last executing test programs:

31.358365316s ago: executing program 2 (id=357):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000))
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000400)={0xff02, 0x0, 0x0, 0xe0, 0x1c, "0500ff00001300"})
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0xa)

31.318491156s ago: executing program 2 (id=359):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
unlink(0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffdbe)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0xfffffffffffffffe}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010325bd70000000000001000000080007000000000008000300", @ANYRES32=0x0, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x20000004}, 0x80)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x52, &(0x7f00000006c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd604dd318001c0600fc000000000000000000000000000001fe8000000000000000000000000000aafffe4001", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="7002000090780000fe05e6673f000000bb6a5754afa1739b9253179c608e985dcf5bf9426431627f7802d02052283feadb9b6ee50d3fc32d397c5b5fb950a62f93f1789168951012688994bf26f074cb32ece35989f6b297827c61c88de60234a87b8dd1e32903ab2a5299bd647df9063cdce4adc2f93485169c854072cb1aaa66dec95366806d4afab5c97508f71086717135ac4e872292862f647acd86314d0af59877b2ebe635b1"], 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0xffffffff}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x6d)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="1400000010000c0000000000000000000000000a14000000030a000000000000000000000000000020000000000a010800000000000000000a0000000900010073797a310000000048000000030a010100000000000000000a000000080007006e61740014000480080002400000000008000140000000040900010073797a3100000000090003"], 0xa4}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
socket$inet6_udplite(0xa, 0x2, 0x88)

31.276123276s ago: executing program 2 (id=361):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x20075, r0}, 0x38)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'hsr0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b032d00e0ff25000200475400f6a13bb1000000080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r4, 0xe04, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x10}, @void, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x51}, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r7, &(0x7f0000000140)='./file0\x00')
openat(r7, &(0x7f0000000700)='./file0/../file0\x00', 0x515a02, 0x52abe154ad664f64)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f0000000500)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x3, @loopback, 0x7}, {0xa, 0x4e23, 0xfffffffe, @private0, 0x2}, 0xffffffffffffffff, 0xf}}, 0x48)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
io_setup(0x6, &(0x7f0000001380)=<r8=>0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
io_submit(r8, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r9, 0x0}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
pidfd_send_signal(0xffffffffffffffff, 0x9, 0x0, 0x0)
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r10, 0x10001, 0x0)

30.095398841s ago: executing program 3 (id=373):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000080700000000020202000900030073797a32000000000900010073797e"], 0x2c}, 0x1, 0x40030000000000}, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00w'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
r6 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
fcntl$setlease(r6, 0x400, 0x1)
open$dir(&(0x7f0000000140)='./file0\x00', 0x0, 0x100)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r6, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x80)

30.073682771s ago: executing program 2 (id=374):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0xfffffffffffffea7, 0x0, 0x0, 0x0, 0x3, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x4a16, &(0x7f00000003c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC=r0, @ANYRESDEC=r0, @ANYRES64, @ANYRESHEX=r0], 0x5, 0x31e, &(0x7f0000000800)="$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")
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

30.033467471s ago: executing program 3 (id=376):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a88000000060a0b040000000000000000020000005c00048058000180080001006c6f67004c00028006000440000c0000080003400000000706000140069c00000600014000030000080005400000000600000140000300000600014000080000080003400000000108000540000000030900010073797a30000000000900020073797a32"], 0xb0}}, 0x0) (fail_nth: 9)

29.77500237s ago: executing program 2 (id=377):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (fail_nth: 5)

29.541304869s ago: executing program 3 (id=380):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180300002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7ff, 0x200006, 0xea6, 0x499, 0x59c})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_MM_MAP(0x41, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000100)={'team0\x00', <r7=>0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0xff, 0x4, 0x6, 0x2}, 0x4, r7}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r9, 0xc0105500, &(0x7f0000000000)={0x5, 0xf, 0x2fe, 0x4000, 0xffffffffffffff47, 0x5, 0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r7, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r0}, 0x10)
syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x4, 0x0, 0x3}, &(0x7f00000003c0)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x19d780})

29.337608228s ago: executing program 3 (id=387):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0xfffffffffffffea7, 0x0, 0x0, 0x0, 0x3, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x4a16, &(0x7f00000003c0)=ANY=[@ANYRES16=0x0, @ANYRESDEC=r0, @ANYRESDEC=r0, @ANYRES64, @ANYRESHEX=r0], 0x5, 0x31e, &(0x7f0000000800)="$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")
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

29.302345838s ago: executing program 3 (id=390):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x73b, 0x200}, 0x280, 0x0, 0xfffffffe, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000c"], 0x24}}, 0x0)

29.223778678s ago: executing program 2 (id=393):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x10b})
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x7, &(0x7f0000000080)=0x3, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f00000003c0)=0x1, 0xfc9c)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x1c)
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/49, 0x31}], 0x1, 0xff, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'rose0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$pokeuser(0x6, r6, 0x358, 0xffffffff863da910)
capset(&(0x7f00000002c0)={0x20080522, r6}, &(0x7f0000000340)={0x7, 0x7, 0x6, 0x8, 0x0, 0x2})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7a3a, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0x15, &(0x7f0000001480)=ANY=[@ANYBLOB="1800000001000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001df0000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r8}, 0xc)
recvmmsg(r5, &(0x7f0000001140), 0x700, 0x2, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000380)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd602e5cea00403c0020010000000000000000000000000000ff020000000000000000000000000001000300000000"], 0x0)

29.223674938s ago: executing program 32 (id=393):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x10b})
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x7, &(0x7f0000000080)=0x3, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f00000003c0)=0x1, 0xfc9c)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e2b, @local}, 0x1c)
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/49, 0x31}], 0x1, 0xff, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'rose0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$pokeuser(0x6, r6, 0x358, 0xffffffff863da910)
capset(&(0x7f00000002c0)={0x20080522, r6}, &(0x7f0000000340)={0x7, 0x7, 0x6, 0x8, 0x0, 0x2})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7a3a, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0x15, &(0x7f0000001480)=ANY=[@ANYBLOB="1800000001000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001df0000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r8}, 0xc)
recvmmsg(r5, &(0x7f0000001140), 0x700, 0x2, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000380)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd602e5cea00403c0020010000000000000000000000000000ff020000000000000000000000000001000300000000"], 0x0)

29.106755447s ago: executing program 3 (id=398):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
syz_clone(0x8001000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x8000, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

29.098076907s ago: executing program 33 (id=398):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
syz_clone(0x8001000, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x8000, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

3.609259174s ago: executing program 5 (id=751):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003"], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010125bd70000000000000000000", @ANYRES32=r7], 0x20}}, 0x0)
socket$kcm(0x10, 0x2, 0x0)

3.250628163s ago: executing program 5 (id=754):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)

2.905835471s ago: executing program 6 (id=764):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003"], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010125bd70000000000000000000", @ANYRES32=r7], 0x20}}, 0x0)
socket$kcm(0x10, 0x2, 0x0)

2.393791269s ago: executing program 5 (id=769):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x1, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
personality(0x5000007)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
unshare(0x68040200)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000000)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@usrquota}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$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")
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/asound/seq/clients\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

2.339487059s ago: executing program 0 (id=770):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x9, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x100000}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x100010, r0, 0x4bc48000)
splice(r2, 0x0, r3, 0x0, 0xbfd1, 0x1)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161842, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000000))
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)

2.293866799s ago: executing program 6 (id=771):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_create(0x0, 0x0, 0x0)
timer_getoverrun(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x22, &(0x7f0000000380), 0x4)
sendmmsg$inet(r1, &(0x7f0000000800)=[{{&(0x7f0000000300)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1f4}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001080)="e9", 0x20000081}], 0x1}}], 0x2, 0x2400c040)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xb, 0xff, 0x2, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x9, &(0x7f00000003c0)=[{0x6, 0x3, 0xff, 0x5}, {0x8001, 0x5, 0x8, 0x5}, {0x9, 0x2, 0x1, 0x5}, {0x1, 0xb, 0xf1, 0x9}, {0x7, 0x5, 0x2, 0x1}, {0x6, 0x40, 0x7, 0x7}, {0x7ff, 0x0, 0x2, 0x7}, {0x98c, 0x1, 0xce, 0x8}, {0x8001, 0x40, 0x7, 0x7fff}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000440)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000240)={r7, 0x3, r0, 0x9})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r5}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r5, 0x0, &(0x7f0000000340)=""/55}, 0x20)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000080), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r8 = socket$kcm(0x10, 0x2, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

2.095630378s ago: executing program 6 (id=775):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f0000000000)=ANY=[], 0x3, 0x7bf, &(0x7f0000000d80)="$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")
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)

2.045911038s ago: executing program 5 (id=776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000900)={0x1d, r3, 0x1}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYRES64=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r5, 0x80080400)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r6=>r1, {0xfffffffffffffff1}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_DEL(r6, 0x2, r5)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {}, {0x2, 0xffff}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x1ff}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x1}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40014}, 0x10)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r4}, 0x10)
getpid()
syz_read_part_table(0x5f8, &(0x7f0000000bc0)="$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")

1.924672098s ago: executing program 6 (id=779):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)

1.908090657s ago: executing program 5 (id=781):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x10f, @time, 0x0, {0x0, 0x7}})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0xc0bc5310, &(0x7f0000000040)={0x0, @time, 0x0, {0xd}, 0x6, 0x0, 0x1})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.738476806s ago: executing program 4 (id=785):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522)

1.692198156s ago: executing program 4 (id=787):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_getoverrun(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000800)=[{{&(0x7f0000000300)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1f4}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001080)="e9", 0x20000081}], 0x1}}], 0x2, 0x2400c040)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000240)={0x0, 0x3, r0, 0x9})
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080), 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

1.642240596s ago: executing program 1 (id=788):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f00000002c0), 0x4, 0x76b, &(0x7f0000001400)="$eJzs3M1rXOUaAPDnnGaSfuTeyYUL9+pChBZaKJ0kzaZdNW7cFQoFtzUkJyHkJBMyk9qJhbauhdpsFARR1y7dCqX+Ae6koOBeEK1xIW5GzmSS0piZpEnaadPfD07P856v531mDm/nQN4TwCvrzeKfJGIwIq5ERLm9PY2I/lZ0NOL2+nFrj25OFksSzebVX5PitFhrljevlbTXJ6J1Svw/Ih6UIs5+8M+8tcbK3ESeZ0vt9nB9fnG41lg5Nzs/MZPNZAujYxdHLoyNXRgZ27GG/+2y1lPvXDx277u3V1e//7p+942+c0mMt+qOdm27vMxTWf9MSjG+ZfvCs0jWQ0mXfUefYz8AAOiu+J1/JCL6Wr9Sy3GkFQEAAACHSXOguaN041gAAADgJZV4rgcAAIBDbuPvADbm9j6rebCd/PJWRAxtl7+vNYc44miUIuL4WvLEzIRk/TTYl9t3IuL++Nb778viDru9z2uPbGk/OUe6f59X5yDcL8af8e3Gn3Rz/Iltxp++jXcn7FPn8e9x/iMdxr8ru8zxzWevlTrmvxPxet92+ZPN/EmH/O+2op0/hburH97rtK/5RcTpbf//SZ7I1eX9EOPTs3m31w/Eg7/OPOxW//FO+ZPu9S/uWPm699d+n+s0lhT5z5zs8P3f6py/uCc+avcjjYh77XXRXt2S4+T8D992q38qormX7//zXdb/01cDN3Z5KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALSkETEYSVrZjNO0Uok4ERH/jeNpXq3Vz05Xlxemin0RQ1FKp2fzbCQiyuvtpGiPtuLH7fNb2mMR8Z8fj60nnc2zymQ1n+p18QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGw6ERGDkaSViEgj4o9ymlYqEX27OHfgOfQPAAAAOCBDve4AAAAA8Mx5/gcAAIDDb6/P/8kB9wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA41K5cvlwszbVHNyeL9tT1xvJc9fq5qaw2V5lfnqxMVpcWKzPV6kyeVSar8ztdL69WF0cvxvKN4XpWqw/XGivX5qvLC/Vrs/MTM9m1rPRcqgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBpDbaWJK1ERNqK07RSifhXRAxFKZmezbORiPh3RDwslwaK9mivOw0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCBqzVW5ibyPFsSCF6KoL99574o/dlbcCsiXoBudAl6PDABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANATtcbK3ESeZ0u1XvcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA3kp/TiKiWE6XTw1u3duf/FlurSPivU+vfnxjol5fGi22/7a5vf5Je/v5XvQfAAAAXgmXnubgjef0jed4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA3ao1VuYm8jxb2l9wKRorzaTDMb2uEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2Ju/AwAA///+/bx6")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x2)
socket(0x10, 0x3, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)

1.639405886s ago: executing program 4 (id=789):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='mm_page_alloc\x00', r0}, 0x10)
unshare(0x46060480)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x8, 0x0, 0x2}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r3, 0x0)
ftruncate(r3, 0xc17a)
io_setup(0x200, &(0x7f0000000140))
syz_emit_ethernet(0x7a, &(0x7f0000000180)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x40, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x500, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @private1, [@hopopts={0x3a}, @routing]}}}}}}}, 0x0)

1.549152516s ago: executing program 1 (id=790):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1008014, &(0x7f0000000000)=ANY=[], 0x3, 0x7bf, &(0x7f0000000d80)="$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")
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)

1.487439056s ago: executing program 4 (id=791):
openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", "5d362ced", "bc3a20b10f4ad11e"}, 0x38)
close(r1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df85000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

1.487100006s ago: executing program 1 (id=792):
syz_read_part_table(0x5f8, &(0x7f0000000bc0)="$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")

1.478004965s ago: executing program 0 (id=793):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000001ff0), 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB='\x00\x00\x00\x00\a\x00\x00\x00\x00'], 0x48}}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={0xffffffffffffffff, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000100", @ANYRES32, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x100000, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d00)=ANY=[@ANYRES64=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xedfe504308fea982, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000c40)={r2, &(0x7f0000000b80)="d065f8e509484f69ed5a8c62ed0c5ef8f6494cb5a9", &(0x7f0000000bc0)=""/80}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
writev(r6, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

