last executing test programs:

1m3.921575531s ago: executing program 4 (id=178):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000200)=@generic={&(0x7f0000000080)='./file0\x00', r1}, 0x18)

1m3.919810161s ago: executing program 4 (id=179):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40880}, 0xd0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000700))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x18)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000a40)="d800000010008104687da3aa7143a0bac81d080b25000000e8fe55a11800150006001400000000120800030043c30040a8002b000a00034006006aec036010fab94dcf5c046109d67f6f94007134cf6ee08000a0e496e6f66112c88a2ddddbbb219c6c09136dd481d485dc2331419768c417898516277ce06bbace80177ccbec4c2ee5a7cef4260027836b0d17a5e1d9d322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f7a5025ccc89e00360db70100000040fac25667e006dcdf63951f215ce3bb14feb9f519e53595e6e167c2ed64c804fba3", 0xd7}], 0x1}, 0x856)

1m3.615596493s ago: executing program 4 (id=182):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000009c0)={{0x77359400}}, &(0x7f0000000a00))
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

1m2.63263135s ago: executing program 4 (id=197):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x50)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000200)=@generic={&(0x7f0000000080)='./file0\x00', r1}, 0x18)

1m2.59822564s ago: executing program 4 (id=199):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x20081e, &(0x7f0000000000)={[{@auto_da_alloc}, {@init_itable}, {@auto_da_alloc}]}, 0xff, 0x4ef, &(0x7f00000003c0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0xa, &(0x7f0000000140)=[{0x100, 0x0, 0x1, 0xc}, {0x1, 0x10, 0x0, 0x5}, {0x6, 0x10, 0x5, 0x8}, {0x4, 0x3, 0x0, 0x80000001}, {0x81, 0x5, 0xd, 0x6}, {0x100, 0xae, 0x5d, 0xcaa0}, {0x6, 0x57, 0x0, 0xfffffff7}, {0x7, 0x6, 0x0, 0x81}, {0x9, 0x80, 0xfa, 0x4}, {0x6, 0xa, 0x57, 0x3ff}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = gettid()
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)="a3", 0x1}], 0x1, &(0x7f00000000c0)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}, 0x20040001)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0xa, 0x8, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
recvmsg$unix(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r6, &(0x7f0000001cc0)=ANY=[@ANYBLOB="8fedcb7907031175f37538e486dd630080fc000b2c00db5b686158bbcfe8875a060300001123000000000000000000000000ac1414aa11200007"], 0xfdef)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)})
sendmsg$NFNL_MSG_ACCT_GET(r6, &(0x7f0000000940)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000900)={&(0x7f0000000980)=ANY=[@ANYBLOB="2c000000010900010073857a3000000000000000000000000000000000000000000000000043dfde2de9044a731ca9a602c0ea4f7654189bdf49bd2cf67ef7e461f7b262da8481abf41460ed870119333924d305d08d2bc1708dc0a4781bcdeb53546545030f60a4c91e3e710a690418a1262c1ab2b3407199a0c6e856f68f53823748d812cdaeb5ac117472"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x40044)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000007d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b000000050000000100010009000000"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r8, 0x0, 0x8}, 0x18)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)

1m2.458363691s ago: executing program 4 (id=202):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000009c0)={{0x77359400}}, &(0x7f0000000a00))
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

47.69871652s ago: executing program 32 (id=202):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000009c0)={{0x77359400}}, &(0x7f0000000a00))
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

1.832558708s ago: executing program 1 (id=1302):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2ab}, 0x18)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/warn_count', 0x4000, 0x122)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x9, 0x4c9, 0x5, 0x42041, 0xffffffffffffffff, 0x1ff, '\x00', 0x0, r2, 0x1, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
socket$inet_dccp(0x2, 0x6, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

1.226665562s ago: executing program 5 (id=1320):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x654a, 0x4)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x200000000000000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.183769312s ago: executing program 0 (id=1322):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0x20, &(0x7f0000000200)={&(0x7f00000005c0)=""/193, 0xc1, <r2=>0x0, &(0x7f0000000880)=""/174, 0xae}}, 0x10)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000002900), 0x200002, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x7, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008efdd9c7a3137142010b704000000000000850000", @ANYRESDEC=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a00)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES16=r4, @ANYBLOB="0304d9f04d79ca52ecf4c459113061c5a503f89530322b494be5ef09", @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000004c0)='kfree\x00', r9, 0x0, 0x1}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x20, r8, 0x301, 0x70bd28, 0x25dfdbfe, {0x1c}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x20}}, 0x10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r11}, &(0x7f0000000040), &(0x7f0000000140)=r6}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r11}, 0x20)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bda200000000080007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
removexattr(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="757365722e6b6600806500"])

