERiLkbR40jXa9Dx0Or+tL/IzbfnD+XPjL4a21fKTc4uV+bKDhwG3o0v/z/zpNxqw+fVhHg24S+n/MLj0fxhc+j8Mrg79f1sZ9QA2Xqfv/49KqAew8dr6v2k/GCDu/2Fw6f8wuJr7f1JiPYANtbQtVv6R/GZIVKvV6h1Qjc2TiPSOqEZ/Esk694KdZQd464myP5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD6478AAAD//+Jk61o=") (async)
chdir(&(0x7f00000001c0)='./file0\x00') (async)
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000540)={0x0, 0x0, <r3=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYRESOCT=r3, @ANYRESOCT=r3, @ANYRES32=0x0], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async)
uname(&(0x7f0000000180)=""/224) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x10000000, 0x0, 0x0, 0x0, 0x7d, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000003640)='kfree\x00', r4, 0x0, 0x400}, 0x18)
pipe2(&(0x7f0000001cc0), 0x800) (async)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10) (async)
socket$packet(0x11, 0x2, 0x300) (async)
setsockopt$inet_tcp_TLS_TX(r5, 0x6, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f1a0f9fff9e440b4", "881aae83544dfa6412f91b9057e3f415", "9dca43b6", "9ecb592c6ee49fbd"}, 0x28)

1m28.093000437s ago: executing program 1 (id=1586):
creat(&(0x7f00000000c0)='./file0\x00', 0xce)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0xfffffffd, 0x0, 0x8}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0xa)
syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x18eb029, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffffff}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x90}, 0x20000000)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCSETSW2(r2, 0x5408, &(0x7f0000000040)={0x300, 0x0, 0x0, 0xfffffffe, 0x0, "2cf155f1d8b4d0441f0246e09537aa82dc1ecf", 0x2})
ioctl$TIOCGPGRP(r2, 0x5437, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@access_uid}], [], 0x6b}})
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x80000, 0xa, 0x2}, 0x18)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

1m27.738745445s ago: executing program 1 (id=1591):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="64000000abefc33512fdc87c722667b6bf7e0a77eadc03fc3b241166a85de066f9dd66abb7753495f757f6a793e18c3eab8d02cd80816efd3e275bea8c09b1869c8b91ab480a85a1e2967a2e9629e2ea16590e233da3b43837bc0e2fb25b5d5029829ceee20d79ea7e7416d930ff879b9e1c3c46b6972b94f7892309c675f03a8e5f0ce5bed08a154a2846cb7b599512c65ffafe21c9fafea53677acef83c05f0e4d945d78", @ANYRES16=r1, @ANYBLOB="030f0000000000000000070000005000028008000200bd14000004000400040004003c000380080001000000000008000100820b0000080001000e00000008000100283a0000080001007500000008000200840500000800020009000000"], 0x64}}, 0x0)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r3 = dup(r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSSOFTCAR(r4, 0x5433, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x40680)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r7, 0x4058534c, &(0x7f0000001140)={0x80, 0x1, 0x7d0})
ioctl$PTP_PIN_SETFUNC2(r3, 0x80503d0a, 0x0)

1m27.652611992s ago: executing program 1 (id=1594):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x20010, r1, 0x19bb000)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x40, 0x9, 0x1, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088028000c800c000b8008000a00000000000c000b80080009"], 0x54}}, 0x0)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
request_key(0x0, 0x0, 0x0, 0x0)

1m27.610293076s ago: executing program 1 (id=1595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1a}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000640)={0x14, 0x0, 0x1, 0x0, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x141}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, 0x0, 0x20008080)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, 0x0, &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

1m26.712544948s ago: executing program 1 (id=1599):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0) (fail_nth: 10)

1m26.68304958s ago: executing program 32 (id=1599):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0) (fail_nth: 10)

1m16.767704464s ago: executing program 2 (id=1665):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000002300)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r3, 0x18000000000002a0, 0x7, 0x0, &(0x7f0000000780)="b9ff0500000000", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffffc1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r3, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0], <r5=>0x0, 0x17, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x8b, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x40000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, r4, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6}, 0x10)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents(r7, &(0x7f0000000680)=""/243, 0xf3)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r8}, 0x10)
unshare(0x40020200)

1m13.872381046s ago: executing program 2 (id=1675):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x48, &(0x7f0000000140)={0x8, 0x7, '\x00', [@hao={0xc9, 0x10, @loopback}, @calipso={0x7, 0x28, {0x0, 0x8, 0x1, 0x4, [0x4, 0x7, 0x200000000002, 0x400000000000006]}}]}, 0x48)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = fcntl$dupfd(r3, 0x406, r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1e0000000c000000000000800000000020000100", @ANYRES32, @ANYBLOB="07000000000000000000002000000000000000000743dab81923dea2730f235a2b356e285fca7f586b0241bae9ae682e085049fdc09d7aa5a8834ed885", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000002000000050000008000"/24, @ANYRES32=r4, @ANYBLOB], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x20, 0x7ffc0002}]})
process_mrelease(0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f00000002c0)=0x2)
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r7)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000001200000008000800000000000800090000000100180001801400020076657468305f746f5f626f6e640000000800090080000000080006"], 0x4c}}, 0x0)
r9 = memfd_secret(0x80000)
fcntl$setlease(r9, 0x400, 0x0)
close(r9)
sendfile(r7, r9, 0x0, 0x10000)
ioctl$sock_bt_hidp_HIDPCONNADD(r6, 0x400448c8, &(0x7f0000000340)={r1, r1, 0x6e00, 0x79, &(0x7f0000000040)="8b69931bd62f99b595efbca0afec622ba859e8706e417d10025f3b4c5e11b262d7a8ad6524ffab6aa14b8821cbce36d0c5475df358be7e4a3a41f4df02762aedadef8fcfb3e5fb5eb5b1afabe82c3e4286cbaa50883523f872061a3f04d94a6ed2405a82ba3009dfcd468ca9a515d97d5e6c8f2e23dbcf4daf", 0x6, 0x0, 0xa, 0x5, 0x6, 0x2, 0x3, 'syz1\x00'})

1m13.797484602s ago: executing program 2 (id=1678):
creat(&(0x7f00000000c0)='./file0\x00', 0xce)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0xfffffffd, 0x0, 0x8}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0xa)
pipe2$9p(0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x2004000, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[], 0x15)
r1 = dup(r0)
write$P9_RLERRORu(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r1, &(0x7f0000000340)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)

1m13.778450573s ago: executing program 2 (id=1679):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x80000001}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3a95004, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r2, &(0x7f0000000340)={0x2, 0xfffb, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0x8, &(0x7f00000000c0)=0xb1e0, 0x4)
r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000a00)=ANY=[@ANYBLOB="0a000000c0000000b30000007f"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180800009b0000000000000000000010851000000600000018180000", @ANYRES32=r3, @ANYBLOB="0000000000000000660000007fffffff18000000f8ffffff00000000100000009500000000000000360a00000000000018010000202078250000000000202020db1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000a00000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa}, 0x94)

1m13.680806621s ago: executing program 2 (id=1680):
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r0, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x102}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x101}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xffffffff}]}, 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42040, 0x0)
close(r1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

1m13.296587372s ago: executing program 2 (id=1683):
creat(&(0x7f00000000c0)='./file0\x00', 0xce)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0xfffffffd, 0x0, 0x8}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0xa)
syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x18eb029, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffffff}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x90}, 0x20000000)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCSETSW2(r3, 0x5408, &(0x7f0000000040)={0x300, 0x0, 0x0, 0xfffffffe, 0x0, "2cf155f1d8b4d0441f0246e09537aa82dc1ecf", 0x2})
ioctl$TIOCGPGRP(r3, 0x5437, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid}], [], 0x6b}})
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x80000, 0xa, 0x2}, 0x18)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[], 0x15)
r6 = dup(r5)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])

1m13.296068552s ago: executing program 33 (id=1683):
creat(&(0x7f00000000c0)='./file0\x00', 0xce)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0xfffffffd, 0x0, 0x8}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0xa)
syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x18eb029, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_ADT={0x4}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffffff}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x90}, 0x20000000)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCSETSW2(r3, 0x5408, &(0x7f0000000040)={0x300, 0x0, 0x0, 0xfffffffe, 0x0, "2cf155f1d8b4d0441f0246e09537aa82dc1ecf", 0x2})
ioctl$TIOCGPGRP(r3, 0x5437, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid}], [], 0x6b}})
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x80000, 0xa, 0x2}, 0x18)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[], 0x15)
r6 = dup(r5)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])

3.184180016s ago: executing program 5 (id=2318):
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$vcsa(0xffffffffffffff9c, 0x0, 0xd81c0, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f00000005c0)=[{&(0x7f0000001cc0)="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", 0x341}], 0x1, 0x0)
fcntl$setpipe(r0, 0x407, 0x6)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
io_uring_setup(0x5d99, &(0x7f0000000340)={0x0, 0x2537, 0x2, 0x3, 0x41})
syz_emit_ethernet(0x9a, &(0x7f0000000180)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa86dd6001070000641100fc010000000000000000000000000000ff02000000000000000000000000000100000e2200649078020000000200000001000000bb577147f8c63bab95cc025f2c123662d48c6e01d8630bf2addfd0edf624317d8ab859c3d9fe9a2f9edb8e36339e135d1f142a168a75d33e838bef40d2fcff6cb8d91538c6c53fafd6fea68a0e336124"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000580)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x57, 0x7fc00100}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000740)={<r3=>0x0})
r4 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x10, 0x1, 0x40000334}, &(0x7f00000006c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r4, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f00000000c0)={r3})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000003c0))
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r7, 0x400448cb, 0x0)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
epoll_create1(0x80000)

2.893416489s ago: executing program 0 (id=2320):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080), 0x6, 0x5fc, &(0x7f0000000c00)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
r4 = socket$rds(0x15, 0x5, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x22000a0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r0, 0x0, 0x3ffff)
sendfile(r5, r0, 0x0, 0x7ffff000)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

2.49833401s ago: executing program 3 (id=2322):
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000000)='./bus\x00', 0x4800, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x6c, 0x5, &(0x7f0000000080)="39be4cdae2a1fd55dfe73d83c272aaa249a28017598ce6b0ec50f60268d65b31a616d4da4002198663390b4f1f50d7ceae742bedaca3bbdce804845fca2017ef12986e7db8997760dcdef90e120552df1ecf9c90cc4e902cf4566a7367d54979bdce4c0c01cff9a3e2dac279", &(0x7f0000000140)=""/5, 0x8, 0x0, 0x8e, 0xce, &(0x7f0000000200)="ef12eb7f3dd1f42dbb96f1c70e4e0e97b4f8ec55d5e5dea13a3e598e4a5193233ba89bdfa63e4d051fd10f019ce1503cecb4269ca4375e5ba01f940a7175c73a348f478d4021dbcdba2b5ec3d612e73f153323ca1828ccee441a9cfd1171091056ff54bb7e9d137f465e1defcbf9d0425b02110f1cbb10757fe4e8443c28b67e2932d6cee83d11b43cc00caceed9", &(0x7f00000002c0)="e84ba6d8df6b7b1d4c2170e6b045e9a62b4ab89184106630574fa3d590c6963c8c4c5e9e799bc6019317f7b0ff5db8f060b56201cc10bde0b991da4c70015817dcd9c190a6927c25627c94eaba089e9af21eceaea4e016fd4ece2e42074b38071d96ea50769621551383074e813a409561183226a53969a4a9605f6d83c7633da7ab88795b89188290d254567773ad267cfb604a9fdbae31b92f3d5a60e309c749824a4ac8f84aef10beead4da25d4b555560bc0f7d84afe16144ad94f23d4eb535b114c05fa01a38a7ef733dcc1", 0x6, 0x0, 0x4}, 0x50)
write(0xffffffffffffffff, &(0x7f00000009c0)="3bf58d7d45d32c", 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00'}, 0x10)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

2.466051533s ago: executing program 4 (id=2323):
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x20008004)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
bind$llc(r0, &(0x7f00000001c0)={0x1a, 0x13, 0xa, 0x0, 0x6, 0xd, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
r1 = perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4000, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x162, &(0x7f0000000200)="$eJzs20GrElEUB/DjPHu+avPW0WKgTSupVi2LeEE0UBQualXwaqMh5GZq5UfpCwbhyt2NHNMSRYLmjTi/38aDf5Rz0ZnDHbjvbn8aXo4nH8cvZ3HW6UT3UeQxjziPLE6iMg0A4JjMU4ofqbeY8te/RUqp6Y4AgLpV8z+l1DP/AaAt9s7/hw01BgDUxv4fANrn9Zu3zx8XxcWrPD+L+D4tB+Wgeq3yp8+Ki3v5wvn6U7OyHJys8vtVnv+dX4sby/zB1vw07t6p8l/ZkxfFRn4zLutfPgAAALRCP1/Zur/v93flVfXH84GN/Xs3bnWvbBkAwD+YfPk6fD8affisOPYi2/dz95b/ieZbXRfZYbTRwqLhGxNQu/VF33QnAAAAAAAAAAAAAADALv/nzNDp8tt+v9OJyJwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HD9DAAA///le0TQ")

2.425262556s ago: executing program 3 (id=2324):
bpf$MAP_CREATE(0x0, &(0x7f0000001300)=ANY=[@ANYRESDEC=0x0], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000000e80)=@id={0x1e, 0x3, 0x3, {0x4e21, 0x4}}, 0x10, &(0x7f0000001140)=[{&(0x7f0000000ec0)="364e32109120dbdfc3761ddc84c6dd582a517af007980c717daa3f1dc643829fe11e251e", 0x24}, {&(0x7f0000001800)="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", 0x1000}, {&(0x7f0000000f00)="eea06cfc8afab149700a0d822f89b8e35a64172205636fef8b92", 0x1a}, {&(0x7f0000000f40)="8e2434526d5eab0d51d93a387751065f5040a864696c930ae11db2a37f397bf654917f28e29d14e27639c0b8f62935ac7601aa05cd9068f21bdd1630eb84a6077d4066e87e346357933e6dff4873c967fdd29fe4b7778732c298748fd75fdb51b2747f8ea6ac41039897432c601061818c27fd02d3d5524e939eaa0e3e4958a55bc4d0fb8df9ebb60289709f2c593b6eff70c0ce3b4a9b896cb731139a255bacb14fb6e4a03a35f0696b7cef581a8f5f24bf69ef400d93ad6d53eadddc25b59daff77be0a8ad5cd689ec5635ec", 0xcd}, {&(0x7f0000001040)="0b5af5f510d9173fc5d5bffd301daa97921eeb7dadb7e587d2802a8c3b3c6c6e4419b45c96333d6f25766b9175d57ffe9e54581db71abed1f4d67858a0a7cf19795b99734a9f0caef3d751199d6a51ded2267586e3fae6576d6dc8567a0c3676bf7a6d22c5e152550927669f987c490273906f98cda9d5f7b573ab1c22de9b9dc8e53a88669a11b7cf758b611051f37892d59333284782470ed25ea3bcbb7ec6ce128f3a3efb4ad307f9d0f64e7fc29b56f1edd79c802376c446e1202281851cb6ab1f132590be83c2ede68f0b105bb81b54548f26928e956014", 0xda}], 0x5, &(0x7f00000011c0)="40367d13cf550e45cf442d7300c393330ae5af6424e4ff3d35bf22116e4585b31c5547ed94958243bca31b5498928a1bf65ed217de47dcee336c9e766a874b2b1523665bbcf2cd2a6d443664e5f9c3f433dc38fd2a7b8d8f7e7e8360bc50aa702420c10bb5ed64fbe30aef1ebc5737e2560b7b0f8c93176dc66edb2402f38d0c41c5fc0b870e34d6cbcc50a21011db80afc8b0d9690d8ec26c4c07529870ad1bacd2ba57ead3b0efae3867a5ff3db4b8ab", 0xb1, 0x4004041}, 0x24000000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4, <r5=>0xffffffffffffffff}, 0x4)
dup2(r4, r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500009dcb573220207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000a500000008000000950000000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x400000000010, 0x3, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYRES16=0x0], &(0x7f0000000100)='GPL\x00', 0xd2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000080)='sched_switch\x00', r8, 0x0, 0x2}, 0x18)
syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r9=>0x0, &(0x7f0000000280))
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRES32=r8], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5780ea097114901e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000bc0)='f2fs_truncate_data_blocks_range\x00', r10, 0x0, 0xfffffffffffffffc}, 0x18)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000300)=<r11=>0x0)
syz_open_procfs(r11, &(0x7f0000000340)='environ\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
pipe2(&(0x7f0000000c40), 0x4800)

