last executing test programs:

3.318753952s ago: executing program 0 (id=6256):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000500000007"], 0x48)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000000640)=[{{&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000180)="86", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="110000"], 0x200}}], 0x2, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f00000008c0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r5, 0x0, 0x20000004)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000040))
setsockopt$inet_dccp_int(r2, 0x21, 0xa, &(0x7f00000001c0)=0x10000, 0x4)

3.186525484s ago: executing program 0 (id=6260):
r0 = getpid()
perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xc}}, r0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

3.186045214s ago: executing program 0 (id=6261):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r1}, 0x18)
connect$phonet_pipe(r0, &(0x7f0000000040), 0x10)
ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_addr=@multicast1, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000080), 0x0}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x84)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

3.173650405s ago: executing program 0 (id=6262):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000001, 0x5d031, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000006180)=""/152, 0x98}], 0x1, &(0x7f0000008640)=[{0x0}], 0x1, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
ioctl$SG_IO(r3, 0x2285, 0x0)
writev(r3, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436", 0x28}, {&(0x7f0000000040)="aa1d484e243103000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e447511703d", 0x31}], 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)
pwritev(r4, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd", 0x2}], 0x1, 0x0, 0x0)

3.139196399s ago: executing program 0 (id=6263):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
creat(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000003c0)={0x3f, 0x2000000, 0xfffffffe, 0x0, 0xfffffffe})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
execve(0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmmsg$inet(r0, &(0x7f0000003ac0)=[{{&(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20044840)
sendmmsg$inet(r0, &(0x7f0000000a80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)='*', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)='\\', 0x1}], 0x1}}], 0x2, 0x0)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r0, 0x0, r2, 0x0, 0x2, 0x0)

2.344919742s ago: executing program 4 (id=6265):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$int_in(r1, 0x5452, &(0x7f0000000940)=0x707987cd)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000980)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00'/12, @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
write$usbip_server(0xffffffffffffffff, &(0x7f0000000100)=@ret_unlink={{0x4, 0x8c, 0x0, 0x1, 0x130}, {0x4}}, 0x30)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r5, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', 0x0})
fsetxattr(r5, 0x0, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r6, &(0x7f0000000100), 0xc)
bind$qrtr(r6, &(0x7f0000000080)={0x2a, 0x1}, 0xc)
mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
unshare(0x8040480)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x10, &(0x7f0000000340)=ANY=[@ANYRES16], &(0x7f0000000380)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
recvmsg(r1, 0x0, 0x0)
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f00000002c0)='>', 0x1}], 0x1}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001580)=ANY=[], 0x724)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001500000020000180140002006e"], 0x34}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2.181726348s ago: executing program 4 (id=6266):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000080)='./file0\x00', 0x12050, &(0x7f0000000ac0)=ANY=[@ANYRES32=0x0, @ANYRES64, @ANYBLOB="574ebc0e94989fcde4c7e6c29d5b7d84ea1d3b850bb44bd48bb9519bc17acbb165391925581f91c0647c1d56315d4d044e055c5842362d6e3547a65f0d1dc45f590e08b80c1182db21b765ab93d407000000a9415a11b2facb5efbeda5c99dab23a7176fd9bdcc116a308a7b3a9e3562550da7ba26451b761e0bc1c92c045eee"], 0xff, 0x2ce, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r1)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000060000002800070073797374656d5f753a6f626a6563745f723a756465765f7661725f72756e5f743a73300014000300fe800000000000000000e59d0000000000bb14000200fe880000000000000000000000000001"], 0x64}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
set_mempolicy(0x4005, &(0x7f0000000000)=0x7e, 0x8)

2.181401878s ago: executing program 4 (id=6267):
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, 0x0)

2.168180759s ago: executing program 4 (id=6268):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='oom_score_adj\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f0000000180)='=', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r1, 0x1)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000300)={0x0, 0x100}, &(0x7f0000000340)=0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
open_tree(r3, &(0x7f00000001c0)='./bus\x00', 0x901)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
getsockopt$IP6T_SO_GET_ENTRIES(r4, 0x29, 0x41, &(0x7f00000008c0)={'nat\x00', 0xfd, "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"}, &(0x7f0000000200)=0x121)

1.992432766s ago: executing program 2 (id=6273):
prctl$PR_SET_IO_FLUSHER(0x41, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000002000000000000000000000000070200006111960884fc57f0532d6bbfd3ac1144a81714d8c76790b9e5beef8421c8b08937dd741474175608bcd18c03f1d7c30b844b6175581d56b8aca9bb7aa34a327469eae6c23621577c7b75e47e37a89b33e42bdaa8c947"], 0x18}, 0x1, 0x5502000000000000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000800)=@newqdisc={0x50, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_DELAY_DIST={0x4}]}}}]}, 0x50}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00'}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r4, @ANYBLOB="000000000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0)

1.973816497s ago: executing program 2 (id=6275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000005000000010001000f00000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000f1ff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x0, &(0x7f0000000200)})
fstat(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a'], 0x28, 0xffff0000}}], 0x2, 0x0) (fail_nth: 4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200800, &(0x7f0000000300)={[{@resuid={'resuid', 0x3d, r2}}, {}, {@auto_da_alloc_val}, {@nomblk_io_submit}, {@grpid}, {@lazytime}, {@nodelalloc}, {@acl}, {@debug}]}, 0x5, 0x57a, &(0x7f0000000a00)="$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")
socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmmsg$inet(r4, &(0x7f00000070c0)=[{{&(0x7f00000009c0)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000007240)=[@ip_retopts={{0x10}}], 0x10}}], 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
write(r6, &(0x7f0000000080)="89ba41c97928dec7cec15a160d3dba257872aed129d4b5247c9834550448a4f46c37425b873ec95db3d757e8b2333a64d9abf416fd83f942661c47bcdf71f7d07ba2b2f051829a7f66952e57962614db0d03474a4a4bce636ea8d2b882b2b49ef18e76edbec7302a96e41f206d930eda2769c56e6d5e3d541ce9a21c3ce5cb5f", 0xfdef)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00'}, 0x10)

1.673616945s ago: executing program 2 (id=6276):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001000000", @ANYRES32=0x1, @ANYBLOB="7f00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10)
ioctl$PIO_UNIMAPCLR(r4, 0x4b68, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x8031, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x0, 0x168, 0x9, 0x0, 0xb, 0x250, 0x250, 0x250, 0x250, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [], [], 'veth0_to_bridge\x00', 'sit0\x00', {}, {}, 0x6c}, 0x6000000, 0x108, 0x150, 0x0, {0x0, 0x28e}, [@common=@inet=@ipcomp={{0x30}}, @common=@inet=@ipcomp={{0x30}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'dvmrp0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r7, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}}, 0x0)
r8 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000000600))
r9 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r9)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='console\x00', r10, 0x0, 0xfffffffffffffffe}, 0x18)

1.550820816s ago: executing program 2 (id=6277):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000001c40)=""/4096, 0x8ec0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)=[{0x0}], 0x1}, 0x0)

1.323875837s ago: executing program 4 (id=6278):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000080)='./file0\x00', 0x12050, &(0x7f0000000ac0)=ANY=[@ANYRES32=0x0, @ANYRES64, @ANYBLOB="574ebc0e94989fcde4c7e6c29d5b7d84ea1d3b850bb44bd48bb9519bc17acbb165391925581f91c0647c1d56315d4d044e055c5842362d6e3547a65f0d1dc45f590e08b80c1182db21b765ab93d407000000a9415a11b2facb5efbeda5c99dab23a7176fd9bdcc116a308a7b3a9e3562550da7ba26451b761e0bc1c92c045eee"], 0xff, 0x2ce, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r1)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000060000002800070073797374656d5f753a6f626a6563745f723a756465765f7661725f72756e5f743a73300014000300fe800000000000000000e59d0000000000bb14000200fe880000000000000000000000000001"], 0x64}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
set_mempolicy(0x4005, &(0x7f0000000000)=0x7e, 0x8)

1.279817641s ago: executing program 4 (id=6279):
syz_usb_connect$cdc_ncm(0x2, 0x9d, &(0x7f0000000ac0)=ANY=[], 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d90000000000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r0}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
unshare(0x2040400)
pipe(&(0x7f0000000580)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r2, @ANYRES64=0x0, @ANYRESHEX=r2], 0x20)

1.040048764s ago: executing program 1 (id=6284):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r1}, 0x18)
connect$phonet_pipe(r0, &(0x7f0000000040), 0x10)
ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_addr=@multicast1, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000080), 0x0}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x84)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1.039450284s ago: executing program 1 (id=6285):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x48, &(0x7f00000003c0)=[@in6={0xa, 0x4e24, 0x0, @private1}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e24, 0x0, @remote, 0x1}]}, &(0x7f0000000180)=0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="7ffbe1ffffff0000000005"], 0x14}, 0x1, 0xf00000000000000}, 0x0)
getgid()
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
gettid()
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000080), 0x1, 0x52e, &(0x7f0000000a80)="$eJzs3c9vI1cdAPDvTH52mza70ANUwC5QWNBq7Y23XVW9tHsBoaoSouKAOGxD4o1C7DjETmlCJNK/ASSQOMGfwAGJA1JPHLhxROKAkMoBaYEItEECyWjGk9RNnMY0jg3x5yONZt48+33fW+/Mm3l25gUwtm5ExF5ETEfEGxExX+xPiiVe6SzZ6x7v7y4d7O8uJdFuv/7XJM/P9kXXezJPFmXORsTXvhzxreRk3Ob2ztpirVbdLNLlVn2j3Nzeub1aX1yprlTXK5V7C/fuvHj3hcrA2nq9/vNHX1p99eu/+uUn3/3t3he/l1VrrsjrbscgdZo+dRQnMxkRr15EsBGYKNbTI64HH04aER+JiM/kx/98TOT/OwGAy6zdno/2fHcaALjs0nwMLElLxVjAXKRpqdQZw3smrqS1RrN162Fja325M1Z2NabSh6u16p1rM7//Tn7FMJVk6YU8L8/P05Vj6bsRcS0ifjjzRJ4uLTVqy6O77AGAsfbksf7/HzOd/r8PPb7VAwD+b8yOugIAwNDp/wFg/Oj/AWD89NH/F1/27114XQCA4XD/DwDjR/8PAONH/w8AY+Wrr72WLe2D4vnXy29ub6013ry9XG2ulepbS6WlxuZGaaXRWMmf2VM/q7xao7Gx8HxsvVVuVZutcnN750G9sbXeepA/1/tBdWoorQIAPsi16+/8LomIvZeeyJfomstBXw2XWzrqCgAjMzHqCgAjY7YvGF/93+P/5kLrAYxOz4d5z/bcfL8f/xdB/M4I/qfc/Hj/4//meIbLxfg/jK8PN/7/8sDrAQyf8X8YX+12cnzO/+mjLADgUjrHb/zb3x/URQgwUmdN5j2Q7/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgkpmLiG9HkpaKucDnIk1LpYinIuJqTCUPV2vVOxHxdFyPiKmZLL0w6koDAOeU/jkp5v+6Of/c3PHc6eSfM/k6Ir77k9d/9NZiq7W5kO3/29H+mcPpwyrvve8c8woCAAOW99+VYt11I/94f3fpcBlmfR7dj38XUxEvHezv5ksnZzIm8/Vsfi1x5e9Jke7MRfpsREwMIP7e2xHxsV7tT/KxkavFzKfd8aOI/dRQ46fvi5/meZ11dvH10QHUBcbNO/cj4pVex18aN/J17+N/Nj9Dnd+j+53CDs99B13xD89/Ez3iZ8f8jX5jPP/rr5zY2Z7v5L0d8exkr/jJUfzklPjP9Rn/D5/41A9ePiWv/dOIm9E7fnescqu+UW5u79xerS+uVFeq65XKvYV7d168+0KlnI9Rlw9Hqk/6y0u3nj6tbln7r5wSf7Zn+6eP3vu5Ptv/s3+98c1Pf0D8L3y29+f/TM/4HVmf+Pk+4y9e+cWp03dn8ZdPaf9Zn/+tPuO/+6ed5T5fCgAMQXN7Z22xVqtunmsjuwsdRDknNrIqDrTAMzb+GMOLdebG1EX9q174xuTRteJgS/5GVuKQm5MOvBXn2ng8rFijPS8BF++9g37UNQEAAAAAAAAAAAAAAE4zjD9dGnUbAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLz+EwAA//+2KMyN")
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r3, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100))
r4 = syz_open_pts(r3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = dup3(r4, r3, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f00000001c0)=0x11)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000000)={r9, @in={{0x2, 0x0, @empty}}}, 0x90)
socket$inet6_mptcp(0xa, 0x1, 0x106)

692.584806ms ago: executing program 2 (id=6286):
r0 = getpid()
perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xc}}, r0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

685.294177ms ago: executing program 1 (id=6287):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000f406000001000000", @ANYRES32=0x1, @ANYBLOB="00000000009662000c0000060000eb79a5368ec06fb5e6c2d6ef761e5783e552f5cbb478950313dfd939d6edc4b5582a90c9af1552a4c00e8314a32488e5c7f9b03cbdff01464a6dfe65a0a366b06d208f49f45ab2439e20802b804463207fa96fef9a809b4463ea1baf499c6284556291f85c7bf75171a8e060a2924a52", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000600), 0x5, r0}, 0x38) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="d4010000200000001800000000000000000000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2, 0xfffffffc}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10}, @union={0xd, 0x0, 0x0, 0x4, 0x0, 0x2}]}}, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) (async)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="000000000084000000956ce013fbd59a14738d000000950000000000200051b1f339d6556277c3ae231bd5ef3f5731184fbf3be7d81c8a308a7eb17ea85c3cdd5fc6001b3065fc218b6fcdb0ac1484fe444921d7a5b887f665466137ff26d2da5e37c568ed3ec63edaeb4a466468add7322cdcea7ea2fc2dfa6d977a4c041a15d4a986256da2ddd12cf29b178ac4b8303f2075557d3b157112e2a05a9617358397500f2405ee384c352d4939d24d81d76ec17fc5fef2caafd08be655416fd4a237cf33ce0c"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5, 0x0, 0x400000e55e}, 0x18) (async)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={{0x14}, [], {0x14, 0x10}}, 0x28}}, 0x0) (async, rerun: 64)
set_mempolicy(0x4003, &(0x7f0000000080)=0x7, 0x3) (async, rerun: 64)
socket$inet(0x2, 0x3, 0x8) (async)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) (async)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_config_ext, 0x11, 0x0, 0x4000, 0x6, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10) (async, rerun: 64)
socket(0x2, 0x1, 0x0) (rerun: 64)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'team0\x00'}) (async, rerun: 64)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (rerun: 64)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r8}, 0x0, &(0x7f0000000580)=r1}, 0x20) (async)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r9}, 0x10) (async)
socketpair(0x18, 0x4, 0x82, &(0x7f0000004080))
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