1.145903392s ago: executing program 0 (id=1324):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003802800010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c17010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1], 0xb4}, 0x1, 0x0, 0x0, 0x4044080}, 0x0) (fail_nth: 8)

850.354775ms ago: executing program 5 (id=1325):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r1, 0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, @void, @value}, 0x94)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=ANY=[@ANYBLOB="48000000100039042cbd7000eaffffff000003e4", @ANYRES32=r4, @ANYBLOB="830004002a6000002800128008000100736974001c000280080014000500000006000d00091000000800030001"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r5, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
accept4(r1, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

739.819245ms ago: executing program 0 (id=1326):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r0, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)

692.250415ms ago: executing program 0 (id=1327):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x46, &(0x7f0000000100), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='mm_page_alloc\x00'}, 0x10)
r2 = creat(0x0, 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000180)=0x2, 0x4)
syz_emit_ethernet(0xbe, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x4, "17a737676ee89227329d5510442fb2c5ef19cf539dd1aa3a7ff6321ffb7443b6", "7069097cf509c3cb3de12b57f02732db8ca5ffceb63f90862a96d479360e746389c182bf9bf013b78d712d06f6f87a78", "94fcb14a847677a816e753ab0a649b139e93a5c21ca9aa9235d288cc", {"0aa0eb398dc459be54e1c964d53b3d45", "18e705425aa431a7fcb4b8ca203f8db4"}}}}}}}, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000500)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0xfffffffd, 0x200, "9d42a08597d3b2f44ac89b1b52cc6728d6697d4cebc8f2f062c6f91f224aaacc", "99bd3410936eefeb3ea898dafab974aa", {"96def600", "f838a300b01b0e19ecdf00b20600"}}}}}}}, 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00'}, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADD(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0xfc, 0x0, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\x00\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010102}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010100}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_FLUSH(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r6, @ANYBLOB="01000000000000000000010000002c000280060002004e2000000800090010000000060002004e210000080007000101000006000f000700000008000400ff7fffff1400028008000600020000000800090008000000080004000200000060000180080009005600000007000600666f00000c0007002000000002000000080008000100000008000b00736970000600010002000000080005"], 0xc4}}, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)

691.982775ms ago: executing program 1 (id=1328):
ioctl$int_out(0xffffffffffffffff, 0x5460, &(0x7f0000000480))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
pipe2$9p(&(0x7f0000000000), 0x80800)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x8008551d, &(0x7f0000000040)={0x5f72, 0x1, [{0x3}]})

613.477586ms ago: executing program 1 (id=1331):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xe8}}, 0x0)

612.779436ms ago: executing program 3 (id=1332):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x5, 0x2, 0x0, 0x0, 0x0, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5, 0x0, 0x1000000100}, 0x18)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000800), 0xc, &(0x7f00000005c0)={&(0x7f0000001580)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
r6 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r7, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r8}], 0x2c, 0xffffffffffbffff8)
dup2(r7, r8)
fcntl$setown(r7, 0x8, r6)
tkill(r6, 0x13)
move_pages(r6, 0xfffffffffffffceb, 0x0, 0x0, 0x0, 0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000140)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@mb_optimize_scan}, {@bh}, {@bh}]}, 0x1, 0x562, &(0x7f0000000580)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)

534.743347ms ago: executing program 0 (id=1333):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000009385000000710000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r4=>0x0})
sendmsg$can_raw(r3, &(0x7f0000000000)={&(0x7f00000000c0)={0x1d, r4}, 0x10, &(0x7f0000000140)={&(0x7f0000000180)=@can={{0x0, 0x0, 0x1}, 0x0, 0x0, 0x4, 0x0, "9000"}, 0x10}, 0x2}, 0x810)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x2000000000000000}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)

513.199947ms ago: executing program 0 (id=1334):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(0x0, 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)

475.532487ms ago: executing program 1 (id=1335):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xbe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0xffffffff, 0x9752333b9a87418, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000340)='cpu\t<0&&\t')
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="00ef4b85340fab00e9edb70800000000e7057b8af8ff00000000bfa20000f8ffff04b803000008000000b70400"/57], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