1.273746815s ago: executing program 5 (id=794):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x1, 0x7b1, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
truncate(&(0x7f0000000340)='./file1\x00', 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
personality(0x5000007)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
unshare(0x68040200)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000000)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@usrquota}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$eJzs3c9rHG0dAPDvzCYxed9oWpFii2LAQwvS/KjFqqe2F3soWLAHEQ8NTVJDN21oUrC1YAoeFBREvIr04j/gXYpXbyKoN89CFYl4UOnKzM60a3Y32ebN7mwznw/M9plnZvd5vjv7dJ5nNs9OALU1nz2kEWcj4k4SMdexbTbaG+eL/fb+8exutiTRan3j70kkRV65/+vi3w+zhyRiOiJ+fz3ik43ucrefPL2/0my1fT9icWdza3H7ydOLG5sr99burT1YvvTly1eWvrJ8eflY4izjunHz65/5yQ++86X1PzQvJnE1bk9+bzX2xXFc5mM+XhchduZPRMSVLNHjfXnflCEkFdeDo2kUn8fJiDgTc9HI19rmYuPHlVYOGKpWI6IF1FSi/UNNlf2Acmw/jHHwOHt1rT0A6o5/on1tJKbzsdEHe0nHyKg93j11DOVnZfz32blfZEv0uQ4xcQzl9LP7PCI+3Sv+JK/bqfwqThZ/GmnH87L0UkRMFe/FYOP/ya6c+X3ro/78vUv8ncchi/9q8W+Wf/2I5VcdPwD19PJacSLfzdbenv+ynmHZ/4ke/Z/ZHueuo6j6/Ne//1ee76fza+Tpvn5Y1t+51fsluzo5f/nRjZ/1K7+z/5ctWfllX3AUXj2POLcv/h/mHb3kzfFPehz/bJc7A5bxtT/+7Ua/bVXH33oRcb7n+OdtjzZLLe5sbpV5+76fXFzfaK4ttR97lvGb3337V/3Krzr+7PhHn/HfQcc/y9sasIxf33qx2W/b7KHxp3+dSm7nqaki57srOzuPliOmkpvFLh35lw6uS7lP+RpZ/Bc+37v994q/KCo/0Lv/9270t/XN+3v99hv4+HcPnTKvWweHe6gs/tU+n//Djv9PByzjX996/Nl9WTNl4qD4Z7pfKtl95wgBAAAAAACgPtL8O9gkXXiTTtOFhfYc3k/FB2nz4fbOF9YfPn6wGnEh/3vIybT8pnuuvZ5k68vF38OW65f2rX8xIk5HxM8bM/n6wt2HzdWqgwcAAAAAAAAAAAAAAAAAAIAx8WEx/7+8T/U/G+35/wPZOTPk2gFDN8wbzAHjTfuH+srbf1p1LYAqOP9DfWn/UF/aP9SX9g/1pf1DfWn/UF/aP9SX9g8AAAAAJ9Lpz738cxIRu1+dyZfMVLFtstKaAcP27m18fij1AEavMdKnAePkzVf/pv9D7QzU//938eOAw68OUIGkV2beOWgd3Phf9nwmAAAAAAAAAAAAADAE58+a/w91lcZvq64CUJHuifxn9wac6Oc3AOA956f/ob4+0hjfBQI4EQ6bxT/db4P5/wAAAAAAAAAAAAAwMrP5kqQLxS1AZyNNFxYiPh4Rp2IyWd9ori1FxCci4k+NyY9l68tVVxoAAAAAAAAAAAAAAAAAAABOmO0nT++vNJtrjzoT/+nKOdmJ8i6o41KfzkQkoy90JiLGIfbhJCY6cpKI3ezIj0XFHm3HWFQjzatR8X9MAAAAAAAAAAAAAAAAAABQQx1zj3s798sR1wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARu/t/f+PnkgOeZ2qYwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3k//CwAA//9vNjw9")
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/asound/seq/clients\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

1.191359825s ago: executing program 0 (id=795):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000001c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001c00)=@getroute={0x14, 0x1a, 0x8, 0x70bd27, 0x25dfdbfd, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0xc8c0)
sendmsg$nl_route(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="280000006a006bb20000000000000000000000000000010008000500", @ANYRES32=0x0, @ANYBLOB='\b\x00\n'], 0x28}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open$dir(&(0x7f0000000280)='./file0\x00', 0x80000, 0x40)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000002c0)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r6}, &(0x7f0000000100), &(0x7f0000000140)}, 0x20)

1.139531974s ago: executing program 0 (id=796):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r2}, 0x10)
creat(&(0x7f00000000c0)='./bus\x00', 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x7ca, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback, @local, [@srh]}}}}}}}, 0x0)

1.138987964s ago: executing program 1 (id=797):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401)
ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522)

1.098945424s ago: executing program 0 (id=798):
statx(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x400, 0x800, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x2, &(0x7f0000000280)="1a3667feee000000", 0x8)
sendto$inet6(r2, &(0x7f0000000500)="a4", 0xffe0, 0x4c, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close(r0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r4, 0x0, 0x0, 0x20048004, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000003c0)='%pi6   \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r7, <r8=>0xffffffffffffffff}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffff0b867b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r9, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r9)
r10 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r10, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.083459694s ago: executing program 4 (id=799):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_getoverrun(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x22, &(0x7f0000000380), 0x4)
sendmmsg$inet(r1, &(0x7f0000000800)=[{{&(0x7f0000000300)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1f4}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001080)="e9", 0x20000081}], 0x1}}], 0x2, 0x2400c040)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xb, 0xff, 0x2, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x9, &(0x7f00000003c0)=[{0x6, 0x3, 0xff, 0x5}, {0x8001, 0x5, 0x8, 0x5}, {0x9, 0x2, 0x1, 0x5}, {0x1, 0xb, 0xf1, 0x9}, {0x7, 0x5, 0x2, 0x1}, {0x6, 0x40, 0x7, 0x7}, {0x7ff, 0x0, 0x2, 0x7}, {0x98c, 0x1, 0xce, 0x8}, {0x8001, 0x40, 0x7, 0x7fff}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000440)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000240)={r7, 0x3, r0, 0x9})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r5}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r5, 0x0, &(0x7f0000000340)=""/55}, 0x20)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000080), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r8 = socket$kcm(0x10, 0x2, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r8, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

1.003451394s ago: executing program 1 (id=800):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6(0xa, 0x2, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000000), 0x0, 0x40a000)
ioctl$HIDIOCGUCODE(r2, 0xc018480d, &(0x7f0000000080)={0x3, 0x3, 0x2, 0x9, 0x4, 0x10001})
socket$key(0xf, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="000000000064740000000000000000007b8af8ff00000000bfa20000000000000a000000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="40000000120005010000010000000000050019000000000028001a"], 0x40}}, 0x0)
socket$kcm(0x11, 0xa, 0x300)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020000000000000000020000000900020073797a30000000000900010041175bd476e3c1d3ad7a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001000000000000"], 0x80}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
pipe(&(0x7f0000000100))
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r10, @ANYBLOB='\b\x00\n\x00', @ANYRESDEC=r2, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000280)=ANY=[@ANYBLOB="0180c2000003ffffffffffff86dd60010100000c1100fe8000000000000000000000000000bbff0200005b0394a444b262c40000000100000e22000c907801080001"], 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r11=>0x0})
mq_open(&(0x7f0000000240)='\x00', 0x40, 0x0, &(0x7f00000007c0)={0x4, 0xffffffff, 0x9})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r11, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x9, 0x45, 0x3ff, 0x10000, 0x3, 0x8, 0x4, 0xa0000, 0x5, 0xa0000001, 0x59bc9fd6, 0x2, 0x2, 0x8000, 0x8, 0x4, 0x8, 0x6, 0x114b6000, 0xfffffffe, 0x2a70, 0xffff73cc, 0x81, 0x5, 0x0, 0xa, 0x45, 0x0, 0x8, 0x5, 0xba44, 0x2, 0xe, 0x80000000, 0x2, 0x4, 0x5, 0x3, 0xffff, 0x3, 0xfffffff8, 0x5, 0x8, 0x1a0055ee, 0x1, 0x1, 0xffff4226, 0x200000, 0x0, 0x22cc, 0x101, 0x4, 0x1, 0x1, 0x800, 0xf9, 0x9, 0x8, 0x2, 0x8, 0x2f, 0xfffffff8, 0x0, 0x101, 0x9, 0x7, 0xc5, 0x4, 0x5, 0xffffffff, 0x6, 0x5, 0x5, 0x5, 0x2, 0x9b58, 0x4, 0xb, 0x4be, 0x4, 0x100, 0xa, 0xca6, 0x9fa7, 0xfffeffff, 0x38, 0xc, 0xfffffffe, 0x7, 0x44d, 0x7, 0x200, 0x8, 0x401, 0x7, 0x45, 0x3, 0x9, 0x0, 0x7, 0x46, 0x9, 0x1, 0x9, 0x4, 0x6, 0x7, 0x8002, 0x7, 0x17, 0x1901, 0xc3c, 0x1, 0x28000000, 0x4000000, 0x7, 0xfad, 0x7, 0x8, 0x0, 0x5, 0x10, 0x400, 0xd58, 0x4, 0x422dd3f4, 0x4, 0x8, 0x2, 0x8, 0x8, 0xea, 0x0, 0x45ba, 0x9, 0x864b, 0xfffffffc, 0x7, 0x9, 0x8001, 0x7, 0x81, 0x3, 0x800, 0x7, 0xffffff80, 0x43, 0x8, 0x1, 0x6, 0x5, 0x9, 0x7fffffff, 0x4, 0x324f035, 0x6, 0x0, 0x7c1, 0x136, 0x6, 0x5, 0x4, 0x3ff, 0x4, 0xb, 0x2, 0x10001, 0xfffffffc, 0x5, 0x4, 0x400, 0x101, 0xffffffff, 0x1b, 0xd589, 0xffffff81, 0x0, 0x4, 0x0, 0x300, 0x8, 0x60000000, 0xd3d, 0x0, 0xfffffffe, 0x0, 0x81, 0x2, 0x55, 0x4000004, 0xbc6, 0x8, 0x8, 0x28a6a52, 0x1ff, 0xb, 0x7fff, 0x9, 0x2e4c20b6, 0x0, 0x4, 0x9, 0x7, 0x4, 0x8, 0x0, 0x6, 0x8, 0x3, 0x7, 0x4, 0x9, 0x8, 0xfffffffa, 0x76e8e800, 0x800, 0x400, 0x6, 0x0, 0xcc6, 0xfffffffb, 0x8000, 0xffffff00, 0x894, 0x7, 0xfb3, 0x6, 0x6, 0x2, 0x9, 0x10001, 0x9, 0x4, 0x8, 0x5d, 0x1000000, 0x7, 0x656, 0x8008, 0x80000001, 0x384, 0x9, 0x58a, 0x80000000, 0xe08, 0x0, 0x1, 0x2c821159, 0x0, 0x9, 0xfff, 0x0, 0x6, 0x0, 0x7f]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x6, 0x0, 0x2, 0x8, 0x0, 0xc}, {0xfd, 0x1, 0x0, 0x5, 0x5e1d, 0x8}, 0x3ff, 0x8, 0x99}}]}}]}, 0x45c}}, 0x8840)
setsockopt$MRT_INIT(r3, 0x0, 0xc8, &(0x7f0000000000), 0x4)

1.003181954s ago: executing program 6 (id=801):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f00000002c0), 0x4, 0x76b, &(0x7f0000001400)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x2)
socket(0x10, 0x3, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, 0x0, 0x0)

585.936032ms ago: executing program 4 (id=802):
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x2010000, &(0x7f0000000c80)=ANY=[@ANYRESDEC, @ANYBLOB="4ffef8a5fe039b069f473594fba9121a07732b", @ANYRESOCT, @ANYRES8, @ANYRES32, @ANYRES64, @ANYRES64, @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xdb, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f0000000200)='./bus/file0\x00', 0x111)
rename(&(0x7f0000000100)='./bus/file0\x00', &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') (fail_nth: 4)

67.47284ms ago: executing program 6 (id=803):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x9, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x100000}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000, 0x100010, r0, 0x4bc48000)
splice(r2, 0x0, r3, 0x0, 0xbfd1, 0x1)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161842, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000000))
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)

56.50783ms ago: executing program 0 (id=804):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff018004"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a85320, &(0x7f0000000c80)={{0x80}, 'port1\x00', 0xc8, 0x10, 0x0, 0x0, 0x0, 0x4000, 0x0, 0xbf})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000840)=@filter={'filter\x00', 0x2, 0x4, 0x3d0, 0xffffffff, 0xd0, 0x1e8, 0x0, 0xfeffffff, 0xffffffff, 0x300, 0x300, 0x300, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@remote, @mcast1, [], [0xff000000], 'macsec0\x00', 'wg0\x00', {}, {0xff}, 0x0, 0x0, 0x5}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@uncond, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b667f10900000000000000e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@dst={{0x48}, {0x9, 0x5, 0x1, [0x4, 0x3, 0x6, 0x2, 0xfffd, 0x80, 0x6, 0xf96e, 0x8, 0x8000, 0xb, 0x8, 0xb, 0x4, 0x78, 0xff], 0x7}}]}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x430)
sendto$inet6(r5, &(0x7f00000002c0)="9e", 0x1a000, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x0, 0x10}, 0xc)
sendmsg$inet6(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x34000}], 0x1}, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b000000"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',ignoreqv,dfltuid=', @ANYRESHEX=0x0, @ANYBLOB="2c66614d1c653d6d4d61702c6b"])
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r7, 0x5607, 0x6)
ioctl$VT_ACTIVATE(r7, 0x5606, 0x4)

0s ago: executing program 1 (id=805):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x1, 0x7b1, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
truncate(&(0x7f0000000340)='./file1\x00', 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
personality(0x5000007)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
unshare(0x68040200)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000000)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@usrquota}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$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")
openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/asound/seq/clients\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

kernel console output (not intermixed with test programs):

