last executing test programs:

30.627297358s ago: executing program 4 (id=133):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
getpid()
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000000)={[{@errors_remount}, {@grpquota}]}, 0x2, 0x4f2, &(0x7f0000000a40)="$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")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x80000000001, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0xa47, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000540)="ae0d976b6d3b8133517b3d742a7f932f0db7a1b91f40eb11bb4a350742648dd1c3cdf93722b431072402004000000000000e9e87b054666f9a00b68068c7a3ada959e73858ea9e53eadb4765b23a706964d8b4134679246927b80bf20f4b0898541b01f57b1df3ede003843da8e3bf535d19cf081dc61181d6c00ae8a355180bd6a181e230dd0d703dbafa136b093c482a71d03b6a8807cdf7cadfa9808a9da599d51f37507a05f4cc08ce80e00849924a58d7e8565ac6f73e2a3d1c18d30762ae0cc434b535178f9aa2bc80bc1f5dd95d555d832f69179b", 0xd8, 0x404c050, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r1, r2, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, r2, 0x0)
quotactl$Q_GETQUOTA(0xffffffff80000701, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000380))

30.370947069s ago: executing program 4 (id=141):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="12000000"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000040), &(0x7f00000000c0)=@udp6, 0x1}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x6, 0x0, &(0x7f0000000040)="e06921e8682d", 0x0, 0xc7d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={0x0}, 0x801}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
inotify_init()
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

29.956041823s ago: executing program 4 (id=148):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r2 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

29.776021218s ago: executing program 4 (id=150):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket$inet6(0xa, 0x2, 0x4)
r3 = socket(0x10, 0x803, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000020c0)='./cgroup/cgroup.procs\x00', 0xa000, 0x1da)
close(r4)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r5, &(0x7f0000000000)={&(0x7f0000000780)=@in={0x2, 0x4e23, @rand_addr=0x640100ff}, 0x10, &(0x7f0000000500)=[{&(0x7f0000000080)='5', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
shutdown(r5, 0x1)
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f0000000040)=@assoc_value={0x0, 0x41b}, &(0x7f0000000240)=0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x38, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r6, 0x50483}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000000), 0xf8, 0x582, &(0x7f0000000b40)="$eJzs3d9rW+UbAPDnpO3W/fh+28EY6oUUduFkLl1bf0zwYl6J6HCg9zO0WRlNl9GkY60Dtwt3440MQcSB6L33Xg7/Af+KgQ6GjKIX3lROctKFNunSLF2z5vOBs73vOSd9z5P3PG/ek5OQAAbWRPpPLuLliPgmiRhr2jYc2caJ+n5rj2/OpksS6+uf/pVEkq1r7J9k/x/JKi9FxG9fRZzObW23srK6UCiViktZfbK6eG2ysrJ65spiYb44X7w6PTNz7q2Z6Xffebtnsb5+8Z/vP7n/4bmvT65998vDY3eTOB9Hs23NcTyDW82ViZjInpOROL9px6keNNZPkr0+ALoylOX5SKRjwFgMZVnf0vrY8zw0YJd9maY1MKAS+Q8DqjEPaFzb9+g6+IXx6P36BdDW+Ifr743EaO3a6PBaUr8yOljfml7vjveg/bSNX/+8dzddot37EAd70BDAJrduR8TZ4eGt41+SjX/dO9vBPpvbGLTXH9hL99P5zxut5j+5jflPNM9/Mkda5G43np7/uYc9aKatdP73Xsv578ZNq/GhrPa/2pxvJLl8pVRMx7b/R8SpGDmY1qci4oPWN0E+z609WG/XfvP8L13S9htzwew4Hg5vmv/NFaqFZ4+87tHtiFdazn+Tjf5PWvR/+nxc7LCNE8V7r7bb9vT4d9f6TxGvtez/J52ZbH9/crJ2Pkw2zoqt/r5z4vd27W8b/2jPw90i7f/D28c/njTfr63svI0fR/8tttvW7fl/IPmsVj6QrbtRqFaXpiIOJB9vXT/95LGNemP/NP5TJ7cf/1qd/4fSxO4w/jvH7zTvOrqz+HdXGv/cjvp/54UHH33xQ7v2O+v/N2ulU9maTsa/Tg/wWZ47AAAAAAAA6De5iDgaSS6/Uc7l8vn65zuOx+FcqVypnr5cXr46F7Xvyo7HSK5xp3us6fMQU9nnYRv16U31mYg4FhHfDh2q1fOz5dLcXgcPAAAAAAAAAAAAAAAAAAAAfeJIxGir7/+n/hhq/Zg2q4EX0TY/+Q3sc+3zP9vSi196AvqS138YXF3kv/cAYJ/w+g+DS/7D4JL/MLjkPwwu+Q+Dayf5//OFXTwQAAAAAAAAAAAAAAAAAAAAAAAAAAAA2B8uXriQLutrj2/OpvW56yvLC+XrZ+aKlYX84vJsfra8dC0/Xy7Pl4r52fLi0/5eqVy+NjUdyzcmq8VKdbKysnppsbx8tXrpymJhvnipOPJcogIAAAAAAAAAAAAAAAAAAIAXS2VldaFQKhWXFBS6Kgz3x2H0YSHXH4fRZWGvRyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeOK/AAAA//92vTrs")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$LOOP_SET_STATUS64(r8, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1c0000000, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
r9 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r9, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r10, 0x0, 0x5}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)

28.928387557s ago: executing program 4 (id=157):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000240)={0xcd8b, {{0x2, 0x4e24, @broadcast}}}, 0x88)

28.902513759s ago: executing program 4 (id=158):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="12000000"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000040), &(0x7f00000000c0)=@udp6, 0x1}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x6, 0x0, &(0x7f0000000040)="e06921e8682d", 0x0, 0xc7d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={0x0}, 0x801}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
inotify_init()
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

28.878138711s ago: executing program 32 (id=158):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="12000000"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000040), &(0x7f00000000c0)=@udp6, 0x1}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x6, 0x0, &(0x7f0000000040)="e06921e8682d", 0x0, 0xc7d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={0x0}, 0x801}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
inotify_init()
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

2.395601165s ago: executing program 1 (id=620):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000a00)={0xe, &(0x7f0000000740)})
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000180)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580), 0x0, 0x9a, &(0x7f0000000540), 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7, 0x8, 0x0, 0x0}}, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = io_uring_setup(0x2553, &(0x7f0000000280))
dup3(0xffffffffffffffff, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b70d7a79ed5d8c48f52a50185980", 0x30)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)

2.053272863s ago: executing program 2 (id=633):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xfe, 0x0, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x43, 0xffffffffffffff11, &(0x7f0000000000), &(0x7f0000000540)="9c18a537674b5d9e9185cd0add6d6d4c9e63ece1b58d7b42c6c27a5f1671fdf94432fc1baaef86573fc9fbb426f9284a6bd47174eb6fb9f893c18421d26d649d633a0f459969df8d3284737c5586cd696884192ce10db91e21fd978337408b7bd1cbb6789b51d63c8e68dab5da01c8e19d572950cfe2142e244990624270eaa2a2ded01d820cec011a6b05192b91cd193b1995bc296c249e1ef1570000000000000f75eec7040de10b5d8c536e5b5ce39ab84e658eb8f02fe112a5136cd3ac5c06848a40ec335a", 0xf0, 0x0, 0x800006}, 0x3b)

1.96337861s ago: executing program 2 (id=636):
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
socket(0x2a, 0x2, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x32126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x25c, &(0x7f0000000440)=@framed={{0x18, 0x2}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r3}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r4}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r5}, 0x18)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

1.892176226s ago: executing program 5 (id=637):
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="8b332abd70000000478d15000000080099"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000700)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032abd7000ffdbdf257600000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900090000001a0000000c0058000600000000000000aa72eea8b2b2bf29eb0e115df1c8a062661a46e08c0095f53f44441db2aefe8faa6c53490d5c1c6d3f6f764227e785f6d2c05844ad4ca9254ffd3258a2fa0f3dafc7635f6510a1ae50b2b5cfa9ace27613e8c475d15c66e6e0f879587ec57e689b5965fda73c44203684e4c186ff9f4f7685c6ccb44d1eb9016c7c310cc767cddcac02a8b8ca6cddb6cc9724be3c"], 0x34}, 0x1, 0x0, 0x0, 0x40841}, 0x1)
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$MRT6(r0, 0x29, 0xd0, &(0x7f0000000040), &(0x7f0000000080)=0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{}, &(0x7f00000001c0), &(0x7f0000000300)='%+9llu \x00'}, 0x20)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400), 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000181100edffff090000000001000000", @ANYRES32, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
socket$inet6(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0xa887, 0x9772, 0x2, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000240)={0xcd8b, {{0x2, 0x4e24, @broadcast}}}, 0x88)

1.802986764s ago: executing program 5 (id=640):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x6, 0x9, 0x7fffffff})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000a00), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
syz_open_procfs(0xffffffffffffffff, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000040)=0x3, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
ptrace(0x10, 0x0)
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f00000001c0)={&(0x7f0000000000)="c945b941eb", 0x5})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x1, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x6, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x7}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x28f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x58051}, 0x4004004)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000006c0)=@newtaction={0xa0, 0x30, 0x9, 0xf00, 0xf00, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {0x0, 0x0, 0xfe}, {}, {0x6}, {0x2, 0x3, 0x8, 0x3}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x40040c0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(0xffffffffffffffff, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)

1.453830582s ago: executing program 3 (id=642):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r0}, 0xfffffffffffffeeb)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={0x0, &(0x7f0000000600)=""/138, 0x108, 0x8a, 0x1, 0xfa7, 0x10000}, 0x28)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0xe)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000001740)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_addr=@broadcast, @loopback}, 0x10)
setsockopt$MRT_FLUSH(r3, 0x0, 0xd4, &(0x7f0000000000)=0x9, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000400000005"], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]})
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
r5 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000300)=0x10, 0x0)
ptrace(0x4207, r4)
getsockopt$PNPIPE_IFINDEX(r5, 0x113, 0x2, &(0x7f00000003c0), &(0x7f0000000400)=0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x247d}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@resgid={'resgid', 0x3d, 0xee00}}, {@user_xattr}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@nogrpid}, {@barrier_val={'barrier', 0x3d, 0xb82}}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x7)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

1.385533747s ago: executing program 2 (id=643):
dup2(0xffffffffffffffff, 0xffffffffffffffff)
vmsplice(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000001cc0)="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", 0x341}, {&(0x7f0000000740)="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", 0x10e}, {&(0x7f00000002c0)="732472e698d7d2ff3ff76be12f9b4685cea8ea6518ac0df060b6fc062adecdb77495", 0x22}], 0x3, 0xa)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, <r1=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001800010000000000000000000200000008000000040000000c00088008000c00", @ANYRES32=r1, @ANYBLOB="dd41ad508b8e249ffc44c06bd397a96ea53980eaafff46fbb69fc901bb34294d75e0efeecd7c3ef7a6177ab53b282ae76699885bcdf6005460a1d06730d007000000000000008591e6074e68a5b91619461f519678da9bffffff7f000000003c76d31bf1419ae6fdd7d4057f900f17b93621264acf3e76f513"], 0x28}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r3}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r8)
sendmsg$NFC_CMD_DEP_LINK_UP(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x4000, &(0x7f00000000c0)=ANY=[])
r9 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r9, 0x541c, &(0x7f0000000200))
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r10, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002dbd7000fedbdf250d000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c881}, 0x2000c800)
io_uring_setup(0x5133, 0x0)

1.320067103s ago: executing program 1 (id=644):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18}, './file0\x00'})
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0xeffffffb, 0x80, 0x1, 0x357}, &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, {0x2}})
io_uring_enter(r1, 0x47bc, 0x2, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0, 0x0, 0x4}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000040c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c0000000c0a010100000000000000000a0000070900020073797a31000000000900010073797a3100000000100003800c000080080003400000000214000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x24000850}, 0x40)

1.250449888s ago: executing program 2 (id=646):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff75, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000a00)={@broadcast, @random="e17fafb76008", @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x1, 0x4, 0x30, 0x67, 0x0, 0xf2, 0x6, 0x0, @rand_addr=0x64010102, @broadcast, {[@end, @timestamp_prespec={0x44, 0x4, 0x7e, 0x3, 0x4}]}}, {{0x4e22, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x1, 0x3bc, 0x0, 0xc9c}}}}}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002b40)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0)

1.249980168s ago: executing program 3 (id=647):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x6}, 0x18)
open(0x0, 0x4000, 0x100)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket$igmp(0x2, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x42, 0x90)
r5 = shmget$private(0x0, 0x400000, 0x8, &(0x7f000000e000/0x400000)=nil)
shmat(r5, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0xff, 0x7ffc0002}]})
kcmp(0x0, 0x0, 0xde6c8001d5ed5ea6, 0xffffffffffffffff, 0xffffffffffffffff)

1.249617678s ago: executing program 1 (id=648):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000800)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0xc}, 0x94)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
fchdir(r2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x8000, &(0x7f0000000080)={[{@grpid}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@init_itable_val={'init_itable', 0x3d, 0x7ab4}}, {@jqfmt_vfsv0}]}, 0x80, 0x63c, &(0x7f0000001bc0)="$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") (fail_nth: 9)
ioctl$SG_GET_PACK_ID(0xffffffffffffffff, 0x227c, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)

1.249351739s ago: executing program 2 (id=649):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x2a}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000000), 0x2, 0x5b1, &(0x7f0000000980)="$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")

1.237989769s ago: executing program 3 (id=650):
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="8b332abd70000000478d15000000080099"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000700)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032abd7000ffdbdf257600000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900090000001a0000000c0058000600000000000000aa72eea8b2b2bf29eb0e115df1c8a062661a46e08c0095f53f44441db2aefe8faa6c53490d5c1c6d3f6f764227e785f6d2c05844ad4ca9254ffd3258a2fa0f3dafc7635f6510a1ae50b2b5cfa9ace27613e8c475d15c66e6e0f879587ec57e689b5965fda73c44203684e4c186ff9f4f7685c6ccb44d1eb9016c7c310cc767cddcac02a8b8ca6cddb6cc9724be3c"], 0x34}, 0x1, 0x0, 0x0, 0x40841}, 0x1)
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$MRT6(r0, 0x29, 0xd0, &(0x7f0000000040), &(0x7f0000000080)=0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000300)='%+9llu \x00'}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1e0000927791fdce23303e140600000086040000", @ANYRES32=r1, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100000005000000040000000d00"/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000181100edffff090000000001000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
socket$inet6(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x1, 0x6}, 0xa887, 0x9772, 0x2, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000000240)={0xcd8b, {{0x2, 0x4e24, @broadcast}}}, 0x88)

1.199762362s ago: executing program 2 (id=651):
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
syz_usb_connect(0x2, 0x24, &(0x7f0000001040)=ANY=[@ANYBLOB], 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000c000000000000000095000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x20, &(0x7f0000000180)={&(0x7f0000000000)=""/105, 0x69, <r2=>0x0, &(0x7f0000000300)=""/146, 0x92}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[], 0x0, 0xc, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
fcntl$setownex(r1, 0xf, 0x0)
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
unshare(0x2040400)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
poll(0x0, 0x0, 0x1ad)
syz_emit_ethernet(0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x1c, r7, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008084}, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r8 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$link(0x8, r8, r8)

953.467172ms ago: executing program 1 (id=652):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000193c0)={0x11, 0x13, &(0x7f0000019300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000206a932500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='sys_enter\x00', r0, 0x0, 0x91}, 0x18)
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x400) (fail_nth: 1)

952.616352ms ago: executing program 3 (id=653):
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x16)
r0 = open(&(0x7f0000000000)='.\x00', 0x48400, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00')
preadv(r2, &(0x7f0000000340)=[{&(0x7f00000013c0)=""/125, 0x7d}], 0x1, 0x0, 0xffffffff)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
unlinkat(r0, &(0x7f0000000280)='./file0\x00', 0x200)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)={0x114, 0x28, 0x1, 0x4, 0x25dfdbf8, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2d}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82", @typed={0x4, 0xe9}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@errors_remount}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200, 0x400000]})
chdir(&(0x7f0000000140)='./file0\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
pwritev2(r5, &(0x7f0000000940)=[{&(0x7f0000000340)="be85809842d43cbb78329613b3aa8b78f87e932d0db6f110e00ef09327f497b6c6bc81aa4e792dc9c48a1b9a75cf44ce8ce1b856b626a7e4777204471d63392de989c63d", 0x44}], 0x1, 0x9, 0x10000, 0x0)
readlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000440)=""/152, 0x98)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='mm_page_free\x00'}, 0x18)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)

915.336686ms ago: executing program 1 (id=654):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

881.723619ms ago: executing program 0 (id=655):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r0, 0x0, 0x1034}, 0x18)
syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x2bb2, 0x40, 0x1, 0x18b}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000340))
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0xa00, 0xb)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file1\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x365, &(0x7f0000000700)="$eJzs3c9rM0UYwPEnaZI3SWmTgygK0sFe9LK00bMYpAUhYGkbsRWEbbvRkDUp2VCNiG1PXsW7J8FD6c2Ch4L2H+jFm15E8NaL4MEe1JX9lWySTWtD0mj7/cBLJjPzbGZ3Ji/Pptns1duff1CrWFpFb0k8rSQmInItkpe4BGL+Y9wtpyTsSF6a/f3H5ze2ymmvQq0WN18uKKXmF7778JOM3+38iVzm3736rfDr5dOXz179vfl+1VJVS9UbLaWrncbPLX3HNNRe1appSq2Zhm4Zqlq3jKbX/o2/HbOxv99Wen1vLrvfNCxL6fW2qhlt1WqoVrOt9Pf0al1pmqbmsoLblE/W1/XiiMG7Yx4MJqTZLOozIpIZaCmfTGVAAABgqvrz/7iT0o+S/2/LfKm0sq6czt38//SFi9bsW2fzfv5/norK/1/5ydtWT/7vnE508/+Gd35QuT3//1LukP8PZkSPy8j5f34Cg8FoFlIDVbGeZ07+n/Xfv67jd06X3AL5PwAAAAAAAAAAAAAAAAAAAAAA/wfXtp2zbTsXPAb/upcQ+M/xIA2b/yciknZm32b+H7KNrW1JuxfuOXNsfnZQPih7j36HCxExxfjL7uesjeDKI+XIy/fmoR9/eFCecVuKFak68bIsOcm76ykUb9urb5RWlpXHj+9cppQNxxckJ0+F4791V6cTX+iN918/JS8uhuI1yckPu9IQU/bcyO7rf7qs1OtvlvriM24/Efnl3icFAAAAAIAx01RH5Pm7pg1r935lpFhxPyYyZEly8mf0+f1S5Pl5IvdcYtp7DwAAAADA42C1P67pEjeabsE0owoZGdo0hkKipyYpIpGdU301yZu2PBPaw387npT3fZfY3aJM00j3dv4qOKp3OQjBFymcgXea/DuqyGiHN9h/tyaWGH2aYkfiLoCjcFNchkQlQzWJ/sEvOBUq8rUWhw7j2N+RTk3wsVFqyHGWtcHtxG+Y0+RAjR0bbT0/88XXf4zvDfLqmb8CPrq987Fp2IcybFJuXL1RUclJ/78DAAAA4P51k/6g5rVwc/hGIuGb5fCXewAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAxmgiP+nXV5j2PgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Ff8EAAD//7vA8MY=")
r3 = open(&(0x7f0000000340)='./file1\x00', 0x185102, 0x38)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1000002, 0x28011, r3, 0x0)
truncate(&(0x7f00000000c0)='./file1\x00', 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x4}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}]}}}, @IFLA_BROADCAST={0xa}]}, 0x50}}, 0x0)
r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0xb95b5ec032cc8e84}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r6}, &(0x7f0000000180), &(0x7f0000000080)=r5}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xd7, 0x200000000000, 0x3}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@broadcast, 0x6, 0x4, 0x1}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000004180)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @local, {[], {{0x8000, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x100, 0x0, 0x1}}}}}}}, 0x0)
sync_file_range(r3, 0x6, 0x10000000000000, 0x2)
ftruncate(r3, 0x6)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x21, &(0x7f0000000300)={[{@nr_blocks={'nr_blocks', 0x3d, [0x6d]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x74]}}]})
r9 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
ioctl$LOOP_CONFIGURE(r9, 0x4c0a, &(0x7f0000000140)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "280991800000598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f000000155cc30cf11d0bc000", [0x4, 0x40000000000000]}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)