430.673447ms ago: executing program 3 (id=1336):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000080000000800028004000380180001801400020073797a5f74756e"], 0x34}}, 0x0)

402.420207ms ago: executing program 3 (id=1337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000004000000090000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fdf, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = dup2(r2, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
bind$rxrpc(r3, &(0x7f0000000380)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e23, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}}, 0x24)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x1, 0x6, 0xbfab, 0x8, 0x40, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$unix(0x1, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300000400038008000500", @ANYRES32=r6], 0x3c}, 0x1, 0x0, 0x0, 0x80c4}, 0x0)

371.546458ms ago: executing program 1 (id=1338):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r0, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)

353.873088ms ago: executing program 1 (id=1339):
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2ab}, 0x18)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/warn_count', 0x4000, 0x122)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x9, 0x4c9, 0x5, 0x42041, 0xffffffffffffffff, 0x1ff, '\x00', 0x0, r1, 0x1, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
socket$inet_dccp(0x2, 0x6, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

346.466208ms ago: executing program 3 (id=1340):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) (async)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
pread64(r1, &(0x7f0000001f40)=""/4096, 0x1000, 0x1) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0}) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg(r3, &(0x7f0000000740)={&(0x7f0000000240)=@isdn={0x22, 0x8, 0x0, 0x0, 0x8}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000980)="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", 0x1000}, {&(0x7f00000007c0)="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", 0xfc}, {&(0x7f0000000580)="76949484518ba9478f986586c3b8cbc6f4a0c8b02a38aa164edb9b021a2175a176d47b48e4c819e2f5502e384ce741f67bccd9f0943b1cd8435d430d94c18e6e42a0", 0x42}], 0x3, &(0x7f0000002f40)=[{0x58, 0x0, 0x5, "12a6e74a679f0fbfc4f52956ffaae41cb46a6e43a7b5d301d4a06a59f21be6cc443855e23370e7b5561f0463fde6bc89ed0add09f0fd365cf01ff50ae3f2846322fab97219"}, {0x18, 0x107, 0x80000000, "282dc60fbf"}, {0x110, 0x109, 0x8000, "de9285b1ac6d91547720344c7188e37cbb6aef3156dda74e1b19efdc2de9c098c41b9ad5064bb1e70f16b077bad86ed2cc14832f5aa89648780d358bddfd98e1434aa9cb77ec282289e9871514858120cc64306619aa348bbc4a2591b9363c209f53bb095800a6feed60217302667503b2c11c4f97d7f5483e33114a3d0343a2adc025321587db92ed6256b4d918a2816207d25226417bcc31656cb6be769223e7ca2b9d2285816baae9dc382397e0343d7c9dcd2f63487da26df997f44f71d45cf86dd777aae8c6159a85e96ef69c46d9c0641a14015510177416b9cf663ecbc40108f3a22bcbe3e90db1bdb949407c7654728f6f464f7ab512a1b7"}, {0x68, 0x1, 0x4, "defb35acabb3ccdfc0f952a77435b2ef97f44de90983c2570a9024ffc33a33c28e6cf052214167a8b5f8da971d0089654aa965257f5351c10f8da530289bd73e0078f61bfcd8a208bc1ab7a650ad1357871ccba4a8"}, {0xf0, 0x115, 0x4, "87ea11df598277cb48cb40d1771ed01f09bdc0cedf789435be7cb928e45c1a38825d6019fd2709f8c441b7c0ddacc97d14ff49a79f70d0becc80802c855a0b1ace8a7ff9da178fc3e23e7d6089ae4027c3d6e22490e72e0e714235a9c22cfa8722389370f29820893de915cdcd360f7e3b2aee9c66fc434b8be44e064e0b83160e2245168863b93a2589aa4b8681e13ba62e6f99d481ec36c51cb2b0764ba9c16b7c2edf0e5725a8fda1fc32f4b7f6495527c8927f101716db85175cea090f9c584acfc50db062e79915fdfa9723e18377d445a5a589a36e6a"}, {0x18, 0x10e, 0x6, "57e93c54b4f096"}, {0xb0, 0x1, 0x7f, "ad3d58fc1aa5abfe3d00f01ac745861289a5f516974567b4f376c63ec91a1b3be7e3a1471c2805e036b9347aa64e4b614a41ab96267d3e5d822b29d706254992e24c56cb455ecc95e245656352d4fc8d08f1113a63c27bab6e8993d7f981157c2404b27fc7ffb2f3e9e0257afb86306d41838d73ad05cfa848476aa9f8cd2a0dec939eefe670b871860e7c15dee2c875b0f89a0d7de12e6ae139"}, {0x78, 0x10a, 0xb, "b61fb743fb9ffc1dff8ea3beb3a600e71f06b9d953a689f61e3a42838a6a2891fdd009b942dc94d5202f8bf13ee6c329d4d39d613e71f0d8934bf44ad2b643d79f58d7ea63b4ecf40458810cabe019a4ffeab731e99a094112e484b3a8d3ec0cc0048d45f20346"}, {0xc8, 0x84, 0x7f, "72d2d6ab124ddf28d825b2570715b72de77e12f6d304e32aac66d26b05b50d863bb5dcf09173dc83d426f535797f04cbdfc240013832f96a22cc7b983a8b85c76ea9f3b250c8abb053fb9b02957f69ed5a714c5d4865d5299d981fbbb0a9ae04f28fbbefeafbac72d0c73e5106a86168d001c6ef4ea3537b9bb0eecd70cfb61c85aea095f53125206788fbfcf460339b7f2bcdb1a2a0634c7c238e7af59a678c872b2b71d1d96875d3fb6f423e4d49453ea980"}, {0x178, 0x103, 0xfffffffb, "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"}], 0x658}, 0x2004c040)
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(0xffffffffffffffff, 0x111, 0x5, 0x8, 0x4)
r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000940)='ns/net\x00') (async)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, 0xffffffff}, 0x1c) (async)
syz_emit_ethernet(0x82, &(0x7f0000000300)={@multicast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @local, {[@rr={0x7, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x4, [{@private=0xa010132}, {@multicast1}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@local}, {}, {@dev, 0x6}, {@private, 0x3}]}]}}}}}}}, 0x0) (async)
pipe(&(0x7f0000000080))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000340)={r7, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20) (async)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000007d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000440)='mm_page_free\x00', r9, 0x0, 0x1000}, 0x18) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x0, 0x2111, 0x300, &(0x7f0000000100), 0x0, 0x500, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r10}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) (async)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x10000) (async)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) (async)
sendmsg$DEVLINK_CMD_RELOAD(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000480)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="47512dbd700000000000250000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008a001031a00fd0c8f67be5162d6d5cd65035c50d98ecc4830f98359e624b735b31ce00486167c7e5b575767bd852116c3dcf41c3c4d587acda6feb6979c3e842d5fa4d9f832d226b7a8ad2427bdd77063e6c6d89ef06906c76bdcf824d552fc38106a8553e1e1a61d8f8f3018c43231d004f513a0000000060020000a090c64738bbc8c2d2b619f7b9611c1dee158a80a3682cf0dad04ccee325b9821f02bab4", @ANYRES32=r5, @ANYBLOB], 0x3c}}, 0x0)
setsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, &(0x7f0000000040), 0x4) (async)
sendmsg$can_raw(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r2}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "400000008b20aaf0"}, 0x10}}, 0x0) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000ddff00850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r11, 0xffffffffffffffff, 0x2, 0x0, @val=@netfilter={0xa, 0x1, 0x200}}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)

