last executing test programs:

6m19.415970579s ago: executing program 1 (id=202):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000240)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%-010d \x00'}, 0x20)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000280)={r0, r1}, 0xc)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x840000, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f0000000640)={[{@dioread_lock}, {@usrquota}, {@errors_continue}, {@init_itable}, {@grpquota}, {@grpjquota, 0x2e}, {@resuid}, {@errors_remount}, {@nolazytime}, {@nomblk_io_submit}, {@min_batch_time={'min_batch_time', 0x3d, 0x9}}], [], 0x2c}, 0x84, 0x4ac, &(0x7f0000000740)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FUVFImrRADxwKAqkXJCQ4lGNIQ1WatqgJEq0qGhAqR8RfAByRkDhx4QQSQsCJxxXuCKlCvbRwQEFr7ybrxE4d52GoPx/JzszurGe+uzv2eCfrALpWJXtKIrZGxC8RMVDL1heo1P7cunFl/M8bV8aTmJ198Y+kWu7mjSvjRdFiuy155qfLEem7SextUO/UpctnxyYnJy7m+eHpc68PT126/NiZc2OnJ05PnB89duzokZEnnxh9fFXizOK6ueetC/t2n3j5g+fHZ+OV7z7N2rs1X1+Oo2ZwxXVWohKzufml/dXnh1b86v8u20rppLeDDWFZeiIiO1x91f4/ED0xf/AG4rl35jJfd6iBwJrJPpt2LFrak/9N5z6/gDtRoo9Dlyo+8bPvv8VjPccfnXb96ex5ohr/rfxRW9MbafZddrD2jb2nyfbHV1j/1og4OfPXh9kjGl6HAABYXV9m459HG43/0rirVG57PocyGBGHImJnRPwvInZFxP8jqmXvjoh7lll/ZUF+8fjnx01tBdaibPz3VD63VT/+S/MSyVxuWzX+vuTVM5MTh/N9cjD6NmT5kSXq+OrZn99vtq5SGv9lj6z+YiyYt+P33g3125wamx5bQch1rr8dsae3UfzJ3ExAtgd2R8SeNl4/22dnHvlkX5bevmXx+tvHv4RVmGea/Tji4drxn4kF8ReSWk3N5ieHN8bkxOHh4qxY7Psfrr1QzveV0nXxb2wtpo3tBttAdvw3Nzz/8/iLblDM104tv45rv77X9DvN4uOfxMmZcon8/C+9C2Tnf3/yUjXdny97c2x6+uJIRH++oG756Py2Rb4on8V/8EDj/r8z4u+P8u32RkR2Et8bEfdFxP687fdHxAMRcWCJ+L995sHXlt5DbZ7/qyCL/9RSxz9iMCnP17eR6Dn7zRfN6m/t/e9oNXUwX9LK+1+rDVzJvgMAAID/irQ6B52kQ0W6dHFqV2xOJy9MTR+qxBvnT9XmqgejLy2udA2UroeO5NeGi/zogvyRiNhR/U+jTdX80PiFyW2dDByo3qtT1/8jTYeGaut+a/ZPL8CdY1nzaOW7Az/7fPUbA6wr92tC99L/oXvp/9C99H/oXo36/9WIWx1oCrDOfP5D99L/oXvp/9C99H/oSotviS9+aKGdO/3nEztPrGjzNU/MDqzJK88sf6ueNYo0yj/a0TSRRER7VUS6dJn+FmrvWCK9bZnjbe6WZST254kNEdHqVlfXba929n0JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgtfwTAAD//+8W3h0=")
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000200)='sys_enter\x00', r0}, 0x10)
sendfile(r2, r1, &(0x7f00000002c0)=0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000300), 0x0, 0x10001)
syz_genetlink_get_family_id$nbd(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x3)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r6 = dup(r5)
ioctl$TIOCL_SETVESABLANK(r6, 0x560e, &(0x7f0000000140))

6m19.185338478s ago: executing program 1 (id=206):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
fallocate(r0, 0x10, 0x160483b7, 0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
unshare(0x42000000)
syz_clone3(&(0x7f00000003c0)={0x44084000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x3}, &(0x7f0000000180)=""/163, 0xa3, &(0x7f0000000240)=""/9, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, {r0}}, 0x58)

6m18.269773753s ago: executing program 1 (id=215):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
ioctl(0xffffffffffffffff, 0x8b1a, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002100)=@newtfilter={0x4c, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r7, {0xf}, {}, {0x7, 0x4}}, [@filter_kind_options=@f_fw={{0x7}, {0x20, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x10, 0xa}}, @TCA_FW_INDEV={0x14, 0x3, 'veth1_virt_wifi\x00'}]}}]}, 0x4c}}, 0x24040084)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0xfd, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x4d}}], 0x30}, 0x24000800)

6m17.283882463s ago: executing program 1 (id=223):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
fallocate(r0, 0x10, 0x160483b7, 0x5)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000400)='ns\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_clone3(&(0x7f00000003c0)={0x44084000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x3}, &(0x7f0000000180)=""/163, 0xa3, &(0x7f0000000240)=""/9, &(0x7f0000000380)=[r1, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, {r0}}, 0x58)

6m16.156065496s ago: executing program 1 (id=228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000400), &(0x7f0000000500)=r1}, 0x20)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x8000)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000040000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000480)={{r5}, &(0x7f0000000400), &(0x7f0000000440)='%-010d \x00'}, 0x20)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r6)
sendmsg$NL80211_CMD_VENDOR(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x24, r7, 0x2cb3b0415539fbbb, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff81}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0)

6m15.73097743s ago: executing program 1 (id=232):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000"], 0xa0}}, 0x8040)

6m15.73080744s ago: executing program 32 (id=232):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000"], 0xa0}}, 0x8040)

6m8.168863459s ago: executing program 2 (id=264):
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1f8d02, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_usb_connect$cdc_ecm(0x5, 0x8c, &(0x7f0000000b00)=ANY=[@ANYBLOB="12015002020000202505a1a440000102030109027a0001013c007a0904000103020600fb0524060000052400ff010d240f0109000000ff7f02000308241c0300080000052415090005241509000a2407e2be0009000600082407ce0500018012010100000003000500090001000200010009058103080604d4ff09058202ff033bcc0409050302000210080360a466ce97625d5c65a423bb14348c3801188eb4b009968a816859ade9a84e04929fe11776ac11e9b1898877cdc349b7827a3c43ce907079ccc2193c3ed51d8b464f58e3"], 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x280008a, &(0x7f00000007c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c696f636861727365743d64656661756c742c756e695f786c6174653d302c6e6f6e756d7461696c3d302c757466383d302c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030322c726f6469722c73686f72866e616d653d6d697865642c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7569643d", @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=0,shortname=mixed,uni_xlate=0,shortname=winnt,\x00'], 0x96, 0x2a9, &(0x7f0000000500)="$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")
socket(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
io_setup(0x281, &(0x7f0000000100))
syz_usb_disconnect(r0)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000001440), 0x800, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=rdma'])

6m4.756352427s ago: executing program 2 (id=282):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000080)={@link_local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb3e02", 0x40, 0x3a, 0x0, @private2, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00\x00u', 0x0, 0x11, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, [@dstopts={0x0, 0x1, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}]}}}}}}}, 0x0)
r1 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa1586dd6000021000403afffe8000000000000000000000000000bbff02000000000000000000000000000103019078300000006d5d296b08002bffff0100000000000000000000000000016fbe6c261ae900200100000000000000000000000000022f0004000500090008"], 0x0)
add_key(&(0x7f0000000140)='ceph\x00', &(0x7f0000000180), &(0x7f0000000040), 0x1d4, r1)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=<r4=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x3}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0x33, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, &(0x7f00000004c0), &(0x7f0000000500)=r6}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000006000000000000000000850000000700000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x2}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000007000000020000000400000005"], 0x87)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
sendmsg$nl_generic(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r11 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r11, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)
r12 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x20280, 0x0)
ioctl$IMADDTIMER(r12, 0x80044940, &(0x7f0000000080)=0x14)
unshare(0x62040200)
close(r12)
sendmmsg$inet(r0, 0x0, 0x0, 0xc0)

6m4.618652068s ago: executing program 2 (id=286):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340), 0x8)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000a40)={0x0, 0x4661, 0x800, 0x3, 0x20e}, &(0x7f0000000540)=<r4=>0x0, &(0x7f0000000680)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, &(0x7f0000000440)=@buf={0x79, &(0x7f00000004c0)="1783cfd7667bc5d88b9af646af33b6626c73926ff4fb43baea7c5d074fb822c63e815131201315a9ce86d7eb2573189597673b2933534ec9c709183ca7fd42d2e2c226b3afc90c978e6a44c1a50acdc5ea17ceefaba349aa98305024cb6a3b8128b9eebf7e8376105f0075f04979f05a1bb0c86781e3cdf8c7"})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000040000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000071000000850000005000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x20}}}}}}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r3, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r1, r2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280)={<r7=>0x0, 0x0, <r8=>0x0}, &(0x7f00000013c0)=0xc)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005540)=[{{&(0x7f0000000740)=@abs={0x0, 0x0, 0x4e22}, 0x6e, 0x0, 0x0, &(0x7f0000000980)=[@cred={{0x1c, 0x1, 0x2, {r7, 0x0, r8}}}], 0x20, 0xfc185d954243f3b0}}], 0x1, 0x4)
getegid()
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x78d, &(0x7f0000000800)="$eJzs3c9rHGUfAPDvbJKmTfu+yQsvaL0YEDRQmpgaWwWFigcRLBT0bLtstqFmky3ZTWlCQIsIXgQVD4JeevLgj3rz6o+r/hcexFI1LVY8SGQ2s+2m2U03abIbzecDk32emdl8n+/Or2d3hpkA9qzh9E8u4nBEvJtEDGbjk4joq5V6I06uzndreamQDkmsrLz8a1Kb5+byUiEa3pM6mFUejIhv34o4klsft7KwOJ0vlYpzWX2sOnNhrLKwePT8TH6qOFWcPT4+MXHsxJMnjm9frr//sHjo2nsvPPbFyT/ffODqO98lcTIOZdMa89iyZ9dWh2M4+0z60o9wjefvO9juknS7AWxJumn2rG7lcTgGo6dWAgD+zV6PiBUAYI9JHP8BYI+p/w5wc3mpUB+6+4tEZ11/LiL2r+ZfP7+5OqU3O2e3v3YedOBmsubMSBIRQ9sQfzgiPv7q1c/SIbbrPCRAG964HBFnh4bX7/+TddcsbNbjG0zbl70O3zU+je8MNHTG12n/56lm/b/c7f5PNOn/9DfZdrei2fa/ZsSBbQiygeufRDzTcG3brYb8M0M9We0/tT5fX3LufKmY7tv+GxEj0def1sc3iDFy468braY19v9+e/+1T9P46eudOXI/9/avfc9kvpq/n5wbXb8c8VBvs/yT28s/adH/Pd1mjBeffvujVtPS/NN868P6/CO7OmlnrFyJeLTp8r9zRVuy4fWJY7XVYay+UjTx5Y8fDrSK37j80yGNX/8u0Anp8h/YOP+hpPF6zcrmY3x/ZfCbVtPunX/z9X9f8kqtXO9HXMpXq3PjEfuSl9aPP3bnvZfyD2el1fnT/Eceab79b7T+p98Jz7aZf++1Xz7fev47K81/clPLf/OFq7eme1rFb2/5T9RKI9mYdvZ/7Tbwfj47AAAAAAAAAAAAAAAAAAAAAAAAAGhXLiIORZIbvV3O5UZHV5/h/f8YyJXKleqRc+X52cmoPSt7KPpy9VtdDjbcD3U8ux9+vX7srvoTEfG/iPig/0BSv4/iZJdzBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC6gy2e/5/6qb/brQMAdsz+bjcAAOg4x38A2Hsc/wFg72nv+N+z4+0AADrH938A2Hsc/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANhhp0+dSoeVP5aXCml98uLC/HT54tHJYmV6dGa+MFooz10YnSqXp0rF0UJ55l7/r1QuX5iI2flLY9VipTpWWVg8M1Oen62eOT+TnyqeKfZ1JCsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2JzKwuJ0vlQqznW5cDkidkEzNllY2R3N6H6hJ1uddkt7OlpIdkcztrnQ5R0TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwD/E3wEAAP//ZtggJQ==")

6m4.445075943s ago: executing program 2 (id=287):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$eJzs3V9rW+UfAPDvSZP9636/djCGeiGDXTgZS9fWPxOEzUvR4UDvZ2izMpouo0nHWgduF+7GGxmCiAPxBXjv5fAN+CoGOhgyil6IUDnpSZe1Sf8tNbH5fOBsz5Nzkud58pzvyfOck/QEMLBOpv/kIl6OiK+SiJGWdfnIVp5c3W756e2pdEliZeXj35O4sO61kuz/4SzzUkT8/EXEmdzGcmuLS7OlSqU8n+XH6nM3xmqLS2evzZVmyjPl6xOTk+ffnJx45+23utbW1y//+e1HD98//+Wp5W9+fHzsfhIX42i2Lm1XF4q405o5Wfo7SxXi4roNx7tQWD9Jel0BdmUoi/NCpMeAkRjKoh7Y/z6PiBVgQCXiHwZUcxzQnNt3aR78n/HkvdUJ0Mb251fPjcShxtzoyHLy3Mwone+OdqH8tIyffntwP11i8/MQh7fIA+zInbsRcS6f33j8S7Lj3+6da5w83tz6Mgbt8wd66WE6/knuRGyI/9za+CfajH+G28Tubmwd/7nHXSimo3T8927b8e/aoWt0KMv9rzHmKyRXr1XK5yLi/xFxOgoH0/xm13POLz9a6bSudfyXLmn5zbFgVo/H+YPPP2e6VC+9SJtbPbkb8Urb8W+y1v9Jm/5P34/L2yzjRPnBq53Wbd3+vbXyQ8Rrbfv/2RWtZPPrk2ON/WGsuVds9Me9E790Kr/X7U/7/8jm7R9NWq/X1nZexveH/ip3Wrfb/f9A8kkjfSB77FapXp8fjziQfJgfXv/4xLPnNvPN7dP2nz7VPv432//Tyden22z/veP3Om7aD/0/vaP+33ni0Qeffdep/O31/xuN1Onske0c/7ZbwRd57wAAAAAAAKDf5CLiaCS54lo6lysWV7/fcTyO5CrVWv3M1erC9elo/FZ2NAq55pXukZbvQ4xn34dt5ifW5Scj4lhEfD10uJEvTlUr071uPAAAAAAAAAAAAAAAAAAAAPSJ4Q6//0/9OtTr2gF7rnFjg4O9rgXQC1ve8r8bd3oC+tKW8Q/sWzuPf2cGYL/w+Q+DS/zD4BL/MLi2G/+FkT2uCPCv8/kPg0v8AwAAAAAAAAAAAAAAAAAAAAAAAAAAQFddvnQpXVaWn96eSvPTNxcXZqs3z06Xa7PFuYWp4lR1/kZxplqdqZSLU9W5rV6vUq3eGJ+IhVtj9XKtPlZbXLoyV124Xr9yba40U75SLvhjwwAAAAAAAAAAAAAAAAAAALBBbXFptlSplOclOiYuRF9UYy8buGpXT8/3Syskupro8YEJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFr8EwAA//8DDjNQ")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98)
fallocate(r0, 0x10, 0x160483b7, 0x5)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000400)='ns\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_clone3(&(0x7f00000003c0)={0x44084000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x3}, &(0x7f0000000180)=""/163, 0xa3, &(0x7f0000000240)=""/9, &(0x7f0000000380)=[r1, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, {r0}}, 0x58)