605.911851ms ago: executing program 5 (id=656):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f00000006c0)=ANY=[@ANYRESHEX, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r1, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b70d7a79ed5d8c48f52a50185980", 0x30)
sendfile(r1, r0, 0x0, 0x3ffff)

598.266411ms ago: executing program 3 (id=657):
dup2(0xffffffffffffffff, 0xffffffffffffffff)
vmsplice(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000001cc0)="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", 0x341}, {&(0x7f0000000740)="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", 0x10e}, {&(0x7f00000002c0)="732472e698d7d2ff3ff76be12f9b4685cea8ea6518ac0df060b6fc062adecdb77495", 0x22}], 0x3, 0xa)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, <r1=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001800010000000000000000000200000008000000040000000c00088008000c00", @ANYRES32=r1, @ANYBLOB="dd41ad508b8e249ffc44c06bd397a96ea53980eaafff46fbb69fc901bb34294d75e0efeecd7c3ef7a6177ab53b282ae76699885bcdf6005460a1d06730d007000000000000008591e6074e68a5b91619461f519678da9bffffff7f000000003c76d31bf1419ae6fdd7d4057f900f17b93621264acf3e76f513"], 0x28}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r3}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r8)
sendmsg$NFC_CMD_DEP_LINK_UP(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x4000, &(0x7f00000000c0)=ANY=[])
r9 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r9, 0x541c, &(0x7f0000000200))
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r10, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002dbd7000fedbdf250d000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c881}, 0x2000c800)
io_uring_setup(0x5133, 0x0)

547.397556ms ago: executing program 0 (id=658):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x4, 0xa}, {0xf2ff}, {0xfff2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x2}, @TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8858}, 0x20004804)

529.111087ms ago: executing program 1 (id=659):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f0000000100), 0x1, 0x4c4, &(0x7f0000000f40)="$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")
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
pivot_root(&(0x7f0000000580)='./cgroup.cpu/cpuset.cpus\x00', 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8947, &(0x7f0000000340)={'vlan0\x00', @random="00009e0c1100"})
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x1)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r4}, 0x10)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, 0x0, &(0x7f0000000040))
write$cgroup_int(r3, &(0x7f0000000000)=0xfe8e, 0x12)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1e000000050000000300000000fbff3198f0ade7ca098e2a27b3ea8fcd00803f00080000", @ANYRES32=r3, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="fdffffff01000000040000000800"/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{}, &(0x7f0000000840), &(0x7f0000000880)=r5}, 0x20)
syz_usb_disconnect(0xffffffffffffffff)
r6 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$9p_rdma(&(0x7f0000000240), &(0x7f0000000300)='./file0\x00', &(0x7f0000001400), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72744de93d3078303030303030303030303d30303030302c7375626a5f726f6c653d7472616e733d72646d612c"])
mknodat(r6, &(0x7f0000000300)='./file0\x00', 0x4, 0xaf04)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000580)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)

489.98167ms ago: executing program 5 (id=660):
r0 = open(0x0, 0x0, 0x2)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b7"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={0x0}, 0x801}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000240)='./file1\x00', 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b7"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

432.350415ms ago: executing program 3 (id=661):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000a00)={0xe, &(0x7f0000000740)})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000180)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580), 0x0, 0x9a, &(0x7f0000000540), 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7, 0x8, 0x0, 0x0}}, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = io_uring_setup(0x2553, &(0x7f0000000280))
dup3(0xffffffffffffffff, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write(r3, &(0x7f00000009c0)="3bf58d7d45d32cfe1da7c797b82f16713d1cb80b3fa1bda74e3977b40e7af46b4c60b70d7a79ed5d8c48f52a50185980", 0x30)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7fffeffd)

431.704705ms ago: executing program 0 (id=662):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB='\a\x00'], 0x50)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f0000000000)={0xfffffffd, 0xff}, 0xc)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={&(0x7f0000000200)=""/115, 0x73, <r3=>0x0, &(0x7f0000000540)=""/244, 0xf4}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYRESOCT=r0, @ANYRESHEX=r0, @ANYRESOCT=r0, @ANYRESOCT=r2, @ANYRESHEX, @ANYRESHEX=r2, @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYRES32=r1, @ANYRES32=r0], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
syz_emit_ethernet(0x46, &(0x7f0000000240)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0xfffc, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x5, 0x3, 0x0, @multicast2, {0x5, 0x4, 0x0, 0x9, 0xfff9, 0x66, 0x6, 0x7, 0x84, 0xfff7, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101}, "2c5d0606e4f95807"}}}}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r4}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000800018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$selinux_context(r8, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r10=>0x0})
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r11}, &(0x7f0000000800), &(0x7f0000000840)=r12}, 0x20)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r10}}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x0)

205.779123ms ago: executing program 0 (id=663):
socket(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket(0x40000000015, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$qrtr(0x2a, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$inet(0xa, 0x801, 0x84)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r1], 0x1000f)
rseq(&(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2, 0x2, 0x850, 0x9}, 0x6}, 0x20, 0x1, 0x0)

189.219424ms ago: executing program 5 (id=664):
unshare(0x2c020400)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'veth0_macvtap\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x1, [{0x200, 0x5}]}})
r0 = socket(0xa, 0x3, 0x87)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x890b, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
pipe2(&(0x7f00000006c0)={<r3=>0xffffffffffffffff}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r5, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c0001"], 0x118}}, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x4000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x20}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1004}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x2c, r9, 0x6a98047402e98331, 0x70bd2a, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

125.13967ms ago: executing program 0 (id=665):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x20000000000000e5, &(0x7f0000000440)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = io_uring_setup(0x5bc9, &(0x7f0000000940)={0x0, 0x65cf})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x1159e4047a6348de, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000014c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000702000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000400000006a0a80fe000000008500000053000000b7000000000000009500001000000000a80501363034fdb117168bd07ba00af739d1a1ee35fe163a255c33282044b32495ef8ab9adc67ccc945f105d802f5132143c0a9fc7a84452569957c1002ed7d4d8e17f791f4798c8eb483e9973320d046c3126c6afcfd84de03352c69b3edff5be26f8ffa5f8f2879021c2ea53ea79acd7fb38dd1abb75aa393cea26d465637d11f705000000473e7b7c4ae7dd5e4dee88518ddf12dddd4bfc6a4dd3b6beba51074229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba7de26ff2357ef17f95a25780c3a057844f226ef4e912f01a201e694e3806e8c70e8b69524cd19f7525d8d66bb766f7f3f918c86a70252236800001897133af94a5a4cfc794d8b9d7c33632152c48eaf302f0b2e0c252b00000000000000006f1bbefbe08de65e3762e194ba4cae8b13535d7d11ee917bca4885bbf597a14ab2458efce78510d86272d88e0c8088f404f011289ebc5623faa1182632161e073af1d69a2e36bed435000025ecd201d2ffb0a7fa4f5d11060cdcf071defd0a8be3b69ce3e4f361aca75827426dde87fdf4617222674280f55e98107450c19b9d86329bd5b4697336112b0b8754ce3574046bf6114d1a88597850b77378fa8edfff8faf8b8ec039bab385cac0535373bb8fab90539b1a65ddff841eb671f3faf37ebdfccea0c002ad2b42047c9ec43193ccf617dbf8a12b4f189edbf9fb7c42b1f435ccd4d96822e6b70100912c92e3943e9c4f45d8bcd528fa8a3ea847f10e9b2506f3bb506f1d7fbde8010000000000a073d0de5538ab42e170b3baae34c35987b0dda497ac3f5e97e6e6aeea15c6d5ed24310100000003bb6030f84b63aaf8690db0221b1705c501f802ff59b4e683efa4b6e77e042072bd2ac37d413008ec9eb8166f6e28b49a77ed91befc65315896f88a8fb1dd679fb4c515f8b7a5b7aca6a251a89d47b728502f7e621cc0e3ba04000000c149ee6601728c750d304197c22da8650579475afd96187d881e93b42a5fdfd686d8900c44c67133dad58037fda65885a15a429edfe3027a5ebf95254744f10fd607bc3300b94932b8d944e0b083bbd86b19cb074577a25ff581d92af08a06f857310a2f14326b0b290205e91a682e00c8762cbc6b904c980eef6e6a1def886c95676dce6a8194479700a02b92bdc8d05eae1f24fdd7b80d1bb404c22f681594de2ebb9687219de8d73ac83823feb402a2415a9850d5f0183ec67be96dc0e4c2d7acf1dfe79d6771903b76e21190c22d641030e1ddacf006c3116e1803af20a5f2b5f7ba58aca5bcabbbab24414a3810788e5503e4be66d683daac5f0001000077339b4200000000108a3c87b19d5b9a00c75d84a92d6dcf00ba96edf35ede0e2b57c26e94801b498924166bde57d5f24258d9fd028096cc15a8b912b494d4bbe609031ea1ca65a548971d5d16296dd08e020000007a27310d5d01f8a8a0f5212d7f628f554afea715ccbc66cbb1016490f5d579308cb3188cf2fcaf67e0c16443d526ba4b968f07ae362c2133c168313e84beb871203880dd453c45d0a137d7f5a8b039dbfa62fb2b4214f8e69f967bf1fbd89e77fcca110000000800000000000000f8877994ebdc35f7efd41e3babd9b3782edd6776d5b6cb4ecd72c9de9b5503747d71440378cf2c2c7ea2dc5febb654a867f853713cf4c0bb322fbbe446d18dee4c821275ef18259cafc346c8b3b9fb0f3adcf6ea310a6b9a3f59e29a5909ea047fb61affb4bc8bbea1fb761b8933795b1a91358a7791aa843d07020e8bb6fc18458c49ac6313e7165b7d9f65e94a62b69f1011b94340cdb7303f01e5cdb5682ddf73d65c3de1d88dd7496d6345d5b9de0223988056a53e19a8b96b9640bc6c09d3c2ff894d626b57c776ed53f94d5e22ff148061b37f72bd92924cb1d0a725e19b264346b7cae0251a850de78316503f3c3d395c7e3f04fc8d52583327cd2341ce4b2d092815376299686f41353b2823814563011a2223b9dd00000000000000000000003a131374a3371cb3e2a9bb4d798b91cefa444501f40b7c9589e8c0bb6c82123d2b45ce905d0903b32ecf30e828c71a07a83f3275f3d661d1af0ffbd5d7f0"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000840)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5, 0x0, 0x100}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KDFONTOP_SET(r3, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="387ed7626d850509a2d6c1aa38f15cd00f85c263cb226db671261fff7ce9c555f189afae3530db6dd493f28fd988721b9ae21b3e3b4523ae2594f47d8f62b480c4160b1f90ac9c41fae6ab12ac4c113fef588684ef495689092883b902a41cd75387ef6f7bc7d460d5e665f398ff95596dc94ec97003a3db08e500c2fb07e11aa4031a61c51caf7a65a2b613bda33f3eaeae635d7cd81761e74c38a7695800a15516eb337056e02335f9a7d10aa2eaf7beb7e1f7a1e850ecb3421143c5c4ded0f083a0c524dcf320827266819b6a952db5bc96141b26c54db857edbcbbc81c7af7aadf50bc549974b6401a19cdb130282b955592efa94242065a4c8d695a2cdd9ada350defd58c775b92d348305774d3a256c7520b285d8da0dbf5e20d604413ed2ddf9bcbf881caf811852806175d63892a15234fbcd7a88a2a0aea45d19148f0e7dada7d6d0d77881387fdeaa02863be90b88dfff412bff40c31c6415c54ae3335e54a49d315851feffe30d999c36def4df7df747695ef060000001bbe1b649f42f310859122c0d2c1e558dc6586958a28374f386ecf369274e43003a09b5159ea515eb44521901ef0d00baa91c10a8e44a76aac3468a15bd3d45ad389977467f306f9bcde071b30769795eed2f1580414d168f557cd90040c4bd2a3d6bc509254a12cece59181fcb5bad8c24bd9f8f78d17ab01831325501e80d899e9252f99d3a2666343392fda115048e4f4dd9f45657f8224fc78eb1168fe0527fac33466aadf48f16994d29a47778566e0f3945b2bf36b6eecc7fa18914beb66ac9e519bd3330000000000000009a3237aebbe3bed781e39d5a0fb0cdc60e196f2261305feb596b5b66ab89d2d6333f699b16db68986ab3eee7b199fefb5f79ffb2d1050e46982af1c14a88dd9b647ba812f56a8404755c73e74bb90e64bab9647c70ed5afca1c3d87907d14df8aa9df6f40a80ace2bb8a2aad3b0c66915927db4173181943d88c0c76d5969e2043db5bd77fd60ba0f012139929ccfec965c1f769785a4d23332d71f0875e3146afef5b20cc306d3ecee65944fe9829e0ad0c3f6bb2fdc1bc31152538db50f47dc38ba908a0d808687e478a609fe0daa0000000000000000e7f2e98597e27f3e1dba9c3c16e9fab3bda6ed33cb1c75513e2264b69d4794ded98eff9aa53d22eb77c9d93169c04ab2490bf28106f770e07eb7a9e8fd4e71929f918b98c4cbfcb11a90139264a9ee807c973167f493760278df0cc34be9e8f86f948d9a62e63ad6ca9d174d2465380b1a00ddc42915e4f3a5db640600000095a3d63904c9ecd1c313c08e29b814bd8fed1ab6d2846c73345962895d289ac77152cac2e04c93a5470774975b42091f218dd1e68a15f8226577bf9481ae0555db64a717eb23a811356d00000000ddffffff00"})
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000008, 0x810, r1, 0x8000000)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x10c, &(0x7f0000000000)=0x10000, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000300)=[{0x0}], 0x0}, 0x20)
dup3(r1, r1, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7, 0x0, 0x2}, 0x18)
creat(0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x88640, 0x0)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000000040)={0x0, 0x2, 0x4, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
r10 = syz_open_pts(r9, 0x141601)
write(r10, &(0x7f0000000000)="d5", 0xfffffedf)
close_range(r8, 0xffffffffffffffff, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r0}, 0x10)

124.17346ms ago: executing program 5 (id=666):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@S')
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0100"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="009d553f700000000000000000000000000051000000000000000000"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000c"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r3=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r3, 0x1, &(0x7f0000000040)={{0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r7}, 0x10)
close(r4)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
r9 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r10}, 0x10)
chroot(0x0)
ioctl$USBDEVFS_SUBMITURB(r9, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0xd7487aa6f8c07d18, 0xf7fa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x101, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r9, 0x4008550d, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f0000000340)=ANY=[@ANYBLOB="1800009e83fa11dcfd176e253e92910000080029b70000000000000034601b0618110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bc09080000000000b60a0100000000000f000000000000001801000020756c2500000000002020207b9af8ff000000002d9100000000000037010000f8ffffffb702000008000000b70300000000000015000000060000003f93000000000000b5030000000000008500000076000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
io_cancel(0x0, 0x0, 0x0)

0s ago: executing program 0 (id=667):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x6, 0x9, 0x7fffffff})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000a00), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
syz_open_procfs(0xffffffffffffffff, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000040)=0x3, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
ptrace(0x10, 0x0)
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f00000001c0)={&(0x7f0000000000)="c945b941eb", 0x5})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x1, 0x0, 0x0, 0x8, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x6, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x7}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x28f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x58051}, 0x4004004)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, 0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f00000006c0)=@newtaction={0xa0, 0x30, 0x9, 0xf00, 0xf00, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {0x0, 0x0, 0xfe}, {}, {0x6}, {0x2, 0x3, 0x8, 0x3}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x40040c0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(0xffffffffffffffff, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)

kernel console output (not intermixed with test programs):