327.500008ms ago: executing program 3 (id=1341):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000000080)='./file1\x00', 0x0, 0x1)
renameat2(r0, &(0x7f0000000180)='./file1\x00', r0, &(0x7f0000000040)='./file0\x00', 0x5)
unlinkat(r0, &(0x7f00000000c0)='./file1\x00', 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)
r2 = perf_event_open(&(0x7f00000007c0)={0x5, 0x80, 0x66, 0x1, 0xd, 0x0, 0x0, 0x6, 0x84081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={0x0, 0x4}, 0x10020, 0x0, 0x0, 0x9, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffbffffffffd, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001f80)=@deltfilter={0xc8c, 0x2d, 0x1, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0x3}, {0x4, 0x1}, {0x10, 0xe}}, [@filter_kind_options=@f_fw={{0x7}, {0xc60, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0xffffffff}, @TCA_FW_CLASSID={0x8, 0x1, {0xa, 0x8}}, @TCA_FW_POLICE={0xc30, 0x2, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}, @TCA_POLICE_RATE={0x404, 0x2, [0x7fff, 0xf, 0x0, 0x800007f6, 0x1, 0xffffffc0, 0x8, 0x8c, 0x4, 0x7, 0x7, 0x101, 0x4acd113d, 0x401, 0x6, 0xeee8, 0x3, 0x8, 0x9, 0xc, 0x2, 0xffff, 0x80000000, 0x4, 0x8000, 0x1, 0x3, 0x6, 0x5, 0x9, 0x3, 0x0, 0x2, 0x6, 0x3, 0x3, 0x2, 0x80000000, 0x5eb, 0x3, 0x11811f73, 0x80000001, 0x3, 0x3, 0x2, 0xf, 0x2, 0x80000001, 0x7, 0x0, 0x3, 0x6, 0x16, 0x8000, 0x400, 0x6, 0x4, 0xc, 0x1, 0x9, 0x5, 0x6, 0x8, 0xffff27c4, 0x2, 0x2, 0x0, 0x2, 0xee1, 0x4, 0x45, 0xd, 0x565, 0xa, 0x8, 0x8001, 0x1000, 0xc, 0x8, 0x3ff, 0x6266, 0x81, 0x0, 0x3, 0xf00, 0x5, 0xffffff99, 0x7, 0x9, 0x7, 0x9, 0xffff, 0x7f, 0x3, 0x0, 0x6, 0x6, 0x80, 0x4, 0x2, 0x8, 0x4, 0x1, 0x8, 0x4, 0x21, 0x1, 0xffffffff, 0x7, 0x7860, 0x7f7, 0x9, 0x0, 0x3, 0xc2a, 0x800, 0x6, 0x5, 0x79, 0x4, 0xffffffff, 0x0, 0x4, 0x4, 0xffffffff, 0x8ab, 0x7, 0x5f, 0x1, 0xffffffff, 0x8, 0x9, 0x400, 0x4, 0xffffffff, 0x0, 0x4, 0x9, 0x8, 0x4, 0xac0, 0xe, 0x3, 0x5, 0xfffffdf0, 0x4, 0x5, 0x8001, 0x251b9f70, 0x401, 0x5, 0x9, 0x9, 0x3e, 0x5, 0x80, 0xfffffffd, 0xffffffff, 0x4, 0x7, 0x6, 0xfff, 0xfffffffc, 0x4, 0xd159, 0x1, 0x200, 0xe, 0x5, 0x5, 0x6, 0x7fffffff, 0x7, 0x9, 0x9, 0x97c, 0x4, 0x80000001, 0xf2ce, 0xb098, 0x1, 0x6, 0xffffffff, 0x2000, 0xffffffff, 0x9, 0x6, 0x3, 0x1000000, 0x1000, 0x4, 0x1, 0x1, 0x80, 0x659f, 0x80000000, 0x1, 0x550, 0x0, 0x4, 0xf3, 0x3, 0x8, 0x3, 0x3, 0xd6e, 0x401, 0x0, 0x9, 0x0, 0x4, 0x37f, 0x27, 0x10001, 0x2, 0x7, 0xffff, 0x6, 0x5, 0x30000, 0xfffffffe, 0x8, 0x2, 0x8, 0xab, 0x0, 0x8, 0x4, 0x2, 0x1, 0x7ff, 0x0, 0x1f62, 0xfffffc00, 0x8e, 0x3, 0x7, 0x0, 0x7f, 0x7fffffff, 0x5, 0x7, 0x3, 0x2, 0x10001, 0x7, 0x5, 0x2000000, 0x6, 0x1, 0x2, 0x0, 0x81, 0x4, 0x8, 