adv_slave_0 (retrying later): interface not active
[   89.456174][ T4640] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.463229][ T4640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.489239][ T4640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.531255][ T4640] hsr_slave_0: entered promiscuous mode
[   89.537898][ T4640] hsr_slave_1: entered promiscuous mode
[   89.543925][ T4640] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.551578][ T4640] Cannot create hsr debugfs directory
[   89.633918][ T4626] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   89.644903][ T4626] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   89.654564][ T4626] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   89.663857][ T4626] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   89.687049][ T4640] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   89.696391][ T4640] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   89.706197][ T4640] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   89.718427][ T4640] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   89.748952][ T4640] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.756169][ T4640] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.817999][ T4626] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.832619][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.850111][ T4626] 8021q: adding VLAN 0 to HW filter on device team0
[   89.865677][ T3412] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.872793][ T3412] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.886048][ T4640] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.896346][ T4705] validate_nla: 1 callbacks suppressed
[   89.896364][ T4705] netlink: 'syz.4.417': attribute type 10 has an invalid length.
[   89.898402][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.916694][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.951663][ T4640] 8021q: adding VLAN 0 to HW filter on device team0
[   89.968831][ T3412] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.976132][ T3412] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.980303][ T4707] loop4: detected capacity change from 0 to 1024
[   89.990554][ T4707] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   89.993420][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.007868][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.011758][ T4693] dccp_close: ABORT with 15584 bytes unread
[   90.025028][ T4707] JBD2: no valid journal superblock found
[   90.031026][ T4707] EXT4-fs (loop4): Could not load journal inode
[   90.034702][ T4640] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   90.047768][ T4640] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   90.188034][ T4729] syz.1.423[4729] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.188110][ T4729] syz.1.423[4729] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.204936][ T4729] syz.1.423[4729] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.205335][ T4640] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.235318][ T4729] __nla_validate_parse: 1 callbacks suppressed
[   90.235383][ T4729] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.423'.
[   90.260742][ T4626] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.271251][ T4729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.423'.
[   90.280418][ T4729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.423'.
[   90.334672][   T29] kauditd_printk_skb: 448 callbacks suppressed
[   90.334690][   T29] audit: type=1107 audit(1734158355.480:2767): pid=4740 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   90.412555][   T29] audit: type=1326 audit(1734158355.550:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.436066][   T29] audit: type=1326 audit(1734158355.550:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.465862][   T29] audit: type=1326 audit(1734158355.610:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.474677][ T4754] netlink: 'syz.4.426': attribute type 10 has an invalid length.
[   90.489487][   T29] audit: type=1326 audit(1734158355.610:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.503026][ T4626] veth0_vlan: entered promiscuous mode
[   90.520466][   T29] audit: type=1326 audit(1734158355.610:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.549302][   T29] audit: type=1326 audit(1734158355.610:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.572682][   T29] audit: type=1326 audit(1734158355.610:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.596130][   T29] audit: type=1326 audit(1734158355.610:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.596168][   T29] audit: type=1326 audit(1734158355.610:2776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4753 comm="syz.4.426" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   90.597236][ T4626] veth1_vlan: entered promiscuous mode
[   90.625966][ T4626] veth0_macvtap: entered promiscuous mode
[   90.677857][ T4764] FAULT_INJECTION: forcing a failure.
[   90.677857][ T4764] name failslab, interval 1, probability 0, space 0, times 0
[   90.685583][ T4767] loop1: detected capacity change from 0 to 512
[   90.690575][ T4764] CPU: 0 UID: 0 PID: 4764 Comm: syz.4.427 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   90.707759][ T4764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.717849][ T4764] Call Trace:
[   90.721258][ T4764]  <TASK>
[   90.724216][ T4764]  dump_stack_lvl+0xf2/0x150
[   90.728504][ T4626] veth1_macvtap: entered promiscuous mode
[   90.729007][ T4764]  dump_stack+0x15/0x1a
[   90.738936][ T4764]  should_fail_ex+0x223/0x230
[   90.740168][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.743696][ T4764]  should_failslab+0x8f/0xb0
[   90.743738][ T4764]  kmem_cache_alloc_noprof+0x52/0x320
[   90.754236][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.758724][ T4764]  ? mas_dup_build+0x1e8/0xd10
[   90.764111][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.773862][ T4764]  ? pcpu_memcg_post_alloc_hook+0x158/0x1c0
[   90.773900][ T4764]  mas_dup_build+0x1e8/0xd10
[   90.773931][ T4764]  __mt_dup+0xcf/0x190
[   90.778676][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.789068][ T4764]  copy_mm+0x3cb/0x11c0
[   90.794993][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.799539][ T4764]  copy_process+0xd5b/0x1f90
[   90.803611][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.813380][ T4764]  kernel_clone+0x167/0x5e0
[   90.817543][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.828004][ T4764]  ? vfs_write+0x596/0x920
[   90.828051][ T4764]  __x64_sys_clone+0xe8/0x120
[   90.832672][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.842540][ T4764]  x64_sys_call+0x2d7e/0x2dc0
[   90.842575][ T4764]  do_syscall_64+0xc9/0x1c0
[   90.847089][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.847109][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.852654][ T4626] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.857568][ T4764]  ? clear_bhb_loop+0x55/0xb0
[   90.857602][ T4764]  ? clear_bhb_loop+0x55/0xb0
[   90.868431][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.876465][ T4764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.881307][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.886211][ T4764] RIP: 0033:0x7fbd7a695d19
[   90.886232][ T4764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.886256][ T4764] RSP: 002b:00007fbd78d06fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   90.896683][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.906436][ T4764] RAX: ffffffffffffffda RBX: 00007fbd7a885fa0 RCX: 00007fbd7a695d19
[   90.906455][ T4764] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000a3ae8400
[   90.906472][ T4764] RBP: 00007fbd78d07090 R08: ffffffffffffffff R09: ffffffffffffffff
[   90.913755][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.918392][ T4764] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   90.923075][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.923092][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.923105][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.923118][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.933514][ T4764] R13: 0000000000000000 R14: 00007fbd7a885fa0 R15: 00007ffd779d9228
[   90.933542][ T4764]  </TASK>
[   90.939415][ T4626] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.998744][ T4772] loop1: detected capacity change from 0 to 764
[   91.000170][ T4626] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.031088][ T4776] loop4: detected capacity change from 0 to 2048
[   91.050918][ T4626] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.074987][ T4626] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.111636][ T4626] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.127812][ T4626] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.161723][ T4626] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.204258][ T4640] veth0_vlan: entered promiscuous mode
[   91.235221][ T4640] veth1_vlan: entered promiscuous mode
[   91.250348][ T4640] veth0_macvtap: entered promiscuous mode
[   91.266210][ T4640] veth1_macvtap: entered promiscuous mode
[   91.272673][ T4776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.285775][ T4776] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.293121][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.306679][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.316580][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.327223][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.337266][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.347758][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.357817][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.368410][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.378277][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.388791][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.398780][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.409354][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.430008][ T4640] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.455427][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.466018][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.475893][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.486403][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.486417][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.486435][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.486449][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.486466][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.537676][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.537696][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.537720][ T4640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.568507][ T4640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.571302][ T4640] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.597588][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.630654][ T4640] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.639573][ T4640] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.648473][ T4640] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.648573][ T4640] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.668675][ T4802] netlink: 'syz.4.436': attribute type 10 has an invalid length.
[   91.683163][ T4792] smc: net device bond0 applied user defined pnetid SYZ0
[   91.693704][ T4805] FAULT_INJECTION: forcing a failure.
[   91.693704][ T4805] name failslab, interval 1, probability 0, space 0, times 0
[   91.705944][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   91.706418][ T4805] CPU: 0 UID: 0 PID: 4805 Comm: syz.1.438 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   91.726994][ T4805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.737067][ T4805] Call Trace:
[   91.740359][ T4805]  <TASK>
[   91.743293][ T4805]  dump_stack_lvl+0xf2/0x150
[   91.747951][ T4805]  dump_stack+0x15/0x1a
[   91.752131][ T4805]  should_fail_ex+0x223/0x230
[   91.756845][ T4805]  should_failslab+0x8f/0xb0
[   91.761463][ T4805]  kmem_cache_alloc_noprof+0x52/0x320
[   91.766870][ T4805]  ? skb_clone+0x154/0x1f0
[   91.771363][ T4805]  skb_clone+0x154/0x1f0
[   91.775626][ T4805]  __netlink_deliver_tap+0x2bd/0x4f0
[   91.781005][ T4805]  netlink_unicast+0x64a/0x670
[   91.785886][ T4805]  netlink_sendmsg+0x5cc/0x6e0
[   91.790705][ T4805]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.796011][ T4805]  __sock_sendmsg+0x140/0x180
[   91.800737][ T4805]  ____sys_sendmsg+0x312/0x410
[   91.805516][ T4805]  __sys_sendmsg+0x19d/0x230
[   91.810196][ T4805]  __x64_sys_sendmsg+0x46/0x50
[   91.815052][ T4805]  x64_sys_call+0x2734/0x2dc0
[   91.819782][ T4805]  do_syscall_64+0xc9/0x1c0
[   91.824294][ T4805]  ? clear_bhb_loop+0x55/0xb0
[   91.829087][ T4805]  ? clear_bhb_loop+0x55/0xb0
[   91.833848][ T4805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.839890][ T4805] RIP: 0033:0x7f2dee2c5d19
[   91.844382][ T4805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.864057][ T4805] RSP: 002b:00007f2dec937038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.872501][ T4805] RAX: ffffffffffffffda RBX: 00007f2dee4b5fa0 RCX: 00007f2dee2c5d19
[   91.880528][ T4805] RDX: 0000000000000000 RSI: 0000000020001680 RDI: 0000000000000003
[   91.888576][ T4805] RBP: 00007f2dec937090 R08: 0000000000000000 R09: 0000000000000000
[   91.896570][ T4805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.904559][ T4805] R13: 0000000000000000 R14: 00007f2dee4b5fa0 R15: 00007ffd2dcef948
[   91.912550][ T4805]  </TASK>
[   91.921530][ T4805] netlink: 268 bytes leftover after parsing attributes in process `syz.1.438'.
[   91.930676][ T4805] unsupported nla_type 65024
[   91.949439][ T4792] netlink: 116 bytes leftover after parsing attributes in process `syz.5.394'.
[   91.950116][ T4807] netlink: 8 bytes leftover after parsing attributes in process `syz.0.440'.
[   91.960158][ T4792] smc: net device bond0 erased user defined pnetid SYZ0
[   92.028081][ T4812] loop4: detected capacity change from 0 to 764
[   92.062736][ T4818] loop1: detected capacity change from 0 to 2048
[   92.082416][ T4808] Process accounting resumed
[   92.089068][ T4818] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.114949][ T4823] loop6: detected capacity change from 0 to 2048
[   92.124576][ T4829] loop4: detected capacity change from 0 to 2048
[   92.131382][ T4829] EXT4-fs: quotafile must be on filesystem root
[   92.143297][ T4830] loop5: detected capacity change from 0 to 512
[   92.165253][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.178644][ T4823]  loop6: p1 p2 p3
[   92.332498][ T4829] loop4: detected capacity change from 0 to 1024
[   92.340330][ T4829] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   92.351745][ T4829] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   92.359894][ T4829] EXT4-fs (loop4): orphan cleanup on readonly fs
[   92.369169][ T4829] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   92.378940][ T4829] EXT4-fs (loop4): Remounting filesystem read-only
[   92.385772][ T4829] EXT4-fs (loop4): 1 orphan inode deleted
[   92.393632][ T4829] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.406233][ T4829] SELinux: (dev loop4, type ext4) getxattr errno 5
[   92.413220][ T4829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.468541][ T4849] smc: net device bond0 applied user defined pnetid SYZ0
[   92.495971][ T4848] netlink: 116 bytes leftover after parsing attributes in process `syz.6.453'.
[   92.507754][ T4848] smc: net device bond0 erased user defined pnetid SYZ0
[   92.531912][ T4858] IPVS: length: 131 != 8
[   92.568696][ T4862] loop6: detected capacity change from 0 to 764
[   92.587492][ T4864] loop4: detected capacity change from 0 to 128
[   92.651202][ T4868] loop0: detected capacity change from 0 to 8192
[   92.822043][ T4879] loop6: detected capacity change from 0 to 2048
[   93.012965][ T4885] smc: net device bond0 applied user defined pnetid SYZ0
[   93.030063][ T4885] netlink: 116 bytes leftover after parsing attributes in process `syz.0.468'.
[   93.052656][ T4885] smc: net device bond0 erased user defined pnetid SYZ0
[   93.071672][ T4892] loop6: detected capacity change from 0 to 764
[   93.116513][ T4895] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   93.138981][ T4898] loop4: detected capacity change from 0 to 2048
[   93.146090][ T4898] EXT4-fs: quotafile must be on filesystem root
[   93.172392][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172423][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172445][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172467][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172617][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172647][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172675][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172704][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172727][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172767][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172793][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172854][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.172913][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173007][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173029][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173057][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173079][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173105][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173147][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173175][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173199][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173289][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173317][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173345][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173374][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173399][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173469][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173497][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173548][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173571][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173592][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173618][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173646][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173703][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173725][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173746][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173774][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173802][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173851][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173880][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173952][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.173981][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.174004][   T35] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   93.174402][   T35] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   93.355326][ T4916] loop0: detected capacity change from 0 to 128
