last executing test programs:

3m59.211820162s ago: executing program 3 (id=222):
ioctl$SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f0000000000)={0x100000000, <r0=>0xffffffffffffffff, 'id0\x00'})
ioctl$SNAPSHOT_S2RAM(r0, 0x330b)
lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '-)\x00'})
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r1, 0x10c, 0x7, &(0x7f0000000100)=0x2, 0x4)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0)
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f00000003c0)={&(0x7f0000000140), 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x1bc, r2, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}]}, @TIPC_NLA_BEARER={0xb4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @local}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x6, @mcast1, 0x2}}}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7292}]}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x51d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5dee}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}, @TIPC_NLA_LINK={0x28, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x598a2ddb}]}, @TIPC_NLA_MEDIA={0x7c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3fffc}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff88ad}]}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x4}, 0x20008000)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r0, 0x110, 0x3)
r3 = dup3(r1, r1, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), r0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000480)={'vcan0\x00', <r5=>0x0})
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'wg0\x00', <r6=>0x0})
getsockname$packet(r3, &(0x7f0000000500)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000540)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r8=>0x0})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000640)={r0, 0x58, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r9=>0x0}}, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000000840)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000680)={0x154, r4, 0x20, 0x2, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x154}, 0x1, 0x0, 0x0, 0x48801}, 0x20000000)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000a40)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000a00)={&(0x7f00000008c0)={0x120, 0x12, 0x100, 0x70bd26, 0x25dfdbfd, {0x9, 0x20, 0x9c, 0x2, {0x4e20, 0x4e23, [0x8d, 0x2, 0x141c, 0x5], [0x3, 0xffff7fff, 0x4, 0x9], 0x0, [0x8, 0x101]}, 0xb9, 0x8}, [@INET_DIAG_REQ_BYTECODE={0xc, 0x1, "9188674c1201e562"}, @INET_DIAG_REQ_BYTECODE={0x54, 0x1, "d36f06b58509a612e08d24cd6b75c0079fb8455d534127c05064dad776b2cbfeb6a8d33c41e668d79097f49268ad1c66b5dcad7af6ae87ff8dcd65dca695bb00a8d2b2cb60fc4064d06bda4167a3b122"}, @INET_DIAG_REQ_BYTECODE={0x36, 0x1, "fe93f2e154cdbd25c5caa7900d2886fb7a80c1678f4f32ff87ca1a46b34f20eb2335580f29a7676272a7e1f2380d24e63acf"}, @INET_DIAG_REQ_BYTECODE={0x3a, 0x1, "ff187a8b4a7fb2dae0b4a3d6d3a016c8ea7857255fdce4bc589558236760756f778bca04b46907569055a9a18776daccb634e48058c7"}]}, 0x120}, 0x1, 0x0, 0x0, 0x11}, 0x40)
r10 = dup2(r0, r1)
sendmsg$key(r10, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000a80)={0x2, 0x14, 0x6, 0x6, 0x1b, 0x0, 0x70bd2b, 0x25dfdbfc, [@sadb_x_filter={0x5, 0x1a, @in=@empty, @in6=@local, 0x10, 0x10, 0x14}, @sadb_sa={0x2, 0x1, 0x4d4, 0x5, 0x0, 0xfa, 0x3, 0x40000001}, @sadb_spirange={0x2, 0x10, 0x4d3, 0x4d2}, @sadb_x_policy={0x8, 0x12, 0x4, 0x2, 0x0, 0x6e6bc0, 0x2, {0x6, 0x3c, 0x7, 0xf7, 0x0, 0x9, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @local}, @in=@empty}}, @sadb_x_nat_t_type={0x1, 0x14, 0x6}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in6={0xa, 0x4e24, 0xc1dc, @dev={0xfe, 0x80, '\x00', 0xb}, 0x9}, @in={0x2, 0x4e22, @loopback}}]}, 0xd8}}, 0x4)
ioctl$sock_TIOCINQ(r10, 0x541b, &(0x7f0000000c00))
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001d80)={r0, 0x20, &(0x7f0000001d40)={&(0x7f0000000c40)=""/219, 0xdb, 0x0, &(0x7f0000000d40)=""/4096, 0x1000}}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000001e80)={&(0x7f0000001dc0), 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x20, 0x0, 0x8, 0x3, 0x0, 0x0, {0x5, 0x0, 0x7}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000}, 0x800)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001fc0)={&(0x7f0000001ec0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x90, 0x90, 0x3, [@func={0xa, 0x0, 0x0, 0xc, 0x1}, @typedef={0x3, 0x0, 0x0, 0x8, 0x3}, @struct={0x0, 0x7, 0x0, 0x4, 0x1, 0x10001, [{0x8, 0x5, 0x8}, {0x8, 0x2, 0x73cf}, {0x4, 0x3, 0x98}, {0xc, 0x5, 0x40}, {0x10, 0x0, 0x9}, {0xf, 0x7, 0xff}, {0x1, 0x5}]}, @type_tag={0x3, 0x0, 0x0, 0x12, 0x2}, @float={0x6, 0x0, 0x0, 0x10, 0x8}]}, {0x0, [0x30]}}, &(0x7f0000001f80)=""/8, 0xab, 0x8, 0x1, 0x10, 0x10000, @value=r10}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000002180)={r11, 0x20, &(0x7f0000002140)={&(0x7f0000002000)=""/121, 0x79, 0x0, &(0x7f0000002080)=""/144, 0x90}}, 0x10)
r12 = syz_genetlink_get_family_id$devlink(&(0x7f0000002200), r3)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r10, &(0x7f0000002340)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002300)={&(0x7f0000002240)={0x84, r12, 0x4, 0x70bd27, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
ioctl$EVIOCGLED(r3, 0x80404519, &(0x7f0000002380)=""/103)
fsopen(&(0x7f0000002400)='efivarfs\x00', 0x1)
syz_pidfd_open(0x0, 0x0)

3m58.899626714s ago: executing program 3 (id=226):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x0, 0x7ffc0001}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x8, 0x80, 0x3, 0x5}, {0xea, 0x9, 0x9, 0x8}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000140)=@fragment={0xb6, 0x0, 0x92, 0x0, 0x0, 0x1b, 0x65}, 0x8)
sendto$inet6(r1, 0x0, 0xffffffffffffff2e, 0x404cc40, &(0x7f0000000040)={0xa, 0x4e22, 0xffffff7c, @mcast2, 0x7}, 0x1c)
r2 = gettid()
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r6}, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r5)
sendmsg$IEEE802154_LIST_PHY(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r7, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file2\x00', 0xc8d0, &(0x7f0000000100)=ANY=[@ANYRES8], 0x1, 0x30e, &(0x7f0000000ac0)="$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")
lstat(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000400))
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000140)={0x2, &(0x7f00000000c0)=[{0x3ff, 0x5a, 0xff, 0x1}, {0x5, 0x2, 0x80, 0xfffffff1}]})
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000040)={'netpci0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='netfs_rreq\x00', r9, 0x0, 0x5}, 0x18)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)

3m58.01545714s ago: executing program 3 (id=234):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x8}, 0x18)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000580)={0x53, 0xffffffff00000000, 0x6, 0x0, @buffer={0x2, 0x53, &(0x7f0000000500)=""/83}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x10, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r6 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x18)
connect$inet6(r6, 0x0, 0x0)
writev(r6, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r5, 0x4008550d, &(0x7f0000000080))
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYRESOCT=r7], 0x1, 0x15d, &(0x7f0000000740)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = perf_event_open(0x0, 0x0, 0xa, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$ETHTOOL_MSG_WOL_GET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002abd7000000000001b0000000c00018008000100", @ANYRES32=r13], 0x20}}, 0x0)

3m54.195917986s ago: executing program 3 (id=273):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x6, 0x3, 0x7ffcfffc}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000400)={0x0, 0x1, 0xffffffffffffffff, 0x4, 0x80000})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x4})
epoll_pwait(r4, &(0x7f0000002500)=[{}], 0x1, 0x30, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000bc0)={{0x0, 0x1}, {0xe}, 0x2, 0x6, 0x2e})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r5=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000a00)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1002430, &(0x7f0000000440)={[{@quota}, {@noquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r8)
sendmsg$IEEE802154_ADD_IFACE(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01022dbd7000ffdb652520e7000109001f0070687931000000000a0001007770616e33000000050020"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')

3m53.929381008s ago: executing program 3 (id=279):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff)
sendmmsg$inet6(r1, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r4, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r5, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000200080001000300000005000200030000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1)
syz_clone(0x40000000, &(0x7f0000000280)="2a30053e1c3176348270ca8b9180188fc835645c38b5c342fa86e88edfa65351a46a96741fb8b27eb7a0bbf51c48d5e453c0f1988ab9e8ce16", 0x39, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r9}, 0x10)
close(r8)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000280)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r12}, 0x10)
syz_read_part_table(0x60e, &(0x7f00000007c0)="$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")
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0xd3eb, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r13=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000440)="be6f88e90400", 0x6}], 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="2000000000000000840000000200000006000400280100000b008002", @ANYRES32=r13], 0x20, 0x6044}, 0x6)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)

3m52.840800096s ago: executing program 3 (id=284):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x8}, 0x18)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000580)={0x53, 0xffffffff00000000, 0x6, 0x0, @buffer={0x2, 0x53, &(0x7f0000000500)=""/83}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x10, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r6 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x18)
connect$inet6(r6, 0x0, 0x0)
writev(r6, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r5, 0x4008550d, &(0x7f0000000080))
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYRESOCT=r7], 0x1, 0x15d, &(0x7f0000000740)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = perf_event_open(0x0, 0x0, 0xa, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$ETHTOOL_MSG_WOL_GET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002abd7000000000001b0000000c00018008000100", @ANYRES32=r13], 0x20}}, 0x0)

3m37.816611619s ago: executing program 32 (id=284):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x8}, 0x18)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000580)={0x53, 0xffffffff00000000, 0x6, 0x0, @buffer={0x2, 0x53, &(0x7f0000000500)=""/83}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x10, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r6 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x18)
connect$inet6(r6, 0x0, 0x0)
writev(r6, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r5, 0x4008550d, &(0x7f0000000080))
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file1\x00', 0x2800810, &(0x7f00000025c0)=ANY=[@ANYRESOCT=r7], 0x1, 0x15d, &(0x7f0000000740)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = perf_event_open(0x0, 0x0, 0xa, 0xffffffffffffffff, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r9, 0x40042408, r10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
r12 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$ETHTOOL_MSG_WOL_GET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002abd7000000000001b0000000c00018008000100", @ANYRES32=r13], 0x20}}, 0x0)

4.448680879s ago: executing program 0 (id=3621):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x50)
setitimer(0x1, &(0x7f0000000000)={{0x77359400}, {0x20000000000000}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pipe(&(0x7f00000045c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000240)=[{&(0x7f00000000c0)="3b256c7a40ff8cf30d776a89d5cfc3ce7467bd", 0x13}], 0x1, 0x0)
r6 = socket$inet(0x2, 0x3, 0x7f)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r6, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
connect$inet(r6, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r6, 0x0, 0x8000, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x40000041, 0x4, 0x3, 0x3}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

4.41890071s ago: executing program 0 (id=3622):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0xfffe, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x1}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r4 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r4})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r4})

4.39402707s ago: executing program 0 (id=3624):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = socket$inet6(0xa, 0x2, 0x3a)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00000000000000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = dup(r3)
bind$unix(r4, &(0x7f00000002c0)=@abs={0xa, 0x2}, 0x6e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000200)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8100036c00fc08000000000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x80, &(0x7f00000000c0)={'nat\x00', 0x0, 0x0, 0x0, [0x5, 0x93, 0x0, 0xffff, 0x200, 0xe]}, &(0x7f0000000140)=0x78)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000210081044e81f782db44b90402000000008000000000150010001400259070f409000d2000000a000e4006000000036010fab94dcf5c0468c1d67f6f94007134cf6ee05e6756cfb39b0590b4800089e408e8d8ef52b49816277cf4090000001fb791643a5e08001b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db701000000eafad95667e006dcdf969b3ef35ce3bb9ad809d561cace81ed0bffece0b42a9ecbee5de6cce50dd6e4edef3d939acd92954b43370e970100"/216, 0xd8}], 0x1}, 0x0)

3.389291227s ago: executing program 0 (id=3628):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1002002, 0x0)
r1 = dup(r0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r2, 0xee72)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_io_uring_setup(0x14d9, &(0x7f0000000480)={0x0, 0x5121, 0x0, 0x3, 0x257}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000080)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file1\x00'})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa20000000001f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070011000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r12, 0x0, 0x3}, 0x18)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000100)='./bus\x00', &(0x7f0000000400)='efivarfs\x00', 0x280004, &(0x7f0000000300)='&}\\o+\\&{\x00')
sendfile(r1, r2, 0x0, 0x8000fffffffe)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a44000000060a0b0400000000000000000200000018000480140001800a0001006d61746368000000040002800900020073797a320000000009004a0073797a3000000000140000001100000000000000000000000a"], 0x6c}}, 0x4048010)

3.182349938s ago: executing program 5 (id=3630):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000134c0)={[{@dioread_nolock}, {@noauto_da_alloc}, {@inlinecrypt}, {@sysvgroups}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x7f}}, {@data_err_ignore}, {@grpquota}, {@dioread_nolock}, {@user_xattr}, {@resuid}, {@quota}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305828, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x100, 0x100000002})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000140), 0x0, 0xe7c)

2.94462523s ago: executing program 5 (id=3631):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="16000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0x2000000000000101, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x0, &(0x7f0000000200)})
fdatasync(0xffffffffffffffff)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r3, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

2.828226291s ago: executing program 1 (id=3636):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x0, 0x7ffc0001}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x8, 0x80, 0x3, 0x5}, {0xea, 0x9, 0x9, 0x8}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$inet6(r1, 0x0, 0xffffffffffffff2e, 0x404cc40, &(0x7f0000000040)={0xa, 0x4e22, 0xffffff7c, @mcast2, 0x7}, 0x1c)
r2 = gettid()
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r6}, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r5)
sendmsg$IEEE802154_LIST_PHY(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r7, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file2\x00', 0xc8d0, &(0x7f0000000100)=ANY=[@ANYRES8], 0x1, 0x30e, &(0x7f0000000ac0)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x5, 0x2, 0x80, 0xfffffff1}]})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='netfs_rreq\x00', r8, 0x0, 0x5}, 0x18)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)

2.611094412s ago: executing program 5 (id=3638):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x101}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioprio_get$uid(0x3, 0xffffffffffffffff)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2000004, 0x10, 0xffffffffffffffff, 0x8000000)
r3 = open$dir(&(0x7f0000000040)='./file2\x00', 0x0, 0x20)
syz_io_uring_submit(r2, 0x0, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x10, 0x0, r3, &(0x7f00000000c0)='./file2\x00', &(0x7f0000000280)='./file2\x00', 0xffffffffffffffff, 0x400})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000c40)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000400000002000000000000110300000001000000000000000100000d000000000000000000000000020000000000000c02000000000061"], 0x0, 0x4c, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x65, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r7, 0x0, 0x115}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRESOCT], 0x5c}}, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000440))
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)

2.330674064s ago: executing program 0 (id=3640):
r0 = gettid()
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000100))
r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
read$qrtrtun(r5, 0x0, 0xeffd)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
sync_file_range(r6, 0x2, 0x8, 0xb)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
setsockopt$CAN_RAW_FD_FRAMES(0xffffffffffffffff, 0x65, 0x5, &(0x7f0000000080), 0x4)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000400)={@local, @remote, 0x1, 0x6, [@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @broadcast, @dev={0xac, 0x14, 0x14, 0x14}, @rand_addr=0x64010102]}, 0x28)

2.179348285s ago: executing program 2 (id=3642):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)=[{}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x8}})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
epoll_create1(0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)

1.942714247s ago: executing program 1 (id=3643):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0500000001000000070000000c"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000005c0), &(0x7f0000000600)='%-5lx  \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x18)
iopl(0x63)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000a80)=ANY=[@ANYBLOB="7f454c4600070284ff7f0000000000000300060003000000a400000038000000aa00000007000000a70b2000010026840400000800000000030000000700000000000000ff070000c300000000020000020000000d000000"], 0x58)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000080)='.\x00', 0x2000775)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x10000, 0x1000, 0x101, 0x1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
io_uring_setup(0x6c4, &(0x7f0000000080)={0x0, 0x59d6, 0x2, 0x2})
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x2000)
ioctl$SG_GET_VERSION_NUM(r2, 0x2284, &(0x7f0000000080))

1.911454357s ago: executing program 1 (id=3644):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x101}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioprio_get$uid(0x3, 0xffffffffffffffff)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2000004, 0x10, 0xffffffffffffffff, 0x8000000)
r3 = open$dir(&(0x7f0000000040)='./file2\x00', 0x0, 0x20)
syz_io_uring_submit(r2, 0x0, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x10, 0x0, r3, &(0x7f00000000c0)='./file2\x00', &(0x7f0000000280)='./file2\x00', 0xffffffffffffffff, 0x400})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000c40)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000400000002000000000000110300000001000000000000000100000d000000000000000000000000020000000000000c02000000000061"], 0x0, 0x4c, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x65, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
getsockopt$TIPC_CONN_TIMEOUT(r5, 0x10f, 0x82, &(0x7f0000000580), &(0x7f00000005c0)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0x115}, 0x18)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRESOCT], 0x5c}}, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000440))
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")

1.803144907s ago: executing program 4 (id=3645):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0xfffe, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x1}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000))
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000))

