last executing test programs:

5m7.168764207s ago: executing program 32 (id=1546):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000003c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nouid32}]}, 0x1, 0x44e, &(0x7f0000000680)="$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")
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0xffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1c0)

4m26.33255176s ago: executing program 33 (id=2757):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
pipe(&(0x7f0000000500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fsopen(&(0x7f0000000340)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000005c0)='fd', 0x0, r1)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x2)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_PKEY_QUERY(0x18, r3, 0x0, &(0x7f0000000380)='\x00', 0x0)
r4 = fsmount(r2, 0x0, 0x2)
symlinkat(&(0x7f0000000080)='./file0\x00', r4, &(0x7f0000000380)='./file0\x00')
readlinkat(r4, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/206, 0xce)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x101000)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffe, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'rr\x00', 0x3d, 0xff, 0x7}, 0x2c)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x1c161, 0x10000, 0x0, 0x6, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1f071f, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x1, 0x9}, 0xa022, 0x4005, 0xb, 0x3, 0xfff, 0x20005, 0x8, 0x0, 0x0, 0x0, 0x8000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r5, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001680), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r6 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000003c0))
fsconfig$FSCONFIG_SET_BINARY(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @multicast1, @broadcast}, @echo_reply={0xe0}}}}}, 0x0)
r8 = openat$cgroup_subtree(r7, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)

4m11.445156607s ago: executing program 34 (id=3045):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x1c, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x7856bd75668a49d8}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x58, 0x8, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x58}}, 0x8010)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x4, 0x80}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x1}, @IFLA_XFRM_IF_ID={0x8}]}}}]}, 0x44}}, 0x40040)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7902009875f37538e486dd6317ce62667f2c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa88"], 0xfdef)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200"], 0xcfa4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

4m7.477182823s ago: executing program 3 (id=3138):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000005700)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000005640)=ANY=[@ANYBLOB="4800000010000104000000000000030000000000", @ANYRES32=0x0, @ANYBLOB="03800400000001001c0012800b00010067656e65766500000c0002800803001b140000f6090001"], 0x48}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)

4m7.472102254s ago: executing program 35 (id=3138):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000005700)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000005640)=ANY=[@ANYBLOB="4800000010000104000000000000030000000000", @ANYRES32=0x0, @ANYBLOB="03800400000001001c0012800b00010067656e65766500000c0002800803001b140000f6090001"], 0x48}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)

4m6.100705776s ago: executing program 36 (id=3174):
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async, rerun: 64)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) (async, rerun: 64)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00') (async)
unshare(0x6a040000) (async, rerun: 32)
r0 = socket(0xa, 0x5, 0x0) (rerun: 32)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10) (async, rerun: 32)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) (rerun: 32)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r4=>0x0}) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
getsockopt$bt_BT_RCVMTU(r5, 0x112, 0xd, 0x0, &(0x7f0000000180))
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r3, 0x0, 0x0) (async, rerun: 64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x22, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x45, '\x00', r4, 0xf, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) (async, rerun: 64)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x58, 0x10, 0x403, 0x300, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1e, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0xffc}]}}}, @IFLA_LINK={0x8, 0x5, r8}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x58}}, 0x8000)
sendto$inet(r1, &(0x7f00000002c0)="01a4acc7cf28ab9f6c7fc745c30bfc165466072a660bbf56352083db9d40454a67f8010000004bd29585885c89773ca3ba28a1e85ffe2a9220e0ecd440e345b7", 0x40, 0x0, 0x0, 0x0)

3m48.24864659s ago: executing program 37 (id=3584):
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000cab000))
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x5, 0x9}, 0x200, 0x0, 0x4, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff000000000000000458000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
setresgid(0x0, 0x0, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, <r1=>0x0}, &(0x7f0000000300)=0xc)
setresgid(r1, 0x0, r1)

3m32.584658493s ago: executing program 38 (id=3941):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
setxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000580)={{}, {}, [{0x2, 0x3}], {0x4, 0x7}, [], {0x10, 0x0, 0xfffe}, {0x20, 0x2}}, 0x2c, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)
r1 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xffffffffffff0000, 0xac14140c}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)="8bcd", 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x10)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000240))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000580)={0x60, 0x0, &(0x7f0000a6f000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x8, &(0x7f0000000000), 0x0, 0x94, 0x0, 0x0, 0x0, 0x46})
mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000002d0000000000000004dbdf2504000000b17768fd13f5dfe19aa7fcc27224e03cfec0617e72b960096a60b413737f998715d97dcdcf1ed0e1d26bfdb0e14ac4bd6f009f4db5b680b53fb3d042577e720719efcdc2a5f7297b7f379de4ed8affbeae276a915b48d93e2c76e393a7331eacd55f2a8780936115857280f228cf54338bd505b3c08d838e0ee6b20e488ab177ca3fe12df16d4a93ed8adf88dcbce6c0a74896aa5582478aa4df8b29e999bae7c80129186c42051c29658a8f526f8d26d46dfd08f7c25cb89c511a22bcfb63a8f88baf789fbb3ce521d6d327667ada09dd182e8e73fb0a391aaaa52562719956eac54c064307e178eb"], 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e00"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2m36.308896856s ago: executing program 39 (id=5517):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000ffffff7fffffffff000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2m10.156813295s ago: executing program 7 (id=6062):
ioctl$BTRFS_IOC_LOGICAL_INO_V2(0xffffffffffffffff, 0xc038943b, &(0x7f0000000280)={0x5, 0x8, '\x00', 0x0, &(0x7f00000001c0)=[0x0]})
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
mknodat$loop(0xffffffffffffff9c, 0x0, 0x2000, 0x1)
mlockall(0x0)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4) (async)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
perf_event_open(&(0x7f00000014c0)={0x0, 0x80, 0x2, 0xff, 0x3, 0xfc, 0x0, 0x1, 0xc101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x1590, 0x0, 0x0, 0x3}, 0x0, 0x5, r2, 0x1) (async)
perf_event_open(&(0x7f00000014c0)={0x0, 0x80, 0x2, 0xff, 0x3, 0xfc, 0x0, 0x1, 0xc101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x1590, 0x0, 0x0, 0x3}, 0x0, 0x5, r2, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0xffff, 0x0, 0x8020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0xffff, 0x0, 0x8020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$xdp(0x2c, 0x3, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) (async)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
getsockopt$XDP_STATISTICS(r3, 0x11b, 0x7, 0x0, &(0x7f0000000240))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000068000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c0011800a0001006c696d69740000001c0002800c00024000000000000000030c0001400000000200000101480000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001c0003800c00008008000340000000020c"], 0xf8}}, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x5, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000300), 0x4}, 0x40c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x3}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0xb)
brk(0x758)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00') (async)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/ipc\x00')
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000200)={'syztnl2\x00', &(0x7f00000003c0)={'syztnl1\x00', 0x0, 0x7d0, 0x7800, 0x4, 0xffffffab, {{0x13, 0x4, 0x0, 0x1, 0x34, 0x68, 0x0, 0x3, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, {[@noop, @timestamp_prespec={0x44, 0x2c, 0xb3, 0x3, 0x8, [{@rand_addr=0x64010100, 0x9}, {@empty, 0x3}, {@empty, 0x3}, {@loopback, 0x1}, {@empty, 0x8}]}, @timestamp={0x44, 0x8, 0x18, 0x0, 0xc, [0xffffffff]}]}}}}}) (async)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000200)={'syztnl2\x00', &(0x7f00000003c0)={'syztnl1\x00', 0x0, 0x7d0, 0x7800, 0x4, 0xffffffab, {{0x13, 0x4, 0x0, 0x1, 0x34, 0x68, 0x0, 0x3, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, {[@noop, @timestamp_prespec={0x44, 0x2c, 0xb3, 0x3, 0x8, [{@rand_addr=0x64010100, 0x9}, {@empty, 0x3}, {@empty, 0x3}, {@loopback, 0x1}, {@empty, 0x8}]}, @timestamp={0x44, 0x8, 0x18, 0x0, 0xc, [0xffffffff]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x20, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0xffffffff}, 0x50)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x1, 0x0, 0x8bb9a}, 0xc) (async)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x1, 0x0, 0x8bb9a}, 0xc)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r1)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, 0x0)

2m9.945073647s ago: executing program 7 (id=6067):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x794bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0xc}, 0x100, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00'})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0xc0)

2m9.944726757s ago: executing program 7 (id=6068):
ppoll(&(0x7f0000000740)=[{0xffffffffffffffff, 0x104}], 0x1, 0x0, 0x0, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000480), 0x1, 0x2)

2m9.053140341s ago: executing program 7 (id=6075):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000010000100f7000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000144c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100d10300000c000440000000000000000114000000110001"], 0xb8}, 0x1, 0x0, 0x0, 0x4008050}, 0x44004000)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x10000, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000004000/0x3000)=nil)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00')
preadv(r3, &(0x7f0000010440)=[{&(0x7f0000000040)=""/160, 0xa0}], 0x1, 0xc03, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r2, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r2, 0x2, &(0x7f0000000740)={0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c000180060001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

2m8.861971902s ago: executing program 7 (id=6076):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_SET(r2, &(0x7f00000005c0)={&(0x7f0000000300), 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x18, 0x3f9, 0x300, 0x70bd2a, 0x25dfdbfe, {0x0, 0x1}, ["", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4804}, 0x24000000)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="4d6a974600", 0x5}], 0x1, 0x0, 0x0, 0x4048041}, 0x20058800)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$setregs(0xd, r4, 0x20000000002, &(0x7f0000000040))
ptrace$cont(0x21, r4, 0x80000001, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0xa9525000)
chmod(&(0x7f0000000040)='.\x00', 0x35e)

2m7.930656157s ago: executing program 7 (id=6082):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180900000000000000000000030000001ca100000000000085100000fcffffff95"], &(0x7f0000000080)='syzkaller\x00', 0xb, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff90, 0x9}, 0x94)

2m7.858442771s ago: executing program 0 (id=6083):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/18, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r2, @ANYBLOB="080003"], 0x44}}, 0x0)

2m7.843872272s ago: executing program 0 (id=6085):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000030900010073797a300000090060000000030a010400000000000000000100ffff0900030073797a310000000034000480140003006272696467655f736c6176655f30000008000140000000051400030076657468315f6d6173767461700000000900010073797a310000000014000000110001"], 0xa8}}, 0x0)

2m7.843385862s ago: executing program 0 (id=6086):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_pid(r1, &(0x7f0000000000), 0xfdef)
recvmsg$unix(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/79, 0xce80}], 0x300}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000010c0)=<r2=>0x0)
sendmmsg(r1, &(0x7f0000001d00)=[{{&(0x7f0000000640)=@caif=@dbg={0x25, 0x3, 0xd}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000006c0)="ec279635530530", 0x7}, {&(0x7f0000000700)="1d778ee60b09948bd15eea5c11b68e0c3c17fdd0d4f4ba0ec73fa3042d010e4aa3e0b8e7c14930f5f8b43a12c5f092d9b14d9184925babb583ed6bfa5c51afbe177fbf78d18819fd68fbd5a70cc3c8b8b1959c7a79bff9a636a5c05bb673d3fd15d641fcc4ab75ab5c3a5a6a5950a88d04e441c54e77a18bb649ed328a3582a6df8f16a2826d08ed323e5777d7306ba861a2744f2474f9eb6f1a18b042cbf4ecf7a4c829b64ee777e1c480da921c7376f9826297fb3236b1124bd7597c97", 0xbe}, {&(0x7f00000007c0)="8b8ee27325c1cf1289a23d893c31", 0xe}, {&(0x7f0000000800)="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", 0xfe}, {&(0x7f0000000900)="e3b76e242b8950f3243f2c788343c116713241392a2356be9111cb355ce87e1e6e0d942050e55f8f85379044d5765d1a3e91867a3b40232e6ff293d5d9962713c85ce2be7caa18576376675c66e5ef947f91a3e9a071cac0e46bef4afb8089e73a34cefe5838262154b7f22dc87d46ac18c52ab392946d28ff1e5a529124baec69ee684fb3b97883ef60b838df36b8497bb5644acc57ae3378ee714ddb44e05f0a8d508dc49da3ff52f23cccfbd7c68722f403ddc66c36ac95832c3e5de535", 0xbf}, {&(0x7f00000009c0)="a36f0b40ecf87bb3a358cb9050196e5745e2a0ba0de39430d6984cdf1db7ef2bc418ff0916fc2ed6c17edaa75ca207c3fb3bdb061ae713e79befee87257fe433a829ff5c5b5a938e70ce6fcb2a054150bf5c566ae1c8ca54abd4da26b7103be62c2da8453c06015c06b82c00b1a8d5bcf40c0114663a22a1ab063d57d8f41571c7378d86177dab0683", 0x89}], 0x6, &(0x7f0000000b00)=[{0x60, 0x167e2a0a37688671, 0x2, "55e1a0a8414065f7a609031ea11cf544329855eaaa14b9dba19e566bdbd6bc4b97feaad0897d5ca7a685bb621191a30e5321bed75a68cea8414593612c3040644b6952776136b6af0fe8e64447"}, {0x18, 0x104, 0x1000, "1960bc389cbe"}, {0x48, 0x109, 0x7, "75d11c1ff2444b3151dda46aff95591cf8b1a6279489ffba48f57563822f00fbea2d513ea6772045c6d6cf047bdb15b74d6f272218fa"}], 0xc0}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000bc0)="8d79080674ef90b33775d6ad8179933392e77d53779ebbfca9fd7bbd4e2d42815f1168f93126887e9392f24dd7abf0f555179c23dcadaf908349bc9ff48121d7d2d243c92e653bc0cc7ecffd2d838c4eeaf7ed94fcb3b9dba5b58f706bd396bf4c462408c1f5134a3b21f972950d182c84027b68d94b3c49c573b3d644648a479293d749ae3376bbc1364bd0cf8feea5ffda76e6380c369e52b5d27d46b593b0f190e1719e2852ddd74897c7c2d1afde46264b2fa18cd0e4", 0xb8}, {&(0x7f0000000c80)="0d30f1f3aabb51056e3ae75f1471c3e04a94efb313d7ff9e1cfba085afb35f6c4a4fab30368fb982c20a61015ae10c0def1a002d549a3a787cb14f771e9654ab99343724ab485c3a1f449efdecc0bcfa80fa667d288f53012bfa77cd571f6e226b30aeb7f119c76406dd1b0dc63d95f6f670f2850e12af2ad65077082838a175877ead443dd473cf8c4ea0c5ae999946eb75b500fb7e2e744a8c2aa117c6e765e3e4c8727ad50f77d1c8a5dcb9", 0xad}, {&(0x7f0000000d40)="22fedba2068b774b6558805169b41c", 0xf}, {&(0x7f0000000d80)="40e2f2523c12b64e0678e58e0179b4324a1cb748433bac05a33f78d028706e727b962cfdd8cf8c570043c32469327e83c9ee7715169a685fbcda23e3259e79676a12ef443ecc5433bf2dedd9feeb45631b9c076496f2a3c4a6c335d0bc5adff56478306f7fa524d85eb21652c1b38d092606980438fac8566c8e319a455776429262640a4a4a6162f697650bc019ad41e372ebc97d62548000d799aab799f70545c0361a938a77fd1797bf9b6a9f7349d519b68772e45db88443a14f3d503eece555083d13ab15", 0xc7}, {&(0x7f0000000e80)="ae9f59e73c5d4eb2c019ea2a1dfc76c3dda9c7a1719ca36d8d758735e9391cded98d9d94e65c77fc05625362ef6f83a185b7b3be5e50415d0217f3717d8ce1fee5fca76ac16fb735380aef5fef63fd96fb2f4ba16e365322ef898b0c6a1241630cf69f259df1fec98024ea6dcb3f11dbe878b4da9e521a893bbd391e5b5e72061645dc973386809697f2bfa6a6a07009f2608dd42fa9ee622e9a3ce0a1d73b61856b1c8d2a6ee40a780be665dd300efc04cb253ef942", 0xb6}, {&(0x7f0000000f40)="29e6a998f0a949657a320d1948f271a88a5579ebed33db511eb8ce499f358e2e3cceeb9d3cdf15485d8b022de7b8589835b9b0861782c64b1f07b5ef1f7a0ca8700935eebeb9de24ae5d2c6b3f1a3aef43b6905c647ac14d034af21b7481fafb1c54096fbcf962839aa3489cd71accfde176b230610774fd47af08c594136915ccc6593f0a7d4ade1bada92f50d64f70b142cac1f5940a3687712ee86fb4f50aabd97bad8f28ac309576361624374fa11efdd59895b45829f35b82096664799f8f9bbb35711bca12e988d6d97af42114b2099f77dcb0dcbb322fa15e736973e8d30476f5ad185597f4da42077ac6a5aa72d6e9e64416b3", 0xf7}], 0x6}}, {{&(0x7f0000001100)=@nfc_llcp={0x27, r2, 0x1, 0x3, 0x1, 0x5, "fe32643b3cf3c42f72b0430015e605b86af79260e9c817dade89e5c999190dd294bf16251310e06ad28b5a4ceb796905d36ffda17f443a8d17f352fbe0cc0e", 0x32}, 0x80, &(0x7f0000001500)=[{&(0x7f0000001180)="6f93930d3b339a4de29850e6916bedaf47f8c70f68e723529aadcaf088b02311c34d1f9a1b6beb9614a5de8d845d57cd64ac43aa8f6eae8c3721740ef4d6f77824530655f837e7d2b992c5c42853e60fb5738de6c68742de816269dbf2f28b2bb912a181c5a7e6271ad7f6390823872b59da96d8629df11016a8a17dd733f3d9f3431485e29548795b", 0x89}, {&(0x7f0000001240)="367e40fb27a723a9d1d27a7cfe6f8534f2bea6b2cdb85c4bd5489cf6dd4d6bd2252c1fad7a5be1120a224b32f51a", 0x2e}, {&(0x7f0000001280)="8dfe4a1cb50d80422438a820c769d62fa5d049eba585800292e2d9dc9cd8f4ae7cb80e98e2cd643f4cccd65ced1d3cf78a03c234a4b165ab771f1c616f4a099ab37905262d4cfe85dc6697698e15a992631ce56985dcf0983d6181063a3085a042f105320e44e6161ed642cca6563afabd9fe1cba2", 0x75}, {&(0x7f0000001300)="48d62bb04f95214314babc4825f947f4828a220d311c9162fe45b37186d6a0f940d4beec858fa63bdb8448172970d495cf4dd6f2eb7736a14c3295a803f1bc2f6fd636fd6a48a87cd2e57cc063111d4a918660c50bb34d5753e08302a074aafb19ab6db0aa3dd42c0b17d6af80d1160453dce0e0770e14d0aef417ce98cb46d4ac2116eafe621edbc4a4fb5e56171442ab80be9c6903c5d8eb83ab63724c025b852cb36fc672dbad188b14609fd7335d8d9288ddeda429ce213995836a033b63e30e900770d92bff4692598e01d13c7d57eca376432531614460252046e29c08830ecbd2a681dad804145fe57e6be2a90235f3e2ef0247", 0xf7}, {&(0x7f0000001400)="d6cecb2751b9abdded67dfb737a5cc48fa2eb61bdbd2cbb7d4cc2f93d0af5b070cb728f20763edb789097bf494100b88b547059311d3948eb6573d6c2011298acb40de39d9bcb822e784bcdbffe6c55ef5e3c79d0c271b05ebdcdcf8cc05d3a04a28040da18bf81ebd823919a7234fcc04d608f66de2e3ec65ff756f6628131bcc493c66989e46325e42495201075bd9ad2a6f1a91edbad43ceee1386b4262f0fdd5f42f7ab233bc96673de6dbf8ccc577ef78f82f97a4fe884f25f5a85aee13b3bc8348a805d80990f763", 0xcb}], 0x5, &(0x7f00000020c0)=[{0xf0, 0x119, 0x6, "ecdd7342ff581ef40cb57013dc5fc88ae2be68179abf608f7dda2ec725c1412c2f923c7cb17fa94e00046bff6e758bdb118fbae3b1c4188d63b89c2f669d858239da851caec1a88f7c9edf1bc753f1e7184317392e8329602d3a042677e3ca8420181e2487f82cf0f13a23f62b4f351694f187c20d63032ebcd984c44ff793fbee8edbf6d6bc86a7299855949455fe46b63a72fe3be0c090e870224b0224151a2cee9ecb7ba669023d8bada9efadb6a2d9ea8f1baa41ac5b32f6ba11fc68eb1d2449ba7ff44d39f182b01b2c4901c4f1d1a73689b43d28dfb0"}, {0x50, 0x1, 0x2, "2ed950c7176422f4494311af328df922b471c4c3338d9a4dfce2b8ea070577f246dc8ca29f1a268a85a615c4eb40921ec4fc195263cc855587df87264bc1"}, {0x38, 0x104, 0x8, "abedf49bf604182ac90abdae9fdb9e5cfb0713b9fe34e4b1d2fdae10cebcd89349ac16"}, {0x30, 0x11, 0x7fff, "991f3f955e5c69489a73e44e80741da02efaf29556c69af8fd8b0c8b"}, {0x98, 0x107, 0x3, "f4ce228c2edafd8701d67dfad48062ce46139ba20580d5dfb33167600cd213e5ce42ad96e7cc47106229afefdb9f24a7e332db862e1e49431ebf7d833b6df91657b02dd4cc789c102f93ceb58ad3a2e125ba66baab2fd5494e28546407b0ceae9f028f88de7208b46e889d712af516bbbbc2af8dfbde26d00dd105d735a81025a2f322"}], 0x240}}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f00000017c0)="2639942f41fb335a077f4d208ab612b9ab13445ae304a523abd481b4f9ef46924637894376ef64329c26bc4bb9fb6be956c8c7a97543c0ebac7218ddbe7932e884a43405980b1c20cbcd26a604fcf084955c922398f3fdedb3093ae961b78e914c7b62a92253c7730307fb026229ae3c42617026212793434b78a6da0c90416f137a2b0a96b8b267a5923b19919399b76873037c0e5be8eaf4d5", 0x9a}, {&(0x7f0000001880)="1fb5fb7b84584725162a1efcc6d7f715074c37d90d7973fcb842cb6a2b087720586d394a0eb299d05e80d864133002895221d57f8b61b079627ed7fb77ed61d4c72bdee37d52aabdea40acdbe34f18c7e32aff70adb28c56e3b486366818903969d479fd7ebb7a0f93a0414d35cf910235c812978e25b2538bb6b34f54b83fa23bd1", 0x82}, {&(0x7f0000001940)="d8362b8a3a2ed7e9fd60645ad7580b526f1dc5180aef71cb000c12d05f8edda00bd859a8d1ba0e60e4dca1f107cd368187edf0a011941211aab349a316160e1b02a8e783348f0b7706543cc48313e7d45be9d06e14f562894a07f65350df5fed4f64c2182bab6e15826488ab6cdfcc0f823fc395ed97197890e92a604f714ab11f1906b90f9906ea2946500090d2949ac4eea5817f72b96fab26778a24ec66d3000ecac3523bc9f637934d90", 0xac}], 0x3, &(0x7f0000001a40)=[{0x58, 0x110, 0x1, "0bff1153f7537960e21347a892739e7c6d36b47b5c45438a24bda2b9825972cb1c60d74554ae608852b0fdc7e762bd9736d97c8893f780ba297325eb506f210147"}, {0x48, 0x108, 0x9, "b1701a09ffe714eb89fa9266b38804d92a3dbd5fc7706918c860f57d7c643481d3cc9efec6de33e3de3193b5d5b4e97f4ac5dd4330"}, {0x100, 0x101, 0x7, "24fb1813603234695b5cc22a5375e5ac8ca7df648d2bff438257ca4b7118d1d934a0b01c1fd40302613ca7a72697c4a78304d81e86f241debb94f08301151a4ae0b5b8643f1e94e61be4e5cdddd5b80d03a6c3a240d38afede92dd4df644e6416cf4827ab4720d4f26c6674ed6fa22355e069db370d043248eff11ee0482299444bbf7e2360ad39e98c8bb6a56f66e3dfb329d67b8d0fe8decb0f6e19e8baf3ae7c0b5493169e123ac0f1e6227d4840af3c931126a35b78f47b6d2a2a91a8b87f4fe5064a0238a9a4fe9e3e742fe925bd30cade7076ad4ae3fc96d77e4117073458606200c788e5393"}], 0x1a0}}, {{&(0x7f0000001c00)=@l2tp6={0xa, 0x0, 0xb, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5, 0x4}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c80)="bc2b7d04549fd74a6ccba0d46f3b995f6f0389a170e7ba7ec861ee90591bdb631dba8ede", 0x24}], 0x1}}], 0x5, 0x20000000)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x1, 0x255, &(0x7f0000001e40)="$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")
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1100, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb380018000000000000007c000000d600000002000000000000000000000e0000000000000000000000000600000d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c00000000000000000000000900000000000080000000000900000000000000000000000902"], 0x0, 0x96}, 0x20)
r3 = openat(0xffffffffffffff9c, 0x0, 0x10a942, 0x9f667fd378a54fd2)
ioctl$FICLONE(r3, 0x40049409, r3)
perf_event_open(&(0x7f0000000680)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x10, 0x40, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x119310, 0x1, 0x1, 0x3, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x0, 0x5, 0xfffffffe, 0x0, 0xfffffff3})
lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000000), 0x0, 0x0, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000600)=ANY=[], 0x0, 0x26, 0x0, 0x0, 0x4000000}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000007a00000000000895"], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010028bd7000fedbdf2519000ef26838fd32f2ccd0000001801400020076657468315f746f5f6873720000000000"], 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x40080)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r7, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r8 = openat$binfmt_register(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$binfmt_register(r8, &(0x7f0000000700)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x0, 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xea(J\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{G\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xbd\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132?\xbf\xb2\x93B\x01\'#\xc0v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde44m\x96+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x8c\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xa1W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xb5\x12\xd0\x1e\x98\xce+\x12\xaexk\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xdf\xc6Z+\r\x0e\x00\x00\x00\x00\x00\x00\x00\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, './file0'}, 0x22c)
mmap(&(0x7f0000400000/0x3000)=nil, 0x3000, 0x1, 0x4d032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x32fbf000)