[   93.477326][ T4919] loop4: detected capacity change from 0 to 1024
[   93.483419][ T4919] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   93.761963][ T4919] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   93.809900][ T4919] EXT4-fs (loop4): orphan cleanup on readonly fs
[   93.820425][ T4919] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   93.821223][ T4929] FAULT_INJECTION: forcing a failure.
[   93.821223][ T4929] name failslab, interval 1, probability 0, space 0, times 0
[   93.842510][ T4929] CPU: 0 UID: 0 PID: 4929 Comm: syz.6.484 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   93.843456][ T4919] EXT4-fs (loop4): Remounting filesystem read-only
[   93.853162][ T4929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   93.853182][ T4929] Call Trace:
[   93.853190][ T4929]  <TASK>
[   93.853200][ T4929]  dump_stack_lvl+0xf2/0x150
[   93.869410][ T4930] smc: net device bond0 applied user defined pnetid SYZ0
[   93.869784][ T4929]  dump_stack+0x15/0x1a
[   93.874423][ T4930] netlink: 116 bytes leftover after parsing attributes in process `syz.0.483'.
[   93.875993][ T4929]  should_fail_ex+0x223/0x230
[   93.880655][ T4930] smc: net device bond0 erased user defined pnetid SYZ0
[   93.887603][ T4929]  ? alloc_pipe_info+0xb0/0x360
[   93.887721][ T4929]  should_failslab+0x8f/0xb0
[   93.898308][ T4919] EXT4-fs (loop4): 1 orphan inode deleted
[   93.900805][ T4929]  __kmalloc_cache_noprof+0x4e/0x320
[   93.932999][ T4929]  ? __traceiter_kmem_cache_free+0x33/0x50
[   93.938901][ T4929]  alloc_pipe_info+0xb0/0x360
[   93.943774][ T4929]  splice_direct_to_actor+0x60f/0x670
[   93.949251][ T4929]  ? audit_seccomp+0x107/0x130
[   93.954061][ T4929]  ? __pfx_direct_splice_actor+0x10/0x10
[   93.955200][ T4933] loop0: detected capacity change from 0 to 764
[   93.959722][ T4929]  ? avc_policy_seqno+0x15/0x20
[   93.970866][ T4929]  ? selinux_file_permission+0x22a/0x360
[   93.976633][ T4929]  do_splice_direct+0xd7/0x150
[   93.981681][ T4929]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   93.981726][ T4929]  do_sendfile+0x398/0x660
[   93.992179][ T4929]  __x64_sys_sendfile64+0x110/0x150
[   93.997445][ T4929]  x64_sys_call+0xfbd/0x2dc0
[   94.002170][ T4929]  do_syscall_64+0xc9/0x1c0
[   94.006700][ T4929]  ? clear_bhb_loop+0x55/0xb0
[   94.011444][ T4929]  ? clear_bhb_loop+0x55/0xb0
[   94.016183][ T4929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.022983][ T4929] RIP: 0033:0x7fe917215d19
[   94.027410][ T4929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.047174][ T4929] RSP: 002b:00007fe915887038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   94.055601][ T4929] RAX: ffffffffffffffda RBX: 00007fe917405fa0 RCX: 00007fe917215d19
[   94.063632][ T4929] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000009
[   94.071613][ T4929] RBP: 00007fe915887090 R08: 0000000000000000 R09: 0000000000000000
[   94.079612][ T4929] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000001
[   94.087593][ T4929] R13: 0000000000000000 R14: 00007fe917405fa0 R15: 00007ffc5d6e1b98
[   94.095607][ T4929]  </TASK>
[   94.109748][ T4919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.122382][ T4919] SELinux: (dev loop4, type ext4) getxattr errno 5
[   94.129341][ T4919] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.205002][ T4941] FAULT_INJECTION: forcing a failure.
[   94.205002][ T4941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.218209][ T4941] CPU: 1 UID: 0 PID: 4941 Comm: syz.0.487 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   94.228855][ T4941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   94.239027][ T4941] Call Trace:
[   94.242412][ T4941]  <TASK>
[   94.245360][ T4941]  dump_stack_lvl+0xf2/0x150
[   94.249997][ T4941]  dump_stack+0x15/0x1a
[   94.254191][ T4941]  should_fail_ex+0x223/0x230
[   94.259029][ T4941]  should_fail+0xb/0x10
[   94.263212][ T4941]  should_fail_usercopy+0x1a/0x20
[   94.268321][ T4941]  _copy_from_user+0x1e/0xb0
[   94.272941][ T4941]  copy_msghdr_from_user+0x54/0x2a0
[   94.278166][ T4941]  ? __fget_files+0x17c/0x1c0
[   94.282894][ T4941]  __sys_sendmsg+0x13e/0x230
[   94.287690][ T4941]  __x64_sys_sendmsg+0x46/0x50
[   94.292578][ T4941]  x64_sys_call+0x2734/0x2dc0
[   94.297279][ T4941]  do_syscall_64+0xc9/0x1c0
[   94.301865][ T4941]  ? clear_bhb_loop+0x55/0xb0
[   94.306552][ T4941]  ? clear_bhb_loop+0x55/0xb0
[   94.311279][ T4941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.317198][ T4941] RIP: 0033:0x7ff77ed85d19
[   94.321620][ T4941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.341372][ T4941] RSP: 002b:00007ff77d3f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.349804][ T4941] RAX: ffffffffffffffda RBX: 00007ff77ef75fa0 RCX: 00007ff77ed85d19
[   94.357788][ T4941] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[   94.365797][ T4941] RBP: 00007ff77d3f1090 R08: 0000000000000000 R09: 0000000000000000
[   94.373779][ T4941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.381761][ T4941] R13: 0000000000000000 R14: 00007ff77ef75fa0 R15: 00007ffffb05c178
[   94.389899][ T4941]  </TASK>
[   94.412340][ T4937] netlink: 12 bytes leftover after parsing attributes in process `syz.1.488'.
[   94.534660][ T4950] team0 (unregistering): Port device team_slave_0 removed
[   94.562972][ T4950] team0 (unregistering): Port device team_slave_1 removed
[   94.583870][ T4957] SELinux: security policydb version 18 (MLS) not backwards compatible
[   94.593785][ T4957] SELinux: failed to load policy
[   94.607848][ T4957] loop1: detected capacity change from 0 to 2048
[   94.616116][ T4957] EXT4-fs: Ignoring removed bh option
[   94.622005][ T4957] EXT4-fs: Mount option(s) incompatible with ext2
[   94.655000][ T4959] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   94.779590][ T4960] loop1: detected capacity change from 0 to 4096
[   94.814865][ T4960] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.978343][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.136437][ T4968] FAULT_INJECTION: forcing a failure.
[   95.136437][ T4968] name failslab, interval 1, probability 0, space 0, times 0
[   95.149177][ T4968] CPU: 1 UID: 0 PID: 4968 Comm: syz.1.498 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   95.159795][ T4968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   95.170076][ T4968] Call Trace:
[   95.173416][ T4968]  <TASK>
[   95.176424][ T4968]  dump_stack_lvl+0xf2/0x150
[   95.181100][ T4968]  dump_stack+0x15/0x1a
[   95.185300][ T4968]  should_fail_ex+0x223/0x230
[   95.189999][ T4968]  should_failslab+0x8f/0xb0
[   95.194617][ T4968]  kmem_cache_alloc_noprof+0x52/0x320
[   95.200059][ T4968]  ? vm_area_dup+0x2c/0x130
[   95.204653][ T4968]  vm_area_dup+0x2c/0x130
[   95.209078][ T4968]  __split_vma+0xf7/0x6a0
[   95.213456][ T4968]  ? mntput+0x49/0x70
[   95.217482][ T4968]  vms_gather_munmap_vmas+0x171/0x7a0
[   95.222881][ T4968]  ? _parse_integer+0x27/0x30
[   95.227606][ T4968]  ? kstrtoull+0x110/0x140
[   95.232039][ T4968]  do_vmi_align_munmap+0x1a4/0x390
[   95.237230][ T4968]  __se_sys_brk+0x4ad/0x8b0
[   95.241767][ T4968]  __x64_sys_brk+0x1f/0x30
[   95.246319][ T4968]  x64_sys_call+0x2cb6/0x2dc0
[   95.251100][ T4968]  do_syscall_64+0xc9/0x1c0
[   95.255633][ T4968]  ? clear_bhb_loop+0x55/0xb0
[   95.260388][ T4968]  ? clear_bhb_loop+0x55/0xb0
[   95.265200][ T4968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.271125][ T4968] RIP: 0033:0x7f2dee2c5d19
[   95.275616][ T4968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.295291][ T4968] RSP: 002b:00007f2dec937038 EFLAGS: 00000246 ORIG_RAX: 000000000000000c
[   95.303741][ T4968] RAX: ffffffffffffffda RBX: 00007f2dee4b5fa0 RCX: 00007f2dee2c5d19
[   95.311772][ T4968] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020001000
[   95.319970][ T4968] RBP: 00007f2dec937090 R08: 0000000000000000 R09: 0000000000000000
[   95.328032][ T4968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.336045][ T4968] R13: 0000000000000000 R14: 00007f2dee4b5fa0 R15: 00007ffd2dcef948
[   95.344054][ T4968]  </TASK>
[   95.435763][ T4973] loop1: detected capacity change from 0 to 764
[   95.573757][ T4979] loop1: detected capacity change from 0 to 512
[   95.620916][ T4979] EXT4-fs (loop1): too many log groups per flexible block group
[   95.622973][ T4977] netlink: 12 bytes leftover after parsing attributes in process `syz.0.502'.
[   95.628875][ T4979] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   95.654862][ T4979] EXT4-fs (loop1): mount failed
[   95.700217][ T4987] netlink: 4 bytes leftover after parsing attributes in process `syz.6.505'.
[   95.791469][   T29] kauditd_printk_skb: 215 callbacks suppressed
[   95.791490][   T29] audit: type=1400 audit(1734158360.920:2984): avc:  denied  { append } for  pid=4983 comm="syz.5.504" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   95.835153][ T4992] loop6: detected capacity change from 0 to 128
[   96.026328][ T4997] loop0: detected capacity change from 0 to 8192
[   96.033061][ T4997] vfat: Unknown parameter 'ÿÿÿÿ18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615'
[   96.062016][ T4997] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[   96.073090][ T4997] bond0: entered promiscuous mode
[   96.078324][ T4997] bond_slave_0: entered promiscuous mode
[   96.084138][ T4997] bond_slave_1: entered promiscuous mode
[   96.089909][ T4997] netdevsim netdevsim0 netdevsim1: entered promiscuous mode
[   96.097314][ T4997] bond0: entered allmulticast mode
[   96.102454][ T4997] bond_slave_0: entered allmulticast mode
[   96.108207][ T4997] bond_slave_1: entered allmulticast mode
[   96.113973][ T4997] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[   96.301907][ T4979] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.456067][ T4979] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.551806][ T3954] IPVS: starting estimator thread 0...
[   96.617883][ T4979] bond0: (slave netdevsim1): Releasing backup interface
[   96.635047][ T4979] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.673421][ T5002] IPVS: using max 2304 ests per chain, 115200 per kthread
[   96.713635][ T5006] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   96.764987][ T4979] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.863987][ T4979] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.875278][ T5014] smc: net device bond0 applied user defined pnetid SYZ0
[   96.878012][ T4979] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.892582][ T5014] netlink: 116 bytes leftover after parsing attributes in process `syz.6.513'.
[   96.895363][ T4979] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.910167][ T5014] smc: net device bond0 erased user defined pnetid SYZ0
[   96.920676][ T4979] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.961111][   T29] audit: type=1400 audit(1734158362.100:2985): avc:  denied  { read } for  pid=2985 comm="acpid" name="mouse4" dev="devtmpfs" ino=570 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   96.990405][   T29] audit: type=1400 audit(1734158362.100:2986): avc:  denied  { open } for  pid=2985 comm="acpid" path="/dev/input/mouse4" dev="devtmpfs" ino=570 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   96.999513][ T5026] netlink: 4 bytes leftover after parsing attributes in process `syz.6.516'.
[   97.013232][   T29] audit: type=1400 audit(1734158362.100:2987): avc:  denied  { ioctl } for  pid=2985 comm="acpid" path="/dev/input/mouse4" dev="devtmpfs" ino=570 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[   97.043342][ T5022] netlink: 12 bytes leftover after parsing attributes in process `syz.1.517'.
[   97.060585][ T5028] capability: warning: `syz.6.519' uses 32-bit capabilities (legacy support in use)
[   97.083438][   T29] audit: type=1326 audit(1734158362.230:2988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.091903][   T28] IPVS: stop unused estimator thread 0...
[   97.110278][ T5032] netlink: 'syz.4.521': attribute type 10 has an invalid length.
[   97.130902][   T29] audit: type=1326 audit(1734158362.250:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.154336][   T29] audit: type=1326 audit(1734158362.250:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.177817][   T29] audit: type=1326 audit(1734158362.250:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.201474][   T29] audit: type=1326 audit(1734158362.250:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.225064][   T29] audit: type=1326 audit(1734158362.250:2993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5031 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fbd7a695d19 code=0x7ffc0000
[   97.331619][ T5046] loop4: detected capacity change from 0 to 2048
[   97.338323][ T5046] EXT4-fs: quotafile must be on filesystem root
[   97.593103][ T5048] loop4: detected capacity change from 0 to 1024
[   97.605680][ T5048] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.652178][ T5048] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   97.660328][ T5048] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.668034][ T5048] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   97.677792][ T5048] EXT4-fs (loop4): Remounting filesystem read-only
[   97.684670][ T5048] EXT4-fs (loop4): 1 orphan inode deleted
[   97.724567][ T5053] atomic_op ffff8881152eb928 conn xmit_atomic 0000000000000000
[   97.755476][ T5051] smc: net device bond0 applied user defined pnetid SYZ0
[   97.764371][ T5053] loop0: detected capacity change from 0 to 1024
[   97.776082][ T5051] netlink: 116 bytes leftover after parsing attributes in process `syz.5.527'.
[   97.796390][ T5053] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.528: Failed to acquire dquot type 0
[   97.813338][ T5051] smc: net device bond0 erased user defined pnetid SYZ0
[   97.823339][ T5053] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   97.868259][ T5053] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #13: comm syz.0.528: corrupted inode contents
[   97.909083][ T5053] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #13: comm syz.0.528: mark_inode_dirty error
[   97.930110][ T5058] loop5: detected capacity change from 0 to 2048
[   97.948321][ T5053] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #13: comm syz.0.528: corrupted inode contents
[   97.963109][ T5058] EXT4-fs: quotafile must be on filesystem root
[   97.991237][ T5053] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #13: comm syz.0.528: mark_inode_dirty error
[   98.048700][ T5060] netlink: 4 bytes leftover after parsing attributes in process `syz.1.530'.
[   98.067809][ T5053] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #13: comm syz.0.528: corrupted inode contents
[   98.120705][ T5053] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   98.154710][ T5053] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #13: comm syz.0.528: corrupted inode contents
[   98.193801][ T5053] EXT4-fs error (device loop0): ext4_truncate:4240: inode #13: comm syz.0.528: mark_inode_dirty error
[   98.255577][ T5053] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   98.292094][ T5053] EXT4-fs (loop0): 1 truncate cleaned up
[   98.318389][ T5064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.532'.
[   98.331977][ T5053] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.461929][ T5048] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   98.474517][ T5048] SELinux: (dev loop4, type ext4) getxattr errno 5
[   98.481297][ T5048] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.540765][ T5068] loop5: detected capacity change from 0 to 1024
[   98.556032][ T5068] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.612184][ T5068] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   98.620315][ T5068] EXT4-fs (loop5): orphan cleanup on readonly fs
[   98.628385][ T5068] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   98.638193][ T5068] EXT4-fs (loop5): Remounting filesystem read-only
[   98.645016][ T5068] EXT4-fs (loop5): 1 orphan inode deleted
[   98.691477][ T5071] netlink: 8 bytes leftover after parsing attributes in process `syz.1.534'.
[   98.700389][ T5071] netlink: 4 bytes leftover after parsing attributes in process `syz.1.534'.
[   98.828538][ T5071] wireguard0: entered promiscuous mode
[   98.834218][ T5071] wireguard0: entered allmulticast mode
[   99.186958][ T5078] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   99.642207][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.642170][ T5068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   99.663652][ T5068] SELinux: (dev loop5, type ext4) getxattr errno 5
[   99.670472][ T5068] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.858277][ T5087] smc: net device bond0 applied user defined pnetid SYZ0
[   99.868367][ T5087] smc: net device bond0 erased user defined pnetid SYZ0
[   99.960603][ T5089] syz.6.540[5089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.960778][ T5089] syz.6.540[5089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.983507][ T5089] syz.6.540[5089] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.019884][ T5103] loop1: detected capacity change from 0 to 512
[  100.051667][ T5103] EXT4-fs: Ignoring removed bh option
[  100.073561][ T5107] FAULT_INJECTION: forcing a failure.
[  100.073561][ T5107] name failslab, interval 1, probability 0, space 0, times 0
[  100.086324][ T5107] CPU: 0 UID: 0 PID: 5107 Comm: syz.4.546 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  100.094388][ T5110] hsr0: entered promiscuous mode