6m3.958576203s ago: executing program 2 (id=288):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="09000000030000000800000004"], 0x50)
syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="dcf204d80000000000000000371eb26b8bc47890707531a8607476771d495683307a110a50121a71b5ec6c1e801a294fb561261ef961c073ef8ae2f6fed6f11ea8f7c4d348b16a7140cc9d932ce6bb10739ab13c416b7f0e3b94c616760c546ae7dbe63d2810347614c7b8c85651476c24784daee81e8157ee0671f6adefc15706c0ac8a6c"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a0000200"], &(0x7f0000000800)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a30000000002c000000030a01010000000000000000020000000900010073797a30000000000900030073797a32000000003a000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xa0}}, 0x8040)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001b80)=""/4096, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0)={0x10001, <r1=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="33fe00006a"], 0xfe33)
r2 = memfd_create(&(0x7f0000000ec0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'e\xe5\x8f\xf8\xd2\x1c\xc0\xfb\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6\x03\x00\x00\x00A\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\xfe@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xf2\xde\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\x91\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7yn\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xefCGa\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcas\xf4D\xd4\xd0s\r3\xcb\x9a&\xdf+(\xc9S\x9eL5\x84\xb1\x90pN\xe7/\r\b\x9a\xf13Q\xf9\xdf\x7fX\xa0\xafK\xefh\xbfOv\x9bh\xb3\xc0\xf5\x80\xba\"@\'\x02\xafi\xeaE\xa6a6F\xde\xd4\xfa\x84\xe4+A\xb7\xa2\x8f\xc9\xee|xxn\xefw\x93]%\xd0\x19\x132\x86\xabn\xfe\x91\xb6Cl\xcf\x04\x1cq\xc1\x1d~\x8d\x01\x83\x93_\x83\x8a`v\xb0K,|S\xe4\xba\xb1\f\xc8`\xa6s\xad\x11\xd4wG\x80u\x87u\xff\x87\xee', 0x2)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x940a, 0x1000007})
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="b7020000b0ffffffbfa30000000000000703000000feffff7a0af0ff2300000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000011000000b7030000000000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb450063dedba767ade51f7f1f66acd19100002000000000"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x94)
fcntl$addseals(r2, 0x409, 0xb)

6m3.051832347s ago: executing program 2 (id=305):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x8}, 0x18)
socket$key(0xf, 0x3, 0x2)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x814)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ustat(0x3, &(0x7f0000000000))
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001400010600000200000000002b"], 0x14}}, 0x810)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

6m3.041987897s ago: executing program 33 (id=305):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x8}, 0x18)
socket$key(0xf, 0x3, 0x2)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, 0x0, 0x814)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ustat(0x3, &(0x7f0000000000))
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001400010600000200000000002b"], 0x14}}, 0x810)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

3.644741282s ago: executing program 4 (id=3851):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace(0x8, r0)
r1 = syz_pidfd_open(r0, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f00000000c0), 0x4)
wait4(0x0, 0x0, 0x0, 0x0)
pidfd_getfd(r1, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000100000000000000000000007112b2000000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2567}, 0x94)
r2 = socket(0x840000000002, 0x3, 0x100)
sendmmsg$inet(r2, &(0x7f0000005240), 0x4000095, 0x10080000)
ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x40044591, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x800000, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r3}})

3.589743937s ago: executing program 4 (id=3853):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}, 0x1, 0x0, 0x0, 0x4006000}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x8040)

3.578999457s ago: executing program 4 (id=3855):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x19)
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0xa14401, &(0x7f00000000c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x38b84894}}, {@noblock_validity}]}, 0x8, 0x492, &(0x7f0000000a40)="$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")
readv(r0, &(0x7f0000000000), 0x0)

3.254476844s ago: executing program 4 (id=3860):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x2c, r1, 0xc4fc9e906872338b, 0x0, 0x0, {{0x5}, {@val={0x8}, @val={0xc, 0x99, {0x40}}}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x2c}}, 0x0)

3.196578858s ago: executing program 4 (id=3861):
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1f8d02, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_usb_connect$cdc_ecm(0x5, 0x8c, &(0x7f0000000b00)=ANY=[@ANYBLOB="12015002020000202505a1a440000102030109027a0001013c007a0904000103020600fb0524060000052400ff010d240f0109000000ff7f02000308241c0300080000052415090005241509000a2407e2be0009000600082407ce0500018012010100000003000500090001000200010009058103080604d4ff09058202ff033bcc0409050302000210080360a466ce97625d5c65a423bb14348c3801188eb4b009968a816859ade9a84e04929fe11776ac11e9b1898877cdc349b7827a3c43ce907079ccc2193c3ed51d8b464f58e3"], 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socket(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
io_setup(0x281, &(0x7f0000000100))
syz_usb_disconnect(r0)
mount$9p_rdma(&(0x7f00000013c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000001440), 0x800, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=rd'])

2.668280362s ago: executing program 0 (id=3865):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f00000003c0)=ANY=[@ANYBLOB])
mount$tmpfs(0x0, 0x0, 0x0, 0x84022, &(0x7f0000000000)=ANY=[@ANYBLOB='nr_ino'])
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdedn\xe5+\xf0', 0xffffffffffffffff)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000800)=ANY=[@ANYBLOB="02030002020000002cbd7000fcdbdf255cb307e3f1730f796a45b0a18e924472f6d16a3970c60f987fa7ff689249339504351b19cf0358d3c010f51b9876e0c356a25ab2234ff6237211764ab235689260539f0b51f0a2aeba9f5cca77d584fec30890c6c25361189682ef5a81010f6e9fcdede9e30ddc80e82bb06470d1436d6a0314755be21856fdfb356a727f11857de9ff3137f4387c248fc3854093b45fffffaeef32c92425b36f503b800ddbea8ebe4e9b92d8eaca7117010966e83551428066a321"], 0x10}, 0x1, 0x7}, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @empty}, {0x2, 0x0, @empty}, 0x2a0, 0x0, 0x0, 0x0, 0x20})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000480)=ANY=[], &(0x7f0000001480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
get_mempolicy(&(0x7f0000000300), &(0x7f0000000400), 0x2, &(0x7f0000000000/0x4000)=nil, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000380)='kfree\x00', r1}, 0x18)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x6, 0x7ffc1ffb}]})
recvmmsg(0xffffffffffffffff, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)

2.494711376s ago: executing program 0 (id=3871):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x1a43)
shutdown(r1, 0x2)
r2 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$eJzs3T9sG2UbAPDnznHTP/m+9JO+T/pAHSpAKlJVJ+kfKEztiqhUqQMSC0SOG1Vx4ipOoIkike4VogMC1KVsMDCCGBgQCyMrC4gZqaIRSE0HMHJ8TtPULk6I4xL/ftLZ73t39vO+d35e+053cgB962j9IY14KiIuJhHDG5YNRLbwaGO91ZWl4v2VpWIStdqlX5JIIuLeylKxuX6SPR+KiOWI+H9EfJOPOJ6uv+W+ZqG6sDg1Xi6XZrP6yNz01ZHqwuKJK9Pjk6XJ0sypF186c/b0mbGTYxube7+2sZbfWl9v/Hjz3RvfvXL75qefHVkuvj+exLkYypZt7MdOamyTfJzbNP90N4L1UNLrBrAtuSzP66n0vxiOXJb1rdQ2Dg6Du9I8oItqgxE1oE8l8h/6VPN3QP34tznt5u+PO+cbByD1uKsrS8V3ohl/oHFuIvavHZsc/DV56Mikfrx5eDcbyp60fD0iRgcGHv38J9nnb/tGd6KBdNXX5xs76tH9n66PP9Fi/Blqnjv9m5rj32o2/q22iJ9rM/5d7DDG76//9FHb+NcH4+mW8ZP1+EmL+GlEvNlh/FuvfXm23bLaxxHHonX8puTx54dHLl8pl0Ybjy1jfHXsyMvt+x9xsE38xjnb/WtfMxv7vy9rU9ph/7/49vNnlh8T//lnH7//W23/AxHxXofx/3Pvk1fbLbtzPblb/xWw1f2fRD5udxj/hXNHf8iKzhoCAAAAAAAAAMAOSteuZUvSwno5TQuFxj28/42DablSnTt+uTI/M9G45u1w5NPmlVbDjXpSr49l1+M26yc31U/lsoC5A2v1QrFSnuhx3wEAAAAAAAAAAAAAAAAAAOBJcWjT/f+/5dbu/9/8d9XAXtX+L7+BvU7+Q/96OP+TnrUD2H2+/6Fv1eQ/9C/5D/1L/kP/kv/Qv+Q/9C/5D/1L/gMAAAAAAAAAAAAAAAAAAAAAAAAAQFdcvHChPtXurywV6/WJgYX5qcpbJyZK1anC9HyxUKzMXi1MViqT5VKhWJn+q/dLKpWrozEzf21krlSdG6kuLL4xXZmfaf6naCnf9R4BAAAAAAAAAAAAAAAAAADAP8/Q2pSkhYh8o56mhULEvyLicBLJ5Svl0mhE/Dsivs/lB+v1sV43GgAAAAAAAAAAAAAAAAAAAPaY6sLi1Hi5XJrtXmEgC9XFEJ0XBrayckQs72wz6u+45Vflsw3Y4023Nwq5J+Nz+OQXejgoAQAAAAAAAAAAAAAAAABAn3pw02+nr/ijuw0CAAAAAAAAAAAAAAAAAACAvpT+nEREfTo2/NzQ5qX7ktXc2nNEvH3r0gfXxufmZsfq8++uz5/7MJt/shftBzrVzNM0Iup5DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADxQXVicGi+XS7PbLAx2sE6v+wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwHX8GAAD//xLkz18=")
r3 = openat(r2, &(0x7f0000000440)='./file1\x00', 0x36d042, 0x0)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000140)={0x1, 0x8000000000000000, 0x4, 0x0, 0x300})

2.146460675s ago: executing program 0 (id=3876):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x5f}, 0x18)
socket(0x1, 0x803, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8}]}}}, @IFLA_MASTER={0x8}]}, 0x44}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=@getchain={0x24, 0x11, 0x43d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0x10}, {0xfff2, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')

1.849788189s ago: executing program 5 (id=3882):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)

1.560411083s ago: executing program 6 (id=3887):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
perf_event_open(&(0x7f00000003c0)={0x8, 0x80, 0x0, 0x0, 0x9, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1.518406426s ago: executing program 0 (id=3888):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x7}, 0x18)
perf_event_open(&(0x7f00000003c0)={0x8, 0x80, 0x0, 0x0, 0x9, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 1)

1.517782846s ago: executing program 6 (id=3889):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x2ddfdbff, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x2ddfdbff, 0x2ffffffff}, 0xc) (fail_nth: 1)

1.426745123s ago: executing program 5 (id=3890):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00'})
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x24040084)

1.114778179s ago: executing program 0 (id=3891):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r1, &(0x7f0000000380)={0xa, 0x4e20, 0x10000, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x2}, 0x1c)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={<r2=>0x0, 0x3}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180)={r2, 0x4}, 0x8)
r3 = dup(r0)
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, &(0x7f0000004000), 0xb3020001)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f0000000080)={0xa, 0x4e24, 0x208, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}]}, 0x4048043)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)
sendto$inet(r3, &(0x7f0000000400)='X', 0x1, 0x8884, &(0x7f0000000480)={0x2, 0x4e24, @local}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0xc6da5938055fb7fd, 0x20005}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x2054)
socket$netlink(0x10, 0x3, 0x2)

1.096977561s ago: executing program 5 (id=3892):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') (fail_nth: 1)
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)

1.087706721s ago: executing program 6 (id=3893):
r0 = gettid()
tkill(r0, 0x11)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@grpid}, {@orlov}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000000000000900010073797ab000"], 0x40}}, 0x0)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x41, 0x2)
r5 = syz_open_dev$usbfs(&(0x7f0000000200), 0x5, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r5, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100, 0x800000, 0x2ef}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0})
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/cpu_byteorder', 0xe4131f06337304aa, 0x4)
io_uring_enter(r6, 0x207a98, 0x0, 0x0, 0x0, 0x0)
shmget(0x3, 0x11000, 0x40, &(0x7f0000461000/0x11000)=nil)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r9, &(0x7f0000000000)={0x1f, @none}, 0x8)
listen(r3, 0x6227)
setsockopt$bt_BT_DEFER_SETUP(r9, 0x112, 0x7, &(0x7f00000000c0), 0x4)

914.859535ms ago: executing program 5 (id=3894):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
syz_clone3(&(0x7f0000000d80)={0x8000, &(0x7f0000000100), &(0x7f0000000180), &(0x7f0000000240), {0x35}, &(0x7f0000000cc0)=""/27, 0x1b, &(0x7f0000000d00)=""/12, &(0x7f0000000d40)=[0x0, 0xffffffffffffffff, 0x0], 0x3}, 0x58)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000e80)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000f40)={0xe8, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x64, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pim6reg1\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010100}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6erspan0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf76}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6}, @IPVS_SVC_ATTR_AF={0x6}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0xe8}, 0x1, 0x0, 0x0, 0x24000800}, 0x4000000)
r4 = syz_open_procfs$pagemap(r1, &(0x7f0000000e00))
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r4, 0x8008f511, &(0x7f0000000080))
r5 = syz_open_procfs(0x0, &(0x7f0000000540)='net/ip_mr_vif\x00')
preadv(r5, &(0x7f0000000900)=[{&(0x7f0000000580)=""/240, 0xf0}], 0x1, 0x47, 0x0)
ioctl$PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f0000000000)=[{0x7, 0x0, 0x83}, {0x9, 0x0, 0xb187}], 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x42, 0x5c})
bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x19, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES64=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000f00), 0x1, 0xa24, &(0x7f0000000280)="$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")
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="20000000020000001d"], 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="d800000010008104090008007143a0f8c81ded0b25000000e8fe09a11800150006001410000000120800030043000040a8002b000a", 0x35}], 0x1}, 0x20000880)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfe33)

914.513305ms ago: executing program 3 (id=3895):
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x334b, 0x1000, 0x20000003, 0x800}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000900)={0x38, r5, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x2}]}]}]}, 0x38}}, 0xc000)
sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0x38, r5, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x2805}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000540)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185500, 0x12345})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
pipe(&(0x7f0000000340)={<r6=>0xffffffffffffffff})
close(r6)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_UPDATE_FT_IES(r6, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="70010000", @ANYRES16=r7, @ANYBLOB="e1032abd7000fbdbdf256000ef0000080003", @ANYRES32=r8, @ANYBLOB="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"], 0x170}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)
io_uring_enter(r0, 0x7277, 0x0, 0x0, 0x0, 0x0)