2m7.556977949s ago: executing program 0 (id=6090):
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r0, @ANYBLOB="01000000000000000000010000001400020077673100210000000000000000000000f40108807000008048000980280000f8060001000a00000014000200fe8000000000000000000000000000aa05000300000000001c000080060001000200000908000200e0000001050003000000000024000100000000000000000000000000000000000000000000000000000000000000000080010080200004000a004e2000000005200100000000000000000000000000000800000006000500b01f00000800030006000000060005000500000008000a000100000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff200004000a034e200000040100000000000000000000ffffac14142a06000000240001000000000000000000000000000000000000000000000000000000000000000000d4000980", @ANYRES8=r1], 0x21c}, 0x1, 0x0, 0x0, 0x20040010}, 0x4008804)

2m7.400754339s ago: executing program 0 (id=6092):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_SET(r2, &(0x7f00000005c0)={&(0x7f0000000300), 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x18, 0x3f9, 0x300, 0x70bd2a, 0x25dfdbfe, {0x0, 0x1}, ["", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4804}, 0x24000000)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="4d6a974600", 0x5}], 0x1, 0x0, 0x0, 0x4048041}, 0x20058800)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$setregs(0xd, r4, 0x20000000002, &(0x7f0000000040))
ptrace$cont(0x21, r4, 0x80000001, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0xa9525000)
chmod(&(0x7f0000000040)='.\x00', 0x35e)

2m6.54933478s ago: executing program 0 (id=6104):
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000100))
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000003120100500012800b000100627269646765000040000280080005000100000006002700000000000800010015000800050025000000000008000300000000000c002e"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)

2m2.870007979s ago: executing program 40 (id=5938):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)=ANY=[@ANYBLOB="6c0100001000130700000000fcdbdf2564010100000000000000000003000020010000000000000000000041000000000000004e210002020000001d00000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)

1m59.935230694s ago: executing program 3 (id=6142):
openat$ppp(0xffffffffffffff9c, &(0x7f0000001180), 0x88880, 0x0) (async)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001180), 0x88880, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000011c0)=0x1)
ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f0000001380)={0x283})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x10, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="180200000000000000000000000000008510000001000000950000000000000085100000020000008500000027000000950000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
socket$inet_sctp(0x2, 0x1, 0x84)

1m59.848430079s ago: executing program 3 (id=6167):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000d40)=ANY=[@ANYBLOB="840100001900010000000000000000001d0109005000118049005300c9a7befe6f6d645a1a11b81b2c4b101c7510e19fee6bb49f6cc7a2c50fd57c06db1a75df432aa833928a0772ff8f5e9ed3103bc77d35b296674f1fe35663c0d236fd88d7ba0000001f010580ef", @ANYRESHEX=r1], 0x184}, 0x1, 0x0, 0x0, 0x5}, 0x10)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x900)

1m59.764952314s ago: executing program 3 (id=6169):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="020300030e0000002cbd7000fbdbdf2502000900400000001cdc0dca1d9f6884030006000000000002004e22ac1414bb00000000000000000200011f00000000000a000c01000000030005000000000002004e21ac1e01010000000000000000020013"], 0x70}, 0x1, 0x7}, 0x0)

1m59.750735704s ago: executing program 3 (id=6170):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_SET(r2, &(0x7f00000005c0)={&(0x7f0000000300), 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x18, 0x3f9, 0x300, 0x70bd2a, 0x25dfdbfe, {0x0, 0x1}, ["", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4804}, 0x24000000)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r3, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="4d6a974600", 0x5}], 0x1, 0x0, 0x0, 0x4048041}, 0x20058800)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$setregs(0xd, r4, 0x20000000002, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0xa9525000)
ioctl$F2FS_IOC_SET_PIN_FILE(r3, 0x4004f50d, &(0x7f0000000080)=0x1)
chmod(&(0x7f0000000040)='.\x00', 0x35e)

1m58.872823497s ago: executing program 3 (id=6184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x1, 0x10, &(0x7f0000002200)=ANY=[@ANYBLOB="180000000900000000000020fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000a0000000bf91000000000020b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m56.904909654s ago: executing program 41 (id=6194):
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f00000001c0)='./file0\x00', 0xc1ed4040, &(0x7f0000000a00)={[{@noblock_validity}, {@init_itable}, {@nobh}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x48b, &(0x7f0000000f40)="$eJzs3MtvVNUfAPDvvZ2WlscPfogPCGgVjMRHS8tDFiZGowkLjUZdYFzVaSFIAQM1EUIUXWCMC0Pi3rg08S9wpRujrkx0iXtDQgwb0NWYO/fePoaZtkMHpjCfT3KZc+6Dc75z7rk999zbBtCzhrN/koj1EXE5IjZGRKVxh+H848a189V/rp2vJlGrvfl3kh0W16+drxb/RX3JrMtX1GpFfk2Tci++EzExPT11usiPzpx4f/TM2XPPHDsxcXTq6NTJ8YMH9+3dMXBgfH9H4sziur7to1Pbtx56+9Kr1cOX3v3lu6y+64vtZRydNJx/u0093unCumzDvHRS6WJFaEvWbv3FcjlqfX0xNLttY7z8aVcrB9xulWY/nwsXasA9LBuoA72o/EGf3f+Wy1LjhQ6OPbru6gt5RFncN4ol31KJtNinv+H+tpMGI+LwhX+/zpa4TfMQAADz/ZCNf55uNv5L44F5+/2veIayKSL+HxGbI+K+iNgSEfdH1Pd9MCIearP8xickN49/0isLsrW+NktYXDb+e654trVw/FeO/mJTX5HbUI+/PzlybHpqT/Gd7I7+NVl+bMEhC/340u9fNq77ophmH543/suWrPyFEaZXGifoJidmJlYeee7qJxHbKs3iT2YH+klEbI2IbbdYxrEnv93ealuz+Mux8JI6cCdS+ybiibz9L0RD/KWk5fPJsWcPjO8fHYzpqT2j5Vlxs19/u/h6q/JXFH8HZO2/tun5n8ef3SMmgxFnzp47Xn9ee+YWCvnzs2rSYtOWIv7+lvHffP5Xd0UMJG/V0wPlXsXnQPJK9jFUrv9wYmbm9PjcsWW+/jmWx79751z8EzHX/zfnt2eR/PHG7PE7IuLhiHikaLtHI+KxiNi5SPg/v7jrvVbbWrf/IrPyHZTFP7lI+2eXvCw11/7tJ/qO//R9q/JrS57/Wfvvq6d2F2uWc/1bbgVX8t0BAADA3SKtvwOfpCOz6TQdGcnf4d8Sa9NKRDx15NQHJyfzd+U3RX9aznRtnDcfOlbMDZf58Yb83mLe+Ku+oXp+pHpqerLbwUOPW9ei/2f+6uyjFmA1uqfe6APaov9D79L/oXfp/9C7nu92BYDuGGi++uM7XQ+gK9of/w/elnoAd577f+hd+j/0Lv0felLL341PV/Qr/3drorI6qtE0MbQ6qlEmIl1yn3SVVHV5idc+z7vEaqlPmags+49Z3GJiTdNNTS8Xh9bf2csTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAiv0XAAD//1ub24E=")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000001c0)='.\x00', 0x80a5, &(0x7f00000008c0)=ANY=[], 0x10, 0x0, &(0x7f0000000000))
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x6)
ioctl$FS_IOC_SETFLAGS(r0, 0x41009432, &(0x7f00000001c0)=0x80ff)

1m54.95449223s ago: executing program 42 (id=6066):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc010000190001000000000002000000e0000001000000000000000000000000ac1414bb00000000000000000000000000030000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044010500"], 0x1fc}}, 0x0)

1m52.331430457s ago: executing program 43 (id=6082):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180900000000000000000000030000001ca100000000000085100000fcffffff95"], &(0x7f0000000080)='syzkaller\x00', 0xb, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff90, 0x9}, 0x94)

1m51.385012403s ago: executing program 44 (id=6104):
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000100))
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000003120100500012800b000100627269646765000040000280080005000100000006002700000000000800010015000800050025000000000008000300000000000c002e"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)

1m43.681673093s ago: executing program 45 (id=6184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x1, 0x10, &(0x7f0000002200)=ANY=[@ANYBLOB="180000000900000000000020fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000a0000000bf91000000000020b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m42.789134785s ago: executing program 9 (id=6339):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001180)=@ipv6_newrule={0x30, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FRA_SRC={0x14, 0x2, @mcast2}]}, 0x30}}, 0x0)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="743831cf860d103705f1b833da9281568ba77c396d8aee", 0x17}], 0x1, 0x2, 0x4)

1m42.7056839s ago: executing program 9 (id=6341):
socket$packet(0x11, 0xa, 0x300)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$tun(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="000086dd0004110004000000b9a66eec00be00c22ffffe8000000000000000000005000000aaff020000000000000000000000000001042022eb"], 0xf8)

1m41.968983344s ago: executing program 9 (id=6354):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x70bd2a, 0x70bd28}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x1a0}, 0x1, 0x500000000000000}, 0x0)

1m41.914157877s ago: executing program 9 (id=6355):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000600)=0x9, 0x4)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x20000004, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000380)=0x1, r2, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x1, @empty, 0x3}, {0xa, 0x4e20, 0x3, @remote, 0x3}, r2, 0x7}}, 0x48)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x2, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000100)=0x1, r4, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000240)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x2, @empty, 0x2}, r4}}, 0x30)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={<r6=>0x0}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000140)={r6, 0x7, 0xfff8}, 0x8)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000600)=0x9, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f0000000040)='sysfs\x00', 0x10, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f00000001c0)={0x0, 0x5, 0xffffffffffffffff})
epoll_create1(0x0)
r7 = semget$private(0x0, 0x7, 0x180)
semtimedop(r7, &(0x7f0000000100)=[{0x2, 0x81, 0x1400}, {0x0, 0x7fff, 0x400}, {0x3, 0x86ac, 0x1000}, {0x2, 0xe2, 0xc00}], 0x4, 0x0)
semctl$SETVAL(r7, 0x0, 0x10, &(0x7f0000000040))
keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x26}}], 0x10)
r8 = add_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$get_security(0x11, r8, &(0x7f000001f980)=""/103, 0x67)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="b7050200000000000000a800000000005d0a0000000000009500000000000000e07029b2a8195f8f1b5329136775c265c41e63414c9de74be310ab1126924be71dbe1236cc4d5ffee9d0c03262e03350c6e76851f13e022e12eb58f394c32819f900f8fbba41d05e1fcf599185c08cdf95f7db758a67596f71a603338393fe352ee9b937652043b8a41ceba4520039e2cd79784322672009bba0dcd6e34ce76368fe41179e87ed21143f1d6fbf2556e2fd0024b6e165da6f5c6810753e48c69c4e674201b4b7273c589ca380549df7fc023b5355f9a3"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xbc, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x94)

1m41.834895552s ago: executing program 9 (id=6359):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TTY_SET(r1, &(0x7f00000005c0)={&(0x7f0000000300), 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x18, 0x3f9, 0x300, 0x70bd2a, 0x25dfdbfe, {0x0, 0x1}, ["", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4804}, 0x24000000)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r2, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0xa9525000)
ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000080)=0x1)
chmod(&(0x7f0000000040)='.\x00', 0x35e)

1m41.558763319s ago: executing program 9 (id=6363):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x500, 0x70bd2a, 0x70bd28}}]}, 0x154}}, 0x0)

1m41.521934631s ago: executing program 46 (id=6363):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x500, 0x70bd2a, 0x70bd28}}]}, 0x154}}, 0x0)

9.079437819s ago: executing program 8 (id=8326):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000f3ff0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

9.008496044s ago: executing program 8 (id=8328):
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r1 = socket(0x18, 0x800, 0x0)
connect$pppoe(r1, &(0x7f0000000100)={0x18, 0x0, {0x1, @random="dafcd4b5c832", 'ip6tnl0\x00'}}, 0x1e)
sendfile(r1, r0, 0x0, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x11, 0x10, &(0x7f00000003c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x4, 0x1009, &(0x7f0000002500)=""/4105, 0x0, 0x68, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff7ffffd}, 0x94)
ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f0000000000)={0x0, 0x0, 0x1c})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vlan0\x00', 0x8000})
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a0003070000000000000000de3f0005001a"], 0x38}}, 0x20008004)

8.987989655s ago: executing program 8 (id=8330):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x22004002, &(0x7f0000000080)={[{@jqfmt_vfsold}, {@stripe={'stripe', 0x3d, 0xffff}}, {@sysvgroups}, {@jqfmt_vfsold}, {@nouid32}, {@grpjquota, 0x2e}]}, 0x84, 0x46c, &(0x7f00000004c0)="$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")
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000ffff25bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1414000021200000300012800c0001006d6163766c616e002000028008000100100000000a000400aaaaaaaaaa290000080003000000000008000500", @ANYRES32=r1], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)

8.844591483s ago: executing program 8 (id=8333):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x80, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000080000000000000000000008500000022000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000d4448d49850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000340)={0x0, 0x1}, 0x8)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x20000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000680)=[{{&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}}], 0x1, 0x4000000)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32], 0x50)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r3, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in=@local, @in=@private=0xa010101, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x2, 0x0, 0xee00}, {@in6=@private1, 0x0, 0x3c}, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, {0x0, 0x0, 0x2, 0x0, 0x10000000, 0xffffffffffffffff}, {0x0, 0x200000, 0x4ab}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x3500, 0xa, 0x4, 0x0, 0x34}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
ptrace$getregset(0x4204, r3, 0x2, &(0x7f0000000740)={0x0})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x6005, 0x0, 0x7, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f0892f", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r7, @ANYBLOB="100a06000908010014001a80100006"], 0x34}, 0x1, 0x0, 0x0, 0xc0c0}, 0x14)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000003580)=[{0x3, 0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000780)=""/254, 0xfe}, {&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000001880)=""/4096, 0x1000}], &(0x7f0000000300)=[0x6, 0x6, 0x1c0000000000, 0x2, 0x9]}, {0x4, 0x1, 0x0, &(0x7f00000006c0)=[{&(0x7f0000002880)=""/242, 0xf2}, {&(0x7f0000000380)=""/48, 0x30}, {&(0x7f00000004c0)=""/91, 0x5b}, {&(0x7f00000005c0)=""/160, 0xa0}], &(0x7f0000000700)}, {0x7, 0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000002980)=""/231, 0xe7}, {&(0x7f0000002a80)=""/10, 0xa}, {&(0x7f0000002ac0)=""/201, 0xc9}, {&(0x7f0000002bc0)=""/35, 0x23}, {&(0x7f0000002c00)=""/42, 0x2a}, {&(0x7f0000002c40)=""/39, 0x27}, {&(0x7f0000002c80)=""/61, 0x3d}], &(0x7f0000002d40)=[0x5, 0x7, 0x4, 0x6, 0xb, 0x2a1]}, {0x6, 0x1, 0x0, &(0x7f0000003040)=[{&(0x7f0000002d80)=""/176, 0xb0}, {&(0x7f0000002e40)=""/33, 0x21}, {&(0x7f0000002e80)=""/89, 0x59}, {&(0x7f0000002f00)=""/84, 0x54}, {&(0x7f0000002f80)=""/21, 0x15}, {&(0x7f0000002fc0)=""/108, 0x6c}], &(0x7f00000030c0)=[0x400, 0x2, 0x101, 0x2, 0x8000000000000001, 0xb4e2, 0x0, 0x147a, 0x3]}, {0x6, 0x1, 0x0, &(0x7f00000034c0)=[{&(0x7f0000003140)=""/18, 0x12}, {&(0x7f0000003180)=""/150, 0x96}, {&(0x7f0000003240)=""/63, 0x3f}, {&(0x7f0000003280)=""/61, 0x3d}, {&(0x7f00000032c0)=""/207, 0xcf}, {&(0x7f00000033c0)=""/206, 0xce}], &(0x7f0000003540)=[0xb]}], 0x5)
fcntl$lock(r0, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0xa9525000)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, 0x0)
removexattr(&(0x7f00000001c0)='./file1/file0\x00', &(0x7f0000000000)=@known='trusted.overlay.metacopy\x00')
chmod(&(0x7f0000000040)='.\x00', 0x35e)

7.881083571s ago: executing program 8 (id=8345):
getdents64(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={0x0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=ANY=[@ANYBLOB="5400000010000304000000000000000000000002", @ANYRES32=0x0, @ANYBLOB="15020000fe0f00001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="080004"], 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x0)

7.294268706s ago: executing program 8 (id=8353):
r0 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000fcdbdf2567000000", @ANYBLOB="0c009900080000022c0000000800c3"], 0x38}}, 0x40)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000000000002bc10200000ae75e2827c8a12dafb0000000fa000000000000095000000000000007a986625b2de83806fab6804e447469d7798bf"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xff06, &(0x7f000000cf3d)=""/195}, 0x48)
fchdir(r3)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x17, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000600), 0x0, 0x2000c844)
r5 = socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x2}, 0x94)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000080)={@mcast1, 0x500300, 0x0, 0x0, 0x19, 0x3, 0x85}, 0x20)
socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r8 = getpgid(0x0)
mount$bind(0x0, &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
r9 = syz_pidfd_open(r8, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)=ANY=[@ANYRES64=r5, @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000024000008001b00", @ANYRESDEC=r1, @ANYBLOB="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", @ANYRESOCT, @ANYBLOB='Q', @ANYRES16=r6, @ANYRESDEC=r9], 0x30}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
connect$pppoe(r6, &(0x7f0000000040)={0x18, 0x0, {0x0, @remote, 'team_slave_0\x00'}}, 0x1e)
lseek(r4, 0x0, 0x1)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

7.238669289s ago: executing program 47 (id=8353):
r0 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000fcdbdf2567000000", @ANYBLOB="0c009900080000022c0000000800c3"], 0x38}}, 0x40)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000000000002bc10200000ae75e2827c8a12dafb0000000fa000000000000095000000000000007a986625b2de83806fab6804e447469d7798bf"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xff06, &(0x7f000000cf3d)=""/195}, 0x48)
fchdir(r3)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x17, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000600), 0x0, 0x2000c844)
r5 = socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x2}, 0x94)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000080)={@mcast1, 0x500300, 0x0, 0x0, 0x19, 0x3, 0x85}, 0x20)
socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r8 = getpgid(0x0)
mount$bind(0x0, &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
r9 = syz_pidfd_open(r8, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)=ANY=[@ANYRES64=r5, @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000024000008001b00", @ANYRESDEC=r1, @ANYBLOB="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", @ANYRESOCT, @ANYBLOB='Q', @ANYRES16=r6, @ANYRESDEC=r9], 0x30}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
connect$pppoe(r6, &(0x7f0000000040)={0x18, 0x0, {0x0, @remote, 'team_slave_0\x00'}}, 0x1e)
lseek(r4, 0x0, 0x1)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

5.558903139s ago: executing program 5 (id=8371):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
unshare(0x26020480)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0xb, 0x2014, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x40}, 0x114b20, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x200)
ioctl$SG_GET_VERSION_NUM(r1, 0x2284, &(0x7f0000000080))
r2 = perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x66)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r0)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x9, 0x6031, 0xffffffffffffffff, 0x0)

4.476069534s ago: executing program 5 (id=8386):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001000000000000000000e000000200"/39], 0xfc}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc020000000000000000000000000001fe80000000000000000000000000003a00000000000000000a0000a02e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000a00000050001100ac1414aa0000000000"], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket(0x1d, 0x2, 0x6)

4.016080531s ago: executing program 5 (id=8397):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f00000026c0)='./file2\x00', 0x200000, &(0x7f0000000340)={[{@dioread_lock}, {@noquota}, {@grpquota}, {@grpquota}, {@grpquota}]}, 0xfc, 0x57c, &(0x7f0000005c40)="$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")
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x1246, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7f, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffc00, 0x3, 0x2, 0xfffffffd, 0x8, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5800000002060500000000000000000fff0000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

2.788762504s ago: executing program 5 (id=8413):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
io_uring_setup(0x1dd, &(0x7f00000001c0)={0x0, 0x1fffff, 0x0, 0x2, 0x140})
syz_open_dev$tty20(0xc, 0x4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
socket$netlink(0x10, 0x3, 0x8000000004)
r0 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="038000000000ffef240012800c0001006d6163766c616e00140002800800010008000000062102000100000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00]'], 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.740503227s ago: executing program 2 (id=8441):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'bond0\x00', <r2=>0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="5c0100001000130720000000fcdbdf25e0000001000000000000000000000003ff020000000000000000000000000001000400004e2100020000000021000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r2], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x10)

1.677034s ago: executing program 2 (id=8444):
r0 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r0, @ANYBLOB="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"], 0x21c}, 0x1, 0x0, 0x0, 0x20040010}, 0x4008804)

1.647036252s ago: executing program 2 (id=8447):
r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x3200c94, &(0x7f0000000440)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c00484516000000000037c015c57600912233eefc80e89be5a1ef2c27ebf5171169dcfa4805d89c7e1f70d73d64ab8b2194a9e8b537ad2ed68f8319883b84237da3bf9213365872b3f3000000"], 0x1, 0x2b9, &(0x7f0000000fc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000000000)=""/45, 0x2d)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f00000000c0)=""/123)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0x2, 0x24209, 0x1, 0xfffffffc, '\x00', 0x0, r1}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x86}}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r3, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000f80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
setsockopt$inet6_opts(r4, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="3c1204"], 0x98)
ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/devices.allow\x00', 0x2, 0x48)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd608c0c0000140600fe8000000000000000000000000000aafe8000000000000000000000000000aafffa4001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB], 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000080)=0x6, 0x4)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)
fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f0000000180)='vfat\x00', &(0x7f00000001c0)='./file0\x00', r0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x1c, &(0x7f0000000540)=[@in6={0xa, 0x4e24, 0x400101, @rand_addr=' \x01\x00', 0x1}]}, &(0x7f0000000140)=0x10)
mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000005)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000780)={r3, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000240)=[0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x7, 0x8, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x2a, &(0x7f0000000580)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000500), &(0x7f0000000600), 0x8, 0x9e, 0x8, 0x8, &(0x7f0000000640)}}, 0x10)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0xa2de058b9bf4ae03, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x1, 0xc}, {0xfff1, 0xfff3}, {0x10, 0x6}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x84040}, 0x0)