1.732768378s ago: executing program 4 (id=3646):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x50)
setitimer(0x1, &(0x7f0000000000)={{0x77359400}, {0x20000000000000}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pipe(&(0x7f00000045c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000240)=[{&(0x7f00000000c0)="3b256c7a40ff8cf30d776a89d5cfc3ce7467bd24", 0x14}], 0x1, 0x0)
r6 = socket$inet(0x2, 0x3, 0x7f)
bind$inet(r6, 0x0, 0x0)
setsockopt$inet_int(r6, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
connect$inet(r6, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r6, 0x0, 0x8000, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x40000041, 0x4, 0x3, 0x3}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

1.713638638s ago: executing program 4 (id=3647):
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000c7474bba47695d921d3f37dc01f11cb9bd4c4bc82c5935062379a6783a00f36fa56e35aab774e15ba05aec95801ca41c6f093d3e04c859b8dd137ef12c4520b8b00fb175cc1b0dbe42054df96d56ff7954b22740fea5607acdacd46634ca85c2801e2f3c7e4679dfad2beed3d74451722366c7f7d27da95a7cdef88194cb98b4a1f37fae922af9eed3caf4f049108875d3da828fc0ef78d63d58a3680aafc45e2aab6984377719b0e59f3976c10f0189367b48ce79115935c2f2be428cc14a832ced1bcfd675b6d147f495648237bf622c"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000640)='nilfs2_mdt_submit_block\x00', r0, 0x0, 0xe17}, 0x18)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0xfe8e, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
mmap(&(0x7f0000135000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0xa34a3000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f00000001c0)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
epoll_create(0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000002c0)=0x1)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="030000010100000006000000000a00000f000000", @ANYRES32=0x1, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="040000000500"/28], 0x50)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)

1.591151479s ago: executing program 5 (id=3648):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7040000080000008500000078000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r2}, 0x18)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000900)=ANY=[@ANYBLOB="2c0000003f00070dfeffffff00000000017c0000040077000c00038006"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0x4044000)

1.43563255s ago: executing program 0 (id=3649):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x81}, 0x18)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000000), &(0x7f0000000180)=r3}, 0x20)
r4 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_msfilter(r4, 0x0, 0x29, 0x0, 0x1c)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10)
fstat(r0, &(0x7f0000000280))
stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000200)=0xc)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbff}, 0x10}}, 0x4040014)

1.216200841s ago: executing program 5 (id=3650):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x0, 0x7ffc0001}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x8, 0x80, 0x3, 0x5}, {0xea, 0x9, 0x9, 0x8}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000140)=@fragment={0xb6, 0x0, 0x92, 0x0, 0x0, 0x1b, 0x65}, 0x8)
sendto$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff2e, 0x404cc40, &(0x7f0000000040)={0xa, 0x4e22, 0xffffff7c, @mcast2, 0x7}, 0x1c)
r1 = gettid()
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r5}, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r4)
sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r6, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file2\x00', 0xc8d0, &(0x7f0000000100)=ANY=[@ANYRES8], 0x1, 0x30e, &(0x7f0000000ac0)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x5, 0x2, 0x80, 0xfffffff1}]})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='netfs_rreq\x00', r7, 0x0, 0x5}, 0x18)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)

920.368014ms ago: executing program 4 (id=3651):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000001380)=@sr0, 0x0, &(0x7f0000001680)='./file1\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x8, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$eJzs3cFvG1kZAPBvnLhJs+mmC3sABGxZFgqq6iTubrTqhfYCQlUlRMWJQxsSN4pi11Hsiib0kB65V6ISJ+A/4MYBqScO3LjBjUs5IBWoQA0SB6MZT1I3sZNAnbiJfz9pMvPeTP29F/e953mR5wUwtC5ExGZEnImIOxExlecn+RbX2lt63csXDxe2XjxcSKLVuvX3JDuf5kXHv0m9k7/meER8/zsRP0r2xm2sb6zMV6uVtTw93aytTjfWNy4vF/Kc8tzs3MynVz4p962uH9R+/fzbyzd+8NvffOnZHza/+ZO0WJM/PZed66xHP7WrXozJjrzRiLhxFMEGZDT//8PJk7a2z0TEh1n7n4qR7N0EAE6zVmsqWlOdaQDgtEvv/ycjKZTyuYDJKBRKpfYc3vsxUajWG81LU/X79xYjm8M6H8XC3eVqZSafKzwfxSRNz2bHr9Ll19KPK1ci4r2IeDx2NjtfWqhXFwf5wQcAhtg7u8b/f421x/9OxUEVDgA4OuODLgAAcOyM/wAwfIz/ADB8/ofx37cDAeCUcP8PAMPH+A8Aw+fA8f/R8ZQDADgW37t5M91aW+3nX28/qfvyYqWxUqrdXygt1NdWS0v1+lK1UlpotQ56vWq9vjr78U6ysb5xu1a/f695e7k2v1S5XfEsAQAYvPc+ePqndNDfvHo226JjLQdjNZxuhUEXABiYkUEXABgY3+eB4XWIe3zTAHDKdVmity2fIEh6XfDE4q9wUl38vPl/GFZvMv9v7gBOtv9v/v9bfS8HcPyM4TC8Wq3Emv8AMGTM8QM9//6f6/mIkCf9LwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACcFJPZlhRK2Vrgm+nPQqkUcS4izkcxubtcrcxExLsR8cex4lianh10oQGAN1T4a5Kv/3Vx6qPJ3WfPJP8ey/YR8eOf3/rZg/lmc202zf/HTn7zSZp/trlWPjOICgAAna7tzcrG73K+77iRf/ni4cL2dpxFfH69vbhoGncr39pnRmM0249HMSIm/pnk6bb088pIH+JvPoqIz23XfzwedESYzOZA2iuf7o6fxj7X9/idv//d8Quv1beQnUv3xex38dnYVTjgQE+vt/vJvO2lTTxvf4W4kO27t//xrId6c2n/lzbXrT39X2Gn/xvZEz/J2vyFnfT+JXn+8e++uyezNdU+9yjiC6Pd4ic78ZPu/W/xo0PW8c9f/PKHvc61fhFxsWv9t1ekrmXd7HSztjrdWN+4vFybX6osVe6Vy3OzczOfXvmkPJ3NUbd//r5bjL9dvfRur/hp/Sd6xB/fv/7xtUPW/5f/ufPDr+wT/xtf7f7+v79P/HRM/Poh489PXOu5fHcaf7FH/Q94/+PSIeM/+8vG4iEvBQCOQWN9Y2W+Wq2sHXCQftY86BoHhz9I7+3fgmJkB7EZ0a8XzCYlIqLrNekn6rejykd1kAws+q/6/YKD7pmAo/aq0Q+6JAAAAAAAAAAAAAAAQC+N9Y2Vse7f1urbwaDrCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwOn13wAAAP//KHnENg==")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000100)={0x3920e, r3, 0x10004, 0x4, 0x3, 0x86})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x60263, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000"], 0x128}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{0x0}], 0x1)
writev(r7, &(0x7f00000001c0)=[{0x0}], 0x1)
socket$netlink(0x10, 0x3, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000002c0)={0x4, &(0x7f0000000000)=[{0x7, 0x9, 0x5, 0x28a}, {0x3, 0x2, 0x84, 0x197df479}, {0x5, 0x5, 0x87, 0x5}, {0x4, 0x9, 0x3f}]})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$inet(r5, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/13, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

812.385084ms ago: executing program 4 (id=3652):
r0 = gettid()
rt_sigqueueinfo(r0, 0x23, &(0x7f0000001340)={0x3, 0x0, 0x7})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000008000000dd00"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000640)='percpu_alloc_percpu\x00', r2}, 0x18)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r2}, 0x8)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000c00)=ANY=[@ANYBLOB="9feb010018000000000000006a0100006a01000007000000000000000700009486e48f40c1360d00000000020000000500000010000000030000000900000000000000030000000100000002000000070000000b000000020000000b00000004000000040000000000000e05000000000000000e00000003000006040000000c00000007000000050000000d00000002000000ac000000050000000000000c040000000b00000000000008010009000000001000000007000093ec9d506e0200000004000000040000000b00000001000000ff0f00000a0000005b9da769a9a500100b00000004000000090000000a000000060000000100000003000000985600000520000007000000010000007f000000010000000800000f02000000010000000300f3375c5f40d0226d0000080000000700000003000000af05000008f4ffff02000000000000000002000003000000770000007f00000002000000ff0700000200000002000000080000003805000005000000020000000104000039df000000612e612e5f000000"], &(0x7f0000000180)=""/148, 0x18b, 0x94, 0x0, 0x2, 0x10000, @value=r3}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0xfffffffffffffe3c, 0x0, 0x40f00, 0xaf, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="16000000", @ANYRES16=r7, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~\x00\x00\x00'], 0x14}}, 0x4000054)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r9)
sendmsg$IPVS_CMD_GET_SERVICE(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="71c82cbd7000fbdbdf250400000030000180060004004e230000060002003a0000001400030000000000000000000000000000000000060001"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$IPVS_CMD_FLUSH(r4, &(0x7f00000007c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000780)={&(0x7f0000000940)=ANY=[@ANYBLOB="98003219f0e2550000", @ANYRES16=r10, @ANYBLOB="000429bd7000ffdbdf25110000002c000180060004004e2200000600010002000000060004004e240000060002003a00000006000100020000003c000180060004004e21000006000100020000000c0007000000000016000000060002008900000006000100020000000c00070025000000040000001c0001800600020016000000060002002b0000000800080008000000"], 0x98}, 0x1, 0x0, 0x0, 0x8000}, 0x20004805)
bind$inet(r8, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000800)=ANY=[@ANYBLOB="aaaaaaaaaaaafad1e048716e08004500001c00000000009078000000000000000000004e2000089078d7323921bbc98563795444829fda805f8ae8c96d7965e96314039e834fb79aa1f650a24ac649e0a71a60e6e533664764874f35edd62be0adcc99591613b4ea801cddcc44cf367d15d7eedfd3ace66603cebf6ddb278961452640db11a72a78a18bebd28bf4ca8b2bbb08efd8f46a2c93e1db9cf8369308ee5db746b5c7539c2d36405d8ebc4ca677c0abc4de029784fbe3a3295ca6cae39fcfe345cc497ce8c24a57319e6bae393f86cbc7d8dc2530ecf867076ad2fd6cae47dec1"], 0x0)
setsockopt$inet_int(r8, 0x0, 0x14, &(0x7f00000001c0)=0x3f7, 0x4)
recvmmsg(r8, &(0x7f0000001840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r11}, 0x10)
r12 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r13 = dup(r12)
write$UHID_INPUT(r13, &(0x7f0000002080)={0xa, {"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", 0x823}}, 0x1006)

709.853395ms ago: executing program 2 (id=3653):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0500000001000000070000000c"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000005c0), &(0x7f0000000600)='%-5lx  \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x18)
iopl(0x63)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
listxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

669.187795ms ago: executing program 2 (id=3654):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x50)
setitimer(0x1, &(0x7f0000000000)={{0x77359400}, {0x20000000000000}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de85000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pipe(&(0x7f00000045c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
vmsplice(r5, &(0x7f0000000240)=[{&(0x7f00000000c0)="3b256c7a40ff8cf30d776a89d5cfc3ce7467bd24", 0x14}], 0x1, 0x0)
r6 = socket$inet(0x2, 0x3, 0x7f)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r6, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
connect$inet(r6, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r4, 0x0, r6, 0x0, 0x8000, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x40000041, 0x4, 0x3, 0x3}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)
symlinkat(0x0, 0xffffffffffffffff, 0x0)

666.972195ms ago: executing program 1 (id=3655):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
open$dir(&(0x7f0000000040)='./file2\x00', 0x0, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x65, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r1}, 0x38)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
getsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x82, &(0x7f0000000580), &(0x7f00000005c0)=0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r2, 0x0, 0x115}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRESOCT], 0x5c}}, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000440))
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)

627.601476ms ago: executing program 2 (id=3656):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0xfffe, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x1}, 0x865)
r4 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r4})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r4})

593.029586ms ago: executing program 2 (id=3657):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7000000)

567.802716ms ago: executing program 1 (id=3658):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$inet(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0xfffe, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000000080)='_', 0x1}], 0x1}, 0x865)
setsockopt$sock_attach_bpf(r1, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r4 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r4})
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r4})

525.691836ms ago: executing program 2 (id=3659):
r0 = gettid()
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000100))
r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
read$qrtrtun(r5, 0x0, 0xeffd)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
sync_file_range(r6, 0x2, 0x8, 0xb)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
setsockopt$CAN_RAW_FD_FRAMES(0xffffffffffffffff, 0x65, 0x5, &(0x7f0000000080), 0x4)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000400)={@local, @remote, 0x1, 0x6, [@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @broadcast, @dev={0xac, 0x14, 0x14, 0x14}, @rand_addr=0x64010102]}, 0x28)

511.895917ms ago: executing program 1 (id=3660):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x81}, 0x18)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbff}, 0x10}}, 0x4040014)

342.210238ms ago: executing program 5 (id=3661):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x0, 0x7ffc0001}]})
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x8, 0x80, 0x3, 0x5}, {0xea, 0x9, 0x9, 0x8}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$inet6(r1, 0x0, 0xffffffffffffff2e, 0x404cc40, &(0x7f0000000040)={0xa, 0x4e22, 0xffffff7c, @mcast2, 0x7}, 0x1c)
r2 = gettid()
timer_create(0x0, &(0x7f00000005c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r6}, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r5)
sendmsg$IEEE802154_LIST_PHY(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)={0x14, r7, 0x30b, 0x0, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4044}, 0x20000004)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file2\x00', 0xc8d0, &(0x7f0000000100)=ANY=[@ANYRES8], 0x1, 0x30e, &(0x7f0000000ac0)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x5, 0x2, 0x80, 0xfffffff1}]})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='netfs_rreq\x00', r8, 0x0, 0x5}, 0x18)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)

0s ago: executing program 4 (id=3662):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = socket$inet6(0xa, 0x2, 0x3a)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c00000000000000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = dup(r3)
bind$unix(r4, &(0x7f00000002c0)=@abs={0xa, 0x2}, 0x6e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000200)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8100036c00fc08000000000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x80, &(0x7f00000000c0)={'nat\x00', 0x0, 0x0, 0x0, [0x5, 0x93, 0x0, 0xffff, 0x200, 0xe]}, &(0x7f0000000140)=0x78)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="d8000000210081044e81f782db44b90402000000008000000000150010001400259070f409000d2000000a000e4006000000036010fab94dcf5c0468c1d67f6f94007134cf6ee05e6756cfb39b0590b4800089e408e8d8ef52b49816277cf4090000001fb791643a5e08001b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db701000000eafad95667e006dcdf969b3ef35ce3bb9ad809d561cace81ed0bffece0b42a9ecbee5de6cce50dd6e4edef3d939acd92954b43370e970100"/216, 0xd8}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