[  100.096918][ T5107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  100.111493][ T5110] macsec1: entered allmulticast mode
[  100.111903][ T5107] Call Trace:
[  100.111912][ T5107]  <TASK>
[  100.117223][ T5110] hsr0: entered allmulticast mode
[  100.120478][ T5107]  dump_stack_lvl+0xf2/0x150
[  100.123452][ T5110] hsr_slave_0: entered allmulticast mode
[  100.128555][ T5107]  dump_stack+0x15/0x1a
[  100.133190][ T5110] hsr_slave_1: entered allmulticast mode
[  100.138745][ T5107]  should_fail_ex+0x223/0x230
[  100.153373][ T5107]  should_failslab+0x8f/0xb0
[  100.158065][ T5107]  kmem_cache_alloc_noprof+0x52/0x320
[  100.163462][ T5107]  ? alloc_empty_file+0xd0/0x200
[  100.168421][ T5107]  alloc_empty_file+0xd0/0x200
[  100.173293][ T5107]  path_openat+0x6a/0x1fa0
[  100.177730][ T5107]  ? _parse_integer_limit+0x167/0x180
[  100.183211][ T5107]  ? _parse_integer+0x27/0x30
[  100.188077][ T5107]  ? kstrtoull+0x110/0x140
[  100.192506][ T5107]  ? kstrtouint+0x77/0xc0
[  100.196898][ T5107]  ? kstrtouint_from_user+0xb0/0xe0
[  100.202248][ T5107]  do_filp_open+0x107/0x230
[  100.206783][ T5107]  do_sys_openat2+0xab/0x120
[  100.211395][ T5107]  __x64_sys_creat+0x66/0x90
[  100.216003][ T5107]  x64_sys_call+0x1084/0x2dc0
[  100.220715][ T5107]  do_syscall_64+0xc9/0x1c0
[  100.225233][ T5107]  ? clear_bhb_loop+0x55/0xb0
[  100.229935][ T5107]  ? clear_bhb_loop+0x55/0xb0
[  100.234619][ T5107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.240549][ T5107] RIP: 0033:0x7fbd7a695d19
[  100.244978][ T5107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.264736][ T5107] RSP: 002b:00007fbd78d07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  100.273164][ T5107] RAX: ffffffffffffffda RBX: 00007fbd7a885fa0 RCX: 00007fbd7a695d19
[  100.281158][ T5107] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000020002200
[  100.289224][ T5107] RBP: 00007fbd78d07090 R08: 0000000000000000 R09: 0000000000000000
[  100.297205][ T5107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.305278][ T5107] R13: 0000000000000000 R14: 00007fbd7a885fa0 R15: 00007ffd779d9228
[  100.313456][ T5107]  </TASK>
[  100.465170][ T5103] EXT4-fs error (device loop1): __ext4_iget:4984: inode #15: block 1803188595: comm syz.1.544: invalid block
[  100.477511][ T5103] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.544: couldn't read orphan inode 15 (err -117)
[  100.513192][ T5103] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.619168][ T5118] loop6: detected capacity change from 0 to 1024
[  100.643234][ T5118] EXT4-fs: Ignoring removed nobh option
[  100.648873][ T5118] EXT4-fs: Ignoring removed orlov option
[  100.660200][ T5121] __nla_validate_parse: 2 callbacks suppressed
[  100.660216][ T5121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.544'.
[  100.687495][ T5121] bridge_slave_1: left allmulticast mode
[  100.691873][ T5120] loop4: detected capacity change from 0 to 2048
[  100.693317][ T5121] bridge_slave_1: left promiscuous mode
[  100.699837][ T5120] EXT4-fs: quotafile must be on filesystem root
[  100.705308][ T5121] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.756415][ T5118] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.783433][ T5121] bridge_slave_0: left allmulticast mode
[  100.789132][ T5121] bridge_slave_0: left promiscuous mode
[  100.795808][ T5121] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.842412][   T29] kauditd_printk_skb: 45 callbacks suppressed
[  100.842427][   T29] audit: type=1326 audit(1734158365.990:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  100.947637][   T29] audit: type=1326 audit(1734158366.020:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  100.971061][   T29] audit: type=1326 audit(1734158366.040:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  100.994520][   T29] audit: type=1326 audit(1734158366.040:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.017896][   T29] audit: type=1326 audit(1734158366.040:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.041365][   T29] audit: type=1326 audit(1734158366.040:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.064712][   T29] audit: type=1326 audit(1734158366.040:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.088083][   T29] audit: type=1326 audit(1734158366.040:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.111460][   T29] audit: type=1326 audit(1734158366.040:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.134852][   T29] audit: type=1326 audit(1734158366.040:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5124 comm="syz.5.551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd792c45d19 code=0x7ffc0000
[  101.159262][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.307249][ T5131] loop4: detected capacity change from 0 to 1024
[  101.316826][ T5131] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  101.330311][ T5128] netlink: 116 bytes leftover after parsing attributes in process `syz.6.552'.
[  101.381941][ T5131] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  101.390060][ T5131] EXT4-fs (loop4): orphan cleanup on readonly fs
[  101.396922][ T5131] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  101.406613][ T5131] EXT4-fs (loop4): Remounting filesystem read-only
[  101.413351][ T5131] EXT4-fs (loop4): 1 orphan inode deleted
[  101.441107][ T5136] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  101.554284][ T5142] netlink: 'syz.5.556': attribute type 39 has an invalid length.
[  102.035849][ T5153] loop0: detected capacity change from 0 to 764
[  102.134814][ T5157] netlink: 'syz.0.561': attribute type 10 has an invalid length.
[  102.145284][ T5157] bond0: (slave netdevsim1): Releasing backup interface
[  102.154789][ T5157] netdevsim netdevsim0 netdevsim1: left promiscuous mode
[  102.162044][ T5157] netdevsim netdevsim0 netdevsim1: left allmulticast mode
[  102.171303][ T5131] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  102.183775][ T5131] SELinux: (dev loop4, type ext4) getxattr errno 5
[  102.190563][ T5131] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.234073][ T5161] syz.0.562[5161] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.234196][ T5161] syz.0.562[5161] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.247574][ T5161] syz.0.562[5161] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.287763][ T5161] loop0: detected capacity change from 0 to 2048
[  102.343938][ T5163] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  102.352856][ T5163] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  102.361691][ T5163] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  102.370408][ T5163] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  102.381151][ T5163] vxlan0: entered promiscuous mode
[  102.386451][ T5163] vxlan0: entered allmulticast mode
[  102.412932][ T5163] netdevsim netdevsim6 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  102.421947][ T5163] netdevsim netdevsim6 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  102.430837][ T5163] netdevsim netdevsim6 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  102.439783][ T5163] netdevsim netdevsim6 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  102.473829][ T5161]  loop0: p1 p2 p3
[  102.548570][ T5168] loop6: detected capacity change from 0 to 256
[  102.578994][ T5168] FAT-fs (loop6): Directory bread(block 64) failed
[  102.595137][ T5168] FAT-fs (loop6): Directory bread(block 65) failed
[  102.608366][ T5168] FAT-fs (loop6): Directory bread(block 66) failed
[  102.615360][ T5168] FAT-fs (loop6): Directory bread(block 67) failed
[  102.623617][ T5168] FAT-fs (loop6): Directory bread(block 68) failed
[  102.630252][ T5168] FAT-fs (loop6): Directory bread(block 69) failed
[  102.636972][ T5168] FAT-fs (loop6): Directory bread(block 70) failed
[  102.645167][ T5168] FAT-fs (loop6): Directory bread(block 71) failed
[  102.651870][ T5168] FAT-fs (loop6): Directory bread(block 72) failed
[  102.658573][ T5168] FAT-fs (loop6): Directory bread(block 73) failed
[  102.701118][ T5174] syz.0.567[5174] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.701236][ T5174] syz.0.567[5174] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.739538][ T5174] syz.0.567[5174] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.817503][ T5178] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.568'.
[  102.862475][ T5181] syz.6.564: attempt to access beyond end of device
[  102.862475][ T5181] loop6: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  102.878442][ T5181] syz.6.564: attempt to access beyond end of device
[  102.878442][ T5181] loop6: rw=0, sector=1736, nr_sectors = 8 limit=256
[  102.896497][ T5180] Cannot find set identified by id 0 to match
[  102.941700][ T5183] loop0: detected capacity change from 0 to 764
[  103.003405][ T5187] loop0: detected capacity change from 0 to 512
[  103.014596][ T5187] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.027563][ T5187] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.056330][ T5187] SELinux:  policydb string length 1163067400 does not match expected length 8
[  103.065463][ T5187] SELinux: failed to load policy
[  103.083338][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.219943][ T5207] syz.4.578[5207] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.253294][ T5211] Cannot find set identified by id 0 to match
[  103.411821][ T5221] netlink: 12 bytes leftover after parsing attributes in process `syz.5.585'.
[  103.510621][ T5228] team0 (unregistering): Port device team_slave_0 removed
[  103.522206][ T5228] team0 (unregistering): Port device team_slave_1 removed
[  103.550690][ T5232] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.618597][ T5232] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.627299][ T5235] Cannot find set identified by id 0 to match
[  103.667535][ T5238] loop5: detected capacity change from 0 to 128
[  103.694481][ T5232] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.755105][ T5232] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.811409][ T5232] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.823569][ T5232] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.836727][ T5232] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.848886][ T5232] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.965746][ T5244] FAULT_INJECTION: forcing a failure.
[  103.965746][ T5244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.978979][ T5244] CPU: 1 UID: 0 PID: 5244 Comm: syz.5.594 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  103.989788][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.999870][ T5244] Call Trace:
[  104.003154][ T5244]  <TASK>
[  104.006087][ T5244]  dump_stack_lvl+0xf2/0x150
[  104.010834][ T5244]  dump_stack+0x15/0x1a
[  104.015110][ T5244]  should_fail_ex+0x223/0x230
[  104.019878][ T5244]  should_fail+0xb/0x10
[  104.024067][ T5244]  should_fail_usercopy+0x1a/0x20
[  104.029123][ T5244]  _copy_from_user+0x1e/0xb0
[  104.033978][ T5244]  __sys_bpf+0x14e/0x7a0
[  104.038381][ T5244]  __x64_sys_bpf+0x43/0x50
[  104.042903][ T5244]  x64_sys_call+0x2914/0x2dc0
[  104.047637][ T5244]  do_syscall_64+0xc9/0x1c0
[  104.052202][ T5244]  ? clear_bhb_loop+0x55/0xb0
[  104.057034][ T5244]  ? clear_bhb_loop+0x55/0xb0
[  104.061822][ T5244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.067764][ T5244] RIP: 0033:0x7fd792c45d19
[  104.072186][ T5244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.091813][ T5244] RSP: 002b:00007fd7912b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  104.100824][ T5244] RAX: ffffffffffffffda RBX: 00007fd792e35fa0 RCX: 00007fd792c45d19
[  104.108809][ T5244] RDX: 0000000000000094 RSI: 00000000200004c0 RDI: 0000000000000005
[  104.116787][ T5244] RBP: 00007fd7912b1090 R08: 0000000000000000 R09: 0000000000000000
[  104.124863][ T5244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.132846][ T5244] R13: 0000000000000000 R14: 00007fd792e35fa0 R15: 00007ffec8cef038
[  104.140856][ T5244]  </TASK>
[  104.169355][ T5246] loop4: detected capacity change from 0 to 764
[  104.204008][ T5250] loop4: detected capacity change from 0 to 256
[  104.218532][ T5250] FAT-fs (loop4): Directory bread(block 64) failed
[  104.225987][ T5250] FAT-fs (loop4): Directory bread(block 65) failed
[  104.233274][ T5250] FAT-fs (loop4): Directory bread(block 66) failed
[  104.240149][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.240317][ T5250] FAT-fs (loop4): Directory bread(block 67) failed
[  104.247671][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.247700][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.254555][ T5250] FAT-fs (loop4): Directory bread(block 68) failed
[  104.261666][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.269133][ T5250] FAT-fs (loop4): Directory bread(block 69) failed
[  104.275614][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.283161][ T5250] FAT-fs (loop4): Directory bread(block 70) failed
[  104.289888][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.297247][ T5250] FAT-fs (loop4): Directory bread(block 71) failed
[  104.303694][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.303724][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.303750][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.334078][ T5250] FAT-fs (loop4): Directory bread(block 72) failed
[  104.340007][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.354236][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.361775][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.363952][ T5250] FAT-fs (loop4): Directory bread(block 73) failed
[  104.369168][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.383309][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.390814][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.398267][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.405692][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.413128][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.420533][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.428205][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.435707][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.443149][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.450575][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.458028][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.465482][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.473025][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.480411][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.487876][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.495304][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.502796][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.510203][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.517736][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.525169][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.532602][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.539996][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.547427][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.555023][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.562456][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.563717][ T5257] syz.4.597: attempt to access beyond end of device
[  104.563717][ T5257] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  104.569851][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.569879][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.569930][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.569955][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.585417][ T5257] syz.4.597: attempt to access beyond end of device
[  104.585417][ T5257] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[  104.590982][ T3954] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  104.593304][ T3954] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  104.766783][ T5271] netlink: 'syz.6.604': attribute type 10 has an invalid length.
[  104.774901][ T5271] netlink: 'syz.6.604': attribute type 10 has an invalid length.
[  104.826955][ T5282] loop6: detected capacity change from 0 to 1024
[  104.843967][ T5282] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.860068][ T5282] FAULT_INJECTION: forcing a failure.
[  104.860068][ T5282] name failslab, interval 1, probability 0, space 0, times 0
[  104.872962][ T5282] CPU: 1 UID: 0 PID: 5282 Comm: syz.6.609 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  104.883617][ T5282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  104.893750][ T5282] Call Trace:
[  104.897198][ T5282]  <TASK>
[  104.900132][ T5282]  dump_stack_lvl+0xf2/0x150
[  104.904743][ T5282]  dump_stack+0x15/0x1a
[  104.908983][ T5282]  should_fail_ex+0x223/0x230
[  104.913695][ T5282]  should_failslab+0x8f/0xb0
[  104.918320][ T5282]  __kmalloc_noprof+0xab/0x3f0
[  104.923132][ T5282]  ? ext4_find_extent+0x172/0x7c0
[  104.928180][ T5282]  ext4_find_extent+0x172/0x7c0
[  104.933037][ T5282]  ? blk_queue_exit+0x50/0xd0
[  104.937729][ T5282]  ? blk_mq_submit_bio+0xac1/0xe40
[  104.942895][ T5282]  ext4_ext_map_blocks+0x11f/0x35c0
[  104.948126][ T5282]  ? __submit_bio+0x26d/0x470
[  104.952817][ T5282]  ? ext4_es_lookup_extent+0x35b/0x520
[  104.958374][ T5282]  ext4_map_blocks+0x5aa/0xd20
[  104.963210][ T5282]  ext4_iomap_begin+0x4a9/0x5d0
[  104.968074][ T5282]  ? __pfx_ext4_iomap_begin+0x10/0x10
[  104.973471][ T5282]  iomap_iter+0x3f1/0x830
[  104.977804][ T5282]  __iomap_dio_rw+0xc25/0x1110
[  104.982598][ T5282]  iomap_dio_rw+0x40/0x90
[  104.987032][ T5282]  ext4_file_write_iter+0xb71/0xf20
[  104.992300][ T5282]  do_iter_readv_writev+0x394/0x450
[  104.997592][ T5282]  vfs_writev+0x2d4/0x880
[  105.002059][ T5282]  ? proc_fail_nth_write+0x12a/0x150
[  105.007373][ T5282]  __se_sys_pwritev2+0x100/0x1c0
[  105.012394][ T5282]  __x64_sys_pwritev2+0x78/0x90
[  105.017392][ T5282]  x64_sys_call+0x2afe/0x2dc0
[  105.022125][ T5282]  do_syscall_64+0xc9/0x1c0
[  105.026669][ T5282]  ? clear_bhb_loop+0x55/0xb0
[  105.031462][ T5282]  ? clear_bhb_loop+0x55/0xb0
[  105.036167][ T5282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.042091][ T5282] RIP: 0033:0x7fe917215d19
[  105.046520][ T5282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.066151][ T5282] RSP: 002b:00007fe915887038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  105.074615][ T5282] RAX: ffffffffffffffda RBX: 00007fe917405fa0 RCX: 00007fe917215d19