0
[   42.463710][ T4067]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   42.463793][ T4067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.463823][ T4067] RIP: 0033:0x7fc8e4abebe9
[   42.463840][ T4067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.463856][ T4067] RSP: 002b:00007fc8e351f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bf
[   42.463875][ T4067] RAX: ffffffffffffffda RBX: 00007fc8e4ce5fa0 RCX: 00007fc8e4abebe9
[   42.463888][ T4067] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000000
[   42.463900][ T4067] RBP: 00007fc8e351f090 R08: 0000000000000000 R09: 0000000000000000
[   42.463913][ T4067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.463979][ T4067] R13: 00007fc8e4ce6038 R14: 00007fc8e4ce5fa0 R15: 00007ffed73891b8
[   42.463995][ T4067]  </TASK>
[   42.666566][ T4063] JBD2: no valid journal superblock found
[   42.672555][ T4063] EXT4-fs (loop3): Could not load journal inode
[   42.685946][ T4071] syz_tun: entered allmulticast mode
[   42.693377][ T4059] syz_tun: left allmulticast mode
[   42.712841][ T3974] team0: Port device team_slave_0 added
[   42.720584][ T3974] team0: Port device team_slave_1 added
[   42.775862][ T3974] batman_adv: batadv0: Adding interface: batadv_slave_0
[   42.783227][ T3974] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   42.809499][ T3974] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   42.827498][ T3974] batman_adv: batadv0: Adding interface: batadv_slave_1
[   42.834708][ T3974] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   42.861188][ T3974] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   42.872988][ T4082] loop0: detected capacity change from 0 to 1024
[   42.874454][ T4066] netlink: 28 bytes leftover after parsing attributes in process `syz.2.177'.
[   42.891881][ T4082] EXT4-fs: Ignoring removed nobh option
[   42.897945][ T4082] EXT4-fs: Ignoring removed bh option
[   42.923204][ T4082] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.958722][ T4082] FAULT_INJECTION: forcing a failure.
[   42.958722][ T4082] name failslab, interval 1, probability 0, space 0, times 0
[   42.971744][ T4082] CPU: 0 UID: 0 PID: 4082 Comm: syz.0.182 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   42.971772][ T4082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   42.971789][ T4082] Call Trace:
[   42.971797][ T4082]  <TASK>
[   42.971806][ T4082]  __dump_stack+0x1d/0x30
[   42.971829][ T4082]  dump_stack_lvl+0xe8/0x140
[   42.971845][ T4082]  dump_stack+0x15/0x1b
[   42.971890][ T4082]  should_fail_ex+0x265/0x280
[   42.971912][ T4082]  should_failslab+0x8c/0xb0
[   42.971937][ T4082]  kmem_cache_alloc_noprof+0x50/0x310
[   42.972092][ T4082]  ? __es_insert_extent+0x508/0xee0
[   42.972177][ T4082]  __es_insert_extent+0x508/0xee0
[   42.972270][ T4082]  ext4_es_cache_extent+0x276/0x370
[   42.972301][ T4082]  ext4_find_extent+0x336/0x7a0
[   42.972324][ T4082]  ext4_ext_map_blocks+0x11f/0x38a0
[   42.972424][ T4082]  ? this_cpu_in_panic+0x2d/0x40
[   42.972453][ T4082]  ? _prb_read_valid+0x8c1/0x920
[   42.972502][ T4082]  ? xas_load+0x413/0x430
[   42.972567][ T4082]  ext4_map_query_blocks+0xa8/0x480
[   42.972599][ T4082]  ext4_map_blocks+0x330/0xd00
[   42.972625][ T4082]  ? xas_load+0x413/0x430
[   42.972653][ T4082]  ? xa_load+0xb1/0xe0
[   42.972774][ T4082]  ext4_getblk+0x114/0x510
[   42.972804][ T4082]  ext4_bread_batch+0x5c/0x320
[   42.972917][ T4082]  __ext4_find_entry+0x840/0xf40
[   42.972947][ T4082]  ? __d_lookup_rcu+0x251/0x2a0
[   42.972984][ T4082]  ? d_alloc_parallel+0xba9/0xc60
[   42.973017][ T4082]  ext4_lookup+0xbb/0x390
[   42.973115][ T4082]  __lookup_slow+0x193/0x250
[   42.973148][ T4082]  lookup_slow+0x3c/0x60
[   42.973175][ T4082]  walk_component+0x1ec/0x220
[   42.973202][ T4082]  path_lookupat+0xfe/0x2a0
[   42.973312][ T4082]  filename_lookup+0x147/0x340
[   42.973343][ T4082]  user_path_at+0x3e/0x130
[   42.973446][ T4082]  __se_sys_quotactl+0xb6/0x670
[   42.973465][ T4082]  __x64_sys_quotactl+0x55/0x70
[   42.973481][ T4082]  x64_sys_call+0x15d6/0x2ff0
[   42.973567][ T4082]  do_syscall_64+0xd2/0x200
[   42.973649][ T4082]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.973711][ T4082]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   42.973734][ T4082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.973824][ T4082] RIP: 0033:0x7fa0e411ebe9
[   42.973840][ T4082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.973899][ T4082] RSP: 002b:00007fa0e2b87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   42.973919][ T4082] RAX: ffffffffffffffda RBX: 00007fa0e4345fa0 RCX: 00007fa0e411ebe9
[   42.973933][ T4082] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffff80000200
[   42.973945][ T4082] RBP: 00007fa0e2b87090 R08: 0000000000000000 R09: 0000000000000000
[   42.973958][ T4082] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.974016][ T4082] R13: 00007fa0e4346038 R14: 00007fa0e4345fa0 R15: 00007fffc0d28f68
[   42.974032][ T4082]  </TASK>
[   42.986000][ T3974] hsr_slave_0: entered promiscuous mode
[   43.282499][ T3974] hsr_slave_1: entered promiscuous mode
[   43.287553][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.288604][ T3974] debugfs: 'hsr0' already exists in 'hsr'
[   43.302897][ T3974] Cannot create hsr debugfs directory
[   43.426054][ T4110] syz_tun: entered allmulticast mode
[   43.433796][ T4109] syz_tun: left allmulticast mode
[   43.449108][ T4112] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   43.571652][ T3974] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   43.602888][   T29] kauditd_printk_skb: 464 callbacks suppressed
[   43.602905][   T29] audit: type=1326 audit(1755875951.695:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.649458][ T4128] wg2: entered promiscuous mode
[   43.653379][   T29] audit: type=1326 audit(1755875951.695:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa0e4120b07 code=0x7ffc0000
[   43.654557][ T4128] wg2: entered allmulticast mode
[   43.667215][ T3974] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   43.678167][   T29] audit: type=1326 audit(1755875951.695:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.714625][   T29] audit: type=1326 audit(1755875951.695:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.716694][ T4120] loop2: detected capacity change from 0 to 1024
[   43.738221][   T29] audit: type=1326 audit(1755875951.695:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.738255][   T29] audit: type=1326 audit(1755875951.695:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.738329][   T29] audit: type=1326 audit(1755875951.695:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.738359][   T29] audit: type=1326 audit(1755875951.695:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.738383][   T29] audit: type=1326 audit(1755875951.695:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.738485][   T29] audit: type=1326 audit(1755875951.695:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4130 comm="syz.0.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa0e411ebe9 code=0x7ffc0000
[   43.875208][ T4146] loop0: detected capacity change from 0 to 512
[   43.900519][ T4146] EXT4-fs: Ignoring removed mblk_io_submit option
[   43.903559][ T3974] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   43.914539][ T4120] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   43.926439][ T4120] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   43.938667][ T4120] JBD2: no valid journal superblock found
[   43.938842][ T4146] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   43.945237][ T4120] EXT4-fs (loop2): Could not load journal inode
[   43.958337][ T4146] EXT4-fs (loop0): 1 truncate cleaned up
[   43.967801][ T4146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.981141][ T3974] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   44.068897][ T3974] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.083028][ T3974] 8021q: adding VLAN 0 to HW filter on device team0
[   44.099734][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.107069][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.153112][ T3974] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   44.163713][ T3974] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   44.191544][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.198823][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.288463][ T3974] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.317110][ T4171] FAULT_INJECTION: forcing a failure.
[   44.317110][ T4171] name failslab, interval 1, probability 0, space 0, times 0
[   44.330032][ T4171] CPU: 0 UID: 0 PID: 4171 Comm: syz.1.198 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.330062][ T4171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.330089][ T4171] Call Trace:
[   44.330097][ T4171]  <TASK>
[   44.330104][ T4171]  __dump_stack+0x1d/0x30
[   44.330126][ T4171]  dump_stack_lvl+0xe8/0x140
[   44.330146][ T4171]  dump_stack+0x15/0x1b
[   44.330163][ T4171]  should_fail_ex+0x265/0x280
[   44.330237][ T4171]  ? audit_log_d_path+0x8d/0x150
[   44.330284][ T4171]  should_failslab+0x8c/0xb0
[   44.330307][ T4171]  __kmalloc_cache_noprof+0x4c/0x320
[   44.330339][ T4171]  audit_log_d_path+0x8d/0x150
[   44.330443][ T4171]  audit_log_d_path_exe+0x42/0x70
[   44.330473][ T4171]  audit_log_task+0x1e9/0x250
[   44.330600][ T4171]  audit_seccomp+0x61/0x100
[   44.330620][ T4171]  ? __seccomp_filter+0x68c/0x10d0
[   44.330638][ T4171]  __seccomp_filter+0x69d/0x10d0
[   44.330688][ T4171]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   44.330716][ T4171]  ? vfs_write+0x7e8/0x960
[   44.330740][ T4171]  ? __rcu_read_unlock+0x4f/0x70
[   44.330763][ T4171]  ? __fget_files+0x184/0x1c0
[   44.330790][ T4171]  __secure_computing+0x82/0x150
[   44.330807][ T4171]  syscall_trace_enter+0xcf/0x1e0
[   44.330835][ T4171]  do_syscall_64+0xac/0x200
[   44.330858][ T4171]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.330880][ T4171]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.330983][ T4171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.331001][ T4171] RIP: 0033:0x7fc8e4abebe9
[   44.331014][ T4171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.331028][ T4171] RSP: 002b:00007fc8e351f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000104
[   44.331074][ T4171] RAX: ffffffffffffffda RBX: 00007fc8e4ce5fa0 RCX: 00007fc8e4abebe9
[   44.331087][ T4171] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[   44.331099][ T4171] RBP: 00007fc8e351f090 R08: 0000000000001000 R09: 0000000000000000
[   44.331125][ T4171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.331135][ T4171] R13: 00007fc8e4ce6038 R14: 00007fc8e4ce5fa0 R15: 00007ffed73891b8
[   44.331151][ T4171]  </TASK>
[   44.665706][ T4177] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4177 comm=syz.1.199
[   44.729450][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.781873][ T4185] wg2: left promiscuous mode
[   44.786512][ T4185] wg2: left allmulticast mode
[   44.836252][ T4197] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.845406][ T4185] wg2: entered promiscuous mode
[   44.850055][ T4197] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   44.850525][ T4185] wg2: entered allmulticast mode
[   44.872612][ T4192] loop3: detected capacity change from 0 to 1024
[   44.901873][ T4192] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   44.912160][ T3974] veth0_vlan: entered promiscuous mode
[   44.913099][ T4192] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   44.940765][ T4192] JBD2: no valid journal superblock found
[   44.946803][ T4192] EXT4-fs (loop3): Could not load journal inode
[   44.957783][ T3974] veth1_vlan: entered promiscuous mode
[   44.974882][ T4211] loop0: detected capacity change from 0 to 512
[   44.978177][ T3974] veth0_macvtap: entered promiscuous mode
[   44.998245][ T3974] veth1_macvtap: entered promiscuous mode
[   45.018701][ T4211] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.024637][ T3974] batman_adv: batadv0: Interface activated: batadv_slave_0
[   45.064371][ T3974] batman_adv: batadv0: Interface activated: batadv_slave_1
[   45.067714][ T4211] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.084340][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   45.096014][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.110903][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.122710][ T4218] loop2: detected capacity change from 0 to 128
[   45.124174][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.142563][ T4217] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   45.163410][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.217882][ T4223] netlink: 24 bytes leftover after parsing attributes in process `syz.5.159'.
[   45.268848][ T4223] netlink: 4 bytes leftover after parsing attributes in process `syz.5.159'.
[   45.507838][ T4238] loop5: detected capacity change from 0 to 512
[   45.543027][ T4238] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.556488][ T4238] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.587527][ T4238] ucma_write: process 9 (syz.5.212) changed security contexts after opening file descriptor, this is not allowed.
[   45.617502][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.788209][ T4247] FAULT_INJECTION: forcing a failure.
[   45.788209][ T4247] name failslab, interval 1, probability 0, space 0, times 0
[   45.804948][ T4247] CPU: 0 UID: 0 PID: 4247 Comm: syz.1.215 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.805001][ T4247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   45.805014][ T4247] Call Trace:
[   45.805021][ T4247]  <TASK>
[   45.805027][ T4247]  __dump_stack+0x1d/0x30
[   45.805111][ T4247]  dump_stack_lvl+0xe8/0x140
[   45.805147][ T4247]  dump_stack+0x15/0x1b
[   45.805164][ T4247]  should_fail_ex+0x265/0x280
[   45.805187][ T4247]  should_failslab+0x8c/0xb0
[   45.805276][ T4247]  __kmalloc_noprof+0xa5/0x3e0
[   45.805300][ T4247]  ? process_preds+0x2ce/0x2bb0
[   45.805322][ T4247]  process_preds+0x2ce/0x2bb0
[   45.805340][ T4247]  ? __list_add_valid_or_report+0x38/0xe0
[   45.805445][ T4247]  ? merge_sched_in+0x605/0xa60
[   45.805466][ T4247]  ? avc_has_perm_noaudit+0x1b1/0x200
[   45.805492][ T4247]  ? should_fail_ex+0xdb/0x280
[   45.805579][ T4247]  ? ftrace_profile_set_filter+0xc2/0x1b0
[   45.805688][ T4247]  ? should_failslab+0x8c/0xb0
[   45.805708][ T4247]  ? __kmalloc_cache_noprof+0x189/0x320
[   45.805732][ T4247]  ftrace_profile_set_filter+0xff/0x1b0
[   45.805759][ T4247]  perf_ioctl+0x7b3/0x12e0
[   45.805799][ T4247]  ? ioctl_has_perm+0x289/0x2a0
[   45.805841][ T4247]  ? do_vfs_ioctl+0x866/0xe10
[   45.805860][ T4247]  ? selinux_file_ioctl+0x308/0x3a0
[   45.805878][ T4247]  ? _raw_spin_unlock+0x26/0x50
[   45.805961][ T4247]  ? finish_task_switch+0xad/0x2b0
[   45.805979][ T4247]  ? sysvec_apic_timer_interrupt+0x44/0x80
[   45.806013][ T4247]  ? __pfx_perf_ioctl+0x10/0x10
[   45.806088][ T4247]  __se_sys_ioctl+0xce/0x140
[   45.806121][ T4247]  __x64_sys_ioctl+0x43/0x50
[   45.806147][ T4247]  x64_sys_call+0x1816/0x2ff0
[   45.806167][ T4247]  do_syscall_64+0xd2/0x200
[   45.806248][ T4247]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.806273][ T4247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.806294][ T4247] RIP: 0033:0x7fc8e4abebe9
[   45.806308][ T4247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.806323][ T4247] RSP: 002b:00007fc8e351f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   45.806341][ T4247] RAX: ffffffffffffffda RBX: 00007fc8e4ce5fa0 RCX: 00007fc8e4abebe9
[   45.806439][ T4247] RDX: 00002000000001c0 RSI: 0000000040082406 RDI: 000000000000000d
[   45.806455][ T4247] RBP: 00007fc8e351f090 R08: 0000000000000000 R09: 0000000000000000
[   45.806526][ T4247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.806537][ T4247] R13: 00007fc8e4ce6038 R14: 00007fc8e4ce5fa0 R15: 00007ffed73891b8
[   45.806554][ T4247]  </TASK>
[   46.085985][ T4249] wg2: left promiscuous mode
[   46.090719][ T4249] wg2: left allmulticast mode
[   46.108454][ T4249] wg2: entered promiscuous mode
[   46.113604][ T4249] wg2: entered allmulticast mode
[   46.167572][ T4255] loop3: detected capacity change from 0 to 512
[   46.208432][ T4257] loop5: detected capacity change from 0 to 512
[   46.215404][ T4253] netlink: 16 bytes leftover after parsing attributes in process `syz.2.218'.
[   46.218926][ T4257] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.235617][ T4255] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.255124][ T4257] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   46.265472][ T4255] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.281416][ T4257] EXT4-fs (loop5): 1 truncate cleaned up
[   46.287938][ T4257] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.318963][ T4265] netlink: 'syz.2.223': attribute type 1 has an invalid length.
[   46.326964][ T4265] netlink: 224 bytes leftover after parsing attributes in process `syz.2.223'.
[   46.363751][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.378089][ T4271] loop2: detected capacity change from 0 to 1024
[   46.542179][ T4285] wg2: left promiscuous mode
[   46.547235][ T4285] wg2: left allmulticast mode
[   46.563837][ T4285] wg2: entered promiscuous mode
[   46.568877][ T4285] wg2: entered allmulticast mode
[   46.578502][ T4288] FAULT_INJECTION: forcing a failure.
[   46.578502][ T4288] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.592215][ T4288] CPU: 1 UID: 0 PID: 4288 Comm: syz.2.230 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.592291][ T4288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.592301][ T4288] Call Trace:
[   46.592307][ T4288]  <TASK>
[   46.592314][ T4288]  __dump_stack+0x1d/0x30
[   46.592334][ T4288]  dump_stack_lvl+0xe8/0x140
[   46.592351][ T4288]  dump_stack+0x15/0x1b
[   46.592489][ T4288]  should_fail_ex+0x265/0x280
[   46.592511][ T4288]  should_fail+0xb/0x20
[   46.592596][ T4288]  should_fail_usercopy+0x1a/0x20
[   46.592615][ T4288]  _copy_to_iter+0xcf/0xe30
[   46.592635][ T4288]  ? xas_load+0x413/0x430
[   46.592706][ T4288]  ? __rcu_read_unlock+0x4f/0x70
[   46.592727][ T4288]  ? xa_load+0xb1/0xe0
[   46.592749][ T4288]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   46.592769][ T4288]  __skb_datagram_iter+0x2f4/0x690
[   46.592791][ T4288]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   46.592963][ T4288]  skb_copy_datagram_iter+0x3d/0x110
[   46.593077][ T4288]  unix_stream_read_actor+0x43/0x70
[   46.593109][ T4288]  unix_stream_read_generic+0x6ae/0x1580
[   46.593146][ T4288]  unix_stream_recvmsg+0xc3/0xf0
[   46.593235][ T4288]  ? __pfx_unix_stream_read_actor+0x10/0x10