0xfffffffd]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8, 0x51c1, 0x3, 0x0, 0x5, 0x0, 0x26e9, 0x2, 0x9, 0x9, 0x7fffffff, 0x7fffffff, 0x8, 0x7, 0x7ff, 0xfffffff9, 0xfff, 0x71e32c29, 0x81, 0x1, 0x695, 0xa6e, 0xb, 0x0, 0x4800000, 0xfffffff7, 0x3, 0x8, 0x4c6c, 0x8000, 0x178, 0x9, 0x6, 0xffffff00, 0xb1, 0x2, 0x2, 0x3, 0xe0000, 0xfffffff7, 0x800, 0x0, 0x2, 0x3, 0x9d, 0x3, 0x4, 0x1, 0x4, 0x9, 0x6, 0x0, 0x524, 0xd655, 0x7ff, 0x8, 0x72a, 0x80000000, 0xb, 0x718, 0x4, 0x93ac0000, 0xfffffffe, 0x3, 0x3, 0xdc, 0x10001, 0x7, 0xc33, 0x7fff, 0x4, 0x7, 0x7, 0xfffff680, 0x2, 0xffff, 0x3ff, 0x47, 0x800000, 0xb40, 0x3, 0x0, 0x6, 0x8, 0x2, 0x212, 0x8000, 0x2, 0x3, 0x7ff, 0xe, 0x6, 0x15b125b3, 0x40, 0x6, 0x4, 0x8, 0x5, 0xa9, 0xf59b, 0x5, 0x5, 0x7fffffff, 0x9, 0x7, 0x7, 0xec7, 0x4, 0x7, 0x0, 0x8, 0x5, 0xb, 0xb4c7, 0x843, 0xfffffffb, 0x11a2d416, 0xb19, 0x4, 0xfffffffa, 0x9, 0x5, 0x8, 0x3, 0xf, 0x8, 0x7, 0x5, 0x1e, 0x2, 0x9, 0x300000, 0xb, 0x9, 0x81, 0x0, 0x9d, 0xf, 0x80000000, 0xc0000000, 0x80000000, 0x8000, 0x4, 0x6, 0xa189, 0x9, 0x3, 0x3, 0x0, 0x5, 0x8, 0x6, 0x4, 0x3, 0x4a72, 0x200, 0x8, 0x8, 0x8, 0x8, 0x9, 0x5, 0x40, 0x1, 0x80000001, 0x10, 0xffff44d6, 0x7, 0x80000001, 0x8001, 0x800, 0x9, 0x2, 0x7fffffff, 0x1, 0xffffff40, 0x2, 0x4, 0x80000001, 0x81, 0xfffffff9, 0x7, 0x6, 0x2, 0x81, 0x0, 0xffe, 0x8000, 0x7, 0x2, 0x8, 0x2, 0x5, 0xfffffff8, 0x2, 0xa1, 0x8, 0x9, 0x0, 0x0, 0x8, 0x25, 0xb94b, 0x5, 0x3, 0x1, 0x200, 0xd, 0x4, 0x1, 0x6, 0x6dc9, 0xfffffffe, 0x4, 0x6, 0x8, 0x3, 0x3, 0x6, 0x5, 0xd, 0x2, 0x6, 0x5d9, 0x7, 0x1, 0x6, 0x100, 0x0, 0xc, 0x3, 0x8, 0x8dd3, 0x1000, 0xc, 0xfff, 0x3ff, 0x1, 0x6, 0x5, 0x2, 0x2, 0x5da5, 0x5, 0x0, 0x200, 0xffffbb21, 0x7ff, 0x2, 0x80, 0x2, 0x0, 0x8, 0x7, 0x85, 0xffd]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xa, 0x6, 0x4, 0x5, 0x4, 0x5, 0x2, 0x1, 0x0, 0x0, 0x2, 0xa, 0x1, 0x1, 0x4, 0x4, 0x9, 0x7a, 0x2, 0xcaf, 0xd, 0x3, 0xffff, 0x8, 0x8ed, 0x1000, 0x0, 0x8, 0x423516e6, 0x4, 0x7, 0x5, 0x7fff, 0xd, 0x80000001, 0xf0a, 0x8, 0x0, 0xc, 0x7ff, 0x100, 0x2, 0x7f, 0xe5, 0x1, 0x856c, 0x3, 0x7, 0x5, 0x800, 0x2, 0xec02, 0x3, 0x2, 0x3, 0xf8de, 0x12, 0xd4fc, 0x1, 0x0, 0x2, 0x5, 0x3, 0x7, 0x5, 0x7, 0x2, 0xfffffffb, 0x7, 0x6, 0x8, 0x2, 0x9, 0x7, 0x2, 0x5, 0x2, 0x4, 0x1, 0x10000, 0x9b43, 0xe, 0x5, 0x6, 0x25, 0x6, 0x2, 0x8, 0x8, 0xffffffff, 0x1, 0xdb, 0x0, 0x7, 0x8, 0x3, 0x10001, 0x43f, 0x0, 0x3, 0x8, 0x8, 0x8, 0xa, 0x8658, 0xffffc964, 0x401, 0x616, 0x0, 0x7, 0x80000000, 0x80000000, 0x2, 0x1, 0x7f, 0x207, 0x8, 0x7f, 0x7, 0x3, 0x3, 0x4, 0xfffffffc, 0x8, 0x80000000, 0x8, 0x6, 0x7, 0x8001, 0xfffffff9, 0x0, 0xe46, 0xffffff77, 0x2910, 0x6, 0x6, 0x7fffffff, 0xa, 0x6, 0x4, 0x6, 0x8, 0x5, 0xff, 0x80000000, 0x9, 0x8, 0x81, 0x5, 0x0, 0x2, 