last executing test programs:

3m11.866862931s ago: executing program 0 (id=351):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000011c0)={&(0x7f0000001180)='kfree\x00', r0, 0x0, 0x4}, 0x18) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket(0x1, 0x803, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000040), &(0x7f0000000180)='%pS    \x00'}, 0x20) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) (async)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x40b, 0x70bd2b, 0x500, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0xc}]}}}]}, 0x3c}}, 0x0) (async)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) (async)
r7 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200800, 0x81)
ioctl$EVIOCGBITSND(r7, 0x80404532, &(0x7f0000000080)=""/50) (async)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="5800000010000304000300"/20, @ANYRES32=0x0, @ANYBLOB="00000000010000002800128009000100766c616e00000000180002800c030000000000001f00000006000100fc0f000008000500f71c2012adeb06ae6b61554652bc8351e3c16be9f8aa1fdd8ec309de806693f5d58626e8e895e66ecd86f1a58c3d6f0514833362576d75445ff2591dd77e78fa0adffb1511779d6513f4411cee3425a6886386c4a76af21d8d59c8f75ba1a0d99ea75a67ce1c73fee9a32ad8221f0d20ff20deb47721d680d3c3518f5f7e7651070ec2ad7f877f7cc24c930f8365b1f69b54f6b2b70fca56e609a7dbb306467b8e6df389c0f599733f0dfe0107390de207e157c138", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x58}}, 0x8000)

3m11.788269631s ago: executing program 0 (id=352):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20071026}, &(0x7f0000000200)={0x200003, 0x200003, 0x801, 0x4, 0x7, 0x8})
cachestat(r3, &(0x7f0000000180)={0x8, 0x67}, &(0x7f00000001c0), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r5=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000b000000050010000200000000000000", @ANYRES32, @ANYBLOB="000000000000000000009dbd0000000000800000", @ANYRES32=r5, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)

3m11.786767301s ago: executing program 0 (id=353):
r0 = socket(0x2b, 0x80801, 0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x3, 0x14, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0xfffffffffffffec7, 0x8, &(0x7f00000002c0)='\x00\x00P\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x12e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9}, 0x50)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x18050, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x1216, 0x10000, 0x5, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="58000000020601020000000a00000000000000000900020073797a31000000000500010007000000050005000a00000014000780080013400000000708001240fffffffa0c000300686173683a697000050004"], 0x58}}, 0x0)
r6 = syz_open_dev$sg(0x0, 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r6, 0x2284, 0x0)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000020000000900010073797a32000000000900010073797a30000000000900010073797a32000000000900030073797a3200006d5f736c6176655f3100001a00106a37e94fff7c29c33036ec4cfcb5bbc0170ca10aac7db569e9b45424a8c0134d26c705c1b70bce7692a753615b6dfe3bda5403ab5f90d9a4fb9cd0b2783bfa4634003523f985278cc253fd4dfe539a9115dee34654c284f652406b386ca53c7116e693783f3e3b43e5b8461c"], 0x58}}, 0x20000800)
sendmsg$SMC_PNETID_DEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="270e28bd70000000000004"], 0x14}, 0x1, 0x40030000000000}, 0x4000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r8}, 0x10)
lsm_get_self_attr(0x65, &(0x7f0000000100)={0x0, 0x0, 0xd5, 0xb5, ""/181}, &(0x7f0000000200)=0xd5, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001740)=@raw={'raw\x00', 0x8000000, 0x7fffffe, 0x2b0, 0x110, 0xffffffff, 0xffffffff, 0x110, 0xffffffff, 0x1e0, 0xffffffff, 0xffffffff, 0x1e0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x3, 0x0}, @mcast1, [0x0, 0x0, 0x0, 0xffffff], [0xff000000, 0x0, 0x4c62d6309aaa1bde, 0xffffff00], 'batadv0\x00', 'nicvf0\x00', {}, {0xff}, 0x3a, 0x0, 0x3, 0x42}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0xa, 0x100, 0x2, 0x8, 'pptp\x00', 'syz0\x00', {0xf}}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [0x0, 0x0, 0xffffffff, 0xffffff00], [0x0, 0x0, 0xffffff00, 0xff], 'syzkaller0\x00', 'vxcan1\x00', {}, {}, 0x3c}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x1a, 0x7, 0xc}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000001540)={0x0}, 0x1, 0x0, 0x0, 0xe75001b60ea60cd8}, 0x6000c054)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r7, 0x4008662c, &(0x7f0000000380)={0x10, 0x0, "59e77f5840f8e0be32090f53561f48d5"})
connect$inet6(r9, 0x0, 0x0)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r10], 0x4c}}, 0x0)

3m11.196897217s ago: executing program 0 (id=370):
r0 = syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000540)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
r1 = syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000100)='.\x00', 0x19624bc, &(0x7f00000037c0)=ANY=[@ANYRES8=r0, @ANYRES32=r0, @ANYRESOCT=r0, @ANYBLOB="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", @ANYRES32=r0, @ANYRES64, @ANYBLOB="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", @ANYRES8=r0, @ANYRES32=r0, @ANYRESHEX=r0], 0x0, 0x0, &(0x7f0000000000))
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x9c93, 0x0, 0x0, 0x0, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_clone(0x80020100, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(r2, &(0x7f00000000c0)='ns/time\x00')
fcntl$lock(r1, 0x22, &(0x7f00000006c0)={0x2, 0x4, 0xf02, 0x100000000, r2})
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)=ANY=[], 0x0, 0x1400)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x8240, 0x0)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)={0x14, 0x453, 0x1, 0x70bd2d, 0x25dfdbfb, '\x00'}, 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x14)
lstat(&(0x7f0000000180)='./file1\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4, {r5, 0xffffffffffffffff}}, './file1\x00'})

3m11.068618704s ago: executing program 0 (id=373):
socket$inet_sctp(0x2, 0x1, 0x84)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES16, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r3)
sendmsg$IEEE802154_LIST_IFACE(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x20, r4, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000010}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(0x0, r5)
getsockname$packet(r5, 0x0, &(0x7f0000000240))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1, 0x0, 0x2000000004}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
lsm_get_self_attr(0x66, &(0x7f0000000780)={0x0, 0x0, 0x7e, 0x5e, ""/94}, &(0x7f00000003c0)=0x7e, 0x1)
memfd_create(0x0, 0x3)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r5, 0x8982, &(0x7f0000000200)={0x7, 'ipvlan1\x00', {0x3}, 0x3})
r6 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
setns(r6, 0x0)

3m10.875247478s ago: executing program 0 (id=377):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffff001, 0x0, 0x0, 0x0, 0x7d}, [@call={0x85, 0x0, 0x0, 0x7b}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x17}}]}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x0)
r2 = epoll_create(0x159d)
r3 = socket(0x28, 0x801, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000280)={0x30000010})
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = open_tree(0xffffffffffffff9c, 0x0, 0x901)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f00000008c0)=ANY=[@ANYRES8=r0, @ANYRESHEX=r3, @ANYRES8=r4, @ANYBLOB="e16adad675710baca758f2db810146804dcdb55c3f2b2eb78532cfc3ca1db64dcb1f88bd137102c228225c27452bfcb1e2ca083b08e082ea2bfc1c111e1131826b8e269bae3f033f3786494b84e7cf9ceed1468535666ce6035a8d1edb03dad4d7983365695e28a7bce8f1f0536700c9121bff505736a92d35feea74fb494392ba0198788d44f6059dd0838887fe325cc0747be4aff71e877c1b321e4db90e0ef2d693b664e19d37c271b2f7769fe9991deb75e9f70a3facbaaf3cd3cc0a738b1acf9fa386eff679826fe84fc533998e7473b596f9ca10c1f36c5d6a0dd6dd2d0ee1036d547e8808", @ANYBLOB="f3f6ee766b497c3e120386"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SG_GET_COMMAND_Q(r5, 0x2270, &(0x7f0000000100))
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xe, 0x0, &(0x7f00000001c0)="0101000871a7832e6b7303c3cd59", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x50)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup/pids.max\x00', 0xc8442, 0x80)
r7 = socket$kcm(0x10, 0x2, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
close(0xffffffffffffffff)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020022003505d25a806f8c6394f90224fc60040011000a7403004700000037153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0xb, 0x8000, 0x4}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c45, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
getresuid(&(0x7f0000000480), &(0x7f0000000680), &(0x7f00000006c0)=<r11=>0x0)
lsetxattr$security_capability(&(0x7f0000000300)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3={0x3000000, [], r11}, 0x18, 0x0)
lgetxattr(&(0x7f0000003040)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000004c0)=""/207, 0xcf)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000003c0)={r10, 0x0, 0x0}, 0x20)

3m10.817621056s ago: executing program 32 (id=377):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffff001, 0x0, 0x0, 0x0, 0x7d}, [@call={0x85, 0x0, 0x0, 0x7b}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x17}}]}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x0)
r2 = epoll_create(0x159d)
r3 = socket(0x28, 0x801, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000280)={0x30000010})
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = open_tree(0xffffffffffffff9c, 0x0, 0x901)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f00000008c0)=ANY=[@ANYRES8=r0, @ANYRESHEX=r3, @ANYRES8=r4, @ANYBLOB="e16adad675710baca758f2db810146804dcdb55c3f2b2eb78532cfc3ca1db64dcb1f88bd137102c228225c27452bfcb1e2ca083b08e082ea2bfc1c111e1131826b8e269bae3f033f3786494b84e7cf9ceed1468535666ce6035a8d1edb03dad4d7983365695e28a7bce8f1f0536700c9121bff505736a92d35feea74fb494392ba0198788d44f6059dd0838887fe325cc0747be4aff71e877c1b321e4db90e0ef2d693b664e19d37c271b2f7769fe9991deb75e9f70a3facbaaf3cd3cc0a738b1acf9fa386eff679826fe84fc533998e7473b596f9ca10c1f36c5d6a0dd6dd2d0ee1036d547e8808", @ANYBLOB="f3f6ee766b497c3e120386"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SG_GET_COMMAND_Q(r5, 0x2270, &(0x7f0000000100))
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x5, 0xe, 0x0, &(0x7f00000001c0)="0101000871a7832e6b7303c3cd59", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, 0x50)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup/pids.max\x00', 0xc8442, 0x80)
r7 = socket$kcm(0x10, 0x2, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
close(0xffffffffffffffff)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020022003505d25a806f8c6394f90224fc60040011000a7403004700000037153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0xb, 0x8000, 0x4}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c45, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
getresuid(&(0x7f0000000480), &(0x7f0000000680), &(0x7f00000006c0)=<r11=>0x0)
lsetxattr$security_capability(&(0x7f0000000300)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3={0x3000000, [], r11}, 0x18, 0x0)
lgetxattr(&(0x7f0000003040)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000004c0)=""/207, 0xcf)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000003c0)={r10, 0x0, 0x0}, 0x20)

3.322317032s ago: executing program 3 (id=2864):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
r0 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
gettid()
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x4008080)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)

2.32889909s ago: executing program 3 (id=2877):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r0)
sendmsg$NL80211_CMD_GET_SCAN(r0, 0x0, 0x2404c044)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

2.029437899s ago: executing program 5 (id=2885):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000002a80)='sched_switch\x00', r1, 0x0, 0x5}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a0300ea000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x40080)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x3c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

1.970461266s ago: executing program 5 (id=2888):
socket$can_raw(0x1d, 0x3, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x8}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x2014, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x40}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x7, 0x0)
r1 = memfd_create(&(0x7f0000000ec0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'e\xe5\x8f\xf8\xd2\x1c\xc0\xfb\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6\x03\x00\x00\x00A\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\xfe@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xf2\xde\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\x91\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7yn\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xefCGa\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcas\xf4D\xd4\xd0s\r3\xcb\x9a&\xdf+(\xc9S\x9eL5\x84\xb1\x90pN\xe7/\r\b\x9a\xf13Q\xf9\xdf\x7fX\xa0\xafK\xefh\xbfOv\x9bh\xb3\xc0\xf5\x80\xba\"@\'\x02\xafi\xeaE\xa6a6F\xde\xd4\xfa\x84\xe4+A\xb7\xa2\x8f\xc9\xee|xxn\xefw\x93]%\xd0\x19\x132\x86\xabn\xfe\x91\xb6Cl\xcf\x04\x1cq\xc1\x1d~\x8d\x01\x83\x93_\x83\x8a`v\xb0K,|S\xe4\xba\xb1\f\xc8`\xa6s\xad\x11\xd4wG\x80u\x87u\xff\x87\xee', 0x2)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x940a, 0x1000007})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x1c161, 0x10000, 0x0, 0x6, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
signalfd4(r4, &(0x7f0000000000)={[0x2]}, 0x8, 0x80000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
fcntl$getown(0xffffffffffffffff, 0x9)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r9=>0x0})
r10 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010027bd7000000000001400000008000300", @ANYRES32=r9, @ANYBLOB="08001c00", @ANYRES32=r10, @ANYBLOB="3cc75bdc07b49a8c85a31b9a8e379d7ea9bbd5fb0133cfca6c99023a5b73f68ec83e77febbb09ab68f94802c1e1f6749c3c2ae1e2f2194197f9d21319c47b6801504c0bca906a81191af22d51dfab12b06c1e39986e8184a816a4058d40fe47b5bb31750f527df413ba08c685fff376fb0edab7303290e610c23e69e2156d0bd8747790ea4bc2afa2e296e822438e02f65a4ef0370fc4cc53e23cfd7971d063fe60565ba1ecbfd069c5a65e4"], 0x24}}, 0x0)

1.827570645s ago: executing program 1 (id=2890):
syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x7750, 0x80, 0x0, 0x111}, &(0x7f0000000340), &(0x7f0000000240))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x94482ee0f6f5a391, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="60000000090601030000000000000000050000000900020073797a3100000000050001000700000038000780060004404e21000005000700ff0000000c000180080001400a0101010c00028008000010000000020c00148008000140ffffffff"], 0x60}, 0x1, 0xffff0000, 0x0, 0x10004893}, 0x80)

1.570884337s ago: executing program 2 (id=2891):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