1.585644646s ago: executing program 5 (id=8451):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="5c0100001000130700000000fcdbdf25e0000001000000000000000000000000ff02000000000000600000000000000100040b6e4e2100020000000021000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000004d632000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000010000000000008001000000ffffffff0000000000000000010000800000000043050000000000000400000000000000ffffffffffffff7f0000000000000000fdffffffffffffff0000000000000000000000002cbd700000350000020000005000000000000000600012"], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2014)

1.01666949s ago: executing program 1 (id=8461):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2000fff5000a01030000000000000000010000010900010073797a310000000054000000030a01040000000000000000010000000900030073797a31000000000900010073797a310000000028000480080002400c86c30108000140000000051400030070696d7265673100000000000000000028000000000a05000000000000000000010000080900010073797a3100000000080002400000000114000000110001"], 0xc4}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

969.193223ms ago: executing program 5 (id=8462):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x200000, &(0x7f0000000000), 0xfe, 0x585, &(0x7f0000001500)="$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")
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x1c, 0xc, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24044811}, 0x40000)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

968.817382ms ago: executing program 1 (id=8463):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40e8662e, &(0x7f0000000000)={0x9, 0x40000000000001, 0x0, 0xf, 0x2, 0x905})
r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r4, 0x84, 0x7d, &(0x7f0000000000), 0x8)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x48, 0x0, &(0x7f0000000480)="e3008067000600678387460884df784a4d667843906d340cc60984f790812cb21689967225dc034be02c37716f171af5ecbb8a393f733045dcd24fa9638e984d0cd53a02d59348b1", 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xc}, 0x50)
r5 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x28101)
ioctl$FIBMAP(r5, 0x1, &(0x7f0000000040)=0x85)
r6 = socket$kcm(0x10, 0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000940)={<r7=>0x0, 0x4, 0x1, [0x3, 0x3, 0x2, 0x5, 0x8], [0x1, 0x5b6, 0x8001, 0x5, 0x70ba49a1, 0xfffffffffffffffe, 0x2, 0xc7, 0x3, 0x5, 0x0, 0x9, 0x7308b9c0, 0x0, 0x3, 0xc000, 0x7, 0xfff, 0xb2a2, 0x9, 0x2, 0x100, 0xd9, 0x800, 0x47f4367c, 0x4, 0x4, 0x4, 0xdf6, 0x4, 0x5, 0x3, 0x0, 0x9, 0xff, 0x10000, 0xf, 0x6, 0x6, 0x8, 0x5, 0x0, 0x10, 0x312, 0x3, 0x58af, 0x7, 0x5, 0x7, 0x0, 0x5, 0x5, 0x7, 0x7, 0x1, 0x8, 0x1, 0x10000001, 0x7fff, 0x400000010001, 0x10001, 0x86d, 0xf, 0x3, 0xacdc, 0xc, 0x6, 0x5, 0x40, 0xd, 0x7, 0xfffffffffffffff0, 0xcee, 0x97b, 0x9, 0xfffffffffffffffe, 0x8, 0xa, 0x8, 0x8001, 0x5, 0x1, 0xffffffffffffffff, 0x4, 0x400, 0x5, 0x4, 0x0, 0x2, 0x4, 0x6, 0x7, 0x7c2f, 0x3, 0x0, 0xb, 0xb, 0x0, 0x9, 0x2, 0xffffffffffffffff, 0x8000, 0x8000000000000001, 0x4, 0x9, 0x2, 0x2, 0x800, 0x29c, 0x6, 0x5, 0x100, 0x1, 0xe8, 0x6, 0x1, 0x5, 0x0, 0x3, 0x2, 0x81]})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000002040)={r7, "81f1c4e2b3afd4311267b020c23c30c9"})
close(r6)
signalfd4(r4, &(0x7f00000005c0)={[0xc00000000000000]}, 0x8, 0x80000)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000040)={0x0, 0x3, &(0x7f00000011c0)=[{&(0x7f0000000140)="5c00000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac00800020007000c00040004c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x22}, 0x50)
r9 = socket$inet(0x2, 0x80003, 0x6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r8, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r9}, 0x20)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000001ec0), r1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000000)={'wpan3\x00'})
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000600)=<r11=>0x0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000000280)={0x2c, r10, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x16f}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8004}, 0x24048040)

959.700353ms ago: executing program 1 (id=8465):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000020101010000000000000000020000002400018014000180080001"], 0x44}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x3, &(0x7f0000000100)=[{0x15}, {0x15, 0x0, 0x0, 0x3}, {0x6, 0x0, 0x0, 0x7ffffdbe}]}) (async)
sendmmsg$inet6(r1, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x18, 0x0}}], 0x1, 0x0)

888.976598ms ago: executing program 1 (id=8467):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_bp={0x0, 0x10}, 0x4, 0x0, 0x10000, 0x5, 0x2, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x5}, 0x0, 0x10000, 0x8, 0x6, 0x8, 0x2, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="b40000001800090000000000000000001c140000"], 0xb4}, 0x1, 0x0, 0x0, 0x20008044}, 0x24040810)
r2 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, r0)
r3 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, r2)
getgroups(0x2, &(0x7f0000001080)=[0xee01, <r4=>0xffffffffffffffff])
setgroups(0x0, 0x0)
keyctl$chown(0x4, r3, 0xee01, r4)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x80a, 0x0)
setrlimit(0x7, &(0x7f0000000200)={0x5, 0xb})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
keyctl$setperm(0x5, r3, 0x30925)
keyctl$KEYCTL_MOVE(0x3, r3, 0x0, 0x0, 0x0)
io_setup(0x8, 0x0)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x4048043)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000001c0)={[{@dioread_lock}, {@noblock_validity}, {@abort}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x1f5}}, {@grpjquota, 0x2e}, {@nouser_xattr}, {@nolazytime}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4aa, &(0x7f0000000740)="$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")

868.470508ms ago: executing program 1 (id=8469):
r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x220488f, 0x0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x500a8, &(0x7f0000000140)=ANY=[@ANYBLOB='mode=00'])
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f00000065c0)={0x0, 0x0, &(0x7f0000006580)={&(0x7f0000000dc0)={0x28, 0x14, 0x211, 0x0, 0x0, {0x28}, [@INET_DIAG_REQ_BYTECODE={0x11, 0xfa, "4ac2411e47061aefad04000000"}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000841}, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x4e21, 0x101, @private0={0xfc, 0x0, '\x00', 0x9d}, 0x10}, {0xa, 0x4e22, 0x7, @remote, 0x80000000}, 0x0, {[0xc0000, 0x8, 0xfffffff6, 0x1, 0x1, 0x5, 0x7, 0x6]}}, 0x5c)

824.632521ms ago: executing program 1 (id=8470):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f00000026c0)='./file2\x00', 0x200000, &(0x7f0000000340)={[{@dioread_lock}, {@noquota}, {@grpquota}, {@grpquota}, {@grpquota}]}, 0xfc, 0x57c, &(0x7f0000005c40)="$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")
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x1246, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7f, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffc00, 0x3, 0x2, 0xfffffffd, 0x8, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000000206050000000000000000feff0000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

716.392808ms ago: executing program 2 (id=8473):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x100000b, 0x12, r0, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f0000000000)={0x4, @broadcast, 0x4e22, 0x1, 'lblcr\x00', 0x6, 0x2, 0x5a}, 0x2c)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000340)={0x4, 0x4, 0x2, 0x3}, 0x0)

657.747401ms ago: executing program 2 (id=8474):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x22004002, &(0x7f0000000080)={[{@jqfmt_vfsold}, {@stripe={'stripe', 0x3d, 0xffff}}, {@sysvgroups}, {@jqfmt_vfsold}, {@nouid32}, {@grpjquota, 0x2e}]}, 0x84, 0x46c, &(0x7f00000004c0)="$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")
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000ffff25bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1414000021200000300012800c0001006d6163766c616e002000028008000100100000000a000400aaaaaaaaaa290000080003000000000008000500", @ANYRES32=r1], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)

579.368416ms ago: executing program 2 (id=8477):
r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x100000000000009, 0x3c033, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x8312, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x400000000, 0xffffffffffffffff, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001114010004000000fddbdf25004b0013000000"], 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000280)={0x0, 0xffe2, 0x1}, 0x12)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0xe, 0x7fff0000}]})
brk(0xbc)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000006f40), 0x2002, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000000c0)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r6, {}, {}, {0x6}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40d5}, 0x0)
openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)

480.535892ms ago: executing program 6 (id=8478):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c000000020603000000000000000000000000001400078008001240000000000500150002000000050001000600000005000500020000000500040000000000090002"], 0x4c}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000050000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)

400.832456ms ago: executing program 4 (id=8479):
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000018110000", @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
modify_ldt$write(0x1, &(0x7f00000003c0)={0x23, 0x1800, 0x400}, 0x10)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
socket$kcm(0x29, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x4d, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"980aa8fb8f80d69f1fb587086447e93e", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000004c0)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0xfffff0fb}}}}}}, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r4 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xe, 0xa0002f5})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0xa, 0x4)
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB='nodots,nfs,dots,usefree,dots,discapd,dots,flush,nodots,dots,flush,nodots,flush,dots,nodots,gid=', @ANYRESHEX=0x0, @ANYBLOB=',dos1xfloppy,nodots,check=normal,nodots,nocase,flush,dots,\x00'], 0x1, 0x1bf, &(0x7f0000000680)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r7, 0xfffd, 0x0)
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300))

400.571206ms ago: executing program 6 (id=8480):
r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x220488f, 0x0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x500a8, &(0x7f0000000140)=ANY=[@ANYBLOB='mode=00'])
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f00000065c0)={0x0, 0x0, &(0x7f0000006580)={&(0x7f0000000dc0)={0x28, 0x14, 0x211, 0x0, 0x0, {0x28}, [@INET_DIAG_REQ_BYTECODE={0x11, 0xfa, "4ac2411e47061aefad04000000"}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000841}, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x4e21, 0x101, @private0={0xfc, 0x0, '\x00', 0x9d}, 0x10}, {0xa, 0x4e22, 0x7, @remote, 0x80000000}, 0x0, {[0xc0000, 0x8, 0xfffffff6, 0x1, 0x1, 0x5, 0x7, 0x6]}}, 0x5c)

371.400568ms ago: executing program 6 (id=8481):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='\x00', 0x1100)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0)
unshare(0x22020600)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a240000000b0a01080000000000000000070000070800064000000000080005400000000f2c000000030a01010000000000000000010000000900010073795f30000000000900030073797a320000000070000000060a010400000000000000000100000008000b400000000008000480340001800b000100650800000000000000000280080001400000000c080003400000000008000440000000220500020007000000100001800c00010062697477697365000900010073797a3000000000140000001100010000000000000000000700000a"], 0xe8}}, 0x0)
move_mount(r1, 0x0, r0, 0x0, 0x46)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x6, &(0x7f0000006680))
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000180)=0x9, 0x8, 0x0)
get_mempolicy(0x0, 0x0, 0x1ff, &(0x7f00001a6000/0x3000)=nil, 0x2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newlink={0x50, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x1414, 0x2021}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x20, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}}, @IFLA_MACVLAN_MACADDR_DATA={0x10, 0x5, 0x0, 0x1, [{0xa}]}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000001}, 0x8000002)
r4 = dup(r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000800)=ANY=[@ANYBLOB="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", @ANYRES64=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip_vti0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
fsmount(r4, 0x1, 0x5)

301.583692ms ago: executing program 6 (id=8482):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000002000010300003218298a000002000000000000001a000000050013"], 0x24}, 0x1, 0xfffffffe, 0x0, 0x4050}, 0x4000050)

237.070606ms ago: executing program 4 (id=8483):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb0100180000000000000018000000180000000500"], 0x0, 0x35, 0x0, 0x1}, 0x28)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r2 = socket(0x1, 0x5, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0x1, 0x58, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3ff, 0x441e, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={0x0, 0x4}, 0x0, 0x7, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000300)=ANY=[@ANYBLOB="000202"], 0x18)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@gettclass={0x24, 0x2a, 0x10, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x7, 0xf}, {0x5, 0x2}, {0x8, 0xf}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000003c0)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x200000000300, 0x200000000330, 0x200000000360], 0x0, 0x0, &(0x7f0000000300)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffc}]}, 0x108)

236.761086ms ago: executing program 6 (id=8484):
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4040010}, 0x30)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c00000010000104f0ff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c00028005001d00000000000500010004000000050015"], 0x4c}}, 0x0)

123.657973ms ago: executing program 6 (id=8485):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000080003851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50afdff00000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xa}, 0x94)

120.756633ms ago: executing program 4 (id=8495):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="bc0100001900010000000000ffdbdf25fe880000000000000000000000000101ac1414bb00000000000000000000000000000000000000000200000000000005", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x1bc}, 0x1, 0x0, 0x0, 0x1}, 0x0)

49.099168ms ago: executing program 4 (id=8486):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
tkill(r0, 0x13)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000000))
r1 = syz_open_procfs(0x0, 0x0)
getdents(r1, 0x0, 0x51)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a54000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000200004801c0001"], 0x7c}}, 0x0)

24.814299ms ago: executing program 4 (id=8487):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_int(r1, 0x6, 0x2b, 0x0, &(0x7f0000000100))
write$binfmt_aout(r0, &(0x7f00000000c0)={{0x108, 0xfc, 0x1, 0x1b4, 0x96, 0x0, 0x38a, 0x2}, "9571f34e65d4cf87198ef15c7a47ed1c53741df42f3efc474a5c60b3770092303a3f45ed3193473a0bb0dca2c02d46e95e919b295ba3a22b9b2f09654bcef568df892f90e7c3527da03b2aff03f3fea084b6323a722634d1eea1596b"}, 0x7c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x2, 0x0, 0x0, 0x0, 0x61, 0x17, 0x4c}, [@ldst={0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x27}]}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x3}, 0x28)

0s ago: executing program 4 (id=8488):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x1, 0x10, &(0x7f0000002200)=ANY=[@ANYBLOB="180000000900000000000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000085000000a0000000bf91000000000020b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

kernel console output (not intermixed with test programs):