[   46.593267][ T4288]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[   46.593291][ T4288]  sock_recvmsg+0x139/0x170
[   46.593318][ T4288]  ____sys_recvmsg+0xf5/0x280
[   46.593346][ T4288]  ___sys_recvmsg+0x11f/0x370
[   46.593376][ T4288]  __x64_sys_recvmsg+0xd1/0x160
[   46.593428][ T4288]  x64_sys_call+0x2b42/0x2ff0
[   46.593446][ T4288]  do_syscall_64+0xd2/0x200
[   46.593473][ T4288]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.593496][ T4288]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   46.593521][ T4288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.593542][ T4288] RIP: 0033:0x7fd259a5ebe9
[   46.593556][ T4288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.593619][ T4288] RSP: 002b:00007fd25849e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   46.593683][ T4288] RAX: ffffffffffffffda RBX: 00007fd259c86090 RCX: 00007fd259a5ebe9
[   46.593695][ T4288] RDX: 0000000040000100 RSI: 0000200000001140 RDI: 0000000000000004
[   46.593708][ T4288] RBP: 00007fd25849e090 R08: 0000000000000000 R09: 0000000000000000
[   46.593720][ T4288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.593733][ T4288] R13: 00007fd259c86128 R14: 00007fd259c86090 R15: 00007fff20c33938
[   46.593751][ T4288]  </TASK>
[   46.595246][ T4287] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   46.962148][ T4294] syz_tun: entered allmulticast mode
[   46.972596][ T4293] syz_tun: left allmulticast mode
[   47.016936][ T4297] loop3: detected capacity change from 0 to 2048
[   47.027972][ T4297] msdos: Unknown parameter ''
[   47.247660][ T4309] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   47.258626][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.318810][ T4314] wg2: left promiscuous mode
[   47.323648][ T4314] wg2: left allmulticast mode
[   47.334060][ T4314] wg2: entered promiscuous mode
[   47.338980][ T4314] wg2: entered allmulticast mode
[   47.381087][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.390041][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.402941][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.429992][ T4322] syz_tun: entered allmulticast mode
[   47.441535][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.450530][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.462802][ T4321] syz_tun: left allmulticast mode
[   47.469292][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.501437][ T4332] netlink: 16 bytes leftover after parsing attributes in process `syz.1.247'.
[   47.516346][ T4317] loop0: detected capacity change from 0 to 128
[   47.582409][ T4319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.244'.
[   47.665085][ T4344] loop2: detected capacity change from 0 to 512
[   47.672224][ T4344] EXT4-fs: Ignoring removed mblk_io_submit option
[   47.685465][ T4344] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   47.710777][ T4344] EXT4-fs (loop2): 1 truncate cleaned up
[   47.717065][ T4344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.866488][ T4352] wg2: entered promiscuous mode
[   47.871442][ T4352] wg2: entered allmulticast mode
[   47.996019][ T4356] syz_tun: entered allmulticast mode
[   48.004960][ T4355] syz_tun: left allmulticast mode
[   48.042792][ T4358] netlink: 'syz.5.258': attribute type 4 has an invalid length.
[   48.466169][ T4361] loop5: detected capacity change from 0 to 1024
[   48.484306][ T4374] loop1: detected capacity change from 0 to 4096
[   48.485876][ T4373] loop3: detected capacity change from 0 to 1024
[   48.505053][ T4373] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   48.516468][ T4373] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   48.528427][ T4361] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   48.537400][ T4373] JBD2: no valid journal superblock found
[   48.541058][ T4361] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   48.545895][ T4373] EXT4-fs (loop3): Could not load journal inode
[   48.579059][ T4374] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   48.603430][ T4374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.614962][ T4361] JBD2: no valid journal superblock found
[   48.623892][ T4361] EXT4-fs (loop5): Could not load journal inode
[   48.681041][   T29] kauditd_printk_skb: 363 callbacks suppressed
[   48.681057][   T29] audit: type=1400 audit(1755875956.775:1501): avc:  denied  { ioctl } for  pid=4383 comm="syz.3.266" path="socket:[8726]" dev="sockfs" ino=8726 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   48.713293][ T4384] 
: renamed from bond0 (while UP)
[   48.754324][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.773607][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.785875][ T4391] wg2: left promiscuous mode
[   48.790554][ T4391] wg2: left allmulticast mode
[   48.792827][   T29] audit: type=1326 audit(1755875956.885:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.819284][   T29] audit: type=1326 audit(1755875956.885:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.843006][   T29] audit: type=1326 audit(1755875956.885:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.865189][ T4391] wg2: entered promiscuous mode
[   48.866527][   T29] audit: type=1326 audit(1755875956.885:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.871318][ T4391] wg2: entered allmulticast mode
[   48.895550][   T29] audit: type=1326 audit(1755875956.885:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.909208][ T4394] syz_tun: entered allmulticast mode
[   48.925012][   T29] audit: type=1326 audit(1755875956.885:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.954733][   T29] audit: type=1326 audit(1755875956.885:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   48.978719][   T29] audit: type=1326 audit(1755875956.885:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   49.003171][   T29] audit: type=1326 audit(1755875956.885:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4389 comm="syz.5.268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   49.056914][ T4396] loop2: detected capacity change from 0 to 512
[   49.065320][ T4389] syz_tun: left allmulticast mode
[   49.073408][ T4402] loop3: detected capacity change from 0 to 128
[   49.080927][ T4396] EXT4-fs: Ignoring removed mblk_io_submit option
[   49.087912][ T4402] EXT4-fs: Ignoring removed nobh option
[   49.099802][ T4396] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   49.115289][ T4402] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   49.137706][ T4402] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   49.150342][ T4396] EXT4-fs (loop2): 1 truncate cleaned up
[   49.156508][ T4396] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.193531][ T4411] netlink: 'syz.5.274': attribute type 10 has an invalid length.
[   49.210069][ T4411] team0 (unregistering): Port device team_slave_0 removed
[   49.222204][ T4411] team0 (unregistering): Port device team_slave_1 removed
[   49.403888][ T4428] netlink: 'syz.5.280': attribute type 3 has an invalid length.
[   49.494742][ T4430] capability: warning: `syz.5.280' uses deprecated v2 capabilities in a way that may be insecure
[   49.507270][ T4429] loop1: detected capacity change from 0 to 1024
[   49.522863][ T4429] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   49.534219][ T4429] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   49.553667][ T4429] JBD2: no valid journal superblock found
[   49.561524][ T4429] EXT4-fs (loop1): Could not load journal inode
[   49.923102][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.980284][ T3312] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   49.998163][ T4434] loop1: detected capacity change from 0 to 512
[   50.010897][ T4439] wg2: left promiscuous mode
[   50.016235][ T4439] wg2: left allmulticast mode
[   50.037544][ T4434] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.059020][ T4434] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.082426][ T4443] wg2: left promiscuous mode
[   50.087520][ T4443] wg2: left allmulticast mode
[   50.101843][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.114734][ T4439] wg2: entered promiscuous mode
[   50.120116][ T4439] wg2: entered allmulticast mode
[   50.138857][ T4443] wg2: entered promiscuous mode
[   50.144129][ T4443] wg2: entered allmulticast mode
[   50.151577][ T4446] syz_tun: entered allmulticast mode
[   50.161369][ T4445] syz_tun: left allmulticast mode
[   50.222905][ T4454] loop1: detected capacity change from 0 to 512
[   50.275777][ T4454] loop1: detected capacity change from 0 to 256
[   50.283213][ T4454] vfat: Unknown parameter ''
[   50.434437][ T4478] loop0: detected capacity change from 0 to 8192
[   50.441888][ T4474] loop7: detected capacity change from 0 to 7
[   50.577716][ T4484] wg2: left promiscuous mode
[   50.583222][ T4484] wg2: left allmulticast mode
[   50.600165][ T4484] wg2: entered promiscuous mode
[   50.605313][ T4484] wg2: entered allmulticast mode
[   50.631399][ T4486] syz_tun: entered allmulticast mode
[   50.641196][ T4485] syz_tun: left allmulticast mode
[   50.691184][ T4488] FAULT_INJECTION: forcing a failure.
[   50.691184][ T4488] name failslab, interval 1, probability 0, space 0, times 0
[   50.703933][ T4488] CPU: 0 UID: 0 PID: 4488 Comm: syz.1.301 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   50.703964][ T4488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   50.703976][ T4488] Call Trace:
[   50.703984][ T4488]  <TASK>
[   50.703993][ T4488]  __dump_stack+0x1d/0x30
[   50.704015][ T4488]  dump_stack_lvl+0xe8/0x140
[   50.704041][ T4488]  dump_stack+0x15/0x1b
[   50.704059][ T4488]  should_fail_ex+0x265/0x280
[   50.704157][ T4488]  should_failslab+0x8c/0xb0
[   50.704183][ T4488]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   50.704214][ T4488]  ? sidtab_sid2str_get+0xa0/0x130
[   50.704254][ T4488]  ? skb_put+0xa9/0xf0
[   50.704312][ T4488]  kmemdup_noprof+0x2b/0x70
[   50.704339][ T4488]  sidtab_sid2str_get+0xa0/0x130
[   50.704360][ T4488]  security_sid_to_context_core+0x1eb/0x2e0
[   50.704447][ T4488]  security_sid_to_context+0x27/0x40
[   50.704479][ T4488]  avc_audit_post_callback+0x9d/0x520
[   50.704505][ T4488]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   50.704558][ T4488]  common_lsm_audit+0x1bb/0x230
[   50.704586][ T4488]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   50.704608][ T4488]  slow_avc_audit+0x104/0x140
[   50.704630][ T4488]  avc_has_perm+0x13a/0x180
[   50.704723][ T4488]  selinux_socket_setsockopt+0x17c/0x1e0
[   50.704829][ T4488]  security_socket_setsockopt+0x46/0x80
[   50.704853][ T4488]  __sys_setsockopt+0x98/0x200
[   50.704869][ T4488]  ? __secure_computing+0x82/0x150
[   50.704957][ T4488]  __x64_sys_setsockopt+0x64/0x80
[   50.704977][ T4488]  x64_sys_call+0x20ec/0x2ff0
[   50.704995][ T4488]  do_syscall_64+0xd2/0x200
[   50.705017][ T4488]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.705115][ T4488]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   50.705140][ T4488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.705162][ T4488] RIP: 0033:0x7fc8e4abebe9
[   50.705177][ T4488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.705193][ T4488] RSP: 002b:00007fc8e351f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   50.705276][ T4488] RAX: ffffffffffffffda RBX: 00007fc8e4ce5fa0 RCX: 00007fc8e4abebe9
[   50.705289][ T4488] RDX: 0000000000000001 RSI: 0000000000000065 RDI: 000000000000000a
[   50.705300][ T4488] RBP: 00007fc8e351f090 R08: 0000000000000010 R09: 0000000000000000
[   50.705349][ T4488] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000002
[   50.705361][ T4488] R13: 00007fc8e4ce6038 R14: 00007fc8e4ce5fa0 R15: 00007ffed73891b8
[   50.705380][ T4488]  </TASK>
[   51.305874][ T4516] syzkaller0: tun_chr_ioctl cmd 1074025677
[   51.312048][ T4516] syzkaller0: linktype set to 800
[   51.370602][ T4524] ieee802154 phy1 wpan1: encryption failed: -22
[   51.379622][ T4523] SELinux:  Context system_u:object_r:selinux_config_t:s0 is not valid (left unmapped).
[   51.424526][ T4530] vhci_hcd: invalid port number 96
[   51.429861][ T4530] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   51.457973][ T4538] __nla_validate_parse: 14 callbacks suppressed
[   51.457988][ T4538] netlink: 8 bytes leftover after parsing attributes in process `syz.3.316'.
[   51.460687][ T4538] ip6gre1: entered allmulticast mode
[   51.546206][ T4545] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4545 comm=syz.0.318
[   51.633917][ T4548] loop3: detected capacity change from 0 to 8192
[   52.402883][ T4568] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   52.431214][ T4571] loop1: detected capacity change from 0 to 1024
[   52.438654][ T4571] EXT4-fs: Ignoring removed nobh option
[   52.493929][ T4571] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   52.522005][ T4576] loop0: detected capacity change from 0 to 1024
[   52.535500][ T4571] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #11: comm syz.1.326: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   52.542878][ T4576] EXT4-fs: Ignoring removed nobh option
[   52.557828][ T4571] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.326: couldn't read orphan inode 11 (err -117)
[   52.575416][ T4571] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.613909][ T4576] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   52.644362][ T4576] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.331: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   52.687760][ T4583] infiniband syz2: set active
[   52.692012][ T4576] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.331: couldn't read orphan inode 11 (err -117)
[   52.692717][ T4583] infiniband syz2: added bond0
[   52.715279][ T4576] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.718176][ T4583] RDS/IB: syz2: added
[   52.735065][ T4583] smc: adding ib device syz2 with port count 1
[   52.742530][ T4583] smc:    ib device syz2 port 1 has pnetid 
[   52.809754][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.902967][ T4603] binfmt_misc: register: failed to install interpreter file ./file0
[   52.913442][ T4599] syz_tun: entered allmulticast mode
[   52.948768][ T4598] syz_tun: left allmulticast mode
[   52.952801][ T4603] loop0: detected capacity change from 0 to 128
[   53.052591][ T4607] loop3: detected capacity change from 0 to 8192
[   53.120703][ T4622] FAULT_INJECTION: forcing a failure.
[   53.120703][ T4622] name failslab, interval 1, probability 0, space 0, times 0
[   53.133887][ T4622] CPU: 1 UID: 0 PID: 4622 Comm: syz.2.348 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.133916][ T4622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   53.133929][ T4622] Call Trace:
[   53.133938][ T4622]  <TASK>
[   53.133947][ T4622]  __dump_stack+0x1d/0x30
[   53.134006][ T4622]  dump_stack_lvl+0xe8/0x140
[   53.134024][ T4622]  dump_stack+0x15/0x1b
[   53.134041][ T4622]  should_fail_ex+0x265/0x280
[   53.134096][ T4622]  should_failslab+0x8c/0xb0
[   53.134117][ T4622]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   53.134161][ T4622]  ? v9fs_session_init+0x78/0xde0
[   53.134181][ T4622]  kstrdup+0x3e/0xd0
[   53.134235][ T4622]  v9fs_session_init+0x78/0xde0
[   53.134255][ T4622]  ? __rcu_read_unlock+0x4f/0x70
[   53.134279][ T4622]  ? avc_has_perm_noaudit+0x1b1/0x200
[   53.134368][ T4622]  ? v9fs_mount+0x51/0x5c0
[   53.134509][ T4622]  ? __kmalloc_cache_noprof+0x299/0x320
[   53.134535][ T4622]  v9fs_mount+0x67/0x5c0
[   53.134555][ T4622]  ? selinux_capable+0x31/0x40
[   53.134577][ T4622]  ? __pfx_v9fs_mount+0x10/0x10
[   53.134624][ T4622]  legacy_get_tree+0x75/0xd0
[   53.134645][ T4622]  vfs_get_tree+0x54/0x1d0
[   53.134665][ T4622]  do_new_mount+0x207/0x5e0
[   53.134685][ T4622]  ? security_capable+0x83/0x90
[   53.134783][ T4622]  path_mount+0x4a4/0xb20
[   53.134805][ T4622]  ? user_path_at+0x109/0x130
[   53.134839][ T4622]  __se_sys_mount+0x28f/0x2e0
[   53.134864][ T4622]  ? fput+0x8f/0xc0
[   53.134895][ T4622]  __x64_sys_mount+0x67/0x80
[   53.134991][ T4622]  x64_sys_call+0x2b4d/0x2ff0
[   53.135013][ T4622]  do_syscall_64+0xd2/0x200
[   53.135042][ T4622]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.135119][ T4622]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.135193][ T4622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.135217][ T4622] RIP: 0033:0x7fd259a5ebe9
[   53.135233][ T4622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.135257][ T4622] RSP: 002b:00007fd2584bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   53.135283][ T4622] RAX: ffffffffffffffda RBX: 00007fd259c85fa0 RCX: 00007fd259a5ebe9
[   53.135294][ T4622] RDX: 0000200000000040 RSI: 0000200000000100 RDI: 0000000000000000
[   53.135378][ T4622] RBP: 00007fd2584bf090 R08: 0000200000000880 R09: 0000000000000000
[   53.135391][ T4622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.135402][ T4622] R13: 00007fd259c86038 R14: 00007fd259c85fa0 R15: 00007fff20c33938
[   53.135420][ T4622]  </TASK>
[   53.137156][ T4618] netlink: 'syz.0.346': attribute type 1 has an invalid length.
[   53.214804][ T4625] FAULT_INJECTION: forcing a failure.
[   53.214804][ T4625] name failslab, interval 1, probability 0, space 0, times 0
[   53.215850][ T4618] netlink: 224 bytes leftover after parsing attributes in process `syz.0.346'.
[   53.221386][ T4625] CPU: 0 UID: 0 PID: 4625 Comm: syz.2.349 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   53.221462][ T4625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   53.221476][ T4625] Call Trace:
[   53.221485][ T4625]  <TASK>
[   53.221495][ T4625]  __dump_stack+0x1d/0x30
[   53.221520][ T4625]  dump_stack_lvl+0xe8/0x140
[   53.221540][ T4625]  dump_stack+0x15/0x1b
[   53.221555][ T4625]  should_fail_ex+0x265/0x280
[   53.221577][ T4625]  should_failslab+0x8c/0xb0
[   53.221634][ T4625]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   53.221679][ T4625]  ? tcf_pedit_init+0x5d5/0x9a0
[   53.221697][ T4625]  ? tcf_pedit_init+0x448/0x9a0
[   53.221716][ T4625]  kmemdup_noprof+0x2b/0x70
[   53.221741][ T4625]  tcf_pedit_init+0x5d5/0x9a0
[   53.221843][ T4625]  tcf_action_init_1+0x36a/0x4a0
[   53.221950][ T4625]  tcf_action_init+0x267/0x6d0
[   53.222020][ T4625]  tc_ctl_action+0x291/0x830
[   53.222062][ T4625]  ? __pfx_tc_ctl_action+0x10/0x10
[   53.222087][ T4625]  rtnetlink_rcv_msg+0x65a/0x6d0
[   53.222119][ T4625]  netlink_rcv_skb+0x120/0x220
[   53.222209][ T4625]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   53.222243][ T4625]  rtnetlink_rcv+0x1c/0x30
[   53.222316][ T4625]  netlink_unicast+0x5c0/0x690
[   53.222350][ T4625]  netlink_sendmsg+0x58b/0x6b0
[   53.222373][ T4625]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.222393][ T4625]  __sock_sendmsg+0x145/0x180
[   53.222424][ T4625]  ____sys_sendmsg+0x31e/0x4e0
[   53.222529][ T4625]  ___sys_sendmsg+0x17b/0x1d0