64.250552][T14418] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3255'.
[  264.361573][T12716] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  264.372763][T12716] CPU: 0 UID: 0 PID: 12716 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  264.372867][T12716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  264.372937][T12716] Call Trace:
[  264.372944][T12716]  <TASK>
[  264.372954][T12716]  __dump_stack+0x1d/0x30
[  264.372984][T12716]  dump_stack_lvl+0xe8/0x140
[  264.373056][T12716]  dump_stack+0x15/0x1b
[  264.373078][T12716]  dump_header+0x81/0x220
[  264.373100][T12716]  oom_kill_process+0x342/0x400
[  264.373145][T12716]  out_of_memory+0x979/0xb80
[  264.373189][T12716]  try_charge_memcg+0x610/0xa10
[  264.373342][T12716]  charge_memcg+0x51/0xc0
[  264.373367][T12716]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  264.373395][T12716]  __read_swap_cache_async+0x17b/0x2d0
[  264.373427][T12716]  swap_cluster_readahead+0x262/0x3c0
[  264.373466][T12716]  swapin_readahead+0xde/0x6f0
[  264.373559][T12716]  ? __rcu_read_unlock+0x4f/0x70
[  264.373595][T12716]  ? __rcu_read_unlock+0x4f/0x70
[  264.373631][T12716]  ? swap_cache_get_folio+0x277/0x280
[  264.373667][T12716]  do_swap_page+0x2ae/0x2370
[  264.373698][T12716]  ? _raw_spin_unlock+0x26/0x50
[  264.373733][T12716]  ? finish_task_switch+0xad/0x2b0
[  264.373770][T12716]  ? __pfx_default_wake_function+0x10/0x10
[  264.373871][T12716]  handle_mm_fault+0x9a5/0x2be0
[  264.373915][T12716]  ? vma_start_read+0x141/0x1f0
[  264.373966][T12716]  do_user_addr_fault+0x630/0x1080
[  264.373997][T12716]  ? fpregs_restore_userregs+0xe2/0x1d0
[  264.374155][T12716]  ? switch_fpu_return+0xe/0x20
[  264.374196][T12716]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  264.374235][T12716]  exc_page_fault+0x62/0xa0
[  264.374305][T12716]  asm_exc_page_fault+0x26/0x30
[  264.374327][T12716] RIP: 0033:0x7ff1c6471f45
[  264.374343][T12716] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 1e 66 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  264.374367][T12716] RSP: 002b:00007ffcd8dc06b8 EFLAGS: 00010246
[  264.374389][T12716] RAX: 0000000000000000 RBX: 00000000000000ca RCX: 00007ff1c6471f43
[  264.374407][T12716] RDX: 00007ffcd8dc06d0 RSI: 0000000000000000 RDI: 0000000000000000
[  264.374424][T12716] RBP: 00007ffcd8dc073c R08: 000000001ee21783 R09: 0000000000000000
[  264.374487][T12716] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  264.374500][T12716] R13: 00000000000927c0 R14: 00000000000406eb R15: 00007ffcd8dc0790
[  264.374544][T12716]  </TASK>
[  264.374565][T12716] memory: usage 307200kB, limit 307200kB, failcnt 1952
[  264.503849][T14424] loop2: detected capacity change from 0 to 128
[  264.504704][T12716] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  264.504726][T12716] kmem: usage 307132kB, limit 9007199254740988kB, failcnt 0
[  264.511364][T14424] vfat: Unknown parameter 'ÿ'
[  264.515676][T12716] Memory cgroup stats for /syz1:
[  264.516012][T12716] cache 0
[  264.565737][T14426] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14426 comm=syz.4.3260
[  264.566415][T12716] rss 0
[  264.612264][T14426] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14426 comm=syz.4.3260
[  264.616369][T12716] shmem 0
[  264.616379][T12716] mapped_file 0
[  264.616386][T12716] dirty 0
[  264.616392][T12716] writeback 0
[  264.616399][T12716] workingset_refault_anon 318
[  264.616407][T12716] workingset_refault_file 2528
[  264.616415][T12716] swap 188416
[  264.616421][T12716] swapcached 0
[  264.616429][T12716] pgpgin 360608
[  264.710668][T12716] pgpgout 360591
[  264.714211][T12716] pgfault 404820
[  264.717793][T12716] pgmajfault 197
[  264.721359][T12716] inactive_anon 0
[  264.724983][T12716] active_anon 0
[  264.728455][T12716] inactive_file 0
[  264.732086][T12716] active_file 69632
[  264.735931][T12716] unevictable 0
[  264.739401][T12716] hierarchical_memory_limit 314572800
[  264.744772][T12716] hierarchical_memsw_limit 9223372036854771712
[  264.751042][T12716] total_cache 0
[  264.754547][T12716] total_rss 0
[  264.757872][T12716] total_shmem 0
[  264.761345][T12716] total_mapped_file 0
[  264.765386][T12716] total_dirty 0
[  264.768882][T12716] total_writeback 0
[  264.772695][T12716] total_workingset_refault_anon 318
[  264.777912][T12716] total_workingset_refault_file 2528
[  264.783204][T12716] total_swap 188416
[  264.787056][T12716] total_swapcached 0
[  264.790947][T12716] total_pgpgin 360608
[  264.794957][T12716] total_pgpgout 360591
[  264.799043][T12716] total_pgfault 404820
[  264.803103][T12716] total_pgmajfault 197
[  264.807230][T12716] total_inactive_anon 0
[  264.811402][T12716] total_active_anon 0
[  264.815393][T12716] total_inactive_file 0
[  264.819561][T12716] total_active_file 69632
[  264.823884][T12716] total_unevictable 0
[  264.827893][T12716] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3259,pid=14399,uid=0
[  264.842729][T12716] Memory cgroup out of memory: Killed process 14399 (syz.1.3259) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  264.952873][T14431] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  264.959423][T14431] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  264.967636][T14431] vhci_hcd vhci_hcd.0: Device attached
[  264.976254][T14431] vhci_hcd vhci_hcd.0: port 0 already used
[  265.079141][T14437] loop1: detected capacity change from 0 to 512
[  265.116350][T14437] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.135399][T14432] vhci_hcd: connection closed
[  265.135648][ T1460] vhci_hcd: stop threads
[  265.144743][ T1460] vhci_hcd: release socket
[  265.149232][ T1460] vhci_hcd: disconnect device
[  265.158773][T14437] ext4 filesystem being mounted at /85/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.179742][T14437] netlink: 'syz.1.3262': attribute type 4 has an invalid length.
[  265.234443][T14444] netlink: 'syz.1.3262': attribute type 4 has an invalid length.
[  265.257949][T14446] loop0: detected capacity change from 0 to 1024
[  265.266874][T14446] EXT4-fs: inline encryption not supported
[  265.283371][T14446] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.300559][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.310658][T14446] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.3264: Allocating blocks 497-513 which overlap fs metadata
[  265.335656][T14446] EXT4-fs (loop0): pa ffff888106ddcaf0: logic 16, phys. 145, len 23
[  265.343716][T14446] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  265.362406][T14455] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3268'.
[  265.383253][T14446] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  265.395803][T14446] EXT4-fs (loop0): This should not happen!! Data will be lost
[  265.395803][T14446] 
[  265.405457][T14446] EXT4-fs (loop0): Total free blocks count 0
[  265.411498][T14446] EXT4-fs (loop0): Free/Dirty block details
[  265.417490][T14446] EXT4-fs (loop0): free_blocks=16
[  265.421292][T14458] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  265.422534][T14446] EXT4-fs (loop0): dirty_blocks=0
[  265.422552][T14446] EXT4-fs (loop0): Block reservation details
[  265.443233][T14446] EXT4-fs (loop0): i_reserved_data_blocks=0
[  265.790008][T14472] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14472 comm=syz.2.3274
[  265.825390][T14472] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14472 comm=syz.2.3274
[  266.073996][T14464] syz.5.3272 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  266.088369][T14464] CPU: 0 UID: 0 PID: 14464 Comm: syz.5.3272 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  266.088396][T14464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  266.088408][T14464] Call Trace:
[  266.088415][T14464]  <TASK>
[  266.088422][T14464]  __dump_stack+0x1d/0x30
[  266.088456][T14464]  dump_stack_lvl+0xe8/0x140
[  266.088545][T14464]  dump_stack+0x15/0x1b
[  266.088574][T14464]  dump_header+0x81/0x220
[  266.088602][T14464]  oom_kill_process+0x342/0x400
[  266.088648][T14464]  out_of_memory+0x979/0xb80
[  266.088680][T14464]  try_charge_memcg+0x610/0xa10
[  266.088822][T14464]  obj_cgroup_charge_pages+0xa6/0x150
[  266.088842][T14464]  __memcg_kmem_charge_page+0x9f/0x170
[  266.088864][T14464]  __alloc_frozen_pages_noprof+0x188/0x360
[  266.088937][T14464]  alloc_pages_mpol+0xb3/0x260
[  266.088957][T14464]  ? alloc_pages_noprof+0x61/0x130
[  266.088979][T14464]  alloc_pages_noprof+0x90/0x130
[  266.089015][T14464]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  266.089058][T14464]  ? is_bpf_text_address+0x141/0x160
[  266.089080][T14464]  __kvmalloc_node_noprof+0x483/0x670
[  266.089189][T14464]  ? ip_set_alloc+0x24/0x30
[  266.089247][T14464]  ? ip_set_alloc+0x24/0x30
[  266.089276][T14464]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  266.089366][T14464]  ip_set_alloc+0x24/0x30
[  266.089395][T14464]  hash_netiface_create+0x282/0x740
[  266.089469][T14464]  ? __pfx_hash_netiface_create+0x10/0x10
[  266.089502][T14464]  ip_set_create+0x3cc/0x970
[  266.089531][T14464]  ? __nla_parse+0x40/0x60
[  266.089612][T14464]  nfnetlink_rcv_msg+0x4c6/0x590
[  266.089671][T14464]  netlink_rcv_skb+0x123/0x220
[  266.089721][T14464]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  266.089792][T14464]  nfnetlink_rcv+0x167/0x16c0
[  266.089819][T14464]  ? insn_get_opcode+0x7dd/0x890
[  266.089836][T14464]  ? __rcu_read_unlock+0x34/0x70
[  266.089911][T14464]  ? bpf_prog_0269d7a1bf76b886+0x1d/0x2f
[  266.089926][T14464]  ? bpf_prog_0269d7a1bf76b886+0x2f/0x2f
[  266.090024][T14464]  ? insn_get_modrm+0x367/0x390
[  266.090041][T14464]  ? unwind_next_frame+0xada/0xc80
[  266.090070][T14464]  ? __rcu_read_unlock+0x34/0x70
[  266.090151][T14464]  ? bpf_prog_0269d7a1bf76b886+0x1d/0x2f
[  266.090179][T14464]  ? bpf_prog_0269d7a1bf76b886+0x2f/0x2f
[  266.090195][T14464]  ? is_bpf_text_address+0x141/0x160
[  266.090213][T14464]  ? __rcu_read_unlock+0x34/0x70
[  266.090238][T14464]  ? unwind_next_frame+0xada/0xc80
[  266.090265][T14464]  ? kfree+0x351/0x400
[  266.090299][T14464]  ? security_compute_sid+0x11da/0x1290
[  266.090328][T14464]  ? __kernel_text_address+0xd/0x40
[  266.090427][T14464]  ? unwind_get_return_address+0x16/0x40
[  266.090457][T14464]  ? __pcpu_freelist_pop+0x3da/0x4c0
[  266.090481][T14464]  ? pcpu_freelist_pop+0x75/0xa0
[  266.090501][T14464]  ? should_fail_ex+0x30/0x280
[  266.090573][T14464]  ? selinux_nlmsg_lookup+0x99/0x890
[  266.090598][T14464]  ? __rcu_read_unlock+0x34/0x70
[  266.090661][T14464]  ? __netlink_lookup+0x266/0x2a0
[  266.090692][T14464]  netlink_unicast+0x5c0/0x690
[  266.090787][T14464]  netlink_sendmsg+0x58b/0x6b0
[  266.090828][T14464]  ? __pfx_netlink_sendmsg+0x10/0x10
[  266.090847][T14464]  __sock_sendmsg+0x145/0x180
[  266.090873][T14464]  ____sys_sendmsg+0x31e/0x4e0
[  266.090986][T14464]  ___sys_sendmsg+0x17b/0x1d0
[  266.091019][T14464]  __x64_sys_sendmsg+0xd4/0x160
[  266.091042][T14464]  x64_sys_call+0x191e/0x3000
[  266.091064][T14464]  do_syscall_64+0xd2/0x200
[  266.091159][T14464]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  266.091187][T14464]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  266.091229][T14464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.091250][T14464] RIP: 0033:0x7fe04f36f6c9
[  266.091264][T14464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.091282][T14464] RSP: 002b:00007fe04ddd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.091301][T14464] RAX: ffffffffffffffda RBX: 00007fe04f5c5fa0 RCX: 00007fe04f36f6c9
[  266.091313][T14464] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  266.091349][T14464] RBP: 00007fe04f3f1f91 R08: 0000000000000000 R09: 0000000000000000
[  266.091360][T14464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  266.091371][T14464] R13: 00007fe04f5c6038 R14: 00007fe04f5c5fa0 R15: 00007ffccaa67f88
[  266.091390][T14464]  </TASK>
[  266.091396][T14464] memory: usage 307200kB, limit 307200kB, failcnt 1120
[  266.514846][T14464] memory+swap: usage 307356kB, limit 9007199254740988kB, failcnt 0
[  266.522940][T14464] kmem: usage 307136kB, limit 9007199254740988kB, failcnt 0
[  266.530262][T14464] Memory cgroup stats for /syz5:
[  266.530477][T14464] cache 0
[  266.538388][T14464] rss 4096
[  266.541412][T14464] shmem 0
[  266.544346][T14464] mapped_file 0
[  266.547831][T14464] dirty 0
[  266.550796][T14464] writeback 0
[  266.554085][T14464] workingset_refault_anon 157
[  266.558793][T14464] workingset_refault_file 0
[  266.563317][T14464] swap 159744
[  266.566619][T14464] swapcached 32768
[  266.570332][T14464] pgpgin 214152
[  266.573795][T14464] pgpgout 214136
[  266.577373][T14464] pgfault 280333
[  266.580935][T14464] pgmajfault 78
[  266.584385][T14464] inactive_anon 16384
[  266.588456][T14464] active_anon 16384
[  266.592278][T14464] inactive_file 0
[  266.595925][T14464] active_file 32768
[  266.599727][T14464] unevictable 0
[  266.603179][T14464] hierarchical_memory_limit 314572800
[  266.608560][T14464] hierarchical_memsw_limit 9223372036854771712
[  266.614754][T14464] total_cache 0
[  266.618239][T14464] total_rss 4096
[  266.621877][T14464] total_shmem 0
[  266.625330][T14464] total_mapped_file 0
[  266.629384][T14464] total_dirty 0
[  266.632871][T14464] total_writeback 0
[  266.636708][T14464] total_workingset_refault_anon 157
[  266.641916][T14464] total_workingset_refault_file 0
[  266.646963][T14464] total_swap 159744
[  266.650769][T14464] total_swapcached 32768
[  266.655009][T14464] total_pgpgin 214152
[  266.659045][T14464] total_pgpgout 214136
[  266.663116][T14464] total_pgfault 280333
[  266.667264][T14464] total_pgmajfault 78
[  266.671272][T14464] total_inactive_anon 16384
[  266.675798][T14464] total_active_anon 16384
[  266.680132][T14464] total_inactive_file 0
[  266.684292][T14464] total_active_file 32768
[  266.688642][T14464] total_unevictable 0
[  266.693037][T14464] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3272,pid=14463,uid=0
[  266.707801][T14464] Memory cgroup out of memory: Killed process 14463 (syz.5.3272) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  266.783481][T14486] loop4: detected capacity change from 0 to 128
[  266.790450][T14486] vfat: Unknown parameter 'ÿ'
[  266.823847][T14488] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3280'.
[  266.845711][T14490] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14490 comm=syz.1.3281
[  266.892128][T14490] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14490 comm=syz.1.3281
[  266.921829][T14496] loop5: detected capacity change from 0 to 512
[  266.947035][T14496] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.959866][T14496] ext4 filesystem being mounted at /563/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  266.985433][T14499] loop4: detected capacity change from 0 to 512
[  266.992498][T14499] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  267.006120][ T5191] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.018499][T14499] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  267.035064][T14499] EXT4-fs (loop4): 1 truncate cleaned up
[  267.050994][T14499] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.066798][T14507] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  267.069016][T14505] vhci_hcd vhci_hcd.0: port 0 already used
[  267.085293][T14505] vhci_hcd vhci_hcd.0: port 0 already used
[  267.388121][T14518] loop5: detected capacity change from 0 to 1024
[  267.394835][T14518] EXT4-fs: inline encryption not supported
[  267.407416][T14518] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.422451][T14518] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3288: Allocating blocks 497-513 which overlap fs metadata
[  267.441745][T14518] EXT4-fs (loop5): pa ffff888106df4d90: logic 16, phys. 145, len 23
[  267.450006][T14518] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  267.460565][T14518] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  267.472864][T14518] EXT4-fs (loop5): This should not happen!! Data will be lost
[  267.472864][T14518] 
[  267.482533][T14518] EXT4-fs (loop5): Total free blocks count 0
[  267.488607][T14518] EXT4-fs (loop5): Free/Dirty block details
[  267.494509][T14518] EXT4-fs (loop5): free_blocks=16
[  267.499593][T14518] EXT4-fs (loop5): dirty_blocks=0
[  267.504695][T14518] EXT4-fs (loop5): Block reservation details
[  267.510708][T14518] EXT4-fs (loop5): i_reserved_data_blocks=0
[  267.616188][   T29] kauditd_printk_skb: 2073 callbacks suppressed
[  267.616203][   T29] audit: type=1326 audit(1762828307.762:135631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.646355][   T29] audit: type=1326 audit(1762828307.762:135632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.670044][   T29] audit: type=1326 audit(1762828307.762:135633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.693971][   T29] audit: type=1326 audit(1762828307.762:135634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.718507][   T29] audit: type=1326 audit(1762828307.762:135635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.742417][   T29] audit: type=1326 audit(1762828307.762:135636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.766176][   T29] audit: type=1326 audit(1762828307.762:135637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.790039][   T29] audit: type=1326 audit(1762828307.762:135638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.813730][   T29] audit: type=1326 audit(1762828307.772:135639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.837648][   T29] audit: type=1326 audit(1762828307.772:135640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14489 comm="syz.1.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff1c6471f85 code=0x7ffc0000
[  267.889190][T14525] loop1: detected capacity change from 0 to 128
[  267.897501][T14525] vfat: Unknown parameter 'ÿ'
[  268.245614][ T3401] usb 12-1: device descriptor read/8, error -110
[  268.356096][ T3401] usb 12-1: new SuperSpeed USB device number 22 using vhci_hcd
[  268.375598][ T3401] usb 12-1: enqueue for inactive port 0
[  268.381222][ T3401] usb 12-1: enqueue for inactive port 0
[  268.407235][ T3401] usb 12-1: enqueue for inactive port 0
[  268.426842][T14591] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14591 comm=syz.5.3297
[  268.484833][T14591] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14591 comm=syz.5.3297
[  268.594818][T14533] syz.1.3293 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  268.605980][T14533] CPU: 0 UID: 0 PID: 14533 Comm: syz.1.3293 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  268.606073][T14533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  268.606090][T14533] Call Trace:
[  268.606100][T14533]  <TASK>
[  268.606110][T14533]  __dump_stack+0x1d/0x30
[  268.606257][T14533]  dump_stack_lvl+0xe8/0x140
[  268.606286][T14533]  dump_stack+0x15/0x1b
[  268.606311][T14533]  dump_header+0x81/0x220
[  268.606367][T14533]  oom_kill_process+0x342/0x400
[  268.606441][T14533]  out_of_memory+0x979/0xb80
[  268.606487][T14533]  try_charge_memcg+0x610/0xa10
[  268.606535][T14533]  charge_memcg+0x51/0xc0
[  268.606567][T14533]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  268.606648][T14533]  __read_swap_cache_async+0x17b/0x2d0
[  268.606682][T14533]  swap_cluster_readahead+0x262/0x3c0
[  268.606721][T14533]  swapin_readahead+0xde/0x6f0
[  268.606773][T14533]  ? mod_memcg_lruvec_state+0x1fc/0x2c0
[  268.606826][T14533]  ? __lruvec_stat_mod_folio+0xd6/0x120
[  268.606869][T14533]  ? __rcu_read_unlock+0x4f/0x70
[  268.606910][T14533]  ? swap_cache_get_folio+0x277/0x280
[  268.606939][T14533]  do_swap_page+0x2ae/0x2370
[  268.606974][T14533]  ? css_rstat_updated+0xb7/0x240
[  268.607002][T14533]  ? __pfx_default_wake_function+0x10/0x10
[  268.607043][T14533]  handle_mm_fault+0x9a5/0x2be0
[  268.607144][T14533]  ? vma_start_read+0x141/0x1f0
[  268.607193][T14533]  do_user_addr_fault+0x630/0x1080
[  268.607304][T14533]  ? fpregs_restore_userregs+0xad/0x1d0
[  268.607345][T14533]  ? switch_fpu_return+0xe/0x20
[  268.607408][T14533]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  268.607455][T14533]  exc_page_fault+0x62/0xa0
[  268.607527][T14533]  asm_exc_page_fault+0x26/0x30
[  268.607547][T14533] RIP: 0033:0x7ff1c631593c
[  268.607563][T14533] Code: 66 0f 1f 44 00 00 69 3d 76 fd ea 00 e8 03 00 00 48 8d 1d 77 06 38 00 e8 f2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  268.607582][T14533] RSP: 002b:00007ffcd8dc04e0 EFLAGS: 00010206
[  268.607673][T14533] RAX: 0000000000000000 RBX: 00007ff1c6695fa0 RCX: 0000000000000000
[  268.607691][T14533] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556fb42808
[  268.607707][T14533] RBP: 00007ff1c6697da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  268.607721][T14533] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000041aad
[  268.607734][T14533] R13: 00007ffcd8dc05d0 R14: ffffffffffffffff R15: 00007ffcd8dc05f0
[  268.607755][T14533]  </TASK>
[  268.607761][T14533] memory: usage 307200kB, limit 307200kB, failcnt 2316
[  268.852604][T14533] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[  268.860567][T14533] kmem: usage 307124kB, limit 9007199254740988kB, failcnt 0
[  268.867909][T14533] Memory cgroup stats for /syz1:
[  268.887998][T14533] cache 0
[  268.896149][T14533] rss 0
[  268.898930][T14533] shmem 0
[  268.901880][T14533] mapped_file 0
[  268.905351][T14533] dirty 0
[  268.908401][T14533] writeback 8192
[  268.911975][T14533] workingset_refault_anon 345
[  268.916689][T14533] workingset_refault_file 2951
[  268.921626][T14533] swap 180224
[  268.924929][T14533] swapcached 8192
[  268.928612][T14533] pgpgin 361424
[  268.932110][T14533] pgpgout 361405
[  268.935747][T14533] pgfault 405650
[  268.939305][T14533] pgmajfault 207
[  268.943111][T14533] inactive_anon 8192
[  268.947082][T14533] active_anon 0
[  268.950560][T14533] inactive_file 69632
[  268.953518][T14648] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14648 comm=syz.0.3302
[  268.954627][T14533] active_file 0
[  268.954639][T14533] unevictable 0
[  268.974325][T14533] hierarchical_memory_limit 314572800
[  268.979800][T14533] hierarchical_memsw_limit 9223372036854771712
[  268.986006][T14533] total_cache 0
[  268.989520][T14533] total_rss 0
[  268.992913][T14533] total_shmem 0
[  268.996519][T14533] total_mapped_file 0
[  269.000522][T14533] total_dirty 0
[  269.004014][T14533] total_writeback 8192
[  269.004410][T14648] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14648 comm=syz.0.3302
[  269.008205][T14533] total_workingset_refault_anon 345
[  269.008220][T14533] total_workingset_refault_file 2951
[  269.031456][T14533] total_swap 180224
[  269.035332][T14533] total_swapcached 8192
[  269.039551][T14533] total_pgpgin 361424
[  269.043634][T14533] total_pgpgout 361405
[  269.047757][T14533] total_pgfault 405650
[  269.051835][T14533] total_pgmajfault 207
[  269.055983][T14533] total_inactive_anon 8192
[  269.060620][T14533] total_active_anon 0
[  269.064618][T14533] total_inactive_file 69632
[  269.069304][T14533] total_active_file 0
[  269.073303][T14533] total_unevictable 0
[  269.077423][T14533] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3293,pid=14533,uid=0
[  269.089059][T14653] loop5: detected capacity change from 0 to 512
[  269.092225][T14533] Memory cgroup out of memory: Killed process 14533 (syz.1.3293) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  269.121415][T14653] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  269.241049][T14653] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  269.258683][T14653] EXT4-fs (loop5): 1 truncate cleaned up
[  269.321007][T14660] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  269.327836][T14660] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  269.336208][T14660] vhci_hcd vhci_hcd.0: Device attached
[  269.343217][T14660] vhci_hcd vhci_hcd.0: port 0 already used
[  269.461908][T14666] loop4: detected capacity change from 0 to 128
[  269.470672][T14666] vfat: Unknown parameter 'ÿ'
[  269.479097][T14661] vhci_hcd: connection closed
[  269.479461][ T1460] vhci_hcd: stop threads
[  269.490136][ T1460] vhci_hcd: release socket
[  269.495582][ T1460] vhci_hcd: disconnect device
[  269.567737][T14671] loop4: detected capacity change from 0 to 1024
[  269.574507][T14671] EXT4-fs: Ignoring removed orlov option
[  269.691038][T14674] netlink: 172 bytes leftover after parsing attributes in process `syz.4.3306'.
[  269.755805][ T3401] usb usb12-port1: attempt power cycle
[  269.849030][T14682] loop4: detected capacity change from 0 to 1024
[  269.855867][T14682] EXT4-fs: inline encryption not supported
[  269.869385][T14682] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.3310: Allocating blocks 497-513 which overlap fs metadata
[  269.889423][T14682] EXT4-fs (loop4): pa ffff888106ddca10: logic 16, phys. 145, len 23
[  269.897563][T14682] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  269.908504][T14682] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  269.920740][T14682] EXT4-fs (loop4): This should not happen!! Data will be lost
[  269.920740][T14682] 
[  269.930461][T14682] EXT4-fs (loop4): Total free blocks count 0
[  269.936498][T14682] EXT4-fs (loop4): Free/Dirty block details
[  269.942421][T14682] EXT4-fs (loop4): free_blocks=16
[  269.947488][T14682] EXT4-fs (loop4): dirty_blocks=0
[  269.952511][T14682] EXT4-fs (loop4): Block reservation details
[  269.958515][T14682] EXT4-fs (loop4): i_reserved_data_blocks=0
[  270.322140][T14698] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14698 comm=syz.1.3316
[  270.349343][T14698] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14698 comm=syz.1.3316
[  270.540272][T14708] loop0: detected capacity change from 0 to 1024
[  270.547333][T14708] EXT4-fs: inline encryption not supported
[  270.562531][T14708] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.3319: Allocating blocks 385-513 which overlap fs metadata
[  270.578304][T14708] EXT4-fs (loop0): pa ffff888106df4e00: logic 16, phys. 129, len 24
[  270.586674][T14708] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  270.599051][T14708] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 15: block 337:freeing already freed block (bit 21); block bitmap corrupt.
[  270.646029][T14714] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3321'.
[  270.662587][T14712] atomic_op ffff888104026d28 conn xmit_atomic 0000000000000000
[  270.737906][T14721] loop2: detected capacity change from 0 to 2048
[  270.781760][T14723] sd 0:0:1:0: device reset
[  270.951777][T14741] loop5: detected capacity change from 0 to 1024
[  270.959507][T14741] EXT4-fs: inline encryption not supported
[  271.036691][T14747] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3334'.
[  271.139388][T14753] loop5: detected capacity change from 0 to 512
[  271.177629][T14753] ext4 filesystem being mounted at /580/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  271.194600][T14753] netlink: 'syz.5.3337': attribute type 4 has an invalid length.
[  271.233020][T14753] netlink: 'syz.5.3337': attribute type 4 has an invalid length.
[  271.462045][T14765] loop5: detected capacity change from 0 to 1024
[  271.468733][T14765] EXT4-fs: Ignoring removed orlov option
[  271.587349][ T3401] usb usb12-port1: unable to enumerate USB device
[  271.604512][T14736] syz.4.3331 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  271.608092][T14771] netlink: 172 bytes leftover after parsing attributes in process `syz.5.3341'.
[  271.615564][T14736] CPU: 1 UID: 0 PID: 14736 Comm: syz.4.3331 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  271.615601][T14736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  271.615618][T14736] Call Trace:
[  271.615626][T14736]  <TASK>
[  271.615636][T14736]  __dump_stack+0x1d/0x30
[  271.615670][T14736]  dump_stack_lvl+0xe8/0x140
[  271.615703][T14736]  dump_stack+0x15/0x1b
[  271.615770][T14736]  dump_header+0x81/0x220
[  271.615798][T14736]  oom_kill_process+0x342/0x400
[  271.615883][T14736]  out_of_memory+0x979/0xb80
[  271.615932][T14736]  try_charge_memcg+0x610/0xa10
[  271.615981][T14736]  charge_memcg+0x51/0xc0
[  271.616021][T14736]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  271.616127][T14736]  __read_swap_cache_async+0x17b/0x2d0
[  271.616164][T14736]  swap_cluster_readahead+0x262/0x3c0
[  271.616203][T14736]  swapin_readahead+0xde/0x6f0
[  271.616317][T14736]  ? mod_memcg_lruvec_state+0x1fc/0x2c0
[  271.616394][T14736]  ? __rcu_read_unlock+0x34/0x70
[  271.616513][T14736]  ? __rcu_read_unlock+0x4f/0x70
[  271.616550][T14736]  ? swap_cache_get_folio+0x277/0x280
[  271.616581][T14736]  do_swap_page+0x2ae/0x2370
[  271.616618][T14736]  ? css_rstat_updated+0xb7/0x240
[  271.616676][T14736]  ? __pfx_default_wake_function+0x10/0x10
[  271.616719][T14736]  handle_mm_fault+0x9a5/0x2be0
[  271.616757][T14736]  ? vma_start_read+0x141/0x1f0
[  271.616944][T14736]  do_user_addr_fault+0x630/0x1080
[  271.616982][T14736]  exc_page_fault+0x62/0xa0
[  271.617097][T14736]  asm_exc_page_fault+0x26/0x30
[  271.617194][T14736] RIP: 0033:0x7feeb3a0593c
[  271.617216][T14736] Code: 66 0f 1f 44 00 00 69 3d 76 fd ea 00 e8 03 00 00 48 8d 1d 77 06 38 00 e8 f2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  271.617256][T14736] RSP: 002b:00007ffc6856f400 EFLAGS: 00010287
[  271.617278][T14736] RAX: 0000000000000000 RBX: 00007feeb3d86090 RCX: 0000000000000000
[  271.617297][T14736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556ecac808
[  271.617315][T14736] RBP: 00007feeb3d87da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  271.617363][T14736] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000042666
[  271.617382][T14736] R13: 00007ffc6856f4f0 R14: ffffffffffffffff R15: 00007ffc6856f510
[  271.617453][T14736]  </TASK>
[  271.617462][T14736] memory: usage 307200kB, limit 307200kB, failcnt 201
[  271.849317][T14736] memory+swap: usage 307372kB, limit 9007199254740988kB, failcnt 0
[  271.857276][T14736] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[  271.864553][T14736] Memory cgroup stats for /syz4:
[  271.865212][T14736] cache 0
[  271.873265][T14736] rss 0
[  271.876082][T14736] shmem 0
[  271.879035][T14736] mapped_file 0
[  271.882496][T14736] dirty 0
[  271.885439][T14736] writeback 8192
[  271.889071][T14736] workingset_refault_anon 79
[  271.893680][T14736] workingset_refault_file 1973
[  271.898560][T14736] swap 176128
[  271.901956][T14736] swapcached 12288
[  271.905707][T14736] pgpgin 288141
[  271.909169][T14736] pgpgout 288123
[  271.912720][T14736] pgfault 322642
[  271.916291][T14736] pgmajfault 70
[  271.919751][T14736] inactive_anon 12288
[  271.923725][T14736] active_anon 0
[  271.927203][T14736] inactive_file 61440
[  271.931178][T14736] active_file 0
[  271.934629][T14736] unevictable 0
[  271.938140][T14736] hierarchical_memory_limit 314572800
[  271.943527][T14736] hierarchical_memsw_limit 9223372036854771712
[  271.949952][T14736] total_cache 0
[  271.953406][T14736] total_rss 0
[  271.956773][T14736] total_shmem 0
[  271.960298][T14736] total_mapped_file 0
[  271.964276][T14736] total_dirty 0
[  271.967815][T14736] total_writeback 8192
[  271.971876][T14736] total_workingset_refault_anon 79
[  271.977028][T14736] total_workingset_refault_file 1973
[  271.982320][T14736] total_swap 176128
[  271.986145][T14736] total_swapcached 12288
[  271.990440][T14736] total_pgpgin 288141
[  271.994496][T14736] total_pgpgout 288123
[  271.998578][T14736] total_pgfault 322642
[  272.002702][T14736] total_pgmajfault 70
[  272.006795][T14736] total_inactive_anon 12288
[  272.011371][T14736] total_active_anon 0
[  272.015343][T14736] total_inactive_file 61440
[  272.020312][T14736] total_active_file 0
[  272.024328][T14736] total_unevictable 0
[  272.028337][T14736] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3331,pid=14736,uid=0
[  272.043196][T14736] Memory cgroup out of memory: Killed process 14736 (syz.4.3331) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  272.119961][T14776] sd 0:0:1:0: device reset
[  272.156673][T14779] loop5: detected capacity change from 0 to 512
[  272.203814][T14781] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14781 comm=syz.1.3346
[  272.227954][T14783] sd 0:0:1:0: device reset
[  272.274759][T14781] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14781 comm=syz.1.3346
[  272.328657][T14791] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14791 comm=syz.1.3349
[  272.348781][T14789] loop4: detected capacity change from 0 to 512
[  272.395690][T14791] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14791 comm=syz.1.3349
[  272.817746][   T29] kauditd_printk_skb: 1077 callbacks suppressed
[  272.817765][   T29] audit: type=1326 audit(1762829851.955:136718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.848125][T14842] loop0: detected capacity change from 0 to 512
[  272.850278][   T29] audit: type=1326 audit(1762829851.965:136719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.878485][   T29] audit: type=1326 audit(1762829851.965:136720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.891712][T14842] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  272.902248][   T29] audit: type=1326 audit(1762829851.965:136721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.936020][   T29] audit: type=1326 audit(1762829851.965:136722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.959813][   T29] audit: type=1326 audit(1762829851.965:136723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  272.983455][   T29] audit: type=1326 audit(1762829851.965:136724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  273.007326][   T29] audit: type=1326 audit(1762829851.965:136725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  273.031022][   T29] audit: type=1326 audit(1762829851.965:136726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  273.054787][   T29] audit: type=1326 audit(1762829851.965:136727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14837 comm="syz.0.3359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  273.082457][T14842] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  273.097827][T14842] EXT4-fs (loop0): 1 truncate cleaned up
[  273.411153][T12716] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  273.422346][T12716] CPU: 1 UID: 0 PID: 12716 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  273.422384][T12716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  273.422403][T12716] Call Trace:
[  273.422411][T12716]  <TASK>
[  273.422421][T12716]  __dump_stack+0x1d/0x30
[  273.422451][T12716]  dump_stack_lvl+0xe8/0x140
[  273.422481][T12716]  dump_stack+0x15/0x1b
[  273.422577][T12716]  dump_header+0x81/0x220
[  273.422603][T12716]  oom_kill_process+0x342/0x400
[  273.422660][T12716]  out_of_memory+0x979/0xb80
[  273.422753][T12716]  try_charge_memcg+0x610/0xa10
[  273.422839][T12716]  charge_memcg+0x51/0xc0
[  273.422870][T12716]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  273.422909][T12716]  __read_swap_cache_async+0x17b/0x2d0
[  273.423018][T12716]  swap_cluster_readahead+0x262/0x3c0
[  273.423056][T12716]  swapin_readahead+0xde/0x6f0
[  273.423090][T12716]  ? __rcu_read_unlock+0x4f/0x70
[  273.423146][T12716]  ? __rcu_read_unlock+0x4f/0x70
[  273.423254][T12716]  ? swap_cache_get_folio+0x277/0x280
[  273.423278][T12716]  do_swap_page+0x2ae/0x2370
[  273.423306][T12716]  ? _raw_spin_unlock+0x26/0x50
[  273.423356][T12716]  ? finish_task_switch+0xad/0x2b0
[  273.423384][T12716]  ? __pfx_default_wake_function+0x10/0x10
[  273.423418][T12716]  handle_mm_fault+0x9a5/0x2be0
[  273.423456][T12716]  ? vma_start_read+0x141/0x1f0
[  273.423577][T12716]  do_user_addr_fault+0x630/0x1080
[  273.423609][T12716]  ? fpregs_restore_userregs+0xe2/0x1d0
[  273.423703][T12716]  ? switch_fpu_return+0xe/0x20
[  273.423737][T12716]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  273.423783][T12716]  exc_page_fault+0x62/0xa0
[  273.423867][T12716]  asm_exc_page_fault+0x26/0x30
[  273.423888][T12716] RIP: 0033:0x7ff1c6471f45
[  273.423903][T12716] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 1e 66 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  273.423922][T12716] RSP: 002b:00007ffcd8dc06b8 EFLAGS: 00010246
[  273.423941][T12716] RAX: 0000000000000000 RBX: 00000000000000fb RCX: 00007ff1c6471f43
[  273.423959][T12716] RDX: 00007ffcd8dc06d0 RSI: 0000000000000000 RDI: 0000000000000000
[  273.423976][T12716] RBP: 00007ffcd8dc073c R08: 000000001def2e56 R09: 0000000000000000
[  273.424072][T12716] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  273.424085][T12716] R13: 00000000000927c0 R14: 0000000000042984 R15: 00007ffcd8dc0790
[  273.424177][T12716]  </TASK>
[  273.424231][T12716] memory: usage 307200kB, limit 307200kB, failcnt 2604
[  273.666242][T12716] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[  273.674156][T12716] kmem: usage 307124kB, limit 9007199254740988kB, failcnt 0
[  273.681488][T12716] Memory cgroup stats for /syz1:
[  273.682111][T12716] cache 0
[  273.690062][T12716] rss 0
[  273.692839][T12716] shmem 0
[  273.695932][T12716] mapped_file 0
[  273.699402][T12716] dirty 0
[  273.702359][T12716] writeback 0
[  273.705685][T12716] workingset_refault_anon 381
[  273.710384][T12716] workingset_refault_file 3105
[  273.715172][T12716] swap 180224