2.351305242s ago: executing program 3 (id=2325):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000280)={'wg2\x00'})
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

2.340763183s ago: executing program 4 (id=2326):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080), 0x6, 0x5fc, &(0x7f0000000c00)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
r3 = socket$rds(0x15, 0x5, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x22000a0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f0000004200)='t', 0x1)
sendfile(r4, r0, 0x0, 0x3ffff)
sendfile(r4, r0, 0x0, 0x7ffff000)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

2.273150868s ago: executing program 3 (id=2327):
mount_setattr(0xffffffffffffffff, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000001dc0)={0x0, 0x0, 0x80000}, 0x20)

2.243800811s ago: executing program 5 (id=2328):
futex(0x0, 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080), 0x6, 0x5fc, &(0x7f0000000c00)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
socket$rds(0x15, 0x5, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x22000a0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)

2.238913141s ago: executing program 3 (id=2329):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0xda08, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioperm(0x3c, 0x1, 0x8)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_clone(0x3002500, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000080))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r3, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)

2.00855887s ago: executing program 6 (id=2332):
r0 = syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$cont(0x19, r0, 0x20000000d, 0x7)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x437, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r5, 0x5120b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)
sendmmsg$inet(r3, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r6, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
r7 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r7, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)

1.978058292s ago: executing program 0 (id=2333):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x48, &(0x7f0000000140)={0x8}, 0x8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = fcntl$dupfd(r3, 0x406, r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1e0000000c000000000000800000000020000100", @ANYRES32, @ANYBLOB="07000000000000000000002000000000000000000743dab81923dea2730f235a2b356e285fca7f586b0241bae9ae682e085049fdc09d7aa5a8834ed885", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000002000000050000008000"/24, @ANYRES32=r4, @ANYBLOB], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
process_mrelease(0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f00000002c0)=0x2)
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000001200000008000800000000000800090000000100180001801400020076657468305f746f5f626f6e640000000800090080000000080006"], 0x4c}}, 0x0)
r8 = memfd_secret(0x80000)
fcntl$setlease(r8, 0x400, 0x0)
close(r8)
sendfile(0xffffffffffffffff, r8, 0x0, 0x10000)
ioctl$sock_bt_hidp_HIDPCONNADD(r6, 0x400448c8, &(0x7f0000000340)={r1, r1, 0x6e00, 0x79, &(0x7f0000000040)="8b69931bd62f99b595efbca0afec622ba859e8706e417d10025f3b4c5e11b262d7a8ad6524ffab6aa14b8821cbce36d0c5475df358be7e4a3a41f4df02762aedadef8fcfb3e5fb5eb5b1afabe82c3e4286cbaa50883523f872061a3f04d94a6ed2405a82ba3009dfcd468ca9a515d97d5e6c8f2e23dbcf4daf", 0x6, 0x0, 0xa, 0x5, 0x6, 0x2, 0x3, 'syz1\x00'})

1.912529437s ago: executing program 6 (id=2334):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000a00)=[{{&(0x7f0000000240)={0xa, 0x4e20, 0xc52, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4}, 0x1c, &(0x7f0000000200)=[{0x0}], 0x1}}], 0x1, 0x4000881)
listen(r0, 0x2000fff)
accept(r0, 0xfffffffffffffffd, 0x0)

1.899776128s ago: executing program 5 (id=2335):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080), 0x6, 0x5fc, &(0x7f0000000c00)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
r4 = socket$rds(0x15, 0x5, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x22000a0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r0, 0x0, 0x3ffff)
sendfile(r5, r0, 0x0, 0x7ffff000)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
futex(&(0x7f000000cffc)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

1.87345804s ago: executing program 0 (id=2336):
bpf$MAP_CREATE(0x0, &(0x7f0000001300)=ANY=[@ANYRESDEC=0x0], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000000e80)=@id={0x1e, 0x3, 0x3, {0x4e21, 0x4}}, 0x10, &(0x7f0000001140)=[{&(0x7f0000000ec0)="364e32109120dbdfc3761ddc84c6dd582a517af007980c717daa3f1dc643829fe11e251e", 0x24}, {&(0x7f0000001800)="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", 0x1000}, {&(0x7f0000000f00)="eea06cfc8afab149700a0d822f89b8e35a64172205636fef8b92", 0x1a}, {&(0x7f0000000f40)="8e2434526d5eab0d51d93a387751065f5040a864696c930ae11db2a37f397bf654917f28e29d14e27639c0b8f62935ac7601aa05cd9068f21bdd1630eb84a6077d4066e87e346357933e6dff4873c967fdd29fe4b7778732c298748fd75fdb51b2747f8ea6ac41039897432c601061818c27fd02d3d5524e939eaa0e3e4958a55bc4d0fb8df9ebb60289709f2c593b6eff70c0ce3b4a9b896cb731139a255bacb14fb6e4a03a35f0696b7cef581a8f5f24bf69ef400d93ad6d53eadddc25b59daff77be0a8ad5cd689ec5635ec", 0xcd}, {&(0x7f0000001040)="0b5af5f510d9173fc5d5bffd301daa97921eeb7dadb7e587d2802a8c3b3c6c6e4419b45c96333d6f25766b9175d57ffe9e54581db71abed1f4d67858a0a7cf19795b99734a9f0caef3d751199d6a51ded2267586e3fae6576d6dc8567a0c3676bf7a6d22c5e152550927669f987c490273906f98cda9d5f7b573ab1c22de9b9dc8e53a88669a11b7cf758b611051f37892d59333284782470ed25ea3bcbb7ec6ce128f3a3efb4ad307f9d0f64e7fc29b56f1edd79c802376c446e1202281851cb6ab1f132590be83c2ede68f0b105bb81b54548f26928e956014", 0xda}], 0x5, &(0x7f00000011c0)="40367d13cf550e45cf442d7300c393330ae5af6424e4ff3d35bf22116e4585b31c5547ed94958243bca31b5498928a1bf65ed217de47dcee336c9e766a874b2b1523665bbcf2cd2a6d443664e5f9c3f433dc38fd2a7b8d8f7e7e8360bc50aa702420c10bb5ed64fbe30aef1ebc5737e2560b7b0f8c93176dc66edb2402f38d0c41c5fc0b870e34d6cbcc50a21011db80afc8b0d9690d8ec26c4c07529870ad1bacd2ba57ead3b0efae3867a5ff3db4b8ab", 0xb1, 0x4004041}, 0x24000000)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4, <r5=>0xffffffffffffffff}, 0x4)
dup2(r4, r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500009dcb573220207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000a500000008000000950000000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x400000000010, 0x3, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYRES16=0x0], &(0x7f0000000100)='GPL\x00', 0xd2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000080)='sched_switch\x00', r8, 0x0, 0x2}, 0x18)
syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r9=>0x0, &(0x7f0000000280))
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRES32=r8], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5780ea097114901e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000bc0)='f2fs_truncate_data_blocks_range\x00', r10, 0x0, 0xfffffffffffffffc}, 0x18)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='mpol=interleave,mpol=local'])
open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x101042, 0x1)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000300)=<r11=>0x0)
syz_open_procfs(r11, &(0x7f0000000340)='environ\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
pipe2(&(0x7f0000000c40), 0x4800)

1.826684724s ago: executing program 0 (id=2337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x3}, {0x0}, &(0x7f0000000440)=[{&(0x7f0000000a00)=""/4096, 0x1000}], 0x1, 0x60, 0x4}}], 0x48, 0x8004}, 0x0)

1.791896007s ago: executing program 0 (id=2338):
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x20008004)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
bind$llc(r0, &(0x7f00000001c0)={0x1a, 0x13, 0xa, 0x0, 0x6, 0xd, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
r1 = perf_event_open(&(0x7f0000000540)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4000, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x3}, 0x18)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="646f74732c747a3d5554432c646f74732c646f74732c6e6f646f74732c666c7573682c646f74732c6e6f646f74732c71756965742c00b3d27234e95eb4b44190021bbbe89ab824d38c571641668d362b4dff6e47bdf1638c7462a3bd66a53b404ae08c32af6843a2469c7210381b9d48047c77540b6447a8e50c44cb44f91e4264a37e0209c3a234f4803ba56b7a24536ee396f4838f4143b92ad909efb23eb22dce6477c2bb5b8f793b9e07c2120d566cf1f6ba51e4d01e8ef223a2ba72cfb3127844c045765149fb1219f433feb977426596e07082254e9930296256df143ff96377d8c28c533724fbd9fdad260e7d875d0f17374141abc60c8e3c07e4a7bc381791172c217f00964aaf6e213a252b9689ae38342862d27437921e13229d407e1a6037e3f16a2cdab8f9c76a66a72ccc67015c9435e200f9fbb9d78ce426b37310b9f127e7b1207c74eff7b853de7043a001de85931463c7fc7c78be9eb9b5f88c0067aabb3a5d1f94bcc90537c1c1ce509450160c", @ANYRES64], 0x1, 0x162, &(0x7f0000000200)="$eJzs20GrElEUB/DjPHu+avPW0WKgTSupVi2LeEE0UBQualXwaqMh5GZq5UfpCwbhyt2NHNMSRYLmjTi/38aDf5Rz0ZnDHbjvbn8aXo4nH8cvZ3HW6UT3UeQxjziPLE6iMg0A4JjMU4ofqbeY8te/RUqp6Y4AgLpV8z+l1DP/AaAt9s7/hw01BgDUxv4fANrn9Zu3zx8XxcWrPD+L+D4tB+Wgeq3yp8+Ki3v5wvn6U7OyHJys8vtVnv+dX4sby/zB1vw07t6p8l/ZkxfFRn4zLutfPgAAALRCP1/Zur/v93flVfXH84GN/Xs3bnWvbBkAwD+YfPk6fD8affisOPYi2/dz95b/ieZbXRfZYbTRwqLhGxNQu/VF33QnAAAAAAAAAAAAAADALv/nzNDp8tt+v9OJyJwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HD9DAAA///le0TQ")

1.735562381s ago: executing program 4 (id=2339):
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$vcsa(0xffffffffffffff9c, 0x0, 0xd81c0, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f00000005c0)=[{&(0x7f0000001cc0)="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", 0x341}], 0x1, 0x0)
fcntl$setpipe(r0, 0x407, 0x6)
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
io_uring_setup(0x5d99, &(0x7f0000000340)={0x0, 0x2537, 0x2, 0x3, 0x41})
syz_emit_ethernet(0x9a, &(0x7f0000000180)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaaaa86dd6001070000641100fc010000000000000000000000000000ff02000000000000000000000000000100000e2200649078020000000200000001000000bb577147f8c63bab95cc025f2c123662d48c6e01d8630bf2addfd0edf624317d8ab859c3d9fe9a2f9edb8e36339e135d1f142a168a75d33e838bef40d2fcff6cb8d91538c6c53fafd6fea68a0e336124"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000580)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x57, 0x7fc00100}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000740)={<r3=>0x0})
r4 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x10, 0x1, 0x40000334}, &(0x7f00000006c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r4, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f00000000c0)={r3})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000003c0))
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r7, 0x400448cb, 0x0)
bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
epoll_create1(0x80000)

1.725021353s ago: executing program 0 (id=2340):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000140)={[{@nodelalloc}, {@data_err_abort}, {@bh}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@usrjquota}, {@dioread_nolock}, {@minixdf}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
creat(0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bond0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0xf4ff, 0xfff})

1.284206228s ago: executing program 3 (id=2341):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x0, &(0x7f0000000280)})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffffc1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
getdents(0xffffffffffffffff, &(0x7f0000000680)=""/243, 0xf3)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_void(0xffffffffffffffff, 0x1, 0x3f, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
unshare(0x40020200)

1.00064562s ago: executing program 6 (id=2342):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x7, 0x1, 0x6, 0xd57}, {0x9, 0x71, 0x2, 0x3}]})

959.658604ms ago: executing program 5 (id=2343):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x1}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000400)=[{0x6, 0x1, 0x2, 0x7fff7ffc}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x2}]})

814.299285ms ago: executing program 5 (id=2344):
mount_setattr(0xffffffffffffffff, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000001dc0)={0x0, 0x0, 0x80000}, 0x20)

794.511997ms ago: executing program 4 (id=2345):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f00000002c0)='kfree\x00', r0, 0x0, 0x1}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000400)=[{0x6, 0x1, 0x2, 0x7fff7ffc}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x2}]})

731.568122ms ago: executing program 5 (id=2346):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x0, &(0x7f0000000280)})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
getdents(0xffffffffffffffff, &(0x7f0000000680)=""/243, 0xf3)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_void(0xffffffffffffffff, 0x1, 0x3f, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
unshare(0x40020200)

730.868772ms ago: executing program 4 (id=2347):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bf"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x1f9}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r1, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

168.150557ms ago: executing program 6 (id=2348):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x3}, {0x0}, &(0x7f0000000440)=[{&(0x7f0000000a00)=""/4096, 0x1000}], 0x1, 0x60, 0x4}}], 0x48, 0x8004}, 0x0)

156.053968ms ago: executing program 4 (id=2349):
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
connect$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r4=>0x0})
bind$can_raw(r3, &(0x7f0000000000)={0x1d, r4}, 0x10)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$fou(0x0, r1)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000d0ff00000000000000000000851000000600000018040000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0x2, &(0x7f0000000340)=""/222, 0x0, 0xc}, 0x29)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2)
mount$9p_fd(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x200000, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
writev(r5, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000010000003f0000004000000042000000", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32], 0x48)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r7, 0x545c, 0x200000000000000)

127.009681ms ago: executing program 6 (id=2350):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x48, &(0x7f0000000140)={0x8, 0x7, '\x00', [@hao={0xc9, 0x10, @loopback}, @calipso={0x7, 0x28, {0x0, 0x8, 0x1, 0x4, [0x4, 0x7, 0x200000000002, 0x400000000000006]}}]}, 0x48)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = fcntl$dupfd(r3, 0x406, r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1e0000000c000000000000800000000020000100", @ANYRES32, @ANYBLOB="07000000000000000000002000000000000000000743dab81923dea2730f235a2b356e285fca7f586b0241bae9ae682e085049fdc09d7aa5a8834ed885", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000002000000050000008000"/24, @ANYRES32=r4, @ANYBLOB], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x20, 0x7ffc0002}]})
process_mrelease(0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x18)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f00000002c0)=0x2)
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r7)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000001200000008000800000000000800090000000100180001"], 0x4c}}, 0x0)
r9 = memfd_secret(0x80000)
fcntl$setlease(r9, 0x400, 0x0)
close(r9)
sendfile(r7, r9, 0x0, 0x10000)
ioctl$sock_bt_hidp_HIDPCONNADD(r6, 0x400448c8, &(0x7f0000000340)={r1, r1, 0x6e00, 0x79, &(0x7f0000000040)="8b69931bd62f99b595efbca0afec622ba859e8706e417d10025f3b4c5e11b262d7a8ad6524ffab6aa14b8821cbce36d0c5475df358be7e4a3a41f4df02762aedadef8fcfb3e5fb5eb5b1afabe82c3e4286cbaa50883523f872061a3f04d94a6ed2405a82ba3009dfcd468ca9a515d97d5e6c8f2e23dbcf4daf", 0x6, 0x0, 0xa, 0x5, 0x6, 0x2, 0x3, 'syz1\x00'})