[  105.082663][ T5282] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000006
[  105.090647][ T5282] RBP: 00007fe915887090 R08: 0000000000000000 R09: 0000000000000003
[  105.098623][ T5282] R10: 0000000000007a00 R11: 0000000000000246 R12: 0000000000000002
[  105.106617][ T5282] R13: 0000000000000000 R14: 00007fe917405fa0 R15: 00007ffc5d6e1b98
[  105.114626][ T5282]  </TASK>
[  105.140944][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.154032][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.176091][ T5289] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.187238][ T5289] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.200668][ T5291] netlink: 48 bytes leftover after parsing attributes in process `syz.4.613'.
[  105.217617][ T5295] loop1: detected capacity change from 0 to 512
[  105.249045][ T5299] loop4: detected capacity change from 0 to 2048
[  105.266970][ T5299] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.284069][ T5308] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  105.293502][ T5299] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.297267][ T3379] IPVS: starting estimator thread 0...
[  105.336539][ T5313] loop5: detected capacity change from 0 to 764
[  105.345399][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.374121][ T5315] loop4: detected capacity change from 0 to 128
[  105.391476][ T5311] IPVS: using max 2304 ests per chain, 115200 per kthread
[  105.418099][ T5321] Cannot find set identified by id 0 to match
[  105.483698][ T5326] loop1: detected capacity change from 0 to 764
[  105.519504][ T5329] netlink: 48 bytes leftover after parsing attributes in process `syz.1.627'.
[  105.600679][ T5317] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.618145][ T5337] loop1: detected capacity change from 0 to 2048
[  105.619717][ T5317] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.666120][ T5337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.667771][ T5341] loop0: detected capacity change from 0 to 764
[  105.678554][ T5337] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.724819][ T5343] bpf_get_probe_write_proto: 2 callbacks suppressed
[  105.724840][ T5343] syz.6.634[5343] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.731745][ T5343] syz.6.634[5343] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.743268][ T5343] syz.6.634[5343] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.756684][ T5345] netlink: 'syz.0.633': attribute type 10 has an invalid length.
[  105.801012][ T5347] Cannot find set identified by id 0 to match
[  105.812372][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.834496][ T5352] loop6: detected capacity change from 0 to 764
[  105.859052][   T29] kauditd_printk_skb: 619 callbacks suppressed
[  105.859071][   T29] audit: type=1400 audit(1734158371.000:3654): avc:  denied  { prog_load } for  pid=5353 comm="syz.1.637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  105.884514][   T29] audit: type=1400 audit(1734158371.000:3655): avc:  denied  { bpf } for  pid=5353 comm="syz.1.637" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  105.934454][   T29] audit: type=1400 audit(1734158371.050:3656): avc:  denied  { map_create } for  pid=5353 comm="syz.1.637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  105.953717][   T29] audit: type=1400 audit(1734158371.060:3657): avc:  denied  { perfmon } for  pid=5353 comm="syz.1.637" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  105.974832][   T29] audit: type=1400 audit(1734158371.060:3658): avc:  denied  { prog_run } for  pid=5353 comm="syz.1.637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  105.994151][   T29] audit: type=1400 audit(1734158371.060:3659): avc:  denied  { unmount } for  pid=4640 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  106.014487][   T29] audit: type=1400 audit(1734158371.070:3660): avc:  denied  { map_read map_write } for  pid=5353 comm="syz.1.637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  106.035030][   T29] audit: type=1400 audit(1734158371.090:3661): avc:  denied  { read write } for  pid=3299 comm="syz-executor" name="loop0" dev="devtmpfs" ino=562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  106.058341][   T29] audit: type=1400 audit(1734158371.090:3662): avc:  denied  { open } for  pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  106.081836][   T29] audit: type=1400 audit(1734158371.090:3663): avc:  denied  { ioctl } for  pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=562 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  106.093241][ T5368] loop6: detected capacity change from 0 to 764
[  106.119635][ T5362] team0 (unregistering): Port device team_slave_0 removed
[  106.129646][ T5362] team0 (unregistering): Port device team_slave_1 removed
[  106.141161][ T5370] atomic_op ffff88811a7c5528 conn xmit_atomic 0000000000000000
[  106.158385][ T5370] loop6: detected capacity change from 0 to 1024
[  106.169302][ T5372] program syz.0.645 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  106.182378][ T5370] EXT4-fs error (device loop6): ext4_acquire_dquot:6938: comm syz.6.644: Failed to acquire dquot type 0
[  106.195475][ T5370] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  106.210173][ T5370] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.644: corrupted inode contents
[  106.222673][ T5370] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #13: comm syz.6.644: mark_inode_dirty error
[  106.240357][ T5370] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.644: corrupted inode contents
[  106.260463][ T5370] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #13: comm syz.6.644: mark_inode_dirty error
[  106.270432][ T5380] loop0: detected capacity change from 0 to 2048
[  106.272281][ T5377] FAULT_INJECTION: forcing a failure.
[  106.272281][ T5377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.291400][ T5377] CPU: 1 UID: 0 PID: 5377 Comm: syz.5.648 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  106.296184][ T5382] loop1: detected capacity change from 0 to 764
[  106.302291][ T5377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  106.302309][ T5377] Call Trace:
[  106.302317][ T5377]  <TASK>
[  106.302335][ T5377]  dump_stack_lvl+0xf2/0x150
[  106.318649][ T5377]  dump_stack+0x15/0x1a
[  106.324974][ T5377]  should_fail_ex+0x223/0x230
[  106.338491][ T5377]  should_fail+0xb/0x10
[  106.341448][ T5370] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.644: corrupted inode contents
[  106.342734][ T5377]  should_fail_usercopy+0x1a/0x20
[  106.342835][ T5377]  _copy_from_iter+0xd5/0xd00
[  106.342870][ T5377]  ? kmalloc_reserve+0x16e/0x190
[  106.357095][ T5370] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  106.359678][ T5377]  ? __build_skb_around+0x196/0x1f0
[  106.365059][ T5370] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #13: comm syz.6.644: corrupted inode contents
[  106.369334][ T5377]  ? __alloc_skb+0x21f/0x310
[  106.369362][ T5377]  ? __virt_addr_valid+0x1ed/0x250
[  106.378148][ T5370] EXT4-fs error (device loop6): ext4_truncate:4240: inode #13: comm syz.6.644: mark_inode_dirty error
[  106.383058][ T5377]  ? __check_object_size+0x364/0x520
[  106.383094][ T5377]  netlink_sendmsg+0x460/0x6e0
[  106.395149][ T5370] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  106.399436][ T5377]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.407593][ T5370] EXT4-fs (loop6): 1 truncate cleaned up
[  106.415455][ T5377]  __sock_sendmsg+0x140/0x180
[  106.415500][ T5377]  ____sys_sendmsg+0x312/0x410
[  106.421543][ T5370] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.425779][ T5377]  __sys_sendmsg+0x19d/0x230
[  106.447054][ T5380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.450293][ T5377]  __x64_sys_sendmsg+0x46/0x50
[  106.457054][ T5380] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.467468][ T5377]  x64_sys_call+0x2734/0x2dc0
[  106.467509][ T5377]  do_syscall_64+0xc9/0x1c0
[  106.467533][ T5377]  ? clear_bhb_loop+0x55/0xb0
[  106.513801][ T5377]  ? clear_bhb_loop+0x55/0xb0
[  106.518501][ T5377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.524420][ T5377] RIP: 0033:0x7fd792c45d19
[  106.528843][ T5377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.548478][ T5377] RSP: 002b:00007fd7912b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  106.556910][ T5377] RAX: ffffffffffffffda RBX: 00007fd792e35fa0 RCX: 00007fd792c45d19
[  106.564944][ T5377] RDX: 0000000000040000 RSI: 00000000200000c0 RDI: 0000000000000003
[  106.572924][ T5377] RBP: 00007fd7912b1090 R08: 0000000000000000 R09: 0000000000000000
[  106.580902][ T5377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.588879][ T5377] R13: 0000000000000000 R14: 00007fd792e35fa0 R15: 00007ffec8cef038
[  106.596865][ T5377]  </TASK>
[  106.649389][ T5387] netlink: 12 bytes leftover after parsing attributes in process `syz.5.651'.
[  106.659399][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.714480][ T5392] loop5: detected capacity change from 0 to 764
[  106.731580][ T5390] FAULT_INJECTION: forcing a failure.
[  106.731580][ T5390] name failslab, interval 1, probability 0, space 0, times 0
[  106.742878][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.744347][ T5390] CPU: 0 UID: 0 PID: 5390 Comm: syz.6.652 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  106.763876][ T5390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  106.774028][ T5390] Call Trace:
[  106.777317][ T5390]  <TASK>
[  106.780255][ T5390]  dump_stack_lvl+0xf2/0x150
[  106.784878][ T5390]  dump_stack+0x15/0x1a
[  106.789057][ T5390]  should_fail_ex+0x223/0x230
[  106.793861][ T5390]  ? audit_log_d_path+0x96/0x250
[  106.798812][ T5390]  should_failslab+0x8f/0xb0
[  106.803456][ T5390]  __kmalloc_cache_noprof+0x4e/0x320
[  106.808800][ T5390]  audit_log_d_path+0x96/0x250
[  106.813577][ T5390]  ? __rcu_read_unlock+0x4e/0x70
[  106.818692][ T5390]  audit_log_d_path_exe+0x42/0x70
[  106.823827][ T5390]  audit_log_task+0x192/0x1c0
[  106.828569][ T5390]  audit_seccomp+0x68/0x130
[  106.833086][ T5390]  __seccomp_filter+0x6fa/0x1180
[  106.838050][ T5390]  ? __perf_event_task_sched_out+0x138/0x1010
[  106.844214][ T5390]  ? __dequeue_entity+0x22/0x310
[  106.849173][ T5390]  __secure_computing+0x9f/0x1c0
[  106.854174][ T5390]  syscall_trace_enter+0xd1/0x1f0
[  106.859224][ T5390]  do_syscall_64+0xaa/0x1c0
[  106.863735][ T5390]  ? clear_bhb_loop+0x55/0xb0
[  106.868507][ T5390]  ? clear_bhb_loop+0x55/0xb0
[  106.873217][ T5390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.879137][ T5390] RIP: 0033:0x7fe91721472c
[  106.883572][ T5390] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  106.903372][ T5390] RSP: 002b:00007fe915887030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  106.911800][ T5390] RAX: ffffffffffffffda RBX: 00007fe917405fa0 RCX: 00007fe91721472c
[  106.919779][ T5390] RDX: 000000000000000f RSI: 00007fe9158870a0 RDI: 0000000000000004
[  106.927759][ T5390] RBP: 00007fe915887090 R08: 0000000000000000 R09: 0000000000000000
[  106.935813][ T5390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.943792][ T5390] R13: 0000000000000000 R14: 00007fe917405fa0 R15: 00007ffc5d6e1b98
[  106.951780][ T5390]  </TASK>
[  106.990818][ T5388] xt_connbytes: Forcing CT accounting to be enabled
[  106.999639][ T5388] Cannot find add_set index 0 as target
[  107.080096][ T5410] loop5: detected capacity change from 0 to 764
[  107.086630][ T5405] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  107.094008][ T5407] loop0: detected capacity change from 0 to 764
[  107.102321][ T5413] loop6: detected capacity change from 0 to 512
[  107.134290][ T5411] program syz.1.657 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  107.144987][ T5413] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.170793][ T5413] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.177816][ T5421] syz.4.665[5421] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.183709][ T5421] syz.4.665[5421] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.195749][ T5421] syz.4.665[5421] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.218441][ T5418] loop0: detected capacity change from 0 to 2048
[  107.234102][ T5413] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.662: corrupted inode contents
[  107.248115][ T5413] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #2: comm syz.6.662: mark_inode_dirty error
[  107.260711][ T5413] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.662: corrupted inode contents
[  107.264023][ T5423] loop1: detected capacity change from 0 to 764
[  107.280732][ T5421] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.665'.
[  107.294681][ T5418] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.308380][ T5421] netlink: 28 bytes leftover after parsing attributes in process `syz.4.665'.
[  107.311609][ T5426] netlink: 4 bytes leftover after parsing attributes in process `syz.5.664'.
[  107.317365][ T5421] netlink: 28 bytes leftover after parsing attributes in process `syz.4.665'.
[  107.344355][ T5428] FAULT_INJECTION: forcing a failure.
[  107.344355][ T5428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.351104][ T5418] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.357497][ T5428] CPU: 1 UID: 0 PID: 5428 Comm: syz.1.667 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  107.357557][ T5428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  107.388827][ T5428] Call Trace:
[  107.392114][ T5428]  <TASK>
[  107.395057][ T5428]  dump_stack_lvl+0xf2/0x150
[  107.399753][ T5428]  dump_stack+0x15/0x1a
[  107.403933][ T5428]  should_fail_ex+0x223/0x230
[  107.408836][ T5428]  should_fail+0xb/0x10
[  107.413084][ T5428]  should_fail_usercopy+0x1a/0x20
[  107.418129][ T5428]  _copy_from_user+0x1e/0xb0
[  107.422745][ T5428]  copy_msghdr_from_user+0x54/0x2a0
[  107.428028][ T5428]  ? __fget_files+0x17c/0x1c0
[  107.432747][ T5428]  __sys_sendmsg+0x13e/0x230
[  107.437399][ T5428]  __x64_sys_sendmsg+0x46/0x50
[  107.442178][ T5428]  x64_sys_call+0x2734/0x2dc0
[  107.446951][ T5428]  do_syscall_64+0xc9/0x1c0
[  107.451461][ T5428]  ? clear_bhb_loop+0x55/0xb0
[  107.456144][ T5428]  ? clear_bhb_loop+0x55/0xb0
[  107.460838][ T5428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.466762][ T5428] RIP: 0033:0x7f2dee2c5d19
[  107.471183][ T5428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.491053][ T5428] RSP: 002b:00007f2dec937038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.499495][ T5428] RAX: ffffffffffffffda RBX: 00007f2dee4b5fa0 RCX: 00007f2dee2c5d19
[  107.507472][ T5428] RDX: 0000000000000000 RSI: 0000000020000940 RDI: 0000000000000006
[  107.515543][ T5428] RBP: 00007f2dec937090 R08: 0000000000000000 R09: 0000000000000000
[  107.523524][ T5428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.531501][ T5428] R13: 0000000000000000 R14: 00007f2dee4b5fa0 R15: 00007ffd2dcef948
[  107.539538][ T5428]  </TASK>
[  107.553543][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.581597][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.590299][ T5432] netlink: 4 bytes leftover after parsing attributes in process `syz.1.671'.
[  107.637444][ T5432] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  107.644980][ T5432] batman_adv: batadv0: Removing interface: batadv_slave_0
[  107.655855][ T5432] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  107.663665][ T5432] batman_adv: batadv0: Removing interface: batadv_slave_1
[  107.692657][ T5435] netlink: 132 bytes leftover after parsing attributes in process `syz.6.669'.
[  107.738423][ T5444] Cannot find set identified by id 0 to match
[  107.790282][ T5446] loop6: detected capacity change from 0 to 764
[  107.804341][ T5448] loop0: detected capacity change from 0 to 764
[  107.857890][ T5452] syz.4.678[5452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.858012][ T5452] syz.4.678[5452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.888796][ T5459] sd 0:0:1:0: device reset
[  107.904529][ T5460] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.678'.
[  107.925514][ T5452] syz.4.678[5452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.934978][ T5454] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  107.936113][ T5452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.678'.
[  107.961859][ T5452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.678'.
[  108.037646][ T5467] syz.6.681[5467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.083416][ T5475] FAULT_INJECTION: forcing a failure.
[  108.083416][ T5475] name failslab, interval 1, probability 0, space 0, times 0
[  108.107332][ T5475] CPU: 1 UID: 0 PID: 5475 Comm: syz.0.685 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  108.118060][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.128228][ T5475] Call Trace:
[  108.131527][ T5475]  <TASK>
[  108.134479][ T5475]  dump_stack_lvl+0xf2/0x150
[  108.139192][ T5475]  dump_stack+0x15/0x1a
[  108.143403][ T5475]  should_fail_ex+0x223/0x230
[  108.148163][ T5475]  should_failslab+0x8f/0xb0
[  108.155448][ T5475]  kmem_cache_alloc_noprof+0x52/0x320
[  108.160888][ T5475]  ? skb_clone+0x154/0x1f0
[  108.165351][ T5475]  ? mod_objcg_state+0x2ea/0x4f0
[  108.170328][ T5475]  skb_clone+0x154/0x1f0
[  108.172585][ T5482] loop5: detected capacity change from 0 to 764
[  108.174627][ T5475]  dev_queue_xmit_nit+0x14b/0x680
[  108.185900][ T5475]  ? __rcu_read_unlock+0x4e/0x70
[  108.185942][ T5475]  dev_hard_start_xmit+0xcc/0x3f0
[  108.185964][ T5475]  ? validate_xmit_skb+0x645/0x830
[  108.201099][ T5475]  __dev_queue_xmit+0x100a/0x2090
[  108.206155][ T5475]  ? skb_clone+0x154/0x1f0
[  108.210636][ T5475]  ? __dev_queue_xmit+0x186/0x2090
[  108.215766][ T5475]  ? __skb_clone+0x2d0/0x2f0
[  108.220378][ T5475]  __netlink_deliver_tap+0x3be/0x4f0
[  108.225936][ T5475]  netlink_unicast+0x64a/0x670
[  108.230716][ T5475]  netlink_sendmsg+0x5cc/0x6e0
[  108.235552][ T5475]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.240858][ T5475]  __sock_sendmsg+0x140/0x180
[  108.245564][ T5475]  ____sys_sendmsg+0x312/0x410
[  108.250350][ T5475]  __sys_sendmsg+0x19d/0x230
[  108.255006][ T5475]  __x64_sys_sendmsg+0x46/0x50
[  108.259793][ T5475]  x64_sys_call+0x2734/0x2dc0
[  108.264482][ T5475]  do_syscall_64+0xc9/0x1c0