[  273.718527][T12716] swapcached 8192
[  273.722251][T12716] pgpgin 369166
[  273.725757][T12716] pgpgout 369147
[  273.729351][T12716] pgfault 418115
[  273.732982][T12716] pgmajfault 219
[  273.736562][T12716] inactive_anon 0
[  273.740272][T12716] active_anon 8192
[  273.744005][T12716] inactive_file 0
[  273.747678][T12716] active_file 69632
[  273.751529][T12716] unevictable 0
[  273.755042][T12716] hierarchical_memory_limit 314572800
[  273.760459][T12716] hierarchical_memsw_limit 9223372036854771712
[  273.766694][T12716] total_cache 0
[  273.770179][T12716] total_rss 0
[  273.773470][T12716] total_shmem 0
[  273.776976][T12716] total_mapped_file 0
[  273.780974][T12716] total_dirty 0
[  273.784477][T12716] total_writeback 0
[  273.788397][T12716] total_workingset_refault_anon 381
[  273.793691][T12716] total_workingset_refault_file 3105
[  273.799028][T12716] total_swap 180224
[  273.802851][T12716] total_swapcached 8192
[  273.807044][T12716] total_pgpgin 369166
[  273.811070][T12716] total_pgpgout 369147
[  273.815151][T12716] total_pgfault 418115
[  273.819399][T12716] total_pgmajfault 219
[  273.823517][T12716] total_inactive_anon 0
[  273.827752][T12716] total_active_anon 8192
[  273.832011][T12716] total_inactive_file 0
[  273.836220][T12716] total_active_file 69632
[  273.840568][T12716] total_unevictable 0
[  273.844594][T12716] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3358,pid=14816,uid=0
[  273.859338][T12716] Memory cgroup out of memory: Killed process 14816 (syz.1.3358) total-vm:93824kB, anon-rss:1132kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  274.081251][T14957] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14957 comm=syz.1.3364
[  274.124170][T14957] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14957 comm=syz.1.3364
[  274.140869][T14960] sd 0:0:1:0: device reset
[  274.192990][T14969] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  274.309791][T14973] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14973 comm=syz.0.3369
[  274.340694][T14973] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14973 comm=syz.0.3369
[  274.483497][T14978] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=14978 comm=syz.1.3370
[  274.511186][T14978] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=14978 comm=syz.1.3370
[  274.617269][T14988] loop1: detected capacity change from 0 to 512
[  274.624639][T14988] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  274.637588][T14988] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  274.652429][T14988] EXT4-fs (loop1): 1 truncate cleaned up
[  274.717652][T14996] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  274.775173][T14998] loop4: detected capacity change from 0 to 512
[  275.008660][T15005] loop2: detected capacity change from 0 to 1024
[  275.015292][T15005] EXT4-fs: inline encryption not supported
[  275.375214][T15035] loop2: detected capacity change from 0 to 512
[  275.390143][T15035] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  275.401722][T15035] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  275.416980][T15035] EXT4-fs (loop2): 1 truncate cleaned up
[  275.506220][T14992] syz.5.3375 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  275.520719][T14992] CPU: 1 UID: 0 PID: 14992 Comm: syz.5.3375 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  275.520802][T14992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  275.520820][T14992] Call Trace:
[  275.520826][T14992]  <TASK>
[  275.520834][T14992]  __dump_stack+0x1d/0x30
[  275.520855][T14992]  dump_stack_lvl+0xe8/0x140
[  275.520885][T14992]  dump_stack+0x15/0x1b
[  275.520902][T14992]  dump_header+0x81/0x220
[  275.520973][T14992]  oom_kill_process+0x342/0x400
[  275.521004][T14992]  out_of_memory+0x979/0xb80
[  275.521035][T14992]  try_charge_memcg+0x610/0xa10
[  275.521080][T14992]  obj_cgroup_charge_pages+0xa6/0x150
[  275.521100][T14992]  __memcg_kmem_charge_page+0x9f/0x170
[  275.521121][T14992]  __alloc_frozen_pages_noprof+0x188/0x360
[  275.521143][T14992]  alloc_pages_mpol+0xb3/0x260
[  275.521231][T14992]  ? alloc_pages_noprof+0x61/0x130
[  275.521263][T14992]  alloc_pages_noprof+0x90/0x130
[  275.521292][T14992]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  275.521348][T14992]  ? is_bpf_text_address+0x141/0x160
[  275.521369][T14992]  __kvmalloc_node_noprof+0x483/0x670
[  275.521473][T14992]  ? ip_set_alloc+0x24/0x30
[  275.521503][T14992]  ? ip_set_alloc+0x24/0x30
[  275.521609][T14992]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  275.521642][T14992]  ip_set_alloc+0x24/0x30
[  275.521670][T14992]  hash_netiface_create+0x282/0x740
[  275.521770][T14992]  ? __pfx_hash_netiface_create+0x10/0x10
[  275.521802][T14992]  ip_set_create+0x3cc/0x970
[  275.521840][T14992]  ? __nla_parse+0x40/0x60
[  275.521862][T14992]  nfnetlink_rcv_msg+0x4c6/0x590
[  275.521916][T14992]  netlink_rcv_skb+0x123/0x220
[  275.521946][T14992]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  275.522059][T14992]  nfnetlink_rcv+0x167/0x16c0
[  275.522085][T14992]  ? insn_get_opcode+0x7dd/0x890
[  275.522103][T14992]  ? __rcu_read_unlock+0x34/0x70
[  275.522127][T14992]  ? bpf_prog_4776ced35d27d683+0x3b/0x51
[  275.522167][T14992]  ? insn_get_modrm+0x367/0x390
[  275.522183][T14992]  ? unwind_next_frame+0xada/0xc80
[  275.522213][T14992]  ? __rcu_read_unlock+0x34/0x70
[  275.522237][T14992]  ? bpf_prog_4776ced35d27d683+0x3b/0x51
[  275.522263][T14992]  ? is_bpf_text_address+0x141/0x160
[  275.522283][T14992]  ? __rcu_read_unlock+0x34/0x70
[  275.522323][T14992]  ? unwind_next_frame+0xada/0xc80
[  275.522355][T14992]  ? kfree+0x351/0x400
[  275.522416][T14992]  ? security_compute_sid+0x11da/0x1290
[  275.522516][T14992]  ? __kernel_text_address+0xd/0x40
[  275.522589][T14992]  ? unwind_get_return_address+0x16/0x40
[  275.522648][T14992]  ? __pcpu_freelist_pop+0x3da/0x4c0
[  275.522685][T14992]  ? pcpu_freelist_pop+0x75/0xa0
[  275.522704][T14992]  ? should_fail_ex+0x30/0x280
[  275.522722][T14992]  ? selinux_nlmsg_lookup+0x99/0x890
[  275.522800][T14992]  ? __rcu_read_unlock+0x34/0x70
[  275.522824][T14992]  ? __netlink_lookup+0x266/0x2a0
[  275.522846][T14992]  netlink_unicast+0x5c0/0x690
[  275.522905][T14992]  netlink_sendmsg+0x58b/0x6b0
[  275.522926][T14992]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.523049][T14992]  __sock_sendmsg+0x145/0x180
[  275.523074][T14992]  ____sys_sendmsg+0x31e/0x4e0
[  275.523109][T14992]  ___sys_sendmsg+0x17b/0x1d0
[  275.523140][T14992]  __x64_sys_sendmsg+0xd4/0x160
[  275.523175][T14992]  x64_sys_call+0x191e/0x3000
[  275.523197][T14992]  do_syscall_64+0xd2/0x200
[  275.523216][T14992]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  275.523294][T14992]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  275.523369][T14992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.523403][T14992] RIP: 0033:0x7fe04f36f6c9
[  275.523425][T14992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.523451][T14992] RSP: 002b:00007fe04ddd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.523532][T14992] RAX: ffffffffffffffda RBX: 00007fe04f5c5fa0 RCX: 00007fe04f36f6c9
[  275.523545][T14992] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  275.523556][T14992] RBP: 00007fe04f3f1f91 R08: 0000000000000000 R09: 0000000000000000
[  275.523589][T14992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  275.523601][T14992] R13: 00007fe04f5c6038 R14: 00007fe04f5c5fa0 R15: 00007ffccaa67f88
[  275.523619][T14992]  </TASK>
[  275.523627][T14992] memory: usage 307200kB, limit 307200kB, failcnt 1344
[  275.936525][T14992] memory+swap: usage 307368kB, limit 9007199254740988kB, failcnt 0
[  275.944535][T14992] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0
[  275.951923][T14992] Memory cgroup stats for /syz5:
[  275.952281][T14992] cache 0
[  275.960239][T14992] rss 4096
[  275.963274][T14992] shmem 0
[  275.966261][T14992] mapped_file 0
[  275.969786][T14992] dirty 0
[  275.972733][T14992] writeback 0
[  275.976056][T14992] workingset_refault_anon 187
[  275.980747][T14992] workingset_refault_file 0
[  275.985261][T14992] swap 172032
[  275.988594][T14992] swapcached 20480
[  275.992330][T14992] pgpgin 225253
[  275.995888][T14992] pgpgout 225240
[  275.999466][T14992] pgfault 288882
[  276.003117][T14992] pgmajfault 87
[  276.006817][T14992] inactive_anon 4096
[  276.010742][T14992] active_anon 16384
[  276.014576][T14992] inactive_file 0
[  276.018439][T14992] active_file 32768
[  276.022256][T14992] unevictable 0
[  276.026275][T14992] hierarchical_memory_limit 314572800
[  276.031693][T14992] hierarchical_memsw_limit 9223372036854771712
[  276.037896][T14992] total_cache 0
[  276.041375][T14992] total_rss 4096
[  276.044943][T14992] total_shmem 0
[  276.048435][T14992] total_mapped_file 0
[  276.052558][T14992] total_dirty 0
[  276.056095][T14992] total_writeback 0
[  276.059919][T14992] total_workingset_refault_anon 187
[  276.065133][T14992] total_workingset_refault_file 0
[  276.070256][T14992] total_swap 172032
[  276.074085][T14992] total_swapcached 20480
[  276.078375][T14992] total_pgpgin 225253
[  276.082371][T14992] total_pgpgout 225240
[  276.086478][T14992] total_pgfault 288882
[  276.090573][T14992] total_pgmajfault 87
[  276.094592][T14992] total_inactive_anon 4096
[  276.099089][T14992] total_active_anon 16384
[  276.103508][T14992] total_inactive_file 0
[  276.107709][T14992] total_active_file 32768
[  276.112123][T14992] total_unevictable 0
[  276.116143][T14992] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3375,pid=14991,uid=0
[  276.130966][T14992] Memory cgroup out of memory: Killed process 14991 (syz.5.3375) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  276.395236][T15139] loop0: detected capacity change from 0 to 512
[  276.416265][T15140] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  276.422903][T15140] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  276.431136][T15140] vhci_hcd vhci_hcd.0: Device attached
[  276.437798][T15139] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  276.456070][T15150] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  276.466717][T15139] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  276.493464][ T3416] usb 2-1: device descriptor read/8, error -110
[  276.500919][T15139] EXT4-fs (loop0): 1 truncate cleaned up
[  276.507037][T15140] vhci_hcd vhci_hcd.0: port 0 already used
[  276.601486][T15166] loop0: detected capacity change from 0 to 512
[  276.616165][ T3416] usb usb2-port1: attempt power cycle
[  276.704280][T15146] vhci_hcd: connection closed
[  276.704675][   T37] vhci_hcd: stop threads
[  276.713686][   T37] vhci_hcd: release socket
[  276.718198][   T37] vhci_hcd: disconnect device
[  276.723062][ T4778] usb 12-1: enqueue for inactive port 0
[  276.756557][ T3416] usb 2-1: SetAddress Request (30) to port 0
[  276.762621][ T3416] usb 2-1: new SuperSpeed USB device number 30 using vhci_hcd
[  276.781336][T15177] loop0: detected capacity change from 0 to 1024
[  276.788297][T15177] EXT4-fs: inline encryption not supported
[  276.860421][T15181] sd 0:0:1:0: device reset
[  276.906462][T15184] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  276.935609][ T4778] usb 12-1: enqueue for inactive port 0
[  277.029049][T15188] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3395'.
[  277.089225][T15192] loop0: detected capacity change from 0 to 128
[  277.096400][T15192] vfat: Unknown parameter 'ÿ'
[  277.297446][T15199] loop1: detected capacity change from 0 to 512
[  277.299059][T15201] selinux_netlink_send: 1 callbacks suppressed
[  277.299132][T15201] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15201 comm=syz.2.3401
[  277.334450][T15199] ext4 filesystem being mounted at /116/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.369831][T15199] netlink: 'syz.1.3400': attribute type 4 has an invalid length.
[  277.383968][T15211] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15211 comm=syz.2.3401
[  277.417903][T15215] netlink: 'syz.1.3400': attribute type 4 has an invalid length.
[  277.498771][T15219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3406'.
[  277.569107][T15223] sd 0:0:1:0: device reset
[  277.757839][T15234] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15234 comm=syz.1.3412
[  277.771058][T15234] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15234 comm=syz.1.3412
[  277.782970][T15236] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  277.790175][T15236] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  277.798441][T15236] vhci_hcd vhci_hcd.0: Device attached
[  277.805848][T15236] vhci_hcd vhci_hcd.0: port 0 already used
[  277.827823][   T29] kauditd_printk_skb: 1835 callbacks suppressed
[  277.827841][   T29] audit: type=1326 audit(1762831395.964:138563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15200 comm="syz.2.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fca4d1d1f85 code=0x7ffc0000
[  277.861085][   T29] audit: type=1326 audit(1762831395.994:138564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15200 comm="syz.2.3401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fca4d1d1f85 code=0x7ffc0000
[  277.885100][   T29] audit: type=1326 audit(1762831395.994:138565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15191 comm="syz.0.3397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa3a86a1f85 code=0x7ffc0000
[  277.909086][   T29] audit: type=1326 audit(1762831395.994:138566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15191 comm="syz.0.3397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3a8666567 code=0x7ffc0000
[  277.932846][   T29] audit: type=1326 audit(1762831395.994:138567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15191 comm="syz.0.3397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3a860b779 code=0x7ffc0000
[  277.956556][   T29] audit: type=1326 audit(1762831395.994:138568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15191 comm="syz.0.3397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  277.983206][   T29] audit: type=1326 audit(1762831395.994:138569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15241 comm="syz.1.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c643f6c9 code=0x7ffc0000
[  278.007288][   T29] audit: type=1326 audit(1762831395.994:138570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15241 comm="syz.1.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1c643f6c9 code=0x7ffc0000
[  278.031277][   T29] audit: type=1326 audit(1762831395.994:138571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15241 comm="syz.1.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c643f6c9 code=0x7ffc0000
[  278.041003][T15237] vhci_hcd: connection closed
[  278.055162][   T29] audit: type=1326 audit(1762831395.994:138572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15241 comm="syz.1.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1c643f6c9 code=0x7ffc0000
[  278.056007][ T4778] usb usb12-port1: attempt power cycle
[  278.084535][  T297] vhci_hcd: stop threads
[  278.093558][  T297] vhci_hcd: release socket
[  278.098018][  T297] vhci_hcd: disconnect device
[  278.098155][ T3401] usb 10-1: SetAddress Request (20) to port 0
[  278.109166][ T3401] usb 10-1: new SuperSpeed USB device number 20 using vhci_hcd
[  278.136271][T15246] loop0: detected capacity change from 0 to 512
[  278.152346][T15246] ext4 filesystem being mounted at /60/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.171955][T15246] netlink: 'syz.0.3415': attribute type 4 has an invalid length.
[  278.196282][T15255] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15255 comm=syz.2.3417
[  278.230566][T15259] netlink: 'syz.0.3415': attribute type 4 has an invalid length.
[  278.288689][T15264] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3420'.
[  278.346807][T15272] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  278.429876][T15275] loop2: detected capacity change from 0 to 512
[  278.449542][T15277] loop5: detected capacity change from 0 to 128
[  278.457354][T15277] vfat: Unknown parameter 'ÿ'
[  278.482573][T15279] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15279 comm=syz.2.3427
[  278.517594][T15279] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15279 comm=syz.2.3427
[  278.680154][T15285] loop0: detected capacity change from 0 to 1024
[  278.687012][T15285] EXT4-fs: Ignoring removed orlov option
[  278.731899][T15290] loop4: detected capacity change from 0 to 512
[  278.758170][T15290] ext4 filesystem being mounted at /92/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.780491][T15290] netlink: 'syz.4.3430': attribute type 4 has an invalid length.
[  278.812838][T15294] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3428'.
[  278.832187][T15295] netlink: 'syz.4.3430': attribute type 4 has an invalid length.
[  279.116270][T15303] loop4: detected capacity change from 0 to 512
[  279.126799][T15303] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  279.169494][T15303] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  279.187077][T15303] EXT4-fs (loop4): 1 truncate cleaned up
[  279.303734][T15306] loop5: detected capacity change from 0 to 1024
[  279.310978][T15306] EXT4-fs: inline encryption not supported
[  279.341085][T15306] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3433: Allocating blocks 385-513 which overlap fs metadata
[  279.361669][T15306] EXT4-fs (loop5): pa ffff888106ddc770: logic 16, phys. 129, len 24
[  279.369989][T15306] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  279.394963][T15306] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 15: block 337:freeing already freed block (bit 21); block bitmap corrupt.
[  279.420513][T15312] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  279.599876][T12716] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  279.610845][T12716] CPU: 0 UID: 0 PID: 12716 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  279.610881][T12716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  279.610899][T12716] Call Trace:
[  279.610944][T12716]  <TASK>
[  279.610952][T12716]  __dump_stack+0x1d/0x30
[  279.610983][T12716]  dump_stack_lvl+0xe8/0x140
[  279.611008][T12716]  dump_stack+0x15/0x1b
[  279.611031][T12716]  dump_header+0x81/0x220
[  279.611120][T12716]  oom_kill_process+0x342/0x400
[  279.611237][T12716]  out_of_memory+0x979/0xb80
[  279.611277][T12716]  try_charge_memcg+0x610/0xa10
[  279.611322][T12716]  charge_memcg+0x51/0xc0
[  279.611427][T12716]  __mem_cgroup_charge+0x28/0xb0
[  279.611462][T12716]  filemap_add_folio+0x111/0x360
[  279.611514][T12716]  __filemap_get_folio+0x31e/0x650