0s ago: executing program 6 (id=2351):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0xda08, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioperm(0x3c, 0x1, 0x8)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_clone(0x3002500, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1219, &(0x7f0000001100)="$eJzs28FrXEUcB/BfkqapqclGrdUWxEEvFeTR5OBFL0FSkC4obSO0gvBqXnTJczfkLYEVsXry6t8hggjeBPGml1z8DwRvuXisID7JrrZd3RVWQjfI53PZH8z7zs7ssAuzzBy+8tn7O9tVtp13Y3ZmJmZ3I9LdFClm4y8fxwsvf//DM9dv3rq63mxuXEvpyvqN1ZdSSsvPfvvWh18891337JtfL3+zEAcrbx/+svbzwfmDC4e/33ivVaVWldqdbsrT7U6nm98ui7TVqnaylN4oi7wqUqtdFXtD7dtlZ3e3l/L21tLi7l5RVSlv99JO0UvdTuru9VL+bt5qpyzL0tJiMLlT96rNz+/WdR1R1/NxOuq6rh+JxTgbj8ZSLEcjVuKxeDyeiHPxZJyPp+Lp+OqnL3tHCQAAAAAAAAAAAAAAAAAAAOD4THr//0L/qWmPGgAAAAAAAAAAAAAAAAAAAP5frt+8dXW92dy4ltKZiPLT/c39zcHroH19O1pRRhGXoxG/Rf/2/8CgvvJac+Ny6luJT8o7f+bv7G/ODedXoxEvjs6vDvJpOL8Qiw/m16IR50bl52NtZP5MXHr+gXwWjfjxnehEGVtxlL3//h+tpvTq682/5S/2nxtv7mEsDwAAAByLLN0zcv+eZePaB/kJ/h8Y2l8fZS+emurUiYiq98FOXpbFnmJkcelkDKNfnD7ODucjYrLUr3VdT/9DmFIx/puyEBH/ueeZiDgZE/xHMe1fJh6G+4s+7ZEAAAAAAAAAAAAwibHHABf+7YTg3ETHCac9RwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YAeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfBUAAP//0AbP3Q==")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000080))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r3, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r5, 0x66a8, 0x4000, 0xf, 0x0, 0x18)
connect$rxrpc(r3, &(0x7f0000000140)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2a}}}, 0x24)
r7 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x200085, &(0x7f0000000200), 0xfe, 0x495, &(0x7f00000004c0)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
statx(r7, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x800, &(0x7f00000002c0))
mmap(&(0x7f0000188000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xd6dac000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)

kernel console output (not intermixed with test programs):