677.045168ms ago: executing program 1 (id=6288):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000005000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
syz_emit_ethernet(0x846, &(0x7f0000001100)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x810, 0x2b, 0x0, @private2, @local, {[@hopopts={0x89, 0x100, '\x00', [@hao={0xc9, 0x10, @mcast1}, @generic={0x9, 0xf7, "79f718cd082bb66ffb27540e7af860dd9e6ee4e3c8e66545f9bcc4710e26ba8070b5ef58e1e2d33338a21d518590fdef3d2137e741316128acff57f4f6c034c89b7ce4fd9420ef4f0e9c68fc13edcb19ef952b706c28f9e6cbd028b945c54a68d66d491c2e91b888fbaa4f5e4d5d723f45eaa8d6c8ad48d90b91682197819cbd279f4d877a0f3cd7cf94822c03b8bfa7366e2acb95da150db4b7cacc724787687e0b2fe9c01555683bcb6ccb07924fdeb55f0666018f3d819c3dfd512f4c0777e563c1e6489c78d5812ba2f3f770096cde1c243c570a1d8d64caa99e841cf5ba420bfd2f4e7ab222c764e28066ba90655f1b2df13c1516"}, @generic={0x14, 0x6f3, "d6104212567aa3978a2c3cd1a4d868b66b717801cff409c49009239d568b596d332b33ef4d3b9484b97b74f478fc6605ffb98a2f78c3b8e195e6a7c9d9f730b14b0afcfcf8c7cf46a521815b770cda83c34236b2901a5b02d6eec7932d2c75fd6ed644a987fe46a7262e4f49488394453cee05a8a173cc9219476fe4f21a5a1006c852e6d2549c18714b8b15dbec6bb4629b29a479e1272326ab7fcda0e8c49e3e37c398a115ff759804323de8a4176e7f18592b5afcf15e08d907f9195b48f0e503dddf228826d21265401c7774616d10c9b4377ae5d180aee75ccd0e811e8f145f3ee93d0c9803561565efddc9b5bf8b736c2a4da4f539ddc53237edb1a442c65a2fc67e726a28a9c4736209f24882d72245a2f92e1ee6e618cdf9137f92101c468beef0f5f3d8e43e4729ac127967b64e79ac00d0563d78333a74d5e266b2c2460dfe3b6ca60a206d7428f79b7ce1f5bbfc1c93fbf544afdb2f480edf3bf866b9a8502e7b4a465c8f15459c04ac9c7c8cd576835652460740a7cfe1143637c9eef4330fd6b247321ae9e3b75319a5f5bd6371682f89bb8eea2e112526475ac9741ea1c312927f80aee53eb19b548e65f07b717fd375bedb7bc0d6971cd4b2baf52fb22c0cffed68ab78333b4b67183f3ebcab6d2f76195d92d2eb10a9c311ba370e600c2859b436cac9ad9a97cd10761b85e5ab7d34c4df0626e07f6538a3d6a41a766b31e4e56eba04fa8a8f439da9358e75aced905a372834010803dbe691ed620eeb47b7b45d5ef58210a06580607c91a04352afe8f1c96eaf974860b7c3baaf08e3464db09574d11793d73e174014ee224c6e5d3f8c8581d868f6ee52f137ce539737937f71ecacd3217796a769dfba7745383fda4f7f2d6bd1f671e0c7b07b23b217db0bc17b341fcc481a35f0531e6cf7c7b7472ddae3c2dbe70464aff2b95c3937762edc1046a51e00a90b9d0027afbb1e15696e4842136a2798c265aa9a0270c57b9ced2bc509592b6211a1c09ed026f99e1835d78f6a4e955c6de192248f000a47e865e9a7aed77c5e26ace3dc8842344b7f5fb5986a955e350b473ab326fbaaf3cdc812430f8597d4b7bc30cf75735c90ecbf75b31d56d37f28a18715b1fed3c0a3c07744ab766971ebb04525dcf4bcc7659cba2c04032f2f7adf9e65ceaddb5505fe57b94c784d07eb2a2fe4fcacd9802a75c8acbec9381a04726fda6c95b6960703ffe78bcbb079c67437dac882b51d79983ee6c052b487b2edf4ceaa6c3811241897a8da7e4a5d282f415d7bf30855533ffbef090233fbdc7cfd5259d99dd1d8b4a203da5d57c9fa20ac0f4d572e7c260a0c5955855af810c44550552a066572f9838dde1717c3144f3b211d58c20c82dc94fba71d8f622bff96f3ada6d840d1321ebb47bd683a512a44048dbe8ac6d6d293facdd51fd6279aca849f9bd4b3cc2e45f44905eaed9bfcc3ab33f97069cf4889e8da2b594a8eadebe3fc81724af89737a9ef69bdecbf675d3282e074ed1d3593635555397a2c23bfa531054d71fe306667c69bd03fa6956483104ce1a0350b243739b2b1f0de8f44a6502e91beeee579c3374d0cd5c43900e587592610ce303801f08fa6970ab3d745c50f396a7bd88ec1f761b834e72f7f9511fd1c2102ed87473f23de0121e2df4941c241b8ebc8101383e1404a3bf06a209ec836dd5d5e367a6bd14caabb31efffa684eaaded13b7df7bcc1c0162f07ebd968d6ae0b4f127ef5ed589f88ac5ca5ed33534cdcefd10b4c7ef37c5537e1d02ea745e206dac16e0962fc2ccea44e4a03dc535b9a2e7183919cd7e2a7327c17940beb13e221470585f709dac534696c51bf8740d56fa0e9241068d6aec4e4cbc09f51f8b7fd027a1f884c52acd518cec328d275c5207dd413ad1b35f2710ff47e76551ccd0b4c9d0fd25d1dc87e0498b7ebb40af68474e33bdd08668ad0f5fb919acbf7d7d649997190acd35774b4eb1e35a1ac9d14675e377590192474fd9b43a82d79f06350492c42691321485944e42ec53221f59a7d3bf8c2bc92b50c7dcf61a426c2eb474cfdcbbfb44bdaacbd7b5555f3de05c45c1461c4a121ff20bb7815ca164462cf977312f53ceef57be2929cf9e8ef94c9a016ea933b127cb224652db8a870dcaec19b6faeb144150d177db884637d50faff03deef8bced965332f86b415bc3af406dbe73c68fefb97816a446232337a6a24f707633b2fb8e67b31ede05f6e9ebf6b5afd168b86a8242f963e235f1be9d8b6f5f60bf1755115519abbd53fe2ee602aa165aa8dbfaf1949fe2bc191dfa16a812d5e7136dd94a8c7c84ef240ff8f130295f161b151699f25c3b8bf7b715b40e8800d7f68c9cd57ed192584738ff64a9ca39b1d42db506f50aba87f4d6d06c9ccb2d956637c87909a59a248c892d4491e086707d095970f7170a87d83051a777ab1ce991bf7ebe905231db662d6d185e3651edb455c6f738d1c7bbc71c3cd4edf0d9ea643afe6eecd0"}]}], {0x0, 0x0, 0x8}}}}}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xa0bf83d7d46f2cbb})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000000c0)={0x800080, 0x0, 0x0, 0x0, 0xa965, 0x2})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'macsec0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="b000000010000100"/20, @ANYRES32=r6, @ANYBLOB="524202000000000084001680800001807c000c8014000100bbad0000e102000029000000810000001400010070040000ea0900000400000088a80000140001039d92bf00a20000000900000088a800001400010006000000690500000400000088a8000014000100190c0000400200000500000088a8000014000100ff07000044080000fdffffff88a800000a0001"], 0xb0}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={<r7=>0xffffffffffffffff, 0xffffffffffffff00})
close_range(r7, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r10, 0x800448d2, 0x0)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r9, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
close_range(r8, 0xffffffffffffffff, 0x0)

676.169758ms ago: executing program 2 (id=6289):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='oom_score_adj\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f0000000180)='=', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r1, 0x1)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000300)={0x0, 0x100}, &(0x7f0000000340)=0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
open_tree(r3, &(0x7f00000001c0)='./bus\x00', 0x901)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
getsockopt$IP6T_SO_GET_ENTRIES(r4, 0x29, 0x41, &(0x7f00000008c0)={'nat\x00', 0xfd, "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"}, &(0x7f0000000200)=0x121)

621.678833ms ago: executing program 1 (id=6290):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x10b})
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'rose0\x00', <r2=>0x0})
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x271c, &(0x7f0000002480)=""/102389, &(0x7f0000000180)=0x18ff5)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x22, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r2], 0x20}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000280)={{r4}, 0x6, 0x7, 0x2})
add_key$keyring(&(0x7f0000000080), &(0x7f0000000200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000ee240e590a22bc4509cf879074faca2b2cd82088757f26615203dd4ac3391f39ffdf6616cd6dfd8a98ea18adac4904b5588a44daa21a8bdb91197cd4b4c868e8cea747a0b5bebdccb86c51d3f28287c497a496ad111503fe8240c49b124495f1d5e803fb9ed9d7f8daf2dfff03ddf81f90cd2f293bf483f2af6b5242f47d16e8e32a65f859bbefd50e2ba49766e226ff93a2981fde608f8702e20b8c2fa7cdc9f38191bd4f"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000480)=ANY=[@ANYRES32=r4, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
getresgid(&(0x7f0000000000), &(0x7f0000000180), &(0x7f0000000140))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000440)='objagg_obj_destroy\x00', r7, 0x0, 0xfffd}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200030000000000000000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000540)={{r9}, &(0x7f00000002c0), &(0x7f0000000500)='%pB    \x00'}, 0x20)
ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x4b4e, 0x2f)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a01040000000000553f000100fffe08000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f840000000c0a01030000000000000000010000000900020073797a32000000005800038054000080080003400000000248000b80200001800a00010071756f7461000000100002800c0001400000000000000000100001800c000100636f756e74657200140001800a00010072616e6765000000040002800900010073797a30"], 0x108}}, 0x0)

611.529814ms ago: executing program 1 (id=6291):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
move_mount(0xffffffffffffffff, &(0x7f0000000080)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
r2 = epoll_create1(0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='xfrm0\x00', 0x10)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000300))
r4 = socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r7 = dup3(r5, r6, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$pptp(r7, &(0x7f0000000380)={0x18, 0x2, {0x1, @broadcast}}, 0x1e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
pipe(0x0)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x10000}]}, 0x10)
close(r4)
fsetxattr$security_selinux(r0, &(0x7f0000000400), &(0x7f0000000440)='system_u:object_r:auditd_initrc_exec_t:s0\x00', 0x2a, 0x0)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r9=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r9, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

135.739478ms ago: executing program 3 (id=6296):
syz_mount_image$vfat(&(0x7f0000000a40), &(0x7f0000000140)='./bus\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x35a, &(0x7f0000000b00)="$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")
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x8000f28, 0x0)
write(r0, 0x0, 0x0)
memfd_create(&(0x7f0000000540)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8943, &(0x7f0000001980)={'macvtap0\x00', 0x0})

99.226671ms ago: executing program 0 (id=6297):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000001c40)=""/4096, 0x8ec0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001740)=[{0x0}], 0x1}, 0x0)

21.830108ms ago: executing program 3 (id=6298):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x300000000000000})

21.543998ms ago: executing program 3 (id=6299):
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0), 0x8)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="000000000087fb00b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="15b26f226e2966667482d50703b0a8d92ccd9e69d5cc4cb3d467a670b237a9225fb56c0f7ea725dee27c4bb43bb50c6748c83b71d59f0537405dfab648c096607340fac939a2efd31cbe2f8ca29c409e87ea0974b7bceff9afef5dffd691575f5115f2f961ad488e3386036913e98181a6034febaab853a3e928b9035b0e3a8e1cb393c70f6d0448970e0af2476f8b923ee09c19deca55d58f70e8eeff55dda6381cb96afe97196c0af0a8fd450a1447a1a521e2c211fb84cbcf4aebd31298972ec6be", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="73fd71361e8d6c80ae1bc9953e2a4aeac7a314273066fc7f65a51969b46df1774bb0be94ccd4824f2d57ad2cd37242b1258402395481f9f07e067652e52aa8ccefcd0962ba0c48757b68d493f3ad702e65d4daa7dfc1605a173185472ae12470eea64c70ef4e64793b8a830447de0f423bef3964934eef4243cac42939ba6fa68d821b9373b5f3e2c26e7ca75ed8fb3203aef3a6637cecdd0251532b99537e02f604058f50e66c8a657d59beeed127695475f082d3d2b9790181fc987ad000ac00887d1506be89f388ecb405660b4ea196ee8f5a92b12ec43bbf49567db613d478ebe2358364f7600bf4f80ef4b2756fb13416c4fa22880cc96a03f07888575aedb001d5a74bb2f906797912b5ac080a0a3d361425f1a92ab03bbe65d5dcb235f43b5ad1162a16ebdc647baac013bf076945126cdd5a080853976a97ad55184601102fbb8df86b21aa8162858d74465c5fb7dc766602a3567f6eaf441f85ec50ca7fb3a4fdb450d1420531da25d01a412958a5e3895c59542238cf8e188e7fb5641eb24a5f1819bf8d2e9dd6c1d0e93564d723e311db9cd268bb1e477036e822b135cdbaf40f812aa7db01d22c829ab01ae24997dae96ddeed49e62d285701d5419e3f94a8b95790cf5a296ed15bffae1f71470c6a6eda872528844a2df42590d898630263cab5cccec57b7cea365ad8c91bfbe7cb419635ce6bf340a56115c0ad922b6fade9538e543bc5def2a85d35ab16d20c219c4733837be2c14ba4d3d32c3a6882ce6857626f55109b4cdcb634425d710bf3108f9b31b4af0cc17a58e49e871a56126dd8bed08e038ba64008587237b3442d28032e52fc9fae1a5784ba59d0edfa03d38352724903ed6f6970b3f4dfa6e40bf933b6765c6ee648174765f1e8ec71b80cac86abd065a3005b40a43a665707cc590997c5048183006a9dd8026d39def05950183b3d4f12f4e1644ef78cddac7c5569985c2c232bb350f28857675339e53f63a868704d2e0b38993dc57a02d3e297fc9a5b9384622841018c303a05bac25d509df5a2d0e3232927283fcc3ec67e4fa7b71d22f115cf693851dcceab4bce38cbfbb32829e211cdcb6a359e14fe416663541050d340aef2555dbd292bd9cbab8fcf20378149cc994569c2bc95fb33fd2d9321b8ac8e5160b02e202492f470eb719a8f2ac3a4be37ea0918b54b14789b7aa228d47f7b13fd9af608740c5a8fe02109a7cc0e555b22628ef790e513ecadfd338d30aed8ca219e64ee4fb0bd0e21e5101bf2072ffa071eb1aa0454caccc015ff1e166813f819a142b56a22e4ff387bb319288a0ef747c6fc8fdee3a0e193b0d086eb816e97e0322fcdaa30da61cd26ac9d8d0748fccd911ce0fd4adc953e9486e137fe66bc8aedfd5b78c562ebfc578ac9f96a453311766564541e16955e30b95914e9411a0b4cd95e0d8732d5ff7a4f921ef41d986a195334266585353b16b9449955523913a30c087532bcb899f733af3abea59baea174cf04359547a633b5f8a582ae3ef12a1d0125bef8c6e8c9fb589d3597c5ab3879491b0c5e3607203f06836a6805d3f7979c4325f9fecb2aceddedb272237132460cda812ef7d613a585898d59f92ef68ec95f12b47b440f6d899ecbfab48055e0c1605ba4cd9dbc17c4cbfec8a953ebbd38c45a6737a57ee58e21a20e530171137968ae4f0d0366cdb0b9d6a4667b011fcd7cd9e77364e5221989d8f0d80793260e748e3bd394849c090c744f6044328304cd6f02e941c5405647daffc1fd2f2864b37f92bbf4931c8e4a7c6bafd0ea79d39d330e70e6776bf6a926de227e5a43653bba04883e98d67bb64aa86e8bf271ba87604bc598e47f2992c7618ad25068860a481554b53352c7339de7e79c3bd1aed5bef8f398432858c888a5d8651969ea40eb3d486e9fe61d49b20500fdfd1548f567da970103d36730657c35d03d2c36b142665f62203b1fb12d616478cfef6f38b34cda87a634dd06d359f33e98b94a5e5b46b2a8d73126352d1d5b65af75055455cc903e384c41876fbdff935d047284d9d203b147a6ba0e9cb50beef7798886c33d2f2f0c0d9abe0e32c7c809f8b0b28fc59471987353c862a311776b8275bf319d5cb9a59f8f103b6e567ef5dd8859973cc3fe41e356bf5bd3186240e49286977eca36a8ad44185973b276cd7958b73e14a221b7fd567818bebf54ad27ee95161bd2aeeb356482ff467500a7d36f0464f58a591ec6b728f984ec78d0abe14c6d3411ac3ffc4c3179d1f95d029f26cceb545723519d3d4209a2b1243e78767273c13dc2bd320512674b6f1a50313bae7b9d16aebb476dbc829e8fd8dd46a1696efaff5795cf75de57c90f05ed9ef4a5cdfbf20d3d9ed95fb4114b1d5c9ade0856212e7ba330ce5bccf2c993dff89112b28bd3b17d3fcfacef7590f62bf948977dd79e2d8025946c80bf263e34035409b5ba1443d4929727180761bd56d258c3670a0aa4de21111fc3172367582de2d164ff3a18d0696b8dd8e5c1423b2ea1e2c0cfe141e4cf04f8cdaed48976b94c40d6a581300458661bbdbfeeb4969af6319eb1798843d0872f68f0c6537bbc9c7dd1e9b0564bf442d8d25f8aa884aba1df074d374f99750d9227bb821ba0355f60de2829a5c8cd47c89d29a2e3d7d53d59db5c3ace8f484664202c210c68a3b33076fb00d59938e84fbad6d6618c0bb89cf94035fa2de4da351e0d71df416450ea7ec3af33aa5c0313c63e654bd79c73b39dc1933636956761058d76648746daca469f8fce62c17a8160cdefc6a927eef9ec4a8dd684e46f35282546ce2362ab8afedd39bf699fd7c2cde538f52ea43c08558f42ba77b2986b800c45fa76a130b30919b3e1d504573e3c1e7dd2dc5d81379df53d736511f1da4ad8791e46adb27bb5c38129e89edda0aed99dcc03fe400f7d05d48e3e9e17744e8487f8ac464c86f7332211fb9799e9d27a6832d5f17ccd1a2da255f6da047e4728dd80860c04391bca4b7833f0346866401ec20033bcf6dfa85fd1520de5a03b4f9f6f5d2f8d7b6e7d7df1cbe5c05e23e080cf335639c94c48aaeb0bfebbe79530d67d35fb101c91839954c0e50dd4b90a86428b22b0be1e906fee30f68d7ce4bf9c68eafe695f07f5e4e4d473d77104b7b1b5dcfeb84e8c83624c0068d4e1cccfe740f8e5d5699603f8481ef2a1f2d4b8fd2314c5cb1985fe34cf8ede7d2e8bddea269422490903489c7f5951114d7ccb29a19455a987d538955712a460243105b25ccb6e6f34c370a6bbb234bee150dbcea5188e45305253f1014f7c0b5d60d517d2d05707f5ca9249a921d6c5307caf41deca0509b49102d801320db65c00f6e1c05fb8c2e1cc554673bf6168dd64086b19af28eec508fd0c304837e802173ac9947c4d73929c61d9632ab929a25f2a04350954612c2de705c1c25215284fe933fc8ccfd30ab3fc9ff5e04dd68d4720d95a29d6da176ac9d332c9ce77358f3c262777ea828fe6473638bc77be2aa586a3733e275744bc42c3742c1ad8f89d25c31958902f2f498c58fc85e9b78fb7a331734cb081cfa9ccfd262df927c0ff46983f8765af4add3532de2b91f2436df028", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="c9", 0x1}], 0x300}}], 0x3, 0x240080e4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={<r4=>0x0})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000180)='page_pool_release\x00', r5}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000000)={r4, 0x0, r5, 0x7f})
setreuid(0x0, 0xee00)
request_key(&(0x7f0000000040)='logon\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000000c0)='syz', 0x0)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_PKTINFO(r6, 0x10e, 0x3, &(0x7f0000000e80)=0x4, 0x4)