0x7, 0x2, 0x9, 0x6098, 0x0, 0x10001, 0x1b, 0x8, 0x80000000, 0x4, 0x6, 0x4000000, 0x10, 0x5, 0x1, 0x6, 0x1, 0xfff, 0x7, 0x7ff, 0xc, 0xc0, 0x59b, 0x886b, 0x19, 0x4, 0x8001, 0x81, 0x0, 0x200, 0x8, 0x1938, 0xfffffffd, 0xfffffff8, 0x5, 0x1, 0x7, 0x1, 0xef5, 0x10001, 0x3, 0x68755428, 0x9, 0x4, 0x4874, 0x100009, 0xa270, 0x0, 0xce, 0xa, 0xf4b39dd, 0x7fffffff, 0x7, 0x1, 0x9, 0x4b0, 0x19, 0x8001, 0x5, 0x3, 0x1000, 0x2, 0x8, 0x8, 0x7fffffff, 0x200, 0x2, 0x3ff, 0xac4d, 0xb5, 0x800, 0x0, 0x7, 0x1, 0x2, 0x15c9, 0x7a96, 0x7fff, 0x3d, 0x0, 0x5, 0x3, 0x2, 0x1, 0x4, 0x8, 0x800, 0x3e6, 0x40, 0xc78f, 0x6000, 0x7, 0x6, 0x3ff, 0x10, 0x9bf, 0x3, 0x4, 0x101, 0x62510620, 0x7, 0x8, 0x7, 0xfffffff8, 0x7]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x5}, @TCA_POLICE_RATE64={0xc, 0x8, 0xfffffffffffffff7}]}, @TCA_FW_CLASSID={0x8, 0x1, {0x3, 0x7}}, @TCA_FW_POLICE={0x10, 0x2, [@TCA_POLICE_RATE64={0xc, 0x8, 0x4}]}, @TCA_FW_ACT={0x4}]}}]}, 0xc8c}}, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r6 = getegid()
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0xc, &(0x7f00000001c0), 0x1}, 0x0)
r8 = socket$inet(0x2, 0x1, 0x1)
setsockopt$inet_opts(r8, 0x0, 0x200000000000c, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000b00000000008903569c3d006d40c046b7fb1000"/39], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x10)
llistxattr(0x0, 0x0, 0x0)
r11 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000580)='ns/time_for_children\x00')
r12 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000600), 0x4000, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000140)=@proc={0x10, 0x0, 0x25dfdbff, 0x8000}, 0xc, &(0x7f0000000540)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="54010000170000022abd7000fcdbdf2527015280c23975da1210dca1c785070000001578eb6a059b8c8b647c5813123006a6760f1c168b820725ab257b38aec3e15df03314aa5c7b4e468829a3923198ffaeba7c2337ad1da83019043690950d6a541c6d7ce94015d3a43a49ff4309598e034087e5600198bad75410d1f6c7599ca0a66d663129c6ca595b88f41ebbe8f5c2fcdc16be85cb5a6ada2948f510d2023092df91c269c3273d", @ANYRES32=0x0, @ANYRESHEX=r10], 0x154}, {&(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00\x00'], 0x320}], 0x2, &(0x7f0000000640)=ANY=[@ANYBLOB="541c2ad585031a7d33010040010000aa", @ANYRES32=r5, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r6, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r7, @ANYRES32=r5, @ANYRES32=r8, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32=r11, @ANYRES32=r0, @ANYRES32=r5, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r12, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0xb0, 0x20004044}, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