6]  <TASK>
[  203.533813][ T8996]  __dump_stack+0x1d/0x30
[  203.533901][ T8996]  dump_stack_lvl+0xe8/0x140
[  203.533926][ T8996]  dump_stack+0x15/0x1b
[  203.533948][ T8996]  dump_header+0x81/0x220
[  203.534103][ T8996]  oom_kill_process+0x342/0x400
[  203.534138][ T8996]  out_of_memory+0x979/0xb80
[  203.534180][ T8996]  try_charge_memcg+0x5e6/0x9e0
[  203.534279][ T8996]  obj_cgroup_charge_pages+0xa6/0x150
[  203.534312][ T8996]  __memcg_kmem_charge_page+0x9f/0x170
[  203.534351][ T8996]  __alloc_frozen_pages_noprof+0x188/0x360
[  203.534424][ T8996]  alloc_pages_mpol+0xb3/0x250
[  203.534461][ T8996]  alloc_pages_noprof+0x90/0x130
[  203.534539][ T8996]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  203.534597][ T8996]  __kvmalloc_node_noprof+0x30f/0x4e0
[  203.534630][ T8996]  ? ip_set_alloc+0x1f/0x30
[  203.534681][ T8996]  ? ip_set_alloc+0x1f/0x30
[  203.534716][ T8996]  ip_set_alloc+0x1f/0x30
[  203.534813][ T8996]  hash_netiface_create+0x282/0x740
[  203.534853][ T8996]  ? __pfx_hash_netiface_create+0x10/0x10
[  203.534892][ T8996]  ip_set_create+0x3cc/0x960
[  203.534938][ T8996]  ? __nla_parse+0x40/0x60
[  203.534977][ T8996]  nfnetlink_rcv_msg+0x4c3/0x590
[  203.535011][ T8996]  ? cmp_ex_search+0x25/0x40
[  203.535067][ T8996]  netlink_rcv_skb+0x123/0x220
[  203.535092][ T8996]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  203.535139][ T8996]  nfnetlink_rcv+0x16b/0x1690
[  203.535176][ T8996]  ? nlmon_xmit+0x4f/0x60
[  203.535265][ T8996]  ? consume_skb+0x49/0x150
[  203.535289][ T8996]  ? nlmon_xmit+0x4f/0x60
[  203.535355][ T8996]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  203.535386][ T8996]  ? __dev_queue_xmit+0x1200/0x2000
[  203.535411][ T8996]  ? __dev_queue_xmit+0x182/0x2000
[  203.535434][ T8996]  ? ref_tracker_free+0x37d/0x3e0
[  203.535462][ T8996]  ? __netlink_deliver_tap+0x4dc/0x500
[  203.535493][ T8996]  netlink_unicast+0x5bd/0x690
[  203.535585][ T8996]  netlink_sendmsg+0x58b/0x6b0
[  203.535608][ T8996]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.535629][ T8996]  __sock_sendmsg+0x142/0x180
[  203.535725][ T8996]  ____sys_sendmsg+0x31e/0x4e0
[  203.535757][ T8996]  ___sys_sendmsg+0x17b/0x1d0
[  203.535869][ T8996]  __x64_sys_sendmsg+0xd4/0x160
[  203.535903][ T8996]  x64_sys_call+0x191e/0x2ff0
[  203.535989][ T8996]  do_syscall_64+0xd2/0x200
[  203.536016][ T8996]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  203.536044][ T8996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.536087][ T8996] RIP: 0033:0x7ff07bedebe9
[  203.536101][ T8996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.536192][ T8996] RSP: 002b:00007ff07a93f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.536259][ T8996] RAX: ffffffffffffffda RBX: 00007ff07c105fa0 RCX: 00007ff07bedebe9
[  203.536274][ T8996] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000d
[  203.536287][ T8996] RBP: 00007ff07bf61e19 R08: 0000000000000000 R09: 0000000000000000
[  203.536299][ T8996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.536310][ T8996] R13: 00007ff07c106038 R14: 00007ff07c105fa0 R15: 00007ffde0bc4e38
[  203.536332][ T8996]  </TASK>
[  203.536339][ T8996] memory: usage 307200kB, limit 307200kB, failcnt 187
[  203.869342][ T8996] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  203.877271][ T8996] kmem: usage 237652kB, limit 9007199254740988kB, failcnt 0
[  203.884873][ T8996] Memory cgroup stats for /syz4:
[  204.443211][ T9011] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1820'.
[  204.463301][ T9011] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1820'.
[  204.521006][ T9015] loop6: detected capacity change from 0 to 1024
[  204.527748][ T8996] cache 70692864
[  204.531334][ T8996] rss 450560
[  204.534575][ T8996] shmem 68915200
[  204.538291][ T8996] mapped_file 1167360
[  204.542279][ T8996] dirty 536576
[  204.545651][ T8996] writeback 0
[  204.548962][ T8996] workingset_refault_anon 220
[  204.553822][ T8996] workingset_refault_file 2654
[  204.558652][ T8996] swap 0
[  204.561507][ T8996] swapcached 20480
[  204.565239][ T8996] pgpgin 173795
[  204.568785][ T8996] pgpgout 156425
[  204.572332][ T8996] pgfault 125867
[  204.575874][ T8996] pgmajfault 46
[  204.579388][ T8996] inactive_anon 69091328
[  204.583631][ T8996] active_anon 274432
[  204.587522][ T8996] inactive_file 0
[  204.591196][ T8996] active_file 1781760
[  204.595185][ T8996] unevictable 0
[  204.598664][ T8996] hierarchical_memory_limit 314572800
[  204.604038][ T8996] hierarchical_memsw_limit 9223372036854771712
[  204.610226][ T8996] total_cache 70692864
[  204.614295][ T8996] total_rss 450560
[  204.618031][ T8996] total_shmem 68915200
[  204.622096][ T8996] total_mapped_file 1167360
[  204.626596][ T8996] total_dirty 536576
[  204.630553][ T8996] total_writeback 0
[  204.634367][ T8996] total_workingset_refault_anon 220
[  204.639620][ T8996] total_workingset_refault_file 2654
[  204.644980][ T8996] total_swap 0
[  204.648373][ T8996] total_swapcached 20480
[  204.652609][ T8996] total_pgpgin 173795
[  204.656601][ T8996] total_pgpgout 156425
[  204.660727][ T8996] total_pgfault 125867
[  204.664805][ T8996] total_pgmajfault 46
[  204.668864][ T8996] total_inactive_anon 69091328
[  204.673630][ T8996] total_active_anon 274432
[  204.678076][ T8996] total_inactive_file 0
[  204.682262][ T8996] total_active_file 1781760
[  204.686799][ T8996] total_unevictable 0
[  204.690804][ T8996] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1815,pid=8995,uid=0
[  204.705457][ T8996] Memory cgroup out of memory: Killed process 8996 (syz.4.1815) total-vm:93632kB, anon-rss:1072kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  204.726115][ T9015] EXT4-fs: Ignoring removed bh option
[  204.731756][ T9015] EXT4-fs: Ignoring removed nobh option
[  204.749474][ T9015] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.215196][ T9023] loop0: detected capacity change from 0 to 512
[  205.226443][ T9023] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1819: corrupted in-inode xattr: invalid ea_ino
[  205.240773][ T9023] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1819: couldn't read orphan inode 15 (err -117)
[  205.254561][ T9023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.850768][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.866235][ T9033] loop5: detected capacity change from 0 to 1024
[  206.873443][ T9033] EXT4-fs: Ignoring removed bh option
[  206.879152][ T9033] EXT4-fs: Ignoring removed nobh option
[  206.890216][ T9033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.923300][   T29] audit: type=1326 audit(1755435419.632:11367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  206.946878][   T29] audit: type=1326 audit(1755435419.632:11368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  206.970514][   T29] audit: type=1326 audit(1755435419.632:11369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  206.994042][   T29] audit: type=1326 audit(1755435419.632:11370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.017621][   T29] audit: type=1326 audit(1755435419.632:11371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.041168][   T29] audit: type=1326 audit(1755435419.632:11372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.064745][   T29] audit: type=1326 audit(1755435419.632:11373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.088614][   T29] audit: type=1326 audit(1755435419.632:11374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.112351][   T29] audit: type=1326 audit(1755435419.632:11375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.135917][   T29] audit: type=1326 audit(1755435419.632:11376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9026 comm="syz.3.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  207.170435][ T9041] loop0: detected capacity change from 0 to 1024
[  207.213511][ T9041] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.278514][ T9041] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  207.289044][ T9046] netlink: 'syz.3.1829': attribute type 13 has an invalid length.
[  207.302567][ T9041] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  207.582725][ T9046] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.590026][ T9046] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.991455][ T9046] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  208.012682][ T9046] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  208.063706][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.082316][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.096809][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.165684][ T9063] 9pnet_fd: Insufficient options for proto=fd
[  208.179625][   T36] syz1: Port: 1 Link DOWN
[  208.184002][   T57] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  208.210421][   T57] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  208.221659][   T57] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  208.222622][ T9066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.233720][   T57] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  208.252937][ T9069] loop3: detected capacity change from 0 to 1024
[  208.258105][ T9066] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.260321][ T9069] EXT4-fs: Ignoring removed bh option
[  208.273985][ T9069] EXT4-fs: Ignoring removed nobh option
[  208.282843][ T9066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.290497][ T9069] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.297877][ T9066] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.360496][ T9066] loop4: detected capacity change from 0 to 512
[  208.367157][ T9066] EXT4-fs: Ignoring removed oldalloc option
[  208.411263][ T9066] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  208.439896][ T9066] EXT4-fs (loop4): 1 truncate cleaned up
[  208.446020][ T9066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.536114][ T9077] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1837'.
[  208.698356][ T9084] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1838'.
[  208.721576][ T9084] vlan2: entered allmulticast mode
[  208.930153][ T9091] syz.6.1840: attempt to access beyond end of device
[  208.930153][ T9091] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  208.947730][ T9091] FAT-fs (loop13): unable to read boot sector
[  209.105292][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.146549][ T9104] 9pnet_fd: Insufficient options for proto=fd
[  209.158895][ T9105] loop0: detected capacity change from 0 to 1024
[  209.182518][ T9105] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.211603][ T9105] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  209.221931][ T9105] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  210.077613][ T9116] wg2: entered promiscuous mode
[  210.082614][ T9116] wg2: entered allmulticast mode
[  210.379185][ T9127] wg2: left promiscuous mode
[  210.383860][ T9127] wg2: left allmulticast mode
[  210.431046][ T9129] FAULT_INJECTION: forcing a failure.
[  210.431046][ T9129] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  210.444244][ T9129] CPU: 0 UID: 0 PID: 9129 Comm: syz.4.1854 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  210.444302][ T9129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  210.444313][ T9129] Call Trace:
[  210.444318][ T9129]  <TASK>
[  210.444324][ T9129]  __dump_stack+0x1d/0x30
[  210.444374][ T9129]  dump_stack_lvl+0xe8/0x140
[  210.444395][ T9129]  dump_stack+0x15/0x1b
[  210.444408][ T9129]  should_fail_ex+0x265/0x280
[  210.444430][ T9129]  should_fail+0xb/0x20
[  210.444472][ T9129]  should_fail_usercopy+0x1a/0x20
[  210.444492][ T9129]  _copy_from_user+0x1c/0xb0
[  210.444519][ T9129]  ___sys_sendmsg+0xc1/0x1d0
[  210.444635][ T9129]  __x64_sys_sendmsg+0xd4/0x160
[  210.444731][ T9129]  x64_sys_call+0x191e/0x2ff0
[  210.444756][ T9129]  do_syscall_64+0xd2/0x200
[  210.444783][ T9129]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  210.444812][ T9129]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  210.444834][ T9129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.444853][ T9129] RIP: 0033:0x7ff07bedebe9
[  210.444866][ T9129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.444884][ T9129] RSP: 002b:00007ff07a93f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.444924][ T9129] RAX: ffffffffffffffda RBX: 00007ff07c105fa0 RCX: 00007ff07bedebe9
[  210.444935][ T9129] RDX: 0000000000000804 RSI: 0000200000000040 RDI: 0000000000000004
[  210.444946][ T9129] RBP: 00007ff07a93f090 R08: 0000000000000000 R09: 0000000000000000
[  210.444957][ T9129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.444981][ T9129] R13: 00007ff07c106038 R14: 00007ff07c105fa0 R15: 00007ffde0bc4e38
[  210.445003][ T9129]  </TASK>
[  210.640104][ T9133] loop4: detected capacity change from 0 to 136
[  210.649772][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.669740][ T9133] Attempt to read inode for relocated directory
[  210.683489][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.768853][ T9151] netlink: 'syz.6.1862': attribute type 4 has an invalid length.
[  214.810674][ T9165] loop4: detected capacity change from 0 to 128
[  214.819547][ T9165] FAT-fs (loop4): Directory bread(block 162) failed
[  214.826169][ T9165] FAT-fs (loop4): Directory bread(block 163) failed
[  214.833002][ T9165] FAT-fs (loop4): Directory bread(block 164) failed
[  214.840833][ T9165] FAT-fs (loop4): Directory bread(block 165) failed
[  214.851346][ T9165] FAT-fs (loop4): Directory bread(block 166) failed
[  214.865368][ T9168] loop0: detected capacity change from 0 to 1024
[  214.872120][ T9165] FAT-fs (loop4): Directory bread(block 167) failed
[  214.880067][ T9165] FAT-fs (loop4): Directory bread(block 168) failed
[  214.888721][ T9165] FAT-fs (loop4): Directory bread(block 169) failed
[  214.900399][ T9168] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.929302][ T7489] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[  214.937008][ T7489] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[  214.956581][ T7489] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3
[  215.007529][ T7489] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  215.043442][ T9176] loop4: detected capacity change from 0 to 764
[  215.050551][ T9176] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  215.076346][ T9178] loop5: detected capacity change from 0 to 1024
[  215.099586][ T9178] EXT4-fs: Ignoring removed bh option
[  215.109963][ T9178] EXT4-fs: Ignoring removed nobh option
[  215.130939][ T9178] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.250553][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  215.250574][   T29] audit: type=1326 audit(1755435427.822:11502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.280350][   T29] audit: type=1326 audit(1755435427.832:11503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.303876][   T29] audit: type=1326 audit(1755435427.832:11504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.327388][   T29] audit: type=1326 audit(1755435427.832:11505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.350858][   T29] audit: type=1326 audit(1755435427.832:11506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.374347][   T29] audit: type=1326 audit(1755435427.832:11507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9180 comm="syz.4.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  215.546388][ T9195] loop4: detected capacity change from 0 to 512
[  215.594621][   T29] audit: type=1400 audit(1755435428.172:11508): avc:  denied  { read write } for  pid=8531 comm="syz-executor" name="loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  215.618944][   T29] audit: type=1400 audit(1755435428.172:11509): avc:  denied  { open } for  pid=8531 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  215.643151][   T29] audit: type=1400 audit(1755435428.172:11510): avc:  denied  { ioctl } for  pid=8531 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=106 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  215.668920][   T29] audit: type=1400 audit(1755435428.182:11511): avc:  denied  { open } for  pid=9188 comm="syz.4.1872" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  215.714787][ T9195] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  215.883413][ T9195] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  215.967097][ T9195] EXT4-fs (loop4): 1 truncate cleaned up
[  216.007758][ T9195] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.060295][ T9168] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  216.101949][ T9168] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  216.134257][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.201619][ T9206] loop6: detected capacity change from 0 to 136
[  216.221016][ T9206] Attempt to read inode for relocated directory
[  216.273611][ T9212] loop6: detected capacity change from 0 to 512
[  216.283727][ T9212] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  216.322448][ T9212] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.1877: bg 0: block 4: invalid block bitmap
[  216.387633][ T9212] EXT4-fs (loop6): Remounting filesystem read-only
[  216.394255][ T9212] EXT4-fs (loop6): 1 truncate cleaned up
[  216.402325][ T9212] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.459709][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.474254][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.521758][ T9223] block device autoloading is deprecated and will be removed.
[  216.536810][ T9223] syz.0.1879: attempt to access beyond end of device
[  216.536810][ T9223] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  216.552341][ T9223] FAT-fs (loop1): unable to read boot sector
[  216.682179][ T9233] wg2: entered promiscuous mode
[  216.687068][ T9233] wg2: entered allmulticast mode
[  216.764479][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.773823][ T9240] loop4: detected capacity change from 0 to 1024
[  216.805066][ T9240] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  216.857556][ T9240] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  216.869210][ T9246] loop3: detected capacity change from 0 to 136
[  216.877169][ T9247] loop0: detected capacity change from 0 to 512
[  216.892097][ T9246] Attempt to read inode for relocated directory
[  216.906706][ T9247] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1888: corrupted in-inode xattr: invalid ea_ino
[  216.955007][ T9247] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1888: couldn't read orphan inode 15 (err -117)
[  216.960870][ T9243] loop5: detected capacity change from 0 to 32768
[  217.011017][ T9257] loop6: detected capacity change from 0 to 1024
[  217.063912][ T9260] 9pnet: Could not find request transport: fd0x0000000000000004
[  217.071705][ T9264] loop0: detected capacity change from 0 to 512
[  217.082015][ T9257] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  217.093669][ T9264] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1892: corrupted in-inode xattr: invalid ea_ino
[  217.108757][ T9264] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1892: couldn't read orphan inode 15 (err -117)
[  217.138258][ T9257] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  217.403889][ T9267] loop5: detected capacity change from 0 to 32768
[  217.445173][ T9286] loop3: detected capacity change from 0 to 136
[  217.454587][ T9286] Attempt to read inode for relocated directory
[  217.556651][ T9291] loop3: detected capacity change from 0 to 1024
[  217.574479][ T9291] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  217.584558][ T9291] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  217.621475][ T9296] loop4: detected capacity change from 0 to 764
[  217.629825][ T9296] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  217.662565][ T9299] 9pnet: Could not find request transport: fd0x0000000000000004
[  217.744983][ T9304] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  217.871609][ T9308] netlink: 'syz.6.1910': attribute type 4 has an invalid length.
[  218.152591][ T9311] loop6: detected capacity change from 0 to 1024
[  218.178117][ T9311] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  218.190775][ T9311] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  218.244200][ T9304] syz.4.1908 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  218.258761][ T9304] CPU: 1 UID: 0 PID: 9304 Comm: syz.4.1908 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  218.258785][ T9304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  218.258867][ T9304] Call Trace:
[  218.258872][ T9304]  <TASK>
[  218.258878][ T9304]  __dump_stack+0x1d/0x30
[  218.258965][ T9304]  dump_stack_lvl+0xe8/0x140
[  218.259017][ T9304]  dump_stack+0x15/0x1b
[  218.259030][ T9304]  dump_header+0x81/0x220
[  218.259074][ T9304]  oom_kill_process+0x342/0x400
[  218.259103][ T9304]  out_of_memory+0x979/0xb80
[  218.259153][ T9304]  try_charge_memcg+0x5e6/0x9e0
[  218.259178][ T9304]  obj_cgroup_charge_pages+0xa6/0x150
[  218.259292][ T9304]  __memcg_kmem_charge_page+0x9f/0x170