725.110721ms ago: executing program 5 (id=3896):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822a0269a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7ae22e16c6c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bba3d005585bf07d70e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225c380fac12f8205d182f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d96ee1b84bb64b14aebc6b5194c55dd6890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56bd86acb7654a195bc3e98df3a5dffd5b07838a3ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@fallback=r0, r0, 0x2f, 0x2028, 0x4}, 0x20)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000001c0)={@local, 0x74})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"/348], 0x98}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
recvmmsg(r4, &(0x7f0000007700), 0x318, 0xfc0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080), 0x400, &(0x7f00000000c0)=ANY=[@ANYBLOB='mpol=bind:7', @ANYBLOB='f'])

667.097245ms ago: executing program 6 (id=3897):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xc97c, 0x0, @perf_config_ext={0x2, 0x3}, 0x4100, 0xfffffffffffffffa, 0x808409, 0x0, 0x0, 0x3c, 0x6, 0x0, 0x0, 0x0, 0x80000000000}, 0x0, 0xc, 0xffffffffffffffff, 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="540100001800010000000000000000001d010000150003000000000000000000dd5f392602cc30570500000008000500f80800001e0106"], 0x154}}, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000200)={0x1f, 0xffffffffffffffff, 0x4}, 0x5)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)
write$bt_hci(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="0000023f3201"], 0x138)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x1bc, 0x65, 0x20, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xe, 0x2}, {0x0, 0xe}, {0x6, 0xb}}, [@filter_kind_options=@f_flow={{0x9}, {0x18c, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x8065738cbab9bcb1}, @TCA_FLOW_XOR={0x8, 0x7, 0x1ff}, @TCA_FLOW_XOR={0x8, 0x7, 0xfffffff9}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0x7fff}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_ACT={0x160, 0x9, 0x0, 0x1, [@m_skbmod={0x104, 0x1f, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x3, 0xe1a3, 0x6, 0x3, 0x6}, 0x4}}]}, {0xb2, 0x6, "364a95306a0125f7c7762d651b8604a6d91ec4567f627089ed8d3453859a3d2c79d3d70f085dca8af621c4a5da976ca910f38151f1a68c0e0730e7273e6af4eab8e2ea5df8cb0f6ab249f7561ea8c0dd3e562e5e6a1db3a546a7f7c5f1d0ae94557d9f43b53f0c2e3edaf804191d2d3a1cbdae068d8e342ed2d4e751b25b639e2536238fb6a4824a50b9c6bb62944110874faeed2eb2a6db4dfa6ff7d67302260dd8c80e3c4c3a3a11f1d204106e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ct={0x58, 0xd, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_CT_LABELS={0x14, 0x7, "47c067ed09487b4c7b8fa31ee513842b"}, @TCA_CT_PARMS={0x18, 0x1, {0x8, 0x2, 0x3, 0x0, 0xd}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r4 = socket(0x10, 0x803, 0x0)
sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f, 0xa1}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
mmap$qrtrtun(&(0x7f00008c8000/0x1000)=nil, 0x1000, 0x0, 0x20010, 0xffffffffffffffff, 0x9)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mbind(&(0x7f00008c8000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000300)=0x8c, 0x6, 0x6)
umount2(&(0x7f00000002c0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x18)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)
getsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000100), &(0x7f0000000140)=0x4)

530.900606ms ago: executing program 6 (id=3898):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r2=>r1}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00'})
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r5, 0x20, &(0x7f0000000100)={0x0, 0x0, <r6=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r6, r4, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xa, 0x2, &(0x7f0000000100)=@raw=[@map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x80000001}], &(0x7f0000000140)='GPL\x00', 0x100, 0xf8, &(0x7f0000000180)=""/248, 0x41100, 0x10, '\x00', 0x0, @fallback=0x1b, r2, 0x8, &(0x7f0000000440)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000480)={0x1, 0x4, 0x1, 0xc}, 0x10, r6, r1, 0x0, &(0x7f00000004c0)=[r0, r0, 0xffffffffffffffff, r0], 0x0, 0x10, 0x3}, 0x94)
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)

508.090638ms ago: executing program 6 (id=3899):
socket(0x26, 0x2, 0xffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$kcm(0x10, 0x400000002, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r5, 0x107, 0xd, &(0x7f0000000180)=@req3={0x410000, 0x100000001, 0x210000, 0x1, 0xa, 0x0, 0x78}, 0x1c)
sendmmsg(r5, &(0x7f0000001dc0)=[{{&(0x7f0000000240)=@un=@abs={0x0, 0x0, 0x4e24}, 0x80, 0x0}}], 0x1, 0x20040115)
recvmsg$kcm(r1, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="020000000400"], 0x48)
r6 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r6, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[], 0xfe44, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4000)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r7, 0x402, 0x80000024)
recvfrom$l2tp6(r7, &(0x7f0000000300)=""/248, 0xf8, 0x40, &(0x7f00000000c0)={0xa, 0x0, 0x0, @initdev}, 0x20)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0xf}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x20084084)
sendmsg$inet(r1, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)
clock_gettime(0x0, &(0x7f0000000440))
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r8 = socket(0x1e, 0x5, 0x0)
listen(r8, 0x0)
accept4(r8, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="540000000b06010800800000000000000600000205000100070000002c0007801800018014000240ff020000000100000000000000000001060004404e21000005000700730000c95b00020073797a3100000000"], 0x54}, 0x1, 0x0, 0x0, 0x20008041}, 0x8190)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

495.14419ms ago: executing program 3 (id=3900):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)

464.548112ms ago: executing program 3 (id=3901):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0x4, 0x6, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000340)={r0, &(0x7f0000000280)="0c5e6f921cfda157fce12217506d51f34875c972a06120700769f7f7b2e55ca00038740932d379a512a60d432c3df1082d36f1179e9d88f5ec1269e0d6c9868d0ccf95db0ffba68aa91d99d7ab4e5322f6febed76d2c918eb74fd716cd76d347bacb11fdb621f7df95d5dfef58", &(0x7f0000000300)}, 0x20)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x441, 0x108)
openat2$dir(0xffffff9c, &(0x7f0000000100)='./file1/file0\x00', &(0x7f0000000180)={0x220000, 0x0, 0x28}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000180)={r0, &(0x7f0000000180)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

366.95339ms ago: executing program 3 (id=3902):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002100)=@newtfilter={0x24, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {}, {0x7, 0x4}}}, 0x24}}, 0x24040084)

340.384472ms ago: executing program 3 (id=3903):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="04fffffffffffff971a50500000000008510000002000000850000000000000095000000990000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x6}, 0x70)
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000040)=@raw=[@btf_id={0x18, 0x3, 0x3, 0x0, 0x2}, @alu={0x4, 0x1, 0x5, 0x9, 0x4, 0x2, 0x10}, @generic={0x1, 0xf, 0x4, 0x1, 0x5}], &(0x7f00000000c0)='syzkaller\x00', 0x7fffffff, 0x2b, &(0x7f0000000100)=""/43, 0x41000, 0x40, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000180)={0x5, 0x4}, 0x8, 0x10, &(0x7f00000001c0)={0x4, 0x2, 0xbf, 0x8}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000200)=[{0x1, 0x3, 0x6, 0x2}, {0x0, 0x2, 0xe, 0x1}, {0x0, 0x5, 0xa, 0x1}, {0x4, 0x1, 0xc, 0x8}, {0x2, 0x2, 0x8, 0xc}, {0x4, 0x4, 0x6, 0x8}], 0x10, 0x75db}, 0x94)

308.835625ms ago: executing program 3 (id=3904):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x18)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f00000000c0)='.\x00', 0xa4000061) (fail_nth: 1)
read(r1, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

53.823046ms ago: executing program 0 (id=3905):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r1, 0x2279, 0x0)
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000540)={'filter\x00', 0x7, 0x4, 0x3f0, 0x1f8, 0x110, 0x1f8, 0x308, 0x308, 0x308, 0x4, &(0x7f0000000180), {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @mac=@remote, @broadcast, @remote, 0x1}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x15}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xff, 0x7, 0xe, {@empty, {[0xff, 0x0, 0xff, 0xff, 0x0, 0xff]}}, {@mac=@broadcast, {[0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x81, 0x27, 0xfff9, 0x0, 0x6, 0x3, 'veth1\x00', 'bridge0\x00', {}, {}, 0x0, 0x10}, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x10, 0xa, 0x2}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @multicast2, @dev={0xac, 0x14, 0x14, 0x10}, 0x2, 0xffffffff}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
vmsplice(r2, &(0x7f0000000500)=[{&(0x7f0000000240)="ab", 0x1}], 0x1, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800e00010069703665727370616e0000001c00028014000700fe8000000000001800000000000000420400120008000a"], 0x58}}, 0x8000)
write(r4, &(0x7f0000000100)='\x00', 0x1c)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r6, 0x29, 0x4, 0x0, 0x0)
splice(r4, &(0x7f0000000040)=0x8, r2, 0x0, 0x0, 0xe)

53.330996ms ago: executing program 5 (id=3906):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r5 = inotify_init1(0x0)
inotify_add_watch(r5, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r5, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)

0s ago: executing program 4 (id=3907):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x80) (fail_nth: 1)

0s ago: executing program 4 (id=3908):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000440)='mm_page_free\x00', r1, 0x0, 0x1000}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2800003, 0x31, 0xffffffffffffffff, 0x231cd000) (async)
getsockopt$CAN_RAW_FD_FRAMES(0xffffffffffffffff, 0x65, 0x8, 0x0, &(0x7f0000002140)) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18) (async, rerun: 64)
mbind(&(0x7f000053e000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000)=0x9, 0xb, 0x0) (async, rerun: 64)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) (async, rerun: 32)
setxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f00000001c0)=@v2={0x2000000, [{0xa925, 0x3}, {0x2, 0x2}]}, 0x14, 0x1) (rerun: 32)

kernel console output (not intermixed with test programs):