[  279.611553][T12716]  filemap_fault+0x447/0xb60
[  279.611634][T12716]  __do_fault+0xbc/0x200
[  279.611664][T12716]  handle_mm_fault+0xf78/0x2be0
[  279.611707][T12716]  ? vma_start_read+0x141/0x1f0
[  279.611816][T12716]  do_user_addr_fault+0x630/0x1080
[  279.611849][T12716]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  279.611879][T12716]  exc_page_fault+0x62/0xa0
[  279.611974][T12716]  asm_exc_page_fault+0x26/0x30
[  279.612002][T12716] RIP: 0033:0x7ff1c6315f24
[  279.612039][T12716] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 78 f8 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d 89 f7 ea 00 48 01 d1
[  279.612058][T12716] RSP: 002b:00007ffcd8dc0700 EFLAGS: 00010206
[  279.612074][T12716] RAX: 0000001b2ee24000 RBX: 0000000000000127 RCX: 00000000000441d8
[  279.612088][T12716] RDX: 000000000ad64592 RSI: 00007ffcd8dc0790 RDI: 0000000000000001
[  279.612103][T12716] RBP: 00007ffcd8dc073c R08: 00000000295701c7 R09: 7fffffffffffffff
[  279.612121][T12716] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  279.612138][T12716] R13: 00000000000927c0 R14: 0000000000044190 R15: 00007ffcd8dc0790
[  279.612196][T12716]  </TASK>
[  279.612205][T12716] memory: usage 307200kB, limit 307200kB, failcnt 2869
[  279.809956][T12716] memory+swap: usage 307356kB, limit 9007199254740988kB, failcnt 0
[  279.817963][T12716] kmem: usage 307104kB, limit 9007199254740988kB, failcnt 0
[  279.825250][T12716] Memory cgroup stats for /syz1:
[  279.825723][T12716] cache 0
[  279.833594][T12716] rss 0
[  279.836390][T12716] shmem 0
[  279.839320][T12716] mapped_file 0
[  279.842817][T12716] dirty 0
[  279.845800][T12716] writeback 0
[  279.849114][T12716] workingset_refault_anon 402
[  279.853786][T12716] workingset_refault_file 3630
[  279.858562][T12716] swap 159744
[  279.861950][T12716] swapcached 28672
[  279.865687][T12716] pgpgin 381469
[  279.869136][T12716] pgpgout 381445
[  279.872676][T12716] pgfault 426905
[  279.876232][T12716] pgmajfault 235
[  279.879773][T12716] inactive_anon 8192
[  279.883724][T12716] active_anon 20480
[  279.887614][T12716] inactive_file 0
[  279.891339][T12716] active_file 69632
[  279.895264][T12716] unevictable 0
[  279.898733][T12716] hierarchical_memory_limit 314572800
[  279.904091][T12716] hierarchical_memsw_limit 9223372036854771712
[  279.910265][T12716] total_cache 0
[  279.913717][T12716] total_rss 0
[  279.917081][T12716] total_shmem 0
[  279.920530][T12716] total_mapped_file 0
[  279.924498][T12716] total_dirty 0
[  279.928043][T12716] total_writeback 0
[  279.931978][T12716] total_workingset_refault_anon 402
[  279.937205][T12716] total_workingset_refault_file 3630
[  279.942517][T12716] total_swap 159744
[  279.946338][T12716] total_swapcached 28672
[  279.950569][T12716] total_pgpgin 381469
[  279.954618][T12716] total_pgpgout 381445
[  279.958696][T12716] total_pgfault 426905
[  279.962853][T12716] total_pgmajfault 235
[  279.966931][T12716] total_inactive_anon 8192
[  279.971339][T12716] total_active_anon 20480
[  279.975688][T12716] total_inactive_file 0
[  279.979923][T12716] total_active_file 69632
[  279.984312][T12716] total_unevictable 0
[  279.988313][T12716] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3429,pid=15287,uid=0
[  280.002980][T12716] Memory cgroup out of memory: Killed process 15287 (syz.1.3429) total-vm:93824kB, anon-rss:1136kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  280.025749][ T4778] usb usb12-port1: unable to enumerate USB device
[  280.223217][T15328] loop2: detected capacity change from 0 to 512
[  280.239468][T15328] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  280.252774][T15318] chnl_net:caif_netlink_parms(): no params data found
[  280.261416][T15328] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  280.284658][T15328] EXT4-fs (loop2): 1 truncate cleaned up
[  280.333746][T15318] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.341500][T15318] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.356277][T15318] bridge_slave_0: entered allmulticast mode
[  280.363018][T15318] bridge_slave_0: entered promiscuous mode
[  280.370816][T15318] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.377927][T15318] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.378240][T15349] loop2: detected capacity change from 0 to 512
[  280.385162][T15318] bridge_slave_1: entered allmulticast mode
[  280.398744][T15318] bridge_slave_1: entered promiscuous mode
[  280.453520][T15318] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.465968][T15318] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.494018][T15318] team0: Port device team_slave_0 added
[  280.501456][T15318] team0: Port device team_slave_1 added
[  280.522482][T15363] loop0: detected capacity change from 0 to 1024
[  280.530623][T15318] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.536417][T15363] EXT4-fs: Ignoring removed orlov option
[  280.538868][T15318] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  280.547743][T15363] EXT4-fs mount: 43 callbacks suppressed
[  280.547794][T15363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.570319][T15318] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.571784][T15318] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.606396][T15318] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  280.632427][T15318] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.685872][T15318] hsr_slave_0: entered promiscuous mode
[  280.692150][T15318] hsr_slave_1: entered promiscuous mode
[  280.698138][T15318] debugfs: 'hsr0' already exists in 'hsr'
[  280.703889][T15318] Cannot create hsr debugfs directory
[  280.712062][T15368] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3449'.
[  280.872641][T15373] loop2: detected capacity change from 0 to 512
[  280.893894][T15373] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  280.905448][T15373] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  280.920766][T15373] EXT4-fs (loop2): 1 truncate cleaned up
[  280.921683][T13892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.927554][T15373] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.992597][T15378] loop0: detected capacity change from 0 to 512
[  281.000023][T15378] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  281.013733][T15378] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  281.028607][T15378] EXT4-fs (loop0): 1 truncate cleaned up
[  281.034243][T15318] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  281.034780][T15378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.065489][T15318] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  281.074044][T13892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.092522][T15318] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  281.104511][T15318] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  281.169549][T15318] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.183648][T15318] 8021q: adding VLAN 0 to HW filter on device team0
[  281.204940][ T1460] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.212048][ T1460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.257843][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.264949][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.291989][T15396] loop4: detected capacity change from 0 to 128
[  281.300688][T15396] vfat: Unknown parameter 'ÿ'
[  281.387125][T15318] 8021q: adding VLAN 0 to HW filter on device batadv0
[  281.397748][T15401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3458'.
[  281.483594][T15416] loop1: detected capacity change from 0 to 1024
[  281.491341][T15416] EXT4-fs: inline encryption not supported
[  281.508962][T15416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.525233][T15416] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.3460: Allocating blocks 385-513 which overlap fs metadata
[  281.534258][T15318] veth0_vlan: entered promiscuous mode
[  281.546466][T15416] EXT4-fs (loop1): pa ffff888106df4f50: logic 16, phys. 129, len 24
[  281.549414][T15318] veth1_vlan: entered promiscuous mode
[  281.554556][T15416] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  281.572649][T15318] veth0_macvtap: entered promiscuous mode
[  281.582334][T15416] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 337:freeing already freed block (bit 21); block bitmap corrupt.
[  281.593645][T15318] veth1_macvtap: entered promiscuous mode
[  281.613802][T15318] batman_adv: batadv0: Interface activated: batadv_slave_0
[  281.627464][T15318] batman_adv: batadv0: Interface activated: batadv_slave_1
[  281.639591][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.652214][T12133] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.662659][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.676534][T12133] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.689732][T12133] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.708725][T12133] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  281.761938][T15434] loop5: detected capacity change from 0 to 512
[  281.771367][T15432] loop2: detected capacity change from 0 to 512
[  281.772479][T15424] sd 0:0:1:0: device reset
[  281.782777][T15434] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  281.808876][T15434] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  281.830787][T15434] EXT4-fs (loop5): 1 truncate cleaned up
[  281.837996][T15434] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.845815][ T3416] usb 2-1: device descriptor read/8, error -110
[  281.869417][T15318] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.966671][ T3416] usb 2-1: new SuperSpeed USB device number 30 using vhci_hcd
[  281.998896][T15447] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3469'.
[  282.028031][T15447] team0 (unregistering): Port device team_slave_0 removed
[  282.057526][T15447] team0 (unregistering): Port device team_slave_1 removed
[  282.076082][T15451] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3468'.
[  282.183235][T15455] loop1: detected capacity change from 0 to 1024
[  282.190564][T15455] EXT4-fs: inline encryption not supported
[  282.257273][T15464] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15464 comm=syz.4.3474
[  282.289003][T15455] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.304658][T15464] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15464 comm=syz.4.3474
[  282.307430][T15455] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.3471: Allocating blocks 385-513 which overlap fs metadata
[  282.335457][T15455] EXT4-fs (loop1): pa ffff888106ddc770: logic 16, phys. 129, len 24
[  282.343584][T15455] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  282.370368][T15455] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 337:freeing already freed block (bit 21); block bitmap corrupt.
[  282.421421][T15473] loop4: detected capacity change from 0 to 1024
[  282.428277][T15473] EXT4-fs: inline encryption not supported
[  282.429776][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.447696][T15473] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.497518][T15479] sd 0:0:1:0: device reset
[  282.509965][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.537019][T15484] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3481'.
[  282.555334][T15485] loop0: detected capacity change from 0 to 128
[  282.562893][T15485] vfat: Unknown parameter 'ÿ'
[  282.672275][T15493] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  282.793565][T15497] loop4: detected capacity change from 0 to 512
[  282.821391][T15497] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  282.841732][   T29] kauditd_printk_skb: 2542 callbacks suppressed
[  282.841747][   T29] audit: type=1326 audit(1762832939.978:141115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3a8666567 code=0x7ffc0000
[  282.871895][   T29] audit: type=1326 audit(1762832939.978:141116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3a860b779 code=0x7ffc0000
[  282.895868][   T29] audit: type=1326 audit(1762832939.978:141117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  282.927430][T15497] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  282.931970][   T29] audit: type=1326 audit(1762832939.988:141118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3a8666567 code=0x7ffc0000
[  282.942703][T15506] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15506 comm=syz.1.3487
[  282.965560][   T29] audit: type=1326 audit(1762832939.988:141119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3a860b779 code=0x7ffc0000
[  282.965597][   T29] audit: type=1326 audit(1762832939.988:141120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  282.965625][   T29] audit: type=1326 audit(1762832939.988:141121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3a8666567 code=0x7ffc0000
[  283.049008][   T29] audit: type=1326 audit(1762832939.988:141122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa3a860b779 code=0x7ffc0000
[  283.072686][   T29] audit: type=1326 audit(1762832939.988:141123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa3a866f6c9 code=0x7ffc0000
[  283.075689][T15497] EXT4-fs (loop4): 1 truncate cleaned up
[  283.096512][   T29] audit: type=1326 audit(1762832939.988:141124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15481 comm="syz.0.3480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa3a8666567 code=0x7ffc0000
[  283.105764][T15497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.205685][ T3401] usb 10-1: device descriptor read/8, error -110
[  283.252191][T15516] loop2: detected capacity change from 0 to 512
[  283.259689][T15516] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  283.271805][T15516] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  283.287272][T15516] EXT4-fs (loop2): 1 truncate cleaned up
[  283.293400][T15516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.316141][ T3401] usb 10-1: new SuperSpeed USB device number 20 using vhci_hcd
[  283.320905][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.349802][T15519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3492'.
[  283.559163][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.598996][T15547] loop4: detected capacity change from 0 to 1024
[  283.612382][T15547] EXT4-fs: inline encryption not supported
[  283.646291][T15553] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  283.726229][T15547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  283.772051][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.819454][T15564] atomic_op ffff88813e3f1528 conn xmit_atomic 0000000000000000
[  283.890663][T15574] loop4: detected capacity change from 0 to 2048
[  283.907610][T15574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  284.063884][T15594] loop1: detected capacity change from 0 to 512
[  284.071751][T15594] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  284.084756][T15594] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  284.099972][T15594] EXT4-fs (loop1): 1 truncate cleaned up
[  284.106201][T15594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.146764][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.234576][T15614] loop1: detected capacity change from 0 to 128
[  284.243621][T15614] vfat: Unknown parameter 'ÿ'
[  284.348538][T15630] sd 0:0:1:0: device reset
[  284.398650][T15633] sd 0:0:1:0: device reset
[  284.537360][T15655] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3509'.
[  284.629819][T15666] loop2: detected capacity change from 0 to 1024
[  284.639092][T15666] EXT4-fs: Ignoring removed orlov option
[  284.660358][T15666] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.677348][T15666] netlink: 172 bytes leftover after parsing attributes in process `syz.2.3510'.
[  284.693251][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.716439][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.980137][T15703] loop2: detected capacity change from 0 to 512
[  285.043184][ T1460] bridge_slave_1: left allmulticast mode
[  285.049595][ T1460] bridge_slave_1: left promiscuous mode
[  285.055633][ T1460] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.069473][T15706] loop2: detected capacity change from 0 to 1024
[  285.080118][T15706] EXT4-fs: inline encryption not supported
[  285.088711][T15711] sd 0:0:1:0: device reset
[  285.093384][ T1460] bridge_slave_0: left allmulticast mode
[  285.099274][ T1460] bridge_slave_0: left promiscuous mode
[  285.104987][ T1460] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.130005][T15706] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.157825][T15706] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.3518: Allocating blocks 497-513 which overlap fs metadata
[  285.194067][T15706] EXT4-fs (loop2): pa ffff888106df4e70: logic 16, phys. 145, len 23
[  285.202310][T15706] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  285.213042][T15706] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  285.225315][T15706] EXT4-fs (loop2): This should not happen!! Data will be lost
[  285.225315][T15706] 
[  285.234992][T15706] EXT4-fs (loop2): Total free blocks count 0
[  285.241039][T15706] EXT4-fs (loop2): Free/Dirty block details
[  285.244238][T15718] sd 0:0:1:0: device reset
[  285.247005][T15706] EXT4-fs (loop2): free_blocks=16
[  285.256548][T15706] EXT4-fs (loop2): dirty_blocks=0
[  285.261689][T15706] EXT4-fs (loop2): Block reservation details
[  285.267897][T15706] EXT4-fs (loop2): i_reserved_data_blocks=0
[  285.302643][   T31] smc: removing ib device syz2
[  285.308074][ T1460] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  285.339828][ T1460] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.372127][ T1460] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  285.416779][ T1460] bond0 (unregistering): Released all slaves
[  285.599328][T15736] loop2: detected capacity change from 0 to 512
[  285.619107][T15736] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  285.661118][T15736] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  285.695188][T15740] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3522'.
[  285.742912][T15736] EXT4-fs (loop2): 1 truncate cleaned up
[  285.759485][T15745] atomic_op ffff88814f3bbd28 conn xmit_atomic 0000000000000000
[  285.805965][T15747] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  285.816398][T15736] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.860746][T15748] loop1: detected capacity change from 0 to 2048
[  285.920102][T15748] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  285.981053][ T1460] hsr_slave_0: left promiscuous mode
[  285.991020][ T1460] hsr_slave_1: left promiscuous mode