270.245868ms ago: executing program 2 (id=1343):
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000140)={{{@in=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in=@remote}, 0x0, @in6=@dev}}, &(0x7f0000000080)=0xe8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x10000, &(0x7f0000000340)={[{@journal_dev={'journal_dev', 0x3d, 0x40}}, {@jqfmt_vfsv1}, {@lazytime}, {@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0xdfa7}}, {@abort}], [{@obj_user={'obj_user', 0x3d, 'lazytime'}}, {@euid_eq}, {@euid_gt={'euid>', r0}}, {@fsmagic={'fsmagic', 0x3d, 0x7}}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x54, 0x64, 0x32, 0x6c, 0x61, 0x31, 0x62], 0x2d, [0x52, 0x36, 0x37, 0x34], 0x2d, [0x51, 0x34, 0xc2, 0x30], 0x2d, [0x66, 0x33, 0x30, 0x65], 0x2d, [0x3, 0x64, 0x31, 0x61, 0x33, 0x64, 0x39, 0x35]}}}, {@subj_type={'subj_type', 0x3d, 'ext4\x00'}}]}, 0x1, 0x56f, &(0x7f00000004c0)="$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")
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
open(&(0x7f0000000000)='./file1\x00', 0x109042, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x104, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0xd4, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'udp\x00'}, @NFTA_MATCH_INFO={0xe, 0x3, "7acc6338a90000b03bd9"}, @NFTA_MATCH_REV={0x8}]}}}, {0x34, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_DYNSET_TIMEOUT={0xc, 0x6, 0x1, 0x0, 0x5d68f0f0}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x1}]}}}, {0xc, 0x1, 0x0, 0x1, @fwd={{0x8}, @void}}, {0x5c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x3}, @NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x656}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x200}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x200}, @NFTA_QUEUE_TOTAL={0x6, 0x2, 0x1, 0x0, 0x5}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x2}, @NFTA_QUEUE_FLAGS={0x6, 0x3, 0x1, 0x0, 0x3}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_COMPAT={0x4}]}], {0x14}}, 0x12c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