21.203109ms ago: executing program 3 (id=6300):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x18}, 0x1, 0x5502000000000000}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x1a, &(0x7f0000000240)=ANY=[@ANYBLOB="180500f1a1d739470d00"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018200000", @ANYRES32, @ANYBLOB="00000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000000500000010000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x90)
write$UHID_CREATE2(r1, &(0x7f00000002c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(r2, 0xc0481273, &(0x7f0000000000))

9.976629ms ago: executing program 3 (id=6301):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xad2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x53, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) (async)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), 0xffffffffffffffff) (async)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(&(0x7f0000000840)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x4000)
r5 = getgid()
mount$9p_fd(0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0), 0x400, &(0x7f0000000880)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@privport}, {@dfltgid={'dfltgid', 0x3d, r5}}, {@mmap}], [{@seclabel}, {@dont_hash}, {@appraise}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}]}}) (async)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000b80)={0x3c, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x42}}]}, 0x3c}}, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r9, 0x4bfa, 0x10000000000004) (async)
write$cgroup_int(r6, &(0x7f0000000100), 0x1001)
sendmsg$rds(r6, &(0x7f00000005c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/124, 0x7c}], 0x1, 0x0, 0x0, 0x8000}, 0x20044800)
r10 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000240)={0x0, <r11=>0x0}, &(0x7f0000000280)=0x5)
setuid(r11)
ioprio_set$uid(0x3, r11, 0x0)
write$P9_RGETATTR(r4, &(0x7f0000000300)={0xa0, 0x19, 0x1, {0x428, {0x8, 0x3, 0x6}, 0x20, r11, r5, 0xae9, 0x4, 0x8, 0x40, 0x8001, 0xffffffffffffffff, 0x10000, 0x7, 0x46ec, 0x5, 0x1, 0x2ff, 0x8, 0x101, 0x76c}}, 0xa0)

0s ago: executing program 3 (id=6302):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x88a, &(0x7f00000001c0)={[{@usrquota}, {@usrjquota, 0x22}, {@data_ordered}, {@noload}, {@noinit_itable}, {@grpjquota, 0x22}, {@init_itable}, {@jqfmt_vfsold}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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")
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x840)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000000))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = fsopen(&(0x7f0000000440)='smb3\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000200)='source', &(0x7f00000006c0)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/\xb0\t\x00\x00\x00\x00\x00\x00U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce\x14/\xb4\x00\x80_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a3\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1br\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\xd6\xcb\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9&\xe6\xd5\\\xb5\xec\x99@\xd2\t\n\xb1o\xc1\xfc\x85\xf5.\xa2\x17\xdd^-\xe4\xa7d`\xae\x0e\xe7\x14v\x00>7\x8aH\xd6\xd8\xbf\xe7\xc4|y\x1b\xd3\x88\x139\x8a/L;)?\x80J\x85\xf0[?\x01\xa3\x02~5*\x94`\x1a\"g\x8aV\xb6q{\xbc\x18\x99Y\x12\xd2\xc2\n>\xbb)\xf6|*\xbb\x14F\nZ\xact\xc5\x12\xdd\xda\xe4\x91\x0f\xdf\xb1\xf4\xf7\xa8?tO\xa6|\x11clY\x02\x17 \xf6\xe7\x8a\x93vr\x80A\xbc\xdd#\xd5y\v\xf5\xd6\xe7B\xf1@\xe1w\xfa[\xa4;\xf6\x99\x02\xa8\xcbu\xf1jdV<\xe4y\xf6\xb9\xadHN\a_w ?\xe7\x83\"\xf5\x1f\xb2\x04\x80\xcay\x03`\xa3\xf0+i2jQ\xea\x00um\xe1g\xa4\xd4\xec;\x87\x9c\xef\xc9\x91\xa8\xb2\xef\xee\x98\x12\xd2!\x89\x98T\xdb%R\'\x01\f\xb4\xf4a\x81\x00X\xea\x1c\x03<\xc05\x0e\xd8\xfe9\xd9\x99\xe7\xf5\xc3\x97.\xf4Y\xb7!/yy\xee\x84\xef\bw=\xab\xea\x18\xdaS\xf2\'S:\x86\xf6o\x89\xf1\xe0\xcc\x13P\xa7\x06\xc6\xe9\xfe\xed\xf7\x04\xadJ\xfd:\x9fL>=\xdbQ\xde\xb0\x1e$\xd1\x17\f\xddiN\xf5\xca\x84\xf3\xd5[\x1e\xb2\x9d6\x89\xc7w\x14\xb6\xb9G\x80\xb3\xd4C', 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xa, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), 0xffffffffffffffff)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000b80)={0x3c, r5, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x42}}]}, 0x3c}}, 0x0)

kernel console output (not intermixed with test programs):