[   53.222561][ T4625]  __x64_sys_sendmsg+0xd4/0x160
[   53.222585][ T4625]  x64_sys_call+0x191e/0x2ff0
[   53.222607][ T4625]  do_syscall_64+0xd2/0x200
[   53.222663][ T4625]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.222687][ T4625]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   53.222711][ T4625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.222733][ T4625] RIP: 0033:0x7fd259a5ebe9
[   53.222749][ T4625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.222842][ T4625] RSP: 002b:00007fd2584bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   53.222861][ T4625] RAX: ffffffffffffffda RBX: 00007fd259c85fa0 RCX: 00007fd259a5ebe9
[   53.222874][ T4625] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000003
[   53.222945][ T4625] RBP: 00007fd2584bf090 R08: 0000000000000000 R09: 0000000000000000
[   53.222957][ T4625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.222969][ T4625] R13: 00007fd259c86038 R14: 00007fd259c85fa0 R15: 00007fff20c33938
[   53.222987][ T4625]  </TASK>
[   53.228499][ T4626] loop5: detected capacity change from 0 to 1024
[   53.322180][ T4625] syz.2.349 (4625) used greatest stack depth: 10008 bytes left
[   53.358096][ T4620] netlink: 'syz.5.347': attribute type 1 has an invalid length.
[   53.413721][ T4618] loop0: detected capacity change from 0 to 1024
[   53.422575][ T4620] netlink: 224 bytes leftover after parsing attributes in process `syz.5.347'.
[   53.723667][   T29] kauditd_printk_skb: 428 callbacks suppressed
[   53.723680][   T29] audit: type=1326 audit(1755875961.815:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.788272][   T29] audit: type=1326 audit(1755875961.815:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.811848][   T29] audit: type=1326 audit(1755875961.815:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.835976][   T29] audit: type=1326 audit(1755875961.815:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.860247][   T29] audit: type=1326 audit(1755875961.815:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.885263][   T29] audit: type=1326 audit(1755875961.815:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.910265][   T29] audit: type=1326 audit(1755875961.815:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.934398][   T29] audit: type=1326 audit(1755875961.815:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.958535][   T29] audit: type=1326 audit(1755875961.815:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   53.983055][   T29] audit: type=1326 audit(1755875961.815:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4629 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd259a5ebe9 code=0x7ffc0000
[   54.009044][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.037501][ T4634] syz_tun: entered allmulticast mode
[   54.072863][ T4633] syz_tun: left allmulticast mode
[   54.155310][ T4647] netlink: 4 bytes leftover after parsing attributes in process `syz.2.359'.
[   54.212047][ T4654] loop2: detected capacity change from 0 to 2048
[   54.231934][ T4651] loop0: detected capacity change from 0 to 512
[   54.238885][ T4651] EXT4-fs: Ignoring removed nobh option
[   54.270221][ T4654]  loop2: p1 < > p4
[   54.275262][ T4654] loop2: p4 size 8388608 extends beyond EOD, truncated
[   54.290011][ T4654] FAULT_INJECTION: forcing a failure.
[   54.290011][ T4654] name failslab, interval 1, probability 0, space 0, times 0
[   54.302777][ T4654] CPU: 0 UID: 0 PID: 4654 Comm: syz.2.360 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   54.302803][ T4654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   54.302877][ T4654] Call Trace:
[   54.302884][ T4654]  <TASK>
[   54.302891][ T4654]  __dump_stack+0x1d/0x30
[   54.302912][ T4654]  dump_stack_lvl+0xe8/0x140
[   54.302942][ T4654]  dump_stack+0x15/0x1b
[   54.302957][ T4654]  should_fail_ex+0x265/0x280
[   54.302977][ T4654]  should_failslab+0x8c/0xb0
[   54.303002][ T4654]  __kmalloc_noprof+0xa5/0x3e0
[   54.303088][ T4654]  ? copy_splice_read+0xc2/0x660
[   54.303122][ T4654]  copy_splice_read+0xc2/0x660
[   54.303227][ T4654]  ? __pfx_filemap_splice_read+0x10/0x10
[   54.303244][ T4654]  splice_direct_to_actor+0x290/0x680
[   54.303263][ T4654]  ? __pfx_direct_splice_actor+0x10/0x10
[   54.303285][ T4654]  do_splice_direct+0xda/0x150
[   54.303340][ T4654]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   54.303360][ T4654]  do_sendfile+0x380/0x650
[   54.303390][ T4654]  __x64_sys_sendfile64+0x105/0x150
[   54.303423][ T4654]  x64_sys_call+0x2bb0/0x2ff0
[   54.303444][ T4654]  do_syscall_64+0xd2/0x200
[   54.303468][ T4654]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.303505][ T4654]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   54.303527][ T4654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.303623][ T4654] RIP: 0033:0x7fd259a5ebe9
[   54.303638][ T4654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.303713][ T4654] RSP: 002b:00007fd2584bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   54.303731][ T4654] RAX: ffffffffffffffda RBX: 00007fd259c85fa0 RCX: 00007fd259a5ebe9
[   54.303741][ T4654] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[   54.303752][ T4654] RBP: 00007fd2584bf090 R08: 0000000000000000 R09: 0000000000000000
[   54.303762][ T4654] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[   54.303773][ T4654] R13: 00007fd259c86038 R14: 00007fd259c85fa0 R15: 00007fff20c33938
[   54.303788][ T4654]  </TASK>
[   54.534836][ T4660] loop3: detected capacity change from 0 to 8192
[   54.550661][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.357: corrupted inode contents
[   54.576694][ T4666] loop1: detected capacity change from 0 to 2048
[   54.585164][ T4651] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.357: mark_inode_dirty error
[   54.603682][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.357: corrupted inode contents
[   54.617997][ T4651] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.357: mark_inode_dirty error
[   54.639568][ T4651] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.357: Failed to acquire dquot type 0
[   54.671012][ T3533]  loop1: p1 < > p4
[   54.676211][ T3533] loop1: p4 size 8388608 extends beyond EOD, truncated
[   54.699393][ T4666]  loop1: p1 < > p4
[   54.704775][ T4666] loop1: p4 size 8388608 extends beyond EOD, truncated
[   54.706627][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.357: corrupted inode contents
[   54.769771][ T2992]  loop1: p1 < > p4
[   54.779465][ T4651] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.357: mark_inode_dirty error
[   54.780097][ T2992] loop1: p4 size 8388608 extends beyond EOD, truncated
[   54.800724][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.357: corrupted inode contents
[   54.834397][ T4651] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.357: mark_inode_dirty error
[   54.874344][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.357: corrupted inode contents
[   54.897542][ T4651] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   54.926294][ T4651] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.357: corrupted inode contents
[   54.927392][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   54.965427][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   55.013913][ T4651] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.357: mark_inode_dirty error
[   55.056166][ T4651] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   55.068550][ T4706] FAULT_INJECTION: forcing a failure.
[   55.068550][ T4706] name failslab, interval 1, probability 0, space 0, times 0
[   55.081307][ T4706] CPU: 1 UID: 0 PID: 4706 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   55.081332][ T4706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   55.081350][ T4706] Call Trace:
[   55.081359][ T4706]  <TASK>
[   55.081369][ T4706]  __dump_stack+0x1d/0x30
[   55.081390][ T4706]  dump_stack_lvl+0xe8/0x140
[   55.081405][ T4706]  dump_stack+0x15/0x1b
[   55.081419][ T4706]  should_fail_ex+0x265/0x280
[   55.081525][ T4706]  should_failslab+0x8c/0xb0
[   55.081546][ T4706]  kmem_cache_alloc_node_noprof+0x57/0x320
[   55.081588][ T4706]  ? dup_task_struct+0x70/0x6a0
[   55.081611][ T4706]  dup_task_struct+0x70/0x6a0
[   55.081630][ T4706]  ? _parse_integer+0x27/0x40
[   55.081648][ T4706]  copy_process+0x399/0x2000
[   55.081667][ T4706]  ? kstrtouint+0x76/0xc0
[   55.081768][ T4706]  ? kstrtouint_from_user+0x9f/0xf0
[   55.081789][ T4706]  ? __rcu_read_unlock+0x4f/0x70
[   55.081809][ T4706]  kernel_clone+0x16c/0x5c0
[   55.081852][ T4706]  ? vfs_write+0x7e8/0x960
[   55.081885][ T4706]  __x64_sys_clone+0xe6/0x120
[   55.081920][ T4706]  x64_sys_call+0x119c/0x2ff0
[   55.081943][ T4706]  do_syscall_64+0xd2/0x200
[   55.081971][ T4706]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   55.082010][ T4706]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   55.082032][ T4706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.082058][ T4706] RIP: 0033:0x7f3c8ec3ebe9
[   55.082076][ T4706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.082092][ T4706] RSP: 002b:00007f3c8d6a6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   55.082149][ T4706] RAX: ffffffffffffffda RBX: 00007f3c8ee65fa0 RCX: 00007f3c8ec3ebe9
[   55.082161][ T4706] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000000004021400
[   55.082172][ T4706] RBP: 00007f3c8d6a7090 R08: 0000000000000000 R09: 0000000000000000
[   55.082185][ T4706] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   55.082207][ T4706] R13: 00007f3c8ee66038 R14: 00007f3c8ee65fa0 R15: 00007fff4c3cbb28
[   55.082227][ T4706]  </TASK>
[   55.307299][ T4651] EXT4-fs (loop0): 1 truncate cleaned up
[   55.317647][ T4699] syz_tun: entered allmulticast mode
[   55.320784][ T4651] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.336958][ T4697] syz_tun: left allmulticast mode
[   55.343672][ T4695] openvswitch: netlink: Message has 6 unknown bytes.
[   55.357336][ T4710] loop5: detected capacity change from 0 to 512
[   55.366671][ T4651] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.386977][ T4710] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   55.411288][ T4710] EXT4-fs (loop5): 1 truncate cleaned up
[   55.411644][ T4710] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.412348][ T4710] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.532896][ T4724] netlink: 'syz.5.377': attribute type 1 has an invalid length.
[   55.532916][ T4724] netlink: 224 bytes leftover after parsing attributes in process `syz.5.377'.
[   55.542245][ T4724] loop5: detected capacity change from 0 to 1024
[   55.699678][ T4651] syz.0.357 (4651) used greatest stack depth: 9760 bytes left
[   55.721045][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.737282][ T4728] loop3: detected capacity change from 0 to 1024
[   55.742004][ T4742] loop5: detected capacity change from 0 to 8192
[   55.802633][ T4728] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   55.817680][ T4742]  loop5: p1 p3 p4
[   55.819321][ T4728] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   55.822191][ T4742] loop5: p1 start 51379968 is beyond EOD, truncated
[   55.839705][ T4742] loop5: p3 size 15991040 extends beyond EOD, truncated
[   55.876322][ T4756] syz_tun: entered allmulticast mode
[   55.887890][ T4755] syz_tun: left allmulticast mode
[   55.893917][ T4742] loop5: p4 start 16711680 is beyond EOD, truncated
[   55.908386][ T4728] JBD2: no valid journal superblock found
[   55.915329][ T4728] EXT4-fs (loop3): Could not load journal inode
[   55.936152][ T4760] SELinux:  Context � is not valid (left unmapped).
[   55.954673][ T2992]  loop5: p1 p3 p4
[   55.958649][ T2992] loop5: p1 start 51379968 is beyond EOD, truncated
[   55.959803][ T4764] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.965569][ T2992] loop5: p3 size 15991040 extends beyond EOD, truncated
[   56.003962][ T2992] loop5: p4 start 16711680 is beyond EOD, truncated
[   56.081449][ T4764] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.164691][ T4764] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.199501][ T4778] Falling back ldisc for ttyS3.
[   56.270929][ T4764] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.304482][ T4796] netlink: 'syz.1.389': attribute type 1 has an invalid length.
[   56.313167][ T4796] netlink: 224 bytes leftover after parsing attributes in process `syz.1.389'.
[   56.346656][ T4796] loop1: detected capacity change from 0 to 1024
[   56.357181][ T4800] netlink: 68 bytes leftover after parsing attributes in process `syz.2.390'.
[   56.419419][ T4805] loop0: detected capacity change from 0 to 512
[   56.439488][   T12] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.457946][   T12] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.471095][ T4805] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.494619][   T12] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.509410][ T4805] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.509662][   T12] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.544834][ T4813] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.547431][ T4815] loop1: detected capacity change from 0 to 512
[   56.564262][ T4815] /dev/loop1: Can't open blockdev
[   56.586815][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.625285][ T4820] syz_tun: entered allmulticast mode
[   56.666983][ T4813] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.681271][ T4819] syz_tun: left allmulticast mode
[   56.718164][ T4835] 9pnet_fd: Insufficient options for proto=fd
[   56.731426][ T4813] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.775640][ T2992] udevd[2992]: worker [3288] terminated by signal 33 (Unknown signal 33)
[   56.787898][ T4813] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.850099][ T4852] loop5: detected capacity change from 0 to 512
[   56.867479][  T138] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.880577][ T4852] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.889468][   T31] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.894890][ T4852] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.904744][   T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.945201][   T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.989020][ T4860] sit0: Caught tx_queue_len zero misconfig
[   57.000970][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.045601][ T4870] netlink: 132 bytes leftover after parsing attributes in process `syz.2.412'.
[   57.103251][ T4881] pim6reg: entered allmulticast mode
[   57.111479][ T4881] pim6reg: left allmulticast mode
[   57.277979][ T4889] loop5: detected capacity change from 0 to 512
[   57.323936][ T4877] loop3: detected capacity change from 0 to 1024
[   57.350899][ T4877] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   57.363737][ T4877] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   57.415638][ T4889] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.426869][ T4877] JBD2: no valid journal superblock found
[   57.436053][ T4877] EXT4-fs (loop3): Could not load journal inode
[   57.438776][ T4889] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.503757][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.555099][ T4908] macvtap0: refused to change device tx_queue_len
[   57.558392][ T4895] netlink: 'syz.0.422': attribute type 13 has an invalid length.
[   57.570556][ T4895] netlink: 'syz.0.422': attribute type 17 has an invalid length.
[   57.665088][ T4920] loop1: detected capacity change from 0 to 512
[   57.682582][ T4920] ext4: Unknown parameter 'fsuuid'
[   57.739549][ T4895] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   57.788269][ T4922] netlink: 'syz.3.431': attribute type 1 has an invalid length.
[   57.796567][ T4922] netlink: 224 bytes leftover after parsing attributes in process `syz.3.431'.
[   57.825710][ T4922] loop3: detected capacity change from 0 to 1024
[   57.898150][ T4932] loop5: detected capacity change from 0 to 1024
[   57.914174][ T4932] EXT4-fs: Ignoring removed orlov option
[   57.920402][ T4932] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.946236][ T4941] FAULT_INJECTION: forcing a failure.
[   57.946236][ T4941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.959559][ T4941] CPU: 0 UID: 0 PID: 4941 Comm: syz.2.440 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.959584][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   57.959652][ T4941] Call Trace:
[   57.959659][ T4941]  <TASK>
[   57.959668][ T4941]  __dump_stack+0x1d/0x30
[   57.959748][ T4941]  dump_stack_lvl+0xe8/0x140
[   57.959763][ T4941]  dump_stack+0x15/0x1b
[   57.959776][ T4941]  should_fail_ex+0x265/0x280
[   57.959798][ T4941]  should_fail+0xb/0x20
[   57.959815][ T4941]  should_fail_usercopy+0x1a/0x20
[   57.959905][ T4941]  _copy_to_user+0x20/0xa0
[   57.959935][ T4941]  simple_read_from_buffer+0xb5/0x130
[   57.959958][ T4941]  proc_fail_nth_read+0x10e/0x150
[   57.959986][ T4941]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.960028][ T4941]  vfs_read+0x1a8/0x770
[   57.960046][ T4941]  ? __rcu_read_unlock+0x4f/0x70
[   57.960064][ T4941]  ? __fget_files+0x184/0x1c0
[   57.960269][ T4941]  ksys_read+0xda/0x1a0
[   57.960374][ T4941]  __x64_sys_read+0x40/0x50
[   57.960391][ T4941]  x64_sys_call+0x27bc/0x2ff0
[   57.960409][ T4941]  do_syscall_64+0xd2/0x200
[   57.960506][ T4941]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   57.960532][ T4941]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   57.960556][ T4941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.960576][ T4941] RIP: 0033:0x7fd259a5d5fc
[   57.960589][ T4941] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.960723][ T4941] RSP: 002b:00007fd2584bf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.960740][ T4941] RAX: ffffffffffffffda RBX: 00007fd259c85fa0 RCX: 00007fd259a5d5fc
[   57.960751][ T4941] RDX: 000000000000000f RSI: 00007fd2584bf0a0 RDI: 0000000000000004
[   57.960761][ T4941] RBP: 00007fd2584bf090 R08: 0000000000000000 R09: 0000000000000000
[   57.960837][ T4941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.960849][ T4941] R13: 00007fd259c86038 R14: 00007fd259c85fa0 R15: 00007fff20c33938
[   57.960898][ T4941]  </TASK>
[   57.962469][ T4932] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.042781][ T4934] loop3: detected capacity change from 0 to 1024
[   58.068654][ T4932] netlink: 100 bytes leftover after parsing attributes in process `syz.5.435'.
[   58.090465][ T4934] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   58.214445][ T4934] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   58.231275][ T4934] JBD2: no valid journal superblock found
[   58.237994][ T4934] EXT4-fs (loop3): Could not load journal inode
[   58.315691][ T4955] wg2: left promiscuous mode