1.24413166s ago: executing program 2 (id=2892):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="b022fd84099290ab8ebe39cfc17f80bc2926131e9437a1dea9ca1756900531c14b67f7a9edd0d80c7c73649053153a8d8db6d3c0d3b3fa951f57d14071b61a27d968a0ae7bd580d2d9fd9034451c3ecffae80b234e72fb11e3a60c1208bd5262c5009e3e45582ed4203850292ed682fc5e26f5c2af47718ee5b4f2ed68f0b21b813ec22c4c61d3f22f5a01ebea6c484d8ef4ca90180b4587e0bee2f782fef574aa1e0ebc5d9e42452910d03c12feff7848f72ac5430476b9dc2457a09efdc6f181c408abe7b30cccd2c8fb85389e1cacd4f4b29a3d4a55941bf1bb416203732d6712d5a89470876ae6daec66f3fe1b39982c2781b115e20af7ce0a0c7c77db1073adc6e11597bd9f540f90f60b92dc84a5c764379c0b9426ff4f547182502633aa754dcfc63e46c7cef8e3a0c29bf5184ac150e90d884c59cba3dae7c531fb114534292629d8532c0f67ee37f2c349ea8f28199aff2aa335df5db411287a73adfbfff212cf7b6d277a361c55af160d98b5c3db84da37d80e07269c33f60f111ec3c09d8843e1f5499e71de9b48882b9415d45b20393888ec49f307d535580947b5a5b40b465382aa4a579f317d91792f8ed70e9401863bc0a21d7e15f828ae8f13c673a30cba6f10f89c8a018cc8bbe7072ffe1c5d4ef11f0f82cf967faef8608f8b289245f87607917b0c2578dbbe5186ac78b8cd9a5aff567aebe8a73dd547fdc503885a2df4953f3497688b7b1ede6a2e529b25ecc246a7bcb00077059d7e0100aa20cb4d1dbac6eec0a9f803601c799eddb9b271f0530842291167abffb982fe47a496e884ee3c17850f970cb3ac3342b832b8b984e2eb4836afb7727f7310a347add2a1094cfff7b44516593bbf15f3a9e0e2a788e99bdec6706ae9a39b4f8983ae38d4cdf866d9670de91036ea86646f195ec4b4ce462ea624b8875825262a301f9235496b935506109287bbcf4754e3fa637428a2e39a80cd07ffafd756839abddc721421754fcae705ab432fcdd6f3c004dfad9e6bfa87746dd41649dcd2bf1728a3d6d2ddf27a52957422a27f9e478530873d9f1861b71f2378540648b171bcbd44533723ae1a89e56e2f570c0571eb3c66fac65e3abad003a828f2d21cc990e57b80dd3762fe1204eb320591d6a93f9052b80494b2f52ad89d6374cf33040e2484c3384946450bb65835d65bebb4a91c0f82e598e5aa7ff9ba79f27bbd46240287721d2759fa24cec97658d8f17b3f424293f7253b74dae4b966c8089c546936953d8ce63463c26f1e296f56e17e7f890b6001ed5d9f739036842e989b40c02d3fe5227b1fb08a98f1b1f0c336346698e70171e74e40c5304a356b29c947672f8a0535b7ce3a66b276d09ca3d9fff030e41598649a310875f5b5801c471182c1f617c907f06b5f36a1f9294b0f4a95d0fc98682b1e38f2f94fb08f20c5e5c7afaa9fbbd84734a98dd9b33188f6b79334b09ca8e2de56457242f904b114a2c313b193fe421d7fa97da5ab77f363e83b4698bf903022d13826ded79a905f07f97dc0fc4cc290b969ee37075a4a80a0d86d0696eeea2048ebd1a97f8319b3342e515ae5c9e25ee933d926ae0f31af55aeb07da6508756ac9549ba8bbc0095a17cb647df12f926e595a531d7208ef75cfd6239f65a0584121c75e00f7c77990b90e6350b1a84eba4430979bb726ab02050573af29156bed8e243527593dc0c6de41d0b6775818a96ee97d153826a217e8d7e88c6c44baa781a495afeba3882a06f5b1a87b1e8ee1edf404ac3ade6f5af1f6cd22c01506b5f84befb55c86f79b56e4d5754be8f564f57852f991c2275cbf55937666e022c2b2f0d020156152377859b345f74fe66791421e5571a7900df89c9bef5c3cb19113fae5d524ae2edea5ca91baf096c02e1e860c9b5a97882da598ef1e39fcb61d83f997675a772ac37c0fbe65a9d379b9204a915fdb6a7c7cdbd14c0893cd5e8cfd56f4021756d6c6a25b258a69922a41f3c7bc43b69f46293b381a27ae5a3cfcf2526f8eadcb540ec87d6009d6a2939882140f9a447c5be4328a0681aa3002f6a9dfd836b362fb1d423d7c9571aeb50e2a6acb9ab4e85574baf27b1028db0f6647aa7fe995c1fbf8ab422bb15acf9ae6de73972c9549cb601297bbb1c740e8761af16c4785c4827b5dc5e52f4a82000f6f87670ec19fea4e04e564fc83c0ccf1b7fa2bb9ac3e56addfa7f5f6d1d3d3c92dea5de9fa42f1414a769b0cdc40e306fee0ad66573628b83a07fe087fcb3377848e1a7869e592c83bb594284da28a4f5db381059d56e5d4989042dadbbe6000b66184ca8fe9d293f6c70988f3d7b8ee00546a21aaeca498ae06fa7becc5a55914c7a1ab714d955a8b0bd72e8d6bbf4dd451b525fcbc9fb5c10747dee3c755d39be5c2d52345c56185a8d6cee878b72255acabf7dbefafaed94838532fd01ea6244c4ac929de6846084a07d19de7098e62b613775abe326d402f707c4fbb3968b0aac7f1f27537cbdecee19151b310bcbe2c848ef41eea747e85f87d5a160b2cb6b28d137e30c69770c1651e44a66f8e3394bec03c8256b89fd59bec449c6a2bdb351f53d05e463f75b834624b8c7b557dc38a398d726d0846fc2f062b5b32d10af38ce844c6811aaef73ace1d86813bc37433670f6180f9bd112ae00133077fc7a0bd12d7b4b3a53a3c16a9cb0e8112f18691aa3bd2215afdaa1d00c8ea4f4a302ea9ebc94afaad2549f646a8ae66b953fa9cd649a02c4b152cc6c7b55d99ddc3d0fd1fcd84da355eb02581dba9e4d9dd235d2d4c4e094161440e70926221d76ce70c8762485c8b801550cc208e5d1bfd184e622ff0950a912dd47163c838fd562f09ca1690e76da55a471ec67cb83bbb103975bd4683f0393ec8b843f55ba2c0bdc6c90b50031cfe751792bd5d0cb50c8ee93086794e18c4ed66d6bd09b499f8ff2f63a8920701ab0af5b4b75402b1d65b1eb515dc46e181a1699f21e67349c904f02f8358e28faff2ade65703d14dc2774b02acc731eee0941675502d95e0c32a7304f6e9af85ef220daea0de24cf79e35a59412e62835d3032f88d9ed7befd4f708bfd2d236bd188b6f951bbe13e3add84f111e20324a523426611ec15fb376e7306cbec6867f0b945047a4facf78154e68a66a36972d5a18af1403baa9b4b51fddd072ee1f0087add02485b40323bd708b76406e10a927a913d91c5d771d3aeb3cfafb54b1016785c61ed13060d5f1b550676a656b874fd392ae61c5044218df55cbb72b819990ffdb130fb17a14f7cb5a2a8aafedc6526d83762dbf320f15758030eeecf5652dccf04cdc68827400c768a21daff47212b87357ff0bcb36cae4d113a5d9815b07332cb42329321664d93e43e6dcd6115987007fc623088004f8ac943736eb2a045a25b1bbfbbc97571eabf875d924f6b7b0e524b1afa0ff499473aa7976de83b91928e84f8e445728778fe0e5a356a57f09ed254848cec31b7c5c9c7a2fca21befe15ffc9317e96f7ad582684ce625791b99563781bf64983e77be4f1a5893beec4b560fc15e9c21dd0c29bf2879dfaa257ba5ec97957050d5b2c1f25eb4064488c139dbf88f3b7c70850d6fdbf0603cdd4011bf76e0d9ee5c2b128b50dba5689a8f04d4caf62d777eab31aab4b4195da780901352d284885bf417eb05367ee1b5f2f8c5cfe7f0394fb977f3a3f96084375e22ccf6c3ee4659d68d2b1948a4a1783a4db2282c67d39613fa67be4dd144793b76c09dd563ef3d169f34318acbd62d3b2d64f9173d16e9801132918c3390172c6f64d049b4c894d593419e5f4d5a513fc5a64ddcd05b034e6d16fe88ff89a520c464f842ad5a62a6fc46f0e9d56d05d6f5e625d25f537cca62910981dd463255318d8273db13d27fdc6c17c2c54776ba3a246c413957f297b8ecb1adb5c3f1d4d8e4d7705bdb9268f956d2845b68511edd51cdc5d05de5d6d4b3f573592986fed325f1f3c6a9ef7740f9d843e11981d1ca515c7e722ec4d691c5e4d3a146e39bcf407f66418f754bb2508cb4cc843aa9d8eb63850e5b9103682ecc1fc8f972f394be9d31cb9efd0f693d4ec41fe8d0993b45d2f422f9ab604d3371c1bda1daa3206a027c4de5c8f2cf6d1fc7e6d1423a6c71e84f24e0a4dfbf4a331deff2ae649df9681a08846efc9f0001e7ef106f1bfa25ee2799b13f1f076e30e58078d186afb65301497e982478babf143972cc7072f70829b8faee46e56a1451ff7ddd0dd35816bfa29eee361de60fbc3222e89d70f1495be94d0e82072a0e572e3055c905552e6c45d2af3d4f505a99d947667059c1c92ce2d3549077539c4cec4c07337361eeb9f78813bf9e77b0a79f391ae6eb663deb53317f61ef8ddffdbd0ca2d8095c10c106b0968325bc1e88829d92399b809f1b881e9b9f0aeada5c5ee20fd0866070e3d5d41e62f5b6d2d25441babcdf9d3dc8ae3c140a6f352daf00ed38e248b236acd27f24bdebae0f272a5820ef77fb603fe3cc910a9d842129259e61d25dcf546cd770e4cccab470b20fa5f5972a6dd15853483de6e032f9726c166e81e8e0f9db4df397cc4a10b6e58708a31f48d7d2bae4ef92828c37088068b2ae433110dc7c08e6017d8b26e4e0382ca8fa62dc6f53c4cc2f0f78af72335c494f57f2414afe247e2291c395895bb18f701b6f4331feb759110c543dd94a238e782ad552047677558a50e7683d71a9e222fd19a9343e1d64528640a8099dedd19e4c747dda18ff25b15bddf750a54533b6ecfc75ad4a2909485f7fd759d45c74727b2e7300eae71a8784f5dd7f25b4b000ed3254264131cbbae316fb3a3bfbeb309dd2d18104629db354f447791eb882bf0333a520b8dba745b673d071b07e1de3e02fe751a1cf5908435b1a38edbd60483abdb15452c868844ceb96c449ab72999a55c79f9ce7405797142ef7095b4caf99d7bbe51cd4e963e4ffbbd2648761abd3894b5420a0add261ff9c0eff61aafd1ac5195ff15cadb5b0c7ce34d4d2d68146f3dae677e833b8be0f8a876153bb65398def38e4bf539d3a00047b19c483062fc1c2547b7d4f7d99b7035212ccfffeeb21ed7bbd6165ac7fbafbca3cef86fff655305706dd0baa607c50543bb0d66f0f4dbdd9c365fdb7b875dc5e7ee59afccc321ad1e31cc84687afda71231bb2e4dc3ce79ff3ce4bbafed8821a5b71bbf3844f110e2dd9557b596ac792d97506d22c0410bce435e20fa2e2d435361b5b6ac85f44763769723a7b629258f45e10578f70bef2e9c05af8032e357697dfcd30de9b3e953a36d6cb7a03ce69288b663f692793904dd8fb4ab6dc31ddf7f6942ef84c1e68c78bf9974f830ee2fccca84113cee98b47ed41a87fe610c5348dc38d4ada19862772317a70754870347ad87dbbb4c52349b0261aa8e108fcf387b24d4e2a77ba76e8472fd74ab6fa021277a24ef7a48d395b0fd1f9c0cf83bac56b433ffbfe5984a362e337969febf259988162c2b4842bd2fc0b230fee93a085003e615088abfe41889f7b5e0f380ffe55b66c1f7419993c3dd4aac5891494a183ddca2e415e1749489c925715f3c44d94b90d2d735f2b923bdbbbf1646580ab135356a9ee29bc19e73ded9a33798a69d248574e0c9e9f40a1c1ba52bc66a578d08b75f271a9e9f447efede09d6b3b57e0aa6322c18fd6f5e1c9d2753e0a6513cc04124ab89802eb9c504f0e5550868ab597629d7cc7447ed1b01b2ff4cf511aa098710b208b5aa0f595039a2f0e7294c5fe3b0c3e6c40000000000000000000000000000000002588beb10115f4b22f4ac997c86c49201ee9dceb2142ae61555bbbc4ef8cdd468a8ffbe6cbfc8877dd87292c70e10669bc99d8d5710f7719cc2cffc86cd529b6da2511d07aef4a1d9533ab58a76f80ad7fe91a17397d3c83481", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0xdcb8, 0x10, 0x1, 0x89}, &(0x7f00000003c0)=<r1=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x77, 0x10000})
io_uring_enter(r0, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

1.111142046s ago: executing program 5 (id=2893):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@quota}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$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")

846.038441ms ago: executing program 2 (id=2894):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x65}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x1000000000000008}, 0x18)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)}, &(0x7f0000000140)=0x10)

787.316658ms ago: executing program 1 (id=2895):
timerfd_create(0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0022}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getgroups(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0xa00)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f0000000200)={0x800080, 0x858, 0x8, 0x7, 0x43})

724.251926ms ago: executing program 3 (id=2897):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYRES32, @ANYBLOB="000000000000000000a88602de0000"], 0x50)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, r2)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x1c, r3, 0xb29, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x2404c044)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4008080)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, 0x0, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

723.906416ms ago: executing program 1 (id=2898):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x33fe0)

676.256933ms ago: executing program 2 (id=2899):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000002a80)='sched_switch\x00', r1, 0x0, 0x5}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a0300ea000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x40080)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x2c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x54}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

675.763253ms ago: executing program 2 (id=2900):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c00078008"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000f, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0)

614.34963ms ago: executing program 1 (id=2901):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000004000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010102}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0xfe, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x2, @loopback, @loopback}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

578.694925ms ago: executing program 4 (id=2902):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r0, 0x2000012, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

524.056692ms ago: executing program 1 (id=2903):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x401}, 0x18)
syz_read_part_table(0x5c2, &(0x7f0000000000)="$eJzs2z1oU2sYB/AnavCil+vi5GQdnFwURzOoJFFRCNEu4qCgiBi4EEGIECjoYDO0NEPp2KUUsvRjapqhw6Wlhc6ldOil0KHTpV0KXZpL6Xv39vYDhN8PDg/v+/7Pec4znPEEv7QL8U+3281ERPfy8e/ubeULT2+WHpZfRWTiTUT0/PXH1MFJJiX+e+qttF5P67HRK53+nSfZ1trL3dtv5xsX0nlfuq6Ot3tPPBxnbiK3cO37j2pxoJb7tFqsb/5cWX4xuZ0vt583mlPPso/fp9xiqpdS/RK1+Baf411UohIfonpK/UdaG3f3bxRbMx8f7BU6g3P3Uq50wjmP2v9rz9DrZv3Rnenrw/drs0vlrYuHucr/+LoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADh/E7mFa99/VIsDtdyn1WJ98+fK8ovJ7Xy5/bzRnHqWffw+5RZTvZTql6jFt/gc76ISlfgQ1VPqP9LauLt/o9ia+fhgr9AZnLuXcqUTznnU/l97hl4364/uTF8fvl+bXSpvXTzMVS6f0QsAAAAAAAAAAAAAAAAAAABAROQLT2+WHpZfRWTiTUT8+fvczMF+N/3vnkm5W6mup/2x0Sud/p0n2dbay93bb+cbf6f9vt8i+iLi6ni799yH4dj+DQAA///B9JXf")
syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x200003, 0x1af}, &(0x7f00000001c0), &(0x7f00000002c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = gettid()
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x8, 0x0, 0x0}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000200400001"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8a}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r7}, &(0x7f0000000180), &(0x7f00000001c0)=r5}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r8}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
sendmsg$unix(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)='>', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r2, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
dup2(r0, r10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000080)={0x0, 0x2, 0x1, "fa"}, 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r10, 0x84, 0x19, &(0x7f0000000140)={0x0, 0x2}, 0x8)

523.654792ms ago: executing program 4 (id=2904):
socket$inet6(0xa, 0x2, 0x0)
semop(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000100)='./file0/bus\x00', 0xc4000100)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)

466.56109ms ago: executing program 4 (id=2905):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0xdcb8, 0x10, 0x1, 0x89}, &(0x7f00000003c0)=<r1=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x77, 0x10000})
io_uring_enter(r0, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

365.627433ms ago: executing program 4 (id=2906):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x101000, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, 0xffffffffffffffff, 0x0, 0x8000000000}, 0x18)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000240)=ANY=[@ANYBLOB="9ac0e0856d7d5c5039e6117f9ffc723d00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/25], 0x48)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000001440)=""/4106, 0x100a}], 0x1, 0x300, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80000}}, {@quota}]}, 0x1, 0x4ff, &(0x7f0000000ac0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000001f40)=ANY=[@ANYBLOB="000000004c900200060000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000020000000000000ffffffffffd9ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

347.150685ms ago: executing program 1 (id=2907):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x65}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x1000000000000008}, 0x18)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
socket(0x2, 0x80805, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x10, &(0x7f0000000240)=[@in={0x2, 0x4e23, @local}]}, &(0x7f0000000140)=0x10)

342.043636ms ago: executing program 2 (id=2908):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000000)={[{@bsdgroups}, {@jqfmt_vfsv1}]}, 0xc1, 0x7e9, &(0x7f00000017c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
rt_tgsigqueueinfo(0x0, 0x0, 0x15, &(0x7f0000000000)={0x17, 0x3, 0x80})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r0)
sendmsg$NL80211_CMD_GET_SCAN(r0, 0x0, 0x2404c044)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

228.84409ms ago: executing program 3 (id=2909):
timerfd_create(0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0022}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getgroups(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0xa00)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f0000000200)={0x800080, 0x858, 0x8, 0x7, 0x43})

173.726867ms ago: executing program 3 (id=2910):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
rseq(0x0, 0x0, 0xffffffffffff9bff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000040000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0xa2f01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f0000050000000000", @ANYRES32, @ANYBLOB="0400000000000000000000000000100000000000", @ANYBLOB='\x00'/25], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="050000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000200)={0xc1, 0x5, 0x0, 0x0, 0x1}, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000009800000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r6, 0x18000000000002a0, 0x28, 0x0, &(0x7f0000000180)="790a09002f0cd2ff03580bdc86dd30e9768f72fd13e7620b85d7ae377c7f9862a5b067f724e3693e", 0x0, 0xd5b6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
dup(r5)
write$tun(r2, &(0x7f0000000400)={@val={0x0, 0x22f0}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @val={@void, {0x8100, 0x3}}, {@generic={0x88f7}}}}, 0x16)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x10)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000f80)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000700014002020c600e41b0000900ac000a0501000000160012000a00ff150048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x40080)
writev(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

169.714638ms ago: executing program 5 (id=2920):
timerfd_create(0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0022}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getgroups(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0xa00)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40505330, &(0x7f0000000200)={0x800080, 0x858, 0x8, 0x7, 0x43})

164.523328ms ago: executing program 4 (id=2911):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
unshare(0x22020400)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x4000001)
inotify_add_watch(r0, 0x0, 0xc4000100)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)

113.929085ms ago: executing program 5 (id=2912):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="240000003f000500000000000000df25047c0000040000000c0001"], 0x24}, 0x1, 0x0, 0x0, 0x48800}, 0x0)