7][T30059] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.446404][T30073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  401.455073][T30073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.527134][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.545806][T30079] loop3: detected capacity change from 0 to 512
[  401.553649][T30079] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5522: corrupted in-inode xattr: invalid ea_ino
[  401.568184][T30079] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5522: couldn't read orphan inode 15 (err -117)
[  401.580886][T30079] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.607193][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.723494][T30084] Cannot find set identified by id 0 to match
[  401.732870][T30094] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  401.870831][T30113] loop3: detected capacity change from 0 to 256
[  401.877746][T30113] FAT-fs (loop3): bogus number of FAT sectors
[  401.883844][T30113] FAT-fs (loop3): Can't find a valid FAT filesystem
[  402.011955][T30124] loop3: detected capacity change from 0 to 512
[  402.053930][T30127] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5538'.
[  402.074015][T30130] netlink: 268 bytes leftover after parsing attributes in process `syz.3.5539'.
[  402.221562][T30145] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  402.221562][T30145]    program syz.1.5546 not setting count and/or reply_len properly
[  402.318603][T30155] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.327363][T30155] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  402.947430][T30175] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  402.947430][T30175]    program syz.1.5557 not setting count and/or reply_len properly
[  402.971095][T30177] xt_CT: You must specify a L4 protocol and not use inversions on it
[  403.013285][T30180] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  403.063848][T30197] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5561'.
[  403.106800][T30204] netlink: 268 bytes leftover after parsing attributes in process `syz.1.5563'.
[  403.395396][T30210] xt_CT: You must specify a L4 protocol and not use inversions on it
[  403.409990][T30212] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  403.418555][T30212] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  403.497369][T30223] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  403.524728][T30231] loop4: detected capacity change from 0 to 512
[  403.587401][T30234] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5581'.
[  403.857643][T30242] xt_CT: You must specify a L4 protocol and not use inversions on it
[  404.145539][T30262] bpf_get_probe_write_proto: 10 callbacks suppressed
[  404.145554][T30262] syz.0.5592[30262] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.168148][T30262] syz.0.5592[30262] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.425084][T30270] loop4: detected capacity change from 0 to 512
[  404.447903][T30270] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.465957][T30270] ext4 filesystem being mounted at /429/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  404.489003][T30278] loop3: detected capacity change from 0 to 512
[  404.496603][T30280] syz.0.5600[30280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.496727][T30280] syz.0.5600[30280] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.507857][T30278] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  404.528296][T30278] System zones: 0-2, 18-18, 34-34
[  404.530953][T30283] netlink: 268 bytes leftover after parsing attributes in process `syz.2.5597'.
[  404.543642][T30278] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5599: bg 0: block 248: padding at end of block bitmap is not set
[  404.558140][T30278] __quota_error: 243 callbacks suppressed
[  404.558154][T30278] Quota error (device loop3): write_blk: dquota write failed
[  404.571301][T30278] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  404.581248][T30278] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5599: Failed to acquire dquot type 1
[  404.594446][T30278] EXT4-fs (loop3): 1 truncate cleaned up
[  404.600610][T30278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.613283][T30278] ext4 filesystem being mounted at /286/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  404.632732][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.690117][   T29] audit: type=1326 audit(1860936371.130:32162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.713771][   T29] audit: type=1326 audit(1860936371.130:32163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.740982][T30301] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[  404.760718][   T29] audit: type=1326 audit(1860936371.130:32164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.784290][   T29] audit: type=1326 audit(1860936371.130:32165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.807881][   T29] audit: type=1326 audit(1860936371.130:32166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.831500][   T29] audit: type=1326 audit(1860936371.130:32167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.855086][   T29] audit: type=1326 audit(1860936371.130:32168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.878652][   T29] audit: type=1326 audit(1860936371.130:32169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30298 comm="syz.3.5605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  404.915427][T30304] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5607'.
[  404.999609][T30312] syz.0.5611[30312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  404.999733][T30312] syz.0.5611[30312] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  405.027611][T30314] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  405.051945][T30314] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  405.210873][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.229381][T30329] loop4: detected capacity change from 0 to 512
[  405.237382][T30329] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5616: corrupted in-inode xattr: invalid ea_ino
[  405.251805][T30329] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5616: couldn't read orphan inode 15 (err -117)
[  405.264954][T30329] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.312017][T30331] loop3: detected capacity change from 0 to 512
[  405.318567][T30331] EXT4-fs: Ignoring removed orlov option
[  405.324776][T30331] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  405.340979][T30331] EXT4-fs (loop3): 1 orphan inode deleted
[  405.346804][T30331] EXT4-fs (loop3): 1 truncate cleaned up
[  405.353274][T30331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.401977][T30334] random: crng reseeded on system resumption
[  405.486641][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.687544][T30347] syz.2.5622[30347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  405.688185][T30347] syz.2.5622[30347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  405.875064][T30382] netlink: 268 bytes leftover after parsing attributes in process `syz.2.5625'.
[  405.881967][T30384] loop4: detected capacity change from 0 to 512
[  405.888902][T30386] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  405.912493][T30386] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  405.979244][T30391] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5628'.
[  405.999059][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.581897][T30401] Cannot find del_set index 2 as target
[  406.682390][T30412] syz.1.5635[30412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  406.682479][T30412] syz.1.5635[30412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  406.711861][T30415] netlink: 268 bytes leftover after parsing attributes in process `syz.2.5633'.
[  406.724631][T30417] netlink: 'syz.4.5637': attribute type 4 has an invalid length.
[  406.746762][T30417] netlink: 'syz.4.5637': attribute type 4 has an invalid length.
[  406.772418][T30419] loop4: detected capacity change from 0 to 512
[  406.786865][T30419] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  406.794869][T30419] System zones: 0-2, 18-18, 34-34
[  406.800869][T30419] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5638: bg 0: block 248: padding at end of block bitmap is not set
[  406.815440][T30419] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5638: Failed to acquire dquot type 1
[  406.827117][T30419] EXT4-fs (loop4): 1 truncate cleaned up
[  406.833161][T30419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.846364][T30419] ext4 filesystem being mounted at /439/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  406.867147][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.888278][T30429] loop4: detected capacity change from 0 to 512
[  406.950190][T30436] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5640'.
[  407.123925][T30438] loop3: detected capacity change from 0 to 512
[  407.130760][T30438] EXT4-fs: Ignoring removed orlov option
[  407.196164][T30438] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  407.228611][T30438] EXT4-fs (loop3): 1 orphan inode deleted
[  407.234371][T30438] EXT4-fs (loop3): 1 truncate cleaned up
[  407.240665][T30438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  407.716152][T30454] netlink: 268 bytes leftover after parsing attributes in process `syz.2.5648'.
[  407.740866][T30456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.749483][T30456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  407.817474][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.988942][T30467] netlink: 268 bytes leftover after parsing attributes in process `syz.1.5652'.
[  408.098886][T30470] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5653'.
[  408.298948][T30476] random: crng reseeded on system resumption
[  408.660837][T30494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  408.672942][T30494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.714476][T30500] loop3: detected capacity change from 0 to 128
[  408.781043][T30508] loop3: detected capacity change from 0 to 256
[  408.791628][T30508] FAT-fs (loop3): bogus number of FAT sectors
[  408.797815][T30508] FAT-fs (loop3): Can't find a valid FAT filesystem
[  408.835103][T30514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5671'.
[  408.852123][T30516] loop3: detected capacity change from 0 to 512
[  408.894393][T30516] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  408.902444][T30516] System zones: 0-2, 18-18, 34-34
[  408.908354][T30516] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5672: bg 0: block 248: padding at end of block bitmap is not set
[  408.922946][T30516] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5672: Failed to acquire dquot type 1
[  408.937736][T30516] EXT4-fs (loop3): 1 truncate cleaned up
[  408.946167][T30516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.959750][T30516] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  409.003540][T30528] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.024154][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.045557][T30528] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.058201][T30540] loop3: detected capacity change from 0 to 512
[  409.076604][T30540] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  409.084687][T30540] System zones: 0-2, 18-18, 34-34
[  409.090370][T30540] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5679: bg 0: block 248: padding at end of block bitmap is not set
[  409.104820][T30540] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5679: Failed to acquire dquot type 1
[  409.116545][T30540] EXT4-fs (loop3): 1 truncate cleaned up
[  409.122418][T30540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.135015][T30540] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  409.158417][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.223270][T30557] loop4: detected capacity change from 0 to 256
[  409.229951][T30557] FAT-fs (loop4): bogus number of FAT sectors
[  409.236069][T30557] FAT-fs (loop4): Can't find a valid FAT filesystem
[  409.282628][T30566] loop4: detected capacity change from 0 to 128
[  409.282676][T30564] loop3: detected capacity change from 0 to 512
[  409.308079][T30564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.321124][T30564] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  409.324128][T30572] loop4: detected capacity change from 0 to 512
[  409.356442][T30572] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  409.364502][T30572] System zones: 0-2, 18-18, 34-34
[  409.370331][T30572] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5689: bg 0: block 248: padding at end of block bitmap is not set
[  409.384853][T30572] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5689: Failed to acquire dquot type 1
[  409.388574][T30575] EXT4-fs (loop3): shut down requested (0)
[  409.402601][T30572] EXT4-fs (loop4): 1 truncate cleaned up
[  409.409173][T30572] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.421757][T30572] ext4 filesystem being mounted at /453/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  409.441652][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.620462][   T29] kauditd_printk_skb: 481 callbacks suppressed
[  409.620475][   T29] audit: type=1326 audit(1860936376.060:32643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30580 comm="syz.4.5691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  409.652850][   T29] audit: type=1326 audit(1860936376.060:32644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30580 comm="syz.4.5691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  409.682640][T30588] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.691361][T30588] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.762605][T30592] bpf_get_probe_write_proto: 6 callbacks suppressed
[  409.762616][T30592] syz.4.5695[30592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  409.769334][T30592] syz.4.5695[30592] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  409.830030][T30596] loop4: detected capacity change from 0 to 128
[  409.847903][T30596] vfat: Unknown parameter '@'
[  409.896343][T30606] loop4: detected capacity change from 0 to 512
[  409.904405][T30606] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5700: corrupted in-inode xattr: invalid ea_ino
[  409.918445][T30606] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5700: couldn't read orphan inode 15 (err -117)
[  409.930691][T30606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.955896][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.987662][T30617] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.996390][T30617] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.015624][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.045165][   T29] audit: type=1326 audit(1860936376.480:32645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.069149][   T29] audit: type=1326 audit(1860936376.480:32646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.092937][   T29] audit: type=1326 audit(1860936376.480:32647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.094879][T30629] loop3: detected capacity change from 0 to 2048
[  410.116601][   T29] audit: type=1326 audit(1860936376.480:32648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.116629][   T29] audit: type=1326 audit(1860936376.480:32649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.170087][   T29] audit: type=1326 audit(1860936376.480:32650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.193707][   T29] audit: type=1326 audit(1860936376.480:32651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.217318][   T29] audit: type=1326 audit(1860936376.480:32652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30626 comm="syz.1.5706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  410.243698][T30629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.271713][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.301205][T30638] loop3: detected capacity change from 0 to 2048
[  410.317779][T30638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.355095][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.377848][T30646] loop3: detected capacity change from 0 to 512
[  410.387732][T30646] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5711: corrupted in-inode xattr: invalid ea_ino
[  410.401301][T30646] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5711: couldn't read orphan inode 15 (err -117)
[  410.414172][T30646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.415863][T30648] __nla_validate_parse: 1 callbacks suppressed
[  410.415878][T30648] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5710'.
[  410.446349][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.454320][T30650] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  410.465241][T30650] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.584406][T30667] loop3: detected capacity change from 0 to 128
[  410.607745][T30671] loop3: detected capacity change from 0 to 128
[  410.620693][T30671] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5718'.
[  410.632678][T30674] loop4: detected capacity change from 0 to 512
[  410.647288][T30674] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.661296][T30674] ext4 filesystem being mounted at /463/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  410.663541][T30676] xt_CT: You must specify a L4 protocol and not use inversions on it
[  410.686766][T30674] EXT4-fs (loop4): shut down requested (0)
[  410.697986][T30680] loop3: detected capacity change from 0 to 512
[  410.706581][T30680] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  410.714636][T30680] System zones: 0-2, 18-18, 34-34
[  410.720315][T30680] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5720: bg 0: block 248: padding at end of block bitmap is not set
[  410.734882][T30680] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5720: Failed to acquire dquot type 1
[  410.746805][T30680] EXT4-fs (loop3): 1 truncate cleaned up
[  410.752648][T30680] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.765097][T30680] ext4 filesystem being mounted at /317/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  410.784443][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.816108][T30688] loop3: detected capacity change from 0 to 512
[  410.824138][T30688] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5722: corrupted in-inode xattr: invalid ea_ino
[  410.837784][T30688] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5722: couldn't read orphan inode 15 (err -117)
[  410.850982][T30688] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  410.876795][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.995038][T30702] random: crng reseeded on system resumption
[  411.069175][T30707] loop3: detected capacity change from 0 to 128
[  411.087223][T30711] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.095727][T30711] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.125501][T30719] loop3: detected capacity change from 0 to 512
[  411.136535][T30719] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  411.144668][T30719] System zones: 0-2, 18-18, 34-34
[  411.150440][T30719] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5732: bg 0: block 248: padding at end of block bitmap is not set
[  411.165152][T30719] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5732: Failed to acquire dquot type 1
[  411.177775][T30719] EXT4-fs (loop3): 1 truncate cleaned up
[  411.183867][T30719] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.197087][T30719] ext4 filesystem being mounted at /326/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  411.218350][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.239651][T30732] loop3: detected capacity change from 0 to 512
[  411.247643][T30732] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5734: corrupted in-inode xattr: invalid ea_ino
[  411.267239][T30732] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5734: couldn't read orphan inode 15 (err -117)
[  411.280711][T30732] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.309687][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.342046][T30752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.351181][T30752] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.417866][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.538473][T30811] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.547321][T30811] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.876719][T30866] random: crng reseeded on system resumption
[  411.961497][T30879] loop3: detected capacity change from 0 to 128
[  412.003202][T30891] loop3: detected capacity change from 0 to 128
[  412.104341][T30920] loop4: detected capacity change from 0 to 512
[  412.161246][T30933] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  412.182736][T30938] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5744'.
[  412.203278][T30942] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  412.212220][T30942] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  412.226869][T30945] xt_CT: You must specify a L4 protocol and not use inversions on it
[  412.251707][T30949] loop3: detected capacity change from 0 to 512