[   58.320511][ T4955] wg2: left allmulticast mode
[   58.329729][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.366008][ T4955] wg2: entered promiscuous mode
[   58.371155][ T4955] wg2: entered allmulticast mode
[   58.407351][ T4964] syz_tun: entered allmulticast mode
[   58.417716][ T4960] syz_tun: left allmulticast mode
[   58.543447][ T4975] loop2: detected capacity change from 0 to 8192
[   58.665325][ T4984] netlink: 'syz.3.454': attribute type 4 has an invalid length.
[   58.673631][ T4984] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.454'.
[   58.915880][   T29] kauditd_printk_skb: 407 callbacks suppressed
[   58.915898][   T29] audit: type=1400 audit(1755875967.005:2352): avc:  denied  { connect } for  pid=4989 comm="syz.3.456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   58.935847][ T4993] FAULT_INJECTION: forcing a failure.
[   58.935847][ T4993] name failslab, interval 1, probability 0, space 0, times 0
[   58.955789][ T4993] CPU: 0 UID: 0 PID: 4993 Comm: syz.5.455 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.955896][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   58.955907][ T4993] Call Trace:
[   58.955914][ T4993]  <TASK>
[   58.955922][ T4993]  __dump_stack+0x1d/0x30
[   58.955991][ T4993]  dump_stack_lvl+0xe8/0x140
[   58.956010][ T4993]  dump_stack+0x15/0x1b
[   58.956025][ T4993]  should_fail_ex+0x265/0x280
[   58.956044][ T4993]  ? audit_log_d_path+0x8d/0x150
[   58.956071][ T4993]  should_failslab+0x8c/0xb0
[   58.956314][ T4993]  __kmalloc_cache_noprof+0x4c/0x320
[   58.956366][ T4993]  audit_log_d_path+0x8d/0x150
[   58.956394][ T4993]  audit_log_d_path_exe+0x42/0x70
[   58.956488][ T4993]  audit_log_task+0x1e9/0x250
[   58.956519][ T4993]  audit_seccomp+0x61/0x100
[   58.956543][ T4993]  ? __seccomp_filter+0x68c/0x10d0
[   58.956643][ T4993]  __seccomp_filter+0x69d/0x10d0
[   58.956662][ T4993]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   58.956750][ T4993]  ? vfs_write+0x7e8/0x960
[   58.956796][ T4993]  ? __rcu_read_unlock+0x4f/0x70
[   58.956856][ T4993]  ? __fget_files+0x184/0x1c0
[   58.956952][ T4993]  __secure_computing+0x82/0x150
[   58.957009][ T4993]  syscall_trace_enter+0xcf/0x1e0
[   58.957036][ T4993]  do_syscall_64+0xac/0x200
[   58.957064][ T4993]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.957084][ T4993]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   58.957138][ T4993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.957161][ T4993] RIP: 0033:0x7f3c8ec3d5fc
[   58.957184][ T4993] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   58.957201][ T4993] RSP: 002b:00007f3c8d6a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   58.957219][ T4993] RAX: ffffffffffffffda RBX: 00007f3c8ee65fa0 RCX: 00007f3c8ec3d5fc
[   58.957278][ T4993] RDX: 000000000000000f RSI: 00007f3c8d6a70a0 RDI: 0000000000000003
[   58.957289][ T4993] RBP: 00007f3c8d6a7090 R08: 0000000000000000 R09: 0000000000000000
[   58.957299][ T4993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   58.957310][ T4993] R13: 00007f3c8ee66038 R14: 00007f3c8ee65fa0 R15: 00007fff4c3cbb28
[   58.957326][ T4993]  </TASK>
[   58.966780][   T29] audit: type=1326 audit(1755875967.025:2353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   59.203445][   T29] audit: type=1326 audit(1755875967.025:2354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   59.228111][   T29] audit: type=1326 audit(1755875967.025:2355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c8ec3d550 code=0x7ffc0000
[   59.252882][   T29] audit: type=1326 audit(1755875967.025:2356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3c8ec3d69f code=0x7ffc0000
[   59.277591][   T29] audit: type=1326 audit(1755875967.025:2357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   59.301614][   T29] audit: type=1326 audit(1755875967.025:2358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="<no_memory>" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f3c8ec3d5fc code=0x7ffc0000
[   59.333634][   T29] audit: type=1326 audit(1755875967.165:2359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3c8ec3d69f code=0x7ffc0000
[   59.359253][   T29] audit: type=1326 audit(1755875967.165:2360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f3c8ec3d84a code=0x7ffc0000
[   59.383070][   T29] audit: type=1326 audit(1755875967.165:2361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4992 comm="syz.5.455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   59.433898][ T5005] FAULT_INJECTION: forcing a failure.
[   59.433898][ T5005] name failslab, interval 1, probability 0, space 0, times 0
[   59.446710][ T5005] CPU: 1 UID: 0 PID: 5005 Comm: syz.5.459 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.446735][ T5005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   59.446745][ T5005] Call Trace:
[   59.446752][ T5005]  <TASK>
[   59.446759][ T5005]  __dump_stack+0x1d/0x30
[   59.446806][ T5005]  dump_stack_lvl+0xe8/0x140
[   59.446821][ T5005]  dump_stack+0x15/0x1b
[   59.446833][ T5005]  should_fail_ex+0x265/0x280
[   59.446907][ T5005]  should_failslab+0x8c/0xb0
[   59.446928][ T5005]  kmem_cache_alloc_node_noprof+0x57/0x320
[   59.446957][ T5005]  ? set_task_ioprio+0x174/0x270
[   59.446977][ T5005]  set_task_ioprio+0x174/0x270
[   59.447112][ T5005]  __se_sys_ioprio_set+0x465/0x5a0
[   59.447153][ T5005]  ? ksys_write+0x192/0x1a0
[   59.447171][ T5005]  __x64_sys_ioprio_set+0x43/0x50
[   59.447192][ T5005]  x64_sys_call+0x2faf/0x2ff0
[   59.447209][ T5005]  do_syscall_64+0xd2/0x200
[   59.447230][ T5005]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.447276][ T5005]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   59.447295][ T5005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.447312][ T5005] RIP: 0033:0x7f3c8ec3ebe9
[   59.447325][ T5005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.447339][ T5005] RSP: 002b:00007f3c8d6a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[   59.447429][ T5005] RAX: ffffffffffffffda RBX: 00007f3c8ee65fa0 RCX: 00007f3c8ec3ebe9
[   59.447439][ T5005] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[   59.447449][ T5005] RBP: 00007f3c8d6a7090 R08: 0000000000000000 R09: 0000000000000000
[   59.447515][ T5005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.447525][ T5005] R13: 00007f3c8ee66038 R14: 00007f3c8ee65fa0 R15: 00007fff4c3cbb28
[   59.447539][ T5005]  </TASK>
[   59.656823][ T5010] syz_tun: entered allmulticast mode
[   59.686788][ T5013] loop0: detected capacity change from 0 to 512
[   59.706679][ T5016] loop5: detected capacity change from 0 to 512
[   59.713236][ T5009] syz_tun: left allmulticast mode
[   59.714426][ T5016] EXT4-fs: Ignoring removed mblk_io_submit option
[   59.745378][ T5013] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.761908][ T5023] wg2: left promiscuous mode
[   59.766602][ T5023] wg2: left allmulticast mode
[   59.775171][ T5016] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   59.785105][ T5023] wg2: entered promiscuous mode
[   59.790179][ T5023] wg2: entered allmulticast mode
[   59.854625][ T5016] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   59.863586][ T5031] siw: device registration error -23
[   59.870451][ T5016] EXT4-fs (loop5): orphan cleanup on readonly fs
[   59.890577][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.892310][ T5016] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.464: Invalid block bitmap block 0 in block_group 0
[   59.926126][ T5016] EXT4-fs (loop5): Remounting filesystem read-only
[   59.932271][ T5039] siw: device registration error -23
[   59.933320][ T5016] EXT4-fs (loop5): 1 orphan inode deleted
[   59.944849][ T5016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.970093][ T5016] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=52 sclass=netlink_tcpdiag_socket pid=5016 comm=syz.5.464
[   59.987508][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   59.996877][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   60.006509][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   60.026512][ T5016] syz.5.464 (5016) used greatest stack depth: 9592 bytes left
[   60.038343][ T3974] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.065745][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   60.075271][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   60.084756][ T5041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.475'.
[   60.085976][ T5050] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.107581][ T5048] wg2: left promiscuous mode
[   60.112598][ T5048] wg2: left allmulticast mode
[   60.123942][ T5048] wg2: entered promiscuous mode
[   60.128906][ T5048] wg2: entered allmulticast mode
[   60.151969][ T5050] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.173252][ T5054] syz_tun: entered allmulticast mode
[   60.182055][ T5053] syz_tun: left allmulticast mode
[   60.202288][ T5050] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.214205][ T5058] loop3: detected capacity change from 0 to 1024
[   60.221807][ T5058] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   60.232921][ T5058] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   60.244666][ T5058] JBD2: no valid journal superblock found
[   60.251188][ T5058] EXT4-fs (loop3): Could not load journal inode
[   60.293051][ T5050] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.340002][ T5067] siw: device registration error -23
[   60.396485][ T5073] loop3: detected capacity change from 0 to 256
[   60.431279][ T5075] FAULT_INJECTION: forcing a failure.
[   60.431279][ T5075] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.444543][ T5075] CPU: 0 UID: 0 PID: 5075 Comm: syz.3.489 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.444579][ T5075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   60.444590][ T5075] Call Trace:
[   60.444597][ T5075]  <TASK>
[   60.444607][ T5075]  __dump_stack+0x1d/0x30
[   60.444632][ T5075]  dump_stack_lvl+0xe8/0x140
[   60.444652][ T5075]  dump_stack+0x15/0x1b
[   60.444670][ T5075]  should_fail_ex+0x265/0x280
[   60.444753][ T5075]  should_fail+0xb/0x20
[   60.444769][ T5075]  should_fail_usercopy+0x1a/0x20
[   60.444997][ T5075]  strncpy_from_user+0x25/0x230
[   60.445037][ T5075]  ? kmem_cache_alloc_noprof+0x186/0x310
[   60.445067][ T5075]  ? getname_flags+0x80/0x3b0
[   60.445095][ T5075]  getname_flags+0xae/0x3b0
[   60.445128][ T5075]  io_openat_prep+0x129/0x2b0
[   60.445160][ T5075]  io_submit_sqes+0x5db/0x1050
[   60.445261][ T5075]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   60.445323][ T5075]  ? 0xffffffff81000000
[   60.445389][ T5075]  ? __rcu_read_unlock+0x4f/0x70
[   60.445408][ T5075]  ? get_pid_task+0x96/0xd0
[   60.445426][ T5075]  ? proc_fail_nth_write+0x13b/0x160
[   60.445452][ T5075]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.445477][ T5075]  ? vfs_write+0x7e8/0x960
[   60.445500][ T5075]  ? __rcu_read_unlock+0x4f/0x70
[   60.445522][ T5075]  ? __fget_files+0x184/0x1c0
[   60.445603][ T5075]  ? fput+0x8f/0xc0
[   60.445632][ T5075]  __x64_sys_io_uring_enter+0x78/0x90
[   60.445653][ T5075]  x64_sys_call+0x2de1/0x2ff0
[   60.445677][ T5075]  do_syscall_64+0xd2/0x200
[   60.445737][ T5075]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   60.445760][ T5075]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   60.445782][ T5075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.445801][ T5075] RIP: 0033:0x7fcfa28cebe9
[   60.445895][ T5075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.445912][ T5075] RSP: 002b:00007fcfa1337038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   60.445935][ T5075] RAX: ffffffffffffffda RBX: 00007fcfa2af5fa0 RCX: 00007fcfa28cebe9
[   60.445947][ T5075] RDX: 0000000000000000 RSI: 0000000000003cfa RDI: 0000000000000004
[   60.445959][ T5075] RBP: 00007fcfa1337090 R08: 0000000000000000 R09: 0000000000000000
[   60.445973][ T5075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.446055][ T5075] R13: 00007fcfa2af6038 R14: 00007fcfa2af5fa0 R15: 00007ffdc9a4b048
[   60.446120][ T5075]  </TASK>
[   60.710555][ T5079] wg2: left promiscuous mode
[   60.715487][ T5079] wg2: left allmulticast mode
[   60.727358][ T5079] wg2: entered promiscuous mode
[   60.732389][ T5079] wg2: entered allmulticast mode
[   60.832710][ T5084] loop0: detected capacity change from 0 to 1024
[   60.883420][ T5084] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   60.895051][ T5084] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   60.907299][ T5084] JBD2: no valid journal superblock found
[   60.913229][ T5084] EXT4-fs (loop0): Could not load journal inode
[   60.973953][ T5097] siw: device registration error -23
[   60.981821][ T5099] siw: device registration error -23
[   61.023129][ T5103] wg2: left promiscuous mode
[   61.029934][ T5103] wg2: left allmulticast mode
[   61.047278][ T5103] wg2: entered promiscuous mode
[   61.052471][ T5103] wg2: entered allmulticast mode
[   61.079115][ T3403] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   61.088254][ T3403] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   61.228020][ T5118] loop1: detected capacity change from 0 to 128
[   61.238844][ T5110] loop3: detected capacity change from 0 to 1024
[   61.253436][ T5110] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   61.265587][ T5110] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   61.268059][  T138] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.285567][ T5110] JBD2: no valid journal superblock found
[   61.292065][ T5110] EXT4-fs (loop3): Could not load journal inode
[   61.299899][ T1936] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.319621][ T1936] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.340327][ T1936] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.387813][ T5121] netlink: 'syz.3.510': attribute type 1 has an invalid length.
[   61.408887][ T5121] loop3: detected capacity change from 0 to 1024
[   61.490929][ T5130] FAULT_INJECTION: forcing a failure.
[   61.490929][ T5130] name failslab, interval 1, probability 0, space 0, times 0
[   61.491712][ T5129] FAULT_INJECTION: forcing a failure.
[   61.491712][ T5129] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.503780][ T5130] CPU: 0 UID: 0 PID: 5130 Comm: syz.3.512 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   61.503810][ T5130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   61.503821][ T5130] Call Trace:
[   61.503826][ T5130]  <TASK>
[   61.503833][ T5130]  __dump_stack+0x1d/0x30
[   61.503897][ T5130]  dump_stack_lvl+0xe8/0x140
[   61.503998][ T5130]  dump_stack+0x15/0x1b
[   61.504035][ T5130]  should_fail_ex+0x265/0x280
[   61.504115][ T5130]  should_failslab+0x8c/0xb0
[   61.504140][ T5130]  __kmalloc_noprof+0xa5/0x3e0
[   61.504200][ T5130]  ? sock_kmalloc+0x85/0xc0
[   61.504222][ T5130]  ? iovec_from_user+0x5e/0x210
[   61.504250][ T5130]  sock_kmalloc+0x85/0xc0
[   61.504270][ T5130]  ____sys_sendmsg+0xf8/0x4e0
[   61.504349][ T5130]  ___sys_sendmsg+0x17b/0x1d0
[   61.504383][ T5130]  __sys_sendmmsg+0x178/0x300
[   61.504490][ T5130]  __x64_sys_sendmmsg+0x57/0x70
[   61.504512][ T5130]  x64_sys_call+0x1c4a/0x2ff0
[   61.504600][ T5130]  do_syscall_64+0xd2/0x200
[   61.504624][ T5130]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   61.504754][ T5130]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   61.504778][ T5130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.504827][ T5130] RIP: 0033:0x7fcfa28cebe9
[   61.504841][ T5130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.504857][ T5130] RSP: 002b:00007fcfa1337038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   61.504876][ T5130] RAX: ffffffffffffffda RBX: 00007fcfa2af5fa0 RCX: 00007fcfa28cebe9
[   61.504888][ T5130] RDX: 0000000000000001 RSI: 0000200000000780 RDI: 0000000000000003
[   61.504928][ T5130] RBP: 00007fcfa1337090 R08: 0000000000000000 R09: 0000000000000000
[   61.504939][ T5130] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[   61.504951][ T5130] R13: 00007fcfa2af6038 R14: 00007fcfa2af5fa0 R15: 00007ffdc9a4b048
[   61.504970][ T5130]  </TASK>
[   61.713341][ T5129] CPU: 1 UID: 0 PID: 5129 Comm: syz.5.511 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   61.713386][ T5129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   61.713397][ T5129] Call Trace:
[   61.713427][ T5129]  <TASK>
[   61.713434][ T5129]  __dump_stack+0x1d/0x30
[   61.713454][ T5129]  dump_stack_lvl+0xe8/0x140
[   61.713474][ T5129]  dump_stack+0x15/0x1b
[   61.713490][ T5129]  should_fail_ex+0x265/0x280
[   61.713512][ T5129]  should_fail+0xb/0x20
[   61.713546][ T5129]  should_fail_usercopy+0x1a/0x20
[   61.713569][ T5129]  _copy_from_user+0x1c/0xb0
[   61.713598][ T5129]  ___sys_sendmsg+0xc1/0x1d0
[   61.713629][ T5129]  __sys_sendmmsg+0x178/0x300
[   61.713684][ T5129]  __x64_sys_sendmmsg+0x57/0x70
[   61.713704][ T5129]  x64_sys_call+0x1c4a/0x2ff0
[   61.713722][ T5129]  do_syscall_64+0xd2/0x200
[   61.713746][ T5129]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   61.713840][ T5129]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   61.713865][ T5129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.713886][ T5129] RIP: 0033:0x7f3c8ec3ebe9
[   61.713938][ T5129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.713952][ T5129] RSP: 002b:00007f3c8d6a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   61.713968][ T5129] RAX: ffffffffffffffda RBX: 00007f3c8ee65fa0 RCX: 00007f3c8ec3ebe9
[   61.713978][ T5129] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000006
[   61.713989][ T5129] RBP: 00007f3c8d6a7090 R08: 0000000000000000 R09: 0000000000000000
[   61.714002][ T5129] R10: 0000000000000378 R11: 0000000000000246 R12: 0000000000000001
[   61.714074][ T5129] R13: 00007f3c8ee66038 R14: 00007f3c8ee65fa0 R15: 00007fff4c3cbb28
[   61.714094][ T5129]  </TASK>
[   61.983072][ T5151] netlink: 'syz.5.520': attribute type 1 has an invalid length.
[   61.995129][ T5153] lo: Caught tx_queue_len zero misconfig
[   62.000947][ T5153] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   62.018608][ T5153] netlink: 'syz.2.521': attribute type 1 has an invalid length.
[   62.047034][ T5160] loop2: detected capacity change from 0 to 1024
[   62.054322][ T5160] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   62.065367][ T5160] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   62.075698][ T5155] __nla_validate_parse: 24 callbacks suppressed
[   62.075767][ T5155] netlink: 4 bytes leftover after parsing attributes in process `syz.0.522'.
[   62.091020][ T5155] netlink: 4 bytes leftover after parsing attributes in process `syz.0.522'.
[   62.103963][ T5155] netlink: 4 bytes leftover after parsing attributes in process `syz.0.522'.
[   62.113890][ T5160] JBD2: no valid journal superblock found