9: iget: bad i_size value: 12154757448730
[  368.883269][T27440] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.7699: couldn't read orphan inode 13 (err -117)
[  368.899767][T27444] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #3: comm syz.1.7700: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  368.918470][T27444] EXT4-fs error (device loop1): ext4_quota_enable:7180: comm syz.1.7700: Bad quota inode: 3, type: 0
[  368.930556][T27444] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  368.945773][T27444] EXT4-fs (loop1): mount failed
[  368.969546][T27450] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  368.984498][T27450] 0ªî{X¹¦: entered allmulticast mode
[  368.991997][T27450] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  369.081213][T27460] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  369.100718][T27460] EXT4-fs (loop5): 1 truncate cleaned up
[  369.107190][T27460] EXT4-fs mount: 2 callbacks suppressed
[  369.107205][T27460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.141409][T27463] 8021q: adding VLAN 0 to HW filter on device bond1
[  369.184531][T27473] EXT4-fs warning (device loop5): empty_inline_dir:1759: bad inline directory (dir #12) - no `..'
[  369.225539][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.265647][T27485] lo speed is unknown, defaulting to 1000
[  369.348117][T27485] ip6_vti0 speed is unknown, defaulting to 1000
[  369.466118][T27506] iso9660: Corrupted directory entry in block 2 of inode 1792
[  369.580035][T27485] tipc: Started in network mode
[  369.584956][T27485] tipc: Node identity 7f000001, cluster identity 4711
[  369.591825][T27485] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  369.604902][T27520] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.684690][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.697081][   T53] tipc: Left network mode
[  369.743492][T27542] netlink: 'syz.1.7735': attribute type 9 has an invalid length.
[  370.232228][T27598] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.567077][T27634] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2808: inode #11: comm syz.6.7770: corrupted xattr block 95: invalid header
[  370.603615][T27634] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.7770: bg 0: block 7: invalid block bitmap
[  370.641078][T27637] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  370.726209][T27634] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  370.735158][T27634] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2972: inode #11: comm syz.6.7770: corrupted xattr block 95: invalid header
[  370.768804][T27634] EXT4-fs warning (device loop6): ext4_evict_inode:273: xattr delete (err -117)
[  370.782695][T27634] EXT4-fs (loop6): 1 orphan inode deleted
[  370.823492][T27634] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.907345][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.980679][T27660] set_capacity_and_notify: 8 callbacks suppressed
[  370.980697][T27660] loop6: detected capacity change from 0 to 512
[  371.055050][T27598] syz.1.7756 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  371.069309][T27598] CPU: 0 UID: 0 PID: 27598 Comm: syz.1.7756 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  371.069345][T27598] Tainted: [W]=WARN
[  371.069352][T27598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  371.069364][T27598] Call Trace:
[  371.069371][T27598]  <TASK>
[  371.069379][T27598]  __dump_stack+0x1d/0x30
[  371.069397][T27598]  dump_stack_lvl+0x95/0xd0
[  371.069459][T27598]  dump_stack+0x15/0x1b
[  371.069472][T27598]  dump_header+0x80/0x240
[  371.069486][T27598]  oom_kill_process+0x295/0x350
[  371.069549][T27598]  out_of_memory+0x97d/0xb80
[  371.069566][T27598]  try_charge_memcg+0x62e/0xa10
[  371.069583][T27598]  obj_cgroup_charge_pages+0x23/0xc0
[  371.069604][T27598]  __memcg_kmem_charge_page+0x9e/0x170
[  371.069700][T27598]  __alloc_frozen_pages_noprof+0x18a/0x350
[  371.069800][T27598]  alloc_pages_mpol+0xb3/0x260
[  371.069893][T27598]  alloc_pages_noprof+0x8f/0x130
[  371.069913][T27598]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  371.069976][T27598]  __kvmalloc_node_noprof+0x471/0x680
[  371.070015][T27598]  ? ip_set_alloc+0x24/0x30
[  371.070034][T27598]  ? ip_set_alloc+0x24/0x30
[  371.070053][T27598]  ip_set_alloc+0x24/0x30
[  371.070090][T27598]  hash_netiface_create+0x282/0x740
[  371.070110][T27598]  ? __pfx_hash_netiface_create+0x10/0x10
[  371.070177][T27598]  ip_set_create+0x3cf/0x970
[  371.070203][T27598]  ? __nla_parse+0x40/0x60
[  371.070287][T27598]  nfnetlink_rcv_msg+0x509/0x5d0
[  371.070316][T27598]  netlink_rcv_skb+0x123/0x220
[  371.070349][T27598]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  371.070372][T27598]  nfnetlink_rcv+0x167/0x1720
[  371.070472][T27598]  ? __kfree_skb+0x109/0x150
[  371.070492][T27598]  ? nlmon_xmit+0x4f/0x60
[  371.070536][T27598]  ? consume_skb+0x49/0x140
[  371.070555][T27598]  ? nlmon_xmit+0x4f/0x60
[  371.070575][T27598]  ? dev_hard_start_xmit+0x3a8/0x3e0
[  371.070625][T27598]  ? __dev_queue_xmit+0x139a/0x1f20
[  371.070645][T27598]  ? __dev_queue_xmit+0x148/0x1f20
[  371.070786][T27598]  ? ref_tracker_free+0x37d/0x3e0
[  371.070808][T27598]  ? __netlink_deliver_tap+0x4dc/0x500
[  371.070885][T27598]  netlink_unicast+0x5c0/0x690
[  371.070921][T27598]  netlink_sendmsg+0x5c8/0x6f0
[  371.070941][T27598]  ? __pfx_netlink_sendmsg+0x10/0x10
[  371.070953][T27598]  ____sys_sendmsg+0x5af/0x600
[  371.071028][T27598]  ___sys_sendmsg+0x195/0x1e0
[  371.071048][T27598]  __x64_sys_sendmsg+0xd4/0x160
[  371.071089][T27598]  x64_sys_call+0x17ba/0x3000
[  371.071105][T27598]  do_syscall_64+0xc0/0x2a0
[  371.071125][T27598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.071140][T27598] RIP: 0033:0x7f03bb61acb9
[  371.071152][T27598] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  371.071173][T27598] RSP: 002b:00007f03ba077028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.071186][T27598] RAX: ffffffffffffffda RBX: 00007f03bb895fa0 RCX: 00007f03bb61acb9
[  371.071195][T27598] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  371.071204][T27598] RBP: 00007f03bb688bf7 R08: 0000000000000000 R09: 0000000000000000
[  371.071219][T27598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.071227][T27598] R13: 00007f03bb896038 R14: 00007f03bb895fa0 R15: 00007fff50dee898
[  371.071260][T27598]  </TASK>
[  371.071363][T27598] memory: usage 307200kB, limit 307200kB, failcnt 942
[  371.396642][T27598] memory+swap: usage 307908kB, limit 9007199254740988kB, failcnt 0
[  371.404550][T27598] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[  371.411880][T27598] Memory cgroup stats for /syz1:
[  371.412157][T27598] cache 8192
[  371.420392][T27598] rss 0
[  371.423190][T27598] shmem 0
[  371.426183][T27598] mapped_file 0
[  371.429646][T27598] dirty 0
[  371.432695][T27598] writeback 0
[  371.436055][T27598] workingset_refault_anon 222
[  371.440727][T27598] workingset_refault_file 4413
[  371.445549][T27598] swap 724992
[  371.448895][T27598] swapcached 0
[  371.452276][T27598] pgpgin 209584
[  371.455729][T27598] pgpgout 209580
[  371.459358][T27598] pgfault 153481
[  371.463290][T27598] pgmajfault 189
[  371.466883][T27598] inactive_anon 0
[  371.470624][T27598] active_anon 0
[  371.474078][T27598] inactive_file 0
[  371.477736][T27598] active_file 16384
[  371.481533][T27598] unevictable 0
[  371.484985][T27598] hierarchical_memory_limit 314572800
[  371.490475][T27598] hierarchical_memsw_limit 9223372036854771712
[  371.496731][T27598] total_cache 8192
[  371.500452][T27598] total_rss 0
[  371.503745][T27598] total_shmem 0
[  371.507275][T27598] total_mapped_file 0
[  371.511319][T27598] total_dirty 0
[  371.514810][T27598] total_writeback 0
[  371.518812][T27598] total_workingset_refault_anon 222
[  371.524045][T27598] total_workingset_refault_file 4413
[  371.529476][T27598] total_swap 724992
[  371.533286][T27598] total_swapcached 0
[  371.537256][T27598] total_pgpgin 209584
[  371.541225][T27598] total_pgpgout 209580
[  371.545287][T27598] total_pgfault 153481
[  371.549459][T27598] total_pgmajfault 189
[  371.554123][T27598] total_inactive_anon 0
[  371.558467][T27598] total_active_anon 0
[  371.562623][T27598] total_inactive_file 0
[  371.566936][T27598] total_active_file 16384
[  371.571266][T27598] total_unevictable 0
[  371.575245][T27598] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.7756,pid=27597,uid=0
[  371.583035][T27672] __nla_validate_parse: 16 callbacks suppressed
[  371.583052][T27672] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7784'.
[  371.590284][T27598] Memory cgroup out of memory: Killed process 27597 (syz.1.7756) total-vm:94000kB, anon-rss:1204kB, file-rss:22412kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  371.606467][T27672] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7784'.
[  371.696092][T27679] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7785'.
[  371.783739][T21939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.794138][T27687] netlink: 19 bytes leftover after parsing attributes in process `syz.2.7790'.
[  371.849256][T27694] FAULT_INJECTION: forcing a failure.
[  371.849256][T27694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.862494][T27694] CPU: 0 UID: 0 PID: 27694 Comm: syz.8.7794 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  371.862529][T27694] Tainted: [W]=WARN
[  371.862536][T27694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  371.862548][T27694] Call Trace:
[  371.862554][T27694]  <TASK>
[  371.862563][T27694]  __dump_stack+0x1d/0x30
[  371.862590][T27694]  dump_stack_lvl+0x95/0xd0
[  371.862636][T27694]  dump_stack+0x15/0x1b
[  371.862733][T27694]  should_fail_ex+0x263/0x280
[  371.862761][T27694]  should_fail+0xb/0x20
[  371.862789][T27694]  should_fail_usercopy+0x1a/0x20
[  371.862825][T27694]  copy_fpstate_to_sigframe+0x636/0x7d0
[  371.862870][T27694]  ? copy_fpstate_to_sigframe+0xe5/0x7d0
[  371.862896][T27694]  ? x86_task_fpu+0x36/0x60
[  371.862967][T27694]  get_sigframe+0x34c/0x470
[  371.862988][T27694]  ? get_signal+0xdbe/0xf60
[  371.863020][T27694]  x64_setup_rt_frame+0xa7/0x4e0
[  371.863051][T27694]  arch_do_signal_or_restart+0x24b/0x450
[  371.863124][T27694]  exit_to_user_mode_loop+0x6a/0x6f0
[  371.863189][T27694]  do_syscall_64+0x1d3/0x2a0
[  371.863218][T27694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.863243][T27694] RIP: 0033:0x7f536f5ab58e
[  371.863270][T27694] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  371.863332][T27694] RSP: 002b:00007f536e046fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  371.863357][T27694] RAX: 0000000000000001 RBX: 00007f536e0476c0 RCX: 00007f536f5ab58e
[  371.863373][T27694] RDX: 0000000000000001 RSI: 00007f536e047090 RDI: 0000000000000003
[  371.863389][T27694] RBP: 00007f536e047090 R08: 0000000000000000 R09: 0000000000000000
[  371.863402][T27694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.863424][T27694] R13: 00007f536f866038 R14: 00007f536f865fa0 R15: 00007fff057085f8
[  371.863445][T27694]  </TASK>
[  372.131258][T27695] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=27695 comm=syz.2.7795
[  372.144884][   T29] kauditd_printk_skb: 167 callbacks suppressed
[  372.144901][   T29] audit: type=1400 audit(2000000494.275:13716): avc:  denied  { ioctl } for  pid=27696 comm="syz.6.7796" path="socket:[91119]" dev="sockfs" ino=91119 ioctlcmd=0xf509 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  372.188037][T27697] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7796'.
[  372.230362][T27709] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7800'.
[  372.259739][   T29] audit: type=1400 audit(2000000494.395:13717): avc:  denied  { ioctl } for  pid=27713 comm="syz.8.7801" path="socket:[92175]" dev="sockfs" ino=92175 ioctlcmd=0x942a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  372.306608][T27717] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7800'.
[  372.315473][   T29] audit: type=1400 audit(2000000494.395:13718): avc:  denied  { setopt } for  pid=27713 comm="syz.8.7801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  372.335232][   T29] audit: type=1400 audit(2000000494.395:13719): avc:  denied  { setattr } for  pid=27713 comm="syz.8.7801" name="NFC_RAW" dev="sockfs" ino=91973 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  372.358531][   T29] audit: type=1400 audit(2000000494.395:13720): avc:  denied  { setopt } for  pid=27713 comm="syz.8.7801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  372.387475][T27697] 8021q: adding VLAN 0 to HW filter on device bond0
[  372.405295][T27697] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  372.407618][T27672] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  372.460577][T27672] SELinux: failed to load policy
[  372.471645][T27728] netlink: 'syz.2.7807': attribute type 21 has an invalid length.
[  372.480341][T27726] loop8: detected capacity change from 0 to 512
[  372.487223][T27726] EXT4-fs: Ignoring removed nobh option
[  372.526391][T27726] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  372.556191][T27726] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002]
[  372.564531][T27726] EXT4-fs (loop8): orphan cleanup on readonly fs
[  372.576017][T27726] EXT4-fs error (device loop8): ext4_iget_extra_inode:5073: inode #11: comm syz.8.7806: corrupted in-inode xattr: e_name out of bounds
[  372.594448][T27726] EXT4-fs (loop8): Remounting filesystem read-only
[  372.601764][T27726] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  372.634683][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  372.649950][T27744] xt_hashlimit: size too large, truncated to 1048576
[  372.656705][T27744] xt_hashlimit: overflow, try lower: 18446744073709551610/3
[  372.669036][T27709] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  372.688084][T27709] SELinux: failed to load policy
[  372.723571][T27751] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7818'.
[  372.783207][T27762] FAULT_INJECTION: forcing a failure.
[  372.783207][T27762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.796396][T27762] CPU: 1 UID: 0 PID: 27762 Comm: syz.6.7822 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  372.796491][T27762] Tainted: [W]=WARN
[  372.796499][T27762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  372.796581][T27762] Call Trace:
[  372.796589][T27762]  <TASK>
[  372.796596][T27762]  __dump_stack+0x1d/0x30
[  372.796627][T27762]  dump_stack_lvl+0x95/0xd0
[  372.796691][T27762]  dump_stack+0x15/0x1b
[  372.796711][T27762]  should_fail_ex+0x263/0x280
[  372.796798][T27762]  should_fail+0xb/0x20
[  372.796826][T27762]  should_fail_usercopy+0x1a/0x20
[  372.796888][T27762]  _copy_from_user+0x1c/0xb0
[  372.796944][T27762]  ___sys_sendmsg+0xc1/0x1e0
[  372.796973][T27762]  __x64_sys_sendmsg+0xd4/0x160
[  372.796995][T27762]  x64_sys_call+0x17ba/0x3000
[  372.797023][T27762]  do_syscall_64+0xc0/0x2a0
[  372.797109][T27762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.797178][T27762] RIP: 0033:0x7fd0209dacb9
[  372.797203][T27762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  372.797222][T27762] RSP: 002b:00007fd01f437028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  372.797355][T27762] RAX: ffffffffffffffda RBX: 00007fd020c55fa0 RCX: 00007fd0209dacb9
[  372.797374][T27762] RDX: 0000000020008004 RSI: 0000200000000100 RDI: 0000000000000003
[  372.797389][T27762] RBP: 00007fd01f437090 R08: 0000000000000000 R09: 0000000000000000
[  372.797401][T27762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.797415][T27762] R13: 00007fd020c56038 R14: 00007fd020c55fa0 R15: 00007ffd0e58b988
[  372.797457][T27762]  </TASK>
[  373.007764][   T29] audit: type=1326 audit(2000000495.135:13721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27767 comm="syz.2.7825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  373.031789][   T29] audit: type=1326 audit(2000000495.135:13722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27767 comm="syz.2.7825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  373.055468][   T29] audit: type=1326 audit(2000000495.135:13723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27767 comm="syz.2.7825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  373.079621][   T29] audit: type=1326 audit(2000000495.135:13724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27767 comm="syz.2.7825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  373.103721][   T29] audit: type=1326 audit(2000000495.135:13725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27767 comm="syz.2.7825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  373.130516][T27779] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7828'.
[  373.139705][T27779] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7828'.
[  373.203766][T27789] loop1: detected capacity change from 0 to 512
[  373.238939][T27798] loop6: detected capacity change from 0 to 512
[  373.245605][T27798] EXT4-fs: Ignoring removed i_version option
[  373.251663][T27798] EXT4-fs: Ignoring removed bh option
[  373.276824][T27789] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.291255][T27789] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  373.320634][T27802] loop8: detected capacity change from 0 to 256
[  373.345264][T27798] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.364916][T27798] ext4 filesystem being mounted at /362/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  373.396400][T21939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.406209][ T9516] IPVS: starting estimator thread 0...
[  373.473412][T27828] FAULT_INJECTION: forcing a failure.
[  373.473412][T27828] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  373.486982][T27828] CPU: 1 UID: 0 PID: 27828 Comm: syz.8.7843 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  373.487142][T27828] Tainted: [W]=WARN
[  373.487177][T27828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  373.487196][T27828] Call Trace:
[  373.487203][T27828]  <TASK>
[  373.487213][T27828]  __dump_stack+0x1d/0x30
[  373.487242][T27828]  dump_stack_lvl+0x95/0xd0
[  373.487277][T27828]  dump_stack+0x15/0x1b
[  373.487295][T27828]  should_fail_ex+0x263/0x280
[  373.487323][T27828]  should_fail_alloc_page+0xf2/0x100
[  373.487358][T27828]  __alloc_frozen_pages_noprof+0x108/0x350
[  373.487389][T27828]  alloc_pages_mpol+0xb3/0x260
[  373.487466][T27828]  alloc_pages_noprof+0x8f/0x130
[  373.487506][T27828]  pte_alloc_one+0x1e/0xd0
[  373.487557][T27828]  handle_mm_fault+0x15b1/0x3030
[  373.487607][T27828]  do_user_addr_fault+0x3fd/0x1050
[  373.487704][T27828]  exc_page_fault+0x62/0xa0
[  373.487731][T27828]  asm_exc_page_fault+0x26/0x30
[  373.487750][T27828] RIP: 0010:rep_movs_alternative+0x30/0x90
[  373.487771][T27828] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 8d 15 02 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  373.487866][T27828] RSP: 0018:ffffc900001ebd88 EFLAGS: 00050246
[  373.487882][T27828] RAX: ffff888101670a90 RBX: 0000000000000008 RCX: 0000000000000008
[  373.487972][T27828] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: ffffc900001ebde0
[  373.487988][T27828] RBP: ffffc900001ebe28 R08: 00000000000004fd R09: 0000000000000000
[  373.488003][T27828] R10: 0001c900001ebde0 R11: 0001c900001ebde7 R12: 00002000000000c0
[  373.488018][T27828] R13: 000000000000000d R14: ffffc900001ebde0 R15: 00002000000000c0
[  373.488036][T27828]  _copy_from_user+0x6f/0xb0
[  373.488056][T27828]  mptcp_setsockopt+0x1fc1/0x2580
[  373.488145][T27828]  sock_common_setsockopt+0x69/0x80
[  373.488173][T27828]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  373.488271][T27828]  __sys_setsockopt+0x184/0x200
[  373.488316][T27828]  __x64_sys_setsockopt+0x64/0x80
[  373.488353][T27828]  x64_sys_call+0x21d5/0x3000
[  373.488416][T27828]  do_syscall_64+0xc0/0x2a0
[  373.488447][T27828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.488472][T27828] RIP: 0033:0x7f536f5eacb9
[  373.488543][T27828] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  373.488564][T27828] RSP: 002b:00007f536e047028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  373.488648][T27828] RAX: ffffffffffffffda RBX: 00007f536f865fa0 RCX: 00007f536f5eacb9
[  373.488662][T27828] RDX: 000000000000000d RSI: 0000000000000001 RDI: 0000000000000004
[  373.488673][T27828] RBP: 00007f536e047090 R08: 0000000000000008 R09: 0000000000000000
[  373.488685][T27828] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  373.488698][T27828] R13: 00007f536f866038 R14: 00007f536f865fa0 R15: 00007fff057085f8
[  373.488749][T27828]  </TASK>
[  373.783154][T27820] IPVS: using max 2352 ests per chain, 117600 per kthread
[  373.802332][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.858066][T27810] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  373.900401][T27810] SELinux: failed to load policy
[  373.927681][T27846] syz_tun: entered allmulticast mode
[  373.944399][T27846] syz_tun: left allmulticast mode
[  374.032577][T27861] syzkaller1: entered promiscuous mode
[  374.038167][T27861] syzkaller1: entered allmulticast mode
[  374.077875][T27870] loop6: detected capacity change from 0 to 512
[  374.097889][T27870] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13
[  374.108834][T27870] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.7857: iget: bad i_size value: 12154757448730
[  374.125905][T27870] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.7857: couldn't read orphan inode 13 (err -117)
[  374.140247][T27872] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  374.148617][T27872] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  374.158241][T27870] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.193336][T27883] Falling back ldisc for ptm0.
[  374.221247][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.275774][T27893] loop5: detected capacity change from 0 to 1024
[  374.331653][T27893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.350599][T27908] netlink: 'syz.8.7872': attribute type 6 has an invalid length.
[  374.499852][T27921] FAULT_INJECTION: forcing a failure.
[  374.499852][T27921] name failslab, interval 1, probability 0, space 0, times 0
[  374.512677][T27921] CPU: 1 UID: 0 PID: 27921 Comm: syz.6.7879 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  374.512709][T27921] Tainted: [W]=WARN
[  374.512716][T27921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  374.512727][T27921] Call Trace:
[  374.512734][T27921]  <TASK>
[  374.512742][T27921]  __dump_stack+0x1d/0x30
[  374.512768][T27921]  dump_stack_lvl+0x95/0xd0
[  374.512845][T27921]  dump_stack+0x15/0x1b
[  374.512928][T27921]  should_fail_ex+0x263/0x280
[  374.512959][T27921]  should_failslab+0x8c/0xb0
[  374.513019][T27921]  kmem_cache_alloc_noprof+0x68/0x490
[  374.513042][T27921]  ? getname_kernel+0x3c/0x1f0
[  374.513072][T27921]  getname_kernel+0x3c/0x1f0
[  374.513154][T27921]  do_file_open_root+0xc7/0x460
[  374.513200][T27921]  file_open_root+0xfd/0x130
[  374.513228][T27921]  kernel_read_file_from_path_initns+0xda/0x170
[  374.513356][T27921]  _request_firmware+0x7d1/0xb30
[  374.513452][T27921]  request_firmware+0x36/0x50
[  374.513546][T27921]  devlink_compat_flash_update+0xb2/0x1b0
[  374.513578][T27921]  dev_ethtool+0x14dc/0x16a0
[  374.513599][T27921]  ? full_name_hash+0x92/0xe0
[  374.513649][T27921]  dev_ioctl+0x2e0/0x960
[  374.513670][T27921]  sock_do_ioctl+0x1aa/0x230
[  374.513723][T27921]  sock_ioctl+0x41b/0x610
[  374.513745][T27921]  ? mutex_lock+0x57/0x90
[  374.513772][T27921]  ? __pfx_sock_ioctl+0x10/0x10
[  374.513797][T27921]  __se_sys_ioctl+0xce/0x140
[  374.513828][T27921]  __x64_sys_ioctl+0x43/0x50
[  374.513858][T27921]  x64_sys_call+0x14b0/0x3000
[  374.513884][T27921]  do_syscall_64+0xc0/0x2a0
[  374.513915][T27921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.513992][T27921] RIP: 0033:0x7fd0209dacb9
[  374.514009][T27921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  374.514085][T27921] RSP: 002b:00007fd01f437028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  374.514106][T27921] RAX: ffffffffffffffda RBX: 00007fd020c55fa0 RCX: 00007fd0209dacb9
[  374.514120][T27921] RDX: 0000200000000340 RSI: 0000000000008946 RDI: 0000000000000004
[  374.514133][T27921] RBP: 00007fd01f437090 R08: 0000000000000000 R09: 0000000000000000
[  374.514208][T27921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.514223][T27921] R13: 00007fd020c56038 R14: 00007fd020c55fa0 R15: 00007ffd0e58b988
[  374.514245][T27921]  </TASK>
[  374.748246][T27926] sctp: [Deprecated]: syz.1.7881 (pid 27926) Use of struct sctp_assoc_value in delayed_ack socket option.
[  374.748246][T27926] Use struct sctp_sack_info instead
[  374.770879][T27926] loop1: detected capacity change from 0 to 1024
[  374.777466][T27921] netdevsim netdevsim6: loading /lib/firmware/updates/syzkaller/. failed with error -12
[  374.804009][T27921] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  374.812384][T27921] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  374.834026][T27926] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  374.890510][T27936] netlink: 'syz.8.7886': attribute type 10 has an invalid length.
[  375.037230][T27938] netlink: 'syz.2.7887': attribute type 4 has an invalid length.
[  375.131135][T27962] loop8: detected capacity change from 0 to 1024
[  375.155107][T27962] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.178424][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.222863][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.296987][T27973] FAULT_INJECTION: forcing a failure.
[  375.296987][T27973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  375.303836][T27969] loop5: detected capacity change from 0 to 512
[  375.310204][T27973] CPU: 1 UID: 0 PID: 27973 Comm: syz.8.7901 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  375.310240][T27973] Tainted: [W]=WARN
[  375.310254][T27973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  375.310267][T27973] Call Trace:
[  375.310275][T27973]  <TASK>
[  375.310284][T27973]  __dump_stack+0x1d/0x30
[  375.310312][T27973]  dump_stack_lvl+0x95/0xd0
[  375.310347][T27973]  dump_stack+0x15/0x1b
[  375.310368][T27973]  should_fail_ex+0x263/0x280
[  375.310402][T27973]  should_fail+0xb/0x20
[  375.310430][T27973]  should_fail_usercopy+0x1a/0x20
[  375.310464][T27973]  _copy_to_user+0x20/0xa0
[  375.310559][T27973]  simple_read_from_buffer+0xb5/0x130
[  375.310597][T27973]  proc_fail_nth_read+0x10e/0x150
[  375.310627][T27973]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  375.310702][T27973]  vfs_read+0x1ab/0x7f0
[  375.310722][T27973]  ? __rcu_read_unlock+0x4e/0x70
[  375.310820][T27973]  ? __fget_files+0x184/0x1c0
[  375.310845][T27973]  ? mutex_lock+0x57/0x90
[  375.310870][T27973]  ksys_read+0xdc/0x1a0
[  375.310900][T27973]  __x64_sys_read+0x40/0x50
[  375.310921][T27973]  x64_sys_call+0x2889/0x3000
[  375.310984][T27973]  do_syscall_64+0xc0/0x2a0
[  375.311015][T27973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.311050][T27973] RIP: 0033:0x7f536f5ab58e
[  375.311068][T27973] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  375.311088][T27973] RSP: 002b:00007f536e046fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  375.311109][T27973] RAX: ffffffffffffffda RBX: 00007f536e0476c0 RCX: 00007f536f5ab58e
[  375.311127][T27973] RDX: 000000000000000f RSI: 00007f536e0470a0 RDI: 0000000000000003
[  375.311141][T27973] RBP: 00007f536e047090 R08: 0000000000000000 R09: 0000000000000000
[  375.311156][T27973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.311170][T27973] R13: 00007f536f866038 R14: 00007f536f865fa0 R15: 00007fff057085f8
[  375.311267][T27973]  </TASK>
[  375.424859][T27981] FAT-fs (loop1): Directory bread(block 32) failed
[  375.432940][T27979] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  375.469743][T27981] FAT-fs (loop1): Directory bread(block 33) failed
[  375.539810][T27981] FAT-fs (loop1): Directory bread(block 34) failed
[  375.541647][T27969] EXT4-fs (loop5): 1 orphan inode deleted
[  375.546528][T27981] FAT-fs (loop1): Directory bread(block 35) failed
[  375.553335][T27969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.559107][T27981] FAT-fs (loop1): Directory bread(block 36) failed
[  375.571822][ T1680] EXT4-fs error (device loop5): ext4_release_dquot:7022: comm kworker/u8:5: Failed to release dquot type 1
[  375.578064][T27981] FAT-fs (loop1): Directory bread(block 37) failed
[  375.596946][T27981] FAT-fs (loop1): Directory bread(block 38) failed
[  375.603478][T27981] FAT-fs (loop1): Directory bread(block 39) failed
[  375.610092][T27981] FAT-fs (loop1): Directory bread(block 40) failed
[  375.612612][T27969] ext4 filesystem being mounted at /323/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  375.616867][T27981] FAT-fs (loop1): Directory bread(block 41) failed
[  375.678286][T27969] syz_tun: entered allmulticast mode
[  375.706056][T27969] syz_tun: left allmulticast mode
[  375.722734][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.734878][T27991] lo speed is unknown, defaulting to 1000
[  375.738912][T27996] netlink: 'syz.8.7910': attribute type 1 has an invalid length.
[  375.821944][T27991] ip6_vti0 speed is unknown, defaulting to 1000
[  375.837952][T28008] EXT4-fs: Ignoring removed nobh option
[  375.851075][T28008] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  375.880145][T28008] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002]
[  375.899493][T28008] EXT4-fs (loop5): orphan cleanup on readonly fs
[  375.987633][T28008] EXT4-fs error (device loop5): ext4_iget_extra_inode:5073: inode #11: comm syz.5.7914: corrupted in-inode xattr: e_name out of bounds
[  376.008689][T28021] xt_TCPMSS: Only works on TCP SYN packets
[  376.071338][T28008] EXT4-fs (loop5): Remounting filesystem read-only
[  376.102512][T28008] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  376.182740][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  376.213694][T28035] set_capacity_and_notify: 3 callbacks suppressed
[  376.213710][T28035] loop8: detected capacity change from 0 to 1024
[  376.257991][T28035] EXT4-fs: Ignoring removed orlov option
[  376.263706][T28035] EXT4-fs: inline encryption not supported
[  376.320595][T28047] loop1: detected capacity change from 0 to 512
[  376.327997][T28049] FAULT_INJECTION: forcing a failure.
[  376.327997][T28049] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  376.341353][T28049] CPU: 0 UID: 0 PID: 28049 Comm: syz.5.7930 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  376.341386][T28049] Tainted: [W]=WARN
[  376.341393][T28049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  376.341406][T28049] Call Trace:
[  376.341425][T28049]  <TASK>
[  376.341477][T28049]  __dump_stack+0x1d/0x30
[  376.341501][T28049]  dump_stack_lvl+0x95/0xd0
[  376.341597][T28049]  dump_stack+0x15/0x1b
[  376.341620][T28049]  should_fail_ex+0x263/0x280
[  376.341654][T28049]  should_fail_alloc_page+0xf2/0x100
[  376.341793][T28049]  __alloc_frozen_pages_noprof+0x108/0x350
[  376.341824][T28049]  alloc_pages_mpol+0xb3/0x260
[  376.341890][T28049]  alloc_pages_noprof+0x8f/0x130
[  376.341934][T28049]  pte_alloc_one+0x1e/0xd0
[  376.341964][T28049]  handle_mm_fault+0x15b1/0x3030
[  376.342022][T28049]  do_user_addr_fault+0x3fd/0x1050
[  376.342056][T28049]  exc_page_fault+0x62/0xa0
[  376.342127][T28049]  asm_exc_page_fault+0x26/0x30
[  376.342149][T28049] RIP: 0010:rep_movs_alternative+0xf/0x90
[  376.342184][T28049] Code: c4 10 e9 c4 15 02 00 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 8d 15 02 00 66 2e
[  376.342244][T28049] RSP: 0018:ffffc90001e4fd88 EFLAGS: 00050246
[  376.342261][T28049] RAX: ffff8881026d2b90 RBX: 0000000000000008 RCX: 0000000000000008
[  376.342300][T28049] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: ffffc90001e4fde0
[  376.342317][T28049] RBP: ffffc90001e4fe28 R08: 0000000000000e35 R09: 0000000000000000
[  376.342334][T28049] R10: 0001c90001e4fde0 R11: 0001c90001e4fde7 R12: 00002000000000c0
[  376.342348][T28049] R13: 000000000000000d R14: ffffc90001e4fde0 R15: 00002000000000c0
[  376.342371][T28049]  _copy_from_user+0x6f/0xb0
[  376.342396][T28049]  mptcp_setsockopt+0x1fc1/0x2580
[  376.342428][T28049]  sock_common_setsockopt+0x69/0x80
[  376.342455][T28049]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  376.342498][T28049]  __sys_setsockopt+0x184/0x200
[  376.342532][T28049]  __x64_sys_setsockopt+0x64/0x80
[  376.342740][T28049]  x64_sys_call+0x21d5/0x3000
[  376.342770][T28049]  do_syscall_64+0xc0/0x2a0
[  376.342875][T28049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.342896][T28049] RIP: 0033:0x7f2cc779acb9
[  376.342910][T28049] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  376.342952][T28049] RSP: 002b:00007f2cc61f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  376.342977][T28049] RAX: ffffffffffffffda RBX: 00007f2cc7a15fa0 RCX: 00007f2cc779acb9
[  376.342991][T28049] RDX: 000000000000000d RSI: 0000000000000001 RDI: 0000000000000004
[  376.343003][T28049] RBP: 00007f2cc61f7090 R08: 0000000000000008 R09: 0000000000000000
[  376.343020][T28049] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  376.343083][T28049] R13: 00007f2cc7a16038 R14: 00007f2cc7a15fa0 R15: 00007ffe218f1238
[  376.343107][T28049]  </TASK>
[  376.345671][T28035] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.426705][T28047] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  376.666022][T28054] netlink: 'syz.6.7929': attribute type 13 has an invalid length.
[  376.702750][T28056] loop5: detected capacity change from 0 to 512
[  376.709868][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.732959][T28052] __nla_validate_parse: 14 callbacks suppressed
[  376.732977][T28052] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7929'.
[  376.766262][T28056] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  376.774669][T28056] EXT4-fs (loop5): orphan cleanup on readonly fs
[  376.798801][T28060] netlink: 64 bytes leftover after parsing attributes in process `syz.8.7932'.
[  376.811847][T28056] EXT4-fs error (device loop5): ext4_do_update_inode:5617: inode #16: comm syz.5.7931: corrupted inode contents
[  376.883096][T28056] EXT4-fs (loop5): Remounting filesystem read-only
[  376.947803][T28056] EXT4-fs (loop5): 1 truncate cleaned up
[  376.953783][   T53] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  376.964422][   T53] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  376.987485][   T53] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  376.990150][T28064] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7934'.
[  377.006623][T28064] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7934'.
[  377.015996][T28056] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-0000002a0000 ro without journal. Quota mode: writeback.
[  377.084986][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-0000002a0000.
[  377.239544][T28077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7938'.
[  377.258138][T28086] __vm_enough_memory: pid: 28086, comm: syz.6.7940, bytes: 21199755325440 not enough memory for the allocation
[  377.287074][T28091] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7941'.
[  377.338263][T28100] loop1: detected capacity change from 0 to 512
[  377.404108][T28100] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  377.534194][T28115] loop6: detected capacity change from 0 to 512
[  377.581697][T28115] EXT4-fs: Ignoring removed nobh option
[  377.614745][T28115] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  377.640304][T28115] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002]
[  377.680340][T28115] EXT4-fs (loop6): orphan cleanup on readonly fs
[  377.712571][T28115] EXT4-fs error (device loop6): ext4_iget_extra_inode:5073: inode #11: comm syz.6.7947: corrupted in-inode xattr: e_name out of bounds
[  377.743907][T28131] netlink: 'syz.2.7951': attribute type 13 has an invalid length.
[  377.770278][T28115] EXT4-fs (loop6): Remounting filesystem read-only
[  377.777402][T28115] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  377.801941][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  377.835659][T28131] netlink: 36 bytes leftover after parsing attributes in process `syz.2.7951'.
[  378.004311][T28148] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  378.135683][T28150] loop8: detected capacity change from 0 to 512
[  378.161269][T28150] EXT4-fs: Ignoring removed nobh option
[  378.186241][T28150] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  378.203628][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  378.203644][   T29] audit: type=1400 audit(2000000500.335:13757): avc:  denied  { ioctl } for  pid=28147 comm="syz.6.7959" path="socket:[92993]" dev="sockfs" ino=92993 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  378.211057][T28150] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002]
[  378.259099][T28150] EXT4-fs (loop8): orphan cleanup on readonly fs
[  378.310713][T28150] EXT4-fs error (device loop8): ext4_iget_extra_inode:5073: inode #11: comm syz.8.7960: corrupted in-inode xattr: e_name out of bounds
[  378.325212][T28150] EXT4-fs (loop8): Remounting filesystem read-only
[  378.332639][T28150] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  378.396031][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  378.412773][T28162] loop5: detected capacity change from 0 to 512
[  378.428177][T28164] macsec3: entered promiscuous mode
[  378.436487][T28162] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  378.515210][T28171] netlink: 'syz.6.7967': attribute type 3 has an invalid length.
[  378.523130][T28171] netlink: 132 bytes leftover after parsing attributes in process `syz.6.7967'.
[  378.547270][T28173] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7968'.
[  378.589939][T28177] loop8: detected capacity change from 0 to 1024
[  378.617616][T28177] loop8: detected capacity change from 0 to 128
[  378.646850][T28177] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  378.659914][T28187] xt_hashlimit: max too large, truncated to 1048576
[  378.669711][T28177] ext4 filesystem being mounted at /284/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.687411][T28189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7971'.
[  378.762692][T22897] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  378.773271][T28173] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  378.783829][T28173] SELinux: failed to load policy
[  378.926146][   T29] audit: type=1400 audit(2000000501.035:13758): avc:  denied  { name_bind } for  pid=28207 comm="syz.2.7977" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  379.115991][   T29] audit: type=1400 audit(2000000501.245:13759): avc:  denied  { write } for  pid=28228 comm="syz.6.7987" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  379.116464][T28229] netdevsim netdevsim6: Direct firmware load for ./file0 failed with error -2
[  379.243835][T28239] loop6: detected capacity change from 0 to 1024
[  379.255028][T28244] FAULT_INJECTION: forcing a failure.
[  379.255028][T28244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.268930][T28244] CPU: 1 UID: 0 PID: 28244 Comm: syz.1.7992 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  379.268970][T28244] Tainted: [W]=WARN
[  379.269031][T28244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  379.269057][T28244] Call Trace:
[  379.269065][T28244]  <TASK>
[  379.269074][T28244]  __dump_stack+0x1d/0x30
[  379.269101][T28244]  dump_stack_lvl+0x95/0xd0
[  379.269128][T28244]  dump_stack+0x15/0x1b
[  379.269151][T28244]  should_fail_ex+0x263/0x280
[  379.269186][T28244]  should_fail+0xb/0x20
[  379.269216][T28244]  should_fail_usercopy+0x1a/0x20
[  379.269275][T28244]  _copy_from_user+0x1c/0xb0
[  379.269333][T28244]  kstrtouint_from_user+0x69/0xf0
[  379.269443][T28244]  proc_fail_nth_write+0x50/0x160
[  379.269474][T28244]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  379.269568][T28244]  vfs_write+0x269/0x9f0
[  379.269587][T28244]  ? __rcu_read_unlock+0x4e/0x70
[  379.269618][T28244]  ? __fget_files+0x184/0x1c0
[  379.269638][T28244]  ? mutex_unlock+0x4e/0x90
[  379.269684][T28244]  ? mutex_lock+0x57/0x90
[  379.269710][T28244]  ksys_write+0xdc/0x1a0
[  379.269734][T28244]  __x64_sys_write+0x40/0x50
[  379.269833][T28244]  x64_sys_call+0x2847/0x3000
[  379.269916][T28244]  do_syscall_64+0xc0/0x2a0
[  379.269945][T28244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.270045][T28244] RIP: 0033:0x7f03bb5db58e
[  379.270064][T28244] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  379.270084][T28244] RSP: 002b:00007f03ba076fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  379.270175][T28244] RAX: ffffffffffffffda RBX: 00007f03ba0776c0 RCX: 00007f03bb5db58e
[  379.270190][T28244] RDX: 0000000000000001 RSI: 00007f03ba0770a0 RDI: 0000000000000004
[  379.270204][T28244] RBP: 00007f03ba077090 R08: 0000000000000000 R09: 0000000000000000
[  379.270217][T28244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.270229][T28244] R13: 00007f03bb896038 R14: 00007f03bb895fa0 R15: 00007fff50dee898
[  379.270248][T28244]  </TASK>
[  379.478643][T28239] EXT4-fs: Ignoring removed nomblk_io_submit option
[  379.486683][T28239] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  379.494818][T28239] System zones: 0-1, 3-36
[  379.515225][T28239] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.535418][   T29] audit: type=1400 audit(2000000501.665:13760): avc:  denied  { setattr } for  pid=28238 comm="syz.6.7990" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  379.571823][T28251] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  379.583783][   T29] audit: type=1400 audit(2000000501.705:13761): avc:  denied  { bind } for  pid=28238 comm="syz.6.7990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  379.603531][   T29] audit: type=1400 audit(2000000501.705:13762): avc:  denied  { name_bind } for  pid=28238 comm="syz.6.7990" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  379.625961][   T29] audit: type=1400 audit(2000000501.705:13763): avc:  denied  { node_bind } for  pid=28238 comm="syz.6.7990" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  379.709086][T28264] netlink: 'syz.1.8000': attribute type 6 has an invalid length.
[  379.826117][   T29] audit: type=1400 audit(2000000501.955:13764): avc:  denied  { read } for  pid=28277 comm="syz.8.8007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  379.872768][   T29] audit: type=1400 audit(2000000502.005:13765): avc:  denied  { map } for  pid=28277 comm="syz.8.8007" path="socket:[94240]" dev="sockfs" ino=94240 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  380.005778][T28283] netlink: 'syz.2.8006': attribute type 21 has an invalid length.
[  380.168729][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.228124][T28289] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  380.393590][   T29] audit: type=1400 audit(2000000502.525:13766): avc:  denied  { ioctl } for  pid=28292 comm="syz.5.8013" path="socket:[93790]" dev="sockfs" ino=93790 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  380.747267][T28301] EXT4-fs warning (device loop5): ext4_enable_quotas:7221: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  380.814318][T28301] EXT4-fs (loop5): mount failed
[  380.862196][T28317] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  381.029585][T28323] EXT4-fs: Ignoring removed nobh option
[  381.095823][T28323] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  381.166240][T28323] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002]
[  381.204601][T28323] EXT4-fs (loop8): orphan cleanup on readonly fs
[  381.220930][T28323] EXT4-fs error (device loop8): ext4_iget_extra_inode:5073: inode #11: comm syz.8.8024: corrupted in-inode xattr: e_name out of bounds
[  381.295527][T28323] EXT4-fs (loop8): Remounting filesystem read-only
[  381.330566][T28323] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  381.370692][T28340] netlink: 'syz.6.8032': attribute type 11 has an invalid length.
[  381.378668][T28340] netlink: 'syz.6.8032': attribute type 14 has an invalid length.
[  381.423680][T22897] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  381.447243][T28340] vxlan0: entered promiscuous mode
[  381.454033][ T5190] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  381.467863][ T5190] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  381.518450][ T5190] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  381.531166][ T5190] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  381.556231][T28355] netlink: 'syz.2.8037': attribute type 1 has an invalid length.
[  381.590276][T28359] set_capacity_and_notify: 5 callbacks suppressed
[  381.590291][T28359] loop8: detected capacity change from 0 to 128
[  381.591233][T28357] syz_tun: entered promiscuous mode
[  381.612629][T28357] syz_tun: left promiscuous mode
[  381.804659][T28383] __nla_validate_parse: 8 callbacks suppressed
[  381.804687][T28383] netlink: 140 bytes leftover after parsing attributes in process `syz.8.8045'.
[  381.853234][T28385] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8046'.
[  381.862306][T28385] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8046'.
[  381.901579][T28387] netlink: 324 bytes leftover after parsing attributes in process `syz.5.8047'.
[  381.951455][T28389] random: crng reseeded on system resumption
[  381.962814][T28389] Unrecognized hibernate image header format!
[  381.968983][T28389] PM: hibernation: Image mismatch: architecture specific data
[  381.977424][T28389] ªªªªªª: renamed from hsr0 (while UP)
[  382.024431][T28392] netlink: 140 bytes leftover after parsing attributes in process `syz.8.8049'.
[  382.097525][T28394] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8051'.
[  382.109501][T28396] loop5: detected capacity change from 0 to 256
[  382.153496][T28396] netlink: 'syz.5.8050': attribute type 23 has an invalid length.
[  382.265323][T28406] netlink: 'syz.8.8052': attribute type 13 has an invalid length.
[  382.285841][T28409] loop6: detected capacity change from 0 to 512
[  382.301422][T28409] EXT4-fs error (device loop6): ext4_xattr_inode_iget:446: comm syz.6.8055: error while reading EA inode 32 err=-116
[  382.315506][T28412] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8056'.
[  382.317319][T28409] EXT4-fs (loop6): Remounting filesystem read-only
[  382.331455][T28409] EXT4-fs (loop6): 1 orphan inode deleted
[  382.337829][T28409] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  382.350950][T28414] netlink: 'syz.5.8053': attribute type 13 has an invalid length.
[  382.384872][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.457682][T28421] loop1: detected capacity change from 0 to 512
[  382.462028][T28422] loop6: detected capacity change from 0 to 512
[  382.487853][T28422] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13
[  382.498466][T28422] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.8060: iget: bad i_size value: 12154757448730
[  382.523746][T28422] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8060: couldn't read orphan inode 13 (err -117)
[  382.549499][T28422] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.606299][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.610661][T28432] netlink: 19 bytes leftover after parsing attributes in process `syz.1.8064'.
[  382.655744][T28440] loop1: detected capacity change from 0 to 128
[  382.664217][T28438] C: renamed from team_slave_0
[  382.665632][T28440] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start 04000002)
[  382.679068][T28440] FAT-fs (loop1): Filesystem has been set read-only
[  382.690033][T28438] netlink: 116 bytes leftover after parsing attributes in process `syz.2.8066'.
[  382.699329][T28438] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  382.739196][T28444] netlink: 104 bytes leftover after parsing attributes in process `syz.6.8069'.
[  382.912666][T28477] validate_nla: 2 callbacks suppressed
[  382.912681][T28477] netlink: 'syz.1.8082': attribute type 10 has an invalid length.
[  382.932467][T28477] 8021q: adding VLAN 0 to HW filter on device bond0
[  382.949526][T28477] team0: Port device bond0 added
[  383.010322][T28488] loop1: detected capacity change from 0 to 512
[  383.107879][T28512] netlink: 'syz.8.8085': attribute type 12 has an invalid length.
[  383.118702][T28513] loop6: detected capacity change from 0 to 512
[  383.135511][T28513] ext4: Unknown parameter 'nouser_xattr'
[  383.195827][T28525] loop5: detected capacity change from 0 to 1024
[  383.217717][T28525] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.241175][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.259073][T28530] netlink: 'syz.5.8096': attribute type 13 has an invalid length.
[  383.280395][T28531] loop1: detected capacity change from 0 to 1024
[  383.290513][T28531] EXT4-fs: Ignoring removed orlov option
[  383.296225][T28531] EXT4-fs: inline encryption not supported
[  383.329210][T28531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.364632][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  383.364648][   T29] audit: type=1326 audit(2000000505.495:13773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.395008][   T29] audit: type=1326 audit(2000000505.495:13774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.418816][   T29] audit: type=1326 audit(2000000505.495:13775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.419459][T28537] ip6tnl0: Caught tx_queue_len zero misconfig
[  383.442621][   T29] audit: type=1326 audit(2000000505.495:13776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.472298][   T29] audit: type=1326 audit(2000000505.495:13777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.495843][   T29] audit: type=1326 audit(2000000505.495:13778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.519612][   T29] audit: type=1326 audit(2000000505.495:13779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.544330][   T29] audit: type=1326 audit(2000000505.685:13780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.568144][   T29] audit: type=1326 audit(2000000505.685:13781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.591781][   T29] audit: type=1326 audit(2000000505.685:13782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28535 comm="syz.5.8097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2cc779acb9 code=0x7ffc0000
[  383.745560][T28546] 9pnet_fd: p9_fd_create_unix (28546): problem connecting socket: ./file0: -111
[  383.779496][T21939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.843360][T28553] netlink: 'syz.1.8103': attribute type 10 has an invalid length.
[  383.856966][T28553] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  383.877142][T28546]  loop5: p1 p2 p3 p4
[  383.882119][T28546] loop5: p1 size 196608 extends beyond EOD, truncated
[  383.890367][T28546] loop5: p2 start 164919041 is beyond EOD, truncated
[  383.897190][T28546] loop5: p3 size 66846464 extends beyond EOD, truncated
[  383.906128][T28553] netdevsim netdevsim1 ì: renamed from netdevsim0 (while UP)
[  383.919531][T28546] loop5: p4 size 37048832 extends beyond EOD, truncated
[  383.947341][ T3002]  loop5: p1 p2 p3 p4
[  383.951602][ T3002] loop5: p1 size 196608 extends beyond EOD, truncated
[  383.965900][ T3002] loop5: p2 start 164919041 is beyond EOD, truncated
[  383.972683][ T3002] loop5: p3 size 66846464 extends beyond EOD, truncated
[  383.973293][T28562] netlink: 'syz.1.8107': attribute type 13 has an invalid length.
[  383.987629][ T3002] loop5: p4 size 37048832 extends beyond EOD, truncated
[  384.176975][T28578] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  384.253377][T28590] cgroup: Need name or subsystem set
[  384.331395][T28598] lo speed is unknown, defaulting to 1000
[  384.364646][T28598] ip6_vti0 speed is unknown, defaulting to 1000
[  384.387453][T28601] lo speed is unknown, defaulting to 1000