[  412.268280][T30949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.280931][T30949] ext4 filesystem being mounted at /335/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  412.302185][T30949] EXT4-fs (loop3): shut down requested (0)
[  412.764582][T30966] FAULT_INJECTION: forcing a failure.
[  412.764582][T30966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.777699][T30966] CPU: 1 UID: 0 PID: 30966 Comm: syz.2.5757 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  412.788112][T30966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  412.798162][T30966] Call Trace:
[  412.801435][T30966]  <TASK>
[  412.804349][T30966]  dump_stack_lvl+0xf2/0x150
[  412.808946][T30966]  dump_stack+0x15/0x20
[  412.813090][T30966]  should_fail_ex+0x229/0x230
[  412.817768][T30966]  should_fail+0xb/0x10
[  412.821969][T30966]  should_fail_usercopy+0x1a/0x20
[  412.827034][T30966]  _copy_from_user+0x1e/0xd0
[  412.831665][T30966]  memdup_user+0x64/0xc0
[  412.835991][T30966]  strndup_user+0x68/0xa0
[  412.840358][T30966]  __se_sys_fsconfig+0x3e8/0x9b0
[  412.845320][T30966]  __x64_sys_fsconfig+0x67/0x80
[  412.850268][T30966]  x64_sys_call+0x10fe/0x2d60
[  412.854980][T30966]  do_syscall_64+0xc9/0x1c0
[  412.859528][T30966]  ? clear_bhb_loop+0x55/0xb0
[  412.864287][T30966]  ? clear_bhb_loop+0x55/0xb0
[  412.868955][T30966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.874880][T30966] RIP: 0033:0x7fbb25a1def9
[  412.879291][T30966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.898935][T30966] RSP: 002b:00007fbb24691038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  412.907344][T30966] RAX: ffffffffffffffda RBX: 00007fbb25bd5f80 RCX: 00007fbb25a1def9
[  412.915396][T30966] RDX: 0000000020000240 RSI: 0000000000000001 RDI: 0000000000000006
[  412.923388][T30966] RBP: 00007fbb24691090 R08: 0000000000000000 R09: 0000000000000000
[  412.931352][T30966] R10: 0000000020000380 R11: 0000000000000246 R12: 0000000000000001
[  412.939321][T30966] R13: 0000000000000000 R14: 00007fbb25bd5f80 R15: 00007ffe6b336ef8
[  412.947338][T30966]  </TASK>
[  412.964139][T30971] loop4: detected capacity change from 0 to 128
[  412.975830][T30971] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5759'.
[  412.990840][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.016400][T30980] xt_CT: You must specify a L4 protocol and not use inversions on it
[  413.024259][T30983] loop3: detected capacity change from 0 to 128
[  413.037970][T30985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  413.040360][T30983] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  413.058838][T30983] ext4 filesystem being mounted at /336/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  413.059914][T30985] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.110122][T30990] loop4: detected capacity change from 0 to 512
[  413.171277][T30994] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5765'.
[  413.322776][T30918] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.354767][T30918] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.430965][T30918] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.453722][T30996] chnl_net:caif_netlink_parms(): no params data found
[  413.470471][T30918] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.504344][T30996] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.511447][T30996] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.518883][T30996] bridge_slave_0: entered allmulticast mode
[  413.525349][T30996] bridge_slave_0: entered promiscuous mode
[  413.532468][T30996] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.539569][T30996] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.546821][T30996] bridge_slave_1: entered allmulticast mode
[  413.553131][T30996] bridge_slave_1: entered promiscuous mode
[  413.571451][T30996] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  413.581778][T30996] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  413.601628][T30996] team0: Port device team_slave_0 added
[  413.608087][T30996] team0: Port device team_slave_1 added
[  413.630744][T30996] batman_adv: batadv0: Adding interface: batadv_slave_0
[  413.637705][T30996] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  413.663663][T30996] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  413.678392][T30996] batman_adv: batadv0: Adding interface: batadv_slave_1
[  413.685356][T30996] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  413.711447][T30996] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  413.733876][T30918] bridge_slave_1: left allmulticast mode
[  413.739663][T30918] bridge_slave_1: left promiscuous mode
[  413.745475][T30918] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.753397][T30918] bridge_slave_0: left allmulticast mode
[  413.759141][T30918] bridge_slave_0: left promiscuous mode
[  413.764870][T30918] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.929393][T30918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  413.949676][T30918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  413.967547][T30918] bond0 (unregistering): Released all slaves
[  413.990258][T30918] bond1 (unregistering): Released all slaves
[  414.025624][T30996] hsr_slave_0: entered promiscuous mode
[  414.035663][T30996] hsr_slave_1: entered promiscuous mode
[  414.041665][T30996] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  414.049362][T30996] Cannot create hsr debugfs directory
[  414.054839][T30918] tipc: Disabling bearer <udp:syz2>
[  414.061240][T30918] tipc: Left network mode
[  414.083114][T30918] hsr_slave_0: left promiscuous mode
[  414.088073][T31296] loop4: detected capacity change from 0 to 512
[  414.100110][T30918] hsr_slave_1: left promiscuous mode
[  414.106211][T30918] batman_adv: batadv0: Removing interface: batadv_slave_0
[  414.114096][T31296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.126678][T31296] ext4 filesystem being mounted at /473/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  414.127175][T30918] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  414.144501][T30918] batman_adv: batadv0: Removing interface: batadv_slave_1
[  414.153910][T30918] veth1_macvtap: left promiscuous mode
[  414.159459][T30918] veth0_macvtap: left promiscuous mode
[  414.165008][T30918] veth1_vlan: left promiscuous mode
[  414.170282][T30918] veth0_vlan: left promiscuous mode
[  414.194171][T31303] EXT4-fs (loop4): shut down requested (0)
[  414.219968][T30918] pimreg (unregistering): left allmulticast mode
[  414.256845][T30918] team0 (unregistering): Port device team_slave_1 removed
[  414.267360][T30918] team0 (unregistering): Port device team_slave_0 removed
[  414.672080][T30996] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  414.690144][T30996] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  414.694584][   T29] kauditd_printk_skb: 249 callbacks suppressed
[  414.694600][   T29] audit: type=1326 audit(1860936381.130:32898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31390 comm="syz.2.5781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  414.727568][   T29] audit: type=1326 audit(1860936381.140:32899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31410 comm="syz.1.5783" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x0
[  414.750673][   T29] audit: type=1326 audit(1860936381.140:32900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31390 comm="syz.2.5781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  414.788338][T30996] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  414.802275][T30996] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  414.842170][T30996] 8021q: adding VLAN 0 to HW filter on device bond0
[  414.859124][T30996] 8021q: adding VLAN 0 to HW filter on device team0
[  414.869187][ T6147] bridge0: port 1(bridge_slave_0) entered blocking state
[  414.876273][ T6147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  414.886901][T30912] bridge0: port 2(bridge_slave_1) entered blocking state
[  414.894031][T30912] bridge0: port 2(bridge_slave_1) entered forwarding state
[  414.902523][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.921411][T30996] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  414.931887][T30996] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  414.963923][T31421] loop4: detected capacity change from 0 to 512
[  415.015476][T31451] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5786'.
[  415.028290][T30996] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.030323][T31452] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5785'.
[  415.035871][   T29] audit: type=1326 audit(1860936381.460:32901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.067820][   T29] audit: type=1326 audit(1860936381.460:32902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.072974][T31451] syzkaller0: entered promiscuous mode
[  415.091470][   T29] audit: type=1326 audit(1860936381.470:32903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.096948][T31451] syzkaller0: entered allmulticast mode
[  415.120390][   T29] audit: type=1326 audit(1860936381.470:32904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.139487][T31455] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5786'.
[  415.149524][   T29] audit: type=1326 audit(1860936381.470:32905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.160178][T31455] 0·: renamed from hsr_slave_1 (while UP)
[  415.181932][   T29] audit: type=1326 audit(1860936381.470:32906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.211293][   T29] audit: type=1326 audit(1860936381.470:32907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31450 comm="syz.2.5786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x7ffc0000
[  415.237943][T31455] 0·: entered allmulticast mode
[  415.243297][T31455] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  415.298533][T30996] veth0_vlan: entered promiscuous mode
[  415.307214][T30996] veth1_vlan: entered promiscuous mode
[  415.320438][T30996] veth0_macvtap: entered promiscuous mode
[  415.330254][T30996] veth1_macvtap: entered promiscuous mode
[  415.341453][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.351927][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.361767][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.372312][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.382197][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.392647][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.402446][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.413006][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.425309][T30996] batman_adv: batadv0: Interface activated: batadv_slave_0
[  415.436488][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.447033][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.457027][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.467632][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.477490][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.488051][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.497939][T30996] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  415.508364][T30996] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.519310][T30996] batman_adv: batadv0: Interface activated: batadv_slave_1
[  415.529913][T30996] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  415.538790][T30996] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  415.547506][T30996] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  415.556199][T30996] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  415.578961][T31474] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5791'.
[  415.591645][T31476] netlink: 268 bytes leftover after parsing attributes in process `syz.2.5790'.
[  415.610592][T31480] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.611610][T31478] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  415.628731][T31480] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.893751][T31491] loop4: detected capacity change from 0 to 512
[  415.956290][T31502] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5795'.
[  416.024209][T31499] Cannot find del_set index 2 as target
[  416.043608][T23445] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  416.139628][T31517] FAULT_INJECTION: forcing a failure.
[  416.139628][T31517] name failslab, interval 1, probability 0, space 0, times 0
[  416.152287][T31517] CPU: 0 UID: 0 PID: 31517 Comm: syz.1.5802 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  416.162747][T31517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  416.172790][T31517] Call Trace:
[  416.176055][T31517]  <TASK>
[  416.179041][T31517]  dump_stack_lvl+0xf2/0x150
[  416.183678][T31517]  dump_stack+0x15/0x20
[  416.187864][T31517]  should_fail_ex+0x229/0x230
[  416.192643][T31517]  ? __alloc_skb+0x10b/0x310
[  416.197297][T31517]  should_failslab+0x8f/0xb0
[  416.201929][T31517]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  416.207735][T31517]  __alloc_skb+0x10b/0x310
[  416.212169][T31517]  netlink_alloc_large_skb+0xad/0xe0
[  416.217555][T31517]  netlink_sendmsg+0x3b4/0x6e0
[  416.222334][T31517]  ? __pfx_netlink_sendmsg+0x10/0x10
[  416.227625][T31517]  __sock_sendmsg+0x140/0x180
[  416.232390][T31517]  ____sys_sendmsg+0x312/0x410
[  416.237231][T31517]  __sys_sendmsg+0x1dd/0x270
[  416.241882][T31517]  __x64_sys_sendmsg+0x46/0x50
[  416.246664][T31517]  x64_sys_call+0x2689/0x2d60
[  416.251414][T31517]  do_syscall_64+0xc9/0x1c0
[  416.255985][T31517]  ? clear_bhb_loop+0x55/0xb0
[  416.260652][T31517]  ? clear_bhb_loop+0x55/0xb0
[  416.265427][T31517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  416.271329][T31517] RIP: 0033:0x7fe53821def9
[  416.275763][T31517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  416.295555][T31517] RSP: 002b:00007fe536e97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  416.304021][T31517] RAX: ffffffffffffffda RBX: 00007fe5383d5f80 RCX: 00007fe53821def9
[  416.312122][T31517] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  416.320078][T31517] RBP: 00007fe536e97090 R08: 0000000000000000 R09: 0000000000000000
[  416.328037][T31517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  416.335998][T31517] R13: 0000000000000000 R14: 00007fe5383d5f80 R15: 00007ffc714c2b48
[  416.344006][T31517]  </TASK>
[  416.628946][T31538] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  416.657901][T31538] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  417.153352][T31551] loop4: detected capacity change from 0 to 512
[  417.169460][T31551] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  417.177560][T31551] System zones: 0-2, 18-18, 34-34
[  417.183426][T31551] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5814: bg 0: block 248: padding at end of block bitmap is not set
[  417.199574][T31551] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5814: Failed to acquire dquot type 1
[  417.211418][T31551] EXT4-fs (loop4): 1 truncate cleaned up
[  417.229411][T31551] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.248063][T31551] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  417.263521][T31559] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  417.271988][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.323624][T31567] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  417.394202][T31580] loop3: detected capacity change from 0 to 4096
[  417.402602][T31580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.418441][T31587] FAULT_INJECTION: forcing a failure.
[  417.418441][T31587] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  417.431516][T31587] CPU: 1 UID: 0 PID: 31587 Comm: syz.4.5826 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  417.441941][T31587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  417.452065][T31587] Call Trace:
[  417.455334][T31587]  <TASK>
[  417.458275][T31587]  dump_stack_lvl+0xf2/0x150
[  417.462866][T31587]  dump_stack+0x15/0x20
[  417.467014][T31587]  should_fail_ex+0x229/0x230
[  417.471729][T31587]  should_fail+0xb/0x10
[  417.475886][T31587]  should_fail_usercopy+0x1a/0x20
[  417.481013][T31587]  _copy_to_user+0x1e/0xa0
[  417.485471][T31587]  simple_read_from_buffer+0xa0/0x110
[  417.490850][T31587]  proc_fail_nth_read+0xf9/0x140
[  417.495844][T31587]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  417.501384][T31587]  vfs_read+0x195/0x720
[  417.505543][T31587]  ? __rcu_read_unlock+0x4e/0x70
[  417.510486][T31587]  ? __fget_files+0x1d4/0x210
[  417.515197][T31587]  ksys_read+0xeb/0x1b0
[  417.519385][T31587]  __x64_sys_read+0x42/0x50
[  417.523935][T31587]  x64_sys_call+0x27d3/0x2d60
[  417.528620][T31587]  do_syscall_64+0xc9/0x1c0
[  417.533227][T31587]  ? clear_bhb_loop+0x55/0xb0
[  417.537903][T31587]  ? clear_bhb_loop+0x55/0xb0
[  417.542588][T31587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.548513][T31587] RIP: 0033:0x7f2c8322c93c
[  417.552978][T31587] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  417.572698][T31587] RSP: 002b:00007f2c81ea7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  417.581113][T31587] RAX: ffffffffffffffda RBX: 00007f2c833e5f80 RCX: 00007f2c8322c93c
[  417.589193][T31587] RDX: 000000000000000f RSI: 00007f2c81ea70a0 RDI: 0000000000000006
[  417.597231][T31587] RBP: 00007f2c81ea7090 R08: 0000000000000000 R09: 00007f2c81ea6987
[  417.605234][T31587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.613210][T31587] R13: 0000000000000000 R14: 00007f2c833e5f80 R15: 00007fffa12ea2d8
[  417.621188][T31587]  </TASK>
[  417.633855][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.694223][T31596] loop4: detected capacity change from 0 to 512
[  417.707114][T31596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.719608][T31596] ext4 filesystem being mounted at /485/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  417.934155][T31602] loop3: detected capacity change from 0 to 512
[  417.946665][T31602] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  417.954717][T31602] System zones: 0-2, 18-18, 34-34
[  417.960558][T31602] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5830: bg 0: block 248: padding at end of block bitmap is not set
[  417.975087][T31602] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5830: Failed to acquire dquot type 1
[  417.986997][T31602] EXT4-fs (loop3): 1 truncate cleaned up
[  417.993105][T31602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.005974][T31602] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  418.025215][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.071641][T31616] serio: Serial port ptm0
[  418.122633][T31643] netlink: 184 bytes leftover after parsing attributes in process `syz.0.5834'.
[  418.134429][T31645] random: crng reseeded on system resumption
[  418.220441][T31652] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5838'.
[  418.243755][T31655] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  418.252534][T31655] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  418.483217][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.575559][T31676] random: crng reseeded on system resumption
[  418.727699][T31682] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  418.737357][T31682] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  418.831977][T31688] loop4: detected capacity change from 0 to 512
[  418.891996][T31691] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5851'.
[  419.258831][T31693] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  419.268025][T31693] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  419.817180][T31716] FAULT_INJECTION: forcing a failure.
[  419.817180][T31716] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  419.830354][T31716] CPU: 1 UID: 0 PID: 31716 Comm: syz.4.5861 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  419.840795][T31716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  419.850874][T31716] Call Trace:
[  419.854151][T31716]  <TASK>
[  419.857068][T31716]  dump_stack_lvl+0xf2/0x150
[  419.860959][T31717] netlink: 268 bytes leftover after parsing attributes in process `syz.1.5860'.
[  419.861667][T31716]  dump_stack+0x15/0x20
[  419.874869][T31716]  should_fail_ex+0x229/0x230
[  419.879557][T31716]  should_fail+0xb/0x10
[  419.883833][T31716]  should_fail_usercopy+0x1a/0x20
[  419.888908][T31716]  _copy_from_user+0x1e/0xd0
[  419.893495][T31716]  __se_sys_memfd_create+0x26b/0x5c0
[  419.898847][T31716]  __x64_sys_memfd_create+0x31/0x40
[  419.904100][T31716]  x64_sys_call+0x2891/0x2d60
[  419.908785][T31716]  do_syscall_64+0xc9/0x1c0
[  419.913357][T31716]  ? clear_bhb_loop+0x55/0xb0
[  419.918097][T31716]  ? clear_bhb_loop+0x55/0xb0
[  419.922785][T31716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.928699][T31716] RIP: 0033:0x7f2c8322def9
[  419.933099][T31716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.952789][T31716] RSP: 002b:00007f2c81ea6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  419.961249][T31716] RAX: ffffffffffffffda RBX: 0000000000000443 RCX: 00007f2c8322def9
[  419.969300][T31716] RDX: 00007f2c81ea6ef0 RSI: 0000000000000000 RDI: 00007f2c832a1369
[  419.977264][T31716] RBP: 0000000020000940 R08: 00007f2c81ea6bb7 R09: 00007f2c81ea6e40
[  419.985231][T31716] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000000
[  419.993262][T31716] R13: 00007f2c81ea6ef0 R14: 00007f2c81ea6eb0 R15: 0000000020000140
[  420.001250][T31716]  </TASK>