[  218.259396][ T9304]  __alloc_frozen_pages_noprof+0x188/0x360
[  218.259543][ T9304]  alloc_pages_mpol+0xb3/0x250
[  218.259571][ T9304]  alloc_pages_noprof+0x90/0x130
[  218.259605][ T9304]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  218.259641][ T9304]  ? vsnprintf+0x829/0x890
[  218.259656][ T9304]  __kvmalloc_node_noprof+0x30f/0x4e0
[  218.259702][ T9304]  ? ip_set_alloc+0x1f/0x30
[  218.259728][ T9304]  ? ip_set_alloc+0x1f/0x30
[  218.259762][ T9304]  ? __kmalloc_cache_noprof+0x189/0x320
[  218.259795][ T9304]  ip_set_alloc+0x1f/0x30
[  218.259942][ T9304]  hash_netiface_create+0x282/0x740
[  218.260002][ T9304]  ? __pfx_hash_netiface_create+0x10/0x10
[  218.260031][ T9304]  ip_set_create+0x3cc/0x960
[  218.260122][ T9304]  ? __nla_parse+0x40/0x60
[  218.260143][ T9304]  nfnetlink_rcv_msg+0x4c3/0x590
[  218.260266][ T9304]  ? cmp_ex_search+0x25/0x40
[  218.260308][ T9304]  netlink_rcv_skb+0x123/0x220
[  218.260379][ T9304]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  218.260410][ T9304]  nfnetlink_rcv+0x16b/0x1690
[  218.260473][ T9304]  ? nlmon_xmit+0x4f/0x60
[  218.260494][ T9304]  ? consume_skb+0x49/0x150
[  218.260509][ T9304]  ? nlmon_xmit+0x4f/0x60
[  218.260530][ T9304]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  218.260616][ T9304]  ? __dev_queue_xmit+0x1200/0x2000
[  218.260633][ T9304]  ? __dev_queue_xmit+0x182/0x2000
[  218.260725][ T9304]  ? ref_tracker_free+0x37d/0x3e0
[  218.260746][ T9304]  ? __netlink_deliver_tap+0x4dc/0x500
[  218.260797][ T9304]  netlink_unicast+0x5bd/0x690
[  218.260857][ T9304]  netlink_sendmsg+0x58b/0x6b0
[  218.260887][ T9304]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.260916][ T9304]  __sock_sendmsg+0x142/0x180
[  218.260998][ T9304]  ____sys_sendmsg+0x31e/0x4e0
[  218.261019][ T9304]  ___sys_sendmsg+0x17b/0x1d0
[  218.261048][ T9304]  __x64_sys_sendmsg+0xd4/0x160
[  218.261132][ T9304]  x64_sys_call+0x191e/0x2ff0
[  218.261204][ T9304]  do_syscall_64+0xd2/0x200
[  218.261226][ T9304]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  218.261252][ T9304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.261270][ T9304] RIP: 0033:0x7ff07bedebe9
[  218.261282][ T9304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.261296][ T9304] RSP: 002b:00007ff07a93f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.261378][ T9304] RAX: ffffffffffffffda RBX: 00007ff07c105fa0 RCX: 00007ff07bedebe9
[  218.261389][ T9304] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000d
[  218.261434][ T9304] RBP: 00007ff07bf61e19 R08: 0000000000000000 R09: 0000000000000000
[  218.261444][ T9304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  218.261454][ T9304] R13: 00007ff07c106038 R14: 00007ff07c105fa0 R15: 00007ffde0bc4e38
[  218.261499][ T9304]  </TASK>
[  218.261504][ T9304] memory: usage 307200kB, limit 307200kB, failcnt 250
[  218.604624][ T9304] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  218.612685][ T9304] kmem: usage 237696kB, limit 9007199254740988kB, failcnt 0
[  218.619987][ T9304] Memory cgroup stats for /syz4:
[  218.620339][ T9304] cache 70692864
[  218.628904][ T9304] rss 450560
[  218.632119][ T9304] shmem 68915200
[  218.635738][ T9304] mapped_file 1232896
[  218.639774][ T9304] dirty 53248
[  218.643103][ T9304] writeback 0
[  218.646419][ T9304] workingset_refault_anon 220
[  218.651121][ T9304] workingset_refault_file 2654
[  218.655878][ T9304] swap 0
[  218.658848][ T9304] swapcached 20480
[  218.662564][ T9304] pgpgin 183872
[  218.666168][ T9304] pgpgout 166501
[  218.669721][ T9304] pgfault 142675
[  218.673339][ T9304] pgmajfault 46
[  218.676849][ T9304] inactive_anon 69091328
[  218.681106][ T9304] active_anon 274432
[  218.685046][ T9304] inactive_file 0
[  218.688706][ T9304] active_file 1785856
[  218.692802][ T9304] unevictable 0
[  218.696361][ T9304] hierarchical_memory_limit 314572800
[  218.701794][ T9304] hierarchical_memsw_limit 9223372036854771712
[  218.707958][ T9304] total_cache 70692864
[  218.712045][ T9304] total_rss 450560
[  218.715756][ T9304] total_shmem 68915200
[  218.719840][ T9304] total_mapped_file 1232896
[  218.724372][ T9304] total_dirty 53248
[  218.728197][ T9304] total_writeback 0
[  218.732074][ T9304] total_workingset_refault_anon 220
[  218.737362][ T9304] total_workingset_refault_file 2654
[  218.742655][ T9304] total_swap 0
[  218.746037][ T9304] total_swapcached 20480
[  218.750315][ T9304] total_pgpgin 183872
[  218.754310][ T9304] total_pgpgout 166501
[  218.758415][ T9304] total_pgfault 142675
[  218.762549][ T9304] total_pgmajfault 46
[  218.766520][ T9304] total_inactive_anon 69091328
[  218.771304][ T9304] total_active_anon 274432
[  218.775716][ T9304] total_inactive_file 0
[  218.779874][ T9304] total_active_file 1785856
[  218.784370][ T9304] total_unevictable 0
[  218.788434][ T9304] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1908,pid=9303,uid=0
[  218.803027][ T9304] Memory cgroup out of memory: Killed process 9304 (syz.4.1908) total-vm:93632kB, anon-rss:944kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  218.840916][ T9319] loop3: detected capacity change from 0 to 136
[  218.855281][ T9319] Attempt to read inode for relocated directory
[  218.905390][ T9323] wg2: entered promiscuous mode
[  218.910343][ T9323] wg2: entered allmulticast mode
[  218.924557][ T9325] syz.5.1916: attempt to access beyond end of device
[  218.924557][ T9325] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  218.960744][ T9325] FAT-fs (loop11): unable to read boot sector
[  219.015874][ T9332] siw: device registration error -23
[  219.039249][ T9336] loop0: detected capacity change from 0 to 1024
[  219.052043][ T9336] EXT4-fs: Ignoring removed bh option
[  219.057792][ T9336] EXT4-fs: Ignoring removed nobh option
[  219.063597][ T9339] loop6: detected capacity change from 0 to 1024
[  219.079574][ T9341] loop5: detected capacity change from 0 to 128
[  219.086898][ T9341] FAT-fs (loop5): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  219.180429][ T9339] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  219.214662][ T9351] loop5: detected capacity change from 0 to 1024
[  219.221597][ T9339] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  219.244052][ T9351] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  219.256195][ T9351] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  219.330125][ T9357] loop4: detected capacity change from 0 to 136
[  219.337508][ T9357] Attempt to read inode for relocated directory
[  219.422004][ T9363] loop4: detected capacity change from 0 to 1024
[  219.464968][ T9363] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  219.494448][ T9363] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  219.837090][ T9370] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1927'.
[  219.868582][ T9373] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  219.901600][ T9374] siw: device registration error -23
[  219.941540][ T9378] syz.6.1931: attempt to access beyond end of device
[  219.941540][ T9378] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  219.954634][ T9378] FAT-fs (loop13): unable to read boot sector
[  220.001106][ T9381] 9pnet_fd: Insufficient options for proto=fd
[  220.041614][ T9385] FAULT_INJECTION: forcing a failure.
[  220.041614][ T9385] name failslab, interval 1, probability 0, space 0, times 0
[  220.054316][ T9385] CPU: 1 UID: 0 PID: 9385 Comm: syz.6.1934 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  220.054351][ T9385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  220.054368][ T9385] Call Trace:
[  220.054376][ T9385]  <TASK>
[  220.054384][ T9385]  __dump_stack+0x1d/0x30
[  220.054409][ T9385]  dump_stack_lvl+0xe8/0x140
[  220.054435][ T9385]  dump_stack+0x15/0x1b
[  220.054451][ T9385]  should_fail_ex+0x265/0x280
[  220.054601][ T9385]  should_failslab+0x8c/0xb0
[  220.054686][ T9385]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  220.054724][ T9385]  ? make_vfsuid+0x49/0xa0
[  220.054754][ T9385]  ? v9fs_session_init+0x4b/0xde0
[  220.054784][ T9385]  kstrdup+0x3e/0xd0
[  220.054891][ T9385]  v9fs_session_init+0x4b/0xde0
[  220.054910][ T9385]  ? __rcu_read_unlock+0x4f/0x70
[  220.054935][ T9385]  ? avc_has_perm_noaudit+0x1b1/0x200
[  220.055035][ T9385]  ? should_fail_ex+0xdb/0x280
[  220.055060][ T9385]  ? v9fs_mount+0x51/0x5c0
[  220.055091][ T9385]  ? should_failslab+0x8c/0xb0
[  220.055116][ T9385]  ? __kmalloc_cache_noprof+0x189/0x320
[  220.055159][ T9385]  v9fs_mount+0x67/0x5c0
[  220.055198][ T9385]  ? selinux_capable+0x31/0x40
[  220.055224][ T9385]  ? __pfx_v9fs_mount+0x10/0x10
[  220.055289][ T9385]  legacy_get_tree+0x78/0xd0
[  220.055312][ T9385]  vfs_get_tree+0x57/0x1d0
[  220.055354][ T9385]  do_new_mount+0x207/0x5e0
[  220.055375][ T9385]  ? security_capable+0x83/0x90
[  220.055403][ T9385]  path_mount+0x4a4/0xb20
[  220.055466][ T9385]  ? user_path_at+0x109/0x130
[  220.055577][ T9385]  __se_sys_mount+0x28f/0x2e0
[  220.055666][ T9385]  ? fput+0x8f/0xc0
[  220.055696][ T9385]  __x64_sys_mount+0x67/0x80
[  220.055721][ T9385]  x64_sys_call+0x2b4d/0x2ff0
[  220.055860][ T9385]  do_syscall_64+0xd2/0x200
[  220.055893][ T9385]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  220.055918][ T9385]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  220.055945][ T9385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.055972][ T9385] RIP: 0033:0x7ffa1f6aebe9
[  220.055990][ T9385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.056012][ T9385] RSP: 002b:00007ffa1e117038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  220.056034][ T9385] RAX: ffffffffffffffda RBX: 00007ffa1f8d5fa0 RCX: 00007ffa1f6aebe9
[  220.056049][ T9385] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[  220.056064][ T9385] RBP: 00007ffa1e117090 R08: 0000200000000240 R09: 0000000000000000
[  220.056084][ T9385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  220.056096][ T9385] R13: 00007ffa1f8d6038 R14: 00007ffa1f8d5fa0 R15: 00007fff6c9cf978
[  220.056114][ T9385]  </TASK>
[  220.401619][ T3305] EXT4-fs unmount: 19 callbacks suppressed
[  220.401692][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.494062][ T9373] syz.3.1929 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[  220.508746][ T9373] CPU: 0 UID: 0 PID: 9373 Comm: syz.3.1929 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  220.508839][ T9373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  220.508853][ T9373] Call Trace:
[  220.508860][ T9373]  <TASK>
[  220.508869][ T9373]  __dump_stack+0x1d/0x30
[  220.508896][ T9373]  dump_stack_lvl+0xe8/0x140
[  220.508951][ T9373]  dump_stack+0x15/0x1b
[  220.508994][ T9373]  dump_header+0x81/0x220
[  220.509036][ T9373]  oom_kill_process+0x342/0x400
[  220.509077][ T9373]  out_of_memory+0x979/0xb80
[  220.509159][ T9373]  try_charge_memcg+0x5e6/0x9e0
[  220.509189][ T9373]  obj_cgroup_charge_pages+0xa6/0x150
[  220.509232][ T9373]  __memcg_kmem_charge_page+0x9f/0x170
[  220.509291][ T9373]  __alloc_frozen_pages_noprof+0x188/0x360
[  220.509374][ T9373]  alloc_pages_mpol+0xb3/0x250
[  220.509417][ T9373]  alloc_pages_noprof+0x90/0x130
[  220.509499][ T9373]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  220.509543][ T9373]  ? vsnprintf+0x829/0x890
[  220.509565][ T9373]  __kvmalloc_node_noprof+0x30f/0x4e0
[  220.509605][ T9373]  ? ip_set_alloc+0x1f/0x30
[  220.509645][ T9373]  ? ip_set_alloc+0x1f/0x30
[  220.509679][ T9373]  ? __kmalloc_cache_noprof+0x189/0x320
[  220.509782][ T9373]  ip_set_alloc+0x1f/0x30
[  220.509821][ T9373]  hash_netiface_create+0x282/0x740
[  220.509856][ T9373]  ? __pfx_hash_netiface_create+0x10/0x10
[  220.509956][ T9373]  ip_set_create+0x3cc/0x960
[  220.510080][ T9373]  ? __nla_parse+0x40/0x60
[  220.510103][ T9373]  nfnetlink_rcv_msg+0x4c3/0x590
[  220.510145][ T9373]  ? cmp_ex_search+0x25/0x40
[  220.510228][ T9373]  netlink_rcv_skb+0x123/0x220
[  220.510257][ T9373]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  220.510375][ T9373]  nfnetlink_rcv+0x16b/0x1690
[  220.510406][ T9373]  ? sched_clock+0x3f/0x60
[  220.510443][ T9373]  ? trace_clock_local+0x3f/0x60
[  220.510478][ T9373]  ? __rb_reserve_next+0x43e/0x6f0
[  220.510510][ T9373]  ? kernelmode_fixup_or_oops+0x59/0xb0
[  220.510551][ T9373]  ? rb_commit+0x3e9/0x420
[  220.510577][ T9373]  ? ring_buffer_unlock_commit+0x324/0x370
[  220.510630][ T9373]  ? trace_buffer_unlock_commit_regs+0x111/0x310
[  220.510652][ T9373]  ? trace_event_buffer_commit+0x196/0x5d0
[  220.510733][ T9373]  ? ___slab_alloc+0x11b/0x900
[  220.510770][ T9373]  ? should_fail_ex+0x30/0x280
[  220.510870][ T9373]  ? selinux_nlmsg_lookup+0x99/0x890
[  220.510969][ T9373]  ? __rcu_read_unlock+0x34/0x70
[  220.510988][ T9373]  ? __netlink_lookup+0x266/0x2a0
[  220.511071][ T9373]  netlink_unicast+0x5bd/0x690
[  220.511182][ T9373]  netlink_sendmsg+0x58b/0x6b0
[  220.511208][ T9373]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.511234][ T9373]  __sock_sendmsg+0x142/0x180
[  220.511262][ T9373]  ____sys_sendmsg+0x31e/0x4e0
[  220.511322][ T9373]  ___sys_sendmsg+0x17b/0x1d0
[  220.511433][ T9373]  __x64_sys_sendmsg+0xd4/0x160
[  220.511458][ T9373]  x64_sys_call+0x191e/0x2ff0
[  220.511483][ T9373]  do_syscall_64+0xd2/0x200
[  220.511574][ T9373]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  220.511598][ T9373]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  220.511642][ T9373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.511662][ T9373] RIP: 0033:0x7f532b11ebe9
[  220.511679][ T9373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.511778][ T9373] RSP: 002b:00007f5329b7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  220.511803][ T9373] RAX: ffffffffffffffda RBX: 00007f532b345fa0 RCX: 00007f532b11ebe9
[  220.511819][ T9373] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000d
[  220.511835][ T9373] RBP: 00007f532b1a1e19 R08: 0000000000000000 R09: 0000000000000000
[  220.511851][ T9373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.511868][ T9373] R13: 00007f532b346038 R14: 00007f532b345fa0 R15: 00007ffe0a87b6b8
[  220.511889][ T9373]  </TASK>
[  220.511905][ T9373] memory: usage 307200kB, limit 307200kB, failcnt 2828
[  220.888521][ T9373] memory+swap: usage 307040kB, limit 9007199254740988kB, failcnt 0
[  220.888542][ T9373] kmem: usage 202748kB, limit 9007199254740988kB, failcnt 0
[  220.888554][ T9373] Memory cgroup stats for /syz3:
[  220.888827][ T9373] cache 106569728
[  220.912493][ T9373] rss 200704
[  220.915693][ T9373] shmem 66813952
[  220.919412][ T9373] mapped_file 245760
[  220.923541][ T9373] dirty 208896
[  220.926862][   T29] kauditd_printk_skb: 204 callbacks suppressed
[  220.926912][   T29] audit: type=1326 audit(1755435433.642:11716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9399 comm="syz.0.1939" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc25cb0ebe9 code=0x0
[  220.955922][ T9373] writeback 0
[  220.959213][ T9373] workingset_refault_anon 2
[  220.963701][ T9373] workingset_refault_file 2752
[  220.968473][ T9373] swap 0
[  220.971323][ T9373] swapcached 0
[  220.974681][ T9373] pgpgin 253023
[  220.978163][ T9373] pgpgout 226956
[  220.981717][ T9373] pgfault 140486
[  220.985270][ T9373] pgmajfault 14
[  220.988760][ T9373] inactive_anon 67014656
[  220.993076][ T9373] active_anon 0
[  220.996552][ T9373] inactive_file 0
[  221.000214][ T9373] active_file 39755776
[  221.004306][ T9373] unevictable 0
[  221.007775][ T9373] hierarchical_memory_limit 314572800
[  221.013152][ T9373] hierarchical_memsw_limit 9223372036854771712
[  221.019328][ T9373] total_cache 106569728
[  221.023499][ T9373] total_rss 200704
[  221.027217][ T9373] total_shmem 66813952
[  221.031302][ T9373] total_mapped_file 245760
[  221.035822][ T9373] total_dirty 208896
[  221.039739][ T9373] total_writeback 0
[  221.043537][ T9373] total_workingset_refault_anon 2
[  221.048637][ T9373] total_workingset_refault_file 2752
[  221.053919][ T9373] total_swap 0
[  221.057280][ T9373] total_swapcached 0
[  221.061182][ T9373] total_pgpgin 253023
[  221.065161][ T9373] total_pgpgout 226956
[  221.069242][ T9373] total_pgfault 140486
[  221.073354][ T9373] total_pgmajfault 14
[  221.077400][ T9373] total_inactive_anon 67014656
[  221.082294][ T9373] total_active_anon 0
[  221.086359][ T9373] total_inactive_file 0
[  221.090533][ T9373] total_active_file 39755776
[  221.095119][ T9373] total_unevictable 0
[  221.099131][ T9373] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1929,pid=9372,uid=0
[  221.113759][ T9373] Memory cgroup out of memory: Killed process 9373 (syz.3.1929) total-vm:93632kB, anon-rss:1072kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  221.314734][ T9406] loop5: detected capacity change from 0 to 1024
[  221.332164][ T9406] EXT4-fs: Ignoring removed bh option
[  221.338024][ T9406] EXT4-fs: Ignoring removed nobh option
[  221.379281][ T9406] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.518087][ T9410] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1942'.
[  221.527405][ T9410] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1942'.
[  221.574601][ T9413] loop6: detected capacity change from 0 to 4096
[  221.583647][ T9413] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.601510][   T29] audit: type=1400 audit(1755435434.322:11717): avc:  denied  { create } for  pid=9412 comm="syz.6.1943" name="file5" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=blk_file permissive=1
[  221.639788][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.743002][ T9417] loop3: detected capacity change from 0 to 1024
[  221.752112][ T9417] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.865162][   T29] audit: type=1326 audit(1755435434.582:11718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  221.888857][   T29] audit: type=1326 audit(1755435434.582:11719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  221.923750][ T9417] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  221.943543][ T9426] netlink: 'syz.0.1949': attribute type 4 has an invalid length.
[  221.984969][   T29] audit: type=1326 audit(1755435434.612:11720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.008579][   T29] audit: type=1326 audit(1755435434.612:11721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.032112][   T29] audit: type=1326 audit(1755435434.612:11722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.047808][ T9429] loop6: detected capacity change from 0 to 1024
[  222.055663][   T29] audit: type=1326 audit(1755435434.612:11723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.085393][   T29] audit: type=1326 audit(1755435434.612:11724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.108945][   T29] audit: type=1326 audit(1755435434.612:11725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9421 comm="syz.0.1947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  222.182249][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.183754][ T9429] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.209551][ T9432] loop4: detected capacity change from 0 to 1024
[  222.223232][ T9432] EXT4-fs: Ignoring removed bh option
[  222.225192][ T9429] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  222.237955][ T9432] EXT4-fs: Ignoring removed nobh option
[  222.246694][ T9429] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  222.258797][ T9435] syz.5.1951: attempt to access beyond end of device
[  222.258797][ T9435] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  222.271966][ T9435] FAT-fs (loop11): unable to read boot sector
[  222.294775][ T9432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.539827][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.629190][ T9467] loop5: detected capacity change from 0 to 1024
[  222.635985][ T9467] EXT4-fs: Ignoring removed bh option
[  222.641862][ T9467] EXT4-fs: Ignoring removed nobh option
[  222.659458][ T9467] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.942021][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.997087][ T9483] loop0: detected capacity change from 0 to 1024
[  223.005082][ T9483] EXT4-fs: Ignoring removed bh option
[  223.092261][ T9483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.577361][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.590543][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.600837][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.619674][ T9491] loop6: detected capacity change from 0 to 1024
[  223.626421][ T9491] EXT4-fs: Ignoring removed bh option
[  223.631992][ T9491] EXT4-fs: Ignoring removed nobh option
[  223.647316][ T9495] wg2: entered promiscuous mode
[  223.652355][ T9495] wg2: entered allmulticast mode
[  223.660455][ T9491] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.841778][ T9509] syz.0.1972: attempt to access beyond end of device
[  223.841778][ T9509] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  223.927214][ T9509] FAT-fs (loop1): unable to read boot sector
[  224.276397][ T9523] loop0: detected capacity change from 0 to 1024