[  285.999947][T15755] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  286.005840][ T1460] batman_adv: batadv0: Removing interface: batadv_slave_0
[  286.026367][ T1460] batman_adv: batadv0: Removing interface: batadv_slave_1
[  286.360054][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.450917][T15778] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3534'.
[  286.463183][T15782] loop0: detected capacity change from 0 to 512
[  286.478750][T15782] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  286.489890][T15785] sd 0:0:1:0: device reset
[  286.528489][T15782] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  286.605613][T15782] EXT4-fs (loop0): 1 truncate cleaned up
[  286.626165][T15782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.636135][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.691225][T15791] loop5: detected capacity change from 0 to 1024
[  286.706076][T15791] EXT4-fs: inline encryption not supported
[  286.716962][T15791] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.767026][T15802] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  286.779772][T15791] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3538: Allocating blocks 497-513 which overlap fs metadata
[  286.783641][T15791] EXT4-fs (loop5): pa ffff888106ddc850: logic 16, phys. 145, len 23
[  286.783670][T15791] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  286.784183][T15791] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  286.784306][T15791] EXT4-fs (loop5): This should not happen!! Data will be lost
[  286.784306][T15791] 
[  286.784319][T15791] EXT4-fs (loop5): Total free blocks count 0
[  286.784332][T15791] EXT4-fs (loop5): Free/Dirty block details
[  286.784343][T15791] EXT4-fs (loop5): free_blocks=16
[  286.784354][T15791] EXT4-fs (loop5): dirty_blocks=0
[  286.784366][T15791] EXT4-fs (loop5): Block reservation details
[  286.784435][T15791] EXT4-fs (loop5): i_reserved_data_blocks=0
[  286.981885][T15817] loop5: detected capacity change from 0 to 1024
[  286.989785][T15817] EXT4-fs: inline encryption not supported
[  286.999297][T15815] atomic_op ffff88810441f528 conn xmit_atomic 0000000000000000
[  287.017225][T15817] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.032167][T15817] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3547: Allocating blocks 497-513 which overlap fs metadata
[  287.046763][T15816] EXT4-fs (loop5): pa ffff888106ddc850: logic 16, phys. 145, len 23
[  287.054841][T15816] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  287.077267][T15318] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.086635][T15820] loop1: detected capacity change from 0 to 2048
[  287.101827][T15820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.144597][T15827] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  287.197197][T15829] sd 0:0:1:0: device reset
[  287.202196][T13892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.558313][T15850] loop5: detected capacity change from 0 to 1024
[  287.565228][T15850] EXT4-fs: inline encryption not supported
[  287.580814][T15850] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.597898][T15850] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3558: Allocating blocks 497-513 which overlap fs metadata
[  287.612505][T15849] EXT4-fs (loop5): pa ffff888106df4ee0: logic 16, phys. 145, len 23
[  287.620715][T15849] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  287.646195][T15318] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.670799][T15861] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  287.829968][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.845516][   T29] kauditd_printk_skb: 1306 callbacks suppressed
[  287.851906][   T29] audit: type=1326 audit(1762834483.980:142431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.875701][   T29] audit: type=1326 audit(1762834483.980:142432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.902695][T15862] loop4: detected capacity change from 0 to 512
[  287.910204][   T29] audit: type=1326 audit(1762834483.990:142433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.915654][T15862] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  287.934157][   T29] audit: type=1326 audit(1762834483.990:142434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.967808][   T29] audit: type=1326 audit(1762834483.990:142435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.971600][T15862] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  287.991601][   T29] audit: type=1326 audit(1762834483.990:142436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  287.991642][   T29] audit: type=1326 audit(1762834483.990:142437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  288.010447][T15862] EXT4-fs (loop4): 1 truncate cleaned up
[  288.029947][   T29] audit: type=1326 audit(1762834483.990:142438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  288.053786][T15862] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.058965][   T29] audit: type=1326 audit(1762834483.990:142439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  288.118938][   T29] audit: type=1326 audit(1762834483.990:142440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15860 comm="syz.5.3561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cba6cf6c9 code=0x7ffc0000
[  288.120512][T15871] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  288.149089][T15871] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  288.157394][T15871] vhci_hcd vhci_hcd.0: Device attached
[  288.173302][T15870] vhci_hcd vhci_hcd.0: port 0 already used
[  288.188910][T15877] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  288.364455][T15872] vhci_hcd: connection closed
[  288.365464][ T1460] vhci_hcd: stop threads
[  288.374462][ T1460] vhci_hcd: release socket
[  288.379021][ T1460] vhci_hcd: disconnect device
[  288.534627][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.556323][T15891] loop2: detected capacity change from 0 to 1024
[  288.563182][T15891] EXT4-fs: inline encryption not supported
[  288.572757][T15893] sd 0:0:1:0: device reset
[  288.580760][T15891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.604929][T15891] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.3572: Allocating blocks 497-513 which overlap fs metadata
[  288.619795][T15890] EXT4-fs (loop2): pa ffff888106ddc7e0: logic 16, phys. 145, len 23
[  288.628083][T15890] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  288.651597][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.681458][T15910] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=15910 comm=syz.4.3579
[  288.714767][T15910] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=15910 comm=syz.4.3579
[  288.802309][T15921] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3583'.
[  288.831494][T15923] loop4: detected capacity change from 0 to 512
[  288.847472][T15923] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.860309][T15923] ext4 filesystem being mounted at /126/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.894771][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.025750][T15937] loop1: detected capacity change from 0 to 1024
[  289.032553][T15937] EXT4-fs: inline encryption not supported
[  289.058142][T15937] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.074335][T15937] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.3590: Allocating blocks 497-513 which overlap fs metadata
[  289.090445][T15936] EXT4-fs (loop1): pa ffff888106ddc8c0: logic 16, phys. 145, len 23
[  289.098517][T15936] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  289.129834][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.156558][T15943] sd 0:0:1:0: device reset
[  289.173480][T15941] loop4: detected capacity change from 0 to 512
[  289.182123][T15941] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  289.193616][T15941] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  289.209948][T15941] EXT4-fs (loop4): 1 truncate cleaned up
[  289.217242][T15941] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.300160][T15954] loop1: detected capacity change from 0 to 512
[  289.318054][T15954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.331019][T15954] ext4 filesystem being mounted at /161/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.369488][T12716] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.406087][T15958] loop1: detected capacity change from 0 to 1024
[  289.413090][T15958] EXT4-fs: inline encryption not supported
[  289.439067][T15958] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.459706][T15958] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.3596: Allocating blocks 497-513 which overlap fs metadata
[  289.495423][T15958] EXT4-fs (loop1): pa ffff888106df4d90: logic 16, phys. 145, len 23
[  289.503520][T15958] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  289.516311][T15958] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[  289.528594][T15958] EXT4-fs (loop1): This should not happen!! Data will be lost
[  289.528594][T15958] 
[  289.535011][T15962] loop0: detected capacity change from 0 to 1024
[  289.538459][T15958] EXT4-fs (loop1): Total free blocks count 0
[  289.545131][T15962] EXT4-fs: Ignoring removed orlov option
[  289.550781][T15958] EXT4-fs (loop1): Free/Dirty block details
[  289.550799][T15958] EXT4-fs (loop1): free_blocks=16
[  289.550816][T15958] EXT4-fs (loop1): dirty_blocks=0
[  289.560161][T15962] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.562431][T15958] EXT4-fs (loop1): Block reservation details
[  289.562449][T15958] EXT4-fs (loop1): i_reserved_data_blocks=0
[  289.798469][T15982] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3597'.
[  289.888548][T13303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.172361][T15950] syz.5.3594 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  290.186701][T15950] CPU: 1 UID: 0 PID: 15950 Comm: syz.5.3594 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  290.186741][T15950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  290.186793][T15950] Call Trace:
[  290.186803][T15950]  <TASK>
[  290.186815][T15950]  __dump_stack+0x1d/0x30
[  290.186918][T15950]  dump_stack_lvl+0xe8/0x140
[  290.186949][T15950]  dump_stack+0x15/0x1b
[  290.186975][T15950]  dump_header+0x81/0x220
[  290.186997][T15950]  oom_kill_process+0x342/0x400
[  290.187098][T15950]  out_of_memory+0x979/0xb80
[  290.187163][T15950]  try_charge_memcg+0x610/0xa10
[  290.187215][T15950]  obj_cgroup_charge_pages+0xa6/0x150
[  290.187244][T15950]  __memcg_kmem_charge_page+0x9f/0x170
[  290.187270][T15950]  __alloc_frozen_pages_noprof+0x188/0x360
[  290.187304][T15950]  alloc_pages_mpol+0xb3/0x260
[  290.187363][T15950]  alloc_pages_noprof+0x90/0x130
[  290.187395][T15950]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  290.187456][T15950]  ? is_bpf_text_address+0x141/0x160
[  290.187540][T15950]  __kvmalloc_node_noprof+0x483/0x670
[  290.187579][T15950]  ? ip_set_alloc+0x24/0x30
[  290.187619][T15950]  ? ip_set_alloc+0x24/0x30
[  290.187656][T15950]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  290.187739][T15950]  ip_set_alloc+0x24/0x30
[  290.187776][T15950]  hash_netiface_create+0x282/0x740
[  290.187849][T15950]  ? __pfx_hash_netiface_create+0x10/0x10
[  290.187946][T15950]  ip_set_create+0x3cc/0x970
[  290.187982][T15950]  ? __nla_parse+0x40/0x60
[  290.188011][T15950]  nfnetlink_rcv_msg+0x4c6/0x590
[  290.188125][T15950]  netlink_rcv_skb+0x123/0x220
[  290.188165][T15950]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  290.188209][T15950]  nfnetlink_rcv+0x167/0x16c0
[  290.188307][T15950]  ? kmem_cache_free+0xe4/0x3d0
[  290.188348][T15950]  ? __kfree_skb+0x109/0x150
[  290.188389][T15950]  ? nlmon_xmit+0x4f/0x60
[  290.188476][T15950]  ? consume_skb+0x49/0x150
[  290.188520][T15950]  ? nlmon_xmit+0x4f/0x60
[  290.188551][T15950]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  290.188644][T15950]  ? __dev_queue_xmit+0x1200/0x2000
[  290.188665][T15950]  ? __dev_queue_xmit+0x182/0x2000
[  290.188683][T15950]  ? security_compute_sid+0x11da/0x1290
[  290.188721][T15950]  ? ref_tracker_free+0x37d/0x3e0
[  290.188778][T15950]  ? __netlink_deliver_tap+0x4dc/0x500
[  290.188830][T15950]  netlink_unicast+0x5c0/0x690
[  290.188908][T15950]  netlink_sendmsg+0x58b/0x6b0
[  290.188952][T15950]  ? __pfx_netlink_sendmsg+0x10/0x10
[  290.188981][T15950]  __sock_sendmsg+0x145/0x180
[  290.189021][T15950]  ____sys_sendmsg+0x31e/0x4e0
[  290.189074][T15950]  ___sys_sendmsg+0x17b/0x1d0
[  290.189120][T15950]  __x64_sys_sendmsg+0xd4/0x160
[  290.189166][T15950]  x64_sys_call+0x191e/0x3000
[  290.189201][T15950]  do_syscall_64+0xd2/0x200
[  290.189231][T15950]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  290.189311][T15950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.189397][T15950] RIP: 0033:0x7f3cba6cf6c9
[  290.189420][T15950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.189448][T15950] RSP: 002b:00007f3cb9137038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  290.189477][T15950] RAX: ffffffffffffffda RBX: 00007f3cba925fa0 RCX: 00007f3cba6cf6c9
[  290.189496][T15950] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  290.189514][T15950] RBP: 00007f3cba751f91 R08: 0000000000000000 R09: 0000000000000000
[  290.189532][T15950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.189626][T15950] R13: 00007f3cba926038 R14: 00007f3cba925fa0 R15: 00007ffd748dc1a8
[  290.189654][T15950]  </TASK>
[  290.189664][T15950] memory: usage 307200kB, limit 307200kB, failcnt 1557
[  290.543434][T15950] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  290.551363][T15950] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[  290.558712][T15950] Memory cgroup stats for /syz5:
[  290.559125][T15950] cache 0
[  290.567179][T15950] rss 0
[  290.570109][T15950] shmem 0
[  290.573237][T15950] mapped_file 0
[  290.576731][T15950] dirty 0
[  290.579753][T15950] writeback 0
[  290.583052][T15950] workingset_refault_anon 218
[  290.587931][T15950] workingset_refault_file 0
[  290.592650][T15950] swap 188416
[  290.596003][T15950] swapcached 0
[  290.599497][T15950] pgpgin 239330
[  290.602996][T15950] pgpgout 239322
[  290.606580][T15950] pgfault 305049
[  290.610141][T15950] pgmajfault 102
[  290.613703][T15950] inactive_anon 0
[  290.617474][T15950] active_anon 0
[  290.620976][T15950] inactive_file 0
[  290.624649][T15950] active_file 32768
[  290.628494][T15950] unevictable 0
[  290.631998][T15950] hierarchical_memory_limit 314572800
[  290.637425][T15950] hierarchical_memsw_limit 9223372036854771712
[  290.643612][T15950] total_cache 0
[  290.647120][T15950] total_rss 0
[  290.650414][T15950] total_shmem 0
[  290.653884][T15950] total_mapped_file 0
[  290.657964][T15950] total_dirty 0
[  290.661440][T15950] total_writeback 0
[  290.665267][T15950] total_workingset_refault_anon 218
[  290.670507][T15950] total_workingset_refault_file 0
[  290.675643][T15950] total_swap 188416
[  290.679516][T15950] total_swapcached 0
[  290.683436][T15950] total_pgpgin 239330
[  290.687448][T15950] total_pgpgout 239322
[  290.691608][T15950] total_pgfault 305049
[  290.695716][T15950] total_pgmajfault 102
[  290.699863][T15950] total_inactive_anon 0
[  290.704048][T15950] total_active_anon 0
[  290.708163][T15950] total_inactive_file 0
[  290.712336][T15950] total_active_file 32768
[  290.716724][T15950] total_unevictable 0
[  290.720725][T15950] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.3594,pid=15949,uid=0
[  290.735667][T15950] Memory cgroup out of memory: Killed process 15949 (syz.5.3594) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  290.769220][T13892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.816886][T16092] loop0: detected capacity change from 0 to 1024
[  290.829762][T16088] sd 0:0:1:0: device reset
[  290.832397][T16092] EXT4-fs: inline encryption not supported
[  290.887201][T16092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.903549][T16101] sd 0:0:1:0: device reset
[  290.929409][T16092] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.3604: Allocating blocks 497-513 which overlap fs metadata
[  290.966638][T16090] EXT4-fs (loop0): pa ffff888106df4e00: logic 16, phys. 145, len 23
[  290.974696][T16090] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  291.023419][T13892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.065362][T16123] loop0: detected capacity change from 0 to 1024
[  291.072553][T16123] EXT4-fs: Ignoring removed orlov option
[  291.086721][T16125] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16125 comm=syz.1.3609
[  291.090084][T16123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.132106][T16125] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16125 comm=syz.1.3609
[  291.211137][T16131] loop4: detected capacity change from 0 to 512
[  291.247693][T16131] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  291.286288][T16131] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  291.311794][T16131] EXT4-fs (loop4): 1 truncate cleaned up
[  291.321552][T16131] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.743433][T16154] loop2: detected capacity change from 0 to 1024
[  291.750175][T16154] EXT4-fs: inline encryption not supported
[  291.768002][T16154] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.783869][T16154] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.3618: Allocating blocks 497-513 which overlap fs metadata
[  291.800699][T16153] EXT4-fs (loop2): pa ffff888106df4d90: logic 16, phys. 145, len 23
[  291.808836][T16153] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  291.833379][T12990] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.980110][T16168] loop0: detected capacity change from 0 to 1024
[  291.987999][T16168] EXT4-fs: Ignoring removed orlov option
[  292.170084][T16176] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3624'.
[  292.293446][T16180] loop2: detected capacity change from 0 to 512
[  292.318720][T16180] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  292.345262][T16180] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  292.382865][T16180] EXT4-fs (loop2): 1 truncate cleaned up
[  292.558431][T16160] syz.4.3620 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  292.572703][T16160] CPU: 1 UID: 0 PID: 16160 Comm: syz.4.3620 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  292.572741][T16160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  292.572837][T16160] Call Trace:
[  292.572846][T16160]  <TASK>
[  292.572856][T16160]  __dump_stack+0x1d/0x30
[  292.572932][T16160]  dump_stack_lvl+0xe8/0x140
[  292.572962][T16160]  dump_stack+0x15/0x1b