[  384.438795][T28601] ip6_vti0 speed is unknown, defaulting to 1000
[  384.523906][T28604] netlink: 'syz.2.8122': attribute type 29 has an invalid length.
[  384.738843][T28628] bond4: option lacp_rate: invalid value (20)
[  384.747594][T28628] bond4 (unregistering): Released all slaves
[  384.751979][T28633] nft_compat: unsupported protocol 1
[  384.861166][T28642] bond2: option updelay: invalid value (18446744073709551613)
[  384.868826][T28642] bond2: option updelay: allowed values 0 - 2147483647
[  384.878810][T28646] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  384.895307][T28647] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13
[  384.904211][T28647] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.8138: iget: bad i_size value: 12154757448730
[  384.919228][T28647] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8138: couldn't read orphan inode 13 (err -117)
[  384.931785][T28647] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.992698][T28642] bond2 (unregistering): Released all slaves
[  385.018826][T28653] netlink: 'syz.8.8139': attribute type 6 has an invalid length.
[  385.084360][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.234191][T28679] netlink: 'syz.6.8150': attribute type 1 has an invalid length.
[  385.278991][T28675] team1: entered promiscuous mode
[  385.284106][T28675] team1: entered allmulticast mode
[  385.310603][T28675] 8021q: adding VLAN 0 to HW filter on device team1
[  385.403140][T28694] lo speed is unknown, defaulting to 1000
[  385.425857][T28679] 8021q: adding VLAN 0 to HW filter on device bond4
[  385.449386][T28679] 8021q: adding VLAN 0 to HW filter on device bond4
[  385.470261][T28679] bond4: (slave geneve3): making interface the new active one
[  385.489047][T28679] bond4: (slave geneve3): Enslaving as an active interface with an up link
[  385.521294][ T1680] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[  385.536208][T28694] ip6_vti0 speed is unknown, defaulting to 1000
[  385.542693][ T1680] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  385.560283][ T1680] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  385.579364][ T1680] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  385.670603][T28706] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.696542][T21939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.727133][T28710] --map-set only usable from mangle table
[  385.808528][T28718] EXT4-fs (loop1): 1 truncate cleaned up
[  385.847848][T28718] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  385.892904][T28718] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.8162: bg 0: block 465: padding at end of block bitmap is not set
[  385.928155][T28718] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 28
[  385.940835][T28718] EXT4-fs (loop1): This should not happen!! Data will be lost
[  385.940835][T28718] 
[  385.950920][T28718] EXT4-fs (loop1): Total free blocks count 0
[  385.957060][T28718] EXT4-fs (loop1): Free/Dirty block details
[  385.962953][T28718] EXT4-fs (loop1): free_blocks=0
[  385.968016][T28718] EXT4-fs (loop1): dirty_blocks=2
[  385.970055][T28729] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  385.973043][T28718] EXT4-fs (loop1): Block reservation details
[  385.985223][T28729] EXT4-fs (loop1): This should not happen!! Data will be lost
[  385.985223][T28729] 
[  386.005249][T28714] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  386.054792][T28718] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2573 sclass=netlink_route_socket pid=28718 comm=syz.1.8162
[  386.132128][T28736] FAULT_INJECTION: forcing a failure.
[  386.132128][T28736] name failslab, interval 1, probability 0, space 0, times 0
[  386.144887][T28736] CPU: 0 UID: 0 PID: 28736 Comm: syz.1.8167 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  386.144951][T28736] Tainted: [W]=WARN
[  386.144958][T28736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  386.144970][T28736] Call Trace:
[  386.144977][T28736]  <TASK>
[  386.144986][T28736]  __dump_stack+0x1d/0x30
[  386.145011][T28736]  dump_stack_lvl+0x95/0xd0
[  386.145077][T28736]  dump_stack+0x15/0x1b
[  386.145172][T28736]  should_fail_ex+0x263/0x280
[  386.145275][T28736]  should_failslab+0x8c/0xb0
[  386.145297][T28736]  __kmalloc_noprof+0xb8/0x580
[  386.145320][T28736]  ? sel_write_validatetrans+0x1f8/0x370
[  386.145407][T28736]  sel_write_validatetrans+0x1f8/0x370
[  386.145459][T28736]  vfs_writev+0x42b/0x900
[  386.145482][T28736]  ? __pfx_sel_write_validatetrans+0x10/0x10
[  386.145521][T28736]  do_writev+0xe9/0x210
[  386.145595][T28736]  __x64_sys_writev+0x45/0x50
[  386.145615][T28736]  x64_sys_call+0x1ba5/0x3000
[  386.145639][T28736]  do_syscall_64+0xc0/0x2a0
[  386.145699][T28736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.145721][T28736] RIP: 0033:0x7f03bb61acb9
[  386.145736][T28736] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  386.145755][T28736] RSP: 002b:00007f03ba077028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  386.145805][T28736] RAX: ffffffffffffffda RBX: 00007f03bb895fa0 RCX: 00007f03bb61acb9
[  386.145879][T28736] RDX: 0000000000000001 RSI: 00002000000009c0 RDI: 0000000000000003
[  386.145892][T28736] RBP: 00007f03ba077090 R08: 0000000000000000 R09: 0000000000000000
[  386.145905][T28736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.145917][T28736] R13: 00007f03bb896038 R14: 00007f03bb895fa0 R15: 00007fff50dee898
[  386.145963][T28736]  </TASK>
[  386.345977][T28733] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  386.383665][T28733] EXT4-fs (loop6): mount failed
[  386.494315][T28744] x_tables: ip_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[  386.567836][T28740] team0: Port device bond0 removed
[  386.725443][T28737] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  386.742031][T28740] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  386.753589][T28762] netlink: 'syz.2.8175': attribute type 21 has an invalid length.
[  386.758742][T28737] SELinux: failed to load policy
[  386.765054][T22765] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  386.777563][T22765] CPU: 0 UID: 0 PID: 22765 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  386.777693][T22765] Tainted: [W]=WARN
[  386.777699][T22765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  386.777712][T22765] Call Trace:
[  386.777721][T22765]  <TASK>
[  386.777730][T22765]  __dump_stack+0x1d/0x30
[  386.777826][T22765]  dump_stack_lvl+0x95/0xd0
[  386.777846][T22765]  dump_stack+0x15/0x1b
[  386.777865][T22765]  dump_header+0x80/0x240
[  386.777885][T22765]  oom_kill_process+0x295/0x350
[  386.777967][T22765]  out_of_memory+0x97d/0xb80
[  386.777994][T22765]  try_charge_memcg+0x62e/0xa10
[  386.778031][T22765]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  386.778080][T22765]  __read_swap_cache_async+0x17b/0x2d0
[  386.778129][T22765]  swap_cluster_readahead+0x362/0x3c0
[  386.778243][T22765]  swapin_readahead+0xde/0x840
[  386.778278][T22765]  ? next_uptodate_folio+0x845/0x8c0
[  386.778318][T22765]  ? __perf_event_task_sched_in+0xa65/0xad0
[  386.778349][T22765]  ? __rcu_read_unlock+0x4e/0x70
[  386.778383][T22765]  ? swap_cache_get_folio+0x26f/0x280
[  386.778415][T22765]  do_swap_page+0x59b/0x2a50
[  386.778458][T22765]  ? finish_task_switch+0x79/0x280
[  386.778489][T22765]  ? __schedule+0x82d/0xc90
[  386.778515][T22765]  ? __rcu_read_lock+0x36/0x50
[  386.778610][T22765]  ? __pfx_default_wake_function+0x10/0x10
[  386.778639][T22765]  handle_mm_fault+0xb40/0x3030
[  386.778670][T22765]  ? vma_start_read+0x1c7/0x2c0
[  386.778798][T22765]  do_user_addr_fault+0x62f/0x1050
[  386.778825][T22765]  exc_page_fault+0x62/0xa0
[  386.778851][T22765]  asm_exc_page_fault+0x26/0x30
[  386.778875][T22765] RIP: 0033:0x7f2cc7755ed7
[  386.778970][T22765] Code: 48 89 fa 4c 89 df e8 a8 56 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  386.778990][T22765] RSP: 002b:00007ffe218f1530 EFLAGS: 00010202
[  386.779010][T22765] RAX: 0000000000000000 RBX: 0000555593148500 RCX: 00007f2cc7755ed7
[  386.779024][T22765] RDX: 00007ffe218f1570 RSI: 0000000000000000 RDI: 0000000000000000
[  386.779037][T22765] RBP: 00007ffe218f15dc R08: 0000000000000000 R09: 0000000000000000
[  386.779049][T22765] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  386.779062][T22765] R13: 00000000000927c0 R14: 000000000005e3e2 R15: 00007ffe218f1630
[  386.779092][T22765]  </TASK>
[  386.779295][T22765] memory: usage 307200kB, limit 307200kB, failcnt 834
[  386.830586][T28740] bond0 (unregistering): Released all slaves
[  386.833484][T22765] memory+swap: usage 308200kB, limit 9007199254740988kB, failcnt 0
[  386.833564][T22765] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[  386.833578][T22765] Memory cgroup stats for /syz5:
[  386.840306][T22765] cache 8192
[  387.049016][T22765] rss 0
[  387.051845][T22765] shmem 0
[  387.054762][T22765] mapped_file 0
[  387.058248][T22765] dirty 0
[  387.061227][T22765] writeback 4096
[  387.064748][T22765] workingset_refault_anon 155
[  387.069422][T22765] workingset_refault_file 256
[  387.074122][T22765] swap 1024000
[  387.077509][T22765] swapcached 4096
[  387.081259][T22765] pgpgin 157648
[  387.084695][T22765] pgpgout 157644
[  387.088361][T22765] pgfault 173234
[  387.092259][T22765] pgmajfault 112
[  387.095857][T22765] inactive_anon 0
[  387.099932][T22765] active_anon 0
[  387.103483][T22765] inactive_file 0
[  387.107153][T22765] active_file 12288
[  387.111030][T22765] unevictable 0
[  387.114547][T22765] hierarchical_memory_limit 314572800
[  387.120033][T22765] hierarchical_memsw_limit 9223372036854771712
[  387.126389][T22765] total_cache 8192
[  387.130194][T22765] total_rss 0
[  387.133553][T22765] total_shmem 0
[  387.137126][T22765] total_mapped_file 0
[  387.141109][T22765] total_dirty 0
[  387.144635][T22765] total_writeback 4096
[  387.149042][T22765] total_workingset_refault_anon 155
[  387.154418][T22765] total_workingset_refault_file 256
[  387.160087][T22765] total_swap 1024000
[  387.164196][T22765] total_swapcached 4096
[  387.168455][T22765] total_pgpgin 157648
[  387.172625][T22765] total_pgpgout 157644
[  387.176746][T22765] total_pgfault 173234
[  387.181055][T22765] total_pgmajfault 112
[  387.185169][T22765] total_inactive_anon 0
[  387.189330][T22765] total_active_anon 0
[  387.193304][T22765] total_inactive_file 0
[  387.197664][T22765] total_active_file 12288
[  387.202422][T22765] total_unevictable 0
[  387.206436][T22765] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.8160,pid=28712,uid=0
[  387.221890][T22765] Memory cgroup out of memory: Killed process 28712 (syz.5.8160) total-vm:94000kB, anon-rss:1204kB, file-rss:22412kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  387.268809][T28762] netlink: 'syz.2.8175': attribute type 4 has an invalid length.
[  387.276598][T28762] __nla_validate_parse: 13 callbacks suppressed
[  387.276616][T28762] netlink: 3 bytes leftover after parsing attributes in process `syz.2.8175'.
[  387.454735][T28778] set_capacity_and_notify: 8 callbacks suppressed
[  387.454751][T28778] loop1: detected capacity change from 0 to 512
[  387.471621][T28778] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  387.550699][T28786] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8184'.
[  387.559637][T28786] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8184'.
[  387.573204][T28786] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8184'.
[  387.574824][ T5190] netdevsim netdevsim1 ì: set [0, 0] type 1 family 0 port 8472 - 0
[  387.582214][T28786] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8184'.
[  387.599381][ T5190] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  387.610503][ T1680] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  387.634427][T28795] loop6: detected capacity change from 0 to 512
[  387.641120][ T1680] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  387.647124][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.664518][T28795] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13
[  387.680667][T28795] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.8188: iget: bad i_size value: 12154757448730
[  387.692818][T28800] loop1: detected capacity change from 0 to 256
[  387.697152][T28795] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.8188: couldn't read orphan inode 13 (err -117)
[  387.713097][T28795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.719239][T28800] FAT-fs (loop1): Directory bread(block 64) failed
[  387.733114][T28800] FAT-fs (loop1): Directory bread(block 65) failed
[  387.740935][T28800] FAT-fs (loop1): Directory bread(block 66) failed
[  387.747795][T28800] FAT-fs (loop1): Directory bread(block 67) failed
[  387.754629][T28800] FAT-fs (loop1): Directory bread(block 68) failed
[  387.761435][T28800] FAT-fs (loop1): Directory bread(block 69) failed
[  387.768141][T28800] FAT-fs (loop1): Directory bread(block 70) failed
[  387.774761][T28800] FAT-fs (loop1): Directory bread(block 71) failed
[  387.782017][T28800] FAT-fs (loop1): Directory bread(block 72) failed
[  387.788907][T28800] FAT-fs (loop1): Directory bread(block 73) failed
[  387.812802][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.824974][T28810] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8186'.
[  387.850981][T28810] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8186'.
[  387.857305][T28814] netlink: 19 bytes leftover after parsing attributes in process `syz.6.8194'.
[  387.884235][T28817] loop1: detected capacity change from 0 to 512
[  387.900075][T28817] EXT4-fs: Ignoring removed i_version option
[  387.906848][T28817] EXT4-fs: inline encryption not supported
[  387.925820][T28817] EXT4-fs (loop1): 1 orphan inode deleted
[  387.934586][T28817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.960595][T21939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.999877][T28825] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  388.010371][T28825] SELinux: failed to load policy
[  388.085164][T28830] netlink: 16 bytes leftover after parsing attributes in process `syz.5.8200'.
[  388.101341][T28830] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8200'.
[  388.110387][T28830] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.117887][T28830] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.125876][T28830] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.133354][T28830] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.258465][T28833] loop5: detected capacity change from 0 to 512
[  388.280090][T28833] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101)
[  388.490848][T28853] 8021q: adding VLAN 0 to HW filter on device bond4
[  388.542685][T28862] loop5: detected capacity change from 0 to 1024
[  388.562897][T28865] loop6: detected capacity change from 0 to 1024
[  388.569856][T28865] EXT4-fs: Ignoring removed mblk_io_submit option
[  388.577670][T28865] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  388.587144][T28865] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  388.606153][T28865] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.8214: bad orphan inode 11
[  388.616979][T28865] EXT4-fs (loop6): Remounting filesystem read-only
[  388.623571][T28865] ext4_test_bit(bit=10, block=4) = 1
[  388.628946][T28865] is_bad_inode(inode)=0
[  388.633125][T28865] NEXT_ORPHAN(inode)=3254779904
[  388.638131][T28865] max_ino=32
[  388.641463][T28865] i_nlink=0
[  388.646389][T28865] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.689086][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.724813][T28862] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  388.782831][T28887] loop8: detected capacity change from 0 to 512
[  388.805837][T28883] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  388.816334][T28887] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  388.823777][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.832966][T28887] EXT4-fs (loop8): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  388.846414][T28887] EXT4-fs (loop8): group descriptors corrupted!
[  388.883675][   T29] kauditd_printk_skb: 185 callbacks suppressed
[  388.883690][   T29] audit: type=1400 audit(2000000511.015:13967): avc:  denied  { read write } for  pid=28886 comm="syz.8.8222" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  388.913705][   T29] audit: type=1400 audit(2000000511.015:13968): avc:  denied  { open } for  pid=28886 comm="syz.8.8222" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  388.975539][T28883] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  389.016314][T28883] bond0 (unregistering): Released all slaves
[  389.134702][T28905] bond2: peer notification delay (97) is not a multiple of miimon (10), value rounded to 90 ms
[  389.147369][T28905] 8021q: adding VLAN 0 to HW filter on device bond2
[  389.158007][T28907] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  389.166312][T28907] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  389.182934][T28909] syz_tun: entered promiscuous mode
[  389.189984][T28909] syz_tun: left promiscuous mode
[  389.341427][   T29] audit: type=1400 audit(2000000511.475:13969): avc:  denied  { wake_alarm } for  pid=28934 comm="syz.2.8237" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  389.426791][   T29] audit: type=1326 audit(2000000511.565:13970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28946 comm="syz.6.8241" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd0209dacb9 code=0x0
[  389.518948][   T29] audit: type=1400 audit(2000000511.655:13971): avc:  denied  { ioctl } for  pid=28958 comm="syz.2.8245" path="socket:[95073]" dev="sockfs" ino=95073 ioctlcmd=0x89f2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  389.585452][T28959] netlink: 'syz.2.8245': attribute type 21 has an invalid length.
[  389.603495][T28975] loop1: detected capacity change from 0 to 1024
[  389.624676][T28981] loop8: detected capacity change from 0 to 128
[  389.638223][T28975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.657989][T28981] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 1, start 04000002)
[  389.668022][T28981] FAT-fs (loop8): Filesystem has been set read-only
[  389.773835][T28987] bridge0: port 3(macsec1) entered blocking state
[  389.780425][T28987] bridge0: port 3(macsec1) entered disabled state
[  389.789372][T28989] netlink: 'syz.8.8252': attribute type 6 has an invalid length.
[  389.815000][T28987] macsec1: entered allmulticast mode
[  389.820449][T28987] bridge0: entered allmulticast mode
[  389.840222][T28987] macsec1: left allmulticast mode
[  389.845386][T28987] bridge0: left allmulticast mode
[  389.910345][T28951] bond0 (unregistering): left promiscuous mode
[  389.918315][T28951] bond_slave_0: left promiscuous mode
[  389.925065][T28951] bond_slave_1: left promiscuous mode
[  389.948102][T28951] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  390.162869][T28951] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  390.183744][T29005] netlink: 'syz.8.8253': attribute type 1 has an invalid length.
[  390.203571][T29010] EXT4-fs: Ignoring removed nobh option
[  390.218660][T28951] bond0 (unregistering): Released all slaves
[  390.238789][T29010] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.251616][T29010] ext4 filesystem being mounted at /440/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  390.362460][T28973] syz.1.8247 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  390.373666][T28973] CPU: 0 UID: 0 PID: 28973 Comm: syz.1.8247 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  390.373716][T28973] Tainted: [W]=WARN
[  390.373724][T28973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  390.373735][T28973] Call Trace:
[  390.373741][T28973]  <TASK>
[  390.373750][T28973]  __dump_stack+0x1d/0x30
[  390.373775][T28973]  dump_stack_lvl+0x95/0xd0
[  390.373813][T28973]  dump_stack+0x15/0x1b
[  390.373838][T28973]  dump_header+0x80/0x240
[  390.373858][T28973]  oom_kill_process+0x295/0x350
[  390.373883][T28973]  out_of_memory+0x97d/0xb80
[  390.373909][T28973]  try_charge_memcg+0x62e/0xa10
[  390.373933][T28973]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  390.374120][T28973]  __read_swap_cache_async+0x17b/0x2d0
[  390.374156][T28973]  swap_cluster_readahead+0x262/0x3c0
[  390.374221][T28973]  swapin_readahead+0xde/0x840
[  390.374253][T28973]  ? __perf_event_task_sched_in+0xa65/0xad0
[  390.374282][T28973]  ? __rcu_read_unlock+0x4e/0x70
[  390.374364][T28973]  ? swap_cache_get_folio+0x26f/0x280
[  390.374395][T28973]  do_swap_page+0x59b/0x2a50
[  390.374428][T28973]  ? finish_task_switch+0x79/0x280
[  390.374613][T28973]  ? __schedule+0x82d/0xc90
[  390.374632][T28973]  ? __rcu_read_lock+0x36/0x50
[  390.374658][T28973]  ? __pfx_default_wake_function+0x10/0x10
[  390.374758][T28973]  handle_mm_fault+0xb40/0x3030
[  390.374792][T28973]  ? vma_start_read+0x1c7/0x2c0
[  390.374880][T28973]  do_user_addr_fault+0x62f/0x1050
[  390.374906][T28973]  exc_page_fault+0x62/0xa0
[  390.374950][T28973]  asm_exc_page_fault+0x26/0x30
[  390.374983][T28973] RIP: 0033:0x7f03bb4e874c
[  390.374994][T28973] Code: ca 30 13 00 eb 24 66 66 2e 0f 1f 84 00 00 00 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 81 c3 f0 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  390.375006][T28973] RSP: 002b:00007fff50deea00 EFLAGS: 00010202
[  390.375018][T28973] RAX: 0000000000000000 RBX: 00007f03bb895fa0 RCX: 000055558a482808
[  390.375027][T28973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  390.375035][T28973] RBP: 00007f03bb897da0 R08: 0000000000000000 R09: 0000000000000000
[  390.375117][T28973] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000005f4eb
[  390.375125][T28973] R13: 00007f03bb895fac R14: 000000000005f230 R15: 00007fff50deeb00
[  390.375206][T28973]  </TASK>
[  390.375211][T28973] memory: usage 307200kB, limit 307200kB, failcnt 1292
[  390.484939][T29026] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  390.486910][T28973] memory+swap: usage 308176kB, limit 9007199254740988kB, failcnt 0
[  390.486928][T28973] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[  390.486943][T28973] Memory cgroup stats for 
[  390.491874][T29026] SELinux: failed to load policy
[  390.496314][T28973] /syz1:
[  390.644247][T28973] cache 8192
[  390.650320][T28973] rss 0
[  390.653070][T28973] shmem 0
[  390.656091][T28973] mapped_file 0
[  390.659768][T28973] dirty 0
[  390.662705][T28973] writeback 0
[  390.666026][T28973] workingset_refault_anon 269
[  390.670701][T28973] workingset_refault_file 5052
[  390.675477][T28973] swap 999424
[  390.678806][T28973] swapcached 4096
[  390.682436][T28973] pgpgin 227374
[  390.685887][T28973] pgpgout 227368
[  390.689530][T28973] pgfault 174749
[  390.693093][T28973] pgmajfault 222
[  390.696662][T28973] inactive_anon 0
[  390.700302][T28973] active_anon 4096
[  390.704020][T28973] inactive_file 0
[  390.707743][T28973] active_file 20480
[  390.711642][T28973] unevictable 0
[  390.715202][T28973] hierarchical_memory_limit 314572800
[  390.720726][T28973] hierarchical_memsw_limit 9223372036854771712
[  390.727192][T28973] total_cache 8192
[  390.730926][T28973] total_rss 0
[  390.734200][T28973] total_shmem 0
[  390.737667][T28973] total_mapped_file 0
[  390.741636][T28973] total_dirty 0
[  390.745068][T28973] total_writeback 0
[  390.748928][T28973] total_workingset_refault_anon 269
[  390.754119][T28973] total_workingset_refault_file 5052
[  390.759450][T28973] total_swap 999424
[  390.763508][T28973] total_swapcached 4096
[  390.767689][T28973] total_pgpgin 227374
[  390.771702][T28973] total_pgpgout 227368
[  390.775747][T28973] total_pgfault 174749
[  390.779820][T28973] total_pgmajfault 222
[  390.784056][T28973] total_inactive_anon 0
[  390.788227][T28973] total_active_anon 4096
[  390.792637][T28973] total_inactive_file 0
[  390.796890][T28973] total_active_file 20480
[  390.801307][T28973] total_unevictable 0
[  390.805264][T28973] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.8247,pid=28973,uid=0
[  390.819920][T28973] Memory cgroup out of memory: Killed process 28973 (syz.1.8247) total-vm:94000kB, anon-rss:1332kB, file-rss:22412kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  390.929431][T29035] xt_hashlimit: size too large, truncated to 1048576
[  390.942824][T29036] C: renamed from team_slave_0 (while UP)
[  390.968436][T29036] netlink: 'syz.8.8267': attribute type 3 has an invalid length.
[  390.976227][T29036] netlink: 'syz.8.8267': attribute type 1 has an invalid length.
[  390.983973][T29036] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  391.090042][T29045] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  391.102438][T29043] syzkaller1: entered promiscuous mode
[  391.108025][T29043] syzkaller1: entered allmulticast mode
[  391.165257][T29048] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  391.194860][T29048] EXT4-fs (loop5): orphan cleanup on readonly fs
[  391.227546][T29048] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 72 vs 41 free clusters
[  391.242025][T29048] Quota error (device loop5): write_blk: dquota write failed
[  391.249538][T29048] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[  391.259005][T29048] Quota error (device loop5): write_blk: dquota write failed
[  391.266697][T29048] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  391.277654][T29048] EXT4-fs error (device loop5): ext4_acquire_dquot:6986: comm syz.5.8270: Failed to acquire dquot type 1
[  391.294692][T29063] lo speed is unknown, defaulting to 1000
[  391.310756][T29048] EXT4-fs (loop5): 1 truncate cleaned up
[  391.331766][T29057] ext4 filesystem being mounted at /390/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.348799][T29057] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  391.362966][T29057] tunl0: Caught tx_queue_len zero misconfig
[  391.369811][T29069] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  391.376246][T29063] ip6_vti0 speed is unknown, defaulting to 1000