[  224.322599][ T9523] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.795273][ T9523] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  224.868294][ T9523] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  224.981971][ T9535] wg2: left promiscuous mode
[  224.986618][ T9535] wg2: left allmulticast mode
[  225.014106][ T9535] wg2: entered promiscuous mode
[  225.019109][ T9535] wg2: entered allmulticast mode
[  225.021827][ T9537] loop3: detected capacity change from 0 to 1024
[  225.048555][ T9537] EXT4-fs: Ignoring removed orlov option
[  225.054316][ T9537] EXT4-fs: Ignoring removed i_version option
[  225.089340][ T9537] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.102204][ T9540] random: crng reseeded on system resumption
[  225.191782][ T9546] loop5: detected capacity change from 0 to 1024
[  225.202472][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.234176][ T9546] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.286112][ T9546] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  225.295242][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.304429][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.313422][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.322462][ T9553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.342483][ T9554] loop3: detected capacity change from 0 to 1024
[  225.349368][ T9546] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  225.361247][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.372089][ T9554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.382353][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.393671][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.402672][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.411673][ T9553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.445433][ T9554] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  225.455210][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.464244][ T9553] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1985'.
[  225.497001][ T9563] netlink: 'syz.4.1987': attribute type 4 has an invalid length.
[  225.532291][ T9565] loop0: detected capacity change from 0 to 1024
[  225.558196][ T9565] EXT4-fs: Ignoring removed bh option
[  225.563829][ T9565] EXT4-fs: Ignoring removed nobh option
[  225.580571][ T9565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.909226][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.928167][ T9573] loop4: detected capacity change from 0 to 1024
[  225.950967][ T9573] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.011223][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.051359][ T9573] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  226.099622][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.564865][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.583891][ T9577] syz.5.1991: attempt to access beyond end of device
[  226.583891][ T9577] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  226.596951][ T9577] FAT-fs (loop11): unable to read boot sector
[  226.605495][   T29] kauditd_printk_skb: 77 callbacks suppressed
[  226.605578][   T29] audit: type=1326 audit(1755435439.322:11803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.675991][ T9584] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  226.706563][   T29] audit: type=1326 audit(1755435439.322:11804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.707257][ T9589] wireguard0: entered promiscuous mode
[  226.730338][   T29] audit: type=1326 audit(1755435439.322:11805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.735775][ T9589] wireguard0: entered allmulticast mode
[  226.759353][   T29] audit: type=1326 audit(1755435439.322:11806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.788311][   T29] audit: type=1326 audit(1755435439.322:11807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.811864][   T29] audit: type=1326 audit(1755435439.322:11808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.835361][   T29] audit: type=1326 audit(1755435439.322:11809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.858977][   T29] audit: type=1326 audit(1755435439.352:11810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.882606][   T29] audit: type=1326 audit(1755435439.352:11811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.883616][ T9593] loop5: detected capacity change from 0 to 512
[  226.906166][   T29] audit: type=1326 audit(1755435439.362:11812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9576 comm="syz.5.1991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  226.954944][ T9593] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1995: bg 0: block 393: padding at end of block bitmap is not set
[  226.971998][ T9593] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  226.991124][ T9593] EXT4-fs (loop5): 2 truncates cleaned up
[  226.997554][ T9593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.124687][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.663767][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.683369][ T9608] loop3: detected capacity change from 0 to 128
[  227.694557][ T9608] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  227.749783][ T9610] loop3: detected capacity change from 0 to 136
[  227.758953][ T9610] Attempt to read inode for relocated directory
[  228.088915][ T9624] loop6: detected capacity change from 0 to 2048
[  228.099500][ T9626] SELinux:  policydb string SE Li does not match my string SE Linux
[  228.107789][ T9626] SELinux: failed to load policy
[  228.114161][ T9624] EXT4-fs (loop6): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.128457][ T9622] bridge0: port 3($Hÿ) entered blocking state
[  228.134754][ T9622] bridge0: port 3($Hÿ) entered disabled state
[  228.141249][ T9622] $Hÿ: entered allmulticast mode
[  228.146373][ T9622] bond_slave_0: entered allmulticast mode
[  228.152125][ T9622] bond_slave_1: entered allmulticast mode
[  228.160433][ T8531] EXT4-fs (loop6): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  228.203840][ T9634] wg2: left promiscuous mode
[  228.208634][ T9634] wg2: left allmulticast mode
[  228.218099][ T9634] wg2: entered promiscuous mode
[  228.223001][ T9634] wg2: entered allmulticast mode
[  228.235918][ T9636] loop6: detected capacity change from 0 to 128
[  228.243566][ T9636] FAT-fs (loop6): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  228.252302][ T9638] syz.3.2013: attempt to access beyond end of device
[  228.252302][ T9638] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  228.265647][ T9638] FAT-fs (loop7): unable to read boot sector
[  228.859452][ T9649] siw: device registration error -23
[  228.884443][ T9651] sctp: [Deprecated]: syz.0.2017 (pid 9651) Use of int in max_burst socket option.
[  228.884443][ T9651] Use struct sctp_assoc_value instead
[  228.951596][ T9659] loop0: detected capacity change from 0 to 1024
[  228.958587][ T9659] EXT4-fs: Ignoring removed bh option
[  228.964182][ T9659] EXT4-fs: inline encryption not supported
[  228.971391][ T9659] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  228.982538][ T9659] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  228.992002][ T9659] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.2021: lblock 2 mapped to illegal pblock 2 (length 1)
[  229.006325][ T9659] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.2021: lblock 0 mapped to illegal pblock 48 (length 1)
[  229.027674][ T9659] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2021: Failed to acquire dquot type 0
[  229.040986][ T9659] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  229.051483][ T9659] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.2021: mark_inode_dirty error
[  229.054381][ T9667] syz.5.2024: attempt to access beyond end of device
[  229.054381][ T9667] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  229.063135][ T9659] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  229.075661][ T9667] FAT-fs (loop11): unable to read boot sector
[  229.087120][ T9659] EXT4-fs (loop0): 1 orphan inode deleted
[  229.098462][   T31] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1)
[  229.112551][ T9659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.125261][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 0
[  229.138529][ T9659] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  229.163534][ T9669] wg2: left promiscuous mode
[  229.168181][ T9669] wg2: left allmulticast mode
[  229.182454][ T9669] wg2: entered promiscuous mode
[  229.187328][ T9669] wg2: entered allmulticast mode
[  229.195703][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.198690][ T9671] Unsupported ieee802154 address type: 0
[  229.227445][ T9671] netlink: 'syz.4.2027': attribute type 29 has an invalid length.
[  229.242430][ T9675] syz.0.2028: attempt to access beyond end of device
[  229.242430][ T9675] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  229.256359][ T9677] SELinux:  policydb string S does not match my string SE Linux
[  229.262698][ T9671] loop4: detected capacity change from 0 to 2048
[  229.265631][ T9675] FAT-fs (loop1): unable to read boot sector
[  229.279895][ T9677] SELinux: failed to load policy
[  229.322590][ T9671]  loop4: p2 p3 p7
[  229.332491][ T9687] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9792 sclass=netlink_route_socket pid=9687 comm=syz.6.2034
[  229.346230][ T9687] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=9687 comm=syz.6.2034
[  229.378850][ T9689] hsr_slave_0: left promiscuous mode
[  229.384786][ T9689] hsr_slave_1: left promiscuous mode
[  229.443534][ T9697] loop6: detected capacity change from 0 to 512
[  229.450349][ T9697] EXT4-fs: Ignoring removed orlov option
[  229.456212][ T9697] EXT4-fs: test_dummy_encryption option not supported
[  229.488823][ T9697] loop6: detected capacity change from 0 to 512
[  229.495221][ T9704] wg2: left promiscuous mode
[  229.499867][ T9704] wg2: left allmulticast mode
[  229.508768][ T9697] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  229.517189][ T9707] syz.4.2038 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  229.528961][ T9697] EXT4-fs (loop6): orphan cleanup on readonly fs
[  229.535617][ T9704] wg2: entered promiscuous mode
[  229.538227][ T9697] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.2037: corrupted inode contents
[  229.540607][ T9704] wg2: entered allmulticast mode
[  229.553836][ T9697] EXT4-fs (loop6): Remounting filesystem read-only
[  229.558990][ T9707] netlink: 'syz.4.2038': attribute type 1 has an invalid length.
[  229.564856][ T9697] EXT4-fs (loop6): 1 truncate cleaned up
[  229.579929][   T12] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.590486][   T12] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  229.602081][   T12] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started
[  229.612871][ T9697] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  229.614098][ T9709] lo speed is unknown, defaulting to 1000
[  229.631322][ T9709] lo speed is unknown, defaulting to 1000
[  229.637171][ T9697] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.637414][ T9709] lo speed is unknown, defaulting to 1000
[  229.653685][ T9709] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  229.666589][ T9709] lo speed is unknown, defaulting to 1000
[  229.672754][ T9709] lo speed is unknown, defaulting to 1000
[  229.688102][ T9709] lo speed is unknown, defaulting to 1000
[  229.694393][ T9709] lo speed is unknown, defaulting to 1000
[  229.708983][ T9709] lo speed is unknown, defaulting to 1000
[  229.805795][ T9726] tipc: Started in network mode
[  229.810781][ T9726] tipc: Node identity ac14140f, cluster identity 4711
[  229.817852][ T9726] tipc: New replicast peer: 255.255.255.255
[  229.824062][ T9726] tipc: Enabled bearer <udp:s>, priority 10
[  229.832157][ T9728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9792 sclass=netlink_route_socket pid=9728 comm=syz.4.2048
[  229.845581][ T9728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=9728 comm=syz.4.2048
[  229.891006][ T9732] FAULT_INJECTION: forcing a failure.
[  229.891006][ T9732] name failslab, interval 1, probability 0, space 0, times 0
[  229.903756][ T9732] CPU: 1 UID: 0 PID: 9732 Comm: syz.4.2050 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  229.903787][ T9732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  229.903799][ T9732] Call Trace:
[  229.903806][ T9732]  <TASK>
[  229.903814][ T9732]  __dump_stack+0x1d/0x30
[  229.903837][ T9732]  dump_stack_lvl+0xe8/0x140
[  229.903925][ T9732]  dump_stack+0x15/0x1b
[  229.903943][ T9732]  should_fail_ex+0x265/0x280
[  229.903965][ T9732]  ? sctp_association_new+0x71/0x1200
[  229.904072][ T9732]  should_failslab+0x8c/0xb0
[  229.904099][ T9732]  __kmalloc_cache_noprof+0x4c/0x320
[  229.904204][ T9732]  sctp_association_new+0x71/0x1200
[  229.904247][ T9732]  ? sctp_v4_to_sk_saddr+0x29/0x40
[  229.904290][ T9732]  ? sctp_do_bind+0x497/0x4b0
[  229.904319][ T9732]  ? sctp_v4_scope+0x140/0x150
[  229.904346][ T9732]  sctp_connect_new_asoc+0x1a8/0x3a0
[  229.904458][ T9732]  sctp_sendmsg+0xf10/0x18d0
[  229.904546][ T9732]  ? selinux_socket_sendmsg+0x131/0x1b0
[  229.904600][ T9732]  ? __pfx_sctp_sendmsg+0x10/0x10
[  229.904629][ T9732]  inet_sendmsg+0xc5/0xd0
[  229.904650][ T9732]  __sock_sendmsg+0x102/0x180
[  229.904732][ T9732]  ____sys_sendmsg+0x345/0x4e0
[  229.904759][ T9732]  ___sys_sendmsg+0x17b/0x1d0
[  229.904799][ T9732]  __sys_sendmmsg+0x178/0x300
[  229.904835][ T9732]  __x64_sys_sendmmsg+0x57/0x70
[  229.904857][ T9732]  x64_sys_call+0x1c4a/0x2ff0
[  229.904880][ T9732]  do_syscall_64+0xd2/0x200
[  229.904987][ T9732]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  229.905011][ T9732]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  229.905046][ T9732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.905067][ T9732] RIP: 0033:0x7ff07bedebe9
[  229.905081][ T9732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.905123][ T9732] RSP: 002b:00007ff07a93f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  229.905142][ T9732] RAX: ffffffffffffffda RBX: 00007ff07c105fa0 RCX: 00007ff07bedebe9
[  229.905230][ T9732] RDX: 0000000000000002 RSI: 0000200000000880 RDI: 0000000000000003
[  229.905242][ T9732] RBP: 00007ff07a93f090 R08: 0000000000000000 R09: 0000000000000000
[  229.905254][ T9732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  229.905265][ T9732] R13: 00007ff07c106038 R14: 00007ff07c105fa0 R15: 00007ffde0bc4e38
[  229.905283][ T9732]  </TASK>
[  230.170171][ T9735] syz.5.2052: attempt to access beyond end of device
[  230.170171][ T9735] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  230.184423][ T9735] FAT-fs (loop11): unable to read boot sector
[  230.191377][ T9736] wg2: left promiscuous mode
[  230.195988][ T9736] wg2: left allmulticast mode
[  230.205541][ T9736] wg2: entered promiscuous mode
[  230.210458][ T9736] wg2: entered allmulticast mode
[  230.331971][ T9748] __nla_validate_parse: 11 callbacks suppressed
[  230.331991][ T9748] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2058'.
[  230.349674][ T9748] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2058'.
[  230.433414][ T9752] lo speed is unknown, defaulting to 1000
[  230.601475][ T9754] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9792 sclass=netlink_route_socket pid=9754 comm=syz.0.2060
[  230.655753][ T9754] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=9754 comm=syz.0.2060
[  230.840184][ T9757] wg2: left promiscuous mode
[  230.844844][ T9757] wg2: left allmulticast mode
[  230.923877][ T9757] wg2: entered promiscuous mode
[  230.928975][ T9757] wg2: entered allmulticast mode
[  230.947732][ T3409] tipc: Node number set to 2886997007
[  231.928135][   T29] kauditd_printk_skb: 438 callbacks suppressed
[  231.928151][   T29] audit: type=1326 audit(1755435444.632:12242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9767 comm="syz.0.2064" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc25cb0ebe9 code=0x0
[  231.961858][ T9761] loop4: detected capacity change from 0 to 1024
[  232.092282][   T29] audit: type=1326 audit(1755435444.812:12243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.115860][   T29] audit: type=1326 audit(1755435444.812:12244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.147331][   T29] audit: type=1326 audit(1755435444.862:12245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.171070][   T29] audit: type=1326 audit(1755435444.862:12246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.194742][   T29] audit: type=1326 audit(1755435444.862:12247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.218462][   T29] audit: type=1326 audit(1755435444.862:12248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.242059][   T29] audit: type=1326 audit(1755435444.862:12249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.265581][   T29] audit: type=1326 audit(1755435444.862:12250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9774 comm="syz.6.2067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.340900][ T9761] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.356797][ T9781] loop6: detected capacity change from 0 to 1024
[  232.469697][ T9786] syz.6.2071: attempt to access beyond end of device
[  232.469697][ T9786] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  232.483670][ T9786] FAT-fs (loop13): unable to read boot sector
[  232.491255][   T29] audit: type=1326 audit(1755435445.212:12251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9785 comm="syz.6.2071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  232.546089][ T9788] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  232.555747][ T9788] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  232.565165][ T9788] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  232.574825][ T9788] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  232.774409][ T9793] netlink: 'syz.0.2074': attribute type 4 has an invalid length.
[  232.987155][ T9795] netlink: 'syz.0.2075': attribute type 1 has an invalid length.
[  232.995015][ T9795] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2075'.
[  233.283776][ T9801] loop6: detected capacity change from 0 to 1024
[  233.293155][ T9801] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.352498][ T9761] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  233.362926][ T9801] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  233.364792][ T9804] syz.5.2078: attempt to access beyond end of device
[  233.364792][ T9804] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  233.384287][ T9804] FAT-fs (loop11): unable to read boot sector
[  233.392512][ T9761] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  233.401828][ T9801] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  233.476175][ T9811] syz.0.2080: attempt to access beyond end of device
[  233.476175][ T9811] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  233.489619][ T9811] FAT-fs (loop1): unable to read boot sector
[  233.537624][ T9812] loop3: detected capacity change from 0 to 2048
[  233.578405][ T9812]  loop3: p1 < > p4
[  233.585751][ T9812] loop3: p4 size 8388608 extends beyond EOD, truncated
[  233.605494][ T9820] loop0: detected capacity change from 0 to 128
[  233.613290][ T9820] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  233.654534][ T9824] loop0: detected capacity change from 0 to 128
[  233.662798][ T9824] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  233.666076][ T9826] loop3: detected capacity change from 0 to 2048
[  233.709291][ T9826]  loop3: p1 < > p4
[  233.718993][ T9826] loop3: p4 size 8388608 extends beyond EOD, truncated
[  233.812996][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.870316][ T9834] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9792 sclass=netlink_route_socket pid=9834 comm=syz.0.2091
[  233.884868][ T9834] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=9834 comm=syz.0.2091
[  233.897529][ T9835] loop4: detected capacity change from 0 to 1024
[  233.907292][ T9835] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.925029][ T9835] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  233.937159][ T9838] syz.0.2092: attempt to access beyond end of device
[  233.937159][ T9838] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  233.951472][ T9838] FAT-fs (loop1): unable to read boot sector
[  233.958838][ T9835] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  233.988585][ T9840] syz.0.2093: attempt to access beyond end of device
[  233.988585][ T9840] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  234.001726][ T9840] FAT-fs (loop1): unable to read boot sector
[  234.029596][ T9843] loop0: detected capacity change from 0 to 512
[  234.036451][ T9843] EXT4-fs: Ignoring removed mblk_io_submit option
[  234.043361][ T9843] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  234.053303][ T9843] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  234.081901][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.143151][ T9848] loop0: detected capacity change from 0 to 1024