[  420.020775][T31721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  420.029568][T31721] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  420.106845][T31726] loop4: detected capacity change from 0 to 512
[  420.116505][T31726] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  420.124622][T31726] System zones: 0-2, 18-18, 34-34
[  420.130600][T31726] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5864: bg 0: block 248: padding at end of block bitmap is not set
[  420.145368][T31726] __quota_error: 200 callbacks suppressed
[  420.145385][T31726] Quota error (device loop4): write_blk: dquota write failed
[  420.158586][T31726] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  420.168582][T31726] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5864: Failed to acquire dquot type 1
[  420.180297][T31726] EXT4-fs (loop4): 1 truncate cleaned up
[  420.186319][T31726] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  420.198898][T31726] ext4 filesystem being mounted at /498/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  420.217804][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.250038][T31735] loop4: detected capacity change from 0 to 512
[  420.310896][T31738] netlink: 268 bytes leftover after parsing attributes in process `syz.4.5866'.
[  420.578684][T31744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  420.587261][T31744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  420.651005][T31748] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5870'.
[  420.737507][   T29] audit: type=1326 audit(1860936387.180:33104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.742653][T31753] xt_CT: You must specify a L4 protocol and not use inversions on it
[  420.761095][   T29] audit: type=1326 audit(1860936387.180:33105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.795635][   T29] audit: type=1326 audit(1860936387.180:33106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe53821c890 code=0x7ffc0000
[  420.819322][   T29] audit: type=1326 audit(1860936387.180:33107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe53821c890 code=0x7ffc0000
[  420.842958][   T29] audit: type=1326 audit(1860936387.180:33108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.866997][   T29] audit: type=1326 audit(1860936387.180:33109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.890937][   T29] audit: type=1326 audit(1860936387.180:33110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.915047][   T29] audit: type=1326 audit(1860936387.180:33111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31752 comm="syz.1.5872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x7ffc0000
[  420.951507][T31755] netlink: 'syz.1.5873': attribute type 10 has an invalid length.
[  420.961744][T31755] 8021q: adding VLAN 0 to HW filter on device team0
[  420.969823][T31755] bond0: (slave team0): Enslaving as an active interface with an up link
[  420.981164][T31755] netlink: 'syz.1.5873': attribute type 10 has an invalid length.
[  420.989970][T31755] bond0: (slave team0): Releasing backup interface
[  420.998635][T31755] bridge0: port 4(team0) entered blocking state
[  421.004957][T31755] bridge0: port 4(team0) entered disabled state
[  421.011289][T31755] team0: entered allmulticast mode
[  421.016481][T31755] team_slave_0: entered allmulticast mode
[  421.022274][T31755] team_slave_1: entered allmulticast mode
[  421.028078][T31755] netdevsim netdevsim1 netdevsim1: entered allmulticast mode
[  421.036184][T31755] team0: entered promiscuous mode
[  421.041317][T31755] team_slave_0: entered promiscuous mode
[  421.047126][T31755] team_slave_1: entered promiscuous mode
[  421.052904][T31755] netdevsim netdevsim1 netdevsim1: entered promiscuous mode
[  421.060898][T31756] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5873'.
[  421.099628][T31758] xt_CT: You must specify a L4 protocol and not use inversions on it
[  421.100357][T31762] loop4: detected capacity change from 0 to 512
[  421.128495][T31762] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  421.136622][T31762] System zones: 0-2, 18-18, 34-34
[  421.142423][T31762] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5876: bg 0: block 248: padding at end of block bitmap is not set
[  421.158463][T31762] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5876: Failed to acquire dquot type 1
[  421.174306][T31762] EXT4-fs (loop4): 1 truncate cleaned up
[  421.180499][T31762] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.194454][T31762] ext4 filesystem being mounted at /501/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.231978][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.259587][T31775] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  421.268347][T31777] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5880'.
[  421.321888][T31792] loop3: detected capacity change from 0 to 512
[  421.329313][T31792] EXT4-fs: Ignoring removed orlov option
[  421.337728][T31792] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  421.349277][T31792] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  421.359484][T31792] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.5886: Corrupt directory, running e2fsck is recommended
[  421.416560][T31792] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  421.429553][T31801] netlink: 'syz.4.5889': attribute type 1 has an invalid length.
[  421.444469][T31792] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5886: corrupted in-inode xattr: invalid ea_ino
[  421.459891][T31805] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  421.472600][T31792] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5886: couldn't read orphan inode 15 (err -117)
[  421.487874][T31792] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.490967][T31805] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  421.538532][T31831] loop4: detected capacity change from 0 to 512
[  421.544645][T31833] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  421.554084][T31792] netlink: 'syz.3.5886': attribute type 10 has an invalid length.
[  421.562258][T31833] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  421.573246][T31831] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  421.573753][T31792] 8021q: adding VLAN 0 to HW filter on device team0
[  421.584905][T31831] System zones: 0-2, 18-18, 34-34
[  421.589664][T31792] bond0: (slave team0): Enslaving as an active interface with an up link
[  421.593978][T31831] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5892: bg 0: block 248: padding at end of block bitmap is not set
[  421.601461][T31838] netlink: 'syz.3.5886': attribute type 10 has an invalid length.
[  421.617803][T31831] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5892: Failed to acquire dquot type 1
[  421.635408][T31831] EXT4-fs (loop4): 1 truncate cleaned up
[  421.635651][T31838] bond0: (slave team0): Releasing backup interface
[  421.642025][T31831] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.660706][T31831] ext4 filesystem being mounted at /506/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.662330][T31838] bridge0: port 4(team0) entered blocking state
[  421.677595][T31838] bridge0: port 4(team0) entered disabled state
[  421.683936][T31838] team0: entered allmulticast mode
[  421.689088][T31838] team_slave_0: entered allmulticast mode
[  421.694969][T31838] team_slave_1: entered allmulticast mode
[  421.701436][T31838] team0: entered promiscuous mode
[  421.701496][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.706472][T31838] team_slave_0: entered promiscuous mode
[  421.721118][T31838] team_slave_1: entered promiscuous mode
[  421.738255][T31792] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.5886'.
[  421.757420][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.821163][T31849] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  421.849225][T31844] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  421.943514][T31870] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  421.955346][T31870] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  421.976699][T31890] loop4: detected capacity change from 0 to 128
[  421.984697][T31890] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  421.997070][T31890] ext4 filesystem being mounted at /510/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  422.055186][T19248] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  422.085061][T31899] loop4: detected capacity change from 0 to 512
[  422.116659][T31899] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  422.124785][T31899] System zones: 0-2, 18-18, 34-34
[  422.131813][T31899] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5905: bg 0: block 248: padding at end of block bitmap is not set
[  422.147571][T31899] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5905: Failed to acquire dquot type 1
[  422.159669][T31899] EXT4-fs (loop4): 1 truncate cleaned up
[  422.166600][T31899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.180042][T31899] ext4 filesystem being mounted at /511/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.200655][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.254192][T31909] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  422.383370][    T9] kernel write not supported for file /29/attr/keycreate (pid: 9 comm: kworker/0:1)
[  422.396861][T31916] loop4: detected capacity change from 0 to 512
[  422.407693][T31916] ext4 filesystem being mounted at /514/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  422.431280][T31916] EXT4-fs (loop4): shut down requested (0)
[  422.493552][T31925] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  422.502035][T31925] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.560113][T31930] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5914'.
[  423.452777][T31948] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5921'.
[  423.468459][T31948] loop4: detected capacity change from 0 to 128
[  423.477043][T31948] netlink: zone id is out of range
[  423.482162][T31948] netlink: zone id is out of range
[  423.487392][T31948] netlink: zone id is out of range
[  423.492501][T31948] netlink: zone id is out of range
[  423.497766][T31948] netlink: zone id is out of range
[  423.502963][T31948] netlink: zone id is out of range
[  423.508134][T31948] netlink: zone id is out of range
[  423.513241][T31948] netlink: zone id is out of range
[  423.518368][T31948] netlink: zone id is out of range
[  423.523482][T31948] netlink: zone id is out of range
[  423.554010][T31976] xt_CT: You must specify a L4 protocol and not use inversions on it
[  423.576362][T31978] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  423.586087][T31978] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  423.739090][T31986] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.5925'.
[  423.761324][T31988] FAULT_INJECTION: forcing a failure.
[  423.761324][T31988] name failslab, interval 1, probability 0, space 0, times 0
[  423.774075][T31988] CPU: 0 UID: 0 PID: 31988 Comm: syz.0.5926 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  423.784491][T31988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  423.794536][T31988] Call Trace:
[  423.797846][T31988]  <TASK>
[  423.800869][T31988]  dump_stack_lvl+0xf2/0x150
[  423.805457][T31988]  dump_stack+0x15/0x20
[  423.809656][T31988]  should_fail_ex+0x229/0x230
[  423.814337][T31988]  ? audit_log_d_path+0x96/0x250
[  423.819422][T31988]  should_failslab+0x8f/0xb0
[  423.824022][T31988]  __kmalloc_cache_noprof+0x4b/0x2a0
[  423.829331][T31988]  audit_log_d_path+0x96/0x250
[  423.834090][T31988]  ? get_file_rcu+0xeb/0x100
[  423.838780][T31988]  ? __rcu_read_unlock+0x4e/0x70
[  423.843836][T31988]  audit_log_d_path_exe+0x42/0x70
[  423.848887][T31988]  audit_log_task+0x155/0x180
[  423.853573][T31988]  audit_seccomp+0x68/0x130
[  423.858127][T31988]  __seccomp_filter+0x6fa/0x1180
[  423.863062][T31988]  ? proc_fail_nth_write+0x12a/0x150
[  423.868419][T31988]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  423.874051][T31988]  ? vfs_write+0x580/0x910
[  423.878480][T31988]  ? __fget_files+0x1d4/0x210
[  423.883216][T31988]  __secure_computing+0x9f/0x1c0
[  423.888152][T31988]  syscall_trace_enter+0xd1/0x1f0
[  423.893176][T31988]  ? fpregs_assert_state_consistent+0x83/0xa0
[  423.899417][T31988]  do_syscall_64+0xaa/0x1c0
[  423.903983][T31988]  ? clear_bhb_loop+0x55/0xb0
[  423.908675][T31988]  ? clear_bhb_loop+0x55/0xb0
[  423.913344][T31988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.919319][T31988] RIP: 0033:0x7fa67a39def9
[  423.923726][T31988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.943379][T31988] RSP: 002b:00007fa679016fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  423.951785][T31988] RAX: ffffffffffffffda RBX: 00007fa67a555f80 RCX: 00007fa67a39def9
[  423.959839][T31988] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000024001000
[  423.967803][T31988] RBP: 00007fa679017090 R08: 0000000000000000 R09: 0000000000000000
[  423.975819][T31988] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  423.983801][T31988] R13: 0000000000000000 R14: 00007fa67a555f80 R15: 00007ffdaa55bec8
[  423.991771][T31988]  </TASK>
[  424.015656][T31991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  424.024244][T31991] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  424.179999][T32000] loop3: detected capacity change from 0 to 512
[  424.207367][T32000] ext4 filesystem being mounted at /367/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  424.587657][T32015] random: crng reseeded on system resumption
[  425.376514][T32034] loop3: detected capacity change from 0 to 512
[  425.386607][T32034] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  425.394672][T32034] System zones: 0-2, 18-18, 34-34
[  425.400493][T32034] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5941: bg 0: block 248: padding at end of block bitmap is not set
[  425.416124][T32034] __quota_error: 195 callbacks suppressed
[  425.416136][T32034] Quota error (device loop3): write_blk: dquota write failed
[  425.429373][T32034] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  425.441221][T32034] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5941: Failed to acquire dquot type 1
[  425.452932][T32034] EXT4-fs (loop3): 1 truncate cleaned up
[  425.459228][T32034] ext4 filesystem being mounted at /368/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  425.489023][T32044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.497670][T32044] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.524038][T32049] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.532602][T32049] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.583922][   T29] audit: type=1326 audit(1860936392.020:33301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32052 comm="syz.0.5945" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x0
[  425.619634][T32055] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  426.069661][   T29] audit: type=1400 audit(1860936392.510:33302): avc:  denied  { accept } for  pid=32077 comm="syz.3.5956" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  426.107782][   T29] audit: type=1326 audit(1860936392.550:33303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.141819][   T29] audit: type=1326 audit(1860936392.570:33304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.165598][   T29] audit: type=1326 audit(1860936392.570:33305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.189217][   T29] audit: type=1326 audit(1860936392.570:33306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.212848][   T29] audit: type=1326 audit(1860936392.570:33307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.236410][   T29] audit: type=1326 audit(1860936392.570:33308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32080 comm="syz.3.5957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7e4ba8def9 code=0x7ffc0000
[  426.567171][T32086] tipc: Started in network mode
[  426.572238][T32086] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  426.628451][T32086] tipc: New replicast peer: 0000:0000:0000:0000:0000:ffff:e000:0002
[  426.636638][T32086] tipc: Enabled bearer <udp:syz2>, priority 10
[  426.792611][T32092] netlink: 268 bytes leftover after parsing attributes in process `syz.0.5959'.
[  426.881555][T32099] loop4: detected capacity change from 0 to 128
[  426.901799][T32099] ext4 filesystem being mounted at /532/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  426.946788][T32105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  426.959734][T32105] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  426.992448][T32114] loop4: detected capacity change from 0 to 128
[  427.006117][T32114] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5968'.
[  427.127013][T32117] infiniband syz1: set active
[  427.131702][T32117] infiniband syz1: added team_slave_0
[  427.143709][T32117] RDS/IB: syz1: added
[  427.147811][T32117] smc: adding ib device syz1 with port count 1
[  427.154067][T32117] smc:    ib device syz1 port 1 has pnetid 
[  427.699659][T32138] xt_CT: You must specify a L4 protocol and not use inversions on it
[  427.757358][T32084] tipc: Node number set to 1
[  427.967729][T32150] loop3: detected capacity change from 0 to 128
[  427.979768][T32150] ext4 filesystem being mounted at /377/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  428.430281][T32155] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.5981'.
[  428.490484][T32168] random: crng reseeded on system resumption
[  428.651650][T32199] loop4: detected capacity change from 0 to 128
[  428.701895][T32199] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5991'.
[  428.786450][T32204] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  428.786450][T32204]    program syz.4.5992 not setting count and/or reply_len properly
[  428.878742][T32207] loop4: detected capacity change from 0 to 512
[  428.885291][T32207] EXT4-fs: Ignoring removed orlov option
[  428.893233][T32207] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  428.904739][T32207] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  428.914922][T32207] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.5993: Corrupt directory, running e2fsck is recommended
[  428.963745][T32207] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  428.972565][T32207] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5993: corrupted in-inode xattr: invalid ea_ino
[  428.987485][T32207] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5993: couldn't read orphan inode 15 (err -117)
[  429.002422][T32213] netlink: 268 bytes leftover after parsing attributes in process `syz.1.5995'.
[  429.016989][T32207] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.5993'.
[  429.041391][T32217] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.050356][T32217] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.551076][T32255] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  429.551076][T32255]    program syz.0.6001 not setting count and/or reply_len properly
[  429.827489][T32258] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6002'.
[  429.912255][T32267] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6005'.
[  429.926460][T32268] netlink: 268 bytes leftover after parsing attributes in process `syz.1.6006'.
[  430.089897][T32271] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6007'.
[  430.717669][   T29] kauditd_printk_skb: 273 callbacks suppressed
[  430.717688][   T29] audit: type=1400 audit(1860936397.160:33582): avc:  denied  { create } for  pid=32274 comm="syz.1.6009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  430.755522][   T29] audit: type=1326 audit(1860936397.190:33583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32278 comm="syz.1.6011" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe53821def9 code=0x0
[  430.878466][   T29] audit: type=1400 audit(1860936397.320:33584): avc:  denied  { create } for  pid=32282 comm="syz.2.6012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  430.898618][   T29] audit: type=1400 audit(1860936397.320:33585): avc:  denied  { connect } for  pid=32282 comm="syz.2.6012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  430.918685][   T29] audit: type=1400 audit(1860936397.320:33586): avc:  denied  { ioctl } for  pid=32282 comm="syz.2.6012" path="socket:[64812]" dev="sockfs" ino=64812 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  430.943859][   T29] audit: type=1400 audit(1860936397.320:33587): avc:  denied  { read } for  pid=32282 comm="syz.2.6012" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  430.967174][   T29] audit: type=1400 audit(1860936397.320:33588): avc:  denied  { open } for  pid=32282 comm="syz.2.6012" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  430.990955][   T29] audit: type=1400 audit(1860936397.320:33589): avc:  denied  { ioctl } for  pid=32282 comm="syz.2.6012" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  431.017030][   T29] audit: type=1400 audit(1860936397.370:33590): avc:  denied  { create } for  pid=32284 comm="syz.2.6013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  431.036648][   T29] audit: type=1400 audit(1860936397.370:33591): avc:  denied  { connect } for  pid=32284 comm="syz.2.6013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  431.064339][T32287] netlink: 'syz.2.6014': attribute type 21 has an invalid length.