87.677708ms ago: executing program 5 (id=2913):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="070000000400000008000000d900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000000a5e8d011e2b9c"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="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", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r0}, 0x18)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x208, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0xffffffffffffff06, 0x1}, 0x0, 0x101, 0x0, 0x5, 0xb, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d00000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$sg(0x0, 0x0, 0x8002)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r4}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r5}, 0x10)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$eJzs3c9rHGUfAPDvzCZ5kzavaUXEFsWAhxakaVKLVS+29WAPBQv2IOKhoUlq6PYHTQq2FkzBg4KCiFeRXvwHvEvv3kRQb56FKlJRUOnK7M62m2Q3XdPsTpr5fGCzz/PM7D7PdydP5pmZPDsBlNZ49iON2BVx51QSMdaybDQaC8fz9W7/du109kiiVnv91ySSvKy5fpI/b88zwxHx7dGIRyur6124cvXsdLXW8F7E/sVzF/cvXLm6b/7c9JnZM7Pnpw68cPDQ5ItTB6c2JM7t+fOx4689+fH7bz8/9111XxKH4+TguzOxIo6NMh7jcScPsbV8ICIOZYk2n8vDZguEUGqV/PdxMCIej7Go1HMNYzH/UaGNA3qqVomoASWV6P9QUs1xQPPYvrvj4JM9HpX0z60jjQOg1fEPNM6NxHD92Gjb7aTlyKhxbmPHBtSf1fHPtd2fZ49Ydh7iz7tbZ2AD6ulk6XpEPNEu/qTeth31SLP402XtSCJiMiKG8va98gBtSFrSvTgPs5b1xp9GxOH8OSs/us76x1fk+x0/AOV080i+I1/Kcvf2f9nYozn+iTbjn9E2+671KHr/13n819zfD9fPkacrxmHZmOVE+7ccXFnw04fHPu1Uf+v4L3tk9TfHgv1w63rE7hXxf5AFm49/sviTNts/W+XU4e7qePX7X451WlZ0/LUbEXvaHv/cG5VmqTWuT+6fm6/OTjZ+tq3j62/e+rJT/UXHn23/bR3ib9n+6crXZZ/JxS7r+OrEjXOdlo3eN/7056Gkcbw5lJe8M724eGkqYig5nq/SUn5g7bY012m+Rxb/3mfa9/9lv//Xl7/PSPNPZhcuvnH2dqdl69n+LReT79S6bEMnWfwz99/+q/p/VvZJl3X88eblpzotWyv+kQcJDAAAAAAAAEoorV+DTdKJu+k0nZhozJd9LLal1QsLi8/OXbh8fiZib/3/IQfT5pXusUY+yfJT+f/DNvMHVuSfi4idEfFZZaSenzh9oTpTdPAAAAAAAAAAAAAAAAAAAACwSWzP5/8371P9e6Ux/x8oiV7eYA7Y3PR/KK96/191iyegDOz/obz0fygv/R/KS/+H8tL/obz0fygv/R/KS/8HAAAAgC1p59M3f0wiYumlkfojM5QvMyMItrbBohsAFKZSdAOAwty99G+wD6XT1fj/r/zLAXvfHKAASbvC+uCgtnbnv9n2lQAAAAAAAAAAAABAD+zZ1Xn+v7nBsLWZ9gfl9QDz/311ADzkfPU/lJdjfOB+s/iHOy0w/x8AAAAAAAAAAAAA+ma0/kjSiXwu8Gik6cRExP8jYkcMJnPz1dnJiHgkIn6oDP4vy08V3WgAAAAAAAAAAAAAAAAAAADYYhauXD07Xa3OXmpN/L2qZGsnmndB7UNdL8d/fFUk/f9YRiKi8I3Ss8RAS0kSsZRt+U3RsEsLsTmaUU8U/IcJAAAAAAAAAAAAAAAAAABKqGXucXu7v+hziwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg/+7d/793iaJjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTv8GAAD//7V5QCw=")

59.891232ms ago: executing program 4 (id=2914):
r0 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom$l2tp(r0, &(0x7f0000001600)=""/70, 0x46, 0x20, &(0x7f0000001680)={0x2, 0x0, @empty}, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = epoll_create1(0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000040)={@cgroup=r2, r2, 0x2f}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)

0s ago: executing program 3 (id=2915):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000800000000005e002200850000006d00000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000004c0)={'veth1_virt_wifi\x00', <r6=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r5, r6, 0x25, 0x4, @val=@tcx}, 0x1c)
close_range(r4, 0xffffffffffffffff, 0x0)
unshare(0x40400)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="1400000010000100000000000000000083e8cf3f00c50500000a480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c000380180000800c00018006000100d10300000800034000000001140000001100010000000000000000000100000a0571b4ed713851e775e856532b3a420b8516bc32aaddbd1b65250fc6a6783ffc5f26843d88c323058009b2da4fdb786391c9ed86387f0e6d59b29e8b105a2c31"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, 0x0, 0x28040000)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r9}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r10, 0x0, 0x40008003}, 0x18)
io_uring_setup(0x3eac, &(0x7f0000000240)={0x0, 0xdb60, 0x40, 0x0, 0x12f})
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xd, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000010000000000000000000000850000008700000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000040000007b8af8ff00000000bfa200000000000006e70000f8ffffffb703000008000000b704000000000000850000008200000095000000000000"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r12 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r12, 0x6, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