[  234.206956][ T9855] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9855 comm=syz.0.2099
[  234.237596][ T9857] loop0: detected capacity change from 0 to 1024
[  234.244829][ T9857] EXT4-fs: Ignoring removed bh option
[  234.250505][ T9857] EXT4-fs: Ignoring removed nobh option
[  234.259601][ T9857] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.415172][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.434718][ T9866] syz.0.2103: attempt to access beyond end of device
[  234.434718][ T9866] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  234.448331][ T9866] FAT-fs (loop1): unable to read boot sector
[  234.692110][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.933290][ T9892] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2110'.
[  234.943471][ T9880] netlink: 22 bytes leftover after parsing attributes in process `syz.0.2110'.
[  235.035372][ T9896] loop6: detected capacity change from 0 to 1024
[  235.042485][ T9896] EXT4-fs: Ignoring removed bh option
[  235.048200][ T9896] EXT4-fs: Ignoring removed nobh option
[  235.060313][ T9896] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.086475][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.107253][ T9901] loop0: detected capacity change from 0 to 1024
[  235.116293][ T9901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.149140][ T9901] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  235.195192][ T9901] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  235.265762][ T9917] loop6: detected capacity change from 0 to 1024
[  235.289301][ T9917] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.320155][ T9917] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  235.339524][ T9917] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  235.657170][ T9933] openvswitch: netlink: Message has 6 unknown bytes.
[  235.681365][ T9935] loop4: detected capacity change from 0 to 1024
[  235.689101][ T9935] EXT4-fs: Ignoring removed bh option
[  235.694708][ T9935] EXT4-fs: Ignoring removed nobh option
[  235.719785][ T9935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.745864][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.909497][ T9943] lo speed is unknown, defaulting to 1000
[  236.794991][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.811162][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.907562][ T9951] loop5: detected capacity change from 0 to 1024
[  236.920763][ T9951] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.952690][ T9951] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  237.808861][ T9951] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  237.819801][ T9956] syz.6.2130: attempt to access beyond end of device
[  237.819801][ T9956] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  237.849356][   T29] kauditd_printk_skb: 242 callbacks suppressed
[  237.849368][   T29] audit: type=1326 audit(1755435450.572:12494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  237.879095][   T29] audit: type=1326 audit(1755435450.572:12495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  237.905773][ T9956] FAT-fs (loop13): unable to read boot sector
[  237.965990][   T29] audit: type=1326 audit(1755435450.632:12496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  237.989602][   T29] audit: type=1326 audit(1755435450.632:12497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  238.013167][   T29] audit: type=1326 audit(1755435450.632:12498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  238.036879][   T29] audit: type=1326 audit(1755435450.632:12499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  238.060628][   T29] audit: type=1326 audit(1755435450.632:12500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  238.084395][   T29] audit: type=1326 audit(1755435450.632:12501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9953 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25cb0ebe9 code=0x7ffc0000
[  238.107898][   T29] audit: type=1326 audit(1755435450.632:12502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9955 comm="syz.6.2130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  238.131546][   T29] audit: type=1326 audit(1755435450.632:12503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9955 comm="syz.6.2130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f6aebe9 code=0x7ffc0000
[  238.171322][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.275483][ T9974] loop0: detected capacity change from 0 to 1024
[  238.284306][ T9974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.313442][ T9974] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  238.718290][ T9979] loop4: detected capacity change from 0 to 1024
[  238.725079][ T9979] EXT4-fs: Ignoring removed bh option
[  238.730755][ T9979] EXT4-fs: Ignoring removed nobh option
[  238.736095][ T9978] loop5: detected capacity change from 0 to 128
[  238.736760][ T9974] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  238.751190][ T9978] FAT-fs (loop5): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  238.762705][ T9979] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.819463][ T9984] syz.5.2142: attempt to access beyond end of device
[  238.819463][ T9984] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  238.849343][ T9984] FAT-fs (loop11): unable to read boot sector
[  238.912756][ T9991] loop3: detected capacity change from 0 to 256
[  239.042943][T10000] lo speed is unknown, defaulting to 1000
[  239.092142][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.492913][T10030] SELinux:  policydb version 0 does not match my version range 15-35
[  239.501457][T10030] SELinux: failed to load policy
[  239.811107][T10032] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2159'.
[  239.830816][T10032] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2159'.
[  239.929262][T10036] loop3: detected capacity change from 0 to 1024
[  239.944926][T10036] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  239.956833][T10036] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  240.003925][T10036] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  240.032722][T10039] siw: device registration error -23
[  240.042349][T10036] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.115927][T10036] lo speed is unknown, defaulting to 1000
[  240.164798][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.280221][T10055] lo speed is unknown, defaulting to 1000
[  240.440769][T10059] loop4: detected capacity change from 0 to 1024
[  240.462355][T10059] EXT4-fs: Ignoring removed bh option
[  240.469729][T10059] EXT4-fs: Ignoring removed nobh option
[  240.481982][T10059] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.526302][T10063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2170'.
[  240.564247][T10063] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2170'.
[  240.786820][T10067] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2172'.
[  240.825348][T10067] vlan2: entered allmulticast mode
[  241.067491][T10076] loop5: detected capacity change from 0 to 512
[  241.091540][T10076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.105444][T10076] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  241.123065][T10076] FAULT_INJECTION: forcing a failure.
[  241.123065][T10076] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  241.136194][T10076] CPU: 0 UID: 0 PID: 10076 Comm: syz.5.2175 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  241.136229][T10076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  241.136244][T10076] Call Trace:
[  241.136251][T10076]  <TASK>
[  241.136259][T10076]  __dump_stack+0x1d/0x30
[  241.136279][T10076]  dump_stack_lvl+0xe8/0x140
[  241.136358][T10076]  dump_stack+0x15/0x1b
[  241.136395][T10076]  should_fail_ex+0x265/0x280
[  241.136417][T10076]  should_fail+0xb/0x20
[  241.136438][T10076]  should_fail_usercopy+0x1a/0x20
[  241.136512][T10076]  strncpy_from_user+0x25/0x230
[  241.136562][T10076]  ? kmem_cache_alloc_noprof+0x186/0x310
[  241.136593][T10076]  ? getname_flags+0x80/0x3b0
[  241.136628][T10076]  getname_flags+0xae/0x3b0
[  241.136662][T10076]  __x64_sys_unlink+0x21/0x40
[  241.136763][T10076]  x64_sys_call+0x2dc0/0x2ff0
[  241.136784][T10076]  do_syscall_64+0xd2/0x200
[  241.136874][T10076]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  241.136909][T10076]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  241.136940][T10076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.136961][T10076] RIP: 0033:0x7f67b206ebe9
[  241.137025][T10076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.137048][T10076] RSP: 002b:00007f67b0acf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  241.137091][T10076] RAX: ffffffffffffffda RBX: 00007f67b2295fa0 RCX: 00007f67b206ebe9
[  241.137107][T10076] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  241.137120][T10076] RBP: 00007f67b0acf090 R08: 0000000000000000 R09: 0000000000000000
[  241.137132][T10076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.137147][T10076] R13: 00007f67b2296038 R14: 00007f67b2295fa0 R15: 00007ffe231aae38
[  241.137169][T10076]  </TASK>
[  242.008200][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.056156][T10080] syz.3.2178: attempt to access beyond end of device
[  242.056156][T10080] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  242.092592][T10080] FAT-fs (loop7): unable to read boot sector
[  242.127978][T10084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2180'.
[  242.295024][T10089] ip6gre1: entered allmulticast mode
[  242.325855][T10092] sctp: [Deprecated]: syz.5.2182 (pid 10092) Use of int in max_burst socket option.
[  242.325855][T10092] Use struct sctp_assoc_value instead
[  242.408515][T10096] SELinux:  policydb version 0 does not match my version range 15-35
[  242.417382][T10096] SELinux: failed to load policy
[  242.965177][T10099] loop0: detected capacity change from 0 to 1024
[  242.991457][T10099] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  243.076960][T10102] loop3: detected capacity change from 0 to 512
[  243.085962][T10102] EXT4-fs: Ignoring removed mblk_io_submit option
[  243.098313][T10102] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  243.104548][T10106] loop6: detected capacity change from 0 to 1024
[  243.108204][T10102] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  243.115001][T10106] EXT4-fs: Ignoring removed bh option
[  243.128784][T10106] EXT4-fs: Ignoring removed nobh option
[  243.164455][T10099] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  243.279376][T10111] loop5: detected capacity change from 0 to 512
[  243.297082][T10111] EXT4-fs: Ignoring removed mblk_io_submit option
[  243.324984][T10111] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  243.334885][T10111] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities
[  243.406564][   T29] kauditd_printk_skb: 211 callbacks suppressed
[  243.406602][   T29] audit: type=1326 audit(1755435456.122:12715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10115 comm="syz.5.2189" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f67b206ebe9 code=0x0
[  244.066426][T10123] sctp: [Deprecated]: syz.4.2193 (pid 10123) Use of int in max_burst socket option.
[  244.066426][T10123] Use struct sctp_assoc_value instead
[  244.210549][T10135] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  244.227111][T10127] loop4: detected capacity change from 0 to 8192
[  244.262312][T10137] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  244.292116][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2198'.
[  244.301131][T10139] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2198'.
[  244.310119][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2198'.
[  244.319812][   T29] audit: type=1400 audit(1755435457.002:12716): avc:  denied  { shutdown } for  pid=10138 comm="syz.0.2198" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  244.348004][T10137] SELinux: failed to load policy
[  244.385800][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2198'.
[  244.407609][T10142] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.501768][T10142] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.578467][T10146] syz.3.2200: attempt to access beyond end of device
[  244.578467][T10146] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  244.603294][T10142] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.634757][   T29] audit: type=1326 audit(1755435457.352:12717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.635181][T10146] FAT-fs (loop7): unable to read boot sector
[  244.716585][T10142] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.723993][   T29] audit: type=1326 audit(1755435457.352:12718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.750548][   T29] audit: type=1326 audit(1755435457.352:12719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.774193][   T29] audit: type=1326 audit(1755435457.382:12720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.797820][   T29] audit: type=1326 audit(1755435457.382:12721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.821427][   T29] audit: type=1326 audit(1755435457.382:12722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.845162][   T29] audit: type=1326 audit(1755435457.402:12723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.868817][   T29] audit: type=1326 audit(1755435457.402:12724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10145 comm="syz.3.2200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  244.959085][T10150] loop3: detected capacity change from 0 to 1024
[  244.970504][   T37] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.987350][T10150] EXT4-fs: Ignoring removed bh option
[  244.993444][   T57] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.029917][T10150] EXT4-fs: Ignoring removed nobh option
[  245.042766][   T57] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.074538][   T57] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.232252][T10158] syz.5.2204: attempt to access beyond end of device
[  245.232252][T10158] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  245.298653][T10158] FAT-fs (loop11): unable to read boot sector
[  245.487438][T10168] loop0: detected capacity change from 0 to 1024
[  245.512655][T10168] EXT4-fs: Ignoring removed bh option
[  245.534013][T10168] EXT4-fs: Ignoring removed nobh option
[  245.569016][T10171] loop5: detected capacity change from 0 to 1024
[  245.778459][T10171] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  245.908909][T10177] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  245.970811][T10179] loop4: detected capacity change from 0 to 512
[  246.007111][T10179] EXT4-fs: Ignoring removed i_version option
[  246.014462][T10181] syz.6.2210: attempt to access beyond end of device
[  246.014462][T10181] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  246.036272][T10179] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  246.065124][T10181] FAT-fs (loop13): unable to read boot sector
[  246.086149][T10179] EXT4-fs (loop4): 1 truncate cleaned up
[  246.350497][T10192] lo speed is unknown, defaulting to 1000
[  247.261349][T10196] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  247.272371][T10196] SELinux: failed to load policy
[  248.257601][T10207] loop3: detected capacity change from 0 to 1024
[  248.305540][T10207] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  248.604916][   T29] kauditd_printk_skb: 92 callbacks suppressed
[  248.604932][   T29] audit: type=1400 audit(1755435461.322:12817): avc:  denied  { name_bind } for  pid=10209 comm="syz.4.2220" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  248.644548][T10210] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2220'.
[  248.653610][T10210] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2220'.
[  248.662637][T10210] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2220'.
[  248.704646][   T29] audit: type=1326 audit(1755435461.422:12818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.728343][   T29] audit: type=1326 audit(1755435461.422:12819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.754374][T10210] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2220'.
[  248.860928][   T29] audit: type=1326 audit(1755435461.472:12820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.884620][   T29] audit: type=1326 audit(1755435461.472:12821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.908444][   T29] audit: type=1326 audit(1755435461.472:12822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.932031][   T29] audit: type=1326 audit(1755435461.492:12823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.955553][   T29] audit: type=1326 audit(1755435461.492:12824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  248.979203][   T29] audit: type=1326 audit(1755435461.492:12825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  249.002833][   T29] audit: type=1326 audit(1755435461.492:12826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10209 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff07bedebe9 code=0x7ffc0000
[  249.148256][T10220] syz.5.2215: attempt to access beyond end of device
[  249.148256][T10220] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  249.168841][T10222] syz.6.2222: attempt to access beyond end of device
[  249.168841][T10222] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  249.183442][T10221] syz.0.2217: attempt to access beyond end of device
[  249.183442][T10221] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  249.203470][T10220] FAT-fs (loop11): unable to read boot sector
[  249.210802][T10222] FAT-fs (loop13): unable to read boot sector
[  249.210823][T10223] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  249.235344][T10221] FAT-fs (loop1): unable to read boot sector
[  249.333161][T10235] loop5: detected capacity change from 0 to 128
[  249.351635][T10235] FAT-fs (loop5): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  249.424091][T10245] loop5: detected capacity change from 0 to 512
[  249.439155][T10245] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #3: comm syz.5.2229: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  249.458489][T10245] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.2229: Bad quota inode: 3, type: 0
[  249.470066][T10245] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  249.485093][T10245] EXT4-fs (loop5): mount failed
[  249.640816][T10253] loop3: detected capacity change from 0 to 1024
[  249.674229][T10253] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  249.685157][T10256] loop4: detected capacity change from 0 to 128
[  249.693072][T10256] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  249.720125][T10253] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  250.216080][T10264] syz.6.2234: attempt to access beyond end of device
[  250.216080][T10264] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  250.229280][T10264] FAT-fs (loop13): unable to read boot sector
[  250.287243][T10268] syz.6.2237: attempt to access beyond end of device
[  250.287243][T10268] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  250.289585][T10270] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2236'.
[  250.300530][T10268] FAT-fs (loop13): unable to read boot sector
[  250.315942][T10270] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2236'.
[  250.375028][T10274] lo speed is unknown, defaulting to 1000
[  250.459531][ T3300] EXT4-fs unmount: 16 callbacks suppressed
[  250.459547][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.582001][T10284] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2242'.
[  250.591073][T10284] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2242'.
[  250.600170][T10284] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2242'.
[  250.609254][T10284] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2242'.
[  250.624366][T10284] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.711153][T10284] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.755240][T10291] loop5: detected capacity change from 0 to 8192
[  250.771092][T10284] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.842959][T10299] wg2: left promiscuous mode
[  250.847764][T10299] wg2: left allmulticast mode
[  250.855759][T10299] wg2: entered promiscuous mode
[  250.860779][T10299] wg2: entered allmulticast mode
[  250.873750][T10284] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.907103][T10301] ip6gre1: entered allmulticast mode
[  250.951456][ T3429] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  250.963494][ T3429] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  250.980223][   T12] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  250.989724][   T12] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.012338][T10306] syz.0.2249: attempt to access beyond end of device
[  251.012338][T10306] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  251.025448][T10306] FAT-fs (loop1): unable to read boot sector
[  251.178588][T10318] loop6: detected capacity change from 0 to 1024