[  431.529831][T32304] loop3: detected capacity change from 0 to 512
[  431.536540][T32304] EXT4-fs: Ignoring removed orlov option
[  431.572088][T32304] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  431.630390][T32304] EXT4-fs (loop3): 1 orphan inode deleted
[  431.636159][T32304] EXT4-fs (loop3): 1 truncate cleaned up
[  431.865054][T32312] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  431.984666][T32321] __nla_validate_parse: 1 callbacks suppressed
[  431.984686][T32321] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.6025'.
[  432.117997][T32329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.127117][T32329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  432.339860][T32343] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  432.407477][T32349] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.417347][T32349] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  432.471321][T32354] serio: Serial port ptm0
[  432.522461][T32357] netlink: 184 bytes leftover after parsing attributes in process `syz.1.6038'.
[  432.712745][T32368] xt_CT: You must specify a L4 protocol and not use inversions on it
[  432.722715][T32369] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6040'.
[  432.739965][T32371] loop3: detected capacity change from 0 to 512
[  432.767401][T32371] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  432.775520][T32371] System zones: 0-2, 18-18, 34-34
[  432.781434][T32371] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6043: bg 0: block 248: padding at end of block bitmap is not set
[  432.795970][T32371] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.6043: Failed to acquire dquot type 1
[  432.807667][T32371] EXT4-fs (loop3): 1 truncate cleaned up
[  432.813699][T32371] ext4 filesystem being mounted at /385/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  432.851991][T32380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.860484][T32380] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  433.199652][T32384] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  433.350029][T32393] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6050'.
[  433.430355][T32401] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.482807][T32406] loop3: detected capacity change from 0 to 512
[  433.545027][T32406] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  433.563814][T32406] System zones: 0-2, 18-18, 34-34
[  433.573825][T32406] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6055: bg 0: block 248: padding at end of block bitmap is not set
[  433.588502][T32415] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6059'.
[  433.589448][T32406] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.6055: Failed to acquire dquot type 1
[  433.615353][T32406] EXT4-fs (loop3): 1 truncate cleaned up
[  433.626286][T32406] ext4 filesystem being mounted at /391/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  433.652294][T32427] syz.0.6061[32427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  433.652364][T32427] syz.0.6061[32427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  433.723982][T32435] serio: Serial port ptm0
[  433.790714][T32416] chnl_net:caif_netlink_parms(): no params data found
[  433.818140][T32551] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6065'.
[  433.851202][T32551] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0001
[  433.859509][T32551] tipc: Enabled bearer <udp:syz0>, priority 10
[  433.866691][T32416] bridge0: port 1(bridge_slave_0) entered blocking state
[  433.873808][T32416] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.881047][T32416] bridge_slave_0: entered allmulticast mode
[  433.887828][T32416] bridge_slave_0: entered promiscuous mode
[  433.894782][T32416] bridge0: port 2(bridge_slave_1) entered blocking state
[  433.901883][T32416] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.909105][T32416] bridge_slave_1: entered allmulticast mode
[  433.915666][T32416] bridge_slave_1: entered promiscuous mode
[  433.934348][T32551] loop3: detected capacity change from 0 to 1024
[  433.943487][T32551] EXT4-fs: Ignoring removed nobh option
[  433.946375][T32416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  433.959736][T32416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  433.982863][T32416] team0: Port device team_slave_0 added
[  433.990151][T32416] team0: Port device team_slave_1 added
[  434.012611][T32416] batman_adv: batadv0: Adding interface: batadv_slave_0
[  434.019627][T32416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  434.045695][T32416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  434.057223][T32416] batman_adv: batadv0: Adding interface: batadv_slave_1
[  434.064163][T32416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  434.090084][T32416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  434.119835][T32416] hsr_slave_0: entered promiscuous mode
[  434.128143][T32416] hsr_slave_1: entered promiscuous mode
[  434.134144][T32416] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  434.141834][T32416] Cannot create hsr debugfs directory
[  434.183030][T32751] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6070'.
[  434.214635][T32416] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.232023][  T309] xt_CT: You must specify a L4 protocol and not use inversions on it
[  434.258389][T32416] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.287642][  T317] FAULT_INJECTION: forcing a failure.
[  434.287642][  T317] name failslab, interval 1, probability 0, space 0, times 0
[  434.300254][  T317] CPU: 1 UID: 0 PID: 317 Comm: syz.0.6074 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  434.310566][  T317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  434.320632][  T317] Call Trace:
[  434.323971][  T317]  <TASK>
[  434.326909][  T317]  dump_stack_lvl+0xf2/0x150
[  434.331499][  T317]  dump_stack+0x15/0x20
[  434.335665][  T317]  should_fail_ex+0x229/0x230
[  434.340399][  T317]  ? __inet_hash_connect+0xa15/0x1170
[  434.345783][  T317]  should_failslab+0x8f/0xb0
[  434.350363][  T317]  kmem_cache_alloc_noprof+0x4c/0x290
[  434.355802][  T317]  ? ipv6_portaddr_hash+0x90/0x1f0
[  434.360963][  T317]  __inet_hash_connect+0xa15/0x1170
[  434.366207][  T317]  ? secure_ipv6_port_ephemeral+0xa4/0x130
[  434.372054][  T317]  inet6_hash_connect+0x72/0x80
[  434.376964][  T317]  dccp_v6_connect+0x6d4/0x8a0
[  434.381743][  T317]  __inet_stream_connect+0x162/0x790
[  434.387036][  T317]  ? _raw_spin_unlock_bh+0x36/0x40
[  434.392201][  T317]  ? release_sock+0x117/0x150
[  434.397013][  T317]  ? _raw_spin_unlock_bh+0x36/0x40
[  434.402131][  T317]  ? lock_sock_nested+0x10f/0x140
[  434.407161][  T317]  ? selinux_netlbl_socket_connect+0x113/0x130
[  434.413363][  T317]  inet_stream_connect+0x48/0x70
[  434.418303][  T317]  ? __pfx_inet_stream_connect+0x10/0x10
[  434.423973][  T317]  __sys_connect+0x19d/0x1b0
[  434.428707][  T317]  __x64_sys_connect+0x41/0x50
[  434.433486][  T317]  x64_sys_call+0x2220/0x2d60
[  434.438235][  T317]  do_syscall_64+0xc9/0x1c0
[  434.442736][  T317]  ? clear_bhb_loop+0x55/0xb0
[  434.447480][  T317]  ? clear_bhb_loop+0x55/0xb0
[  434.452155][  T317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.458169][  T317] RIP: 0033:0x7fa67a39def9
[  434.462615][  T317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  434.482261][  T317] RSP: 002b:00007fa679017038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  434.490678][  T317] RAX: ffffffffffffffda RBX: 00007fa67a555f80 RCX: 00007fa67a39def9
[  434.498693][  T317] RDX: 000000000000001c RSI: 0000000020000040 RDI: 0000000000000007
[  434.506666][  T317] RBP: 00007fa679017090 R08: 0000000000000000 R09: 0000000000000000
[  434.514679][  T317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  434.522659][  T317] R13: 0000000000000000 R14: 00007fa67a555f80 R15: 00007ffdaa55bec8
[  434.530678][  T317]  </TASK>
[  434.536734][T32416] netdevsim netdevsim1 netdevsim1 (unregistering): left promiscuous mode
[  434.545259][T32416] netdevsim netdevsim1 netdevsim1 (unregistering): left allmulticast mode
[  434.556920][T32416] team0: Port device netdevsim1 removed
[  434.564054][T32416] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.616293][T32416] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.719223][  T325] netlink: 'syz.0.6077': attribute type 27 has an invalid length.
[  434.756418][  T325] bridge0: port 2(bridge_slave_1) entered disabled state
[  434.763720][  T325] bridge0: port 1(bridge_slave_0) entered disabled state
[  434.810591][  T325] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  434.821527][  T325] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  434.861154][  T325] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.870347][  T325] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.879366][  T325] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.888283][  T325] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  434.902675][  T330] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6077'.
[  434.911647][  T330] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6077'.
[  434.938867][T32416] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  434.947904][T32416] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  434.958624][T32416] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  434.980358][T32416] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  435.031743][T32416] 8021q: adding VLAN 0 to HW filter on device bond0
[  435.046563][T32416] 8021q: adding VLAN 0 to HW filter on device team0
[  435.056899][T30910] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.064034][T30910] bridge0: port 1(bridge_slave_0) entered forwarding state
[  435.072455][  T369] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6083'.
[  435.084207][ T6163] bridge0: port 2(bridge_slave_1) entered blocking state
[  435.091289][ T6163] bridge0: port 2(bridge_slave_1) entered forwarding state
[  435.108117][  T372] loop3: detected capacity change from 0 to 512
[  435.133453][  T372] EXT4-fs mount: 20 callbacks suppressed
[  435.133469][  T372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.159672][  T372] ext4 filesystem being mounted at /397/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  435.171446][ T6147] team0: left allmulticast mode
[  435.176365][ T6147] team_slave_0: left allmulticast mode
[  435.181962][ T6147] team_slave_1: left allmulticast mode
[  435.187719][ T6147] team0: left promiscuous mode
[  435.192489][ T6147] team_slave_0: left promiscuous mode
[  435.197944][ T6147] team_slave_1: left promiscuous mode
[  435.202031][  T372] EXT4-fs (loop3): shut down requested (0)
[  435.203472][ T6147] bridge0: port 4(team0) entered disabled state
[  435.217615][ T6147] veth0_to_bond: left allmulticast mode
[  435.223196][ T6147] veth0_to_bond: left promiscuous mode
[  435.228870][ T6147] bridge0: port 3(veth0_to_bond) entered disabled state
[  435.237064][ T6147] bridge_slave_1: left allmulticast mode
[  435.242792][ T6147] bridge_slave_1: left promiscuous mode
[  435.248569][ T6147] bridge0: port 2(bridge_slave_1) entered disabled state
[  435.256351][ T6147] bridge_slave_0: left allmulticast mode
[  435.262003][ T6147] bridge_slave_0: left promiscuous mode
[  435.267766][ T6147] bridge0: port 1(bridge_slave_0) entered disabled state
[  435.387872][ T6147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  435.397916][ T6147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  435.407876][ T6147] bond0 (unregistering): Released all slaves
[  435.416739][  T382] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  435.439450][T32416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  435.464338][ T6147] tipc: Disabling bearer <udp:syz2>
[  435.469823][ T6147] tipc: Left network mode
[  435.513448][ T6147] hsr_slave_0: left promiscuous mode
[  435.530389][ T6147] hsr_slave_1: left promiscuous mode
[  435.537269][ T6147] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  435.544853][ T6147] batman_adv: batadv0: Removing interface: batadv_slave_0
[  435.554742][ T6147] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  435.562212][ T6147] batman_adv: batadv0: Removing interface: batadv_slave_1
[  435.574454][ T6147] veth1_macvtap: left promiscuous mode
[  435.579962][ T6147] veth0_macvtap: left promiscuous mode
[  435.585501][ T6147] veth1_vlan: left promiscuous mode
[  435.587488][  T386] Cannot find set identified by id 0 to match
[  435.590752][ T6147] veth0_vlan: left promiscuous mode
[  435.644376][ T6147] pimreg (unregistering): left allmulticast mode
[  435.679470][ T6147] team0 (unregistering): Port device team_slave_1 removed
[  435.690186][ T6147] team0 (unregistering): Port device team_slave_0 removed
[  435.751058][T32416] veth0_vlan: entered promiscuous mode
[  435.759209][T32416] veth1_vlan: entered promiscuous mode
[  435.772948][T32416] veth0_macvtap: entered promiscuous mode
[  435.780211][T32416] veth1_macvtap: entered promiscuous mode
[  435.790612][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.801083][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.810961][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.821493][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.831591][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.842046][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.844919][   T29] kauditd_printk_skb: 267 callbacks suppressed
[  435.844935][   T29] audit: type=1326 audit(1860936402.290:33855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=410 comm="syz.2.6097" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbb25a1def9 code=0x0
[  435.873118][  T413] loop4: detected capacity change from 0 to 1024
[  435.883165][T32416] batman_adv: batadv0: Interface activated: batadv_slave_0
[  435.888368][   T29] audit: type=1400 audit(1860936402.330:33856): avc:  denied  { create } for  pid=409 comm="syz.4.6096" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  435.898690][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.923016][   T29] audit: type=1400 audit(1860936402.360:33857): avc:  denied  { map } for  pid=409 comm="syz.4.6096" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=64444 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  435.926214][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.926225][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.926240][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.950355][   T29] audit: type=1400 audit(1860936402.360:33858): avc:  denied  { read write } for  pid=409 comm="syz.4.6096" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=64444 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  435.960155][T32416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.960171][T32416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.967208][T32416] batman_adv: batadv0: Interface activated: batadv_slave_1
[  435.988042][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.019204][T32416] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.050655][T32416] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.059546][T32416] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.068336][T32416] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.081033][   T29] audit: type=1326 audit(1860936402.520:33859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  436.104586][   T29] audit: type=1326 audit(1860936402.520:33860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2c8322c890 code=0x7ffc0000
[  436.111915][  T420] xt_CT: You must specify a L4 protocol and not use inversions on it
[  436.128127][   T29] audit: type=1326 audit(1860936402.520:33861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2c8322c890 code=0x7ffc0000
[  436.159536][   T29] audit: type=1326 audit(1860936402.520:33862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  436.182932][   T29] audit: type=1326 audit(1860936402.520:33863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  436.206402][   T29] audit: type=1326 audit(1860936402.520:33864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=417 comm="syz.4.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7f2c8322def9 code=0x7ffc0000
[  436.238364][  T428] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.252771][  T428] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.615764][  T455] Cannot find set identified by id 0 to match
[  436.738244][  T464] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.747018][  T464] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.784225][  T467] 9pnet_virtio: no channels available for device 127.0.0.1
[  436.951531][  T471] loop3: detected capacity change from 0 to 128
[  437.031670][  T476] loop3: detected capacity change from 0 to 512
[  437.091296][  T479] __nla_validate_parse: 2 callbacks suppressed
[  437.091306][  T479] netlink: 268 bytes leftover after parsing attributes in process `syz.3.6111'.
[  437.392417][  T499] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6120'.
[  437.989035][  T516] loop3: detected capacity change from 0 to 128
[  438.096457][  T523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  438.106803][  T523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  438.258169][  T530] 9pnet_virtio: no channels available for device 127.0.0.1
[  438.266985][  T530] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6131'.
[  438.436705][  T534] FAULT_INJECTION: forcing a failure.
[  438.436705][  T534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  438.449966][  T534] CPU: 1 UID: 0 PID: 534 Comm: syz.2.6133 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  438.460407][  T534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  438.470480][  T534] Call Trace:
[  438.473753][  T534]  <TASK>
[  438.476683][  T534]  dump_stack_lvl+0xf2/0x150
[  438.481301][  T534]  dump_stack+0x15/0x20
[  438.485560][  T534]  should_fail_ex+0x229/0x230
[  438.490435][  T534]  should_fail+0xb/0x10
[  438.494670][  T534]  should_fail_usercopy+0x1a/0x20
[  438.499754][  T534]  _copy_from_user+0x1e/0xd0
[  438.504360][  T534]  get_sg_io_hdr+0xbc/0x390
[  438.508891][  T534]  ? path_openat+0x1a5a/0x1fa0
[  438.513696][  T534]  sg_new_write+0xca/0x8e0
[  438.518229][  T534]  sg_ioctl+0xe22/0x1870
[  438.522561][  T534]  ? __pfx_sg_ioctl+0x10/0x10
[  438.527263][  T534]  __se_sys_ioctl+0xcd/0x140
[  438.531942][  T534]  __x64_sys_ioctl+0x43/0x50
[  438.536547][  T534]  x64_sys_call+0x15cc/0x2d60
[  438.541281][  T534]  do_syscall_64+0xc9/0x1c0
[  438.545827][  T534]  ? clear_bhb_loop+0x55/0xb0
[  438.550540][  T534]  ? clear_bhb_loop+0x55/0xb0
[  438.555250][  T534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.561175][  T534] RIP: 0033:0x7fbb25a1def9
[  438.565783][  T534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.585425][  T534] RSP: 002b:00007fbb24691038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  438.593845][  T534] RAX: ffffffffffffffda RBX: 00007fbb25bd5f80 RCX: 00007fbb25a1def9
[  438.601878][  T534] RDX: 0000000020000040 RSI: 0000000000002285 RDI: 0000000000000005
[  438.609843][  T534] RBP: 00007fbb24691090 R08: 0000000000000000 R09: 0000000000000000
[  438.617874][  T534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  438.625840][  T534] R13: 0000000000000000 R14: 00007fbb25bd5f80 R15: 00007ffe6b336ef8
[  438.633808][  T534]  </TASK>
[  438.818905][  T579] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  438.839326][  T581] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  438.848115][  T581] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  439.338864][  T595] 9pnet_fd: Insufficient options for proto=fd
[  439.357360][  T595] loop4: detected capacity change from 0 to 512
[  439.428398][  T595] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.442375][  T595] ext4 filesystem being mounted at /550/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  439.506617][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.833340][  T614] loop4: detected capacity change from 0 to 128
[  440.065256][  T635] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6158'.
[  440.141160][  T639] loop4: detected capacity change from 0 to 512
[  440.147877][  T639] EXT4-fs: Ignoring removed orlov option
[  440.154539][  T639] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  440.175014][  T638] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6159'.
[  440.217582][  T637] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6156'.
[  440.229437][  T639] EXT4-fs (loop4): 1 orphan inode deleted
[  440.235275][  T639] EXT4-fs (loop4): 1 truncate cleaned up
[  440.241607][  T639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  440.755744][  T648] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6162'.
[  440.807507][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.841764][  T656] loop4: detected capacity change from 0 to 128
[  440.886665][  T658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.895485][  T658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.922067][   T29] kauditd_printk_skb: 220 callbacks suppressed