[   62.119677][ T5160] EXT4-fs (loop2): Could not load journal inode
[   62.151711][ T5166] loop0: detected capacity change from 0 to 512
[   62.158675][ T5166] EXT4-fs: Ignoring removed mblk_io_submit option
[   62.167559][ T5166] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   62.184582][ T5170] netlink: 'syz.2.527': attribute type 1 has an invalid length.
[   62.192612][ T5170] netlink: 224 bytes leftover after parsing attributes in process `syz.2.527'.
[   62.202909][ T5166] EXT4-fs (loop0): 1 truncate cleaned up
[   62.209768][ T5166] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.232130][ T5170] loop2: detected capacity change from 0 to 1024
[   62.265101][ T5175] siw: device registration error -23
[   62.278500][ T5177] loop3: detected capacity change from 0 to 128
[   62.385700][ T5180] syz_tun: entered allmulticast mode
[   62.605875][ T5186] netlink: 4 bytes leftover after parsing attributes in process `syz.2.532'.
[   62.790702][ T5195] netlink: 56 bytes leftover after parsing attributes in process `syz.1.534'.
[   62.863696][ T5200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.536'.
[   62.872755][ T5200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.536'.
[   62.901988][ T5204] loop2: detected capacity change from 0 to 1024
[   62.910394][ T5204] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   62.921500][ T5204] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   62.931515][ T5200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.536'.
[   62.942250][ T5204] JBD2: no valid journal superblock found
[   62.948151][ T5204] EXT4-fs (loop2): Could not load journal inode
[   62.999454][ T5200] netlink: 4 bytes leftover after parsing attributes in process `syz.5.536'.
[   63.042680][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.084605][ T5211] loop2: detected capacity change from 0 to 2364
[   63.168862][ T5222] FAULT_INJECTION: forcing a failure.
[   63.168862][ T5222] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   63.182656][ T5222] CPU: 0 UID: 0 PID: 5222 Comm: syz.0.544 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   63.182685][ T5222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   63.182744][ T5222] Call Trace:
[   63.182752][ T5222]  <TASK>
[   63.182761][ T5222]  __dump_stack+0x1d/0x30
[   63.182784][ T5222]  dump_stack_lvl+0xe8/0x140
[   63.182804][ T5222]  dump_stack+0x15/0x1b
[   63.182822][ T5222]  should_fail_ex+0x265/0x280
[   63.182844][ T5222]  should_fail_alloc_page+0xf2/0x100
[   63.182883][ T5222]  __alloc_frozen_pages_noprof+0xff/0x360
[   63.182913][ T5222]  alloc_pages_mpol+0xb3/0x250
[   63.182943][ T5222]  alloc_frozen_pages_noprof+0x90/0x110
[   63.183051][ T5222]  ___kmalloc_large_node+0x52/0x100
[   63.183080][ T5222]  __kmalloc_large_node_noprof+0x16/0xa0
[   63.183131][ T5222]  __kmalloc_noprof+0x2ab/0x3e0
[   63.183227][ T5222]  ? iovec_from_user+0x84/0x210
[   63.183254][ T5222]  iovec_from_user+0x84/0x210
[   63.183354][ T5222]  ? process_vm_rw+0x137/0x960
[   63.183376][ T5222]  process_vm_rw+0x15b/0x960
[   63.183485][ T5222]  ? _parse_integer+0x27/0x40
[   63.183505][ T5222]  ? kstrtoull+0x111/0x140
[   63.183530][ T5222]  ? __fget_files+0x184/0x1c0
[   63.183595][ T5222]  ? fput+0x8f/0xc0
[   63.183623][ T5222]  __x64_sys_process_vm_readv+0x78/0x90
[   63.183651][ T5222]  x64_sys_call+0x1874/0x2ff0
[   63.183673][ T5222]  do_syscall_64+0xd2/0x200
[   63.183745][ T5222]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.183771][ T5222]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   63.183794][ T5222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.183812][ T5222] RIP: 0033:0x7fa0e411ebe9
[   63.183868][ T5222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.183946][ T5222] RSP: 002b:00007fa0e2b87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[   63.183966][ T5222] RAX: ffffffffffffffda RBX: 00007fa0e4345fa0 RCX: 00007fa0e411ebe9
[   63.183980][ T5222] RDX: 0000000000000002 RSI: 0000200000008400 RDI: 00000000000000f6
[   63.183993][ T5222] RBP: 00007fa0e2b87090 R08: 0000000000000286 R09: 0000000000000000
[   63.184075][ T5222] R10: 0000200000008640 R11: 0000000000000246 R12: 0000000000000001
[   63.184088][ T5222] R13: 00007fa0e4346038 R14: 00007fa0e4345fa0 R15: 00007fffc0d28f68
[   63.184204][ T5222]  </TASK>
[   63.439543][ T5224] netlink: 'syz.2.545': attribute type 14 has an invalid length.
[   63.491336][ T5229] siw: device registration error -23
[   63.523373][ T5214] loop3: detected capacity change from 0 to 1024
[   63.523810][ T5233] siw: device registration error -23
[   63.540810][ T5232] syz_tun: entered allmulticast mode
[   63.550266][ T5214] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   63.563157][ T5214] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   63.576258][ T5231] syz_tun: left allmulticast mode
[   63.585738][ T5214] JBD2: no valid journal superblock found
[   63.592967][ T5214] EXT4-fs (loop3): Could not load journal inode
[   63.620058][ T5236] syz_tun: entered allmulticast mode
[   63.636071][ T5235] syz_tun: left allmulticast mode
[   63.707705][ T5252] netlink: 'syz.1.557': attribute type 1 has an invalid length.
[   63.710189][ T5250] siw: device registration error -23
[   63.720649][ T5252] loop1: detected capacity change from 0 to 1024
[   63.768226][ T5241] loop3: detected capacity change from 0 to 8192
[   64.127000][ T5267] loop0: detected capacity change from 0 to 1024
[   64.135046][ T5267] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   64.146302][ T5267] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   64.170180][ T5267] JBD2: no valid journal superblock found
[   64.176013][ T5267] EXT4-fs (loop0): Could not load journal inode
[   64.350077][ T5269] loop0: detected capacity change from 0 to 1024
[   64.350611][   T29] kauditd_printk_skb: 305 callbacks suppressed
[   64.350623][   T29] audit: type=1326 audit(1755875972.435:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.387124][   T29] audit: type=1326 audit(1755875972.445:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.412781][ T5271] syz_tun: entered allmulticast mode
[   64.419399][   T29] audit: type=1326 audit(1755875972.505:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.443519][   T29] audit: type=1326 audit(1755875972.505:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.467764][   T29] audit: type=1326 audit(1755875972.505:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.468774][ T5270] syz_tun: left allmulticast mode
[   64.491535][   T29] audit: type=1326 audit(1755875972.505:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.520924][   T29] audit: type=1326 audit(1755875972.505:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.544856][   T29] audit: type=1326 audit(1755875972.505:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.568497][   T29] audit: type=1326 audit(1755875972.505:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.592370][   T29] audit: type=1326 audit(1755875972.505:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5270 comm="syz.5.563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f3c8ec3ebe9 code=0x7ffc0000
[   64.636854][ T5269] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   64.648197][ T5269] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   64.678166][ T5273] siw: device registration error -23
[   64.695324][ T5269] JBD2: no valid journal superblock found
[   64.703433][ T5269] EXT4-fs (loop0): Could not load journal inode
[   64.756794][ T5281] loop3: detected capacity change from 0 to 2048
[   64.763632][ T5281] EXT4-fs: Ignoring removed bh option
[   64.800240][ T5287] wg2: left promiscuous mode
[   64.804974][ T5287] wg2: left allmulticast mode
[   64.816026][ T5287] wg2: entered promiscuous mode
[   64.821218][ T5287] wg2: entered allmulticast mode
[   64.830709][ T5280] netlink: 'syz.0.568': attribute type 1 has an invalid length.
[   64.830791][ T5281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.835062][ T5280] loop0: detected capacity change from 0 to 1024
[   64.848455][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.860438][ T5291] siw: device registration error -23
[   64.920776][ T5293] IPVS: stopping master sync thread 5297 ...
[   64.937697][ T5295] FAULT_INJECTION: forcing a failure.
[   64.937697][ T5295] name failslab, interval 1, probability 0, space 0, times 0
[   64.950996][ T5295] CPU: 0 UID: 0 PID: 5295 Comm: syz.0.574 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.951025][ T5295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.951038][ T5295] Call Trace:
[   64.951046][ T5295]  <TASK>
[   64.951056][ T5295]  __dump_stack+0x1d/0x30
[   64.951137][ T5295]  dump_stack_lvl+0xe8/0x140
[   64.951221][ T5295]  dump_stack+0x15/0x1b
[   64.951238][ T5295]  should_fail_ex+0x265/0x280
[   64.951266][ T5295]  should_failslab+0x8c/0xb0
[   64.951334][ T5295]  __kmalloc_noprof+0xa5/0x3e0
[   64.951378][ T5295]  ? copy_splice_read+0xc2/0x660
[   64.951448][ T5295]  copy_splice_read+0xc2/0x660
[   64.951480][ T5295]  ? __pfx_shmem_file_splice_read+0x10/0x10
[   64.951503][ T5295]  splice_direct_to_actor+0x290/0x680
[   64.951521][ T5295]  ? __pfx_direct_splice_actor+0x10/0x10
[   64.951604][ T5295]  do_splice_direct+0xda/0x150
[   64.951620][ T5295]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   64.951723][ T5295]  do_sendfile+0x380/0x650
[   64.951753][ T5295]  __x64_sys_sendfile64+0x105/0x150
[   64.951778][ T5295]  x64_sys_call+0x2bb0/0x2ff0
[   64.951833][ T5295]  do_syscall_64+0xd2/0x200
[   64.951861][ T5295]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.951886][ T5295]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.952013][ T5295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.952039][ T5295] RIP: 0033:0x7fa0e411ebe9
[   64.952056][ T5295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.952073][ T5295] RSP: 002b:00007fa0e2b87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   64.952094][ T5295] RAX: ffffffffffffffda RBX: 00007fa0e4345fa0 RCX: 00007fa0e411ebe9
[   64.952148][ T5295] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[   64.952161][ T5295] RBP: 00007fa0e2b87090 R08: 0000000000000000 R09: 0000000000000000
[   64.952174][ T5295] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[   64.952250][ T5295] R13: 00007fa0e4346038 R14: 00007fa0e4345fa0 R15: 00007fffc0d28f68
[   64.952270][ T5295]  </TASK>
[   65.168341][ T5300] loop1: detected capacity change from 0 to 512
[   65.180991][ T5304] loop3: detected capacity change from 0 to 128
[   65.205068][ T5304] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   65.217810][ T5304] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.236825][ T5300] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.569: corrupted inode contents
[   65.250748][ T5304] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   65.264456][ T5302] netlink: 'syz.5.576': attribute type 1 has an invalid length.
[   65.278550][ T5302] loop5: detected capacity change from 0 to 1024
[   65.280314][ T5300] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #16: comm syz.1.569: mark_inode_dirty error
[   65.308885][ T5300] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.569: corrupted inode contents
[   65.342525][ T5304] SELinux: security policydb version 17 (MLS) not backwards compatible
[   65.351182][ T5304] SELinux: failed to load policy
[   65.361228][ T5300] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.569: mark_inode_dirty error
[   65.382239][ T5300] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.569: corrupted inode contents
[   65.408266][ T5315] loop0: detected capacity change from 0 to 512
[   65.410773][ T5317] siw: device registration error -23
[   65.423490][ T5300] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   65.432347][ T5300] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.569: corrupted inode contents
[   65.463864][ T5325] FAULT_INJECTION: forcing a failure.
[   65.463864][ T5325] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   65.477499][ T5325] CPU: 0 UID: 0 PID: 5325 Comm: syz.2.584 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.477528][ T5325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   65.477613][ T5325] Call Trace:
[   65.477618][ T5325]  <TASK>
[   65.477627][ T5325]  __dump_stack+0x1d/0x30
[   65.477652][ T5325]  dump_stack_lvl+0xe8/0x140
[   65.477673][ T5325]  dump_stack+0x15/0x1b
[   65.477691][ T5325]  should_fail_ex+0x265/0x280
[   65.477749][ T5325]  should_fail_alloc_page+0xf2/0x100
[   65.477778][ T5325]  __alloc_frozen_pages_noprof+0xff/0x360
[   65.477811][ T5325]  alloc_pages_mpol+0xb3/0x250
[   65.477842][ T5325]  vma_alloc_folio_noprof+0x1aa/0x300
[   65.477874][ T5325]  handle_mm_fault+0xec2/0x2c20
[   65.477973][ T5325]  do_user_addr_fault+0x636/0x1090
[   65.478088][ T5325]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   65.478116][ T5325]  exc_page_fault+0x62/0xa0
[   65.478168][ T5325]  asm_exc_page_fault+0x26/0x30
[   65.478217][ T5325] RIP: 0033:0x7fd259920ba3
[   65.478231][ T5325] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   65.478249][ T5325] RSP: 002b:00007fd2584be4a0 EFLAGS: 00010202
[   65.478267][ T5325] RAX: 000000000000c000 RBX: 00007fd2584be540 RCX: 00007fd25009f000
[   65.478281][ T5325] RDX: 00007fd2584be6e0 RSI: 0000000000000001 RDI: 00007fd2584be5e0
[   65.478294][ T5325] RBP: 0000000000000045 R08: 0000000000000006 R09: 000000000000000c
[   65.478384][ T5325] R10: 000000000000001a R11: 00007fd2584be540 R12: 0000000000000001
[   65.478400][ T5325] R13: 00007fd259afda20 R14: 0000000000000001 R15: 00007fd2584be5e0
[   65.478492][ T5325]  </TASK>
[   65.478517][ T5325] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   65.537878][ T5300] EXT4-fs error (device loop1): ext4_truncate:4666: inode #16: comm syz.1.569: mark_inode_dirty error
[   65.561184][ T5315] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.580: corrupted inode contents
[   65.562305][ T5300] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   65.567071][ T5315] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.580: mark_inode_dirty error
[   65.611165][ T5327] netlink: 'syz.2.585': attribute type 1 has an invalid length.
[   65.640896][ T5315] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.580: corrupted inode contents
[   65.666971][ T5329] siw: device registration error -23
[   65.723748][ T5300] EXT4-fs (loop1): 1 truncate cleaned up
[   65.729893][ T5300] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.742679][ T5315] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.580: mark_inode_dirty error
[   65.743161][ T5300] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.759646][   T48] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[   65.777999][ T5331] wg2: left promiscuous mode
[   65.782851][ T5331] wg2: left allmulticast mode
[   65.796374][ T5315] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.580: corrupted inode contents
[   65.813691][ T5331] wg2: entered promiscuous mode
[   65.818727][ T5331] wg2: entered allmulticast mode
[   65.834969][ T5315] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   65.849919][ T5335] bridge0: entered promiscuous mode
[   65.855560][ T5335] macsec1: entered promiscuous mode
[   65.865936][ T5315] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.580: corrupted inode contents
[   65.870019][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.881670][ T5315] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.580: mark_inode_dirty error
[   65.892852][ T5335] bridge0: port 3(macsec1) entered blocking state
[   65.906184][ T5335] bridge0: port 3(macsec1) entered disabled state
[   65.913749][ T5335] macsec1: entered allmulticast mode
[   65.919089][ T5335] bridge0: entered allmulticast mode
[   65.925974][ T5315] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   65.936042][ T5335] macsec1: left allmulticast mode
[   65.941260][ T5335] bridge0: left allmulticast mode
[   65.943444][ T5315] EXT4-fs (loop0): 1 truncate cleaned up
[   65.954828][ T5315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.968151][   T31] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[   65.969537][ T5315] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.991478][ T5335] bridge0: left promiscuous mode
[   66.014686][ T5341] syz_tun: entered allmulticast mode
[   66.183587][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.213687][ T5343] loop3: detected capacity change from 0 to 1024
[   66.411855][ T5343] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   66.424159][ T5343] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   66.444166][ T5350] FAULT_INJECTION: forcing a failure.
[   66.444166][ T5350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.457526][ T5350] CPU: 0 UID: 0 PID: 5350 Comm: syz.5.596 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.457601][ T5350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   66.457659][ T5350] Call Trace:
[   66.457668][ T5350]  <TASK>
[   66.457677][ T5350]  __dump_stack+0x1d/0x30
[   66.457722][ T5350]  dump_stack_lvl+0xe8/0x140
[   66.457781][ T5350]  dump_stack+0x15/0x1b
[   66.457795][ T5350]  should_fail_ex+0x265/0x280
[   66.457818][ T5350]  should_fail+0xb/0x20
[   66.457836][ T5350]  should_fail_usercopy+0x1a/0x20
[   66.457900][ T5350]  _copy_to_user+0x20/0xa0
[   66.457930][ T5350]  simple_read_from_buffer+0xb5/0x130
[   66.457960][ T5350]  proc_fail_nth_read+0x10e/0x150
[   66.457985][ T5350]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   66.458046][ T5350]  vfs_read+0x1a8/0x770
[   66.458065][ T5350]  ? __cond_resched+0x4e/0x90
[   66.458086][ T5350]  ksys_read+0xda/0x1a0
[   66.458108][ T5350]  __x64_sys_read+0x40/0x50
[   66.458125][ T5350]  x64_sys_call+0x27bc/0x2ff0
[   66.458143][ T5350]  do_syscall_64+0xd2/0x200
[   66.458263][ T5350]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.458293][ T5350]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   66.458316][ T5350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.458337][ T5350] RIP: 0033:0x7f3c8ec3d5fc
[   66.458416][ T5350] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   66.458430][ T5350] RSP: 002b:00007f3c8d6a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   66.458459][ T5350] RAX: ffffffffffffffda RBX: 00007f3c8ee65fa0 RCX: 00007f3c8ec3d5fc
[   66.458470][ T5350] RDX: 000000000000000f RSI: 00007f3c8d6a70a0 RDI: 0000000000000003
[   66.458483][ T5350] RBP: 00007f3c8d6a7090 R08: 0000000000000000 R09: 0000000000000000
[   66.458594][ T5350] R10: 000000000000005e R11: 0000000000000246 R12: 0000000000000001
[   66.458607][ T5350] R13: 00007f3c8ee66038 R14: 00007f3c8ee65fa0 R15: 00007fff4c3cbb28
[   66.458626][ T5350]  </TASK>