th an inconsistent configuration, please check.
[  343.312706][T12938] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.2580: missing EA_INODE flag
[  343.326330][T12941] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.353684][T12938] EXT4-fs (loop4): Remounting filesystem read-only
[  343.416466][T12948] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.641165][T12971] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.940132][T12976] netlink: 'syz.6.2587': attribute type 13 has an invalid length.
[  343.948125][T12976] netlink: 'syz.6.2587': attribute type 17 has an invalid length.
[  343.963051][T12980] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.993048][T12986] loop0: detected capacity change from 0 to 1024
[  344.009979][T12986] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  344.021202][T12989] netlink: 'syz.5.2589': attribute type 13 has an invalid length.
[  344.029093][T12989] netlink: 'syz.5.2589': attribute type 17 has an invalid length.
[  344.037804][T12976] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  344.167774][T12995] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.435861][T12995] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.596548][T12995] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.643442][T13016] netlink: 'syz.3.2595': attribute type 13 has an invalid length.
[  344.651368][T13016] netlink: 'syz.3.2595': attribute type 17 has an invalid length.
[  344.694545][T12995] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.763551][T13019] __nla_validate_parse: 125 callbacks suppressed
[  344.763567][T13019] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2596'.
[  344.778926][T13019] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2596'.
[  344.788121][T13019] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2596'.
[  344.797759][T13019] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2596'.
[  344.806834][T13019] netlink: 84 bytes leftover after parsing attributes in process `syz.5.2596'.
[  344.879726][ T3304] EXT4-fs unmount: 256 callbacks suppressed
[  344.879771][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.063676][T13039] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2602'.
[  345.072776][T13039] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2602'.
[  345.087867][T13039] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2602'.
[  345.098957][T13039] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2602'.
[  345.108361][T13039] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2602'.
[  345.390452][T13074] loop3: detected capacity change from 0 to 1024
[  345.398044][T13074] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  345.414010][T13074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.321374][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.638883][T13121] loop3: detected capacity change from 0 to 1024
[  346.648363][T13121] EXT4-fs: Ignoring removed orlov option
[  346.658207][T13121] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.679146][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.979650][T13174] loop5: detected capacity change from 0 to 1024
[  346.987779][T13174] EXT4-fs: Ignoring removed orlov option
[  346.996938][T13174] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.050320][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.105762][T13188] loop0: detected capacity change from 0 to 1024
[  347.112624][T13188] EXT4-fs: Ignoring removed orlov option
[  347.120603][T13188] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.631939][   T29] kauditd_printk_skb: 491 callbacks suppressed
[  347.631954][   T29] audit: type=1326 audit(1754571221.977:4268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.740402][   T29] audit: type=1326 audit(1754571222.007:4269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.764107][   T29] audit: type=1326 audit(1754571222.007:4270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.787548][   T29] audit: type=1326 audit(1754571222.007:4271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.811241][   T29] audit: type=1326 audit(1754571222.007:4272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.834801][   T29] audit: type=1326 audit(1754571222.007:4273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13215 comm="syz.3.2643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  347.858341][   T29] audit: type=1326 audit(1754571222.087:4274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13219 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  347.859910][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.882084][   T29] audit: type=1326 audit(1754571222.087:4275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13219 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  347.914653][   T29] audit: type=1326 audit(1754571222.087:4276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13219 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  347.914712][   T29] audit: type=1326 audit(1754571222.087:4277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13219 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  347.961749][T13222] net_ratelimit: 36 callbacks suppressed
[  347.961812][T13222] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.011759][T13224] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.067126][T13229] loop3: detected capacity change from 0 to 1024
[  348.076369][T13229] EXT4-fs: Ignoring removed orlov option
[  348.090431][T13229] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.128620][ T1387] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  348.137072][ T1387] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  348.145737][T13241] validate_nla: 52 callbacks suppressed
[  348.145755][T13241] netlink: 'syz.5.2647': attribute type 13 has an invalid length.
[  348.159133][T13241] netlink: 'syz.5.2647': attribute type 17 has an invalid length.
[  348.163254][ T1387] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  348.167573][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.176156][ T1387] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  348.184651][T13242] netlink: 'syz.6.2649': attribute type 13 has an invalid length.
[  348.200249][T13242] netlink: 'syz.6.2649': attribute type 17 has an invalid length.
[  348.222417][T13241] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.265562][T13242] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.344588][T13261] netlink: 'syz.3.2650': attribute type 13 has an invalid length.
[  348.352508][T13261] netlink: 'syz.3.2650': attribute type 17 has an invalid length.
[  348.384426][T13261] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  348.390475][T13266] netlink: 'syz.4.2653': attribute type 13 has an invalid length.
[  348.434557][T13272] loop6: detected capacity change from 0 to 1024
[  348.442902][T13272] EXT4-fs: Ignoring removed orlov option
[  348.463488][T13272] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.621431][T13293] netlink: 'syz.3.2662': attribute type 13 has an invalid length.
[  348.851362][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.107052][T13334] netlink: 'syz.3.2679': attribute type 13 has an invalid length.
[  349.114917][T13334] netlink: 'syz.3.2679': attribute type 17 has an invalid length.
[  349.263668][T13351] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  350.540533][T13416] loop5: detected capacity change from 0 to 1024
[  350.573185][T13416] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  350.624275][T13416] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.683653][T13416] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.2707: missing EA_INODE flag
[  350.701658][T13416] EXT4-fs (loop5): Remounting filesystem read-only
[  351.366688][T13453] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  351.396951][T13454] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  351.414904][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.558305][T13470] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  351.567414][T13470] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  351.582366][T13470] loop0: detected capacity change from 0 to 256
[  351.592630][T13470] vfat: Unknown parameter 'shor†name'
[  351.784247][T13485] loop6: detected capacity change from 0 to 1024
[  351.795938][T13485] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  351.828107][T13485] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.842976][T13485] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: inode #11: comm syz.6.2729: missing EA_INODE flag
[  351.859868][T13485] EXT4-fs (loop6): Remounting filesystem read-only
[  351.965072][T13470] 9pnet: Could not find request transport: rd
[  352.340871][T13515] loop4: detected capacity change from 0 to 1024
[  352.365354][T13515] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  352.395005][T13515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.050902][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.145510][   T29] kauditd_printk_skb: 185 callbacks suppressed
[  353.145526][   T29] audit: type=1326 audit(1754571227.487:4463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13546 comm="syz.0.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  353.224245][   T29] audit: type=1326 audit(1754571227.487:4464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13546 comm="syz.0.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  353.248003][   T29] audit: type=1326 audit(1754571227.487:4465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13546 comm="syz.0.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  353.271631][   T29] audit: type=1326 audit(1754571227.487:4466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13546 comm="syz.0.2743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  353.648758][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.992015][   T29] audit: type=1400 audit(1754571228.337:4467): avc:  denied  { watch } for  pid=13581 comm="syz.5.2752" path="/505/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  354.016284][T13582] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  354.031074][   T29] audit: type=1400 audit(1754571228.357:4468): avc:  denied  { nlmsg_write } for  pid=13581 comm="syz.5.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  354.051986][   T29] audit: type=1400 audit(1754571228.367:4469): avc:  denied  { relabelto } for  pid=13581 comm="syz.5.2752" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  354.078258][   T29] audit: type=1400 audit(1754571228.367:4470): avc:  denied  { associate } for  pid=13581 comm="syz.5.2752" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  354.137719][   T29] audit: type=1326 audit(1754571228.477:4471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13588 comm="syz.6.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  354.161571][   T29] audit: type=1326 audit(1754571228.477:4472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13588 comm="syz.6.2755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  354.201589][T13593] loop6: detected capacity change from 0 to 1024
[  354.208270][T13593] EXT4-fs: Ignoring removed orlov option
[  354.219142][T13593] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.242529][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.517482][T13643] loop5: detected capacity change from 0 to 1024
[  355.525718][T13643] EXT4-fs: Ignoring removed orlov option
[  355.544930][T13643] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  355.635451][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.718746][T13690] loop5: detected capacity change from 0 to 1024
[  356.763302][T13690] EXT4-fs: Ignoring removed orlov option
[  356.801978][T13690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.836809][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.702634][T13722] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  357.731327][T13722] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  357.760904][T13722] loop0: detected capacity change from 0 to 256
[  357.775668][T13725] loop4: detected capacity change from 0 to 1024
[  357.780190][T13722] vfat: Unknown parameter 'shor†name'
[  357.794115][T13725] EXT4-fs: Ignoring removed orlov option
[  357.841624][T13725] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.904948][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.005347][T13722] 9pnet: Could not find request transport: rd
[  358.295730][T13747] loop5: detected capacity change from 0 to 1024
[  358.323573][T13747] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  358.373433][T13747] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  358.406350][T13747] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.2794: missing EA_INODE flag
[  358.455029][T13747] EXT4-fs (loop5): Remounting filesystem read-only
[  358.464299][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  358.464313][   T29] audit: type=1326 audit(1754571232.807:4480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13754 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  358.555389][   T29] audit: type=1326 audit(1754571232.837:4481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13754 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  358.578939][   T29] audit: type=1326 audit(1754571232.837:4482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13754 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  358.602466][   T29] audit: type=1326 audit(1754571232.837:4483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13754 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  359.135810][T13779] loop0: detected capacity change from 0 to 1024
[  359.161508][T13779] EXT4-fs: Ignoring removed orlov option
[  359.183044][T13779] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.225812][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.290805][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.859828][T13818] loop3: detected capacity change from 0 to 1024
[  359.881224][T13818] EXT4-fs: Ignoring removed orlov option
[  359.902926][T13818] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.951309][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.127235][T13828] loop4: detected capacity change from 0 to 1024
[  360.171440][T13828] EXT4-fs: Ignoring removed orlov option
[  360.182611][T13828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.298998][T13835] __nla_validate_parse: 29 callbacks suppressed
[  360.299014][T13835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2818'.
[  360.361334][T13835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2818'.
[  360.402322][T13835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2818'.
[  360.451448][T13835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2818'.
[  360.625315][   T29] audit: type=1400 audit(1754571234.967:4484): avc:  denied  { watch } for  pid=13853 comm="syz.5.2824" path="/521/file0" dev="tmpfs" ino=2923 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  360.674808][   T29] audit: type=1400 audit(1754571234.967:4485): avc:  denied  { associate } for  pid=13853 comm="syz.5.2824" name="file0" dev="tmpfs" ino=2923 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  360.702399][   T29] audit: type=1400 audit(1754571235.007:4486): avc:  denied  { rmdir } for  pid=4269 comm="syz-executor" name="file0" dev="tmpfs" ino=2923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  360.751125][   T29] audit: type=1326 audit(1754571235.087:4487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13855 comm="syz.6.2826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  360.774671][   T29] audit: type=1326 audit(1754571235.087:4488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13855 comm="syz.6.2826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  360.798191][   T29] audit: type=1326 audit(1754571235.087:4489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13855 comm="syz.6.2826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  360.907483][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.101141][T13880] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  361.110523][T13880] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  361.141682][T13880] loop4: detected capacity change from 0 to 256
[  361.155495][T13880] vfat: Unknown parameter 'shor†name'
[  361.393393][T13880] 9pnet: Could not find request transport: rd
[  361.733564][T13902] loop6: detected capacity change from 0 to 1024
[  361.740200][T13902] EXT4-fs: Ignoring removed orlov option
[  361.752130][T13902] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.823033][T13909] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2841'.
[  361.835157][T13909] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2841'.
[  361.859243][T13909] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2841'.
[  361.868993][T13909] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2841'.
[  362.032659][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.072725][T13917] loop6: detected capacity change from 0 to 1024
[  362.081510][T13917] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  362.103733][T13917] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  363.682830][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.747990][T13967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  363.776852][T13967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  363.809210][T13967] loop6: detected capacity change from 0 to 256
[  363.827792][T13967] vfat: Unknown parameter 'shor†name'
[  364.311162][T13980] 9pnet: Could not find request transport: rd
[  366.120048][T14051] loop5: detected capacity change from 0 to 1024
[  366.139560][T14051] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  366.184985][T14051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.991889][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.042879][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  367.042956][   T29] audit: type=1326 audit(1754571241.387:4502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14081 comm="syz.0.2887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  367.137946][   T29] audit: type=1326 audit(1754571241.417:4503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14081 comm="syz.0.2887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  367.161643][   T29] audit: type=1326 audit(1754571241.417:4504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14081 comm="syz.0.2887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  367.185171][   T29] audit: type=1326 audit(1754571241.417:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14081 comm="syz.0.2887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  367.334017][T14110] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  367.351731][T14110] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  367.372049][T14110] loop5: detected capacity change from 0 to 256
[  367.378659][T14110] vfat: Unknown parameter 'shor†name'
[  367.819327][T14120] 9pnet: Could not find request transport: rd
[  368.639797][T14132] loop0: detected capacity change from 0 to 1024
[  368.653052][T14132] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  368.684077][T14132] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.277236][   T29] audit: type=1326 audit(1754571243.617:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14142 comm="syz.6.2900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  369.303466][   T29] audit: type=1326 audit(1754571243.647:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14142 comm="syz.6.2900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  369.327100][   T29] audit: type=1326 audit(1754571243.647:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14142 comm="syz.6.2900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  369.350800][   T29] audit: type=1326 audit(1754571243.647:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14142 comm="syz.6.2900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  369.505547][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.358246][   T29] audit: type=1400 audit(1754571246.697:4510): avc:  denied  { setopt } for  pid=14232 comm="syz.5.2931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  372.378143][   T29] audit: type=1400 audit(1754571246.707:4511): avc:  denied  { write } for  pid=14232 comm="syz.5.2931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  372.397972][   T29] audit: type=1400 audit(1754571246.707:4512): avc:  denied  { create } for  pid=14232 comm="syz.5.2931" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  372.418834][   T29] audit: type=1400 audit(1754571246.707:4513): avc:  denied  { write } for  pid=14232 comm="syz.5.2931" name="file0" dev="tmpfs" ino=3079 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  372.441761][   T29] audit: type=1400 audit(1754571246.707:4514): avc:  denied  { open } for  pid=14232 comm="syz.5.2931" path="/550/file0" dev="tmpfs" ino=3079 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  372.464922][   T29] audit: type=1400 audit(1754571246.707:4515): avc:  denied  { ioctl } for  pid=14232 comm="syz.5.2931" path="/550/file0" dev="tmpfs" ino=3079 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  372.525797][   T29] audit: type=1400 audit(1754571246.847:4516): avc:  denied  { unlink } for  pid=4269 comm="syz-executor" name="file0" dev="tmpfs" ino=3079 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  372.970580][T14284] tipc: Resetting bearer <eth:syz_tun>