yz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.054129][   T29] audit: type=1326 audit(1768324416.427:40451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10375 comm="syz.3.2371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.077846][   T29] audit: type=1326 audit(1768324416.427:40452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10375 comm="syz.3.2371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.315522][   T29] audit: type=1326 audit(1768324416.437:40453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10375 comm="syz.3.2371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.339240][   T29] audit: type=1326 audit(1768324416.437:40454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10375 comm="syz.3.2371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.362893][   T29] audit: type=1326 audit(1768324416.437:40455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10375 comm="syz.3.2371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  212.571174][T10384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10384 comm=syz.4.2375
[  212.703417][T10394] loop1: detected capacity change from 0 to 128
[  212.720945][T10390] netlink: 'syz.4.2377': attribute type 7 has an invalid length.
[  212.733044][T10394] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  212.745859][T10394] ext4 filesystem being mounted at /404/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.903631][T10382] SET target dimension over the limit!
[  213.028338][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  213.228746][T10417] loop5: detected capacity change from 0 to 1024
[  213.235529][T10417] EXT4-fs: Ignoring removed bh option
[  213.275352][T10417] EXT4-fs: inline encryption not supported
[  213.296676][T10417] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  213.324085][T10423] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  213.344141][T10417] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  213.353817][T10423] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  213.377028][T10426] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10426 comm=syz.2.2388
[  213.391700][T10417] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 2: comm syz.5.2383: lblock 2 mapped to illegal pblock 2 (length 1)
[  213.425668][T10417] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 48: comm syz.5.2383: lblock 0 mapped to illegal pblock 48 (length 1)
[  213.446324][T10417] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2383: Failed to acquire dquot type 0
[  213.472077][T10417] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  213.507471][T10428] netlink: 'syz.2.2389': attribute type 7 has an invalid length.
[  213.520936][T10417] EXT4-fs error (device loop5): ext4_evict_inode:253: inode #11: comm syz.5.2383: mark_inode_dirty error
[  213.555684][T10417] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  213.580063][T10417] EXT4-fs (loop5): 1 orphan inode deleted
[  213.594466][T10417] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.608285][  T320] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  213.636733][  T320] EXT4-fs error (device loop5): ext4_release_dquot:7022: comm kworker/u8:6: Failed to release dquot type 0
[  213.691087][T10417] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.714773][T10435] Cannot find add_set index 0 as target
[  213.735316][T10417] EXT4-fs error (device loop5): __ext4_get_inode_loc:4830: comm syz.5.2383: Invalid inode table block 1 in block_group 0
[  213.749501][T10417] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  213.759494][T10417] EXT4-fs error (device loop5): ext4_quota_off:7270: inode #3: comm syz.5.2383: mark_inode_dirty error
[  213.783884][T10437] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2393'.
[  214.036057][T10441] loop1: detected capacity change from 0 to 128
[  214.066789][T10441] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  214.247327][T10441] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.313608][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.370482][T10450] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2398'.
[  214.457695][T10456] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2397'.
[  214.677737][T10468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10468 comm=syz.3.2404
[  214.959200][T10498] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10498 comm=syz.2.2418
[  215.099816][T10516] loop5: detected capacity change from 0 to 128
[  215.237933][T10518] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2426'.
[  215.244485][T10521] bio_check_eod: 102 callbacks suppressed
[  215.244540][T10521] syz.5.2425: attempt to access beyond end of device
[  215.244540][T10521] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  215.364441][T10521] syz.5.2425: attempt to access beyond end of device
[  215.364441][T10521] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  215.440043][T10521] syz.5.2425: attempt to access beyond end of device
[  215.440043][T10521] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  215.474468][T10521] syz.5.2425: attempt to access beyond end of device
[  215.474468][T10521] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  215.503609][T10521] syz.5.2425: attempt to access beyond end of device
[  215.503609][T10521] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  215.542436][T10521] syz.5.2425: attempt to access beyond end of device
[  215.542436][T10521] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  215.596158][T10521] syz.5.2425: attempt to access beyond end of device
[  215.596158][T10521] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  215.635596][T10521] syz.5.2425: attempt to access beyond end of device
[  215.635596][T10521] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  215.665625][T10521] syz.5.2425: attempt to access beyond end of device
[  215.665625][T10521] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  215.705556][T10521] syz.5.2425: attempt to access beyond end of device
[  215.705556][T10521] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  215.784793][T10531] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2429'.
[  215.914348][T10542] caif0: entered allmulticast mode
[  215.928696][T10547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10547 comm=syz.4.2436
[  215.955158][T10546] loop2: detected capacity change from 0 to 2048
[  216.004420][T10546] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  216.011269][T10554] loop3: detected capacity change from 0 to 2048
[  216.245937][T10568] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2437'.
[  216.312283][ T8735] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  216.340948][ T8735] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 314 with error 28
[  216.353439][ T8735] EXT4-fs (loop2): This should not happen!! Data will be lost
[  216.353439][ T8735] 
[  216.363137][ T8735] EXT4-fs (loop2): Total free blocks count 0
[  216.369184][ T8735] EXT4-fs (loop2): Free/Dirty block details
[  216.375123][ T8735] EXT4-fs (loop2): free_blocks=2415919104
[  216.380973][ T8735] EXT4-fs (loop2): dirty_blocks=320
[  216.386252][ T8735] EXT4-fs (loop2): Block reservation details
[  216.392290][ T8735] EXT4-fs (loop2): i_reserved_data_blocks=20
[  216.405668][T10564] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  216.838474][T10588] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2448'.
[  216.855608][   T29] kauditd_printk_skb: 636 callbacks suppressed
[  216.855694][   T29] audit: type=1326 audit(1768324421.277:41089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  216.885923][   T29] audit: type=1326 audit(1768324421.287:41090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  216.909546][   T29] audit: type=1326 audit(1768324421.287:41091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  216.933240][   T29] audit: type=1326 audit(1768324421.287:41092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  216.956947][   T29] audit: type=1326 audit(1768324421.287:41093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  216.980660][   T29] audit: type=1326 audit(1768324421.287:41094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  217.004311][   T29] audit: type=1326 audit(1768324421.287:41095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  217.027968][   T29] audit: type=1326 audit(1768324421.287:41096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  217.051570][   T29] audit: type=1326 audit(1768324421.287:41097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  217.075323][   T29] audit: type=1326 audit(1768324421.287:41098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10587 comm="syz.1.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  217.326696][T10597] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10597 comm=syz.5.2450
[  217.475196][T10601] loop5: detected capacity change from 0 to 2048
[  217.546982][T10608] loop3: detected capacity change from 0 to 2048
[  217.575137][T10601] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  217.624019][T10613] loop1: detected capacity change from 0 to 128
[  217.633795][T10613] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  217.679197][T10613] ext4 filesystem being mounted at /420/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.728498][ T5939] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  217.761171][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  217.869110][ T5939] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 456 with error 28
[  217.881726][ T5939] EXT4-fs (loop5): This should not happen!! Data will be lost
[  217.881726][ T5939] 
[  217.891771][ T5939] EXT4-fs (loop5): Total free blocks count 0
[  217.897877][ T5939] EXT4-fs (loop5): Free/Dirty block details
[  217.903818][ T5939] EXT4-fs (loop5): free_blocks=2415919104
[  217.909586][ T5939] EXT4-fs (loop5): dirty_blocks=464
[  217.914827][ T5939] EXT4-fs (loop5): Block reservation details
[  217.920856][ T5939] EXT4-fs (loop5): i_reserved_data_blocks=29
[  218.145087][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  218.157143][T10627] Invalid argument reading file caps for ./file0
[  218.208273][T10632] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10632 comm=syz.1.2463
[  218.257827][T10633] loop5: detected capacity change from 0 to 2048
[  218.297619][T10633] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  218.381744][T10608] syz.3.2455 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  218.396063][T10608] CPU: 0 UID: 0 PID: 10608 Comm: syz.3.2455 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  218.396101][T10608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  218.396119][T10608] Call Trace:
[  218.396127][T10608]  <TASK>
[  218.396136][T10608]  __dump_stack+0x1d/0x30
[  218.396165][T10608]  dump_stack_lvl+0x95/0xd0
[  218.396242][T10608]  dump_stack+0x15/0x1b
[  218.396266][T10608]  dump_header+0x81/0x240
[  218.396295][T10608]  oom_kill_process+0x295/0x350
[  218.396322][T10608]  out_of_memory+0x97b/0xb80
[  218.396347][T10608]  try_charge_memcg+0x610/0xa10
[  218.396425][T10608]  obj_cgroup_charge_pages+0xa6/0x150
[  218.396457][T10608]  __memcg_kmem_charge_page+0x9f/0x170
[  218.396498][T10608]  __alloc_frozen_pages_noprof+0x18f/0x360
[  218.396587][T10608]  alloc_pages_mpol+0xb3/0x260
[  218.396628][T10608]  alloc_pages_noprof+0x90/0x130
[  218.396660][T10608]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  218.396768][T10608]  __kvmalloc_node_noprof+0x492/0x6b0
[  218.396997][T10608]  ? ip_set_alloc+0x24/0x30
[  218.397047][T10608]  ? ip_set_alloc+0x24/0x30
[  218.397092][T10608]  ip_set_alloc+0x24/0x30
[  218.397124][T10608]  hash_netiface_create+0x282/0x740
[  218.397219][T10608]  ? __pfx_hash_netiface_create+0x10/0x10
[  218.397338][T10608]  ip_set_create+0x3cc/0x970
[  218.397408][T10608]  ? __nla_parse+0x40/0x60
[  218.397445][T10608]  nfnetlink_rcv_msg+0x4c6/0x590
[  218.397517][T10608]  netlink_rcv_skb+0x123/0x220
[  218.397604][T10608]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  218.397660][T10608]  nfnetlink_rcv+0x167/0x16c0
[  218.397756][T10608]  ? kmem_cache_free+0xe3/0x3a0
[  218.397789][T10608]  ? __kfree_skb+0x109/0x150
[  218.397817][T10608]  ? nlmon_xmit+0x4f/0x60
[  218.397888][T10608]  ? consume_skb+0x49/0x150
[  218.397917][T10608]  ? nlmon_xmit+0x4f/0x60
[  218.397939][T10608]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  218.398016][T10608]  ? __dev_queue_xmit+0x13a6/0x1ee0
[  218.398076][T10608]  ? __dev_queue_xmit+0x148/0x1ee0
[  218.398116][T10608]  ? ref_tracker_free+0x37d/0x3e0
[  218.398150][T10608]  ? __netlink_deliver_tap+0x4dc/0x500
[  218.398230][T10608]  netlink_unicast+0x5c0/0x690
[  218.398270][T10608]  netlink_sendmsg+0x58b/0x6b0
[  218.398381][T10608]  ? __pfx_netlink_sendmsg+0x10/0x10
[  218.398433][T10608]  __sock_sendmsg+0x145/0x180
[  218.398462][T10608]  ____sys_sendmsg+0x31e/0x4a0
[  218.398509][T10608]  ___sys_sendmsg+0x17b/0x1d0
[  218.398614][T10608]  __x64_sys_sendmsg+0xd4/0x160
[  218.398706][T10608]  x64_sys_call+0x17ba/0x3000
[  218.398733][T10608]  do_syscall_64+0xca/0x2b0
[  218.398795][T10608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.398826][T10608] RIP: 0033:0x7fbf42a2f749
[  218.398849][T10608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.398870][T10608] RSP: 002b:00007fbf41476038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  218.398894][T10608] RAX: ffffffffffffffda RBX: 00007fbf42c86090 RCX: 00007fbf42a2f749
[  218.398929][T10608] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  218.399019][T10608] RBP: 00007fbf42ab3f91 R08: 0000000000000000 R09: 0000000000000000
[  218.399037][T10608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  218.399065][T10608] R13: 00007fbf42c86128 R14: 00007fbf42c86090 R15: 00007fff730872e8
[  218.399093][T10608]  </TASK>
[  218.399101][T10608] memory: usage 307200kB, limit 307200kB, failcnt 14858
[  218.683497][T10642] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2462'.
[  218.688410][T10608] memory+swap: usage 285404kB, limit 9007199254740988kB, failcnt 0
[  218.748391][T10608] kmem: usage 279040kB, limit 9007199254740988kB, failcnt 0
[  218.755738][T10608] Memory cgroup stats for /syz3:
[  218.776264][T10608] cache 0
[  218.784294][T10608] rss 0
[  218.787187][T10608] shmem 0
[  218.790153][T10608] mapped_file 0
[  218.793693][T10608] dirty 0
[  218.796714][T10608] writeback 0
[  218.800087][T10608] workingset_refault_anon 3691
[  218.804874][T10608] workingset_refault_file 7279
[  218.809688][T10608] swap 278528
[  218.813075][T10608] swapcached 118784
[  218.816954][T10608] pgpgin 228105
[  218.820431][T10608] pgpgout 228076
[  218.823989][T10608] pgfault 195568
[  218.827660][T10608] pgmajfault 1358
[  218.831314][T10608] inactive_anon 86016
[  218.835322][T10608] active_anon 32768
[  218.839282][T10608] inactive_file 0
[  218.842941][T10608] active_file 0
[  218.846500][T10608] unevictable 0
[  218.850087][T10608] hierarchical_memory_limit 314572800
[  218.855524][T10608] hierarchical_memsw_limit 9223372036854771712
[  218.861720][T10608] total_cache 0
[  218.865243][T10608] total_rss 0
[  218.868693][T10608] total_shmem 0
[  218.872181][T10608] total_mapped_file 0
[  218.876901][T10608] total_dirty 0
[  218.880477][T10608] total_writeback 0
[  218.884331][T10608] total_workingset_refault_anon 3691
[  218.889785][T10608] total_workingset_refault_file 7279
[  218.895151][T10608] total_swap 278528
[  218.899028][T10608] total_swapcached 118784
[  218.903379][T10608] total_pgpgin 228105
[  218.907412][T10608] total_pgpgout 228076
[  218.911525][T10608] total_pgfault 195568
[  218.915744][T10608] total_pgmajfault 1358
[  218.919977][T10608] total_inactive_anon 86016
[  218.924496][T10608] total_active_anon 32768
[  218.928903][T10608] total_inactive_file 0
[  218.933141][T10608] total_active_file 0
[  218.937251][T10608] total_unevictable 0
[  218.941261][T10608] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2455,pid=10605,uid=0
[  218.956266][T10608] Memory cgroup out of memory: Killed process 10605 (syz.3.2455) total-vm:96148kB, anon-rss:1136kB, file-rss:22476kB, shmem-rss:128kB, UID:0 pgtables:132kB oom_score_adj:1000
[  219.019279][T10646] loop2: detected capacity change from 0 to 128
[  219.037972][T10646] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  219.065372][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  219.086278][T10646] ext4 filesystem being mounted at /469/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.121346][T10651] loop3: detected capacity change from 0 to 128
[  219.189852][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  219.412903][T10672] loop1: detected capacity change from 0 to 2048
[  219.496846][T10671] loop2: detected capacity change from 0 to 2048
[  219.527549][T10677] ip6t_rpfilter: unknown options
[  219.535343][T10671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  219.548585][T10672] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  219.567437][T10679] loop5: detected capacity change from 0 to 2048
[  219.607659][T10679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  219.636761][T10686] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2483'.
[  219.759824][T10694] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2478'.
[  219.778838][T10696] netlink: 14593 bytes leftover after parsing attributes in process `syz.4.2485'.
[  219.830408][T10689] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  219.851053][T10679] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  219.866450][ T8732] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  219.887917][ T8732] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 816 with error 28
[  219.900589][ T8732] EXT4-fs (loop2): This should not happen!! Data will be lost
[  219.900589][ T8732] 
[  219.900707][T10679] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 756 with error 28
[  219.910265][ T8732] EXT4-fs (loop2): Total free blocks count 0
[  219.910282][ T8732] EXT4-fs (loop2): Free/Dirty block details
[  219.910298][ T8732] EXT4-fs (loop2): free_blocks=2415919104
[  219.922723][T10679] EXT4-fs (loop5): This should not happen!! Data will be lost
[  219.922723][T10679] 
[  219.922741][T10679] EXT4-fs (loop5): Total free blocks count 0
[  219.928736][ T8732] EXT4-fs (loop2): dirty_blocks=832
[  219.934645][T10679] EXT4-fs (loop5): Free/Dirty block details
[  219.934662][T10679] EXT4-fs (loop5): free_blocks=2415919104
[  219.940428][ T8732] EXT4-fs (loop2): Block reservation details
[  219.950436][T10679] EXT4-fs (loop5): dirty_blocks=768
[  219.956193][ T8732] EXT4-fs (loop2): i_reserved_data_blocks=52
[  219.990596][T10679] EXT4-fs (loop5): Block reservation details
[  219.996645][T10679] EXT4-fs (loop5): i_reserved_data_blocks=48
[  219.998987][T10701] netlink: 'syz.4.2486': attribute type 1 has an invalid length.
[  220.036012][T10689] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 610 with error 28
[  220.048479][T10689] EXT4-fs (loop1): This should not happen!! Data will be lost
[  220.048479][T10689] 
[  220.058169][T10689] EXT4-fs (loop1): Total free blocks count 0
[  220.064195][T10689] EXT4-fs (loop1): Free/Dirty block details
[  220.070188][T10689] EXT4-fs (loop1): free_blocks=2415919104
[  220.075987][T10689] EXT4-fs (loop1): dirty_blocks=624
[  220.081258][T10689] EXT4-fs (loop1): Block reservation details
[  220.087307][T10689] EXT4-fs (loop1): i_reserved_data_blocks=39
[  220.140316][ T5939] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  220.465042][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  220.546170][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  220.858132][T10726] loop5: detected capacity change from 0 to 2048
[  220.899393][T10726] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  220.950159][T10712] sch_tbf: burst 22 is lower than device lo mtu (65550) !
[  221.023937][T10733] loop2: detected capacity change from 0 to 128
[  221.031284][T10726] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  221.046613][T10726] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 294 with error 28
[  221.059230][T10726] EXT4-fs (loop5): This should not happen!! Data will be lost
[  221.059230][T10726] 
[  221.069060][T10726] EXT4-fs (loop5): Total free blocks count 0
[  221.075089][T10726] EXT4-fs (loop5): Free/Dirty block details
[  221.081094][T10726] EXT4-fs (loop5): free_blocks=2415919104
[  221.086930][T10726] EXT4-fs (loop5): dirty_blocks=304
[  221.092228][T10726] EXT4-fs (loop5): Block reservation details
[  221.098270][T10726] EXT4-fs (loop5): i_reserved_data_blocks=19
[  221.216565][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  221.227729][T10739] bio_check_eod: 77 callbacks suppressed
[  221.227751][T10739] syz.2.2499: attempt to access beyond end of device
[  221.227751][T10739] loop2: rw=2049, sector=145, nr_sectors = 16 limit=128
[  221.273425][T10739] syz.2.2499: attempt to access beyond end of device
[  221.273425][T10739] loop2: rw=2049, sector=169, nr_sectors = 8 limit=128
[  221.301045][T10739] syz.2.2499: attempt to access beyond end of device
[  221.301045][T10739] loop2: rw=2049, sector=185, nr_sectors = 8 limit=128
[  221.328870][T10739] syz.2.2499: attempt to access beyond end of device
[  221.328870][T10739] loop2: rw=2049, sector=201, nr_sectors = 8 limit=128
[  221.342954][T10741] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2501'.
[  221.560085][T10739] syz.2.2499: attempt to access beyond end of device
[  221.560085][T10739] loop2: rw=2049, sector=217, nr_sectors = 8 limit=128
[  221.599148][T10750] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10750 comm=syz.5.2505
[  221.791940][T10739] syz.2.2499: attempt to access beyond end of device
[  221.791940][T10739] loop2: rw=2049, sector=233, nr_sectors = 8 limit=128
[  221.806167][T10739] syz.2.2499: attempt to access beyond end of device
[  221.806167][T10739] loop2: rw=2049, sector=249, nr_sectors = 8 limit=128
[  221.822095][T10739] syz.2.2499: attempt to access beyond end of device
[  221.822095][T10739] loop2: rw=2049, sector=265, nr_sectors = 8 limit=128
[  221.836644][T10739] syz.2.2499: attempt to access beyond end of device
[  221.836644][T10739] loop2: rw=2049, sector=281, nr_sectors = 8 limit=128
[  221.852920][T10739] syz.2.2499: attempt to access beyond end of device
[  221.852920][T10739] loop2: rw=2049, sector=297, nr_sectors = 8 limit=128