[  108.269478][ T5475]  ? clear_bhb_loop+0x55/0xb0
[  108.274203][ T5475]  ? clear_bhb_loop+0x55/0xb0
[  108.278999][ T5475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.284915][ T5475] RIP: 0033:0x7ff77ed85d19
[  108.289351][ T5475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.309077][ T5475] RSP: 002b:00007ff77d3f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.317595][ T5475] RAX: ffffffffffffffda RBX: 00007ff77ef75fa0 RCX: 00007ff77ed85d19
[  108.325605][ T5475] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000005
[  108.333585][ T5475] RBP: 00007ff77d3f1090 R08: 0000000000000000 R09: 0000000000000000
[  108.341568][ T5475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.349604][ T5475] R13: 0000000000000000 R14: 00007ff77ef75fa0 R15: 00007ffffb05c178
[  108.357662][ T5475]  </TASK>
[  108.464572][ T5493] loop0: detected capacity change from 0 to 764
[  108.534521][ T5499] netlink: 'syz.4.693': attribute type 10 has an invalid length.
[  108.552241][ T5499] netlink: 'syz.4.693': attribute type 10 has an invalid length.
[  108.571015][ T5499] team0: Port device netdevsim1 removed
[  108.590132][ T5499] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  108.602213][ T5508] netlink: 'syz.0.697': attribute type 21 has an invalid length.
[  108.624761][ T5508] netlink: 'syz.0.697': attribute type 13 has an invalid length.
[  108.643252][ T5508] gretap0: refused to change device tx_queue_len
[  108.647675][ T5510] loop5: detected capacity change from 0 to 512
[  108.662229][ T5508] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  108.710878][ T5510] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  108.735356][ T5518] loop4: detected capacity change from 0 to 764
[  108.751100][ T5510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.770110][ T5510] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.698: corrupted inode contents
[  108.812852][ T5510] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.698: mark_inode_dirty error
[  108.834129][ T5510] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.698: corrupted inode contents
[  108.849954][ T5522] pim6reg1: entered promiscuous mode
[  108.855478][ T5522] pim6reg1: entered allmulticast mode
[  108.865397][ T5536] loop4: detected capacity change from 0 to 764
[  108.917158][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.053398][ T5553] loop1: detected capacity change from 0 to 256
[  109.070169][ T5553] FAT-fs (loop1): Directory bread(block 64) failed
[  109.090671][ T5553] FAT-fs (loop1): Directory bread(block 65) failed
[  109.098002][ T5553] FAT-fs (loop1): Directory bread(block 66) failed
[  109.102827][ T5557] loop0: detected capacity change from 0 to 256
[  109.111091][ T5553] FAT-fs (loop1): Directory bread(block 67) failed
[  109.118073][ T5553] FAT-fs (loop1): Directory bread(block 68) failed
[  109.149209][ T5557] FAT-fs (loop0): Directory bread(block 64) failed
[  109.164098][ T5553] FAT-fs (loop1): Directory bread(block 69) failed
[  109.172865][ T5557] FAT-fs (loop0): Directory bread(block 65) failed
[  109.179490][ T5553] FAT-fs (loop1): Directory bread(block 70) failed
[  109.187310][ T5553] FAT-fs (loop1): Directory bread(block 71) failed
[  109.196152][ T5557] FAT-fs (loop0): Directory bread(block 66) failed
[  109.203164][ T5553] FAT-fs (loop1): Directory bread(block 72) failed
[  109.209928][ T5557] FAT-fs (loop0): Directory bread(block 67) failed
[  109.218188][ T5553] FAT-fs (loop1): Directory bread(block 73) failed
[  109.225116][ T5557] FAT-fs (loop0): Directory bread(block 68) failed
[  109.237791][ T5559] loop5: detected capacity change from 0 to 1024
[  109.240019][ T5557] FAT-fs (loop0): Directory bread(block 69) failed
[  109.253978][ T5559] EXT4-fs: Ignoring removed orlov option
[  109.259847][ T5559] EXT4-fs: Ignoring removed nomblk_io_submit option
[  109.260023][ T5557] FAT-fs (loop0): Directory bread(block 70) failed
[  109.274486][ T5557] FAT-fs (loop0): Directory bread(block 71) failed
[  109.281076][ T5557] FAT-fs (loop0): Directory bread(block 72) failed
[  109.290870][ T5563] random: crng reseeded on system resumption
[  109.299222][ T5559] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.374188][ T5557] FAT-fs (loop0): Directory bread(block 73) failed
[  109.422966][ T5567] syz.1.710: attempt to access beyond end of device
[  109.422966][ T5567] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  109.439868][ T5567] syz.1.710: attempt to access beyond end of device
[  109.439868][ T5567] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  109.515547][ T5568] syz.0.711: attempt to access beyond end of device
[  109.515547][ T5568] loop0: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  109.529492][ T5568] syz.0.711: attempt to access beyond end of device
[  109.529492][ T5568] loop0: rw=0, sector=1736, nr_sectors = 8 limit=256
[  109.743158][ T5570] loop6: detected capacity change from 0 to 764
[  109.774635][ T5572] loop6: detected capacity change from 0 to 512
[  109.793348][ T5572] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.806299][ T5572] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  109.827459][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.851060][ T5576] netlink: 'syz.6.717': attribute type 10 has an invalid length.
[  109.859358][ T5576] netlink: 'syz.6.717': attribute type 10 has an invalid length.
[  109.892173][ T5578] loop6: detected capacity change from 0 to 764
[  109.945709][ T5584] netlink: 'syz.0.721': attribute type 10 has an invalid length.
[  109.957039][ T5584] netlink: 'syz.0.721': attribute type 10 has an invalid length.
[  109.966264][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.968541][ T5584] netdevsim netdevsim0 netdevsim1: entered promiscuous mode
[  109.982921][ T5584] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[  109.992127][ T5584] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  110.024407][ T5589] syzkaller1: entered allmulticast mode
[  110.065140][ T5592] loop4: detected capacity change from 0 to 2048
[  110.072853][ T5592] EXT4-fs: quotafile must be on filesystem root
[  110.101154][ T5594] loop0: detected capacity change from 0 to 2048
[  110.120056][ T5594] EXT4-fs: quotafile must be on filesystem root
[  110.283702][ T5602] FAULT_INJECTION: forcing a failure.
[  110.283702][ T5602] name failslab, interval 1, probability 0, space 0, times 0
[  110.296431][ T5602] CPU: 0 UID: 0 PID: 5602 Comm: syz.5.728 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  110.307180][ T5602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.317715][ T5602] Call Trace:
[  110.321014][ T5602]  <TASK>
[  110.323967][ T5602]  dump_stack_lvl+0xf2/0x150
[  110.328785][ T5602]  dump_stack+0x15/0x1a
[  110.333130][ T5602]  should_fail_ex+0x223/0x230
[  110.338814][ T5602]  should_failslab+0x8f/0xb0
[  110.343543][ T5602]  kmem_cache_alloc_noprof+0x52/0x320
[  110.348952][ T5602]  ? __anon_vma_prepare+0x73/0x310
[  110.354249][ T5602]  ? __alloc_pages_noprof+0x1bc/0x340
[  110.359651][ T5602]  __anon_vma_prepare+0x73/0x310
[  110.364713][ T5602]  ? do_wp_page+0x100e/0x2340
[  110.369762][ T5602]  do_wp_page+0x1016/0x2340
[  110.374704][ T5602]  ? __rcu_read_lock+0x36/0x50
[  110.379495][ T5602]  handle_mm_fault+0xc63/0x2ac0
[  110.384400][ T5602]  exc_page_fault+0x3b9/0x650
[  110.389109][ T5602]  asm_exc_page_fault+0x26/0x30
[  110.393988][ T5602] RIP: 0033:0x7fd792b08ba3
[  110.398494][ T5602] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  110.418401][ T5602] RSP: 002b:00007fd7912b04a0 EFLAGS: 00010202
[  110.424512][ T5602] RAX: 0000000000000400 RBX: 00007fd7912b0540 RCX: 00007fd788e91000
[  110.432515][ T5602] RDX: 00007fd7912b06e0 RSI: 0000000000000009 RDI: 00007fd7912b05e0
[  110.440504][ T5602] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000b2
[  110.448745][ T5602] R10: 00000000000000c8 R11: 00007fd7912b0540 R12: 0000000000000001
[  110.456734][ T5602] R13: 00007fd792cd8f60 R14: 0000000000000020 R15: 00007fd7912b05e0
[  110.464845][ T5602]  </TASK>
[  110.468073][ T5602] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  110.517656][ T5602] loop5: detected capacity change from 0 to 1024
[  110.544475][ T5602] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.564063][ T5602] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  110.580683][ T5602] EXT4-fs (loop5): orphan cleanup on readonly fs
[  110.594978][ T5602] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  110.614941][ T5602] EXT4-fs (loop5): Remounting filesystem read-only
[  110.622742][ T5602] EXT4-fs (loop5): 1 orphan inode deleted
[  110.629010][ T5602] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  110.638556][ T5608] loop4: detected capacity change from 0 to 1024
[  110.647489][ T5602] SELinux: (dev loop5, type ext4) getxattr errno 5
[  110.655697][ T5602] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.688013][ T5609] loop6: detected capacity change from 0 to 1024
[  110.695557][ T5609] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.711062][ T5610] loop0: detected capacity change from 0 to 1024
[  110.721455][ T5608] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.741027][ T5612] smc: net device bond0 applied user defined pnetid SYZ0
[  110.771006][ T5610] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  110.785851][ T5612] smc: net device bond0 erased user defined pnetid SYZ0
[  110.786208][ T5609] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  110.801131][ T5608] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  110.814636][ T5616] loop1: detected capacity change from 0 to 256
[  110.852106][ T5610] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  110.867914][ T5616] FAT-fs (loop1): Directory bread(block 64) failed
[  110.880413][ T5608] EXT4-fs (loop4): orphan cleanup on readonly fs
[  110.881461][ T5616] FAT-fs (loop1): Directory bread(block 65) failed
[  110.888553][ T5608] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  110.893656][ T5609] EXT4-fs (loop6): orphan cleanup on readonly fs
[  110.904379][ T5608] EXT4-fs (loop4): Remounting filesystem read-only
[  110.913093][ T5616] FAT-fs (loop1): Directory bread(block 66) failed
[  110.915855][ T5608] __quota_error: 538 callbacks suppressed
[  110.915872][ T5608] Quota error (device loop4): write_blk: dquota write failed
[  110.935767][ T5608] Quota error (device loop4): write_blk: dquota write failed
[  110.941198][ T5619] loop5: detected capacity change from 0 to 764
[  110.943201][ T5608] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  110.955524][ T5610] EXT4-fs (loop0): orphan cleanup on readonly fs
[  110.962815][ T5608] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  110.968103][ T5616] FAT-fs (loop1): Directory bread(block 67) failed
[  110.982277][ T5609] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  111.004435][ T5608] EXT4-fs (loop4): 1 orphan inode deleted
[  111.013050][ T5616] FAT-fs (loop1): Directory bread(block 68) failed
[  111.019712][ T5616] FAT-fs (loop1): Directory bread(block 69) failed
[  111.027060][ T5608] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.042857][ T5609] EXT4-fs (loop6): Remounting filesystem read-only
[  111.049524][ T5609] Quota error (device loop6): write_blk: dquota write failed
[  111.054576][ T5616] FAT-fs (loop1): Directory bread(block 70) failed
[  111.057088][ T5609] Quota error (device loop6): write_blk: dquota write failed
[  111.071141][ T5609] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[  111.076307][ T5610] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  111.085702][ T5621] loop5: detected capacity change from 0 to 128
[  111.093533][ T5616] FAT-fs (loop1): Directory bread(block 71) failed
[  111.101300][ T5609] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  111.112810][   T29] audit: type=1400 audit(1734158376.260:4196): avc:  denied  { mounton } for  pid=5620 comm="syz.5.732" path="/60/file0/file0" dev="loop5" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[  111.121422][ T5608] SELinux: (dev loop4, type ext4) getxattr errno 5
[  111.145168][ T5610] EXT4-fs (loop0): Remounting filesystem read-only
[  111.152298][ T5616] FAT-fs (loop1): Directory bread(block 72) failed
[  111.159176][ T5616] FAT-fs (loop1): Directory bread(block 73) failed
[  111.169118][ T5610] Quota error (device loop0): write_blk: dquota write failed
[  111.185195][ T5609] EXT4-fs (loop6): 1 orphan inode deleted
[  111.193945][ T5609] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.200220][ T5610] EXT4-fs (loop0): 1 orphan inode deleted
[  111.231677][ T5609] SELinux: (dev loop6, type ext4) getxattr errno 5
[  111.245601][ T5608] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.256305][ T5610] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.261896][ T5609] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.320037][ T5610] SELinux: (dev loop0, type ext4) getxattr errno 5
[  111.335724][ T5628] syz.1.730: attempt to access beyond end of device
[  111.335724][ T5628] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  111.360286][ T5610] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.371093][ T5628] syz.1.730: attempt to access beyond end of device
[  111.371093][ T5628] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256
[  111.404710][ T5632] loop5: detected capacity change from 0 to 512
[  111.433146][ T5632] EXT4-fs (loop5): orphan cleanup on readonly fs
[  111.450768][ T5632] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  111.465767][ T5632] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  111.476578][ T5632] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #13: comm syz.5.735: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  111.496426][ T5632] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.735: couldn't read orphan inode 13 (err -117)
[  111.525326][ T5632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0b00-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.621661][ T5631] Falling back ldisc for ttyS3.
[  111.680951][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0b00-0000-000000000000.
[  111.721611][ T5636] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5636 comm=syz.1.736
[  111.763407][ T5638] bpf_get_probe_write_proto: 8 callbacks suppressed
[  111.763476][ T5638] syz.5.737[5638] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.782924][ T5638] syz.5.737[5638] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.847470][ T5638] syz.5.737[5638] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.872005][ T5640] __nla_validate_parse: 13 callbacks suppressed
[  111.872025][ T5640] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.737'.
[  112.139399][ T5649] loop5: detected capacity change from 0 to 512
[  112.153025][ T5649] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  112.193846][ T5649] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.230983][ T5649] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.741: corrupted inode contents
[  112.268104][ T5649] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.741: mark_inode_dirty error
[  112.305011][ T5649] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.741: corrupted inode contents
[  112.394612][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.497688][ T5656] loop5: detected capacity change from 0 to 2048
[  112.534866][ T5656] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.547138][ T5656] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.056058][ T5661] netlink: 116 bytes leftover after parsing attributes in process `syz.1.743'.
[  113.077726][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.150227][ T5664] FAULT_INJECTION: forcing a failure.
[  113.150227][ T5664] name failslab, interval 1, probability 0, space 0, times 0
[  113.163008][ T5664] CPU: 0 UID: 0 PID: 5664 Comm: syz.1.745 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  113.173760][ T5664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.183838][ T5664] Call Trace:
[  113.187125][ T5664]  <TASK>
[  113.190136][ T5664]  dump_stack_lvl+0xf2/0x150
[  113.194777][ T5664]  dump_stack+0x15/0x1a
[  113.199016][ T5664]  should_fail_ex+0x223/0x230
[  113.203729][ T5664]  should_failslab+0x8f/0xb0
[  113.208350][ T5664]  kmem_cache_alloc_bulk_noprof+0x58/0x440
[  113.214178][ T5664]  bpf_test_run_xdp_live+0xcf6/0x1040
[  113.219647][ T5664]  ? __pfx_autoremove_wake_function+0x10/0x10
[  113.225738][ T5664]  ? bpf_dispatcher_change_prog+0x747/0x840
[  113.231648][ T5664]  ? bpf_test_run_xdp_live+0x2b1/0x1040
[  113.237302][ T5664]  bpf_prog_test_run_xdp+0x51d/0x8b0
[  113.242667][ T5664]  ? __rcu_read_unlock+0x4e/0x70
[  113.247708][ T5664]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  113.253549][ T5664]  bpf_prog_test_run+0x20f/0x3a0
[  113.258666][ T5664]  __sys_bpf+0x400/0x7a0
[  113.262932][ T5664]  __x64_sys_bpf+0x43/0x50
[  113.267433][ T5664]  x64_sys_call+0x2914/0x2dc0
[  113.272148][ T5664]  do_syscall_64+0xc9/0x1c0
[  113.276694][ T5664]  ? clear_bhb_loop+0x55/0xb0
[  113.281404][ T5664]  ? clear_bhb_loop+0x55/0xb0
[  113.286090][ T5664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.292083][ T5664] RIP: 0033:0x7f2dee2c5d19
[  113.296503][ T5664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.316206][ T5664] RSP: 002b:00007f2dec937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  113.324630][ T5664] RAX: ffffffffffffffda RBX: 00007f2dee4b5fa0 RCX: 00007f2dee2c5d19
[  113.332610][ T5664] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  113.340586][ T5664] RBP: 00007f2dec937090 R08: 0000000000000000 R09: 0000000000000000
[  113.348581][ T5664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  113.356566][ T5664] R13: 0000000000000000 R14: 00007f2dee4b5fa0 R15: 00007ffd2dcef948
[  113.364639][ T5664]  </TASK>
[  113.524649][ T5668] loop5: detected capacity change from 0 to 2048
[  113.525834][ T5666] loop0: detected capacity change from 0 to 256
[  113.558187][ T5666] FAT-fs (loop0): Directory bread(block 64) failed
[  113.565151][ T5666] FAT-fs (loop0): Directory bread(block 65) failed
[  113.574954][ T5666] FAT-fs (loop0): Directory bread(block 66) failed
[  113.582425][ T5668] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.599970][ T5668] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.612175][ T5666] FAT-fs (loop0): Directory bread(block 67) failed