[  391.480727][T29069] EXT4-fs warning (device loop5): ext4_multi_mount_protect:394: Unable to create kmmpd thread for loop5.
[  391.537011][T29067] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  391.554184][T29067] SELinux: failed to load policy
[  391.742000][T29097] netlink: 'syz.6.8288': attribute type 13 has an invalid length.
[  391.869176][T29114] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  391.878766][T29110] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=4
[  391.890746][T29110] EXT4-fs warning (device loop1): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  391.906699][T29110] EXT4-fs (loop1): mount failed
[  391.968455][T29119] 9p: Bad value for 'rfdno'
[  391.985093][T29121] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -13
[  391.994104][T29121] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #13: comm syz.5.8297: iget: bad i_size value: 12154757448730
[  392.008276][T29121] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.8297: couldn't read orphan inode 13 (err -117)
[  392.102373][T29117] vhci_hcd vhci_hcd.0: invalid port number 0
[  392.233526][T29148] xt_hashlimit: size too large, truncated to 1048576
[  392.376020][T29160] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  392.401783][T29160] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.8313: bad orphan inode 16
[  392.411897][T29163] __nla_validate_parse: 20 callbacks suppressed
[  392.411915][T29163] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8314'.
[  392.412015][T29163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8314'.
[  392.436562][T29160] ext4_test_bit(bit=15, block=4) = 0
[  392.442262][T29160] EXT4-fs (loop8): 1 orphan inode deleted
[  392.443731][T29164] netlink: 196 bytes leftover after parsing attributes in process `syz.5.8304'.
[  392.520844][T29172] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8317'.
[  392.544095][T29174] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8318'.
[  392.554658][T29172] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8317'.
[  392.615480][T29177] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8320'.
[  392.739916][T29188] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8324'.
[  392.803756][T29198] bridge1: entered promiscuous mode
[  392.861150][T29205] set_capacity_and_notify: 10 callbacks suppressed
[  392.861169][T29205] loop8: detected capacity change from 0 to 512
[  392.896521][T29205] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -13
[  392.907813][T29205] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #13: comm syz.8.8330: iget: bad i_size value: 12154757448730
[  392.913404][T29210] loop6: detected capacity change from 0 to 512
[  392.927360][T29205] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.8330: couldn't read orphan inode 13 (err -117)
[  392.948578][T29210] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  393.048957][T29216] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8334'.
[  393.224278][T29223] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8337'.
[  393.401043][T29223] 8021q: adding VLAN 0 to HW filter on device bond0
[  393.499680][T29235] loop6: detected capacity change from 0 to 512
[  393.589783][T29240] syzkaller1: entered promiscuous mode
[  393.595282][T29240] syzkaller1: entered allmulticast mode
[  393.874809][T29233] vlan3: entered promiscuous mode
[  393.952612][T29243] bond5: option lacp_rate: invalid value (20)
[  393.969624][T29243] bond5 (unregistering): Released all slaves
[  394.015802][T21418] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  394.026987][T21418] CPU: 0 UID: 0 PID: 21418 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  394.027030][T21418] Tainted: [W]=WARN
[  394.027038][T21418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  394.027052][T21418] Call Trace:
[  394.027058][T21418]  <TASK>
[  394.027066][T21418]  __dump_stack+0x1d/0x30
[  394.027097][T21418]  dump_stack_lvl+0x95/0xd0
[  394.027184][T21418]  dump_stack+0x15/0x1b
[  394.027203][T21418]  dump_header+0x80/0x240
[  394.027225][T21418]  oom_kill_process+0x295/0x350
[  394.027308][T21418]  out_of_memory+0x97d/0xb80
[  394.027335][T21418]  try_charge_memcg+0x62e/0xa10
[  394.027362][T21418]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  394.027430][T21418]  __read_swap_cache_async+0x17b/0x2d0
[  394.027461][T21418]  swap_cluster_readahead+0x262/0x3c0
[  394.027497][T21418]  swapin_readahead+0xde/0x840
[  394.027559][T21418]  ? __perf_event_task_sched_in+0xa65/0xad0
[  394.027595][T21418]  ? __rcu_read_unlock+0x4e/0x70
[  394.027624][T21418]  ? swap_cache_get_folio+0x26f/0x280
[  394.027655][T21418]  do_swap_page+0x59b/0x2a50
[  394.027741][T21418]  ? finish_task_switch+0x79/0x280
[  394.027770][T21418]  ? __schedule+0x82d/0xc90
[  394.027791][T21418]  ? __rcu_read_lock+0x36/0x50
[  394.027818][T21418]  ? __pfx_default_wake_function+0x10/0x10
[  394.027867][T21418]  handle_mm_fault+0xb40/0x3030
[  394.027901][T21418]  ? vma_start_read+0x1c7/0x2c0
[  394.027931][T21418]  do_user_addr_fault+0x62f/0x1050
[  394.027960][T21418]  exc_page_fault+0x62/0xa0
[  394.027986][T21418]  asm_exc_page_fault+0x26/0x30
[  394.028090][T21418] RIP: 0033:0x7f365fd65ed7
[  394.028110][T21418] Code: 48 89 fa 4c 89 df e8 a8 56 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  394.028130][T21418] RSP: 002b:00007ffde5cfa600 EFLAGS: 00010202
[  394.028151][T21418] RAX: 0000000000000000 RBX: 00005555668ef500 RCX: 00007f365fd65ed7
[  394.028182][T21418] RDX: 00007ffde5cfa640 RSI: 0000000000000000 RDI: 0000000000000000
[  394.028209][T21418] RBP: 00007ffde5cfa6ac R08: 0000000000000000 R09: 0000000000000000
[  394.028224][T21418] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  394.028315][T21418] R13: 00000000000927c0 R14: 0000000000060082 R15: 00007ffde5cfa700
[  394.028345][T21418]  </TASK>
[  394.028353][T21418] memory: usage 307200kB, limit 307200kB, failcnt 688
[  394.231431][T29261] loop6: detected capacity change from 0 to 128
[  394.234820][T21418] memory+swap: usage 307984kB, limit 9007199254740988kB, failcnt 0
[  394.234840][T21418] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[  394.247101][T29261] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  394.250931][T21418] Memory cgroup stats for /syz2:
[  394.292142][T21418] cache 0
[  394.300093][T21418] rss 0
[  394.302846][T21418] shmem 0
[  394.305764][T21418] mapped_file 102400
[  394.309735][T21418] dirty 0
[  394.312689][T21418] writeback 0
[  394.316146][T21418] workingset_refault_anon 1673
[  394.321016][T21418] workingset_refault_file 940
[  394.325837][T21418] swap 802816
[  394.329174][T21418] swapcached 16384
[  394.332973][T21418] pgpgin 294631
[  394.336551][T21418] pgpgout 294622
[  394.340247][T21418] pgfault 289963
[  394.343790][T21418] pgmajfault 299
[  394.347355][T21418] inactive_anon 16384
[  394.351327][T21418] active_anon 0
[  394.354777][T21418] inactive_file 20480
[  394.358773][T21418] active_file 0
[  394.362318][T21418] unevictable 0
[  394.365749][T21418] hierarchical_memory_limit 314572800
[  394.371134][T21418] hierarchical_memsw_limit 9223372036854771712
[  394.377296][T21418] total_cache 0
[  394.380919][T21418] total_rss 0
[  394.384315][T21418] total_shmem 0
[  394.387799][T21418] total_mapped_file 102400
[  394.392211][T21418] total_dirty 0
[  394.395664][T21418] total_writeback 0
[  394.399491][T21418] total_workingset_refault_anon 1673
[  394.404807][T21418] total_workingset_refault_file 940
[  394.410009][T21418] total_swap 802816
[  394.413811][T21418] total_swapcached 16384
[  394.418082][T21418] total_pgpgin 294631
[  394.418631][T29267] SELinux:  policydb magic number 0x2e202123 does not match expected magic number 0xf97cff8c
[  394.422135][T21418] total_pgpgout 294622
[  394.422221][T21418] total_pgfault 289963
[  394.432705][T29267] SELinux: failed to load policy
[  394.436452][T21418] total_pgmajfault 299
[  394.436464][T21418] total_inactive_anon 16384
[  394.436472][T21418] total_active_anon 0
[  394.436502][T21418] total_inactive_file 20480
[  394.441484][T29268] tmpfs: Bad value for 'mpol'
[  394.445455][T21418] total_active_file 0
[  394.445465][T21418] total_unevictable 0
[  394.445473][T21418] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.7085,pid=25753,uid=0
[  394.489853][T21418] Memory cgroup out of memory: Killed process 25753 (syz.2.7085) total-vm:94100kB, anon-rss:1252kB, file-rss:20776kB, shmem-rss:0kB, UID:0 pgtables:104kB oom_score_adj:1000
[  394.557180][T21418] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  394.568144][T21418] CPU: 0 UID: 0 PID: 21418 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  394.568178][T21418] Tainted: [W]=WARN
[  394.568186][T21418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  394.568263][T21418] Call Trace:
[  394.568271][T21418]  <TASK>
[  394.568279][T21418]  __dump_stack+0x1d/0x30
[  394.568304][T21418]  dump_stack_lvl+0x95/0xd0
[  394.568341][T21418]  dump_stack+0x15/0x1b
[  394.568359][T21418]  dump_header+0x80/0x240
[  394.568381][T21418]  oom_kill_process+0x295/0x350
[  394.568406][T21418]  out_of_memory+0x97d/0xb80
[  394.568444][T21418]  try_charge_memcg+0x62e/0xa10
[  394.568470][T21418]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  394.568538][T21418]  __read_swap_cache_async+0x17b/0x2d0
[  394.568571][T21418]  swap_cluster_readahead+0x262/0x3c0
[  394.568632][T21418]  swapin_readahead+0xde/0x840
[  394.568661][T21418]  ? sched_clock+0x3f/0x60
[  394.568684][T21418]  ? __perf_event_task_sched_in+0xa65/0xad0
[  394.568712][T21418]  ? __rcu_read_unlock+0x4e/0x70
[  394.568741][T21418]  ? swap_cache_get_folio+0x26f/0x280
[  394.568851][T21418]  do_swap_page+0x59b/0x2a50
[  394.568882][T21418]  ? finish_task_switch+0x79/0x280
[  394.568909][T21418]  ? __schedule+0x82d/0xc90
[  394.568973][T21418]  ? __rcu_read_lock+0x36/0x50
[  394.569002][T21418]  ? __pfx_default_wake_function+0x10/0x10
[  394.569033][T21418]  handle_mm_fault+0xb40/0x3030
[  394.569079][T21418]  ? vma_start_read+0x1c7/0x2c0
[  394.569119][T21418]  do_user_addr_fault+0x62f/0x1050
[  394.569149][T21418]  exc_page_fault+0x62/0xa0
[  394.569175][T21418]  asm_exc_page_fault+0x26/0x30
[  394.569242][T21418] RIP: 0033:0x7f365fd65ed7
[  394.569259][T21418] Code: 48 89 fa 4c 89 df e8 a8 56 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  394.569277][T21418] RSP: 002b:00007ffde5cfa600 EFLAGS: 00010202
[  394.569295][T21418] RAX: 0000000000000000 RBX: 00005555668ef500 RCX: 00007f365fd65ed7
[  394.569365][T21418] RDX: 00007ffde5cfa640 RSI: 0000000000000000 RDI: 0000000000000000
[  394.569379][T21418] RBP: 00007ffde5cfa6ac R08: 0000000000000000 R09: 0000000000000000
[  394.569393][T21418] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  394.569405][T21418] R13: 00000000000927c0 R14: 0000000000060082 R15: 00007ffde5cfa700
[  394.569423][T21418]  </TASK>
[  394.569439][T21418] memory: usage 307200kB, limit 307200kB, failcnt 816
[  394.682846][   T29] kauditd_printk_skb: 49 callbacks suppressed
[  394.682871][   T29] audit: type=1400 audit(2000000516.815:14021): avc:  denied  { setopt } for  pid=29271 comm="syz.1.8354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  394.685889][T21418] memory+swap: usage 307816kB, limit 9007199254740988kB, failcnt 0
[  394.685905][T21418] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[  394.701030][T21418] Memory cgroup stats for 
[  394.757761][   T29] audit: type=1400 audit(2000000516.895:14022): avc:  denied  { mounton } for  pid=29276 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  394.763550][T21418] /syz2:
[  394.872953][T21418] cache 0
[  394.878863][T21418] rss 0
[  394.881617][T21418] shmem 0
[  394.884575][T21418] mapped_file 0
[  394.888095][T21418] dirty 0
[  394.891020][T21418] writeback 0
[  394.894278][T21418] workingset_refault_anon 1675
[  394.899063][T21418] workingset_refault_file 940
[  394.903759][T21418] swap 630784
[  394.907230][T21418] swapcached 0
[  394.910597][T21418] pgpgin 294633
[  394.914143][T21418] pgpgout 294628
[  394.917771][T21418] pgfault 289964
[  394.921305][T21418] pgmajfault 300
[  394.924894][T21418] inactive_anon 0
[  394.928569][T21418] active_anon 0
[  394.932019][T21418] inactive_file 20480
[  394.936046][T21418] active_file 0
[  394.939488][T21418] unevictable 0
[  394.942933][T21418] hierarchical_memory_limit 314572800
[  394.948357][T21418] hierarchical_memsw_limit 9223372036854771712
[  394.954500][T21418] total_cache 0
[  394.957971][T21418] total_rss 0
[  394.961248][T21418] total_shmem 0
[  394.964683][T21418] total_mapped_file 0
[  394.968669][T21418] total_dirty 0
[  394.972114][T21418] total_writeback 0
[  394.975915][T21418] total_workingset_refault_anon 1675
[  394.981237][T21418] total_workingset_refault_file 940
[  394.986454][T21418] total_swap 630784
[  394.990251][T21418] total_swapcached 0
[  394.994138][T21418] total_pgpgin 294633
[  394.998236][T21418] total_pgpgout 294628
[  395.002456][T21418] total_pgfault 289964
[  395.006539][T21418] total_pgmajfault 300
[  395.010615][T21418] total_inactive_anon 0
[  395.014758][T21418] total_active_anon 0
[  395.018765][T21418] total_inactive_file 20480
[  395.023270][T21418] total_active_file 0
[  395.027490][T21418] total_unevictable 0
[  395.031493][T21418] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.6473,pid=23521,uid=0
[  395.046471][T21418] Memory cgroup out of memory: Killed process 23521 (syz.2.6473) total-vm:94000kB, anon-rss:1244kB, file-rss:20676kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  395.066859][   T53] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.077174][   T53] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  395.095815][T29230] syz.2.8339 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  395.109757][T29230] CPU: 1 UID: 0 PID: 29230 Comm: syz.2.8339 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  395.109893][T29230] Tainted: [W]=WARN
[  395.109902][T29230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  395.109915][T29230] Call Trace:
[  395.109922][T29230]  <TASK>
[  395.109930][T29230]  __dump_stack+0x1d/0x30
[  395.109958][T29230]  dump_stack_lvl+0x95/0xd0
[  395.110028][T29230]  dump_stack+0x15/0x1b
[  395.110053][T29230]  dump_header+0x80/0x240
[  395.110132][T29230]  oom_kill_process+0x295/0x350
[  395.110158][T29230]  out_of_memory+0x97d/0xb80
[  395.110185][T29230]  try_charge_memcg+0x62e/0xa10
[  395.110213][T29230]  obj_cgroup_charge_pages+0x23/0xc0
[  395.110304][T29230]  __memcg_kmem_charge_page+0x9e/0x170
[  395.110342][T29230]  __alloc_frozen_pages_noprof+0x18a/0x350
[  395.110444][T29230]  alloc_pages_mpol+0xb3/0x260
[  395.110478][T29230]  alloc_pages_noprof+0x8f/0x130
[  395.110510][T29230]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  395.110574][T29230]  __kvmalloc_node_noprof+0x471/0x680
[  395.110613][T29230]  ? ip_set_alloc+0x24/0x30
[  395.110657][T29230]  ? ip_set_alloc+0x24/0x30
[  395.110690][T29230]  ip_set_alloc+0x24/0x30
[  395.110720][T29230]  hash_netiface_create+0x282/0x740
[  395.110805][T29230]  ? __pfx_hash_netiface_create+0x10/0x10
[  395.110837][T29230]  ip_set_create+0x3cf/0x970
[  395.111038][T29230]  ? __nla_parse+0x40/0x60
[  395.111074][T29230]  nfnetlink_rcv_msg+0x509/0x5d0
[  395.111121][T29230]  netlink_rcv_skb+0x123/0x220
[  395.111214][T29230]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  395.111250][T29230]  nfnetlink_rcv+0x167/0x1720
[  395.111290][T29230]  ? __list_add_valid_or_report+0x38/0xe0
[  395.111356][T29230]  ? merge_sched_in+0x5db/0xbe0
[  395.111385][T29230]  ? rb_next+0x5c/0x80
[  395.111441][T29230]  ? visit_groups_merge+0xf7e/0xfd0
[  395.111467][T29230]  ? event_sched_out+0x896/0x8f0
[  395.111494][T29230]  ? _raw_spin_lock_bh+0x56/0xb0
[  395.111621][T29230]  ? should_fail_ex+0x30/0x280
[  395.111668][T29230]  ? selinux_nlmsg_lookup+0x99/0x890
[  395.111690][T29230]  ? __rcu_read_unlock+0x33/0x70
[  395.111722][T29230]  ? __netlink_lookup+0x276/0x2b0
[  395.111799][T29230]  netlink_unicast+0x5c0/0x690
[  395.111832][T29230]  netlink_sendmsg+0x5c8/0x6f0
[  395.111897][T29230]  ? __pfx_netlink_sendmsg+0x10/0x10
[  395.111917][T29230]  ____sys_sendmsg+0x5af/0x600
[  395.111940][T29230]  ___sys_sendmsg+0x195/0x1e0
[  395.111972][T29230]  __x64_sys_sendmsg+0xd4/0x160
[  395.112013][T29230]  x64_sys_call+0x17ba/0x3000
[  395.112041][T29230]  do_syscall_64+0xc0/0x2a0
[  395.112073][T29230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.112096][T29230] RIP: 0033:0x7f365fdaacb9
[  395.112184][T29230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  395.112204][T29230] RSP: 002b:00007f365e807028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  395.112225][T29230] RAX: ffffffffffffffda RBX: 00007f3660025fa0 RCX: 00007f365fdaacb9
[  395.112269][T29230] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  395.112283][T29230] RBP: 00007f365fe18bf7 R08: 0000000000000000 R09: 0000000000000000
[  395.112302][T29230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  395.112315][T29230] R13: 00007f3660026038 R14: 00007f3660025fa0 R15: 00007ffde5cfa308
[  395.112370][T29230]  </TASK>
[  395.112378][T29230] memory: usage 307200kB, limit 307200kB, failcnt 925
[  395.142733][T29288] netlink: 'syz.1.8358': attribute type 13 has an invalid length.
[  395.143920][T29230] memory+swap: usage 307624kB, limit 9007199254740988kB, failcnt 0
[  395.143939][T29230] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[  395.467364][T29230] Memory cgroup stats for /syz2:
[  395.467691][T29283] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  395.467834][T29230] cache 0
[  395.472770][T29283] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.480179][T29230] rss 4096
[  395.480192][T29230] shmem 0
[  395.480200][T29230] mapped_file 0
[  395.480208][T29230] dirty 0
[  395.480216][T29230] writeback 0
[  395.480224][T29230] workingset_refault_anon 1677
[  395.480233][T29230] workingset_refault_file 940
[  395.480242][T29230] swap 434176
[  395.480262][T29230] swapcached 4096
[  395.480270][T29230] pgpgin 294635
[  395.480277][T29230] pgpgout 294628
[  395.480285][T29230] pgfault 289965
[  395.480292][T29230] pgmajfault 301
[  395.480300][T29230] inactive_anon 0
[  395.540732][T29230] active_anon 8192
[  395.544493][T29230] inactive_file 0
[  395.548286][T29230] active_file 20480
[  395.552134][T29230] unevictable 0
[  395.555582][T29230] hierarchical_memory_limit 314572800
[  395.561011][T29230] hierarchical_memsw_limit 9223372036854771712
[  395.567199][T29230] total_cache 0
[  395.570667][T29230] total_rss 4096
[  395.574191][T29230] total_shmem 0
[  395.577823][T29230] total_mapped_file 0
[  395.581818][T29230] total_dirty 0
[  395.585274][T29230] total_writeback 0
[  395.589235][T29230] total_workingset_refault_anon 1677
[  395.594517][T29230] total_workingset_refault_file 940
[  395.599778][T29230] total_swap 434176
[  395.603647][T29230] total_swapcached 4096
[  395.607893][T29230] total_pgpgin 294635
[  395.612003][T29230] total_pgpgout 294628
[  395.616175][T29230] total_pgfault 289965
[  395.620322][T29230] total_pgmajfault 301
[  395.624379][T29230] total_inactive_anon 0
[  395.628612][T29230] total_active_anon 8192
[  395.632845][T29230] total_inactive_file 0
[  395.637009][T29230] total_active_file 20480
[  395.641325][T29230] total_unevictable 0
[  395.645313][T29230] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.8339,pid=29229,uid=0
[  395.660246][T29230] Memory cgroup out of memory: Killed process 29229 (syz.2.8339) total-vm:94000kB, anon-rss:1204kB, file-rss:22224kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0
[  395.678931][T29283] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  395.686622][T29283] batman_adv: batadv0: Removing interface: batadv_slave_1
[  395.782590][   T53] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.793068][   T53] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  395.862928][   T53] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.873314][   T53] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  395.902484][T29297] x_tables: ip_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[  395.920329][T29276] lo speed is unknown, defaulting to 1000
[  395.954950][   T53] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.965329][   T53] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  395.988727][T29276] ip6_vti0 speed is unknown, defaulting to 1000
[  395.995498][T29307] loop6: detected capacity change from 0 to 4096
[  396.006072][T29307] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=4
[  396.027389][T29307] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  396.062741][T29307] EXT4-fs (loop6): mount failed
[  396.154129][   T53] bridge_slave_1: left allmulticast mode
[  396.159861][   T53] bridge_slave_1: left promiscuous mode
[  396.165547][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.178652][   T53] bridge_slave_0: left allmulticast mode
[  396.184395][   T53] bridge_slave_0: left promiscuous mode
[  396.190141][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.230633][   T53] bond2 (unregistering): (slave gretap1): Releasing active interface
[  396.245135][   T53] bond3 (unregistering): (slave geneve2): Releasing active interface
[  396.294800][   T53] team0: Port device bond0 removed
[  396.304757][T29331] sd 0:0:1:0: device reset
[  396.309746][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  396.325790][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  396.337540][T29335] loop6: detected capacity change from 0 to 512
[  396.344502][T29335] EXT4-fs: Ignoring removed nomblk_io_submit option
[  396.353158][   T53] bond0 (unregistering): Released all slaves
[  396.361061][T29335] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  396.363409][   T53] bond1 (unregistering): Released all slaves
[  396.370934][T29335] System zones: 0-2, 18-18, 34-34
[  396.380691][T29335] EXT4-fs (loop6): orphan cleanup on readonly fs
[  396.383201][   T53] bond2 (unregistering): Released all slaves
[  396.395293][T29335] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.8373: bg 0: block 248: padding at end of block bitmap is not set
[  396.399653][   T53] bond3 (unregistering): Released all slaves
[  396.416777][T29335] Quota error (device loop6): write_blk: dquota write failed
[  396.420672][   T53] bond4 (unregistering): Released all slaves
[  396.424186][T29335] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  396.440322][T29335] EXT4-fs error (device loop6): ext4_acquire_dquot:6986: comm syz.6.8373: Failed to acquire dquot type 1
[  396.456962][T29335] EXT4-fs (loop6): 1 truncate cleaned up
[  396.462713][T18539] syz0: Port: 1 Link DOWN
[  396.486939][T29335] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  396.502338][T29335] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  396.517952][   T53] tipc: Left network mode
[  396.547568][T29335] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  396.569395][T29335] ext4 filesystem being remounted at /471/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  396.613803][T29276] chnl_net:caif_netlink_parms(): no params data found
[  396.641763][T29335] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  396.651006][T29335] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  396.660979][T29335] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  396.688984][T29335] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  396.709944][T29335] Quota error (device loop6): write_blk: dquota write failed
[  396.717490][T29335] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[  396.727580][T29335] EXT4-fs error (device loop6): ext4_acquire_dquot:6986: comm syz.6.8373: Failed to acquire dquot type 1
[  396.739195][   T29] audit: type=1400 audit(2000000518.845:14023): avc:  denied  { create } for  pid=29334 comm="syz.6.8373" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[  396.770801][   T53] hsr_slave_0: left promiscuous mode
[  396.778038][   T53] hsr_slave_1: left promiscuous mode
[  396.783834][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  396.791517][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[  396.802346][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.810034][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.825485][   T53] veth1_macvtap: left promiscuous mode
[  396.831084][   T53] veth0_macvtap: left promiscuous mode
[  396.836674][   T53] veth1_vlan: left promiscuous mode
[  396.841987][   T53] veth0_vlan: left promiscuous mode
[  396.940665][   T53] team0 (unregistering): Port device team_slave_1 removed
[  396.954039][   T53] team0 (unregistering): Port device C removed
[  396.970259][   T12] smc: removing ib device syz0
[  396.997867][T29361] sit0: entered promiscuous mode
[  397.015671][T29361] netlink: 'syz.6.8373': attribute type 1 has an invalid length.
[  397.042101][T29364] netlink: zone id is out of range
[  397.047335][T29364] netlink: zone id is out of range
[  397.060216][T29276] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.067453][T29276] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.069978][T29364] netlink: del zone limit has 8 unknown bytes
[  397.076587][T29276] bridge_slave_0: entered allmulticast mode
[  397.087879][T29276] bridge_slave_0: entered promiscuous mode
[  397.099316][T29276] bridge0: port 2(bridge_slave_1) entered blocking state
[  397.106436][T29276] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.113957][T29276] bridge_slave_1: entered allmulticast mode
[  397.121496][T29276] bridge_slave_1: entered promiscuous mode
[  397.188977][T29276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  397.225854][T29276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  397.287288][T29379] loop6: detected capacity change from 0 to 1024
[  397.306560][T29379] EXT4-fs: Ignoring removed bh option
[  397.330893][T29276] team0: Port device team_slave_0 added
[  397.345352][T29276] team0: Port device team_slave_1 added
[  397.359359][T29379] xt_CT: You must specify a L4 protocol and not use inversions on it