[  221.903185][   T29] kauditd_printk_skb: 307 callbacks suppressed
[  221.903204][   T29] audit: type=1326 audit(1768324426.347:41406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  221.975754][   T29] audit: type=1326 audit(1768324426.387:41407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  221.999517][   T29] audit: type=1326 audit(1768324426.387:41408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.023419][   T29] audit: type=1326 audit(1768324426.387:41409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.047140][   T29] audit: type=1326 audit(1768324426.387:41410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.070947][   T29] audit: type=1326 audit(1768324426.387:41411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.095095][   T29] audit: type=1326 audit(1768324426.387:41412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.118712][   T29] audit: type=1326 audit(1768324426.387:41413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.118839][T10764] loop5: detected capacity change from 0 to 2048
[  222.142842][   T29] audit: type=1326 audit(1768324426.387:41414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.172888][   T29] audit: type=1326 audit(1768324426.387:41415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10759 comm="syz.5.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3df276f749 code=0x7ffc0000
[  222.267477][T10764] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  222.294181][T10776] Cannot find add_set index 0 as target
[  222.474335][T10764] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  222.645650][T10764] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  222.658254][T10764] EXT4-fs (loop5): This should not happen!! Data will be lost
[  222.658254][T10764] 
[  222.668189][T10764] EXT4-fs (loop5): Total free blocks count 0
[  222.674375][T10764] EXT4-fs (loop5): Free/Dirty block details
[  222.680352][T10764] EXT4-fs (loop5): free_blocks=2415919104
[  222.686296][T10764] EXT4-fs (loop5): dirty_blocks=3760
[  222.691811][T10764] EXT4-fs (loop5): Block reservation details
[  222.697877][T10764] EXT4-fs (loop5): i_reserved_data_blocks=235
[  222.774437][T10800] loop3: detected capacity change from 0 to 128
[  222.955701][ T8737] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 3074 with max blocks 676 with error 28
[  223.021378][T10808] Cannot find add_set index 0 as target
[  223.387212][T10834] loop2: detected capacity change from 0 to 128
[  223.398988][T10831] netlink: 'syz.1.2537': attribute type 1 has an invalid length.
[  223.430286][T10834] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  223.543000][T10834] ext4 filesystem being mounted at /484/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.591781][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  223.750532][T10847] loop2: detected capacity change from 0 to 2048
[  223.865110][T10847] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  224.309059][ T8735] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  224.346543][ T8735] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 556 with error 28
[  224.359185][ T8735] EXT4-fs (loop2): This should not happen!! Data will be lost
[  224.359185][ T8735] 
[  224.368919][ T8735] EXT4-fs (loop2): Total free blocks count 0
[  224.374933][ T8735] EXT4-fs (loop2): Free/Dirty block details
[  224.380896][ T8735] EXT4-fs (loop2): free_blocks=2415919104
[  224.386743][ T8735] EXT4-fs (loop2): dirty_blocks=560
[  224.392213][ T8735] EXT4-fs (loop2): Block reservation details
[  224.398402][ T8735] EXT4-fs (loop2): i_reserved_data_blocks=35
[  224.448894][ T8735] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 556 with max blocks 192 with error 28
[  225.020996][T10878] loop1: detected capacity change from 0 to 1024
[  225.060026][T10878] EXT4-fs: Ignoring removed orlov option
[  225.103722][T10878] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.159343][ T8741] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.188082][T10883] loop3: detected capacity change from 0 to 128
[  225.200835][T10851] wg1 speed is unknown, defaulting to 1000
[  225.218678][ T8741] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.726523][ T7169] wg1 speed is unknown, defaulting to 1000
[  225.732530][ T7169] syz0: Port: 1 Link DOWN
[  225.799756][ T8741] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.941520][ T8741] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.093460][T10851] chnl_net:caif_netlink_parms(): no params data found
[  226.428282][T10851] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.435417][T10851] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.503778][T10851] bridge_slave_0: entered allmulticast mode
[  226.550774][T10851] bridge_slave_0: entered promiscuous mode
[  226.575055][ T8741] bridge_slave_1: left allmulticast mode
[  226.580827][ T8741] bridge_slave_1: left promiscuous mode
[  226.586684][ T8741] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.623667][ T8741] bridge_slave_0: left allmulticast mode
[  226.629459][ T8741] bridge_slave_0: left promiscuous mode
[  226.635208][ T8741] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.831190][T10902] loop3: detected capacity change from 0 to 2048
[  226.957420][T10909] netlink: 12 bytes leftover after parsing attributes in process `gtp'.
[  226.965887][T10909] netlink: 12 bytes leftover after parsing attributes in process `gtp'.
[  227.477627][ T8741] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  227.498531][ T8741] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  227.516814][ T8741] bond0 (unregistering): Released all slaves
[  227.533728][T10851] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.541105][T10851] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.551103][T10847] syz.2.2542 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  227.565419][T10847] CPU: 1 UID: 0 PID: 10847 Comm: syz.2.2542 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  227.565458][T10847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  227.565554][T10847] Call Trace:
[  227.565563][T10847]  <TASK>
[  227.565573][T10847]  __dump_stack+0x1d/0x30
[  227.565604][T10847]  dump_stack_lvl+0x95/0xd0
[  227.565693][T10847]  dump_stack+0x15/0x1b
[  227.565728][T10847]  dump_header+0x81/0x240
[  227.565814][T10847]  oom_kill_process+0x295/0x350
[  227.565843][T10847]  out_of_memory+0x97b/0xb80
[  227.565871][T10847]  try_charge_memcg+0x610/0xa10
[  227.565938][T10847]  obj_cgroup_charge_pages+0xa6/0x150
[  227.565982][T10847]  __memcg_kmem_charge_page+0x9f/0x170
[  227.566095][T10847]  __alloc_frozen_pages_noprof+0x18f/0x360
[  227.566137][T10847]  alloc_pages_mpol+0xb3/0x260
[  227.566245][T10847]  alloc_pages_noprof+0x90/0x130
[  227.566319][T10847]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  227.566457][T10847]  __kvmalloc_node_noprof+0x492/0x6b0
[  227.566493][T10847]  ? ip_set_alloc+0x24/0x30
[  227.566537][T10847]  ? ip_set_alloc+0x24/0x30
[  227.566636][T10847]  ip_set_alloc+0x24/0x30
[  227.566669][T10847]  hash_netiface_create+0x282/0x740
[  227.566714][T10847]  ? __pfx_hash_netiface_create+0x10/0x10
[  227.566833][T10847]  ip_set_create+0x3cc/0x970
[  227.566862][T10847]  ? _raw_spin_unlock+0x26/0x50
[  227.566982][T10847]  nfnetlink_rcv_msg+0x4c6/0x590
[  227.567051][T10847]  netlink_rcv_skb+0x123/0x220
[  227.567094][T10847]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  227.567215][T10847]  nfnetlink_rcv+0x167/0x16c0
[  227.567251][T10847]  ? kmem_cache_free+0xe3/0x3a0
[  227.567278][T10847]  ? __kfree_skb+0x109/0x150
[  227.567310][T10847]  ? nlmon_xmit+0x4f/0x60
[  227.567390][T10847]  ? consume_skb+0x49/0x150
[  227.567426][T10847]  ? nlmon_xmit+0x4f/0x60
[  227.567453][T10847]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  227.567495][T10847]  ? __dev_queue_xmit+0x13a6/0x1ee0
[  227.567606][T10847]  ? __dev_queue_xmit+0x148/0x1ee0
[  227.567644][T10847]  ? ref_tracker_free+0x37d/0x3e0
[  227.567681][T10847]  ? __netlink_deliver_tap+0x4dc/0x500
[  227.567871][T10847]  netlink_unicast+0x5c0/0x690
[  227.567963][T10847]  netlink_sendmsg+0x58b/0x6b0
[  227.568013][T10847]  ? __pfx_netlink_sendmsg+0x10/0x10
[  227.568058][T10847]  __sock_sendmsg+0x145/0x180
[  227.568086][T10847]  ____sys_sendmsg+0x31e/0x4a0
[  227.568202][T10847]  ___sys_sendmsg+0x17b/0x1d0
[  227.568318][T10847]  __x64_sys_sendmsg+0xd4/0x160
[  227.568364][T10847]  x64_sys_call+0x17ba/0x3000
[  227.568399][T10847]  do_syscall_64+0xca/0x2b0
[  227.568508][T10847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.568559][T10847] RIP: 0033:0x7f475a82f749
[  227.568582][T10847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.568627][T10847] RSP: 002b:00007f4759276038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  227.568657][T10847] RAX: ffffffffffffffda RBX: 00007f475aa86090 RCX: 00007f475a82f749
[  227.568674][T10847] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  227.568690][T10847] RBP: 00007f475a8b3f91 R08: 0000000000000000 R09: 0000000000000000
[  227.568708][T10847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.568740][T10847] R13: 00007f475aa86128 R14: 00007f475aa86090 R15: 00007fffad954848
[  227.568770][T10847]  </TASK>
[  227.876107][T10851] bridge_slave_1: entered allmulticast mode
[  227.881496][T10847] memory: usage 307200kB, limit 307200kB, failcnt 5176
[  227.893806][T10851] bridge_slave_1: entered promiscuous mode
[  227.898057][T10847] memory+swap: usage 309328kB, limit 9007199254740988kB, failcnt 0
[  227.918949][T10847] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[  227.926384][T10847] Memory cgroup stats for /syz2:
[  227.938647][T10851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  227.953104][ T8741] tipc: Disabling bearer <udp:syz2>
[  227.958440][ T8741] tipc: Left network mode
[  227.969455][T10851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  227.979022][T10847] cache 16384
[  227.981023][T10917] netlink: 14593 bytes leftover after parsing attributes in process `syz.5.2563'.
[  227.982431][T10847] rss 0
[  227.982441][T10847] shmem 0
[  227.997561][T10847] mapped_file 0
[  228.001098][T10847] dirty 0
[  228.004249][T10847] writeback 0
[  228.007585][T10847] workingset_refault_anon 1137
[  228.012429][T10847] workingset_refault_file 13703
[  228.017556][T10847] swap 2179072
[  228.021043][T10847] swapcached 0
[  228.024436][T10847] pgpgin 194618
[  228.028052][T10847] pgpgout 194614
[  228.031772][T10847] pgfault 181407
[  228.035575][T10847] pgmajfault 834
[  228.039155][T10847] inactive_anon 0
[  228.042810][T10847] active_anon 0
[  228.046625][T10847] inactive_file 16384
[  228.050728][T10847] active_file 0
[  228.054210][T10847] unevictable 0
[  228.057726][T10847] hierarchical_memory_limit 314572800
[  228.063114][T10847] hierarchical_memsw_limit 9223372036854771712
[  228.069331][T10847] total_cache 16384
[  228.073172][T10847] total_rss 0
[  228.076522][T10847] total_shmem 0
[  228.080340][T10847] total_mapped_file 0
[  228.084564][T10847] total_dirty 0
[  228.088175][T10847] total_writeback 0
[  228.092023][T10847] total_workingset_refault_anon 1137
[  228.097855][T10847] total_workingset_refault_file 13703
[  228.103290][T10847] total_swap 2179072
[  228.107244][T10847] total_swapcached 0
[  228.111339][T10847] total_pgpgin 194618
[  228.115347][T10847] total_pgpgout 194614
[  228.119468][T10847] total_pgfault 181407
[  228.123558][T10847] total_pgmajfault 834
[  228.127694][T10847] total_inactive_anon 0
[  228.131869][T10847] total_active_anon 0
[  228.135964][T10847] total_inactive_file 16384
[  228.140490][T10847] total_active_file 0
[  228.145182][T10847] total_unevictable 0
[  228.149220][T10847] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2542,pid=10843,uid=0
[  228.164081][T10847] Memory cgroup out of memory: Killed process 10843 (syz.2.2542) total-vm:100384kB, anon-rss:1136kB, file-rss:26496kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[  228.182426][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.195256][ T8741] hsr_slave_0: left promiscuous mode
[  228.201235][ T8741] hsr_slave_1: left promiscuous mode
[  228.225684][ T8741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.233152][ T8741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.242507][T10921] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2565'.
[  228.299802][ T8741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.307629][ T8741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.430234][ T8741] veth1_macvtap: left promiscuous mode
[  228.454602][ T8741] veth0_macvtap: left promiscuous mode
[  228.480945][ T8741] veth1_vlan: left promiscuous mode
[  228.495580][ T8741] veth0_vlan: left promiscuous mode
[  228.703721][ T8741] team0 (unregistering): Port device team_slave_1 removed
[  228.727127][ T8741] team0 (unregistering): Port device team_slave_0 removed
[  228.827515][T10937] loop2: detected capacity change from 0 to 128
[  228.839218][ T3383] infiniband syz1: ib_query_port failed (-19)
[  228.842974][T10851] team0: Port device team_slave_0 added
[  228.862060][T10937] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  228.876777][T10851] team0: Port device team_slave_1 added
[  228.905463][T10851] batman_adv: batadv0: Adding interface: batadv_slave_0
[  228.912534][T10851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  228.938609][T10851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  228.955168][T10937] ext4 filesystem being mounted at /487/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.994180][   T29] kauditd_printk_skb: 1004 callbacks suppressed
[  228.994196][   T29] audit: type=1400 audit(1768324433.437:42420): avc:  denied  { setattr } for  pid=10936 comm="syz.2.2571" path="/487/file1/file1" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  229.058500][T10851] batman_adv: batadv0: Adding interface: batadv_slave_1
[  229.065640][T10851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  229.091699][T10851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  229.129089][T10851] hsr_slave_0: entered promiscuous mode
[  229.135458][T10851] hsr_slave_1: entered promiscuous mode
[  229.141782][T10851] debugfs: 'hsr0' already exists in 'hsr'
[  229.144968][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  229.147581][T10851] Cannot create hsr debugfs directory
[  229.235843][T10945] loop2: detected capacity change from 0 to 2048
[  229.259280][T10945] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  229.482280][ T8737] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  229.498504][ T8737] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  229.511051][ T8737] EXT4-fs (loop2): This should not happen!! Data will be lost
[  229.511051][ T8737] 
[  229.520832][ T8737] EXT4-fs (loop2): Total free blocks count 0
[  229.526963][ T8737] EXT4-fs (loop2): Free/Dirty block details
[  229.532895][ T8737] EXT4-fs (loop2): free_blocks=2415919104
[  229.538754][ T8737] EXT4-fs (loop2): dirty_blocks=2304
[  229.544067][ T8737] EXT4-fs (loop2): Block reservation details
[  229.550167][ T8737] EXT4-fs (loop2): i_reserved_data_blocks=144
[  229.568393][ T8737] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2048 with max blocks 250 with error 28
[  229.597546][T10950] loop1: detected capacity change from 0 to 512
[  229.616946][T10955] loop3: detected capacity change from 0 to 128
[  229.682982][T10957] netlink: 'syz.5.2576': attribute type 7 has an invalid length.
[  229.712962][T10851] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  229.754312][T10851] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  229.766655][T10851] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  229.777945][T10851] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  229.845083][T10950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.868965][T10966] loop5: detected capacity change from 0 to 2048
[  229.890844][T10950] ext4 filesystem being mounted at /446/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  229.904743][T10851] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.920419][T10966] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  229.933656][T10851] 8021q: adding VLAN 0 to HW filter on device team0
[  229.957283][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.974826][ T8741] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.982010][ T8741] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.032852][ T8741] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.040042][ T8741] bridge0: port 2(bridge_slave_1) entered forwarding state
[  230.101537][T10972] netlink: 'syz.1.2578': attribute type 1 has an invalid length.
[  230.203365][T10973] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  230.278335][T10973] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 816 with error 28
[  230.290892][T10973] EXT4-fs (loop5): This should not happen!! Data will be lost
[  230.290892][T10973] 
[  230.300676][T10973] EXT4-fs (loop5): Total free blocks count 0
[  230.306810][T10973] EXT4-fs (loop5): Free/Dirty block details
[  230.312755][T10973] EXT4-fs (loop5): free_blocks=2415919104
[  230.318668][T10973] EXT4-fs (loop5): dirty_blocks=832
[  230.324132][T10973] EXT4-fs (loop5): Block reservation details
[  230.330225][T10973] EXT4-fs (loop5): i_reserved_data_blocks=52
[  230.384749][ T8737] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  230.408678][T10851] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.520795][T10993] random: crng reseeded on system resumption
[  230.520835][   T29] audit: type=1400 audit(1768324434.967:42421): avc:  denied  { write } for  pid=10991 comm="syz.3.2580" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  230.560429][T10996] loop2: detected capacity change from 0 to 2048
[  230.589444][T10996] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  230.624333][ T8734] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  230.647823][   T29] audit: type=1400 audit(1768324435.097:42422): avc:  denied  { connect } for  pid=10991 comm="syz.3.2580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  230.665814][ T8734] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 100 with error 28
[  230.680319][ T8734] EXT4-fs (loop2): This should not happen!! Data will be lost
[  230.680319][ T8734] 
[  230.690085][ T8734] EXT4-fs (loop2): Total free blocks count 0
[  230.696289][ T8734] EXT4-fs (loop2): Free/Dirty block details
[  230.702312][ T8734] EXT4-fs (loop2): free_blocks=2415919104
[  230.708118][ T8734] EXT4-fs (loop2): dirty_blocks=112
[  230.713348][ T8734] EXT4-fs (loop2): Block reservation details
[  230.719394][ T8734] EXT4-fs (loop2): i_reserved_data_blocks=7
[  230.794632][T10851] veth0_vlan: entered promiscuous mode
[  230.801358][   T29] audit: type=1326 audit(1768324435.237:42423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.825117][   T29] audit: type=1326 audit(1768324435.237:42424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.827265][ T8734] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 100 with max blocks 74 with error 28
[  230.848794][   T29] audit: type=1326 audit(1768324435.237:42425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.848839][   T29] audit: type=1326 audit(1768324435.237:42426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.848874][   T29] audit: type=1326 audit(1768324435.237:42427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.848901][   T29] audit: type=1326 audit(1768324435.237:42428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.848938][   T29] audit: type=1326 audit(1768324435.237:42429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.3.2585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  230.908924][T10851] veth1_vlan: entered promiscuous mode
[  230.999545][T10974] syz.5.2577 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  231.013883][T10974] CPU: 0 UID: 0 PID: 10974 Comm: syz.5.2577 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  231.013914][T10974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  231.013981][T10974] Call Trace:
[  231.013987][T10974]  <TASK>
[  231.013996][T10974]  __dump_stack+0x1d/0x30
[  231.014030][T10974]  dump_stack_lvl+0x95/0xd0
[  231.014098][T10974]  dump_stack+0x15/0x1b
[  231.014119][T10974]  dump_header+0x81/0x240
[  231.014145][T10974]  oom_kill_process+0x295/0x350
[  231.014177][T10974]  out_of_memory+0x97b/0xb80
[  231.014211][T10974]  try_charge_memcg+0x610/0xa10
[  231.014265][T10974]  obj_cgroup_charge_pages+0xa6/0x150
[  231.014305][T10974]  __memcg_kmem_charge_page+0x9f/0x170
[  231.014400][T10974]  __alloc_frozen_pages_noprof+0x18f/0x360
[  231.014445][T10974]  alloc_pages_mpol+0xb3/0x260
[  231.014531][T10974]  alloc_pages_noprof+0x90/0x130
[  231.014569][T10974]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  231.014682][T10974]  __kvmalloc_node_noprof+0x492/0x6b0
[  231.014713][T10974]  ? ip_set_alloc+0x24/0x30
[  231.014748][T10974]  ? ip_set_alloc+0x24/0x30
[  231.014788][T10974]  ip_set_alloc+0x24/0x30
[  231.014836][T10974]  hash_netiface_create+0x282/0x740
[  231.014884][T10974]  ? __pfx_hash_netiface_create+0x10/0x10
[  231.014922][T10974]  ip_set_create+0x3cc/0x970
[  231.015016][T10974]  ? __mutex_lock_slowpath+0xa/0x10
[  231.015083][T10974]  nfnetlink_rcv_msg+0x4c6/0x590
[  231.015172][T10974]  netlink_rcv_skb+0x123/0x220
[  231.015278][T10974]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  231.015317][T10974]  nfnetlink_rcv+0x167/0x16c0
[  231.015352][T10974]  ? kmem_cache_free+0xe3/0x3a0
[  231.015391][T10974]  ? __kfree_skb+0x109/0x150
[  231.015419][T10974]  ? nlmon_xmit+0x4f/0x60
[  231.015473][T10974]  ? consume_skb+0x49/0x150
[  231.015507][T10974]  ? nlmon_xmit+0x4f/0x60
[  231.015579][T10974]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  231.015624][T10974]  ? __dev_queue_xmit+0x13a6/0x1ee0
[  231.015698][T10974]  ? __dev_queue_xmit+0x148/0x1ee0
[  231.015748][T10974]  ? ref_tracker_free+0x37d/0x3e0
[  231.015780][T10974]  ? __netlink_deliver_tap+0x4dc/0x500
[  231.015857][T11010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2585'.
[  231.015827][T10974]  netlink_unicast+0x5c0/0x690
[  231.016028][T10974]  netlink_sendmsg+0x58b/0x6b0
[  231.016204][T10974]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.016316][T10974]  __sock_sendmsg+0x145/0x180
[  231.016475][T10974]  ____sys_sendmsg+0x31e/0x4a0
[  231.016589][T10974]  ___sys_sendmsg+0x17b/0x1d0
[  231.016773][T10974]  __x64_sys_sendmsg+0xd4/0x160