[  113.618871][ T5666] FAT-fs (loop0): Directory bread(block 68) failed
[  113.625595][ T5666] FAT-fs (loop0): Directory bread(block 69) failed
[  113.632258][ T5666] FAT-fs (loop0): Directory bread(block 70) failed
[  113.638876][ T5666] FAT-fs (loop0): Directory bread(block 71) failed
[  113.645669][ T5666] FAT-fs (loop0): Directory bread(block 72) failed
[  113.652665][ T5666] FAT-fs (loop0): Directory bread(block 73) failed
[  113.673160][ T5674] netlink: 'syz.1.748': attribute type 10 has an invalid length.
[  113.703096][ T5676] loop1: detected capacity change from 0 to 128
[  113.746745][ T5678] syz.0.746: attempt to access beyond end of device
[  113.746745][ T5678] loop0: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  113.766450][ T5678] syz.0.746: attempt to access beyond end of device
[  113.766450][ T5678] loop0: rw=0, sector=1736, nr_sectors = 8 limit=256
[  113.807263][ T4626] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.992517][ T5684] syz.5.751[5684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.992619][ T5684] syz.5.751[5684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.052434][ T5685] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.751'.
[  114.105517][ T5684] syz.5.751[5684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.107169][ T5681] Cannot find set identified by id 0 to match
[  114.173269][ T5691] loop6: detected capacity change from 0 to 512
[  114.201185][ T5691] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.234530][ T5691] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.249468][ T5691] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.752: corrupted inode contents
[  114.271672][ T5691] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #2: comm syz.6.752: mark_inode_dirty error
[  114.282508][ T5703] loop1: detected capacity change from 0 to 512
[  114.287676][ T5691] EXT4-fs error (device loop6): ext4_do_update_inode:5153: inode #2: comm syz.6.752: corrupted inode contents
[  114.301462][ T5703] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.313559][ T5701] netlink: 'syz.4.757': attribute type 10 has an invalid length.
[  114.324002][ T5703] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.341170][ T5708] netlink: 'syz.0.759': attribute type 10 has an invalid length.
[  114.343672][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.351460][ T5703] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.758: corrupted inode contents
[  114.370270][ T5703] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.758: mark_inode_dirty error
[  114.381728][ T5703] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.758: corrupted inode contents
[  114.381867][ T5701] bond0: (slave netdevsim1): Releasing backup interface
[  114.402863][ T5701] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[  114.412251][ T5701] team0: Failed to send options change via netlink (err -105)
[  114.419938][ T5701] team0: Port device netdevsim1 added
[  114.431503][ T5708] bond0: (slave netdevsim1): Releasing backup interface
[  114.441132][ T5708] netdevsim netdevsim0 netdevsim1: left promiscuous mode
[  114.448415][ T5708] netdevsim netdevsim0 netdevsim1: left allmulticast mode
[  114.479226][ T5715] loop6: detected capacity change from 0 to 764
[  114.487671][ T5717] loop4: detected capacity change from 0 to 764
[  114.513331][ T5719] Cannot find set identified by id 0 to match
[  114.531056][ T5722] syz.6.764[5722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.531152][ T5722] syz.6.764[5722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.542571][ T5722] syz.6.764[5722] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.558125][ T5722] netlink: 133492 bytes leftover after parsing attributes in process `syz.6.764'.
[  114.599106][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.606827][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.614408][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.621879][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.629364][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.636973][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.644505][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.652017][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.659474][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.667044][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.674510][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.681964][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.689384][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.696924][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.704400][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.711882][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.719313][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.726746][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.734206][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.742098][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.749588][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.757108][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.764535][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.771967][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.779373][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.786805][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.794682][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.802294][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.809705][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.817226][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.824647][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.832255][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.839742][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.847302][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.854752][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.862193][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.869619][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.877094][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.884620][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.892120][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.899525][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.907050][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.914481][ T3954] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  114.924365][ T3954] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  114.937202][ T5728] team0 (unregistering): Port device team_slave_0 removed
[  114.946678][ T5728] team0 (unregistering): Port device team_slave_1 removed
[  114.956389][ T5728] team0 (unregistering): Port device netdevsim1 removed
[  115.042267][ T5735] loop5: detected capacity change from 0 to 2048
[  115.049404][ T5735] EXT4-fs: quotafile must be on filesystem root
[  115.163179][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.192570][ T5735] loop5: detected capacity change from 0 to 1024
[  115.201704][ T5735] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  115.213844][ T5735] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  115.216001][ T5741] netlink: 'syz.6.771': attribute type 10 has an invalid length.
[  115.221885][ T5735] EXT4-fs (loop5): orphan cleanup on readonly fs
[  115.237412][ T5735] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  115.242202][ T5743] loop4: detected capacity change from 0 to 512
[  115.253551][ T5735] EXT4-fs (loop5): Remounting filesystem read-only
[  115.255006][ T5741] netlink: 'syz.6.771': attribute type 10 has an invalid length.
[  115.260303][ T5735] EXT4-fs (loop5): 1 orphan inode deleted
[  115.269185][ T5743] ext4: Unknown parameter 'noacl'
[  115.282566][ T5735] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.295132][ T5735] SELinux: (dev loop5, type ext4) getxattr errno 5
[  115.302109][ T5735] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.389510][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.5.776'.
[  115.408757][ T5748] netlink: 'syz.1.774': attribute type 10 has an invalid length.
[  115.413638][ T5751] loop5: detected capacity change from 0 to 2048
[  115.424740][ T5753] loop6: detected capacity change from 0 to 764
[  115.452698][ T5756] Cannot find set identified by id 0 to match
[  115.538697][ T5764] loop1: detected capacity change from 0 to 2048
[  115.571024][ T5768] smc: net device bond0 applied user defined pnetid SYZ0
[  115.579587][ T5768] netlink: 116 bytes leftover after parsing attributes in process `syz.4.783'.
[  115.588755][ T5768] smc: net device bond0 erased user defined pnetid SYZ0
[  115.589926][ T5764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.609687][ T5764] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.678302][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.717199][ T5763] syz.5.781[5763] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  115.723375][ T5777] netlink: 'syz.1.786': attribute type 10 has an invalid length.
[  115.744742][ T5777] netlink: 'syz.1.786': attribute type 10 has an invalid length.
[  115.747776][ T5780] netlink: 'syz.4.787': attribute type 10 has an invalid length.
[  115.791025][ T5782] loop1: detected capacity change from 0 to 2048
[  115.814371][ T5782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.826748][ T5782] ext4 filesystem being mounted at /161/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.866739][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.894865][ T5789] loop1: detected capacity change from 0 to 764
[  115.937774][   T29] kauditd_printk_skb: 458 callbacks suppressed
[  115.937792][   T29] audit: type=1400 audit(1734158381.080:4647): avc:  denied  { read write } for  pid=3299 comm="syz-executor" name="loop0" dev="devtmpfs" ino=562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  115.950484][ T5794] Cannot find set identified by id 0 to match
[  115.992352][   T29] audit: type=1400 audit(1734158381.080:4648): avc:  denied  { open } for  pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  116.015680][   T29] audit: type=1400 audit(1734158381.080:4649): avc:  denied  { ioctl } for  pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=562 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  116.020034][ T5795] loop1: detected capacity change from 0 to 2048
[  116.040397][   T29] audit: type=1400 audit(1734158381.090:4650): avc:  denied  { name_bind } for  pid=5793 comm="syz.0.793" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  116.068533][   T29] audit: type=1400 audit(1734158381.090:4651): avc:  denied  { node_bind } for  pid=5793 comm="syz.0.793" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  116.089320][   T29] audit: type=1400 audit(1734158381.090:4652): avc:  denied  { create } for  pid=5793 comm="syz.0.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  116.100856][ T5791] loop4: detected capacity change from 0 to 512
[  116.108850][   T29] audit: type=1400 audit(1734158381.090:4653): avc:  denied  { connect } for  pid=5793 comm="syz.0.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  116.134565][   T29] audit: type=1400 audit(1734158381.090:4654): avc:  denied  { write } for  pid=5793 comm="syz.0.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  116.151252][ T5798] loop5: detected capacity change from 0 to 2048
[  116.154185][   T29] audit: type=1400 audit(1734158381.090:4655): avc:  denied  { create } for  pid=5793 comm="syz.0.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  116.179934][   T29] audit: type=1400 audit(1734158381.090:4656): avc:  denied  { setopt } for  pid=5793 comm="syz.0.793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  116.180780][ T5798] EXT4-fs: quotafile must be on filesystem root
[  116.225781][ T5791] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.246562][ T5791] ext4 filesystem being mounted at /148/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.333907][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.417925][    C0] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  116.443134][ T5814] netlink: 'syz.4.799': attribute type 10 has an invalid length.
[  116.458199][ T5814] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  116.592915][ T5818] loop5: detected capacity change from 0 to 1024
[  116.603156][ T5818] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  116.616037][ T5818] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  116.624206][ T5818] EXT4-fs (loop5): orphan cleanup on readonly fs
[  116.631465][ T5818] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  116.641255][ T5818] EXT4-fs (loop5): Remounting filesystem read-only
[  116.648084][ T5818] EXT4-fs (loop5): 1 orphan inode deleted
[  116.655647][ T5818] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.668066][ T5818] SELinux: (dev loop5, type ext4) getxattr errno 5
[  116.675529][ T5818] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.693816][ T5820] netlink: 12 bytes leftover after parsing attributes in process `syz.1.800'.
[  116.736694][ T5816] loop6: detected capacity change from 0 to 2048
[  116.805523][ T5816] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.821134][ T5817] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  116.840853][ T5826] msdos: Unknown parameter '18446744073709551615Oþø¥þ›ŸG5”û©s+01777777777777777777777ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  116.840853][ T5826] n'º|$@OOݱµ’-®+·el'
[  116.893329][ T5816] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.919330][ T5820] vlan2: entered promiscuous mode
[  116.949119][ T5826] FAULT_INJECTION: forcing a failure.
[  116.949119][ T5826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.962306][ T5826] CPU: 0 UID: 0 PID: 5826 Comm: syz.4.802 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  116.973005][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  116.983098][ T5826] Call Trace:
[  116.986394][ T5826]  <TASK>
[  116.989339][ T5826]  dump_stack_lvl+0xf2/0x150
[  116.993982][ T5826]  dump_stack+0x15/0x1a
[  116.998285][ T5826]  should_fail_ex+0x223/0x230
[  117.003019][ T5826]  should_fail+0xb/0x10
[  117.007255][ T5826]  should_fail_usercopy+0x1a/0x20
[  117.012383][ T5826]  strncpy_from_user+0x25/0x210
[  117.017333][ T5826]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  117.023057][ T5826]  ? getname_flags+0x81/0x3b0
[  117.027825][ T5826]  getname_flags+0xb0/0x3b0
[  117.032379][ T5826]  __x64_sys_rename+0x40/0x70
[  117.037591][ T5826]  x64_sys_call+0x2b1c/0x2dc0
[  117.042355][ T5826]  do_syscall_64+0xc9/0x1c0
[  117.046882][ T5826]  ? clear_bhb_loop+0x55/0xb0
[  117.051581][ T5826]  ? clear_bhb_loop+0x55/0xb0
[  117.056294][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.062303][ T5826] RIP: 0033:0x7fbd7a695d19
[  117.066847][ T5826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.086686][ T5826] RSP: 002b:00007fbd78d07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  117.095266][ T5826] RAX: ffffffffffffffda RBX: 00007fbd7a885fa0 RCX: 00007fbd7a695d19
[  117.103251][ T5826] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000020000100
[  117.111292][ T5826] RBP: 00007fbd78d07090 R08: 0000000000000000 R09: 0000000000000000
[  117.119276][ T5826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.127275][ T5826] R13: 0000000000000000 R14: 00007fbd7a885fa0 R15: 00007ffd779d9228
[  117.135338][ T5826]  </TASK>
[  117.308102][ T4640] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.389306][   T24] ==================================================================
[  117.397452][   T24] BUG: KCSAN: data-race in delete_from_page_cache_batch / nr_blockdev_pages
[  117.401620][ T5829] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  117.406159][   T24] 
[  117.406170][   T24] read-write to 0xffff888100630bb0 of 8 bytes by task 5818 on cpu 0:
[  117.422600][   T24]  delete_from_page_cache_batch+0x4f3/0x700
[  117.428541][   T24]  truncate_inode_pages_range+0x1c5/0x6b0
[  117.434312][   T24]  truncate_inode_pages+0x24/0x30
[  117.439377][   T24]  blkdev_flush_mapping+0xa5/0x1a0
[  117.444628][   T24]  bdev_release+0x2f9/0x420
[  117.449173][   T24]  blkdev_release+0x15/0x20
[  117.453708][   T24]  __fput+0x17a/0x6d0
[  117.457743][   T24]  ____fput+0x1c/0x30
[  117.461746][   T24]  task_work_run+0x13a/0x1a0
[  117.466348][   T24]  syscall_exit_to_user_mode+0xa8/0x120
[  117.471917][   T24]  do_syscall_64+0xd6/0x1c0
[  117.476432][   T24]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.482361][   T24] 
[  117.484778][   T24] read to 0xffff888100630bb0 of 8 bytes by task 24 on cpu 1:
[  117.492158][   T24]  nr_blockdev_pages+0x7c/0xd0
[  117.496938][   T24]  si_meminfo+0x87/0xd0
[  117.501113][   T24]  update_defense_level+0x49/0x5b0
[  117.506235][   T24]  defense_work_handler+0x1f/0x80
[  117.511270][   T24]  process_scheduled_works+0x483/0x9a0
[  117.516835][   T24]  worker_thread+0x51d/0x6f0
[  117.521450][   T24]  kthread+0x1d1/0x210
[  117.525542][   T24]  ret_from_fork+0x4b/0x60
[  117.529972][   T24]  ret_from_fork_asm+0x1a/0x30
[  117.534746][   T24] 
[  117.537080][   T24] value changed: 0x0000000000000001 -> 0x0000000000000000
[  117.544193][   T24] 
[  117.546548][   T24] Reported by Kernel Concurrency Sanitizer on:
[  117.552698][   T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[  117.563292][   T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  117.573451][   T24] Workqueue: events_long defense_work_handler
[  117.579545][   T24] ==================================================================
[  117.787528][ T5831] loop1: detected capacity change from 0 to 2048
[  117.813177][ T5831] EXT4-fs: quotafile must be on filesystem root
[  118.274150][ T5836] loop1: detected capacity change from 0 to 1024
[  118.301092][ T5836] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  118.312867][ T5836] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  118.321036][ T5836] EXT4-fs (loop1): orphan cleanup on readonly fs
[  118.328295][ T5836] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  118.337996][ T5836] EXT4-fs (loop1): Remounting filesystem read-only
[  118.344896][ T5836] EXT4-fs (loop1): 1 orphan inode deleted
[  118.351529][ T5836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.364158][ T5836] SELinux: (dev loop1, type ext4) getxattr errno 5
[  118.371157][ T5836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.