[  372.984239][   T29] audit: type=1326 audit(1754571247.327:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14286 comm="syz.0.2952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  373.010563][   T29] audit: type=1326 audit(1754571247.357:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14286 comm="syz.0.2952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  373.034176][   T29] audit: type=1326 audit(1754571247.357:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14286 comm="syz.0.2952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  373.074063][T14284] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.081259][T14284] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.164003][T14284] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  373.176375][T14284] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  373.367443][   T51] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  373.377467][   T51] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  373.416844][   T51] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  373.455711][   T51] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  373.935350][T14308] tipc: Resetting bearer <eth:syz_tun>
[  373.945905][T14308] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.953049][T14308] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.992620][T14308] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.003304][T14308] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.206873][   T51] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.215618][ T5841] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.224044][T14330] loop6: detected capacity change from 0 to 1024
[  374.224530][T14330] EXT4-fs: Ignoring removed orlov option
[  374.236567][ T5841] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.245142][ T5841] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.413616][T14330] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.465431][T14334] tipc: Resetting bearer <eth:syz_tun>
[  374.475605][T14334] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.482811][T14334] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.531363][T14334] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.542443][T14334] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.645649][ T1387] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.654458][ T1387] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.663141][ T1387] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.672180][ T1387] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.681907][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2968'.
[  374.714842][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2968'.
[  374.739369][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2968'.
[  374.761616][T14339] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2968'.
[  374.882478][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.652172][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  378.652188][   T29] audit: type=1326 audit(1754571252.987:4524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14446 comm="syz.4.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  378.904712][T14456] loop4: detected capacity change from 0 to 1024
[  378.994182][T14456] EXT4-fs: Ignoring removed orlov option
[  379.087373][T14456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.227353][   T29] audit: type=1326 audit(1754571253.057:4525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14446 comm="syz.4.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  379.251075][   T29] audit: type=1326 audit(1754571253.057:4526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14446 comm="syz.4.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  379.274679][   T29] audit: type=1326 audit(1754571253.057:4527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14446 comm="syz.4.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  379.298456][   T29] audit: type=1400 audit(1754571253.077:4528): avc:  denied  { write } for  pid=14435 comm="syz.6.3006" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  379.327607][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.926057][   T29] audit: type=1326 audit(1754571254.117:4529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14484 comm="syz.6.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  380.008779][   T29] audit: type=1326 audit(1754571254.117:4530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14484 comm="syz.6.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  380.032995][   T29] audit: type=1326 audit(1754571254.297:4531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14484 comm="syz.6.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  380.056748][   T29] audit: type=1326 audit(1754571254.297:4532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14484 comm="syz.6.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  380.080286][   T29] audit: type=1326 audit(1754571254.297:4533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14484 comm="syz.6.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  383.488836][T14578] loop5: detected capacity change from 0 to 1024
[  383.518133][T14578] EXT4-fs: Ignoring removed orlov option
[  383.547310][T14578] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.632318][T14593] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3052'.
[  383.654552][T14593] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3052'.
[  383.664453][T14593] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3052'.
[  383.673584][T14593] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3052'.
[  384.414599][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.426411][T14603] loop6: detected capacity change from 0 to 1024
[  384.452151][T14603] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  384.762629][T14603] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.369736][T14610] tipc: Resetting bearer <eth:syz_tun>
[  385.489377][T14610] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.496620][T14610] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.910240][T14610] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  385.976600][T14610] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  386.128642][ T3421] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  386.180063][ T3421] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  386.219862][ T3421] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  386.284014][ T3421] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  387.288737][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.295825][T14703] tipc: Resetting bearer <eth:syz_tun>
[  388.313487][T14703] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.320691][T14703] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.645588][T14703] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.656006][T14703] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.753049][   T41] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.775100][   T41] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.791244][   T41] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.805506][   T41] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  389.145803][T14734] loop3: detected capacity change from 0 to 1024
[  389.165038][T14734] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  389.208884][T14734] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  389.244384][T14734] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.3103: missing EA_INODE flag
[  389.257352][T14734] EXT4-fs (loop3): Remounting filesystem read-only
[  390.033257][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.174060][T14802] loop0: detected capacity change from 0 to 1024
[  392.227624][T14802] EXT4-fs: Ignoring removed orlov option
[  392.297194][T14802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.408573][T14813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3122'.
[  392.469644][T14813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3122'.
[  392.491484][T14813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3122'.
[  392.512774][T14813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3122'.
[  392.967604][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.449419][T14848] loop0: detected capacity change from 0 to 1024
[  393.461780][T14848] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  393.535679][T14848] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.590036][T14848] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.3138: missing EA_INODE flag
[  393.619951][T14848] EXT4-fs (loop0): Remounting filesystem read-only
[  394.572240][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.674557][T14870] loop0: detected capacity change from 0 to 1024
[  394.695814][T14870] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  394.828501][T14870] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.567558][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.672514][T14895] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3151'.
[  395.681555][T14895] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3151'.
[  395.685933][T14897] loop5: detected capacity change from 0 to 1024
[  395.698788][T14897] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  395.758677][T14897] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.785760][T14897] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.3152: missing EA_INODE flag
[  395.816240][T14897] EXT4-fs (loop5): Remounting filesystem read-only
[  397.297321][T14917] loop6: detected capacity change from 0 to 1024
[  397.323083][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  397.341849][T14917] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  397.374269][T14917] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.434187][T14917] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: inode #11: comm syz.6.3158: missing EA_INODE flag
[  397.480380][T14917] EXT4-fs (loop6): Remounting filesystem read-only
[  398.410637][T14956] loop4: detected capacity change from 0 to 1024
[  398.825808][T14956] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  398.853600][T14956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.874752][T14956] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.3171: missing EA_INODE flag
[  398.891648][T14956] EXT4-fs (loop4): Remounting filesystem read-only
[  399.462104][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.487357][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.542547][T14988] loop3: detected capacity change from 0 to 1024
[  399.542915][T14991] loop0: detected capacity change from 0 to 1024
[  399.573699][T14988] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  399.586698][T14991] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  399.618162][T14988] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.631343][T14991] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.649587][T14988] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.3184: missing EA_INODE flag
[  399.684842][T14988] EXT4-fs (loop3): Remounting filesystem read-only
[  399.880322][T15003] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3185'.
[  400.184373][T15014] loop6: detected capacity change from 0 to 1024
[  400.229151][T15014] EXT4-fs: Ignoring removed orlov option
[  400.256255][T15014] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  400.436886][T15024] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3188'.
[  400.446896][T15024] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3188'.
[  400.456464][T15024] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3188'.
[  400.508451][T15024] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3188'.
[  400.548991][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.724236][T15037] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3197'.
[  400.807711][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.983456][T15053] loop5: detected capacity change from 0 to 1024
[  400.993399][T15053] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  401.018112][T15053] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.184215][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.668953][T15068] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3209'.
[  401.678036][T15068] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3209'.
[  401.762699][T15072] loop0: detected capacity change from 0 to 1024
[  401.769437][T15072] EXT4-fs: Ignoring removed orlov option
[  401.799581][T15072] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.889884][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.951391][T15082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3211'.
[  401.970261][T15086] loop4: detected capacity change from 0 to 1024
[  401.999261][T15086] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  402.010785][T15082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3211'.
[  402.022576][T15086] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.290346][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.646290][T15117] loop6: detected capacity change from 0 to 1024
[  402.655658][T15117] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  402.752547][T15117] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.869312][T15131] loop3: detected capacity change from 0 to 1024
[  402.877796][T15131] EXT4-fs: Ignoring removed orlov option
[  402.922589][T15131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  403.095775][T15139] loop0: detected capacity change from 0 to 1024
[  403.109932][T15139] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  403.253360][T15139] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.283020][T15139] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.3235: missing EA_INODE flag
[  403.294844][T15139] EXT4-fs (loop0): Remounting filesystem read-only
[  403.424485][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.477070][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.521670][T15147] validate_nla: 7 callbacks suppressed
[  403.521742][T15147] netlink: 'syz.4.3237': attribute type 5 has an invalid length.
[  403.674577][T15156] loop4: detected capacity change from 0 to 1024
[  403.689924][T15156] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  403.807147][T15156] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.924550][T15170] loop5: detected capacity change from 0 to 1024
[  403.948027][T15156] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.3241: missing EA_INODE flag
[  403.960049][T15156] EXT4-fs (loop4): Remounting filesystem read-only
[  403.993413][T15170] EXT4-fs: Ignoring removed orlov option
[  404.013745][T15170] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.155409][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.300216][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.512748][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.670047][T15198] loop0: detected capacity change from 0 to 1024
[  404.696939][T15198] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  404.753773][T15203] loop6: detected capacity change from 0 to 1024
[  404.754042][T15198] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.781447][T15203] EXT4-fs: Ignoring removed orlov option
[  404.924991][T15203] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.959235][T15209] loop3: detected capacity change from 0 to 1024
[  405.006138][T15209] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  405.070713][T15210] __nla_validate_parse: 13 callbacks suppressed
[  405.070732][T15210] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3258'.
[  405.132082][T15210] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3258'.
[  405.161978][T15210] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3258'.
[  405.191875][T15210] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3258'.
[  405.218546][T15209] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.302370][T15209] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.3259: missing EA_INODE flag
[  405.361957][T15209] EXT4-fs (loop3): Remounting filesystem read-only
[  405.383966][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.665017][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.858513][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.107591][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.315475][T15266] loop3: detected capacity change from 0 to 1024
[  406.324278][T15266] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  406.346424][T15266] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.361555][T15266] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.3280: missing EA_INODE flag
[  406.373938][T15266] EXT4-fs (loop3): Remounting filesystem read-only
[  407.226555][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.272244][T15288] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3285'.
[  407.281376][T15288] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3285'.
[  407.384642][T15293] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3288'.
[  407.756701][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  407.756717][   T29] audit: type=1326 audit(1754571282.097:4543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15310 comm="syz.4.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  407.786847][   T29] audit: type=1326 audit(1754571282.097:4544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15310 comm="syz.4.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  407.810602][   T29] audit: type=1326 audit(1754571282.097:4545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15310 comm="syz.4.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  407.834180][   T29] audit: type=1326 audit(1754571282.097:4546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15310 comm="syz.4.3296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.067145][T15335] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3306'.
[  408.109112][   T29] audit: type=1326 audit(1754571282.447:4547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15338 comm="syz.4.3308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.135351][   T29] audit: type=1326 audit(1754571282.447:4548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15338 comm="syz.4.3308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.158971][   T29] audit: type=1326 audit(1754571282.447:4549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15338 comm="syz.4.3308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.182484][   T29] audit: type=1326 audit(1754571282.447:4550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15338 comm="syz.4.3308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.206110][   T29] audit: type=1326 audit(1754571282.447:4551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15338 comm="syz.4.3308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  408.327940][T15353] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3314'.
[  408.419552][   T29] audit: type=1326 audit(1754571282.757:4552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15361 comm="syz.0.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  408.548264][T15388] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3330'.
[  409.305121][T15495] loop5: detected capacity change from 0 to 1024
[  409.312716][T15495] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  409.335913][T15495] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.454330][T15515] loop3: detected capacity change from 0 to 1024
[  409.462799][T15515] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  409.487538][T15515] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.617349][T15568] __nla_validate_parse: 3 callbacks suppressed
[  410.617440][T15568] netlink: 44 bytes leftover after parsing attributes in process `syz.6.3401'.
[  410.975306][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.045698][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.220940][T15619] loop6: detected capacity change from 0 to 1024