[  251.204323][T10318] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.220137][T10308] loop4: detected capacity change from 0 to 8192
[  251.233862][T10318] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  251.272176][T10318] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  251.417408][T10324] wg2: left promiscuous mode
[  251.422092][T10324] wg2: left allmulticast mode
[  251.432939][T10324] wg2: entered promiscuous mode
[  251.437938][T10324] wg2: entered allmulticast mode
[  251.672240][T10331] loop5: detected capacity change from 0 to 1024
[  251.684932][T10329] lo speed is unknown, defaulting to 1000
[  251.783622][T10333] loop5: detected capacity change from 0 to 1024
[  251.809437][T10333] EXT4-fs: Ignoring removed bh option
[  251.831601][T10333] EXT4-fs: Ignoring removed nobh option
[  251.862116][T10333] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.066658][T10338] loop0: detected capacity change from 0 to 512
[  252.079152][ T8531] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.098130][T10338] EXT4-fs: Ignoring removed mblk_io_submit option
[  252.134673][T10338] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  252.138774][T10342] mmap: syz.6.2261 (10342) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  252.144546][T10338] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  252.191122][T10345] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.240312][T10345] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.301193][T10347] syz.0.2263: attempt to access beyond end of device
[  252.301193][T10347] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  252.324390][T10345] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.364699][T10347] FAT-fs (loop1): unable to read boot sector
[  252.420022][T10345] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.535453][T10352] FAULT_INJECTION: forcing a failure.
[  252.535453][T10352] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.548670][T10352] CPU: 1 UID: 0 PID: 10352 Comm: syz.0.2265 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  252.548734][T10352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  252.548778][T10352] Call Trace:
[  252.548785][T10352]  <TASK>
[  252.548791][T10352]  __dump_stack+0x1d/0x30
[  252.548815][T10352]  dump_stack_lvl+0xe8/0x140
[  252.548835][T10352]  dump_stack+0x15/0x1b
[  252.548851][T10352]  should_fail_ex+0x265/0x280
[  252.548872][T10352]  should_fail+0xb/0x20
[  252.548934][T10352]  should_fail_usercopy+0x1a/0x20
[  252.548967][T10352]  copy_to_user_nofault+0x7f/0x120
[  252.548996][T10352]  bpf_probe_write_user+0x83/0xc0
[  252.549103][T10352]  bpf_prog_6303d92f98284ad8+0x44/0x4c
[  252.549119][T10352]  bpf_trace_run2+0x107/0x1c0
[  252.549146][T10352]  ? skb_put+0xa9/0xf0
[  252.549168][T10352]  ? audit_log_d_path+0xf4/0x150
[  252.549222][T10352]  ? audit_log_n_string+0x26b/0x290
[  252.549254][T10352]  ? audit_log_d_path+0xf4/0x150
[  252.549361][T10352]  kfree+0x27b/0x320
[  252.549458][T10352]  ? audit_log_untrustedstring+0xb6/0xd0
[  252.549499][T10352]  audit_log_d_path+0xf4/0x150
[  252.549552][T10352]  audit_log_d_path_exe+0x42/0x70
[  252.549583][T10352]  audit_log_task+0x1e9/0x250
[  252.549644][T10352]  audit_seccomp+0x61/0x100
[  252.549673][T10352]  ? __seccomp_filter+0x68c/0x10d0
[  252.549698][T10352]  __seccomp_filter+0x69d/0x10d0
[  252.549726][T10352]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  252.549826][T10352]  ? vfs_write+0x7e8/0x960
[  252.549852][T10352]  __secure_computing+0x82/0x150
[  252.549951][T10352]  syscall_trace_enter+0xcf/0x1e0
[  252.550008][T10352]  do_syscall_64+0xac/0x200
[  252.550090][T10352]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  252.550113][T10352]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  252.550160][T10352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.550187][T10352] RIP: 0033:0x7fc25cb0ebe9
[  252.550204][T10352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.550227][T10352] RSP: 002b:00007fc25b56f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  252.550245][T10352] RAX: ffffffffffffffda RBX: 00007fc25cd35fa0 RCX: 00007fc25cb0ebe9
[  252.550295][T10352] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000c80
[  252.550309][T10352] RBP: 00007fc25b56f090 R08: 0000000000000000 R09: 0000000000000000
[  252.550357][T10352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.550372][T10352] R13: 00007fc25cd36038 R14: 00007fc25cd35fa0 R15: 00007ffd85951148
[  252.550395][T10352]  </TASK>
[  253.583463][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.712014][   T29] kauditd_printk_skb: 371 callbacks suppressed
[  253.712103][   T29] audit: type=1326 audit(1755435466.432:13198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.776996][   T29] audit: type=1326 audit(1755435466.472:13199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.800826][   T29] audit: type=1326 audit(1755435466.472:13200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.824523][   T29] audit: type=1326 audit(1755435466.472:13201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.848166][   T29] audit: type=1326 audit(1755435466.472:13202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.871777][   T29] audit: type=1326 audit(1755435466.472:13203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.895526][   T29] audit: type=1326 audit(1755435466.472:13204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.919185][   T29] audit: type=1326 audit(1755435466.472:13205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.942808][   T29] audit: type=1326 audit(1755435466.472:13206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  253.966434][   T29] audit: type=1326 audit(1755435466.472:13207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10366 comm="syz.5.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b206ebe9 code=0x7ffc0000
[  254.007565][T10374] loop5: detected capacity change from 0 to 1024
[  254.018267][T10374] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.043779][T10374] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  254.055762][T10374] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  254.130238][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.150927][T10379] syz.5.2274: attempt to access beyond end of device
[  254.150927][T10379] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  254.164878][T10379] FAT-fs (loop11): unable to read boot sector
[  254.233894][T10383] loop4: detected capacity change from 0 to 1024
[  254.250754][T10383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.486535][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.514361][T10387] loop4: detected capacity change from 0 to 512
[  254.521237][T10387] EXT4-fs: Ignoring removed i_version option
[  254.527608][T10387] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  254.541731][T10387] EXT4-fs (loop4): 1 truncate cleaned up
[  254.547991][T10387] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  254.683541][T10392] loop0: detected capacity change from 0 to 1024
[  254.690650][T10392] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  254.702659][T10392] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #3: block 1: comm syz.0.2278: lblock 1 mapped to illegal pblock 1 (length 1)
[  254.717094][T10392] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2278: Failed to acquire dquot type 0
[  254.728712][T10392] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.2278: Freeing blocks not in datazone - block = 0, count = 4096
[  254.742411][T10392] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2278: Invalid inode bitmap blk 0 in block_group 0
[  254.755126][ T3429] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  254.770555][T10392] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  254.779216][T10392] EXT4-fs (loop0): 1 orphan inode deleted
[  254.785492][T10392] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.799345][ T3429] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0
[  254.812758][T10392] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  254.843738][T10392] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (18333!=0)
[  255.353746][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.425981][T10405] loop4: detected capacity change from 0 to 1024
[  255.434782][T10405] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.458022][T10405] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  255.469913][T10405] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  255.482946][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.505543][T10409] __nla_validate_parse: 6 callbacks suppressed
[  255.505560][T10409] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2284'.
[  255.522721][T10409] siw: device registration error -23
[  255.567709][ T6715] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.587168][ T6715] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.603386][ T6715] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.625468][ T6715] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.646558][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.654024][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.661439][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.668954][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[  255.676340][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.683753][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.691157][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.698749][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.706152][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.713562][ T3409] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.727436][ T3409] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  255.778606][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.826331][T10428] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  255.836272][T10428] SELinux: failed to load policy
[  256.530487][T10436] openvswitch: netlink: Message has 6 unknown bytes.
[  256.586706][T10440] loop4: detected capacity change from 0 to 1024
[  256.593831][T10440] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  256.609104][T10440] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #3: block 1: comm syz.4.2287: lblock 1 mapped to illegal pblock 1 (length 1)
[  256.628030][T10440] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2287: Failed to acquire dquot type 0
[  256.640946][T10440] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2287: Freeing blocks not in datazone - block = 0, count = 4096
[  256.654725][T10440] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2287: Invalid inode bitmap blk 0 in block_group 0
[  256.667646][ T3429] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  256.691503][T10440] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  256.709045][ T3429] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0
[  256.723508][T10440] EXT4-fs (loop4): 1 orphan inode deleted
[  256.733001][T10440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.782588][T10440] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  256.822633][T10440] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (18333!=0)
[  256.840133][T10446] loop0: detected capacity change from 0 to 1024
[  256.848968][T10446] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.874332][T10449] wg2: left promiscuous mode
[  256.879003][T10449] wg2: left allmulticast mode
[  256.886494][T10446] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  256.894912][T10449] wg2: entered promiscuous mode
[  256.899916][T10449] wg2: entered allmulticast mode
[  256.942500][T10446] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  257.161164][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.179125][T10461] loop0: detected capacity change from 0 to 512
[  257.186044][T10461] EXT4-fs: Ignoring removed mblk_io_submit option
[  257.192780][T10461] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  257.202726][T10461] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  257.288086][T10464] loop0: detected capacity change from 0 to 1024
[  257.296744][T10464] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.326441][T10464] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  257.338219][T10464] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  257.375308][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.462227][T10472] lo speed is unknown, defaulting to 1000
[  257.815015][T10488] loop5: detected capacity change from 0 to 1024
[  257.833251][T10488] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  257.843286][T10492] loop4: detected capacity change from 0 to 512
[  257.852582][T10492] EXT4-fs: Ignoring removed mblk_io_submit option
[  257.859693][T10492] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  257.869732][T10492] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  257.878999][T10488] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  257.889155][T10488] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  257.925440][T10496] loop4: detected capacity change from 0 to 128
[  257.932858][T10496] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  258.038893][T10501] loop4: detected capacity change from 0 to 8192
[  258.092668][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.158843][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.208540][T10512] syz.5.2315: attempt to access beyond end of device
[  258.208540][T10512] loop11: rw=0, sector=0, nr_sectors = 1 limit=0
[  258.259964][T10512] FAT-fs (loop11): unable to read boot sector
[  258.682852][T10529] syz.3.2321: attempt to access beyond end of device
[  258.682852][T10529] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  258.703017][T10530] loop0: detected capacity change from 0 to 1024
[  258.705027][T10529] FAT-fs (loop7): unable to read boot sector
[  258.726023][   T29] kauditd_printk_skb: 141 callbacks suppressed
[  258.726057][   T29] audit: type=1326 audit(1755435471.442:13343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.729115][T10530] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.757331][   T29] audit: type=1326 audit(1755435471.452:13344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.791946][   T29] audit: type=1326 audit(1755435471.452:13345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.815634][   T29] audit: type=1326 audit(1755435471.452:13346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.839233][   T29] audit: type=1326 audit(1755435471.452:13347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.862902][   T29] audit: type=1326 audit(1755435471.452:13348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.886613][   T29] audit: type=1326 audit(1755435471.452:13349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.910539][   T29] audit: type=1326 audit(1755435471.452:13350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.934226][   T29] audit: type=1326 audit(1755435471.452:13351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.958004][   T29] audit: type=1326 audit(1755435471.532:13352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10528 comm="syz.3.2321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532b11ebe9 code=0x7ffc0000
[  258.958407][T10530] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  259.038028][T10534] loop3: detected capacity change from 0 to 512
[  259.044836][T10534] EXT4-fs: Ignoring removed mblk_io_submit option
[  259.051868][T10534] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  259.061737][T10534] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  259.102264][T10538] loop4: detected capacity change from 0 to 128
[  259.110179][T10538] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  259.113792][T10537] netlink: 148 bytes leftover after parsing attributes in process `syz.3.2324'.
[  259.172165][T10541] wg2: left promiscuous mode
[  259.176837][T10541] wg2: left allmulticast mode
[  259.181314][T10543] loop4: detected capacity change from 0 to 1024
[  259.198421][T10541] wg2: entered promiscuous mode
[  259.203302][T10541] wg2: entered allmulticast mode
[  259.215183][T10543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.272074][T10543] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  259.284814][T10543] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  259.312797][T10550] loop5: detected capacity change from 0 to 1024
[  259.331176][T10550] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.446517][T10550] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  259.497588][T10550] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  259.511843][T10556] loop3: detected capacity change from 0 to 8192
[  259.532354][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.547679][T10565] ip6gre1: entered allmulticast mode
[  259.576742][T10568] syz.0.2333: attempt to access beyond end of device
[  259.576742][T10568] loop1: rw=0, sector=0, nr_sectors = 1 limit=0
[  259.601965][T10568] FAT-fs (loop1): unable to read boot sector
[  259.610862][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.650993][T10573] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2336'.
[  259.661994][T10573] siw: device registration error -23
[  259.718531][T10578] loop5: detected capacity change from 0 to 1024
[  259.729696][T10578] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.746462][T10581] loop0: detected capacity change from 0 to 128
[  259.754001][T10581] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  259.775336][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.796355][T10583] loop0: detected capacity change from 0 to 1024
[  259.803240][T10583] EXT4-fs: Ignoring removed bh option
[  259.809347][T10583] EXT4-fs: Ignoring removed nobh option
[  259.831240][T10583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.845447][T10578] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  259.950669][T10578] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  260.563516][ T8191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.598524][T10598] lo speed is unknown, defaulting to 1000
[  260.905255][T10612] lo speed is unknown, defaulting to 1000
[  261.399471][T10618] syz.6.2350: attempt to access beyond end of device
[  261.399471][T10618] loop13: rw=0, sector=0, nr_sectors = 1 limit=0
[  261.453153][T10618] FAT-fs (loop13): unable to read boot sector
[  261.720745][T10621] loop6: detected capacity change from 0 to 8192
[  262.084098][T10621] ==================================================================
[  262.092229][T10621] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs
[  262.099400][T10621] 
[  262.101731][T10621] write to 0xffff8881527204c6 of 2 bytes by task 10624 on cpu 1:
[  262.109448][T10621]  fat16_ent_put+0x28/0x60
[  262.113895][T10621]  fat_alloc_clusters+0x4ce/0xa80
[  262.118948][T10621]  fat_get_block+0x258/0x5e0
[  262.123556][T10621]  __block_write_begin_int+0x400/0xf90
[  262.129048][T10621]  cont_write_begin+0x5fc/0x970
[  262.133913][T10621]  fat_write_begin+0x4f/0xe0
[  262.138500][T10621]  generic_perform_write+0x181/0x490
[  262.143789][T10621]  __generic_file_write_iter+0x9e/0x120
[  262.149342][T10621]  generic_file_write_iter+0x8d/0x2f0
[  262.154715][T10621]  do_iter_readv_writev+0x49c/0x540
[  262.159916][T10621]  vfs_writev+0x2df/0x8b0
[  262.164260][T10621]  __se_sys_pwritev2+0xfc/0x1c0
[  262.169111][T10621]  __x64_sys_pwritev2+0x67/0x80
[  262.173967][T10621]  x64_sys_call+0x2c55/0x2ff0
[  262.178645][T10621]  do_syscall_64+0xd2/0x200
[  262.183158][T10621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.189058][T10621] 
[  262.191380][T10621] read to 0xffff888152720400 of 512 bytes by task 10621 on cpu 0:
[  262.199183][T10621]  fat_mirror_bhs+0x1df/0x320
[  262.203867][T10621]  fat_ent_write+0xd0/0xe0
[  262.208295][T10621]  fat_chain_add+0x15d/0x440
[  262.212889][T10621]  fat_get_block+0x46c/0x5e0
[  262.217484][T10621]  __block_write_begin_int+0x400/0xf90
[  262.222955][T10621]  cont_write_begin+0x5fc/0x970
[  262.227809][T10621]  fat_write_begin+0x4f/0xe0
[  262.232402][T10621]  cont_write_begin+0x1b0/0x970
[  262.237264][T10621]  fat_write_begin+0x4f/0xe0
[  262.241855][T10621]  generic_cont_expand_simple+0xad/0x150
[  262.247501][T10621]  fat_cont_expand+0x3e/0x170
[  262.252178][T10621]  fat_setattr+0x2a5/0x8a0
[  262.256594][T10621]  notify_change+0x806/0x890
[  262.261202][T10621]  do_ftruncate+0x34b/0x450
[  262.265709][T10621]  __x64_sys_ftruncate+0x68/0xc0
[  262.270656][T10621]  x64_sys_call+0x2d52/0x2ff0
[  262.275341][T10621]  do_syscall_64+0xd2/0x200
[  262.279861][T10621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.285753][T10621] 
[  262.288081][T10621] Reported by Kernel Concurrency Sanitizer on:
[  262.294235][T10621] CPU: 0 UID: 0 PID: 10621 Comm: syz.6.2351 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(voluntary) 
[  262.306735][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  262.316790][T10621] ==================================================================
[  262.764533][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.