[  292.572987][T16160]  dump_header+0x81/0x220
[  292.573014][T16160]  oom_kill_process+0x342/0x400
[  292.573069][T16160]  out_of_memory+0x979/0xb80
[  292.573117][T16160]  try_charge_memcg+0x610/0xa10
[  292.573175][T16160]  obj_cgroup_charge_pages+0xa6/0x150
[  292.573206][T16160]  __memcg_kmem_charge_page+0x9f/0x170
[  292.573238][T16160]  __alloc_frozen_pages_noprof+0x188/0x360
[  292.573265][T16160]  alloc_pages_mpol+0xb3/0x260
[  292.573370][T16160]  ? alloc_pages_noprof+0x61/0x130
[  292.573403][T16160]  alloc_pages_noprof+0x90/0x130
[  292.573436][T16160]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  292.573546][T16160]  __kvmalloc_node_noprof+0x483/0x670
[  292.573594][T16160]  ? ip_set_alloc+0x24/0x30
[  292.573633][T16160]  ? ip_set_alloc+0x24/0x30
[  292.573692][T16160]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  292.573736][T16160]  ip_set_alloc+0x24/0x30
[  292.573775][T16160]  hash_netiface_create+0x282/0x740
[  292.573935][T16160]  ? __pfx_hash_netiface_create+0x10/0x10
[  292.573970][T16160]  ip_set_create+0x3cc/0x970
[  292.574010][T16160]  ? __nla_parse+0x40/0x60
[  292.574160][T16160]  nfnetlink_rcv_msg+0x4c6/0x590
[  292.574227][T16160]  netlink_rcv_skb+0x123/0x220
[  292.574262][T16160]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  292.574297][T16160]  nfnetlink_rcv+0x167/0x16c0
[  292.574430][T16160]  ? kmem_cache_free+0xe4/0x3d0
[  292.574547][T16160]  ? __kfree_skb+0x109/0x150
[  292.574580][T16160]  ? nlmon_xmit+0x4f/0x60
[  292.574603][T16160]  ? consume_skb+0x49/0x150
[  292.574715][T16160]  ? nlmon_xmit+0x4f/0x60
[  292.574798][T16160]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  292.574909][T16160]  ? __dev_queue_xmit+0x1200/0x2000
[  292.574952][T16160]  ? __dev_queue_xmit+0x182/0x2000
[  292.574991][T16160]  ? spurious_kernel_fault+0xf4/0x4a0
[  292.575019][T16160]  ? ref_tracker_free+0x37d/0x3e0
[  292.575141][T16160]  ? __netlink_deliver_tap+0x4dc/0x500
[  292.575216][T16160]  netlink_unicast+0x5c0/0x690
[  292.575253][T16160]  netlink_sendmsg+0x58b/0x6b0
[  292.575284][T16160]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.575381][T16160]  __sock_sendmsg+0x145/0x180
[  292.575427][T16160]  ____sys_sendmsg+0x31e/0x4e0
[  292.575480][T16160]  ___sys_sendmsg+0x17b/0x1d0
[  292.575530][T16160]  __x64_sys_sendmsg+0xd4/0x160
[  292.575610][T16160]  x64_sys_call+0x191e/0x3000
[  292.575642][T16160]  do_syscall_64+0xd2/0x200
[  292.575723][T16160]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  292.575763][T16160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.575785][T16160] RIP: 0033:0x7feeb3b2f6c9
[  292.575882][T16160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.575907][T16160] RSP: 002b:00007feeb258f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.575929][T16160] RAX: ffffffffffffffda RBX: 00007feeb3d85fa0 RCX: 00007feeb3b2f6c9
[  292.575942][T16160] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  292.575954][T16160] RBP: 00007feeb3bb1f91 R08: 0000000000000000 R09: 0000000000000000
[  292.575967][T16160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  292.575979][T16160] R13: 00007feeb3d86038 R14: 00007feeb3d85fa0 R15: 00007ffc6856f298
[  292.576003][T16160]  </TASK>
[  292.919991][T16160] memory: usage 307200kB, limit 307200kB, failcnt 435
[  292.927054][T16160] memory+swap: usage 307372kB, limit 9007199254740988kB, failcnt 0
[  292.935083][T16160] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[  292.942424][T16160] Memory cgroup stats for /syz4:
[  292.943102][T16160] cache 0
[  292.951063][T16160] rss 4096
[  292.954362][T16160] shmem 0
[  292.957467][T16160] mapped_file 0
[  292.960997][T16160] dirty 0
[  292.963931][T16160] writeback 0
[  292.967444][T16160] workingset_refault_anon 116
[  292.972346][T16160] workingset_refault_file 1989
[  292.977233][T16160] swap 176128
[  292.980516][T16160] swapcached 12288
[  292.984233][T16160] pgpgin 321811
[  292.987712][T16160] pgpgout 321793
[  292.991252][T16160] pgfault 379820
[  292.994820][T16160] pgmajfault 86
[  292.998303][T16160] inactive_anon 12288
[  293.002292][T16160] active_anon 0
[  293.005802][T16160] inactive_file 61440
[  293.009776][T16160] active_file 0
[  293.013227][T16160] unevictable 0
[  293.016728][T16160] hierarchical_memory_limit 314572800
[  293.022158][T16160] hierarchical_memsw_limit 9223372036854771712
[  293.028345][T16160] total_cache 0
[  293.031808][T16160] total_rss 4096
[  293.035355][T16160] total_shmem 0
[  293.038852][T16160] total_mapped_file 0
[  293.042864][T16160] total_dirty 0
[  293.046364][T16160] total_writeback 0
[  293.050241][T16160] total_workingset_refault_anon 116
[  293.055434][T16160] total_workingset_refault_file 1989
[  293.060742][T16160] total_swap 176128
[  293.064550][T16160] total_swapcached 12288
[  293.068846][T16160] total_pgpgin 321811
[  293.072849][T16160] total_pgpgout 321793
[  293.076948][T16160] total_pgfault 379820
[  293.081045][T16160] total_pgmajfault 86
[  293.085032][T16160] total_inactive_anon 12288
[  293.089568][T16160] total_active_anon 0
[  293.093629][T16160] total_inactive_file 61440
[  293.098214][T16160] total_active_file 0
[  293.102214][T16160] total_unevictable 0
[  293.106282][T16160] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3620,pid=16159,uid=0
[  293.121081][T16160] Memory cgroup out of memory: Killed process 16159 (syz.4.3620) total-vm:93824kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  293.202240][T16190] loop5: detected capacity change from 0 to 1024
[  293.233958][T16190] EXT4-fs: inline encryption not supported
[  293.282571][T16190] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.3630: Allocating blocks 497-513 which overlap fs metadata
[  293.316130][T16189] EXT4-fs (loop5): pa ffff888106ddc5b0: logic 16, phys. 145, len 23
[  293.324183][T16189] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1
[  293.393563][   T29] kauditd_printk_skb: 433 callbacks suppressed
[  293.393580][   T29] audit: type=1326 audit(1762834489.530:142874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.457048][   T29] audit: type=1326 audit(1762834489.530:142875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.468253][T16203] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  293.481025][   T29] audit: type=1326 audit(1762834489.530:142876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.514265][   T29] audit: type=1326 audit(1762834489.530:142877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.538067][   T29] audit: type=1326 audit(1762834489.530:142878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.561756][   T29] audit: type=1326 audit(1762834489.530:142879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.585520][   T29] audit: type=1326 audit(1762834489.530:142880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.609233][   T29] audit: type=1326 audit(1762834489.530:142881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.633063][   T29] audit: type=1326 audit(1762834489.530:142882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.656774][   T29] audit: type=1326 audit(1762834489.530:142883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz.4.3632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb3b2f6c9 code=0x7ffc0000
[  293.694037][T16207] loop1: detected capacity change from 0 to 128
[  293.700880][T16207] vfat: Unknown parameter 'ÿ'
[  293.712489][T16210] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16210 comm=syz.4.3637
[  293.770809][T16210] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=16210 comm=syz.4.3637
[  293.890145][T16216] loop5: detected capacity change from 0 to 512
[  293.897238][T16216] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  293.908643][T16216] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  293.928534][T16216] EXT4-fs (loop5): 1 truncate cleaned up
[  294.425989][T16229] sd 0:0:1:0: device reset
[  294.662144][T16241] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  294.695863][T16227] syz.2.3642 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  294.710094][T16227] CPU: 1 UID: 0 PID: 16227 Comm: syz.2.3642 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  294.710126][T16227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  294.710139][T16227] Call Trace:
[  294.710145][T16227]  <TASK>
[  294.710153][T16227]  __dump_stack+0x1d/0x30
[  294.710240][T16227]  dump_stack_lvl+0xe8/0x140
[  294.710283][T16227]  dump_stack+0x15/0x1b
[  294.710301][T16227]  dump_header+0x81/0x220
[  294.710327][T16227]  oom_kill_process+0x342/0x400
[  294.710371][T16227]  out_of_memory+0x979/0xb80
[  294.710511][T16227]  try_charge_memcg+0x610/0xa10
[  294.710547][T16227]  obj_cgroup_charge_pages+0xa6/0x150
[  294.710572][T16227]  __memcg_kmem_charge_page+0x9f/0x170
[  294.710603][T16227]  __alloc_frozen_pages_noprof+0x188/0x360
[  294.710701][T16227]  alloc_pages_mpol+0xb3/0x260
[  294.710726][T16227]  ? alloc_pages_noprof+0x61/0x130
[  294.710757][T16227]  alloc_pages_noprof+0x90/0x130
[  294.710787][T16227]  __vmalloc_node_range_noprof+0x7a5/0xed0
[  294.710895][T16227]  __kvmalloc_node_noprof+0x483/0x670
[  294.710942][T16227]  ? ip_set_alloc+0x24/0x30
[  294.711014][T16227]  ? ip_set_alloc+0x24/0x30
[  294.711087][T16227]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  294.711129][T16227]  ip_set_alloc+0x24/0x30
[  294.711165][T16227]  hash_netiface_create+0x282/0x740
[  294.711261][T16227]  ? __pfx_hash_netiface_create+0x10/0x10
[  294.711303][T16227]  ip_set_create+0x3cc/0x970
[  294.711339][T16227]  ? __nla_parse+0x40/0x60
[  294.711414][T16227]  nfnetlink_rcv_msg+0x4c6/0x590
[  294.711467][T16227]  netlink_rcv_skb+0x123/0x220
[  294.711506][T16227]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  294.711548][T16227]  nfnetlink_rcv+0x167/0x16c0
[  294.711575][T16227]  ? kmem_cache_free+0xe4/0x3d0
[  294.711615][T16227]  ? __kfree_skb+0x109/0x150
[  294.711697][T16227]  ? nlmon_xmit+0x4f/0x60
[  294.711728][T16227]  ? consume_skb+0x49/0x150
[  294.711762][T16227]  ? nlmon_xmit+0x4f/0x60
[  294.711854][T16227]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  294.711897][T16227]  ? __dev_queue_xmit+0x1200/0x2000
[  294.711930][T16227]  ? __dev_queue_xmit+0x182/0x2000
[  294.712032][T16227]  ? do_user_addr_fault+0xd9e/0x1080
[  294.712057][T16227]  ? do_sync_core+0x39/0x60
[  294.712112][T16227]  ? ref_tracker_free+0x37d/0x3e0
[  294.712165][T16227]  ? __netlink_deliver_tap+0x4dc/0x500
[  294.712240][T16227]  netlink_unicast+0x5c0/0x690
[  294.712329][T16227]  netlink_sendmsg+0x58b/0x6b0
[  294.712351][T16227]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.712374][T16227]  __sock_sendmsg+0x145/0x180
[  294.712410][T16227]  ____sys_sendmsg+0x31e/0x4e0
[  294.712510][T16227]  ___sys_sendmsg+0x17b/0x1d0
[  294.712555][T16227]  __x64_sys_sendmsg+0xd4/0x160
[  294.712588][T16227]  x64_sys_call+0x191e/0x3000
[  294.712621][T16227]  do_syscall_64+0xd2/0x200
[  294.712650][T16227]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  294.712737][T16227]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  294.712788][T16227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.712819][T16227] RIP: 0033:0x7fca4d19f6c9
[  294.712840][T16227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.712867][T16227] RSP: 002b:00007fca4bc07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.712970][T16227] RAX: ffffffffffffffda RBX: 00007fca4d3f5fa0 RCX: 00007fca4d19f6c9
[  294.712989][T16227] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  294.713004][T16227] RBP: 00007fca4d221f91 R08: 0000000000000000 R09: 0000000000000000
[  294.713017][T16227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.713030][T16227] R13: 00007fca4d3f6038 R14: 00007fca4d3f5fa0 R15: 00007fffdaa61388
[  294.713052][T16227]  </TASK>
[  294.713079][T16227] memory: usage 307200kB, limit 307200kB, failcnt 1670
[  294.837757][T16239] loop1: detected capacity change from 0 to 512
[  294.838904][T16227] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[  294.856554][T16239] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  294.858749][T16227] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[  294.858764][T16227] Memory cgroup stats for /syz2:
[  294.887918][T16227] cache 0
[  295.110493][T16252] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3648'.
[  295.114123][T16227] rss 0
[  295.128732][T16227] shmem 0
[  295.131681][T16227] mapped_file 0
[  295.135150][T16227] dirty 0
[  295.138143][T16227] writeback 0
[  295.141578][T16227] workingset_refault_anon 173
[  295.146330][T16227] workingset_refault_file 1989
[  295.151103][T16227] swap 188416
[  295.154404][T16227] swapcached 0
[  295.157971][T16227] pgpgin 400478
[  295.161443][T16227] pgpgout 400460
[  295.165052][T16227] pgfault 488692
[  295.166625][T16239] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, 
[  295.168636][T16227] pgmajfault 124
[  295.168626][T16239] block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  295.169032][T16239] EXT4-fs (loop1): 1 truncate cleaned up
[  295.176955][T16227] inactive_anon 0
[  295.176967][T16227] active_anon 0
[  295.176978][T16227] inactive_file 73728
[  295.206149][T16227] active_file 0
[  295.209638][T16227] unevictable 0
[  295.213116][T16227] hierarchical_memory_limit 314572800
[  295.218687][T16227] hierarchical_memsw_limit 9223372036854771712
[  295.224897][T16227] total_cache 0
[  295.228436][T16227] total_rss 0
[  295.231738][T16227] total_shmem 0
[  295.235254][T16227] total_mapped_file 0
[  295.237064][T16254] loop5: detected capacity change from 0 to 128
[  295.239543][T16227] total_dirty 0
[  295.249246][T16227] total_writeback 0
[  295.253074][T16227] total_workingset_refault_anon 173
[  295.258335][T16227] total_workingset_refault_file 1989
[  295.263633][T16227] total_swap 188416
[  295.267560][T16227] total_swapcached 0
[  295.271502][T16227] total_pgpgin 400478
[  295.275569][T16227] total_pgpgout 400460
[  295.279657][T16227] total_pgfault 488692
[  295.283774][T16227] total_pgmajfault 124
[  295.287900][T16227] total_inactive_anon 0
[  295.292087][T16227] total_active_anon 0
[  295.296112][T16227] total_inactive_file 73728
[  295.300561][T16254] vfat: Unknown parameter 'ÿ'
[  295.300622][T16227] total_active_file 0
[  295.300632][T16227] total_unevictable 0
[  295.313364][T16227] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3642,pid=16226,uid=0
[  295.328111][T16227] Memory cgroup out of memory: Killed process 16226 (syz.2.3642) total-vm:93824kB, anon-rss:1136kB, file-rss:22248kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  295.454534][T16272] loop4: detected capacity change from 0 to 512
[  295.471856][T16272] ext4 filesystem being mounted at /139/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  295.721897][T16307] loop1: detected capacity change from 0 to 512
[  295.735578][T16307] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  295.753651][T16307] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[  295.769534][T16307] EXT4-fs (loop1): 1 truncate cleaned up
[  296.056115][T16362] loop5: detected capacity change from 0 to 128
[  296.063887][T16362] vfat: Unknown parameter 'ÿ'
[  296.370603][T16411] loop4: detected capacity change from 0 to 1024
[  296.377356][T16411] EXT4-fs: Ignoring removed orlov option
[  296.539364][T16411] ==================================================================
[  296.547509][T16411] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  296.556887][T16411] 
[  296.559217][T16411] write to 0xffff88811a096d10 of 4 bytes by task 16413 on cpu 1:
[  296.567042][T16411]  writeback_single_inode+0x150/0x3f0
[  296.572451][T16411]  sync_inode_metadata+0x5b/0x90
[  296.577439][T16411]  generic_buffers_fsync_noflush+0xd9/0x120
[  296.583377][T16411]  ext4_sync_file+0x1ab/0x690
[  296.588083][T16411]  vfs_fsync_range+0x10d/0x130
[  296.592905][T16411]  ext4_buffered_write_iter+0x34f/0x3c0
[  296.598465][T16411]  ext4_file_write_iter+0x387/0xf60
[  296.603707][T16411]  iter_file_splice_write+0x666/0xa60
[  296.609097][T16411]  direct_splice_actor+0x156/0x2a0
[  296.614220][T16411]  splice_direct_to_actor+0x312/0x680
[  296.619690][T16411]  do_splice_direct+0xda/0x150
[  296.624478][T16411]  do_sendfile+0x380/0x650
[  296.628919][T16411]  __x64_sys_sendfile64+0x105/0x150
[  296.634221][T16411]  x64_sys_call+0x2bb4/0x3000
[  296.638911][T16411]  do_syscall_64+0xd2/0x200
[  296.643421][T16411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.649328][T16411] 
[  296.651655][T16411] read to 0xffff88811a096d10 of 4 bytes by task 16411 on cpu 0:
[  296.659284][T16411]  generic_buffers_fsync_noflush+0x80/0x120
[  296.665192][T16411]  ext4_sync_file+0x1ab/0x690
[  296.669875][T16411]  vfs_fsync_range+0x10d/0x130
[  296.674654][T16411]  ext4_buffered_write_iter+0x34f/0x3c0
[  296.680230][T16411]  ext4_file_write_iter+0x387/0xf60
[  296.685444][T16411]  iter_file_splice_write+0x666/0xa60
[  296.690854][T16411]  direct_splice_actor+0x156/0x2a0
[  296.695979][T16411]  splice_direct_to_actor+0x312/0x680
[  296.701464][T16411]  do_splice_direct+0xda/0x150
[  296.706246][T16411]  do_sendfile+0x380/0x650
[  296.710682][T16411]  __x64_sys_sendfile64+0x105/0x150
[  296.715899][T16411]  x64_sys_call+0x2bb4/0x3000
[  296.720589][T16411]  do_syscall_64+0xd2/0x200
[  296.725115][T16411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.731019][T16411] 
[  296.733340][T16411] value changed: 0x00000070 -> 0x00000002
[  296.739056][T16411] 
[  296.741383][T16411] Reported by Kernel Concurrency Sanitizer on:
[  296.747534][T16411] CPU: 0 UID: 0 PID: 16411 Comm: syz.4.3662 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  296.757348][T16411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  296.767421][T16411] ==================================================================
[  296.833023][T16411] netlink: 172 bytes leftover after parsing attributes in process `syz.4.3662'.
[  297.126620][ T3416] usb 2-1: device descriptor read/8, error -110
[  297.375577][ T3416] usb 2-1: SetAddress Request (31) to port 0
[  297.381614][ T3416] usb 2-1: new SuperSpeed USB device number 31 using vhci_hcd
[  298.485559][ T3401] usb 10-1: device descriptor read/8, error -110
[  298.735597][ T3401] usb 10-1: SetAddress Request (21) to port 0
[  298.741759][ T3401] usb 10-1: new SuperSpeed USB device number 21 using vhci_hcd
[  302.495590][ T3416] usb 2-1: device descriptor read/8, error -110
[  302.605567][ T3416] usb 2-1: new SuperSpeed USB device number 31 using vhci_hcd
[  303.855544][ T3401] usb 10-1: device descriptor read/8, error -110
[  303.965524][ T3401] usb 10-1: new SuperSpeed USB device number 21 using vhci_hcd