[  411.223073][T15621] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3426'.
[  411.244574][T15619] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  411.292993][T15619] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.418272][T15641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.426892][T15641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.439133][T15641] loop3: detected capacity change from 0 to 256
[  411.445826][T15641] vfat: Unknown parameter 'shor†name'
[  412.169869][T15658] 9pnet: Could not find request transport: rd
[  412.732817][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.094483][T15719] loop4: detected capacity change from 0 to 1024
[  413.101931][T15719] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  413.132916][T15719] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.178979][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.400632][T15788] loop5: detected capacity change from 0 to 1024
[  414.409492][T15788] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  414.424985][T15788] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  414.683946][   T29] kauditd_printk_skb: 33 callbacks suppressed
[  414.683960][   T29] audit: type=1326 audit(1754571289.027:4586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15808 comm="syz.3.3502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  414.713648][   T29] audit: type=1326 audit(1754571289.027:4587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15808 comm="syz.3.3502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  414.737143][   T29] audit: type=1326 audit(1754571289.027:4588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15808 comm="syz.3.3502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  414.760877][   T29] audit: type=1326 audit(1754571289.027:4589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15808 comm="syz.3.3502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  415.028014][T15823] loop4: detected capacity change from 0 to 1024
[  415.070840][T15823] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  415.071211][T15825] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.097734][T15823] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.116445][T15825] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.130074][T15825] loop6: detected capacity change from 0 to 256
[  415.195515][T15825] vfat: Unknown parameter 'shor†name'
[  415.759190][   T29] audit: type=1326 audit(1754571290.097:4590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15838 comm="syz.0.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  415.802727][   T29] audit: type=1326 audit(1754571290.117:4591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15838 comm="syz.0.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  415.826379][   T29] audit: type=1326 audit(1754571290.117:4592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15838 comm="syz.0.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  415.849850][   T29] audit: type=1326 audit(1754571290.117:4593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15838 comm="syz.0.3513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  415.946807][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.191619][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.219654][T15848] 9pnet: Could not find request transport: rd
[  416.752724][T15890] loop5: detected capacity change from 0 to 1024
[  416.769736][T15890] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  416.799177][T15890] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.826192][T15896] loop3: detected capacity change from 0 to 1024
[  416.837564][T15896] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  416.882620][T15896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.931388][T15904] loop4: detected capacity change from 0 to 1024
[  416.938290][T15904] EXT4-fs: Ignoring removed orlov option
[  416.965033][T15904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.071703][T15910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3538'.
[  417.083277][T15910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3538'.
[  417.162275][T15910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3538'.
[  417.595344][T15910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3538'.
[  417.724273][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.807630][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.874275][   T29] audit: type=1326 audit(1754571292.217:4594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15924 comm="syz.3.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  417.897932][   T29] audit: type=1326 audit(1754571292.217:4595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15924 comm="syz.3.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  417.946019][T15931] loop3: detected capacity change from 0 to 1024
[  417.973450][T15931] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  418.002183][T15931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.209116][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.561168][T15937] loop6: detected capacity change from 0 to 1024
[  418.583048][T15937] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  418.623964][T15937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.657810][T15945] loop0: detected capacity change from 0 to 1024
[  418.664941][T15945] EXT4-fs: Ignoring removed orlov option
[  418.674181][T15945] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.756133][T15952] loop5: detected capacity change from 0 to 1024
[  418.806047][T15954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.822098][T15952] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  418.852859][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.868039][T15954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.885238][T15954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.903342][T15952] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.917503][T15954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.966416][T15952] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.3553: missing EA_INODE flag
[  419.078736][T15969] loop4: detected capacity change from 0 to 1024
[  419.085584][T15952] EXT4-fs (loop5): Remounting filesystem read-only
[  419.102889][T15969] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  419.239225][T15969] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.778725][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.793698][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.864654][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  419.864668][   T29] audit: type=1326 audit(1754571294.207:4602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15979 comm="syz.3.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  419.890092][T15986] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  419.894197][   T29] audit: type=1326 audit(1754571294.207:4603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15979 comm="syz.3.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  419.922240][T15986] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  419.981200][   T29] audit: type=1326 audit(1754571294.227:4604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15979 comm="syz.3.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  420.004868][   T29] audit: type=1326 audit(1754571294.227:4605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15979 comm="syz.3.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  420.028464][   T29] audit: type=1326 audit(1754571294.227:4606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15979 comm="syz.3.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  420.072221][T15986] loop0: detected capacity change from 0 to 256
[  420.091738][T15986] vfat: Unknown parameter 'shor†name'
[  420.832563][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.891080][T16012] loop5: detected capacity change from 0 to 1024
[  420.897757][T16012] EXT4-fs: Ignoring removed orlov option
[  420.925258][T16012] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  420.979189][T16002] 9pnet: Could not find request transport: rd
[  421.077261][T16018] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3570'.
[  421.110460][   T29] audit: type=1326 audit(1754571295.447:4607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16019 comm="syz.4.3572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  421.134054][   T29] audit: type=1326 audit(1754571295.447:4608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16019 comm="syz.4.3572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  421.157661][   T29] audit: type=1326 audit(1754571295.447:4609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16019 comm="syz.4.3572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  421.181459][   T29] audit: type=1326 audit(1754571295.447:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16019 comm="syz.4.3572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ef755ebe9 code=0x7ffc0000
[  421.192463][T16018] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3570'.
[  421.277190][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.372596][T16028] loop4: detected capacity change from 0 to 1024
[  421.402157][T16028] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  421.434801][T16028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.458999][T16028] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.3575: missing EA_INODE flag
[  421.477318][T16028] EXT4-fs (loop4): Remounting filesystem read-only
[  421.522628][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.913118][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.009658][T16047] loop3: detected capacity change from 0 to 1024
[  423.017757][T16047] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  423.043403][T16047] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.191709][   T29] audit: type=1326 audit(1754571297.507:4611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16055 comm="syz.5.3584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  425.080184][T16099] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.089359][T16099] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.100859][T16099] loop4: detected capacity change from 0 to 256
[  425.110098][T16099] vfat: Unknown parameter 'shor†name'
[  425.640652][T16101] 9pnet: Could not find request transport: rd
[  425.649370][T16106] __nla_validate_parse: 2 callbacks suppressed
[  425.649386][T16106] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3599'.
[  425.820849][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.868826][T16114] loop0: detected capacity change from 0 to 1024
[  425.877056][T16114] EXT4-fs: Ignoring removed orlov option
[  425.905961][T16114] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  426.908932][T16114] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3603'.
[  426.966974][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.138704][T16137] loop5: detected capacity change from 0 to 1024
[  427.146018][T16137] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  427.162764][T16137] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.041077][T16160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3615'.
[  428.107449][T16160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3615'.
[  428.132156][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  428.132172][   T29] audit: type=1400 audit(1754571302.477:4615): avc:  denied  { mounton } for  pid=16158 comm="syz.3.3615" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  428.138690][T16160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3615'.
[  428.185354][T16161] tmpfs: Bad value for 'mpol'
[  428.268960][T16160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3615'.
[  429.183363][T16189] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.227699][T16189] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.246124][T16189] loop0: detected capacity change from 0 to 256
[  429.254662][T16189] vfat: Unknown parameter 'shor†name'
[  429.406000][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.799824][T16205] 9pnet: Could not find request transport: rd
[  430.019902][T16233] loop4: detected capacity change from 0 to 1024
[  430.027457][T16233] EXT4-fs: Ignoring removed orlov option
[  430.037771][T16233] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.230085][T16237] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3644'.
[  430.332750][T16240] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3644'.
[  430.369188][T16240] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3644'.
[  430.391248][T16240] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3644'.
[  430.533069][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.556205][T16246] loop4: detected capacity change from 0 to 1024
[  430.563671][T16246] EXT4-fs: Ignoring removed orlov option
[  430.571805][T16246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.613803][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.659887][T16255] loop5: detected capacity change from 0 to 1024
[  430.667608][T16255] EXT4-fs: Ignoring removed orlov option
[  430.677953][T16255] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.789875][T16265] __nla_validate_parse: 4 callbacks suppressed
[  430.789893][T16265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3651'.
[  430.857202][T16265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3651'.
[  430.887853][T16274] loop4: detected capacity change from 0 to 1024
[  430.894625][T16274] EXT4-fs: Ignoring removed orlov option
[  430.903608][T16274] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.908428][T16265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3651'.
[  430.932423][T16265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3651'.
[  430.987616][T16282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3658'.
[  431.007695][T16282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3658'.
[  431.017830][T16282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3658'.
[  431.027480][T16282] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3658'.
[  431.050810][   T29] audit: type=1326 audit(1754571305.387:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16286 comm="syz.6.3663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  431.074443][   T29] audit: type=1326 audit(1754571305.387:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16286 comm="syz.6.3663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  431.098028][   T29] audit: type=1326 audit(1754571305.387:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16286 comm="syz.6.3663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  431.121654][   T29] audit: type=1326 audit(1754571305.387:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16286 comm="syz.6.3663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b71ebe9 code=0x7ffc0000
[  431.293171][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.756041][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.811722][   T29] audit: type=1326 audit(1754571306.157:4620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16315 comm="syz.5.3675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  431.841809][   T29] audit: type=1326 audit(1754571306.157:4621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16315 comm="syz.5.3675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  431.865537][   T29] audit: type=1326 audit(1754571306.157:4622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16315 comm="syz.5.3675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  431.889293][   T29] audit: type=1326 audit(1754571306.157:4623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16315 comm="syz.5.3675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  431.912793][   T29] audit: type=1326 audit(1754571306.157:4624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16315 comm="syz.5.3675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  431.958082][T16323] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3677'.
[  431.992679][T16330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.002512][T16330] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  432.015701][T16330] loop4: detected capacity change from 0 to 256
[  432.022421][T16330] vfat: Unknown parameter 'shor†name'
[  432.161919][T16341] loop5: detected capacity change from 0 to 1024
[  432.172736][T16341] EXT4-fs: Ignoring removed orlov option
[  432.187556][T16341] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.278272][T16351] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3684'.
[  432.539213][T16359] 9pnet: Could not find request transport: rd
[  433.014379][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.149240][T16386] loop5: detected capacity change from 0 to 1024
[  433.165633][T16386] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  433.192629][T16386] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.212385][T16386] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.3698: missing EA_INODE flag
[  433.224367][T16386] EXT4-fs (loop5): Remounting filesystem read-only
[  433.426721][T16396] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  433.685579][T16396] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  433.751675][T16396] loop0: detected capacity change from 0 to 256
[  433.792585][T16396] vfat: Unknown parameter 'shor†name'
[  434.043462][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.284446][T16403] 9pnet: Could not find request transport: rd
[  434.509678][T16420] loop5: detected capacity change from 0 to 1024
[  434.518904][T16420] EXT4-fs: Ignoring removed orlov option
[  434.544474][T16420] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.736655][T16428] loop3: detected capacity change from 0 to 1024
[  434.744588][T16428] EXT4-fs: Ignoring removed orlov option
[  434.836104][T16428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.881783][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.304605][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.634877][T16487] FAULT_INJECTION: forcing a failure.
[  435.634877][T16487] name failslab, interval 1, probability 0, space 0, times 1
[  435.647733][T16487] CPU: 0 UID: 0 PID: 16487 Comm: syz.5.3737 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  435.647766][T16487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  435.647781][T16487] Call Trace:
[  435.647795][T16487]  <TASK>
[  435.647803][T16487]  __dump_stack+0x1d/0x30
[  435.647825][T16487]  dump_stack_lvl+0xe8/0x140
[  435.647846][T16487]  dump_stack+0x15/0x1b
[  435.647875][T16487]  should_fail_ex+0x265/0x280
[  435.647908][T16487]  ? __se_sys_memfd_create+0x1cc/0x590
[  435.647932][T16487]  should_failslab+0x8c/0xb0
[  435.648025][T16487]  __kmalloc_cache_noprof+0x4c/0x320
[  435.648053][T16487]  ? fput+0x8f/0xc0
[  435.648155][T16487]  __se_sys_memfd_create+0x1cc/0x590
[  435.648224][T16487]  __x64_sys_memfd_create+0x31/0x40
[  435.648249][T16487]  x64_sys_call+0x2abe/0x2ff0
[  435.648293][T16487]  do_syscall_64+0xd2/0x200
[  435.648375][T16487]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  435.648402][T16487]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  435.648423][T16487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.648561][T16487] RIP: 0033:0x7ff5b93debe9
[  435.648585][T16487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.648613][T16487] RSP: 002b:00007ff5b7e46e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  435.648631][T16487] RAX: ffffffffffffffda RBX: 0000000000000b77 RCX: 00007ff5b93debe9
[  435.648643][T16487] RDX: 00007ff5b7e46ef0 RSI: 0000000000000000 RDI: 00007ff5b94627e8
[  435.648658][T16487] RBP: 0000200000000c40 R08: 00007ff5b7e46bb7 R09: 00007ff5b7e46e40
[  435.648672][T16487] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000bc0
[  435.648685][T16487] R13: 00007ff5b7e46ef0 R14: 00007ff5b7e46eb0 R15: 0000200000000c00
[  435.648704][T16487]  </TASK>
[  435.648958][T16485] loop3: detected capacity change from 0 to 4096
[  435.840031][T16485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.891307][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.026670][T16508] __nla_validate_parse: 15 callbacks suppressed
[  436.026684][T16508] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3744'.
[  436.125815][T16519] loop6: detected capacity change from 0 to 8192
[  436.137016][T16516] loop3: detected capacity change from 0 to 4096