[  231.016920][T10974]  x64_sys_call+0x17ba/0x3000
[  231.017063][T10974]  do_syscall_64+0xca/0x2b0
[  231.017195][T10974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.017273][T10974] RIP: 0033:0x7f3df276f749
[  231.017367][T10974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.017454][T10974] RSP: 002b:00007f3df1195038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  231.017536][T10974] RAX: ffffffffffffffda RBX: 00007f3df29c6180 RCX: 00007f3df276f749
[  231.017581][T10974] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  231.017683][T10974] RBP: 00007f3df27f3f91 R08: 0000000000000000 R09: 0000000000000000
[  231.017782][T10974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.017826][T10974] R13: 00007f3df29c6218 R14: 00007f3df29c6180 R15: 00007ffdf5aee8e8
[  231.017904][T10974]  </TASK>
[  231.018031][T10974] memory: usage 307200kB, limit 307200kB, failcnt 5838
[  231.241413][T10851] veth0_macvtap: entered promiscuous mode
[  231.244523][T10974] memory+swap: usage 308940kB, limit 9007199254740988kB, failcnt 0
[  231.278254][T10851] veth1_macvtap: entered promiscuous mode
[  231.278734][T10974] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[  231.373385][T10851] batman_adv: batadv0: Interface activated: batadv_slave_0
[  231.376548][T10974] Memory cgroup stats for /syz5:
[  231.430416][T10851] batman_adv: batadv0: Interface activated: batadv_slave_1
[  231.457086][T10974] cache 8192
[  231.460445][T10974] rss 4096
[  231.462543][ T8741] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.463488][T10974] shmem 0
[  231.463499][T10974] mapped_file 0
[  231.463507][T10974] dirty 0
[  231.463513][T10974] writeback 4096
[  231.463520][T10974] workingset_refault_anon 1292
[  231.463529][T10974] workingset_refault_file 3556
[  231.495066][T10974] swap 1769472
[  231.498495][T10974] swapcached 36864
[  231.502242][T10974] pgpgin 164289
[  231.505841][T10974] pgpgout 164278
[  231.509414][T10974] pgfault 169153
[  231.512986][T10974] pgmajfault 775
[  231.516582][T10974] inactive_anon 32768
[  231.520623][T10974] active_anon 4096
[  231.524381][T10974] inactive_file 8192
[  231.528366][T10974] active_file 0
[  231.531906][T10974] unevictable 0
[  231.535384][T10974] hierarchical_memory_limit 314572800
[  231.540807][T10974] hierarchical_memsw_limit 9223372036854771712
[  231.547010][T10974] total_cache 8192
[  231.550785][T10974] total_rss 4096
[  231.554404][T10974] total_shmem 0
[  231.558047][T10974] total_mapped_file 0
[  231.562055][T10974] total_dirty 0
[  231.565646][T10974] total_writeback 4096
[  231.569739][T10974] total_workingset_refault_anon 1292
[  231.575225][T10974] total_workingset_refault_file 3556
[  231.580561][T10974] total_swap 1769472
[  231.584517][T10974] total_swapcached 36864
[  231.588981][T10974] total_pgpgin 164289
[  231.592996][T10974] total_pgpgout 164278
[  231.597218][T10974] total_pgfault 169153
[  231.601303][T10974] total_pgmajfault 775
[  231.605444][T10974] total_inactive_anon 32768
[  231.610016][T10974] total_active_anon 4096
[  231.610379][ T8741] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.614370][T10974] total_inactive_file 8192
[  231.627444][T10974] total_active_file 0
[  231.631561][T10974] total_unevictable 0
[  231.635629][T10974] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2577,pid=10964,uid=0
[  231.650533][T10974] Memory cgroup out of memory: Killed process 10964 (syz.5.2577) total-vm:100384kB, anon-rss:1136kB, file-rss:26708kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[  231.680168][T11018] loop1: detected capacity change from 0 to 2048
[  231.695765][ T8741] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.704663][ T8741] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  231.737229][T11018] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  231.825634][T11018] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  231.840776][T11018] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1712 with error 28
[  231.853392][T11018] EXT4-fs (loop1): This should not happen!! Data will be lost
[  231.853392][T11018] 
[  231.863189][T11018] EXT4-fs (loop1): Total free blocks count 0
[  231.869313][T11018] EXT4-fs (loop1): Free/Dirty block details
[  231.875239][T11018] EXT4-fs (loop1): free_blocks=2415919104
[  231.881163][T11018] EXT4-fs (loop1): dirty_blocks=1728
[  231.886609][T11018] EXT4-fs (loop1): Block reservation details
[  231.892686][T11018] EXT4-fs (loop1): i_reserved_data_blocks=108
[  231.916644][T11028] loop4: detected capacity change from 0 to 2048
[  231.958213][T11028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  232.150474][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  232.199454][T11039] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  232.244979][T11039] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 928 with error 28
[  232.257462][T11039] EXT4-fs (loop4): This should not happen!! Data will be lost
[  232.257462][T11039] 
[  232.267353][T11039] EXT4-fs (loop4): Total free blocks count 0
[  232.273378][T11039] EXT4-fs (loop4): Free/Dirty block details
[  232.279328][T11039] EXT4-fs (loop4): free_blocks=2415919104
[  232.285159][T11039] EXT4-fs (loop4): dirty_blocks=944
[  232.290428][T11039] EXT4-fs (loop4): Block reservation details
[  232.296490][T11039] EXT4-fs (loop4): i_reserved_data_blocks=59
[  232.407650][T11046] loop1: detected capacity change from 0 to 512
[  232.483174][T11052] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2598'.
[  232.523548][T11056] 9p: Bad value for 'rfdno'
[  232.572979][T11046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.592291][T11046] ext4 filesystem being mounted at /454/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  232.638742][T11064] loop3: detected capacity change from 0 to 1024
[  232.646925][T11064] EXT4-fs: Ignoring removed bh option
[  232.652980][T11064] EXT4-fs: inline encryption not supported
[  232.676466][ T8735] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  232.695853][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.716885][T11068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  232.765987][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  232.775563][T11076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  232.820270][T11082] random: crng reseeded on system resumption
[  232.832862][T11084] syz_tun: entered allmulticast mode
[  232.849914][T11083] syz_tun: left allmulticast mode
[  233.000826][ T8735] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  233.026296][ T8735] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  233.038850][ T8735] EXT4-fs (loop1): This should not happen!! Data will be lost
[  233.038850][ T8735] 
[  233.048708][ T8735] EXT4-fs (loop1): Total free blocks count 0
[  233.054797][ T8735] EXT4-fs (loop1): Free/Dirty block details
[  233.060789][ T8735] EXT4-fs (loop1): free_blocks=2415919104
[  233.066580][ T8735] EXT4-fs (loop1): dirty_blocks=3296
[  233.071923][ T8735] EXT4-fs (loop1): Block reservation details
[  233.078096][ T8735] EXT4-fs (loop1): i_reserved_data_blocks=209
[  233.098218][T11085] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  233.185725][T11098] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  233.350588][T11091] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.396001][T11109] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  233.435780][T11109] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 980 with error 28
[  233.448339][T11109] EXT4-fs (loop5): This should not happen!! Data will be lost
[  233.448339][T11109] 
[  233.458095][T11109] EXT4-fs (loop5): Total free blocks count 0
[  233.464119][T11109] EXT4-fs (loop5): Free/Dirty block details
[  233.470149][T11109] EXT4-fs (loop5): free_blocks=2415919104
[  233.476024][T11109] EXT4-fs (loop5): dirty_blocks=992
[  233.481327][T11109] EXT4-fs (loop5): Block reservation details
[  233.487748][T11109] EXT4-fs (loop5): i_reserved_data_blocks=62
[  233.496369][T11091] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  233.529563][T11119] random: crng reseeded on system resumption
[  233.710804][T10851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.052107][  T320] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  234.145681][   T29] kauditd_printk_skb: 240 callbacks suppressed
[  234.145716][   T29] audit: type=1326 audit(1768324438.587:42670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.175610][   T29] audit: type=1326 audit(1768324438.587:42671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.199365][   T29] audit: type=1326 audit(1768324438.587:42672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.223423][   T29] audit: type=1326 audit(1768324438.587:42673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.247063][   T29] audit: type=1326 audit(1768324438.587:42674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f207d0ddf90 code=0x7ffc0000
[  234.270676][   T29] audit: type=1326 audit(1768324438.587:42675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.294407][   T29] audit: type=1326 audit(1768324438.587:42676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.318155][   T29] audit: type=1326 audit(1768324438.587:42677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.342243][   T29] audit: type=1326 audit(1768324438.587:42678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.366314][   T29] audit: type=1326 audit(1768324438.587:42679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11134 comm="syz.4.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f207d0df749 code=0x7ffc0000
[  234.574575][T11148] xt_CT: You must specify a L4 protocol and not use inversions on it
[  234.742088][T11152] set_capacity_and_notify: 5 callbacks suppressed
[  234.742105][T11152] loop5: detected capacity change from 0 to 2048
[  234.833889][T11150] loop2: detected capacity change from 0 to 512
[  234.906472][T11164] loop4: detected capacity change from 0 to 2048
[  234.931824][T11159] loop1: detected capacity change from 0 to 1024
[  234.960772][T11159] EXT4-fs: Ignoring removed bh option
[  234.970923][T11159] EXT4-fs: inline encryption not supported
[  234.999588][T11159] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  235.017941][T11159] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  235.018120][T11152] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  235.028423][T11164] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  235.051682][T11159] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.2640: lblock 2 mapped to illegal pblock 2 (length 1)
[  235.079599][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  235.084570][T11159] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.2640: lblock 0 mapped to illegal pblock 48 (length 1)
[  235.130912][T11150] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.144002][T11159] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.2640: Failed to acquire dquot type 0
[  235.157357][T11150] ext4 filesystem being mounted at /511/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  235.175610][T11159] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  235.205739][T11173] loop3: detected capacity change from 0 to 2048
[  235.237400][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.263923][T11159] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.2640: mark_inode_dirty error
[  235.286171][ T8734] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  235.301901][T11159] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  235.321294][T11175] netlink: 'syz.5.2642': attribute type 1 has an invalid length.
[  235.333788][T11159] EXT4-fs (loop1): 1 orphan inode deleted
[  235.345036][ T8734] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1430 with error 28
[  235.357792][ T8734] EXT4-fs (loop4): This should not happen!! Data will be lost
[  235.357792][ T8734] 
[  235.367609][ T8734] EXT4-fs (loop4): Total free blocks count 0
[  235.367872][ T8743] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:33: lblock 1 mapped to illegal pblock 1 (length 1)
[  235.373617][ T8734] EXT4-fs (loop4): Free/Dirty block details
[  235.389249][T11159] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.393807][ T8734] EXT4-fs (loop4): free_blocks=2415919104
[  235.412183][ T8734] EXT4-fs (loop4): dirty_blocks=1440
[  235.417723][ T8734] EXT4-fs (loop4): Block reservation details
[  235.423989][ T8734] EXT4-fs (loop4): i_reserved_data_blocks=96
[  235.441378][ T8743] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:33: Failed to release dquot type 0
[  235.467817][T11159] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.502263][T11159] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2640: Invalid inode table block 1 in block_group 0
[  235.516518][T11183] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2645'.
[  235.538478][T11159] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  235.556109][T11159] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz.1.2640: mark_inode_dirty error
[  235.580458][ T8734] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1430 with max blocks 448 with error 28
[  235.621864][T11186] loop5: detected capacity change from 0 to 2048
[  235.638942][T11186] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  235.733515][T11197] loop1: detected capacity change from 0 to 128
[  236.091314][T11172] syz.3.2643 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  236.102737][T11172] CPU: 0 UID: 0 PID: 11172 Comm: syz.3.2643 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  236.102774][T11172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  236.102870][T11172] Call Trace:
[  236.102878][T11172]  <TASK>
[  236.102888][T11172]  __dump_stack+0x1d/0x30
[  236.102921][T11172]  dump_stack_lvl+0x95/0xd0
[  236.102951][T11172]  dump_stack+0x15/0x1b
[  236.102978][T11172]  dump_header+0x81/0x240
[  236.103005][T11172]  oom_kill_process+0x295/0x350
[  236.103112][T11172]  out_of_memory+0x97b/0xb80
[  236.103144][T11172]  try_charge_memcg+0x610/0xa10
[  236.103260][T11172]  charge_memcg+0x51/0xc0
[  236.103301][T11172]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  236.103349][T11172]  __read_swap_cache_async+0x17b/0x2d0
[  236.103434][T11172]  swap_cluster_readahead+0x262/0x3c0
[  236.103528][T11172]  swapin_readahead+0xde/0x820
[  236.103607][T11172]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  236.103638][T11172]  ? __rcu_read_unlock+0x34/0x70
[  236.103665][T11172]  ? __rcu_read_unlock+0x4f/0x70
[  236.103692][T11172]  ? swap_cache_get_folio+0x277/0x280
[  236.103776][T11172]  do_swap_page+0x2b4/0x21e0
[  236.103818][T11172]  ? __pfx_default_wake_function+0x10/0x10
[  236.103942][T11172]  handle_mm_fault+0x9d8/0x2c60
[  236.104029][T11172]  do_user_addr_fault+0x630/0x1080
[  236.104065][T11172]  exc_page_fault+0x62/0xa0
[  236.104129][T11172]  asm_exc_page_fault+0x26/0x30
[  236.104156][T11172] RIP: 0033:0x7fbf4290f010
[  236.104176][T11172] Code: ce ff ff ff 3f 48 3b 34 c1 0f 84 3b 01 00 00 48 83 c0 01 48 83 f8 04 75 ec 31 f6 80 7c 24 1e 00 0f 85 8e 01 00 00 41 83 c7 01 <45> 3b 78 04 0f 82 6c ff ff ff 80 7b 4e 00 0f 84 17 03 00 00 48 83
[  236.104195][T11172] RSP: 002b:00007fff73087370 EFLAGS: 00010202
[  236.104211][T11172] RAX: 000000110c270000 RBX: 00007fbf437b5720 RCX: 0000000000000006
[  236.104224][T11172] RDX: 0000000000001d34 RSI: 0000000000002074 RDI: 0000000000000040
[  236.104277][T11172] RBP: ffffffff81981d34 R08: 00007fbf42c86128 R09: 00007fbf42c72000
[  236.104291][T11172] R10: 00007fbf4209d008 R11: 000000000000000c R12: 000000000000000c
[  236.104304][T11172] R13: 0000000000000000 R14: ffffffff8198160f R15: 000000000000000d
[  236.104373][T11172]  ? __fget_files+0x17f/0x1c0
[  236.104472][T11172]  ? fdget_pos+0x44/0x1d0
[  236.104503][T11172]  </TASK>
[  236.104517][T11172] memory: usage 307200kB, limit 307200kB, failcnt 15284
[  236.329011][T11172] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
[  236.337008][T11172] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  236.344314][T11172] Memory cgroup stats for /syz3:
[  236.365384][T11206] loop4: detected capacity change from 0 to 2048
[  236.407743][T11172] cache 0
[  236.410741][T11172] rss 0
[  236.413521][T11172] shmem 0
[  236.416510][T11172] mapped_file 0
[  236.420003][T11172] dirty 0
[  236.422957][T11172] writeback 8192
[  236.426541][T11172] workingset_refault_anon 3735
[  236.431327][T11172] workingset_refault_file 7820
[  236.436137][T11172] swap 389120
[  236.439447][T11172] swapcached 8192
[  236.443092][T11172] pgpgin 252174
[  236.446656][T11172] pgpgout 252172
[  236.450273][T11172] pgfault 221994
[  236.453837][T11172] pgmajfault 1382
[  236.457536][T11172] inactive_anon 8192
[  236.461435][T11172] active_anon 0
[  236.464903][T11172] inactive_file 0
[  236.468569][T11172] active_file 0
[  236.472035][T11172] unevictable 0
[  236.475604][T11172] hierarchical_memory_limit 314572800
[  236.480988][T11172] hierarchical_memsw_limit 9223372036854771712
[  236.487245][T11172] total_cache 0
[  236.490726][T11172] total_rss 0
[  236.494099][T11172] total_shmem 0
[  236.497600][T11172] total_mapped_file 0
[  236.501623][T11172] total_dirty 0
[  236.505103][T11172] total_writeback 8192
[  236.509222][T11172] total_workingset_refault_anon 3735
[  236.514507][T11172] total_workingset_refault_file 7820
[  236.519812][T11172] total_swap 389120
[  236.523633][T11172] total_swapcached 8192
[  236.527814][T11172] total_pgpgin 252174
[  236.531873][T11172] total_pgpgout 252172
[  236.535963][T11172] total_pgfault 221994
[  236.540037][T11172] total_pgmajfault 1382
[  236.544204][T11172] total_inactive_anon 8192
[  236.548737][T11172] total_active_anon 0
[  236.552727][T11172] total_inactive_file 0
[  236.556977][T11172] total_active_file 0
[  236.560986][T11172] total_unevictable 0
[  236.565047][T11172] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2643,pid=11172,uid=0
[  236.579781][T11172] Memory cgroup out of memory: Killed process 11172 (syz.3.2643) total-vm:96148kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  236.678401][T11206] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  236.700730][ T5939] bio_check_eod: 91 callbacks suppressed
[  236.700748][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.700748][ T5939] loop1: rw=1, sector=145, nr_sectors = 16 limit=128
[  236.721978][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.721978][ T5939] loop1: rw=1, sector=169, nr_sectors = 8 limit=128
[  236.748094][T10851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  236.785855][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.785855][ T5939] loop1: rw=1, sector=185, nr_sectors = 8 limit=128
[  236.799620][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.799620][ T5939] loop1: rw=1, sector=201, nr_sectors = 8 limit=128
[  236.813208][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.813208][ T5939] loop1: rw=1, sector=217, nr_sectors = 8 limit=128
[  236.827069][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.827069][ T5939] loop1: rw=1, sector=233, nr_sectors = 8 limit=128
[  236.840903][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.840903][ T5939] loop1: rw=1, sector=249, nr_sectors = 8 limit=128
[  236.854625][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.854625][ T5939] loop1: rw=1, sector=265, nr_sectors = 8 limit=128
[  236.874035][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.874035][ T5939] loop1: rw=1, sector=281, nr_sectors = 8 limit=128
[  236.887643][ T5939] kworker/u8:17: attempt to access beyond end of device
[  236.887643][ T5939] loop1: rw=1, sector=297, nr_sectors = 8 limit=128
[  236.937469][T11219] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.2654'.
[  237.011312][T11186] syz.5.2646 (11186) used greatest stack depth: 5960 bytes left
[  237.019971][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  237.026724][T11226] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.2660'.
[  237.057159][T11228] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.2662'.
[  237.092302][T11231] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11231 comm=syz.5.2661
[  237.119913][T11233] loop1: detected capacity change from 0 to 1024
[  237.127063][T11233] EXT4-fs: Ignoring removed bh option
[  237.132536][T11233] EXT4-fs: inline encryption not supported
[  237.176227][T11233] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  237.247805][T11233] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  237.258679][T11233] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.2663: lblock 2 mapped to illegal pblock 2 (length 1)
[  237.292746][T11233] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.2663: lblock 0 mapped to illegal pblock 48 (length 1)
[  237.328727][T11233] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.2663: Failed to acquire dquot type 0
[  237.352021][T11233] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  237.377383][T11233] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.2663: mark_inode_dirty error
[  237.404782][T11233] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  237.431483][T11233] EXT4-fs (loop1): 1 orphan inode deleted
[  237.445994][  T320] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  237.460605][  T320] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:6: Failed to release dquot type 0
[  237.466656][T11233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.497740][T11233] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.520028][T11233] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2663: Invalid inode table block 1 in block_group 0
[  237.533248][T11242] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2666'.
[  237.547047][T11233] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  237.557074][T11233] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz.1.2663: mark_inode_dirty error
[  237.792393][T11250] loop4: detected capacity change from 0 to 128
[  237.826655][T11250] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  237.839773][T11250] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.869469][T10851] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  237.899464][T11260] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.2673'.
[  237.920168][T11264] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2674'.