[   66.679387][ T5343] JBD2: no valid journal superblock found
[   66.685505][ T5343] EXT4-fs (loop3): Could not load journal inode
[   66.728767][ T5357] siw: device registration error -23
[   66.771518][ T5361] loop0: detected capacity change from 0 to 2048
[   66.781059][ T5361] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   66.781124][ T5361] EXT4-fs: failed to create workqueue
[   66.796202][ T5361] EXT4-fs (loop0): mount failed
[   66.826349][ T5369] wg2: left promiscuous mode
[   66.832814][ T5369] wg2: left allmulticast mode
[   66.858989][ T5369] wg2: entered promiscuous mode
[   66.864295][ T5369] wg2: entered allmulticast mode
[   66.884344][ T5375] syz_tun: entered allmulticast mode
[   66.976936][ T5378] FAULT_INJECTION: forcing a failure.
[   66.976936][ T5378] name failslab, interval 1, probability 0, space 0, times 0
[   66.990463][ T5378] CPU: 1 UID: 0 PID: 5378 Comm: syz.1.599 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.990554][ T5378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   66.990583][ T5378] Call Trace:
[   66.990592][ T5378]  <TASK>
[   66.990602][ T5378]  __dump_stack+0x1d/0x30
[   66.990628][ T5378]  dump_stack_lvl+0xe8/0x140
[   66.990648][ T5378]  dump_stack+0x15/0x1b
[   66.990662][ T5378]  should_fail_ex+0x265/0x280
[   66.990688][ T5378]  should_failslab+0x8c/0xb0
[   66.990712][ T5378]  kmem_cache_alloc_noprof+0x50/0x310
[   66.990799][ T5378]  ? dup_fd+0x3a/0x540
[   66.990821][ T5378]  dup_fd+0x3a/0x540
[   66.990840][ T5378]  ? _raw_spin_unlock+0x26/0x50
[   66.990913][ T5378]  ksys_unshare+0x346/0x6d0
[   66.990938][ T5378]  ? ksys_write+0x192/0x1a0
[   66.990962][ T5378]  __x64_sys_unshare+0x1f/0x30
[   66.991006][ T5378]  x64_sys_call+0x2911/0x2ff0
[   66.991098][ T5378]  do_syscall_64+0xd2/0x200
[   66.991124][ T5378]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.991146][ T5378]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   66.991179][ T5378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.991203][ T5378] RIP: 0033:0x7fc8e4abebe9
[   66.991222][ T5378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.991238][ T5378] RSP: 002b:00007fc8e34dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   66.991256][ T5378] RAX: ffffffffffffffda RBX: 00007fc8e4ce6180 RCX: 00007fc8e4abebe9
[   66.991267][ T5378] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000680
[   66.991333][ T5378] RBP: 00007fc8e34dd090 R08: 0000000000000000 R09: 0000000000000000
[   66.991344][ T5378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.991355][ T5378] R13: 00007fc8e4ce6218 R14: 00007fc8e4ce6180 R15: 00007ffed73891b8
[   66.991374][ T5378]  </TASK>
[   67.213101][ T5377] __nla_validate_parse: 10 callbacks suppressed
[   67.213119][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.228823][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.242695][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.270945][ T5384] netlink: 'syz.5.608': attribute type 1 has an invalid length.
[   67.278630][ T5384] netlink: 224 bytes leftover after parsing attributes in process `syz.5.608'.
[   67.288333][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.297262][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.306508][ T5384] loop5: detected capacity change from 0 to 1024
[   67.306773][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.344292][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.353394][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.395380][ T5377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   67.459880][ T5409] netlink: 'syz.5.613': attribute type 1 has an invalid length.
[   67.472782][ T5409] loop5: detected capacity change from 0 to 1024
[   67.546371][ T5415] loop3: detected capacity change from 0 to 1024
[   67.569809][ T5415] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   67.580906][ T5415] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   67.592338][ T3403] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   67.600469][ T3403] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   67.614852][ T3403] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x3
[   67.630295][ T5415] JBD2: no valid journal superblock found
[   67.636107][ T5415] EXT4-fs (loop3): Could not load journal inode
[   67.655025][ T5427] loop1: detected capacity change from 0 to 512
[   67.659615][ T3403] hid-generic 0000:3000000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   67.661789][ T5427] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.717557][ T5427] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   67.733700][ T5437] netlink: 'syz.0.622': attribute type 1 has an invalid length.
[   67.747197][ T5437] loop0: detected capacity change from 0 to 1024
[   67.757115][ T5427] EXT4-fs (loop1): 1 truncate cleaned up
[   67.840331][ T5447] netlink: 'syz.5.627': attribute type 1 has an invalid length.
[   67.884245][ T5447] loop5: detected capacity change from 0 to 1024
[   68.045270][ T5461] syz_tun: entered allmulticast mode
[   68.076092][ T5466] loop3: detected capacity change from 0 to 1024
[   68.084338][ T5466] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   68.095387][ T5466] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   68.107780][ T5460] syz_tun: left allmulticast mode
[   68.155005][ T5466] JBD2: no valid journal superblock found
[   68.161053][ T5466] EXT4-fs (loop3): Could not load journal inode
[   68.285067][ T5480] FAULT_INJECTION: forcing a failure.
[   68.285067][ T5480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.299705][ T5480] CPU: 0 UID: 0 PID: 5480 Comm: syz.3.641 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   68.299737][ T5480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.299748][ T5480] Call Trace:
[   68.299755][ T5480]  <TASK>
[   68.299762][ T5480]  __dump_stack+0x1d/0x30
[   68.299784][ T5480]  dump_stack_lvl+0xe8/0x140
[   68.299875][ T5480]  dump_stack+0x15/0x1b
[   68.299888][ T5480]  should_fail_ex+0x265/0x280
[   68.299950][ T5480]  should_fail+0xb/0x20
[   68.299965][ T5480]  should_fail_usercopy+0x1a/0x20
[   68.299984][ T5480]  strncpy_from_user+0x25/0x230
[   68.300013][ T5480]  ? __kmalloc_cache_noprof+0x189/0x320
[   68.300081][ T5480]  import_xattr_name+0x22/0x70
[   68.300106][ T5480]  io_getxattr_prep+0x14f/0x200
[   68.300134][ T5480]  io_submit_sqes+0x5db/0x1050
[   68.300161][ T5480]  __se_sys_io_uring_enter+0x1c1/0x1b70
[   68.300183][ T5480]  ? 0xffffffff81000000
[   68.300199][ T5480]  ? __rcu_read_unlock+0x4f/0x70
[   68.300222][ T5480]  ? get_pid_task+0x96/0xd0
[   68.300243][ T5480]  ? proc_fail_nth_write+0x13b/0x160
[   68.300270][ T5480]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   68.300346][ T5480]  ? vfs_write+0x7e8/0x960
[   68.300368][ T5480]  ? __rcu_read_unlock+0x4f/0x70
[   68.300390][ T5480]  ? __fget_files+0x184/0x1c0
[   68.300411][ T5480]  ? fput+0x8f/0xc0
[   68.300503][ T5480]  __x64_sys_io_uring_enter+0x78/0x90
[   68.300525][ T5480]  x64_sys_call+0x2de1/0x2ff0
[   68.300624][ T5480]  do_syscall_64+0xd2/0x200
[   68.300710][ T5480]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.300736][ T5480]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   68.300801][ T5480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.300823][ T5480] RIP: 0033:0x7fcfa28cebe9
[   68.300836][ T5480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.300851][ T5480] RSP: 002b:00007fcfa1337038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   68.300868][ T5480] RAX: ffffffffffffffda RBX: 00007fcfa2af5fa0 RCX: 00007fcfa28cebe9
[   68.300878][ T5480] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000005
[   68.300944][ T5480] RBP: 00007fcfa1337090 R08: 0000000000000000 R09: 0000000000000000
[   68.300955][ T5480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.300966][ T5480] R13: 00007fcfa2af6038 R14: 00007fcfa2af5fa0 R15: 00007ffdc9a4b048
[   68.301021][ T5480]  </TASK>
[   68.618842][ T5484] pimreg: entered allmulticast mode
[   68.642949][ T5484] pimreg: left allmulticast mode
[   68.716997][ T5488] wg2: left promiscuous mode
[   68.721837][ T5488] wg2: left allmulticast mode
[   68.734164][ T5484] loop3: detected capacity change from 0 to 1024
[   68.745870][ T5484] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   68.757824][ T5488] wg2: entered promiscuous mode
[   68.762933][ T5488] wg2: entered allmulticast mode
[   68.811004][ T5501] syz_tun: entered allmulticast mode
[   68.822367][ T5500] syz_tun: left allmulticast mode
[   68.853688][ T5498] FAULT_INJECTION: forcing a failure.
[   68.853688][ T5498] name failslab, interval 1, probability 0, space 0, times 0
[   68.866544][ T5498] CPU: 0 UID: 0 PID: 5498 Comm: syz.1.648 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   68.866574][ T5498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.866586][ T5498] Call Trace:
[   68.866594][ T5498]  <TASK>
[   68.866603][ T5498]  __dump_stack+0x1d/0x30
[   68.866626][ T5498]  dump_stack_lvl+0xe8/0x140
[   68.866643][ T5498]  dump_stack+0x15/0x1b
[   68.866657][ T5498]  should_fail_ex+0x265/0x280
[   68.866680][ T5498]  should_failslab+0x8c/0xb0
[   68.866702][ T5498]  kmem_cache_alloc_noprof+0x50/0x310
[   68.866727][ T5498]  ? mas_alloc_nodes+0x265/0x520
[   68.866755][ T5498]  mas_alloc_nodes+0x265/0x520
[   68.866778][ T5498]  mas_preallocate+0x33e/0x520
[   68.866805][ T5498]  mmap_region+0xbdd/0x1630
[   68.866843][ T5498]  do_mmap+0x9b3/0xbe0
[   68.866872][ T5498]  vm_mmap_pgoff+0x17a/0x2e0
[   68.866898][ T5498]  ksys_mmap_pgoff+0xc2/0x310
[   68.866924][ T5498]  ? __x64_sys_mmap+0x49/0x70
[   68.866943][ T5498]  x64_sys_call+0x14a3/0x2ff0
[   68.866960][ T5498]  do_syscall_64+0xd2/0x200
[   68.866982][ T5498]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   68.867002][ T5498]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   68.867026][ T5498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.867044][ T5498] RIP: 0033:0x7fc8e4abec23
[   68.867058][ T5498] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   68.867072][ T5498] RSP: 002b:00007fc8e351ee18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   68.867088][ T5498] RAX: ffffffffffffffda RBX: 000000000000063a RCX: 00007fc8e4abec23
[   68.867099][ T5498] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   68.867108][ T5498] RBP: 0000200000001bc2 R08: 00000000ffffffff R09: 0000000000000000
[   68.867118][ T5498] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000008
[   68.867127][ T5498] R13: 00007fc8e351eef0 R14: 00007fc8e351eeb0 R15: 0000200000000080
[   68.867141][ T5498]  </TASK>
[   69.084664][ T5510] FAULT_INJECTION: forcing a failure.
[   69.084664][ T5510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.098275][ T5510] CPU: 0 UID: 0 PID: 5510 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.098300][ T5510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.098312][ T5510] Call Trace:
[   69.098398][ T5510]  <TASK>
[   69.098414][ T5510]  __dump_stack+0x1d/0x30
[   69.098439][ T5510]  dump_stack_lvl+0xe8/0x140
[   69.098532][ T5510]  dump_stack+0x15/0x1b
[   69.098547][ T5510]  should_fail_ex+0x265/0x280
[   69.098566][ T5510]  should_fail+0xb/0x20
[   69.098578][ T5510]  should_fail_usercopy+0x1a/0x20
[   69.098726][ T5510]  _copy_to_user+0x20/0xa0
[   69.098749][ T5510]  simple_read_from_buffer+0xb5/0x130
[   69.098772][ T5510]  proc_fail_nth_read+0x10e/0x150
[   69.098847][ T5510]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.098920][ T5510]  vfs_read+0x1a8/0x770
[   69.098901][ T5508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.098937][ T5510]  ? __rcu_read_unlock+0x4f/0x70
[   69.098990][ T5510]  ? __fget_files+0x184/0x1c0
[   69.099012][ T5510]  ksys_read+0xda/0x1a0
[   69.099034][ T5510]  __x64_sys_read+0x40/0x50
[   69.099095][ T5510]  x64_sys_call+0x27bc/0x2ff0
[   69.099115][ T5510]  do_syscall_64+0xd2/0x200
[   69.099145][ T5510]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   69.099169][ T5510]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   69.099254][ T5510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.099276][ T5510] RIP: 0033:0x7fc8e4abd5fc
[   69.099291][ T5510] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   69.099307][ T5510] RSP: 002b:00007fc8e351f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   69.099384][ T5510] RAX: ffffffffffffffda RBX: 00007fc8e4ce5fa0 RCX: 00007fc8e4abd5fc
[   69.099396][ T5510] RDX: 000000000000000f RSI: 00007fc8e351f0a0 RDI: 0000000000000005
[   69.099406][ T5510] RBP: 00007fc8e351f090 R08: 0000000000000000 R09: 0000000000000000
[   69.099417][ T5510] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000001
[   69.099427][ T5510] R13: 00007fc8e4ce6038 R14: 00007fc8e4ce5fa0 R15: 00007ffed73891b8
[   69.099445][ T5510]  </TASK>
[   69.157426][ T5512] netlink: 'syz.3.653': attribute type 1 has an invalid length.
[   69.176217][ T5508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.190819][ T5512] loop3: detected capacity change from 0 to 1024
[   69.227304][ T5514] siw: device registration error -23
[   69.287396][ T5516] loop0: detected capacity change from 0 to 128
[   69.357317][ T5516] FAT-fs (loop0): error, invalid FAT chain (i_pos 548, last_block 8)
[   69.366662][ T5516] FAT-fs (loop0): Filesystem has been set read-only
[   69.374850][ T5516] FAT-fs (loop0): error, corrupted file size (i_pos 548, 514)
[   69.383267][ T5516] loop9: detected capacity change from 0 to 7
[   69.391300][ T5516] Buffer I/O error on dev loop9, logical block 0, async page read
[   69.399347][ T5516] Buffer I/O error on dev loop9, logical block 0, async page read
[   69.407314][ T5516]  loop9: unable to read partition table
[   69.413127][ T5516] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[   69.413127][ T5516] 
) failed (rc=-5)
[   69.430855][   T29] kauditd_printk_skb: 365 callbacks suppressed
[   69.430872][   T29] audit: type=1400 audit(1755875977.525:3033): avc:  denied  { firmware_load } for  pid=5507 comm="syz.2.651" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   69.499872][   T29] audit: type=1400 audit(1755875977.585:3034): avc:  denied  { unmount } for  pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   69.521272][ T5522] wg2: left promiscuous mode
[   69.525906][ T5522] wg2: left allmulticast mode
[   69.562273][ T5526] loop1: detected capacity change from 0 to 512
[   69.572763][ T5522] wg2: entered promiscuous mode
[   69.577655][ T5522] wg2: entered allmulticast mode
[   69.592379][ T5526] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #3: comm syz.1.659: pblk 24 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[   69.613872][ T5526] EXT4-fs error (device loop1): ext4_quota_enable:7131: comm syz.1.659: Bad quota inode: 3, type: 0
[   69.630632][ T5526] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   69.654907][ T5531] loop3: detected capacity change from 0 to 512
[   69.682889][ T5526] EXT4-fs (loop1): mount failed
[   69.690879][ T5531] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.707691][ T5532] loop5: detected capacity change from 0 to 1024
[   69.710580][ T5531] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   69.719997][ T5532] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   69.729999][ T5531] EXT4-fs (loop3): 1 truncate cleaned up
[   69.736085][ T5532] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   69.742753][ T5531] EXT4-fs mount: 4 callbacks suppressed
[   69.742768][ T5531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.760492][ T5532] JBD2: no valid journal superblock found
[   69.777009][ T5532] EXT4-fs (loop5): Could not load journal inode
[   70.058747][ T5536] ==================================================================
[   70.067195][ T5536] BUG: KCSAN: data-race in filemap_write_and_wait_range / xas_set_mark
[   70.075663][ T5536] 
[   70.078007][ T5536] write to 0xffff88811ac4e54c of 4 bytes by task 5531 on cpu 1:
[   70.085816][ T5536]  xas_set_mark+0x12b/0x140
[   70.090417][ T5536]  __folio_start_writeback+0x1dd/0x440
[   70.096057][ T5536]  ext4_bio_write_folio+0x5ad/0x9f0
[   70.101301][ T5536]  mpage_process_page_bufs+0x4a1/0x620
[   70.107318][ T5536]  mpage_prepare_extent_to_map+0x786/0xc00
[   70.113623][ T5536]  ext4_do_writepages+0x708/0x2750
[   70.119028][ T5536]  ext4_writepages+0x176/0x300
[   70.123820][ T5536]  do_writepages+0x1c3/0x310
[   70.128517][ T5536]  file_write_and_wait_range+0x156/0x2c0
[   70.134166][ T5536]  generic_buffers_fsync_noflush+0x45/0x120
[   70.140144][ T5536]  ext4_sync_file+0x1ab/0x690
[   70.144939][ T5536]  vfs_fsync_range+0x10d/0x130
[   70.149873][ T5536]  ext4_buffered_write_iter+0x34f/0x3c0
[   70.155418][ T5536]  ext4_file_write_iter+0xdbf/0xf00
[   70.160740][ T5536]  iter_file_splice_write+0x663/0xa60
[   70.166102][ T5536]  direct_splice_actor+0x153/0x2a0
[   70.171284][ T5536]  splice_direct_to_actor+0x30f/0x680
[   70.176662][ T5536]  do_splice_direct+0xda/0x150
[   70.181441][ T5536]  do_sendfile+0x380/0x650
[   70.185852][ T5536]  __x64_sys_sendfile64+0x105/0x150
[   70.191080][ T5536]  x64_sys_call+0x2bb0/0x2ff0
[   70.195753][ T5536]  do_syscall_64+0xd2/0x200
[   70.200333][ T5536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.206359][ T5536] 
[   70.208767][ T5536] read to 0xffff88811ac4e54c of 4 bytes by task 5536 on cpu 0:
[   70.216542][ T5536]  filemap_write_and_wait_range+0xfc/0x340
[   70.222901][ T5536]  filemap_invalidate_pages+0xa4/0x1a0
[   70.228484][ T5536]  kiocb_invalidate_pages+0x6e/0x80
[   70.233992][ T5536]  __iomap_dio_rw+0x5d4/0x1250
[   70.238967][ T5536]  iomap_dio_rw+0x40/0x90
[   70.243403][ T5536]  ext4_file_write_iter+0xad9/0xf00
[   70.248710][ T5536]  iter_file_splice_write+0x663/0xa60
[   70.254235][ T5536]  direct_splice_actor+0x153/0x2a0
[   70.259508][ T5536]  splice_direct_to_actor+0x30f/0x680
[   70.264963][ T5536]  do_splice_direct+0xda/0x150
[   70.269800][ T5536]  do_sendfile+0x380/0x650
[   70.274210][ T5536]  __x64_sys_sendfile64+0x105/0x150
[   70.279400][ T5536]  x64_sys_call+0x2bb0/0x2ff0
[   70.284247][ T5536]  do_syscall_64+0xd2/0x200
[   70.288774][ T5536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.295027][ T5536] 
[   70.297349][ T5536] value changed: 0x0a000021 -> 0x04000021
[   70.303226][ T5536] 
[   70.305531][ T5536] Reported by Kernel Concurrency Sanitizer on:
[   70.311665][ T5536] CPU: 0 UID: 0 PID: 5536 Comm: syz.3.661 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.321376][ T5536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.331509][ T5536] ==================================================================
[   70.383243][ T5552] vhci_hcd: invalid port number 96
[   70.388530][ T5552] vhci_hcd: default hub control req: 0318 vf7fa i0060 l0
[   70.472292][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.