[  436.145519][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  436.145626][   T29] audit: type=1400 audit(1754571310.487:4633): avc:  denied  { mount } for  pid=16518 comm="syz.6.3749" name="/" dev="loop6" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  436.231355][   T29] audit: type=1400 audit(1754571310.517:4634): avc:  denied  { unmount } for  pid=4671 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  436.253474][T16516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.382996][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.508164][T16548] loop4: detected capacity change from 0 to 128
[  436.690275][T16568] loop3: detected capacity change from 0 to 1024
[  436.713080][T16568] EXT4-fs: Ignoring removed orlov option
[  436.722848][T16568] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.745165][T16576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.788407][T16576] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.838817][T16579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3772'.
[  436.902891][T16579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3772'.
[  436.916201][T16579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3772'.
[  436.942507][T16579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3772'.
[  437.481713][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.573128][   T29] audit: type=1326 audit(1754571311.907:4635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16601 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  437.598143][   T29] audit: type=1326 audit(1754571311.937:4636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16601 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  437.621728][   T29] audit: type=1326 audit(1754571311.937:4637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16601 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  437.645313][   T29] audit: type=1326 audit(1754571311.937:4638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16601 comm="syz.3.3785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  437.754719][T16620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3792'.
[  437.763781][T16620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3792'.
[  437.783894][T16622] loop5: detected capacity change from 0 to 1024
[  437.803264][T16622] EXT4-fs: Ignoring removed orlov option
[  437.827106][T16622] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.907458][T16630] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3793'.
[  437.918085][T16630] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3793'.
[  437.927310][T16630] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3793'.
[  438.007182][   T29] audit: type=1326 audit(1754571312.327:4639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16637 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  438.030868][   T29] audit: type=1326 audit(1754571312.327:4640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16637 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  438.054489][   T29] audit: type=1326 audit(1754571312.327:4641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16637 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  438.078042][   T29] audit: type=1326 audit(1754571312.327:4642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16637 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b29f3ebe9 code=0x7ffc0000
[  438.137868][T16649] FAULT_INJECTION: forcing a failure.
[  438.137868][T16649] name failslab, interval 1, probability 0, space 0, times 0
[  438.150664][T16649] CPU: 0 UID: 0 PID: 16649 Comm: syz.0.3803 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  438.150694][T16649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  438.150707][T16649] Call Trace:
[  438.150714][T16649]  <TASK>
[  438.150724][T16649]  __dump_stack+0x1d/0x30
[  438.150821][T16649]  dump_stack_lvl+0xe8/0x140
[  438.150841][T16649]  dump_stack+0x15/0x1b
[  438.150857][T16649]  should_fail_ex+0x265/0x280
[  438.150965][T16649]  ? __se_sys_memfd_create+0x1cc/0x590
[  438.150988][T16649]  should_failslab+0x8c/0xb0
[  438.151020][T16649]  __kmalloc_cache_noprof+0x4c/0x320
[  438.151051][T16649]  ? fput+0x8f/0xc0
[  438.151080][T16649]  __se_sys_memfd_create+0x1cc/0x590
[  438.151176][T16649]  __x64_sys_memfd_create+0x31/0x40
[  438.151198][T16649]  x64_sys_call+0x2abe/0x2ff0
[  438.151243][T16649]  do_syscall_64+0xd2/0x200
[  438.151271][T16649]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  438.151294][T16649]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  438.151315][T16649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.151357][T16649] RIP: 0033:0x7f1b2e96ebe9
[  438.151374][T16649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.151393][T16649] RSP: 002b:00007f1b2d3d6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  438.151412][T16649] RAX: ffffffffffffffda RBX: 0000000000000142 RCX: 00007f1b2e96ebe9
[  438.151425][T16649] RDX: 00007f1b2d3d6ef0 RSI: 0000000000000000 RDI: 00007f1b2e9f27e8
[  438.151437][T16649] RBP: 0000200000000240 R08: 00007f1b2d3d6bb7 R09: 00007f1b2d3d6e40
[  438.151516][T16649] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[  438.151529][T16649] R13: 00007f1b2d3d6ef0 R14: 00007f1b2d3d6eb0 R15: 0000200000000200
[  438.151548][T16649]  </TASK>
[  438.156335][T16653] FAULT_INJECTION: forcing a failure.
[  438.156335][T16653] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  438.343386][T16653] CPU: 1 UID: 0 PID: 16653 Comm: syz.3.3805 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  438.343435][T16653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  438.343450][T16653] Call Trace:
[  438.343458][T16653]  <TASK>
[  438.343467][T16653]  __dump_stack+0x1d/0x30
[  438.343492][T16653]  dump_stack_lvl+0xe8/0x140
[  438.343514][T16653]  dump_stack+0x15/0x1b
[  438.343564][T16653]  should_fail_ex+0x265/0x280
[  438.343641][T16653]  should_fail+0xb/0x20
[  438.343672][T16653]  should_fail_usercopy+0x1a/0x20
[  438.343693][T16653]  _copy_from_user+0x1c/0xb0
[  438.343779][T16653]  do_sys_poll+0x149/0xbd0
[  438.343806][T16653]  ? selinux_file_open+0x2df/0x330
[  438.343857][T16653]  __se_sys_poll+0xdd/0x200
[  438.343936][T16653]  __x64_sys_poll+0x43/0x50
[  438.343957][T16653]  x64_sys_call+0x27d2/0x2ff0
[  438.344040][T16653]  do_syscall_64+0xd2/0x200
[  438.344082][T16653]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  438.344104][T16653]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  438.344159][T16653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.344184][T16653] RIP: 0033:0x7f9b29f3ebe9
[  438.344215][T16653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.344235][T16653] RSP: 002b:00007f9b2899f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  438.344253][T16653] RAX: ffffffffffffffda RBX: 00007f9b2a165fa0 RCX: 00007f9b29f3ebe9
[  438.344266][T16653] RDX: 0000000000000024 RSI: 0000000000000001 RDI: 0000200000000000
[  438.344278][T16653] RBP: 00007f9b2899f090 R08: 0000000000000000 R09: 0000000000000000
[  438.344289][T16653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  438.344348][T16653] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  438.344369][T16653]  </TASK>
[  438.548011][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.723556][T16682] FAULT_INJECTION: forcing a failure.
[  438.723556][T16682] name failslab, interval 1, probability 0, space 0, times 0
[  438.736212][T16682] CPU: 0 UID: 0 PID: 16682 Comm: syz.3.3819 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  438.736242][T16682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  438.736279][T16682] Call Trace:
[  438.736285][T16682]  <TASK>
[  438.736292][T16682]  __dump_stack+0x1d/0x30
[  438.736336][T16682]  dump_stack_lvl+0xe8/0x140
[  438.736356][T16682]  dump_stack+0x15/0x1b
[  438.736376][T16682]  should_fail_ex+0x265/0x280
[  438.736477][T16682]  should_failslab+0x8c/0xb0
[  438.736503][T16682]  kmem_cache_alloc_noprof+0x50/0x310
[  438.736534][T16682]  ? getname_flags+0x80/0x3b0
[  438.736583][T16682]  getname_flags+0x80/0x3b0
[  438.736608][T16682]  do_sys_openat2+0x60/0x110
[  438.736674][T16682]  __x64_sys_openat+0xf2/0x120
[  438.736709][T16682]  x64_sys_call+0x2e9c/0x2ff0
[  438.736732][T16682]  do_syscall_64+0xd2/0x200
[  438.736759][T16682]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  438.736818][T16682]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  438.736841][T16682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.736876][T16682] RIP: 0033:0x7f9b29f3d550
[  438.736893][T16682] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  438.736914][T16682] RSP: 002b:00007f9b2899ef70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  438.736943][T16682] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9b29f3d550
[  438.737014][T16682] RDX: 0000000000000000 RSI: 00007f9b29fc1f06 RDI: 00000000ffffff9c
[  438.737028][T16682] RBP: 00007f9b29fc1f06 R08: 0000000000000000 R09: 0000000000000000
[  438.737040][T16682] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  438.737091][T16682] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  438.737108][T16682]  </TASK>
[  439.072245][T16706] wireguard0: entered promiscuous mode
[  439.109125][T16712] FAULT_INJECTION: forcing a failure.
[  439.109125][T16712] name failslab, interval 1, probability 0, space 0, times 0
[  439.121895][T16712] CPU: 0 UID: 0 PID: 16712 Comm: syz.4.3830 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  439.121991][T16712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  439.122004][T16712] Call Trace:
[  439.122010][T16712]  <TASK>
[  439.122017][T16712]  __dump_stack+0x1d/0x30
[  439.122040][T16712]  dump_stack_lvl+0xe8/0x140
[  439.122133][T16712]  dump_stack+0x15/0x1b
[  439.122150][T16712]  should_fail_ex+0x265/0x280
[  439.122182][T16712]  should_failslab+0x8c/0xb0
[  439.122245][T16712]  kmem_cache_alloc_noprof+0x50/0x310
[  439.122374][T16712]  ? getname_flags+0x80/0x3b0
[  439.122404][T16712]  getname_flags+0x80/0x3b0
[  439.122541][T16712]  do_sys_openat2+0x60/0x110
[  439.122589][T16712]  __x64_sys_openat+0xf2/0x120
[  439.122682][T16712]  x64_sys_call+0x2e9c/0x2ff0
[  439.122695][T16712]  do_syscall_64+0xd2/0x200
[  439.122709][T16712]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  439.122724][T16712]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  439.122793][T16712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.122876][T16712] RIP: 0033:0x7f4ef755d550
[  439.122886][T16712] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  439.122897][T16712] RSP: 002b:00007f4ef5fc6f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  439.122909][T16712] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4ef755d550
[  439.122928][T16712] RDX: 0000000000000000 RSI: 00007f4ef75e1f06 RDI: 00000000ffffff9c
[  439.122940][T16712] RBP: 00007f4ef75e1f06 R08: 0000000000000000 R09: 0000000000000000
[  439.123021][T16712] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  439.123030][T16712] R13: 00007f4ef7786038 R14: 00007f4ef7785fa0 R15: 00007ffcebf709a8
[  439.123042][T16712]  </TASK>
[  439.344228][T16720] loop4: detected capacity change from 0 to 1024
[  439.356371][T16720] loop4: detected capacity change from 0 to 512
[  439.363339][T16720] ext2: Bad value for 'min_batch_time'
[  439.374871][T16720] mmap:  (16720) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  439.442984][T16728] FAULT_INJECTION: forcing a failure.
[  439.442984][T16728] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.456213][T16728] CPU: 1 UID: 0 PID: 16728 Comm: syz.4.3835 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  439.456243][T16728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  439.456310][T16728] Call Trace:
[  439.456319][T16728]  <TASK>
[  439.456328][T16728]  __dump_stack+0x1d/0x30
[  439.456352][T16728]  dump_stack_lvl+0xe8/0x140
[  439.456374][T16728]  dump_stack+0x15/0x1b
[  439.456393][T16728]  should_fail_ex+0x265/0x280
[  439.456488][T16728]  should_fail+0xb/0x20
[  439.456519][T16728]  should_fail_usercopy+0x1a/0x20
[  439.456540][T16728]  _copy_from_user+0x1c/0xb0
[  439.456567][T16728]  ___sys_sendmsg+0xc1/0x1d0
[  439.456669][T16728]  __x64_sys_sendmsg+0xd4/0x160
[  439.456704][T16728]  x64_sys_call+0x191e/0x2ff0
[  439.456773][T16728]  do_syscall_64+0xd2/0x200
[  439.456817][T16728]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  439.456840][T16728]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  439.456860][T16728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.456881][T16728] RIP: 0033:0x7f4ef755ebe9
[  439.456970][T16728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.456989][T16728] RSP: 002b:00007f4ef5fc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  439.457007][T16728] RAX: ffffffffffffffda RBX: 00007f4ef7785fa0 RCX: 00007f4ef755ebe9
[  439.457023][T16728] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000004
[  439.457038][T16728] RBP: 00007f4ef5fc7090 R08: 0000000000000000 R09: 0000000000000000
[  439.457115][T16728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.457127][T16728] R13: 00007f4ef7786038 R14: 00007f4ef7785fa0 R15: 00007ffcebf709a8
[  439.457144][T16728]  </TASK>
[  439.768369][T16758] FAULT_INJECTION: forcing a failure.
[  439.768369][T16758] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.781500][T16758] CPU: 1 UID: 0 PID: 16758 Comm: syz.4.3845 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  439.781612][T16758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  439.781626][T16758] Call Trace:
[  439.781634][T16758]  <TASK>
[  439.781649][T16758]  __dump_stack+0x1d/0x30
[  439.781671][T16758]  dump_stack_lvl+0xe8/0x140
[  439.781689][T16758]  dump_stack+0x15/0x1b
[  439.781768][T16758]  should_fail_ex+0x265/0x280
[  439.781803][T16758]  should_fail+0xb/0x20
[  439.781830][T16758]  should_fail_usercopy+0x1a/0x20
[  439.781852][T16758]  _copy_to_user+0x20/0xa0
[  439.781956][T16758]  simple_read_from_buffer+0xb5/0x130
[  439.781979][T16758]  proc_fail_nth_read+0x10e/0x150
[  439.782052][T16758]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  439.782082][T16758]  vfs_read+0x1a0/0x6f0
[  439.782104][T16758]  ? __rcu_read_unlock+0x4f/0x70
[  439.782201][T16758]  ? __fget_files+0x184/0x1c0
[  439.782302][T16758]  ksys_read+0xda/0x1a0
[  439.782329][T16758]  __x64_sys_read+0x40/0x50
[  439.782354][T16758]  x64_sys_call+0x27bc/0x2ff0
[  439.782446][T16758]  do_syscall_64+0xd2/0x200
[  439.782474][T16758]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  439.782500][T16758]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  439.782526][T16758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.782581][T16758] RIP: 0033:0x7f4ef755d5fc
[  439.782598][T16758] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  439.782616][T16758] RSP: 002b:00007f4ef5fc7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  439.782635][T16758] RAX: ffffffffffffffda RBX: 00007f4ef7785fa0 RCX: 00007f4ef755d5fc
[  439.782653][T16758] RDX: 000000000000000f RSI: 00007f4ef5fc70a0 RDI: 0000000000000004
[  439.782665][T16758] RBP: 00007f4ef5fc7090 R08: 0000000000000000 R09: 0000000000000000
[  439.782694][T16758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.782707][T16758] R13: 00007f4ef7786038 R14: 00007f4ef7785fa0 R15: 00007ffcebf709a8
[  439.782725][T16758]  </TASK>
[  440.023584][T16762] FAULT_INJECTION: forcing a failure.
[  440.023584][T16762] name failslab, interval 1, probability 0, space 0, times 0
[  440.036272][T16762] CPU: 0 UID: 0 PID: 16762 Comm: syz.3.3848 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  440.036376][T16762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  440.036389][T16762] Call Trace:
[  440.036444][T16762]  <TASK>
[  440.036452][T16762]  __dump_stack+0x1d/0x30
[  440.036474][T16762]  dump_stack_lvl+0xe8/0x140
[  440.036493][T16762]  dump_stack+0x15/0x1b
[  440.036578][T16762]  should_fail_ex+0x265/0x280
[  440.036678][T16762]  should_failslab+0x8c/0xb0
[  440.036702][T16762]  kmem_cache_alloc_noprof+0x50/0x310
[  440.036730][T16762]  ? getname_flags+0x80/0x3b0
[  440.036757][T16762]  getname_flags+0x80/0x3b0
[  440.036905][T16762]  do_sys_openat2+0x60/0x110
[  440.036937][T16762]  __x64_sys_openat+0xf2/0x120
[  440.036969][T16762]  x64_sys_call+0x2e9c/0x2ff0
[  440.037028][T16762]  do_syscall_64+0xd2/0x200
[  440.037110][T16762]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  440.037134][T16762]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  440.037156][T16762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.037211][T16762] RIP: 0033:0x7f9b29f3ebe9
[  440.037225][T16762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.037243][T16762] RSP: 002b:00007f9b2899f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  440.037302][T16762] RAX: ffffffffffffffda RBX: 00007f9b2a165fa0 RCX: 00007f9b29f3ebe9
[  440.037315][T16762] RDX: 0000000000000000 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  440.037328][T16762] RBP: 00007f9b2899f090 R08: 0000000000000000 R09: 0000000000000000
[  440.037353][T16762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  440.037366][T16762] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  440.037384][T16762]  </TASK>
[  440.269784][T16768] loop5: detected capacity change from 0 to 164
[  440.347204][T16783] loop4: detected capacity change from 0 to 512
[  440.369959][T16783] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  440.383092][T16783] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  440.393931][T16783] EXT4-fs (loop4): orphan cleanup on readonly fs
[  440.404961][T16783] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  440.419799][T16783] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.3855: corrupted inode contents
[  440.432607][T16783] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #11: comm syz.4.3855: mark_inode_dirty error
[  440.446757][T16783] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3855: invalid indirect mapped block 327680 (level 0)
[  440.462962][T16783] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.3855: corrupted inode contents
[  440.475183][T16783] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  440.485183][T16783] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #11: comm syz.4.3855: corrupted inode contents
[  440.547029][T16783] EXT4-fs error (device loop4): ext4_truncate:4666: inode #11: comm syz.4.3855: mark_inode_dirty error
[  440.559637][T16783] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  440.569499][T16783] EXT4-fs (loop4): 1 truncate cleaned up
[  440.577411][T16783] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  440.615329][T16795] loop0: detected capacity change from 0 to 128
[  440.625898][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.640062][T16795] FAT-fs (loop0): Directory bread(block 162) failed
[  440.649763][T16795] FAT-fs (loop0): Directory bread(block 163) failed
[  440.657302][T16795] FAT-fs (loop0): Directory bread(block 164) failed
[  440.668569][T16795] FAT-fs (loop0): Directory bread(block 165) failed
[  440.678555][T16795] FAT-fs (loop0): Directory bread(block 166) failed
[  440.689942][T16795] FAT-fs (loop0): Directory bread(block 167) failed
[  440.697070][T16795] FAT-fs (loop0): Directory bread(block 168) failed
[  440.704047][T16795] FAT-fs (loop0): Directory bread(block 169) failed
[  440.715616][T16795] FAT-fs (loop0): Directory bread(block 162) failed
[  440.721172][T16799] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.722870][T16795] FAT-fs (loop0): Directory bread(block 163) failed
[  440.731652][T16799] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.781376][T16795] syz.0.3859: attempt to access beyond end of device
[  440.781376][T16795] loop0: rw=3, sector=226, nr_sectors = 6 limit=128
[  440.798114][T16795] syz.0.3859: attempt to access beyond end of device
[  440.798114][T16795] loop0: rw=2051, sector=232, nr_sectors = 2 limit=128
[  440.814040][T16801] syz.0.3859: attempt to access beyond end of device
[  440.814040][T16801] loop0: rw=3, sector=234, nr_sectors = 6 limit=128
[  440.838944][T16801] syz.0.3859: attempt to access beyond end of device
[  440.838944][T16801] loop0: rw=2051, sector=240, nr_sectors = 2 limit=128
[  440.992916][T16809] FAULT_INJECTION: forcing a failure.
[  440.992916][T16809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  441.006009][T16809] CPU: 0 UID: 0 PID: 16809 Comm: syz.0.3864 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  441.006037][T16809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  441.006127][T16809] Call Trace:
[  441.006134][T16809]  <TASK>
[  441.006143][T16809]  __dump_stack+0x1d/0x30
[  441.006163][T16809]  dump_stack_lvl+0xe8/0x140
[  441.006182][T16809]  dump_stack+0x15/0x1b
[  441.006198][T16809]  should_fail_ex+0x265/0x280
[  441.006300][T16809]  should_fail+0xb/0x20
[  441.006401][T16809]  should_fail_usercopy+0x1a/0x20