[  237.929737][T11259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  238.193483][T11284] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  238.205958][T11284] ext4 filesystem being mounted at /437/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.261092][ T4715] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  238.375799][T11293] netlink: 'syz.3.2686': attribute type 1 has an invalid length.
[  238.440585][T11300] netlink: 'syz.2.2689': attribute type 7 has an invalid length.
[  238.504569][T11305] EXT4-fs: Ignoring removed orlov option
[  238.522005][T11305] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.682296][T11315] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  238.696866][T11315] ext4 filesystem being mounted at /527/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.748599][ T3318] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  238.945318][T11327] EXT4-fs: Ignoring removed bh option
[  238.967750][T11275] SET target dimension over the limit!
[  238.981538][T11327] EXT4-fs: inline encryption not supported
[  238.998505][ T4715] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.006659][T11327] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  239.023589][T11327] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  239.032813][T11327] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.2700: lblock 2 mapped to illegal pblock 2 (length 1)
[  239.083157][T10851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  239.113107][T11327] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.2700: lblock 0 mapped to illegal pblock 48 (length 1)
[  239.157683][T11327] __quota_error: 1456 callbacks suppressed
[  239.157714][T11327] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  239.166317][T11339] FAULT_INJECTION: forcing a failure.
[  239.166317][T11339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.172661][T11327] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.2700: Failed to acquire dquot type 0
[  239.185729][T11339] CPU: 0 UID: 0 PID: 11339 Comm: syz.5.2706 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  239.185822][T11339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  239.185865][T11339] Call Trace:
[  239.185886][T11339]  <TASK>
[  239.185927][T11339]  __dump_stack+0x1d/0x30
[  239.186116][T11339]  dump_stack_lvl+0x95/0xd0
[  239.186213][T11339]  dump_stack+0x15/0x1b
[  239.186292][T11339]  should_fail_ex+0x265/0x280
[  239.186418][T11339]  should_fail+0xb/0x20
[  239.186484][T11339]  should_fail_usercopy+0x1a/0x20
[  239.186635][T11339]  _copy_from_user+0x1c/0xb0
[  239.186739][T11339]  ___sys_sendmsg+0xc1/0x1d0
[  239.186894][T11339]  __x64_sys_sendmsg+0xd4/0x160
[  239.187087][T11339]  x64_sys_call+0x17ba/0x3000
[  239.187185][T11339]  do_syscall_64+0xca/0x2b0
[  239.187374][T11339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.187457][T11339] RIP: 0033:0x7f3df276f749
[  239.187513][T11339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.187577][T11339] RSP: 002b:00007f3df11d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  239.187642][T11339] RAX: ffffffffffffffda RBX: 00007f3df29c5fa0 RCX: 00007f3df276f749
[  239.187766][T11339] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000005
[  239.187810][T11339] RBP: 00007f3df11d7090 R08: 0000000000000000 R09: 0000000000000000
[  239.187854][T11339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.187914][T11339] R13: 00007f3df29c6038 R14: 00007f3df29c5fa0 R15: 00007ffdf5aee8e8
[  239.187979][T11339]  </TASK>
[  239.235680][   T29] audit: type=1400 audit(1768324443.647:44129): avc:  denied  { setopt } for  pid=11337 comm="syz.5.2706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  239.375555][T11327] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  239.388500][T11327] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.2700: mark_inode_dirty error
[  239.411871][T11345] audit: audit_backlog=65 > audit_backlog_limit=64
[  239.418559][T11345] audit: audit_lost=8 audit_rate_limit=0 audit_backlog_limit=64
[  239.422241][T11347] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  239.426239][T11345] audit: backlog limit exceeded
[  239.444590][T11347] ext4 filesystem being mounted at /441/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.446208][   T29] audit: type=1326 audit(1768324443.687:44130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.3.2703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf42a2f749 code=0x7ffc0000
[  239.478707][   T29] audit: type=1326 audit(1768324443.687:44131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.3.2703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbf42a2f783 code=0x7ffc0000
[  239.502130][   T29] audit: type=1326 audit(1768324443.687:44132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.3.2703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fbf42a2f807 code=0x7ffc0000
[  239.525784][   T29] audit: type=1326 audit(1768324443.687:44133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.3.2703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fbf429e6bdd code=0x7ffc0000
[  239.549375][   T29] audit: type=1326 audit(1768324443.687:44134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11331 comm="syz.3.2703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fbf42a63e89 code=0x7ffc0000
[  239.573567][T11327] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  239.576809][ T4715] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  239.602677][T11327] EXT4-fs (loop2): 1 orphan inode deleted
[  239.616187][T11327] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.629148][ T5939] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  239.644145][ T5939] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:17: Failed to release dquot type 0
[  239.672072][T11327] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.682106][T11327] EXT4-fs error (device loop2): __ext4_get_inode_loc:4830: comm syz.2.2700: Invalid inode table block 1 in block_group 0
[  239.701609][T11327] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  239.711713][T11327] EXT4-fs error (device loop2): ext4_quota_off:7270: inode #3: comm syz.2.2700: mark_inode_dirty error
[  239.757376][T11362] Cannot find add_set index 0 as target
[  239.838029][T11364] set_capacity_and_notify: 10 callbacks suppressed
[  239.838083][T11364] loop4: detected capacity change from 0 to 2048
[  239.857738][T11364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  240.075922][T11372] loop5: detected capacity change from 0 to 1024
[  240.127243][T11372] EXT4-fs: Ignoring removed orlov option
[  240.141579][T11377] netlink: 'syz.3.2717': attribute type 1 has an invalid length.
[  240.180032][T11372] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.227821][T11383] loop3: detected capacity change from 0 to 128
[  240.777764][T11398] Cannot find add_set index 0 as target
[  240.864175][T11403] netlink: 'syz.2.2728': attribute type 1 has an invalid length.
[  240.879980][T11407] loop1: detected capacity change from 0 to 128
[  240.898129][T10851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  240.914810][T11407] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  240.966620][T11407] ext4 filesystem being mounted at /478/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  241.112906][T11416] syz_tun: entered allmulticast mode
[  241.136612][T11418] loop1: detected capacity change from 0 to 1024
[  241.143228][T11418] EXT4-fs: Ignoring removed bh option
[  241.149083][T11418] EXT4-fs: inline encryption not supported
[  241.187435][T11418] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  241.274631][T11423] loop4: detected capacity change from 0 to 2048
[  241.288147][T11418] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  241.317007][T11418] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.2735: lblock 2 mapped to illegal pblock 2 (length 1)
[  241.334898][T11418] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.2735: lblock 0 mapped to illegal pblock 48 (length 1)
[  241.356525][T11418] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.2735: Failed to acquire dquot type 0
[  241.383069][T11415] syz_tun: left allmulticast mode
[  241.450353][T11432] loop3: detected capacity change from 0 to 2048
[  241.484064][T11435] Cannot find add_set index 0 as target
[  241.498514][T11418] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  241.521334][T11433] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  241.555812][T11418] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.2735: mark_inode_dirty error
[  241.571576][T11418] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  241.582002][T11418] EXT4-fs (loop1): 1 orphan inode deleted
[  241.588687][T11433] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 918 with error 28
[  241.601191][T11433] EXT4-fs (loop4): This should not happen!! Data will be lost
[  241.601191][T11433] 
[  241.610915][T11433] EXT4-fs (loop4): Total free blocks count 0
[  241.616946][T11433] EXT4-fs (loop4): Free/Dirty block details
[  241.622955][T11433] EXT4-fs (loop4): free_blocks=2415919104
[  241.628794][T11433] EXT4-fs (loop4): dirty_blocks=928
[  241.634074][T11433] EXT4-fs (loop4): Block reservation details
[  241.640121][T11433] EXT4-fs (loop4): i_reserved_data_blocks=58
[  241.668521][ T5939] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  241.689369][T11438] netlink: 'syz.5.2742': attribute type 13 has an invalid length.
[  241.712155][ T5939] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:17: Failed to release dquot type 0
[  241.733308][  T320] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  241.745732][  T320] EXT4-fs (loop4): This should not happen!! Data will be lost
[  241.745732][  T320] 
[  241.778957][T11438] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  241.780639][T11418] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2735: Invalid inode table block 1 in block_group 0
[  241.813211][T11444] netlink: 'syz.2.2744': attribute type 1 has an invalid length.
[  241.826482][T11418] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  241.863505][T11418] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz.1.2735: mark_inode_dirty error
[  241.881824][T11448] loop5: detected capacity change from 0 to 128
[  241.909129][T11448] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  241.914153][T11451] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2747'.
[  242.017583][T11455] netlink: 'syz.1.2749': attribute type 7 has an invalid length.
[  242.361708][T11457] loop5: detected capacity change from 0 to 1024
[  242.373077][T11457] EXT4-fs: Ignoring removed orlov option
[  242.669054][T11474] syz_tun: entered allmulticast mode
[  242.715736][T11473] syz_tun: left allmulticast mode
[  242.823218][T11476] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11476 comm=syz.4.2756
[  243.157405][T11484] loop2: detected capacity change from 0 to 128
[  243.207685][T11484] ext4 filesystem being mounted at /542/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  243.231855][T11479] ext4 filesystem being mounted at /482/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  243.297764][T11491] netlink: 'syz.2.2760': attribute type 7 has an invalid length.
[  243.324116][T11495] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.2762'.
[  243.576246][T11506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2768'.
[  243.635729][T11509] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  243.644482][T11509] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  243.674711][T11511] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2770'.
[  243.692958][T11509] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.2769: Allocating blocks 41-42 which overlap fs metadata
[  243.722031][T11509] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2769: Failed to acquire dquot type 1
[  243.735889][T11509] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  243.756230][T11509] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2769: corrupted inode contents
[  243.799058][T11509] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.2769: mark_inode_dirty error
[  243.806300][T11518] netlink: 'syz.3.2772': attribute type 1 has an invalid length.
[  243.846018][T11509] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2769: corrupted inode contents
[  243.894990][T11523] netlink: 14593 bytes leftover after parsing attributes in process `syz.4.2775'.
[  243.907115][T11509] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.2769: mark_inode_dirty error
[  243.930536][T11509] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2769: corrupted inode contents
[  243.943330][T11509] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  243.952325][T11509] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2769: corrupted inode contents
[  243.964666][T11509] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.2769: mark_inode_dirty error
[  243.977000][T11509] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  243.989817][T11509] EXT4-fs (loop5): 1 truncate cleaned up
[  244.115679][T11541] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  244.124536][T11541] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  244.208939][T11541] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.2781: Allocating blocks 41-42 which overlap fs metadata
[  244.265932][T11541] __quota_error: 1819 callbacks suppressed
[  244.265952][T11541] Quota error (device loop5): write_blk: dquota write failed
[  244.279364][T11541] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[  244.297091][T11541] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.2781: Allocating blocks 41-42 which overlap fs metadata
[  244.314257][   T29] audit: type=1400 audit(1768324448.767:45947): avc:  denied  { ioctl } for  pid=11544 comm="syz.1.2782" path="socket:[29074]" dev="sockfs" ino=29074 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  244.373107][T11541] Quota error (device loop5): write_blk: dquota write failed
[  244.387068][   T29] audit: type=1400 audit(1768324448.797:45948): avc:  denied  { write } for  pid=11528 comm="syz.4.2777" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  244.415597][T11541] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  244.446740][T11541] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2781: Failed to acquire dquot type 1
[  244.474143][T11541] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  244.496489][T11541] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2781: corrupted inode contents
[  244.511069][T11541] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.2781: mark_inode_dirty error
[  244.526606][T11541] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2781: corrupted inode contents
[  244.577131][T11548] EXT4-fs: Ignoring removed orlov option
[  244.583755][T11541] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.2781: mark_inode_dirty error
[  244.601449][T11541] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2781: corrupted inode contents
[  244.626158][T11541] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  244.697930][T11556] netlink: 'syz.2.2784': attribute type 1 has an invalid length.
[  244.946599][   T29] audit: type=1326 audit(1768324449.377:45949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11537 comm="syz.3.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbf42a265e7 code=0x7ffc0000
[  244.970163][   T29] audit: type=1326 audit(1768324449.377:45950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11537 comm="syz.3.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbf429cb829 code=0x7ffc0000
[  244.993763][   T29] audit: type=1326 audit(1768324449.377:45951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11537 comm="syz.3.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbf42a265e7 code=0x7ffc0000
[  245.017322][   T29] audit: type=1326 audit(1768324449.377:45952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11537 comm="syz.3.2780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbf429cb829 code=0x7ffc0000
[  245.041225][T11541] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2781: corrupted inode contents
[  245.061874][T11541] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.2781: mark_inode_dirty error
[  245.085860][T11541] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  245.105427][T11541] EXT4-fs (loop5): 1 truncate cleaned up
[  245.133474][T11560] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2786'.
[  245.221566][T11566] FAULT_INJECTION: forcing a failure.
[  245.221566][T11566] name failslab, interval 1, probability 0, space 0, times 0
[  245.234355][T11566] CPU: 0 UID: 0 PID: 11566 Comm: syz.4.2789 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  245.234463][T11566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  245.234487][T11566] Call Trace:
[  245.234499][T11566]  <TASK>
[  245.234508][T11566]  __dump_stack+0x1d/0x30
[  245.234547][T11566]  dump_stack_lvl+0x95/0xd0
[  245.234573][T11566]  dump_stack+0x15/0x1b
[  245.234678][T11566]  should_fail_ex+0x265/0x280
[  245.234704][T11566]  should_failslab+0x8c/0xb0
[  245.234730][T11566]  __kvmalloc_node_noprof+0x149/0x6b0
[  245.234816][T11566]  ? nf_hook_entries_grow+0x1c1/0x460
[  245.234887][T11566]  nf_hook_entries_grow+0x1c1/0x460
[  245.234929][T11566]  ? pcpu_block_refresh_hint+0x10b/0x170
[  245.235039][T11566]  __nf_register_net_hook+0x18e/0x480
[  245.235124][T11566]  nf_register_net_hook+0x88/0x130
[  245.235183][T11566]  nf_register_net_hooks+0x44/0x150
[  245.235225][T11566]  nf_defrag_ipv4_enable+0x6e/0xc0
[  245.235258][T11566]  tproxy_tg4_check+0x2d/0x100
[  245.235283][T11566]  xt_check_target+0x28d/0x4c0
[  245.235395][T11566]  ? mutex_unlock+0x4f/0x90
[  245.235483][T11566]  ? xt_find_target+0x1cd/0x200
[  245.235523][T11566]  translate_table+0xc31/0xf90
[  245.235563][T11566]  do_ipt_set_ctl+0x66f/0x820
[  245.235588][T11566]  ? _raw_spin_unlock_bh+0x36/0x40
[  245.235712][T11566]  ? tcp_release_cb+0xf1/0x370
[  245.235803][T11566]  nf_setsockopt+0x199/0x1b0
[  245.235860][T11566]  ip_setsockopt+0x102/0x110
[  245.235918][T11566]  ipv6_setsockopt+0xfb/0x130
[  245.235943][T11566]  tcp_setsockopt+0x98/0xb0
[  245.235967][T11566]  sock_common_setsockopt+0x69/0x80
[  245.235994][T11566]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  245.236024][T11566]  __sys_setsockopt+0x184/0x200
[  245.236053][T11566]  __x64_sys_setsockopt+0x64/0x80
[  245.236088][T11566]  x64_sys_call+0x21d5/0x3000
[  245.236151][T11566]  do_syscall_64+0xca/0x2b0
[  245.236195][T11566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.236216][T11566] RIP: 0033:0x7f207d0df749
[  245.236234][T11566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.236294][T11566] RSP: 002b:00007f207bb47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  245.236316][T11566] RAX: ffffffffffffffda RBX: 00007f207d335fa0 RCX: 00007f207d0df749
[  245.236328][T11566] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  245.236342][T11566] RBP: 00007f207bb47090 R08: 0000000000000458 R09: 0000000000000000
[  245.236357][T11566] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  245.236372][T11566] R13: 00007f207d336038 R14: 00007f207d335fa0 R15: 00007ffe8eb72848
[  245.236433][T11566]  </TASK>
[  245.697769][T11581] Cannot find add_set index 0 as target
[  245.831205][T11594] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  245.864849][T11597] set_capacity_and_notify: 5 callbacks suppressed
[  245.864923][T11597] loop3: detected capacity change from 0 to 1024
[  245.909063][T11597] EXT4-fs: Ignoring removed bh option
[  245.914577][T11597] EXT4-fs: inline encryption not supported
[  245.976036][T11605] loop2: detected capacity change from 0 to 1024
[  245.982622][T11605] EXT4-fs: Ignoring removed bh option
[  245.988381][T11605] EXT4-fs: inline encryption not supported
[  245.995329][T11605] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  246.017299][T11605] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  246.037873][T11605] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 2: comm syz.2.2805: lblock 2 mapped to illegal pblock 2 (length 1)
[  246.056949][T11605] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 48: comm syz.2.2805: lblock 0 mapped to illegal pblock 48 (length 1)
[  246.071721][T11605] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.2805: Failed to acquire dquot type 0
[  246.083131][T11605] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  246.092820][T11605] EXT4-fs error (device loop2): ext4_evict_inode:253: inode #11: comm syz.2.2805: mark_inode_dirty error
[  246.105663][T11605] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  246.204065][T11617] loop5: detected capacity change from 0 to 512
[  246.254426][T11617] ext4 filesystem being mounted at /456/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  246.268395][T11605] EXT4-fs (loop2): 1 orphan inode deleted
[  246.286737][ T8741] EXT4-fs error (device loop2): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:31: lblock 1 mapped to illegal pblock 1 (length 1)
[  246.302682][ T8741] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:31: Failed to release dquot type 0
[  246.342855][T11605] EXT4-fs error (device loop2): __ext4_get_inode_loc:4830: comm syz.2.2805: Invalid inode table block 1 in block_group 0
[  246.387243][T11605] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  246.397299][T11605] EXT4-fs error (device loop2): ext4_quota_off:7270: inode #3: comm syz.2.2805: mark_inode_dirty error
[  246.427316][T11631] loop4: detected capacity change from 0 to 512
[  246.445306][T11631] msdos: Unknown parameter 'sys_immutáble'
[  246.599381][T11648] random: crng reseeded on system resumption
[  246.659453][T11647] loop1: detected capacity change from 0 to 512
[  246.713497][T11647] ext4 filesystem being mounted at /492/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  246.999121][T11622] loop3: detected capacity change from 0 to 32768
[  247.011907][T11630] xt_CT: You must specify a L4 protocol and not use inversions on it
[  247.069240][T11668] loop1: detected capacity change from 0 to 512
[  247.081412][T11668] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  247.090215][T11668] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  247.129615][T11668] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.2829: Allocating blocks 41-42 which overlap fs metadata
[  247.150244][T11668] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.2829: Allocating blocks 41-42 which overlap fs metadata