[  440.922079][   T29] audit: type=1400 audit(1860936407.360:34084): avc:  denied  { create } for  pid=664 comm="syz.4.6167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  440.963130][   T29] audit: type=1400 audit(1860936407.390:34085): avc:  denied  { connect } for  pid=664 comm="syz.4.6167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  440.982888][   T29] audit: type=1400 audit(1860936407.390:34086): avc:  denied  { write } for  pid=664 comm="syz.4.6167" path="socket:[66764]" dev="sockfs" ino=66764 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  441.006411][   T29] audit: type=1326 audit(1860936407.400:34087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=649 comm="syz.1.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.030106][   T29] audit: type=1326 audit(1860936407.400:34088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=649 comm="syz.1.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.085644][  T691] loop4: detected capacity change from 0 to 512
[  441.129018][  T694] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6168'.
[  441.150372][  T695] netlink: 268 bytes leftover after parsing attributes in process `syz.4.6169'.
[  441.197845][   T29] audit: type=1326 audit(1860936407.640:34089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=697 comm="syz.1.6170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.200239][  T698] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6170'.
[  441.221335][   T29] audit: type=1326 audit(1860936407.640:34090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=697 comm="syz.1.6170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.253665][   T29] audit: type=1326 audit(1860936407.640:34091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=697 comm="syz.1.6170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.277569][   T29] audit: type=1326 audit(1860936407.640:34092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=697 comm="syz.1.6170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.301054][   T29] audit: type=1326 audit(1860936407.640:34093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=697 comm="syz.1.6170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb0c5a7def9 code=0x7ffc0000
[  441.529495][  T711] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.6174' sets config #0
[  442.113420][  T723] loop3: detected capacity change from 0 to 512
[  442.120099][  T723] EXT4-fs: Ignoring removed orlov option
[  442.127059][  T723] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  442.786625][  T726] loop4: detected capacity change from 0 to 512
[  442.793407][  T726] EXT4-fs: Ignoring removed orlov option
[  442.799863][  T726] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  442.882584][  T726] EXT4-fs (loop4): 1 orphan inode deleted
[  442.888373][  T726] EXT4-fs (loop4): 1 truncate cleaned up
[  442.894777][  T726] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.921285][  T723] EXT4-fs (loop3): 1 orphan inode deleted
[  442.927154][  T723] EXT4-fs (loop3): 1 truncate cleaned up
[  442.933672][  T723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.157425][  T739] Cannot find set identified by id 0 to match
[  443.225611][  T740] Cannot find set identified by id 0 to match
[  443.234453][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.262112][  T747] loop4: detected capacity change from 0 to 512
[  443.276778][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.287291][  T747] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  443.295344][  T747] System zones: 0-2, 18-18, 34-34
[  443.301142][  T747] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6182: bg 0: block 248: padding at end of block bitmap is not set
[  443.345893][  T747] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.6182: Failed to acquire dquot type 1
[  443.410016][  T766] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6187'.
[  443.420258][  T747] EXT4-fs (loop4): 1 truncate cleaned up
[  443.437256][  T747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.461554][  T763] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  443.471835][  T770] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6186'.
[  443.491599][  T747] ext4 filesystem being mounted at /560/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.539078][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.671970][  T794] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  443.732709][  T819] serio: Serial port ptm0
[  443.783316][  T824] 9pnet: Could not find request transport: xen
[  443.833088][  T830] FAULT_INJECTION: forcing a failure.
[  443.833088][  T830] name failslab, interval 1, probability 0, space 0, times 0
[  443.845793][  T830] CPU: 1 UID: 0 PID: 830 Comm: syz.3.6193 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  443.856041][  T830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  443.866171][  T830] Call Trace:
[  443.869494][  T830]  <TASK>
[  443.872423][  T830]  dump_stack_lvl+0xf2/0x150
[  443.877028][  T830]  dump_stack+0x15/0x20
[  443.881316][  T830]  should_fail_ex+0x229/0x230
[  443.886009][  T830]  ? alloc_empty_file+0xd0/0x2f0
[  443.890954][  T830]  should_failslab+0x8f/0xb0
[  443.895591][  T830]  kmem_cache_alloc_noprof+0x4c/0x290
[  443.901093][  T830]  ? mntput+0x49/0x70
[  443.905213][  T830]  alloc_empty_file+0xd0/0x2f0
[  443.910050][  T830]  path_openat+0x6a/0x1fa0
[  443.914551][  T830]  ? _parse_integer+0x27/0x30
[  443.919300][  T830]  ? kstrtoull+0x110/0x140
[  443.923731][  T830]  ? kstrtouint+0x77/0xc0
[  443.928075][  T830]  do_filp_open+0xf7/0x200
[  443.932618][  T830]  do_sys_openat2+0xab/0x120
[  443.937218][  T830]  __x64_sys_openat+0xf3/0x120
[  443.942121][  T830]  x64_sys_call+0x1025/0x2d60
[  443.946876][  T830]  do_syscall_64+0xc9/0x1c0
[  443.951381][  T830]  ? clear_bhb_loop+0x55/0xb0
[  443.956172][  T830]  ? clear_bhb_loop+0x55/0xb0
[  443.960852][  T830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.966829][  T830] RIP: 0033:0x7f7e4ba8def9
[  443.971232][  T830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.990863][  T830] RSP: 002b:00007f7e4a6c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  443.999344][  T830] RAX: ffffffffffffffda RBX: 00007f7e4bc46130 RCX: 00007f7e4ba8def9
[  444.007354][  T830] RDX: 0000000000000002 RSI: 0000000020000040 RDI: 0000000000000008
[  444.015338][  T830] RBP: 00007f7e4a6c5090 R08: 0000000000000000 R09: 0000000000000000
[  444.023313][  T830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  444.031285][  T830] R13: 0000000000000000 R14: 00007f7e4bc46130 R15: 00007fff7e9c0db8
[  444.039311][  T830]  </TASK>
[  444.066786][  T828] netlink: 184 bytes leftover after parsing attributes in process `syz.1.6194'.
[  444.211641][  T833] Cannot find set identified by id 0 to match
[  444.230345][  T759] coredump: 962(syz.3.6183): written to core: VMAs: 31, size 85229568; core: 56021790 bytes, pos 85237760
[  444.381803][  T844] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  444.565612][  T848] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6201'.
[  444.665350][  T852] FAULT_INJECTION: forcing a failure.
[  444.665350][  T852] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.678457][  T852] CPU: 1 UID: 0 PID: 852 Comm: syz.1.6203 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  444.688700][  T852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  444.698838][  T852] Call Trace:
[  444.702258][  T852]  <TASK>
[  444.705248][  T852]  dump_stack_lvl+0xf2/0x150
[  444.709863][  T852]  dump_stack+0x15/0x20
[  444.714036][  T852]  should_fail_ex+0x229/0x230
[  444.718762][  T852]  should_fail+0xb/0x10
[  444.722967][  T852]  should_fail_usercopy+0x1a/0x20
[  444.728000][  T852]  _copy_from_user+0x1e/0xd0
[  444.732660][  T852]  copy_msghdr_from_user+0x54/0x2a0
[  444.737953][  T852]  __sys_sendmsg+0x171/0x270
[  444.742572][  T852]  __x64_sys_sendmsg+0x46/0x50
[  444.747409][  T852]  x64_sys_call+0x2689/0x2d60
[  444.749522][  T856] loop4: detected capacity change from 0 to 128
[  444.752162][  T852]  do_syscall_64+0xc9/0x1c0
[  444.762896][  T852]  ? clear_bhb_loop+0x55/0xb0
[  444.767584][  T852]  ? clear_bhb_loop+0x55/0xb0
[  444.772258][  T852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.778156][  T852] RIP: 0033:0x7fb0c5a7def9
[  444.782582][  T852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.802189][  T852] RSP: 002b:00007fb0c46f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  444.810595][  T852] RAX: ffffffffffffffda RBX: 00007fb0c5c35f80 RCX: 00007fb0c5a7def9
[  444.818558][  T852] RDX: 0000000000000040 RSI: 00000000200001c0 RDI: 0000000000000003
[  444.826607][  T852] RBP: 00007fb0c46f7090 R08: 0000000000000000 R09: 0000000000000000
[  444.834643][  T852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  444.842614][  T852] R13: 0000000000000000 R14: 00007fb0c5c35f80 R15: 00007fff3507f408
[  444.850616][  T852]  </TASK>
[  444.861481][  T860] loop3: detected capacity change from 0 to 512
[  444.884935][  T871] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  444.894410][  T860] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.912497][  T871] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=45584 sclass=netlink_route_socket pid=871 comm=syz.1.6208
[  444.914004][  T860] ext4 filesystem being mounted at /421/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  444.980821][  T879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  444.990487][  T879] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  445.139016][  T891] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6211'.
[  445.200117][  T887] Cannot find set identified by id 0 to match
[  445.213104][  T896] serio: Serial port ptm0
[  445.264323][  T900] netlink: 184 bytes leftover after parsing attributes in process `syz.2.6213'.
[  445.425862][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.447266][  T915] loop3: detected capacity change from 0 to 512
[  445.527234][  T919] 9pnet_virtio: no channels available for device 127.0.0.1
[  445.535371][  T919] netlink: 268 bytes leftover after parsing attributes in process `syz.3.6219'.
[  446.295378][  T936] loop3: detected capacity change from 0 to 512
[  446.302035][  T936] EXT4-fs: Ignoring removed orlov option
[  446.310699][  T936] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  446.322304][  T936] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  446.332399][  T936] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.6226: Corrupt directory, running e2fsck is recommended
[  446.361531][  T936] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  446.369972][  T936] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.6226: corrupted in-inode xattr: invalid ea_ino
[  446.383990][  T936] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.6226: couldn't read orphan inode 15 (err -117)
[  446.385179][  T944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  446.397300][  T936] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.416841][  T944] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  446.430557][  T936] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.6226'.
[  446.447749][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.463496][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  446.463510][   T29] audit: type=1326 audit(1860936412.900:34231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=949 comm="syz.3.6230" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ba8def9 code=0x0
[  446.566447][  T952] loop3: detected capacity change from 0 to 512
[  446.578757][   T29] audit: type=1326 audit(1860936413.020:34232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.602273][   T29] audit: type=1326 audit(1860936413.020:34233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.625771][   T29] audit: type=1326 audit(1860936413.020:34234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.649208][   T29] audit: type=1326 audit(1860936413.020:34235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.672626][   T29] audit: type=1326 audit(1860936413.020:34236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.696168][   T29] audit: type=1326 audit(1860936413.020:34237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.719552][   T29] audit: type=1326 audit(1860936413.020:34238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.742944][   T29] audit: type=1326 audit(1860936413.020:34239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.759036][  T952] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  446.766445][   T29] audit: type=1326 audit(1860936413.020:34240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=953 comm="syz.0.6231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa67a39def9 code=0x7ffc0000
[  446.795576][  T952] ext4 filesystem being mounted at /424/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  447.108881][  T999] 9pnet_virtio: no channels available for device 127.0.0.1
[  447.117045][  T999] netlink: 268 bytes leftover after parsing attributes in process `syz.0.6236'.
[  447.304620][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.429518][ T1016] loop3: detected capacity change from 0 to 512
[  447.447401][ T1016] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.460100][ T1016] ext4 filesystem being mounted at /425/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  447.526931][ T1020] serio: Serial port ptm0
[  448.104609][ T1069] loop4: detected capacity change from 0 to 512
[  448.118059][ T1069] EXT4-fs (loop4): too many log groups per flexible block group
[  448.125843][ T1069] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  448.128690][ T1075] serio: Serial port ptm0
[  448.132782][ T1069] EXT4-fs (loop4): mount failed
[  448.160410][ T1080] loop4: detected capacity change from 0 to 512
[  448.169228][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.216741][ T1092] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  448.225356][ T1092] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  448.225549][ T1094] 9pnet_virtio: no channels available for device 127.0.0.1
[  448.242155][ T1094] netlink: 268 bytes leftover after parsing attributes in process `syz.4.6257'.
[  449.233447][ T1115] loop4: detected capacity change from 0 to 128
[  449.246360][ T1115] __nla_validate_parse: 1 callbacks suppressed
[  449.246384][ T1115] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6266'.
[  449.396677][ T1122] loop4: detected capacity change from 0 to 512
[  449.430903][ T1122] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  449.443483][ T1122] ext4 filesystem being mounted at /574/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  449.482926][ T1138] FAULT_INJECTION: forcing a failure.
[  449.482926][ T1138] name failslab, interval 1, probability 0, space 0, times 0
[  449.495721][ T1138] CPU: 0 UID: 0 PID: 1138 Comm: syz.2.6275 Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  449.506065][ T1138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  449.516113][ T1138] Call Trace:
[  449.519391][ T1138]  <TASK>
[  449.522365][ T1138]  dump_stack_lvl+0xf2/0x150
[  449.526993][ T1138]  dump_stack+0x15/0x20
[  449.531188][ T1138]  should_fail_ex+0x229/0x230
[  449.535916][ T1138]  ? skb_clone+0x154/0x1f0
[  449.540410][ T1138]  should_failslab+0x8f/0xb0
[  449.545006][ T1138]  kmem_cache_alloc_noprof+0x4c/0x290
[  449.550486][ T1138]  skb_clone+0x154/0x1f0
[  449.554755][ T1138]  ip_mc_output+0x1dc/0x350
[  449.559346][ T1138]  ? __pfx_dst_output+0x10/0x10
[  449.564203][ T1138]  ? __pfx_ip_mc_output+0x10/0x10
[  449.569255][ T1138]  ip_send_skb+0x12f/0x140
[  449.573750][ T1138]  udp_send_skb+0x680/0x9d0
[  449.578309][ T1138]  udp_sendmsg+0x1257/0x12f0
[  449.582906][ T1138]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  449.588453][ T1138]  ? __pfx_udp_sendmsg+0x10/0x10
[  449.593473][ T1138]  inet_sendmsg+0xaf/0xd0
[  449.597809][ T1138]  __sock_sendmsg+0x102/0x180
[  449.602587][ T1138]  ____sys_sendmsg+0x312/0x410
[  449.607355][ T1138]  __sys_sendmmsg+0x25d/0x500
[  449.612043][ T1138]  __x64_sys_sendmmsg+0x57/0x70
[  449.616974][ T1138]  x64_sys_call+0xa49/0x2d60
[  449.621592][ T1138]  do_syscall_64+0xc9/0x1c0
[  449.626235][ T1138]  ? clear_bhb_loop+0x55/0xb0
[  449.630908][ T1138]  ? clear_bhb_loop+0x55/0xb0
[  449.635584][ T1138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.641546][ T1138] RIP: 0033:0x7fbb25a1def9
[  449.646045][ T1138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.665705][ T1138] RSP: 002b:00007fbb24691038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  449.674133][ T1138] RAX: ffffffffffffffda RBX: 00007fbb25bd5f80 RCX: 00007fbb25a1def9
[  449.682202][ T1138] RDX: 0000000000000002 RSI: 0000000020004d00 RDI: 0000000000000005
[  449.690177][ T1138] RBP: 00007fbb24691090 R08: 0000000000000000 R09: 0000000000000000
[  449.698145][ T1138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.706188][ T1138] R13: 0000000000000000 R14: 00007fbb25bd5f80 R15: 00007ffe6b336ef8
[  449.714253][ T1138]  </TASK>
[  449.823585][ T1143] Cannot find set identified by id 0 to match
[  450.128118][T19248] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.143737][ T1155] loop4: detected capacity change from 0 to 128
[  450.154668][ T1155] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6278'.
[  450.176562][ T1159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  450.185130][ T1159] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  450.371383][ T1171] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.6282'.
[  450.755652][ T1180] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.6286'.
[  451.320786][ T1218] loop3: detected capacity change from 0 to 128
[  451.407360][ T1232] syz.3.6299[1232] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  451.407411][ T1232] syz.3.6299[1232] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  451.459525][ T1242] loop3: detected capacity change from 0 to 512
[  451.478511][ T1242] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  451.486932][ T1242] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  451.495620][ T1242] EXT4-fs (loop3): 1 truncate cleaned up
[  451.501635][ T1242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.516495][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  451.516523][   T29] audit: type=1400 audit(1860936417.960:34350): avc:  denied  { remount } for  pid=1241 comm="syz.3.6302" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  451.516543][ T1242] EXT4-fs: group quota file already specified
[  451.516627][   T29] ==================================================================
[  451.522727][   T29] BUG: KCSAN: data-race in data_alloc / data_push_tail
[  451.522763][   T29] 
[  451.522770][   T29] write to 0xffffffff88b95e30 of 8 bytes by task 1242 on cpu 1:
[  451.522785][   T29]  data_alloc+0x216/0x2c0
[  451.522806][   T29]  prb_reserve+0x85e/0xb60
[  451.522826][   T29]  vprintk_store+0x53f/0x810
[  451.522867][   T29]  vprintk_emit+0x15e/0x680
[  451.522895][   T29]  vprintk_default+0x26/0x30
[  451.522922][   T29]  vprintk+0x75/0x80
[  451.522939][   T29]  _printk+0x7a/0xa0
[  451.522963][   T29]  __ext4_msg+0x134/0x1a0
[  451.522990][   T29]  ext4_check_opt_consistency+0x9ff/0xa80
[  451.523019][   T29]  ext4_reconfigure+0x6d/0x1860
[  451.523046][   T29]  reconfigure_super+0x319/0x5b0
[  451.523077][   T29]  path_mount+0x967/0xb30
[  451.523109][   T29]  __se_sys_mount+0x27c/0x2d0
[  451.523137][   T29]  __x64_sys_mount+0x67/0x80
[  451.523164][   T29]  x64_sys_call+0x203e/0x2d60
[  451.523190][   T29]  do_syscall_64+0xc9/0x1c0
[  451.523213][   T29]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.523248][   T29] 
[  451.523255][   T29] read to 0xffffffff88b95e30 of 8 bytes by task 29 on cpu 0:
[  451.523279][   T29]  data_push_tail+0x102/0x430
[  451.523307][   T29]  data_alloc+0xbe/0x2c0
[  451.523332][   T29]  prb_reserve+0x85e/0xb60
[  451.523356][   T29]  vprintk_store+0x53f/0x810
[  451.523386][   T29]  vprintk_emit+0x15e/0x680
[  451.523413][   T29]  vprintk_default+0x26/0x30
[  451.523444][   T29]  vprintk+0x75/0x80
[  451.523464][   T29]  _printk+0x7a/0xa0
[  451.523487][   T29]  kauditd_hold_skb+0x1a3/0x1b0
[  451.523505][   T29]  kauditd_send_queue+0x288/0x2e0
[  451.523522][   T29]  kauditd_thread+0x42a/0x650
[  451.523551][   T29]  kthread+0x1d1/0x210
[  451.523592][   T29]  ret_from_fork+0x4b/0x60
[  451.523620][   T29]  ret_from_fork_asm+0x1a/0x30
[  451.523650][   T29] 
[  451.523655][   T29] value changed: 0x00000000fffffefd -> 0x00000001000009f0
[  451.523667][   T29] 
[  451.523672][   T29] Reported by Kernel Concurrency Sanitizer on:
[  451.523681][   T29] CPU: 0 UID: 0 PID: 29 Comm: kauditd Not tainted 6.11.0-syzkaller-05319-g4a39ac5b7d62 #0
[  451.523709][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  451.523726][   T29] ==================================================================
[  451.534233][ T1242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6302'.
[  451.784300][ T1242] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.819029][ T1242] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.868781][ T1242] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.918878][ T1242] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.981679][ T1242] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.992286][ T1242] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  452.003067][ T1242] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  452.013870][ T1242] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  452.036899][T23445] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.