[  441.006425][T16809]  _copy_from_user+0x1c/0xb0
[  441.006449][T16809]  ___sys_sendmsg+0xc1/0x1d0
[  441.006491][T16809]  __x64_sys_sendmsg+0xd4/0x160
[  441.006601][T16809]  x64_sys_call+0x191e/0x2ff0
[  441.006625][T16809]  do_syscall_64+0xd2/0x200
[  441.006736][T16809]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  441.006891][T16809]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  441.006912][T16809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.006933][T16809] RIP: 0033:0x7f1b2e96ebe9
[  441.006950][T16809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.007029][T16809] RSP: 002b:00007f1b2d3d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  441.007047][T16809] RAX: ffffffffffffffda RBX: 00007f1b2eb95fa0 RCX: 00007f1b2e96ebe9
[  441.007060][T16809] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  441.007072][T16809] RBP: 00007f1b2d3d7090 R08: 0000000000000000 R09: 0000000000000000
[  441.007098][T16809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.007112][T16809] R13: 00007f1b2eb96038 R14: 00007f1b2eb95fa0 R15: 00007ffc6dfd0fc8
[  441.007149][T16809]  </TASK>
[  441.296176][   T29] kauditd_printk_skb: 48 callbacks suppressed
[  441.296191][   T29] audit: type=1326 audit(1754571315.637:4691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16810 comm="syz.0.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  441.336039][   T29] audit: type=1326 audit(1754571315.637:4692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16810 comm="syz.0.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  441.359674][   T29] audit: type=1326 audit(1754571315.637:4693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16810 comm="syz.0.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  441.376714][T16825] loop5: detected capacity change from 0 to 1024
[  441.383166][   T29] audit: type=1326 audit(1754571315.637:4694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16810 comm="syz.0.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b2e96ebe9 code=0x7ffc0000
[  441.412953][   T29] audit: type=1326 audit(1754571315.647:4695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.436521][   T29] audit: type=1326 audit(1754571315.647:4696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.460382][   T29] audit: type=1326 audit(1754571315.677:4697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.483935][   T29] audit: type=1326 audit(1754571315.677:4698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.507526][   T29] audit: type=1326 audit(1754571315.677:4699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.531090][   T29] audit: type=1326 audit(1754571315.677:4700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16820 comm="syz.5.3869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5b93debe9 code=0x7ffc0000
[  441.587877][T16837] loop0: detected capacity change from 0 to 1024
[  441.623644][T16837] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  441.640889][T16825] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  441.664267][T16837] ext4 filesystem being mounted at /790/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.690456][T16825] ext4 filesystem being mounted at /734/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.705966][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  441.781333][T16853] FAULT_INJECTION: forcing a failure.
[  441.781333][T16853] name failslab, interval 1, probability 0, space 0, times 0
[  441.794155][T16853] CPU: 0 UID: 0 PID: 16853 Comm: syz.3.3878 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  441.794187][T16853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  441.794213][T16853] Call Trace:
[  441.794221][T16853]  <TASK>
[  441.794229][T16853]  __dump_stack+0x1d/0x30
[  441.794254][T16853]  dump_stack_lvl+0xe8/0x140
[  441.794310][T16853]  dump_stack+0x15/0x1b
[  441.794326][T16853]  should_fail_ex+0x265/0x280
[  441.794362][T16853]  should_failslab+0x8c/0xb0
[  441.794389][T16853]  kmem_cache_alloc_node_noprof+0x57/0x320
[  441.794416][T16853]  ? dup_task_struct+0x70/0x6a0
[  441.794518][T16853]  dup_task_struct+0x70/0x6a0
[  441.794578][T16853]  ? _parse_integer+0x27/0x40
[  441.794615][T16853]  copy_process+0x399/0x2000
[  441.794642][T16853]  ? kstrtouint+0x76/0xc0
[  441.794697][T16853]  ? kstrtouint_from_user+0x9f/0xf0
[  441.794720][T16853]  ? __rcu_read_unlock+0x4f/0x70
[  441.794746][T16853]  kernel_clone+0x16c/0x5c0
[  441.794771][T16853]  ? vfs_write+0x75e/0x8e0
[  441.794809][T16853]  __x64_sys_clone+0xe6/0x120
[  441.794841][T16853]  x64_sys_call+0x119c/0x2ff0
[  441.794898][T16853]  do_syscall_64+0xd2/0x200
[  441.794924][T16853]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  441.795022][T16853]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  441.795045][T16853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.795068][T16853] RIP: 0033:0x7f9b29f3ebe9
[  441.795084][T16853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.795101][T16853] RSP: 002b:00007f9b2899efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  441.795122][T16853] RAX: ffffffffffffffda RBX: 00007f9b2a165fa0 RCX: 00007f9b29f3ebe9
[  441.795214][T16853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000026801000
[  441.795228][T16853] RBP: 00007f9b2899f090 R08: 0000000000000000 R09: 0000000000000000
[  441.795242][T16853] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  441.795255][T16853] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  441.795272][T16853]  </TASK>
[  442.031050][T16847] __nla_validate_parse: 3 callbacks suppressed
[  442.031065][T16847] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3876'.
[  442.058485][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  442.068016][T16862] FAULT_INJECTION: forcing a failure.
[  442.068016][T16862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.081202][T16862] CPU: 1 UID: 0 PID: 16862 Comm: syz.3.3881 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  442.081232][T16862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  442.081243][T16862] Call Trace:
[  442.081250][T16862]  <TASK>
[  442.081279][T16862]  __dump_stack+0x1d/0x30
[  442.081303][T16862]  dump_stack_lvl+0xe8/0x140
[  442.081325][T16862]  dump_stack+0x15/0x1b
[  442.081344][T16862]  should_fail_ex+0x265/0x280
[  442.081398][T16862]  should_fail+0xb/0x20
[  442.081519][T16862]  should_fail_usercopy+0x1a/0x20
[  442.081623][T16862]  _copy_from_user+0x1c/0xb0
[  442.081695][T16862]  write_ldt+0x6f/0x4b0
[  442.081726][T16862]  ? fput+0x8f/0xc0
[  442.081786][T16862]  __se_sys_modify_ldt+0x6c/0x270
[  442.081815][T16862]  x64_sys_call+0x2b8f/0x2ff0
[  442.081851][T16862]  do_syscall_64+0xd2/0x200
[  442.081878][T16862]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  442.081901][T16862]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  442.081930][T16862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.081953][T16862] RIP: 0033:0x7f9b29f3ebe9
[  442.081971][T16862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.082028][T16862] RSP: 002b:00007f9b2899f038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  442.082118][T16862] RAX: ffffffffffffffda RBX: 00007f9b2a165fa0 RCX: 00007f9b29f3ebe9
[  442.082132][T16862] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000001
[  442.082147][T16862] RBP: 00007f9b2899f090 R08: 0000000000000000 R09: 0000000000000000
[  442.082160][T16862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.082174][T16862] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  442.082196][T16862]  </TASK>
[  442.396930][T16879] FAULT_INJECTION: forcing a failure.
[  442.396930][T16879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.410138][T16879] CPU: 1 UID: 0 PID: 16879 Comm: syz.0.3888 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  442.410168][T16879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  442.410186][T16879] Call Trace:
[  442.410193][T16879]  <TASK>
[  442.410201][T16879]  __dump_stack+0x1d/0x30
[  442.410226][T16879]  dump_stack_lvl+0xe8/0x140
[  442.410248][T16879]  dump_stack+0x15/0x1b
[  442.410264][T16879]  should_fail_ex+0x265/0x280
[  442.410339][T16879]  should_fail+0xb/0x20
[  442.410370][T16879]  should_fail_usercopy+0x1a/0x20
[  442.410388][T16879]  _copy_from_user+0x1c/0xb0
[  442.410445][T16879]  perf_copy_attr+0x145/0x610
[  442.410475][T16879]  __se_sys_perf_event_open+0x67/0x11c0
[  442.410505][T16879]  ? vfs_write+0x75e/0x8e0
[  442.410526][T16879]  ? __rcu_read_unlock+0x4f/0x70
[  442.410616][T16879]  __x64_sys_perf_event_open+0x67/0x80
[  442.410650][T16879]  x64_sys_call+0x7bd/0x2ff0
[  442.410716][T16879]  do_syscall_64+0xd2/0x200
[  442.410797][T16879]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  442.410824][T16879]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  442.410849][T16879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.410874][T16879] RIP: 0033:0x7f1b2e96ebe9
[  442.410898][T16879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.410915][T16879] RSP: 002b:00007f1b2d3d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  442.410933][T16879] RAX: ffffffffffffffda RBX: 00007f1b2eb95fa0 RCX: 00007f1b2e96ebe9
[  442.410945][T16879] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 00002000000003c0
[  442.410961][T16879] RBP: 00007f1b2d3d7090 R08: 0000000000000000 R09: 0000000000000000
[  442.410974][T16879] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  442.410987][T16879] R13: 00007f1b2eb96038 R14: 00007f1b2eb95fa0 R15: 00007ffc6dfd0fc8
[  442.411070][T16879]  </TASK>
[  442.463774][T16883] FAULT_INJECTION: forcing a failure.
[  442.463774][T16883] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.612128][T16883] CPU: 0 UID: 0 PID: 16883 Comm: syz.6.3889 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  442.612167][T16883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  442.612179][T16883] Call Trace:
[  442.612186][T16883]  <TASK>
[  442.612194][T16883]  __dump_stack+0x1d/0x30
[  442.612217][T16883]  dump_stack_lvl+0xe8/0x140
[  442.612257][T16883]  dump_stack+0x15/0x1b
[  442.612275][T16883]  should_fail_ex+0x265/0x280
[  442.612378][T16883]  should_fail+0xb/0x20
[  442.612405][T16883]  should_fail_usercopy+0x1a/0x20
[  442.612423][T16883]  _copy_from_user+0x1c/0xb0
[  442.612493][T16883]  __sys_bind+0x106/0x2a0
[  442.612578][T16883]  __x64_sys_bind+0x3f/0x50
[  442.612608][T16883]  x64_sys_call+0x2b6e/0x2ff0
[  442.612666][T16883]  do_syscall_64+0xd2/0x200
[  442.612693][T16883]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  442.612716][T16883]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  442.612740][T16883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.612843][T16883] RIP: 0033:0x7f614b71ebe9
[  442.612860][T16883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.612881][T16883] RSP: 002b:00007f614a166038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  442.612903][T16883] RAX: ffffffffffffffda RBX: 00007f614b946090 RCX: 00007f614b71ebe9
[  442.612919][T16883] RDX: 000000000000000c RSI: 0000200000000000 RDI: 0000000000000003
[  442.612934][T16883] RBP: 00007f614a166090 R08: 0000000000000000 R09: 0000000000000000
[  442.612949][T16883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.613008][T16883] R13: 00007f614b946128 R14: 00007f614b946090 R15: 00007ffcca51f8d8
[  442.613030][T16883]  </TASK>
[  442.796294][T16874] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3886'.
[  442.811100][T16888] futex_wake_op: syz.0.3891 tries to shift op by 32; fix this program
[  442.825520][T16890] FAULT_INJECTION: forcing a failure.
[  442.825520][T16890] name failslab, interval 1, probability 0, space 0, times 0
[  442.838258][T16890] CPU: 1 UID: 0 PID: 16890 Comm: syz.5.3892 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  442.838309][T16890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  442.838323][T16890] Call Trace:
[  442.838331][T16890]  <TASK>
[  442.838345][T16890]  __dump_stack+0x1d/0x30
[  442.838366][T16890]  dump_stack_lvl+0xe8/0x140
[  442.838384][T16890]  dump_stack+0x15/0x1b
[  442.838436][T16890]  should_fail_ex+0x265/0x280
[  442.838467][T16890]  should_failslab+0x8c/0xb0
[  442.838601][T16890]  kmem_cache_alloc_noprof+0x50/0x310
[  442.838633][T16890]  ? getname_flags+0x80/0x3b0
[  442.838665][T16890]  getname_flags+0x80/0x3b0
[  442.838738][T16890]  __x64_sys_symlink+0x33/0x60
[  442.838763][T16890]  x64_sys_call+0x23cc/0x2ff0
[  442.838788][T16890]  do_syscall_64+0xd2/0x200
[  442.838815][T16890]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  442.838897][T16890]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  442.838918][T16890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.839015][T16890] RIP: 0033:0x7ff5b93debe9
[  442.839032][T16890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.839050][T16890] RSP: 002b:00007ff5b7e47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  442.839070][T16890] RAX: ffffffffffffffda RBX: 00007ff5b9605fa0 RCX: 00007ff5b93debe9
[  442.839086][T16890] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000001640
[  442.839101][T16890] RBP: 00007ff5b7e47090 R08: 0000000000000000 R09: 0000000000000000
[  442.839115][T16890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  442.839129][T16890] R13: 00007ff5b9606038 R14: 00007ff5b9605fa0 R15: 00007ffd4b87f668
[  442.839155][T16890]  </TASK>
[  442.847919][T16892] loop6: detected capacity change from 0 to 512
[  442.983124][T16895] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3894'.
[  442.999846][T16892] EXT4-fs: Ignoring removed orlov option
[  443.028322][T16895] IPVS: Error joining to the multicast group
[  443.052819][T16892] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.072644][T16892] ext4 filesystem being mounted at /684/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  443.079441][T16898] loop5: detected capacity change from 0 to 1764
[  443.091919][T16892] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3893'.
[  443.123684][T16895] C: renamed from team_slave_0
[  443.130443][T16895] netlink: 136 bytes leftover after parsing attributes in process `syz.5.3894'.
[  443.233514][T16904] loop5: detected capacity change from 0 to 1024
[  443.241342][T16904] EXT4-fs: Ignoring removed orlov option
[  443.247485][ T4671] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.265208][T16904] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.359967][T16908] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3896'.
[  443.414125][T16908] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3896'.
[  443.465559][T16908] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3896'.
[  443.474972][T16908] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3896'.
[  443.527577][T16920] netlink: 44 bytes leftover after parsing attributes in process `syz.6.3899'.
[  443.610758][T16925] FAULT_INJECTION: forcing a failure.
[  443.610758][T16925] name failslab, interval 1, probability 0, space 0, times 0
[  443.623447][T16925] CPU: 0 UID: 0 PID: 16925 Comm: syz.3.3904 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  443.623539][T16925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  443.623551][T16925] Call Trace:
[  443.623558][T16925]  <TASK>
[  443.623566][T16925]  __dump_stack+0x1d/0x30
[  443.623586][T16925]  dump_stack_lvl+0xe8/0x140
[  443.623609][T16925]  dump_stack+0x15/0x1b
[  443.623625][T16925]  should_fail_ex+0x265/0x280
[  443.623688][T16925]  should_failslab+0x8c/0xb0
[  443.623717][T16925]  kmem_cache_alloc_noprof+0x50/0x310
[  443.623749][T16925]  ? getname_flags+0x80/0x3b0
[  443.623848][T16925]  getname_flags+0x80/0x3b0
[  443.623876][T16925]  user_path_at+0x28/0x130
[  443.623908][T16925]  __se_sys_inotify_add_watch+0x102/0x7b0
[  443.623939][T16925]  ? __bpf_trace_sys_enter+0x10/0x30
[  443.624052][T16925]  ? trace_sys_enter+0xd0/0xf0
[  443.624077][T16925]  __x64_sys_inotify_add_watch+0x43/0x50
[  443.624117][T16925]  x64_sys_call+0xfc7/0x2ff0
[  443.624158][T16925]  do_syscall_64+0xd2/0x200
[  443.624181][T16925]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  443.624204][T16925]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  443.624228][T16925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.624253][T16925] RIP: 0033:0x7f9b29f3ebe9
[  443.624311][T16925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.624332][T16925] RSP: 002b:00007f9b2899f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fe
[  443.624350][T16925] RAX: ffffffffffffffda RBX: 00007f9b2a165fa0 RCX: 00007f9b29f3ebe9
[  443.624363][T16925] RDX: 00000000a4000061 RSI: 00002000000000c0 RDI: 0000000000000005
[  443.624388][T16925] RBP: 00007f9b2899f090 R08: 0000000000000000 R09: 0000000000000000
[  443.624409][T16925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  443.624423][T16925] R13: 00007f9b2a166038 R14: 00007f9b2a165fa0 R15: 00007ffd6b91c698
[  443.624446][T16925]  </TASK>
[  443.854883][ T4269] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.920362][T16934] FAULT_INJECTION: forcing a failure.
[  443.920362][T16934] name failslab, interval 1, probability 0, space 0, times 0
[  443.933195][T16934] CPU: 0 UID: 0 PID: 16934 Comm: syz.4.3907 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  443.933222][T16934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  443.933315][T16934] Call Trace:
[  443.933321][T16934]  <TASK>
[  443.933328][T16934]  __dump_stack+0x1d/0x30
[  443.933348][T16934]  dump_stack_lvl+0xe8/0x140
[  443.933364][T16934]  dump_stack+0x15/0x1b
[  443.933378][T16934]  should_fail_ex+0x265/0x280
[  443.933465][T16934]  should_failslab+0x8c/0xb0
[  443.933494][T16934]  kmem_cache_alloc_noprof+0x50/0x310
[  443.933519][T16934]  ? create_new_namespaces+0x3c/0x3d0
[  443.933573][T16934]  ? __rcu_read_unlock+0x4f/0x70
[  443.933593][T16934]  create_new_namespaces+0x3c/0x3d0
[  443.933636][T16934]  __se_sys_setns+0x1b8/0xf20
[  443.933685][T16934]  __x64_sys_setns+0x31/0x40
[  443.933711][T16934]  x64_sys_call+0x2b16/0x2ff0
[  443.933789][T16934]  do_syscall_64+0xd2/0x200
[  443.933812][T16934]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  443.933832][T16934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.933851][T16934] RIP: 0033:0x7f4ef755ebe9
[  443.934014][T16934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.934029][T16934] RSP: 002b:00007f4ef5fc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  443.934046][T16934] RAX: ffffffffffffffda RBX: 00007f4ef7785fa0 RCX: 00007f4ef755ebe9
[  443.934057][T16934] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000006
[  443.934067][T16934] RBP: 00007f4ef5fc7090 R08: 0000000000000000 R09: 0000000000000000
[  443.934077][T16934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  443.934089][T16934] R13: 00007f4ef7786038 R14: 00007f4ef7785fa0 R15: 00007ffcebf709a8
[  443.934105][T16934]  </TASK>
[  444.130790][T16940] ==================================================================
[  444.138900][T16940] BUG: KCSAN: data-race in mas_state_walk / mas_wr_store_entry
[  444.146455][T16940] 
[  444.148779][T16940] write to 0xffff8881171fa508 of 8 bytes by task 16937 on cpu 1:
[  444.156485][T16940]  mas_wr_store_entry+0x1581/0x2b50
[  444.161674][T16940]  mas_store_prealloc+0x74d/0x9e0
[  444.166777][T16940]  commit_merge+0x6a5/0x730
[  444.171530][T16940]  vma_expand+0x220/0x320
[  444.175849][T16940]  vma_merge_new_range+0x296/0x310
[  444.180999][T16940]  mmap_region+0xa59/0x1630
[  444.185501][T16940]  do_mmap+0x9b3/0xbe0
[  444.189572][T16940]  vm_mmap_pgoff+0x17a/0x2e0
[  444.194160][T16940]  ksys_mmap_pgoff+0xc2/0x310
[  444.198838][T16940]  x64_sys_call+0x14a3/0x2ff0
[  444.203678][T16940]  do_syscall_64+0xd2/0x200
[  444.208309][T16940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.214195][T16940] 
[  444.216596][T16940] read to 0xffff8881171fa508 of 8 bytes by task 16940 on cpu 0:
[  444.224384][T16940]  mas_state_walk+0x28f/0x650
[  444.229054][T16940]  mas_walk+0x60/0x150
[  444.233121][T16940]  lock_vma_under_rcu+0x8d/0x160
[  444.238059][T16940]  do_user_addr_fault+0x233/0x1090
[  444.243441][T16940]  exc_page_fault+0x62/0xa0
[  444.247952][T16940]  asm_exc_page_fault+0x26/0x30
[  444.252921][T16940] 
[  444.255250][T16940] value changed: 0x00007f4ef5f64fff -> 0xffff8881171faf08
[  444.262354][T16940] 
[  444.264670][T16940] Reported by Kernel Concurrency Sanitizer on:
[  444.270822][T16940] CPU: 0 UID: 0 PID: 16940 Comm: syz.4.3908 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(voluntary) 
[  444.282970][T16940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  444.293016][T16940] ==================================================================
[  444.320430][T16943] tap0: tun_chr_ioctl cmd 2147767520
[  444.378981][T16944] pimreg: entered allmulticast mode