[  247.169046][T11676] netlink: 'syz.5.2832': attribute type 7 has an invalid length.
[  247.194618][T11668] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.2829: Failed to acquire dquot type 1
[  247.212964][T11668] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  247.229796][T11668] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.2829: corrupted inode contents
[  247.242528][T11668] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #12: comm syz.1.2829: mark_inode_dirty error
[  247.275988][T11668] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.2829: corrupted inode contents
[  247.299486][T11668] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #12: comm syz.1.2829: mark_inode_dirty error
[  247.317856][T11684] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2835'.
[  247.332956][T11668] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.2829: corrupted inode contents
[  247.346396][T11668] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  247.356064][T11668] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #12: comm syz.1.2829: corrupted inode contents
[  247.368500][T11668] EXT4-fs error (device loop1): ext4_truncate:4635: inode #12: comm syz.1.2829: mark_inode_dirty error
[  247.380182][T11668] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  247.380559][T11686] netlink: 'syz.2.2836': attribute type 1 has an invalid length.
[  247.390195][T11668] EXT4-fs (loop1): 1 truncate cleaned up
[  247.543020][T11706] loop3: detected capacity change from 0 to 2048
[  247.558085][T11713] netlink: 'syz.4.2844': attribute type 7 has an invalid length.
[  247.563159][T11712] loop5: detected capacity change from 0 to 2048
[  247.591201][T11718] loop4: detected capacity change from 0 to 128
[  247.622370][T11722] SET target dimension over the limit!
[  247.672450][T11726] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2850'.
[  247.784909][T11712] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  247.836120][T11712] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1662 with error 28
[  247.848686][T11712] EXT4-fs (loop5): This should not happen!! Data will be lost
[  247.848686][T11712] 
[  247.858381][T11712] EXT4-fs (loop5): Total free blocks count 0
[  247.864453][T11712] EXT4-fs (loop5): Free/Dirty block details
[  247.870408][T11712] EXT4-fs (loop5): free_blocks=2415919104
[  247.876273][T11712] EXT4-fs (loop5): dirty_blocks=1664
[  247.881620][T11712] EXT4-fs (loop5): Block reservation details
[  247.887676][T11712] EXT4-fs (loop5): i_reserved_data_blocks=104
[  248.146600][T11752] syz_tun: entered allmulticast mode
[  248.171519][T11751] syz_tun: left allmulticast mode
[  248.578677][T11774] EXT4-fs: Ignoring removed bh option
[  248.584225][T11774] EXT4-fs: inline encryption not supported
[  248.601852][T11774] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  248.628833][T11771] ext4 filesystem being mounted at /467/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  248.649216][T11774] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  248.662127][T11774] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.2869: lblock 2 mapped to illegal pblock 2 (length 1)
[  248.693048][T11774] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.2869: lblock 0 mapped to illegal pblock 48 (length 1)
[  248.708417][T11774] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.2869: Failed to acquire dquot type 0
[  248.719860][T11774] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  248.729407][T11774] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.2869: mark_inode_dirty error
[  248.740905][T11774] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  248.751151][T11774] EXT4-fs (loop1): 1 orphan inode deleted
[  248.757676][   T52] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  248.837903][   T52] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 0
[  248.869437][T11774] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2869: Invalid inode table block 1 in block_group 0
[  248.905761][T11774] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  248.937145][ T8732] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  248.957794][T11774] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz.1.2869: mark_inode_dirty error
[  249.045565][ T8732] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  249.058076][ T8732] EXT4-fs (loop2): This should not happen!! Data will be lost
[  249.058076][ T8732] 
[  249.067741][ T8732] EXT4-fs (loop2): Total free blocks count 0
[  249.073733][ T8732] EXT4-fs (loop2): Free/Dirty block details
[  249.079723][ T8732] EXT4-fs (loop2): free_blocks=2415919104
[  249.085450][ T8732] EXT4-fs (loop2): dirty_blocks=2896
[  249.090832][ T8732] EXT4-fs (loop2): Block reservation details
[  249.096834][ T8732] EXT4-fs (loop2): i_reserved_data_blocks=181
[  249.129446][T11785] ext4 filesystem being mounted at /468/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  249.255829][T11795] SET target dimension over the limit!
[  249.355653][T11805] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2879'.
[  249.456048][T11814] netlink: 'syz.4.2883': attribute type 1 has an invalid length.
[  249.463899][T11814] netlink: 'syz.4.2883': attribute type 2 has an invalid length.
[  249.488889][T11816] netlink: 'syz.5.2884': attribute type 7 has an invalid length.
[  249.516285][T11814] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2883'.
[  249.673202][T11825] EXT4-fs: Ignoring removed bh option
[  249.681816][T11825] EXT4-fs: inline encryption not supported
[  249.716193][T11825] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  249.752742][T11825] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  249.762090][T11825] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 2: comm syz.4.2887: lblock 2 mapped to illegal pblock 2 (length 1)
[  249.778884][T11825] __quota_error: 828 callbacks suppressed
[  249.778899][T11825] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  249.793026][T11825] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 48: comm syz.4.2887: lblock 0 mapped to illegal pblock 48 (length 1)
[  249.804785][   T29] audit: type=1326 audit(1768324454.247:46771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  249.808302][T11825] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  249.839527][T11825] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.2887: Failed to acquire dquot type 0
[  249.851069][T11825] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  249.860675][T11825] EXT4-fs error (device loop4): ext4_evict_inode:253: inode #11: comm syz.4.2887: mark_inode_dirty error
[  249.872160][T11825] EXT4-fs warning (device loop4): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  249.882564][T11825] EXT4-fs (loop4): 1 orphan inode deleted
[  249.895685][  T320] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  249.976040][  T320] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  249.984875][  T320] EXT4-fs error (device loop4): ext4_release_dquot:7022: comm kworker/u8:6: Failed to release dquot type 0
[  250.013278][T11813] syz.3.2877 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  250.027437][T11813] CPU: 0 UID: 0 PID: 11813 Comm: syz.3.2877 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  250.027521][T11813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  250.027601][T11813] Call Trace:
[  250.027609][T11813]  <TASK>
[  250.027619][T11813]  __dump_stack+0x1d/0x30
[  250.027650][T11813]  dump_stack_lvl+0x95/0xd0
[  250.027678][T11813]  dump_stack+0x15/0x1b
[  250.027707][T11813]  dump_header+0x81/0x240
[  250.027733][T11813]  oom_kill_process+0x295/0x350
[  250.027763][T11813]  out_of_memory+0x97b/0xb80
[  250.027788][T11813]  try_charge_memcg+0x610/0xa10
[  250.027854][T11813]  obj_cgroup_charge_pages+0xa6/0x150
[  250.027889][T11813]  __memcg_kmem_charge_page+0x9f/0x170
[  250.027920][T11813]  __alloc_frozen_pages_noprof+0x18f/0x360
[  250.028030][T11813]  alloc_pages_mpol+0xb3/0x260
[  250.028062][T11813]  alloc_pages_noprof+0x90/0x130
[  250.028168][T11813]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  250.028208][T11813]  __kvmalloc_node_noprof+0x492/0x6b0
[  250.028234][T11813]  ? ip_set_alloc+0x24/0x30
[  250.028273][T11813]  ? ip_set_alloc+0x24/0x30
[  250.028343][T11813]  ip_set_alloc+0x24/0x30
[  250.028380][T11813]  hash_netiface_create+0x282/0x740
[  250.028438][T11813]  ? __pfx_hash_netiface_create+0x10/0x10
[  250.028480][T11813]  ip_set_create+0x3cc/0x970
[  250.028519][T11813]  ? __nla_parse+0x40/0x60
[  250.028553][T11813]  nfnetlink_rcv_msg+0x4c6/0x590
[  250.028640][T11813]  netlink_rcv_skb+0x123/0x220
[  250.028703][T11813]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  250.028780][T11813]  nfnetlink_rcv+0x167/0x16c0
[  250.028812][T11813]  ? kmem_cache_free+0xe3/0x3a0
[  250.028840][T11813]  ? __kfree_skb+0x109/0x150
[  250.028873][T11813]  ? nlmon_xmit+0x4f/0x60
[  250.028898][T11813]  ? consume_skb+0x49/0x150
[  250.028930][T11813]  ? nlmon_xmit+0x4f/0x60
[  250.028955][T11813]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  250.029027][T11813]  ? __dev_queue_xmit+0x13a6/0x1ee0
[  250.029060][T11813]  ? __dev_queue_xmit+0x148/0x1ee0
[  250.029089][T11813]  ? ref_tracker_free+0x37d/0x3e0
[  250.029124][T11813]  ? __netlink_deliver_tap+0x4dc/0x500
[  250.029260][T11813]  netlink_unicast+0x5c0/0x690
[  250.029352][T11813]  netlink_sendmsg+0x58b/0x6b0
[  250.029423][T11813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.029463][T11813]  __sock_sendmsg+0x145/0x180
[  250.029498][T11813]  ____sys_sendmsg+0x31e/0x4a0
[  250.029545][T11813]  ___sys_sendmsg+0x17b/0x1d0
[  250.029608][T11813]  __x64_sys_sendmsg+0xd4/0x160
[  250.029666][T11813]  x64_sys_call+0x17ba/0x3000
[  250.029701][T11813]  do_syscall_64+0xca/0x2b0
[  250.029747][T11813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.029850][T11813] RIP: 0033:0x7fbf42a2f749
[  250.029871][T11813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.029896][T11813] RSP: 002b:00007fbf41476038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.029922][T11813] RAX: ffffffffffffffda RBX: 00007fbf42c86090 RCX: 00007fbf42a2f749
[  250.029936][T11813] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  250.029949][T11813] RBP: 00007fbf42ab3f91 R08: 0000000000000000 R09: 0000000000000000
[  250.029992][T11813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.030012][T11813] R13: 00007fbf42c86128 R14: 00007fbf42c86090 R15: 00007fff730872e8
[  250.030041][T11813]  </TASK>
[  250.030132][T11813] memory: usage 307200kB, limit 307200kB, failcnt 16647
[  250.103280][T11825] EXT4-fs error (device loop4): __ext4_get_inode_loc:4830: comm syz.4.2887: Invalid inode table block 1 in block_group 0
[  250.104776][T11813] memory+swap: usage 300784kB, limit 9007199254740988kB, failcnt 0
[  250.149846][T11825] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  250.150192][T11813] kmem: usage 294648kB, limit 9007199254740988kB, failcnt 0
[  250.162276][T11825] EXT4-fs error (device loop4): ext4_quota_off:7270: inode #3: comm syz.4.2887: mark_inode_dirty error
[  250.164152][T11813] Memory cgroup stats for /syz3
[  250.194470][   T29] audit: type=1326 audit(1768324454.287:46772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.197593][T11813] :
[  250.198126][T11813] cache 524288
[  250.201971][   T29] audit: type=1326 audit(1768324454.317:46773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.207326][T11813] rss 86016
[  250.207338][T11813] shmem 0
[  250.207348][T11813] mapped_file 65536
[  250.207359][T11813] dirty 0
[  250.212558][   T29] audit: type=1326 audit(1768324454.327:46774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.217679][T11813] writeback 0
[  250.217690][T11813] workingset_refault_anon 3958
[  250.222723][   T29] audit: type=1326 audit(1768324454.327:46775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.228194][T11813] workingset_refault_file 9908
[  250.232974][   T29] audit: type=1326 audit(1768324454.327:46776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.237744][T11813] swap 274432
[  250.237755][T11813] swapcached 118784
[  250.243038][   T29] audit: type=1326 audit(1768324454.327:46777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11833 comm="syz.1.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72f1fbf749 code=0x7ffc0000
[  250.247731][T11813] pgpgin 301681
[  250.247741][T11813] pgpgout 301523
[  250.247748][T11813] pgfault 246704
[  250.247757][T11813] pgmajfault 1554
[  250.520706][T11844] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  250.534445][T11813] inactive_anon 12288
[  250.534459][T11813] active_anon 110592
[  250.534500][T11813] inactive_file 0
[  250.539341][T11844] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  250.562881][T11813] active_file 524288
[  250.562894][T11813] unevictable 0
[  250.644526][T11813] hierarchical_memory_limit 314572800
[  250.649925][T11813] hierarchical_memsw_limit 9223372036854771712
[  250.656108][T11813] total_cache 524288
[  250.660024][T11813] total_rss 86016
[  250.663680][T11813] total_shmem 0
[  250.667179][T11813] total_mapped_file 65536
[  250.671524][T11813] total_dirty 0
[  250.674995][T11813] total_writeback 0
[  250.678843][T11813] total_workingset_refault_anon 3958
[  250.684251][T11813] total_workingset_refault_file 9908
[  250.689649][T11813] total_swap 274432
[  250.693472][T11813] total_swapcached 118784
[  250.697842][T11813] total_pgpgin 301681
[  250.701843][T11813] total_pgpgout 301523
[  250.705956][T11813] total_pgfault 246704
[  250.710113][T11813] total_pgmajfault 1554
[  250.714350][T11813] total_inactive_anon 12288
[  250.718976][T11813] total_active_anon 110592
[  250.723423][T11813] total_inactive_file 0
[  250.727614][T11813] total_active_file 524288
[  250.732046][T11813] total_unevictable 0
[  250.736064][T11813] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2877,pid=11801,uid=0
[  250.750823][T11813] Memory cgroup out of memory: Killed process 11813 (syz.3.2877) total-vm:94100kB, anon-rss:1136kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  250.787764][T11844] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.2893: Allocating blocks 41-42 which overlap fs metadata
[  250.812057][T11844] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4215: comm syz.5.2893: Allocating blocks 41-42 which overlap fs metadata
[  250.906277][T11844] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2893: Failed to acquire dquot type 1
[  250.929155][T11859] set_capacity_and_notify: 9 callbacks suppressed
[  250.929169][T11859] loop3: detected capacity change from 0 to 2048
[  250.944293][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2900'.
[  250.965950][T11844] EXT4-fs error (device loop5): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  251.019547][T11844] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2893: corrupted inode contents
[  251.051656][T11869] loop1: detected capacity change from 0 to 2048
[  251.077783][T11844] EXT4-fs error (device loop5): ext4_dirty_inode:6502: inode #12: comm syz.5.2893: mark_inode_dirty error
[  251.116553][T11869] Alternate GPT is invalid, using primary GPT.
[  251.122935][T11869]  loop1: p1 p2 p3
[  251.126705][T11869] loop1: partition table partially beyond EOD, truncated
[  251.136554][T11844] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2893: corrupted inode contents
[  251.157467][T11874] loop4: detected capacity change from 0 to 128
[  251.186101][T11844] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #12: comm syz.5.2893: mark_inode_dirty error
[  251.219081][T11844] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2893: corrupted inode contents
[  251.256507][T11844] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  251.265779][T11844] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #12: comm syz.5.2893: corrupted inode contents
[  251.284230][T11877] loop4: detected capacity change from 0 to 512
[  251.298405][T11844] EXT4-fs error (device loop5): ext4_truncate:4635: inode #12: comm syz.5.2893: mark_inode_dirty error
[  251.311203][T11879] loop2: detected capacity change from 0 to 2048
[  251.318918][T11844] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  251.333363][T11844] EXT4-fs (loop5): 1 truncate cleaned up
[  251.374057][T11877] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  251.429732][T11889] netlink: 'syz.3.2910': attribute type 7 has an invalid length.
[  251.465047][T11894] netlink: 'syz.5.2912': attribute type 1 has an invalid length.
[  251.521570][T11879] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  251.537094][T11879] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  251.549689][T11879] EXT4-fs (loop2): This should not happen!! Data will be lost
[  251.549689][T11879] 
[  251.559669][T11879] EXT4-fs (loop2): Total free blocks count 0
[  251.565743][T11879] EXT4-fs (loop2): Free/Dirty block details
[  251.571816][T11879] EXT4-fs (loop2): free_blocks=2415919104
[  251.577577][T11879] EXT4-fs (loop2): dirty_blocks=2352
[  251.582973][T11879] EXT4-fs (loop2): Block reservation details
[  251.589005][T11879] EXT4-fs (loop2): i_reserved_data_blocks=147
[  251.609642][T11902] loop5: detected capacity change from 0 to 1024
[  251.619868][T11891] ==================================================================
[  251.627971][T11891] BUG: KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
[  251.636311][T11891] 
[  251.638627][T11891] write to 0xffffea00050c50d8 of 8 bytes by task 11905 on cpu 1:
[  251.646335][T11891]  delete_from_page_cache_batch+0x2f6/0x6f0
[  251.652229][T11891]  truncate_inode_pages_range+0x1ba/0x780
[  251.657966][T11891]  truncate_pagecache_range+0x83/0xa0
[  251.663342][T11891]  ext4_truncate_page_cache_block_range+0x33f/0x3b0
[  251.669939][T11891]  ext4_punch_hole+0x216/0x790
[  251.674709][T11891]  ext4_fallocate+0x2d7/0x2f0
[  251.679390][T11891]  vfs_fallocate+0x3b6/0x400
[  251.683977][T11891]  madvise_vma_behavior+0x2a1/0x1ed0
[  251.689263][T11891]  madvise_do_behavior+0x5ee/0xa20
[  251.694373][T11891]  do_madvise+0x10e/0x190
[  251.698707][T11891]  __x64_sys_madvise+0x64/0x80
[  251.703469][T11891]  x64_sys_call+0x1c6b/0x3000
[  251.708140][T11891]  do_syscall_64+0xca/0x2b0
[  251.712669][T11891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.718558][T11891] 
[  251.720876][T11891] read to 0xffffea00050c50d8 of 8 bytes by task 11891 on cpu 0:
[  251.728498][T11891]  folio_mapping+0xa1/0xe0
[  251.732912][T11891]  evict_folios+0xe0b/0x35a0
[  251.737494][T11891]  try_to_shrink_lruvec+0x5b5/0x950
[  251.742689][T11891]  shrink_lruvec+0x22e/0x1b50
[  251.747358][T11891]  shrink_node+0x66c/0x2010
[  251.751849][T11891]  do_try_to_free_pages+0x3f6/0xcd0
[  251.757044][T11891]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  251.762947][T11891]  try_charge_memcg+0x383/0xa10
[  251.767798][T11891]  obj_cgroup_charge_pages+0xa6/0x150
[  251.773172][T11891]  __memcg_kmem_charge_page+0x9f/0x170
[  251.778632][T11891]  __alloc_frozen_pages_noprof+0x18f/0x360
[  251.784439][T11891]  alloc_pages_mpol+0xb3/0x260
[  251.789207][T11891]  alloc_pages_noprof+0x90/0x130
[  251.794152][T11891]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  251.800040][T11891]  __kvmalloc_node_noprof+0x492/0x6b0
[  251.805410][T11891]  ip_set_alloc+0x24/0x30
[  251.809773][T11891]  hash_netiface_create+0x282/0x740
[  251.814980][T11891]  ip_set_create+0x3cc/0x970
[  251.819577][T11891]  nfnetlink_rcv_msg+0x4c6/0x590
[  251.824514][T11891]  netlink_rcv_skb+0x123/0x220
[  251.829287][T11891]  nfnetlink_rcv+0x167/0x16c0
[  251.833960][T11891]  netlink_unicast+0x5c0/0x690
[  251.838719][T11891]  netlink_sendmsg+0x58b/0x6b0
[  251.843497][T11891]  __sock_sendmsg+0x145/0x180
[  251.848178][T11891]  ____sys_sendmsg+0x31e/0x4a0
[  251.852943][T11891]  ___sys_sendmsg+0x17b/0x1d0
[  251.857621][T11891]  __x64_sys_sendmsg+0xd4/0x160
[  251.862603][T11891]  x64_sys_call+0x17ba/0x3000
[  251.867308][T11891]  do_syscall_64+0xca/0x2b0
[  251.871823][T11891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.877729][T11891] 
[  251.880053][T11891] value changed: 0xffff8881061b2158 -> 0x0000000000000000
[  251.887181][T11891] 
[  251.889502][T11891] Reported by Kernel Concurrency Sanitizer on:
[  251.895643][T11891] CPU: 0 UID: 0 PID: 11891 Comm: syz.2.2908 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  251.905443][T11891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  251.915492][T11891] ==================================================================
[  251.924249][T11902] EXT4-fs: Ignoring removed bh option
[  251.930019][T11902] EXT4-fs: inline encryption not supported
[  251.940845][ T8732] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 286 with error 28
[  251.953555][ T8732] EXT4-fs (loop2): This should not happen!! Data will be lost
[  251.953555][ T8732] 
[  251.963299][T11902] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  251.992611][T11902] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  252.002196][T11902] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 2: comm syz.5.2913: lblock 2 mapped to illegal pblock 2 (length 1)
[  252.020678][T11902] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 48: comm syz.5.2913: lblock 0 mapped to illegal pblock 48 (length 1)
[  252.035828][T11902] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.2913: Failed to acquire dquot type 0
[  252.050069][T11902] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  252.059678][T11902] EXT4-fs error (device loop5): ext4_evict_inode:253: inode #11: comm syz.5.2913: mark_inode_dirty error
[  252.076837][T11902] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -117)
[  252.094015][T11902] EXT4-fs (loop5): 1 orphan inode deleted
[  252.105738][ T8732] EXT4-fs error (device loop5): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:23: lblock 1 mapped to illegal pblock 1 (length 1)
[  252.130292][ T8732] EXT4-fs error (device loop5): ext4_release_dquot:7022: comm kworker/u8:23: Failed to release dquot type 0
[  252.164176][T11902] EXT4-fs error (device loop5): __ext4_get_inode_loc:4830: comm syz.5.2913: Invalid inode table block 1 in block_group 0
[  252.177474][T11902] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6298: Corrupt filesystem
[  252.187289][T11902] EXT4-fs error (device loop5): ext4_quota_off:7270: inode #3: comm syz.5.2913: mark_inode_dirty error
[  252.298762][ T3318] EXT4-fs unmount: 45 callbacks suppressed