[  397.398450][T29276] batman_adv: batadv0: Adding interface: batadv_slave_0
[  397.405424][T29276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  397.431592][T29276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  397.444915][T29276] batman_adv: batadv0: Adding interface: batadv_slave_1
[  397.451909][T29276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  397.478150][T29276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  397.510134][T29396] __nla_validate_parse: 16 callbacks suppressed
[  397.510152][T29396] netlink: 68 bytes leftover after parsing attributes in process `syz.5.8386'.
[  397.538960][T29276] hsr_slave_0: entered promiscuous mode
[  397.545198][T29276] hsr_slave_1: entered promiscuous mode
[  397.630191][T29418] lo speed is unknown, defaulting to 1000
[  397.660182][T29425] loop6: detected capacity change from 0 to 512
[  397.685380][T29430] netlink: 64 bytes leftover after parsing attributes in process `syz.2.8395'.
[  397.685425][   T53] IPVS: stop unused estimator thread 0...
[  397.685541][T29425] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  397.740182][T29425] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.8392: bg 0: block 104: invalid block bitmap
[  397.753246][T29425] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  397.765072][T29425] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.8392: invalid indirect mapped block 1 (level 1)
[  397.778744][T29425] EXT4-fs (loop6): 1 truncate cleaned up
[  397.779746][T29418] ip6_vti0 speed is unknown, defaulting to 1000
[  397.795733][T29425] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8392'.
[  397.804937][T29425] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8392'.
[  397.854437][T29439] loop5: detected capacity change from 0 to 1024
[  398.002686][   T29] audit: type=1326 audit(2000000520.135:14024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29455 comm="syz.2.8401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  398.040638][   T29] audit: type=1326 audit(2000000520.165:14025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29455 comm="syz.2.8401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f365fdaacb9 code=0x7ffc0000
[  398.189689][   T53] bond0 (unregistering): Released all slaves
[  398.206386][   T53] bond1 (unregistering): Released all slaves
[  398.223399][   T53] bond2 (unregistering): Released all slaves
[  398.242417][   T53] bond3 (unregistering): Released all slaves
[  398.261598][   T53] bond4 (unregistering): Released all slaves
[  398.280464][   T53] bond5 (unregistering): Released all slaves
[  398.300005][   T53] bond6 (unregistering): Released all slaves
[  398.317492][   T53] bond7 (unregistering): left allmulticast mode
[  398.323865][   T53] bond7 (unregistering): left promiscuous mode
[  398.333174][   T53] bond7 (unregistering): Released all slaves
[  398.356222][T29465] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  398.364472][T29465] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  398.397953][   T53] tipc: Left network mode
[  398.478060][   T53] hsr_slave_0: left promiscuous mode
[  398.483942][   T53] hsr_slave_1: left promiscuous mode
[  398.598636][ T1680] smc: removing ib device syz1
[  398.654312][T29492] ip6_vti0 speed is unknown, defaulting to 1000
[  398.678263][T29499] ip6gre0: Caught tx_queue_len zero misconfig
[  398.684461][T29499] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  398.753235][T29463] Cannot find del_set index 29 as target
[  398.754132][T29276] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  398.788030][T29276] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  398.846053][T29276] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  398.861149][T29276] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  398.954886][T29276] 8021q: adding VLAN 0 to HW filter on device bond0
[  398.982521][T29276] 8021q: adding VLAN 0 to HW filter on device team0
[  399.004515][ T2792] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.011754][ T2792] bridge0: port 1(bridge_slave_0) entered forwarding state
[  399.057181][ T5190] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.064290][ T5190] bridge0: port 2(bridge_slave_1) entered forwarding state
[  399.099383][T29533] netlink: 196 bytes leftover after parsing attributes in process `syz.2.8414'.
[  399.170316][T29540] netlink: 'syz.2.8416': attribute type 6 has an invalid length.
[  399.247051][T21631] EXT4-fs unmount: 23 callbacks suppressed
[  399.247067][T21631] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.269500][T29276] 8021q: adding VLAN 0 to HW filter on device batadv0
[  399.289203][T29554] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8419'.
[  399.501172][T29586] ip6_vti0 speed is unknown, defaulting to 1000
[  399.546471][T29276] veth0_vlan: entered promiscuous mode
[  399.574676][T29276] veth1_vlan: entered promiscuous mode
[  399.607457][T29276] veth0_macvtap: entered promiscuous mode
[  399.629532][T29276] veth1_macvtap: entered promiscuous mode
[  399.651719][T29276] batman_adv: batadv0: Interface activated: batadv_slave_0
[  399.665901][T29276] batman_adv: batadv0: Interface activated: batadv_slave_1
[  399.705166][   T29] kauditd_printk_skb: 47 callbacks suppressed
[  399.705184][   T29] audit: type=1326 audit(2000000521.835:14073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0209dacb9 code=0x7ffc0000
[  399.738718][ T2792] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  399.748985][   T29] audit: type=1326 audit(2000000521.885:14074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0209dacb9 code=0x7ffc0000
[  399.775604][T29623] loop6: detected capacity change from 0 to 512
[  399.794076][T29623] /dev/loop6: Can't open blockdev
[  399.801000][   T29] audit: type=1326 audit(2000000521.915:14075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd0209dacb9 code=0x7ffc0000
[  399.801460][ T2792] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.825200][   T29] audit: type=1326 audit(2000000521.915:14076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd0209daa22 code=0x7ffc0000
[  399.852394][ T2792] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.857496][   T29] audit: type=1326 audit(2000000521.915:14077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd02099b58e code=0x7ffc0000
[  399.889867][   T29] audit: type=1326 audit(2000000521.915:14078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd0209daae7 code=0x7ffc0000
[  399.913768][   T29] audit: type=1326 audit(2000000521.915:14079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd02099b58e code=0x7ffc0000
[  399.937421][   T29] audit: type=1326 audit(2000000521.915:14080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd0209da94b code=0x7ffc0000
[  399.941935][ T2792] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.961397][   T29] audit: type=1326 audit(2000000521.925:14081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd02099b58e code=0x7ffc0000
[  399.961450][   T29] audit: type=1326 audit(2000000521.925:14082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29621 comm="syz.6.8434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd02099b58e code=0x7ffc0000
[  400.221205][T29675] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8413'.
[  400.256355][T29686] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8448'.
[  400.279474][T29693] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  400.287830][T29693] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  400.320093][T29697] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8452'.
[  400.337219][T29697] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8452'.
[  400.367528][T29697] netlink: 'syz.1.8452': attribute type 3 has an invalid length.
[  400.501375][T29717] netlink: 'syz.6.8454': attribute type 13 has an invalid length.
[  400.960287][T29779] loop5: detected capacity change from 0 to 1024
[  401.063453][T29779] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.134114][T29801] netlink: 'syz.4.8472': attribute type 6 has an invalid length.
[  401.268487][T29815] loop4: detected capacity change from 0 to 512
[  401.278711][T29815] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  401.314900][T29815] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[  401.384018][T29818] batman_adv: batadv0: Removing interface: batadv_slave_0
[  401.422839][T29818] batman_adv: batadv0: Removing interface: batadv_slave_1
[  401.455187][T29832] loop4: detected capacity change from 0 to 256
[  401.467592][T29832] msdos: Unknown parameter 'discapd'
[  401.624048][T29851] bond5: option lacp_rate: invalid value (20)
[  401.637286][T29851] bond5 (unregistering): Released all slaves
[  401.848648][ T3002] ==================================================================
[  401.856858][ T3002] BUG: KCSAN: data-race in d_delete / lookup_fast
[  401.863301][ T3002] 
[  401.865624][ T3002] read-write to 0xffff888107abba80 of 4 bytes by task 28564 on cpu 0:
[  401.873949][ T3002]  d_delete+0xbe/0xe0
[  401.877940][ T3002]  d_delete_notify+0x32/0x100
[  401.882611][ T3002]  vfs_unlink+0x331/0x440
[  401.886947][ T3002]  do_unlinkat+0x1e2/0x4b0
[  401.891351][ T3002]  __x64_sys_unlink+0x2e/0x40
[  401.896120][ T3002]  x64_sys_call+0x2f48/0x3000
[  401.900796][ T3002]  do_syscall_64+0xc0/0x2a0
[  401.905306][ T3002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.911196][ T3002] 
[  401.913512][ T3002] read to 0xffff888107abba80 of 4 bytes by task 3002 on cpu 1:
[  401.921062][ T3002]  lookup_fast+0xf0/0x320
[  401.925393][ T3002]  path_lookupat+0x15c/0x500
[  401.929983][ T3002]  filename_lookup+0x190/0x390
[  401.934745][ T3002]  do_readlinkat+0x7d/0x340
[  401.939265][ T3002]  __x64_sys_readlink+0x47/0x60
[  401.944121][ T3002]  x64_sys_call+0x2af1/0x3000
[  401.948796][ T3002]  do_syscall_64+0xc0/0x2a0
[  401.953299][ T3002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.959186][ T3002] 
[  401.961526][ T3002] value changed: 0x00300180 -> 0x00004080
[  401.967238][ T3002] 
[  401.969553][ T3002] Reported by Kernel Concurrency Sanitizer on:
[  401.975777][ T3002] CPU: 1 UID: 0 PID: 3002 Comm: udevd Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  401.986707][ T3002] Tainted: [W]=WARN
[  401.990509][ T3002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  402.000654][ T3002] ==================================================================
[  402.062976][T29790] syz.1.8470 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  402.073781][T29790] CPU: 0 UID: 0 PID: 29790 Comm: syz.1.8470 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  402.073837][T29790] Tainted: [W]=WARN
[  402.073844][T29790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  402.073856][T29790] Call Trace:
[  402.073862][T29790]  <TASK>
[  402.073941][T29790]  __dump_stack+0x1d/0x30
[  402.073972][T29790]  dump_stack_lvl+0x95/0xd0
[  402.074059][T29790]  dump_stack+0x15/0x1b
[  402.074080][T29790]  dump_header+0x80/0x240
[  402.074135][T29790]  oom_kill_process+0x295/0x350
[  402.074239][T29790]  out_of_memory+0x97d/0xb80
[  402.074265][T29790]  try_charge_memcg+0x62e/0xa10
[  402.074292][T29790]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  402.074354][T29790]  __read_swap_cache_async+0x17b/0x2d0
[  402.074388][T29790]  swap_cluster_readahead+0x362/0x3c0
[  402.074423][T29790]  swapin_readahead+0xde/0x840
[  402.074463][T29790]  ? __rcu_read_unlock+0x33/0x70
[  402.074493][T29790]  ? __rcu_read_unlock+0x4e/0x70
[  402.074528][T29790]  ? swap_cache_get_folio+0x26f/0x280
[  402.074556][T29790]  do_swap_page+0x59b/0x2a50
[  402.074645][T29790]  ? __rcu_read_lock+0x36/0x50
[  402.074675][T29790]  ? __pfx_default_wake_function+0x10/0x10
[  402.074705][T29790]  handle_mm_fault+0xb40/0x3030
[  402.074884][T29790]  ? vma_start_read+0x1c7/0x2c0
[  402.074991][T29790]  do_user_addr_fault+0x62f/0x1050
[  402.075016][T29790]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[  402.075052][T29790]  ? irqentry_exit+0x3c/0x510
[  402.075179][T29790]  exc_page_fault+0x62/0xa0
[  402.075202][T29790]  asm_exc_page_fault+0x26/0x30
[  402.075222][T29790] RIP: 0033:0x7f03bb4ef3d4
[  402.075239][T29790] Code: 54 24 28 0f 82 5e 03 00 00 40 0f b6 fe c6 44 24 0e 01 45 31 ed 45 31 f6 89 7c 24 08 85 c0 0f 84 10 01 00 00 66 90 48 8b 3c 24 <49> 8b 54 24 40 4c 89 f0 4a 03 14 ef 80 3d c1 89 3a 00 00 49 89 d6
[  402.075301][T29790] RSP: 002b:00007fff50dee930 EFLAGS: 00010293
[  402.075359][T29790] RAX: 000000110c260000 RBX: ffffffff8465ff1f RCX: 0000000000000003
[  402.075374][T29790] RDX: 0000000000001f1f RSI: 00000000000017fc RDI: 00007f03bb07f008
[  402.075390][T29790] RBP: 0000000000000000 R08: 00007f03bb880000 R09: 00007f03bb882000
[  402.075410][T29790] R10: 000000008465ff23 R11: 0000000000000005 R12: 00007f03bb896038
[  402.075476][T29790] R13: 0000000000000001 R14: ffffffff8465f675 R15: 00007f03bc3c5720
[  402.075490][T29790]  ? __x64_sys_sendmsg+0x25/0x160
[  402.075510][T29790]  ? ____sys_recvmsg+0x15f/0x280
[  402.075531][T29790]  </TASK>
[  402.075538][T29790] memory: usage 307200kB, limit 307200kB, failcnt 1557
[  402.318146][T29790] memory+swap: usage 307668kB, limit 9007199254740988kB, failcnt 0
[  402.326092][T29790] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  402.333375][T29790] Memory cgroup stats for /syz1:
[  402.334492][T29790] cache 0
[  402.342647][T29790] rss 0
[  402.345494][T29790] shmem 0
[  402.348451][T29790] mapped_file 0
[  402.351955][T29790] dirty 0
[  402.354868][T29790] writeback 0
[  402.358246][T29790] workingset_refault_anon 309
[  402.363093][T29790] workingset_refault_file 5850
[  402.367990][T29790] swap 479232
[  402.371268][T29790] swapcached 0
[  402.375072][T29790] pgpgin 244421
[  402.378559][T29790] pgpgout 244418
[  402.382103][T29790] pgfault 194218
[  402.385652][T29790] pgmajfault 254
[  402.389339][T29790] inactive_anon 0
[  402.393259][T29790] active_anon 0
[  402.396735][T29790] inactive_file 0
[  402.400500][T29790] active_file 12288
[  402.404296][T29790] unevictable 0
[  402.407863][T29790] hierarchical_memory_limit 314572800
[  402.413224][T29790] hierarchical_memsw_limit 9223372036854771712
[  402.419388][T29790] total_cache 0
[  402.422895][T29790] total_rss 0
[  402.426178][T29790] total_shmem 0
[  402.429624][T29790] total_mapped_file 0
[  402.433625][T29790] total_dirty 0
[  402.437085][T29790] total_writeback 0
[  402.440912][T29790] total_workingset_refault_anon 309
[  402.446384][T29790] total_workingset_refault_file 5850
[  402.451744][T29790] total_swap 479232
[  402.455668][T29790] total_swapcached 0
[  402.459576][T29790] total_pgpgin 244421
[  402.463565][T29790] total_pgpgout 244418
[  402.467647][T29790] total_pgfault 194218
[  402.471762][T29790] total_pgmajfault 254
[  402.475808][T29790] total_inactive_anon 0
[  402.480062][T29790] total_active_anon 0
[  402.484026][T29790] total_inactive_file 0
[  402.488186][T29790] total_active_file 12288
[  402.492504][T29790] total_unevictable 0
[  402.496660][T29790] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.8021,pid=28315,uid=0
[  402.511588][T29790] Memory cgroup out of memory: Killed process 28315 (syz.1.8021) total-vm:94000kB, anon-rss:1236kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  402.569057][T29791] syz.1.8470 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  402.583054][T29791] CPU: 0 UID: 0 PID: 29791 Comm: syz.1.8470 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  402.583106][T29791] Tainted: [W]=WARN
[  402.583114][T29791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  402.583127][T29791] Call Trace:
[  402.583140][T29791]  <TASK>
[  402.583148][T29791]  __dump_stack+0x1d/0x30
[  402.583175][T29791]  dump_stack_lvl+0x95/0xd0
[  402.583258][T29791]  dump_stack+0x15/0x1b
[  402.583281][T29791]  dump_header+0x80/0x240
[  402.583366][T29791]  oom_kill_process+0x295/0x350
[  402.583422][T29791]  out_of_memory+0x97d/0xb80
[  402.583448][T29791]  try_charge_memcg+0x62e/0xa10
[  402.583475][T29791]  obj_cgroup_charge_pages+0x23/0xc0
[  402.583589][T29791]  __memcg_kmem_charge_page+0x9e/0x170
[  402.583623][T29791]  __alloc_frozen_pages_noprof+0x18a/0x350
[  402.583660][T29791]  alloc_pages_mpol+0xb3/0x260
[  402.583700][T29791]  alloc_pages_noprof+0x8f/0x130
[  402.583732][T29791]  __vmalloc_node_range_noprof+0xa46/0x12b0
[  402.583784][T29791]  __kvmalloc_node_noprof+0x471/0x680
[  402.583874][T29791]  ? ip_set_alloc+0x24/0x30
[  402.583911][T29791]  ? ip_set_alloc+0x24/0x30
[  402.583950][T29791]  ? __kmalloc_cache_noprof+0x3cd/0x4a0
[  402.583994][T29791]  ip_set_alloc+0x24/0x30
[  402.584030][T29791]  hash_netiface_create+0x282/0x740
[  402.584064][T29791]  ? __pfx_hash_netiface_create+0x10/0x10
[  402.584228][T29791]  ip_set_create+0x3cf/0x970
[  402.584278][T29791]  ? __nla_parse+0x40/0x60
[  402.584367][T29791]  nfnetlink_rcv_msg+0x509/0x5d0
[  402.584414][T29791]  netlink_rcv_skb+0x123/0x220
[  402.584492][T29791]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  402.584558][T29791]  nfnetlink_rcv+0x167/0x1720
[  402.584597][T29791]  ? __kfree_skb+0x109/0x150
[  402.584635][T29791]  ? nlmon_xmit+0x4f/0x60
[  402.584692][T29791]  ? consume_skb+0x49/0x140
[  402.584728][T29791]  ? nlmon_xmit+0x4f/0x60
[  402.584766][T29791]  ? dev_hard_start_xmit+0x3a8/0x3e0
[  402.584851][T29791]  ? __dev_queue_xmit+0x139a/0x1f20
[  402.584918][T29791]  ? __dev_queue_xmit+0x148/0x1f20
[  402.585031][T29791]  ? ref_tracker_free+0x37d/0x3e0
[  402.585073][T29791]  ? __netlink_deliver_tap+0x4dc/0x500
[  402.585139][T29791]  netlink_unicast+0x5c0/0x690
[  402.585243][T29791]  netlink_sendmsg+0x5c8/0x6f0
[  402.585270][T29791]  ? __pfx_netlink_sendmsg+0x10/0x10
[  402.585298][T29791]  ____sys_sendmsg+0x5af/0x600
[  402.585321][T29791]  ___sys_sendmsg+0x195/0x1e0
[  402.585463][T29791]  __x64_sys_sendmsg+0xd4/0x160
[  402.585486][T29791]  x64_sys_call+0x17ba/0x3000
[  402.585512][T29791]  do_syscall_64+0xc0/0x2a0
[  402.585544][T29791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.585592][T29791] RIP: 0033:0x7f03bb61acb9
[  402.585609][T29791] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  402.585628][T29791] RSP: 002b:00007f03ba077028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  402.585712][T29791] RAX: ffffffffffffffda RBX: 00007f03bb895fa0 RCX: 00007f03bb61acb9
[  402.585727][T29791] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  402.585810][T29791] RBP: 00007f03bb688bf7 R08: 0000000000000000 R09: 0000000000000000
[  402.585824][T29791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  402.585881][T29791] R13: 00007f03bb896038 R14: 00007f03bb895fa0 R15: 00007fff50dee898
[  402.585900][T29791]  </TASK>
[  402.585907][T29791] memory: usage 307200kB, limit 307200kB, failcnt 1721
[  402.916225][T29791] memory+swap: usage 307492kB, limit 9007199254740988kB, failcnt 0
[  402.924130][T29791] kmem: usage 307084kB, limit 9007199254740988kB, failcnt 0
[  402.931475][T29791] Memory cgroup stats for /syz1:
[  402.931999][T29791] cache 0
[  402.940073][T29791] rss 0
[  402.942822][T29791] shmem 0
[  402.945802][T29791] mapped_file 0
[  402.949738][T29791] dirty 0
[  402.952734][T29791] writeback 0
[  402.956213][T29791] workingset_refault_anon 318
[  402.960935][T29791] workingset_refault_file 5851
[  402.965681][T29791] swap 299008
[  402.968966][T29791] swapcached 0
[  402.972325][T29791] pgpgin 244431
[  402.975990][T29791] pgpgout 244428
[  402.979523][T29791] pgfault 194229
[  402.983043][T29791] pgmajfault 264
[  402.986589][T29791] inactive_anon 0
[  402.990240][T29791] active_anon 0
[  402.993697][T29791] inactive_file 0
[  402.997342][T29791] active_file 12288
[  403.001152][T29791] unevictable 0
[  403.004588][T29791] hierarchical_memory_limit 314572800
[  403.009964][T29791] hierarchical_memsw_limit 9223372036854771712
[  403.016118][T29791] total_cache 0
[  403.019573][T29791] total_rss 0
[  403.022843][T29791] total_shmem 0
[  403.026310][T29791] total_mapped_file 0
[  403.030307][T29791] total_dirty 0
[  403.033740][T29791] total_writeback 0
[  403.037551][T29791] total_workingset_refault_anon 318
[  403.042762][T29791] total_workingset_refault_file 5851
[  403.048048][T29791] total_swap 299008
[  403.051842][T29791] total_swapcached 0
[  403.055709][T29791] total_pgpgin 244431
[  403.059743][T29791] total_pgpgout 244428
[  403.063799][T29791] total_pgfault 194229
[  403.067865][T29791] total_pgmajfault 264
[  403.071971][T29791] total_inactive_anon 0
[  403.076185][T29791] total_active_anon 0
[  403.080162][T29791] total_inactive_file 0
[  403.084308][T29791] total_active_file 12288
[  403.088670][T29791] total_unevictable 0
[  403.092657][T29791] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.7938,pid=28081,uid=0
[  403.107381][T29791] Memory cgroup out of memory: Killed process 28081 (syz.1.7938) total-vm:94000kB, anon-rss:1212kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  403.179563][T29790] syz.1.8470 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  403.190543][T29790] CPU: 0 UID: 0 PID: 29790 Comm: syz.1.8470 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[  403.190645][T29790] Tainted: [W]=WARN
[  403.190649][T29790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  403.190656][T29790] Call Trace:
[  403.190660][T29790]  <TASK>
[  403.190665][T29790]  __dump_stack+0x1d/0x30
[  403.190751][T29790]  dump_stack_lvl+0x95/0xd0
[  403.190771][T29790]  dump_stack+0x15/0x1b
[  403.190866][T29790]  dump_header+0x80/0x240
[  403.190879][T29790]  oom_kill_process+0x295/0x350
[  403.190894][T29790]  out_of_memory+0x97d/0xb80
[  403.190909][T29790]  try_charge_memcg+0x62e/0xa10
[  403.190951][T29790]  mem_cgroup_swapin_charge_folio+0x103/0x1f0
[  403.190972][T29790]  __read_swap_cache_async+0x17b/0x2d0
[  403.191048][T29790]  swap_cluster_readahead+0x362/0x3c0
[  403.191069][T29790]  swapin_readahead+0xde/0x840
[  403.191087][T29790]  ? __rcu_read_unlock+0x33/0x70
[  403.191147][T29790]  ? __rcu_read_unlock+0x4e/0x70
[  403.191214][T29790]  ? swap_cache_get_folio+0x26f/0x280
[  403.191232][T29790]  do_swap_page+0x59b/0x2a50
[  403.191302][T29790]  ? __rcu_read_lock+0x36/0x50
[  403.191319][T29790]  ? __pfx_default_wake_function+0x10/0x10
[  403.191337][T29790]  handle_mm_fault+0xb40/0x3030
[  403.191438][T29790]  ? vma_start_read+0x1c7/0x2c0
[  403.191455][T29790]  do_user_addr_fault+0x62f/0x1050
[  403.191471][T29790]  ? arch_exit_to_user_mode_prepare+0x26/0x80
[  403.191520][T29790]  ? irqentry_exit+0x3c/0x510
[  403.191535][T29790]  exc_page_fault+0x62/0xa0
[  403.191549][T29790]  asm_exc_page_fault+0x26/0x30
[  403.191664][T29790] RIP: 0033:0x7f03bb4ef417
[  403.191675][T29790] Code: 74 28 25 ff 0f 00 00 83 f0 3d 8d 04 c0 89 c3 c1 eb 04 31 c3 69 db 2d eb d4 27 89 d8 c1 e8 0f 31 c3 81 e3 ff 0f 00 00 48 31 d3 <80> 3d 2a 2c 3a 00 00 0f 84 1c 01 00 00 4c 89 f6 48 8b 0d 0a 2c 3a
[  403.191687][T29790] RSP: 002b:00007fff50dee930 EFLAGS: 00010286
[  403.191699][T29790] RAX: 000000000000ed10 RBX: ffffffff819a8ce2 RCX: 0000000000000002
[  403.191780][T29790] RDX: ffffffff819a818d RSI: 0000000000002a30 RDI: 00007f03bb07f008
[  403.191789][T29790] RBP: 0000000000000000 R08: 00007f03bb880000 R09: 00007f03bb882000
[  403.191798][T29790] R10: 00000000819a8c18 R11: 0000000000000005 R12: 00007f03bb896038
[  403.191844][T29790] R13: 0000000000000002 R14: ffffffff819a818d R15: 00007f03bc3c5720
[  403.191910][T29790]  ? __fget_files+0x1d/0x1c0
[  403.191933][T29790]  ? set_close_on_exec+0x102/0x110
[  403.191948][T29790]  ? __fget_files+0x1d/0x1c0
[  403.191962][T29790]  </TASK>
[  403.191966][T29790] memory: usage 307200kB, limit 307200kB, failcnt 1964
[  403.267229][T29795] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 440: padding at end of block bitmap is not set
[  403.272475][T29790] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[  403.272538][T29790] kmem: usage 307096kB, limit 9007199254740988kB, failcnt 0
[  403.467248][T29790] Memory cgroup stats for /syz1:
[  403.470232][T29790] cache 0
[  403.478230][T29790] rss 0
[  403.481151][T29790] shmem 0
[  403.484102][T29790] mapped_file 0
[  403.487609][T29790] dirty 0
[  403.490538][T29790] writeback 0
[  403.493803][T29790] workingset_refault_anon 323
[  403.498503][T29790] workingset_refault_file 5854
[  403.503261][T29790] swap 200704
[  403.506574][T29790] swapcached 0
[  403.510016][T29790] pgpgin 244439
[  403.513500][T29790] pgpgout 244436
[  403.517070][T29790] pgfault 194234
[  403.520631][T29790] pgmajfault 271
[  403.524381][T29790] inactive_anon 0
[  403.528037][T29790] active_anon 0
[  403.531504][T29790] inactive_file 12288
[  403.535484][T29790] active_file 0
[  403.538946][T29790] unevictable 0
[  403.542396][T29790] hierarchical_memory_limit 314572800
[  403.547787][T29790] hierarchical_memsw_limit 9223372036854771712
[  403.553995][T29790] total_cache 0
[  403.557478][T29790] total_rss 0
[  403.560878][T29790] total_shmem 0
[  403.564394][T29790] total_mapped_file 0
[  403.568763][T29790] total_dirty 0
[  403.572267][T29790] total_writeback 0
[  403.576266][T29790] total_workingset_refault_anon 323
[  403.581551][T29790] total_workingset_refault_file 5854
[  403.586953][T29790] total_swap 200704
[  403.590748][T29790] total_swapcached 0
[  403.594639][T29790] total_pgpgin 244439
[  403.598633][T29790] total_pgpgout 244436
[  403.602729][T29790] total_pgfault 194234
[  403.606797][T29790] total_pgmajfault 271
[  403.610937][T29790] total_inactive_anon 0
[  403.615456][T29790] total_active_anon 0
[  403.619442][T29790] total_inactive_file 12288
[  403.623934][T29790] total_active_file 0
[  403.627912][T29790] total_unevictable 0
[  403.631877][T29790] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.8470,pid=29790,uid=0
[  403.646557][T29790] Memory cgroup out of memory: Killed process 29790 (syz.1.8470) total-vm:94000kB, anon-rss:1332kB, file-rss:22284kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0
[  403.683324][T22765] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.