236.020269ms ago: executing program 5 (id=1344):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r4=>0x0})
sendmsg$can_raw(r3, &(0x7f0000000000)={&(0x7f00000000c0)={0x1d, r4}, 0x10, &(0x7f0000000140)={&(0x7f0000000180)=@can={{0x0, 0x0, 0x1}, 0x0, 0x0, 0x4, 0x0, "9000"}, 0x10}, 0x2}, 0x810)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x2000000000000000}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)

212.069429ms ago: executing program 5 (id=1345):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffdfc, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xe8}}, 0x0)

166.366219ms ago: executing program 2 (id=1346):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0}, 0x10, 0x0, 0x800000, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000340)=[{&(0x7f0000000080)}], 0x1)

110.674689ms ago: executing program 2 (id=1347):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000000000080000000800028004000380180001801400020073797a5f74756e"], 0x34}}, 0x0)

109.997759ms ago: executing program 2 (id=1348):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0x20, &(0x7f0000000200)={&(0x7f00000005c0)=""/193, 0xc1, <r2=>0x0, &(0x7f0000000880)=""/174, 0xae}}, 0x10)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000002900), 0x200002, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x7, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008efdd9c7a3137142010b704000000000000850000", @ANYRESDEC=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a00)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES16=r4, @ANYBLOB="0304d9f04d79ca52ecf4c459113061c5a503f89530322b494be5ef09", @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000004c0)='kfree\x00', r9, 0x0, 0x1}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x20, r8, 0x301, 0x70bd28, 0x25dfdbfe, {0x1c}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x20}}, 0x10)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r11}, &(0x7f0000000040), &(0x7f0000000140)=r6}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r11}, 0x20)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bda200000000080007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
removexattr(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="757365722e6b6600806500"])

84.114569ms ago: executing program 2 (id=1349):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r0, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10)

56.561439ms ago: executing program 5 (id=1350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000004000000090000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fdf, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = dup2(r2, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
bind$rxrpc(r3, &(0x7f0000000380)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e23, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}}, 0x24)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x1, 0x6, 0xbfab, 0x8, 0x40, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$unix(0x1, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300000400038008000500", @ANYRES32=r6], 0x3c}, 0x1, 0x0, 0x0, 0x80c4}, 0x0)

49.95717ms ago: executing program 2 (id=1351):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xbe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0xffffffff, 0x9752333b9a87418, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000340)='cpu\t<0&&\t')
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="00ef4b85340fab00e9edb70800000000e7057b8af8ff00000000bfa20000f8ffff04b803000008000000b70400"/57], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

40.77375ms ago: executing program 3 (id=1352):
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000140)={0x4, &(0x7f00000000c0)=[{0x1, 0x0, 0x30, 0xf}, {0x5, 0xd, 0x6, 0x1}, {0x82, 0x0, 0xff, 0x1}, {0xc5, 0x0, 0x7, 0xc}]})
r0 = socket(0x28, 0x5, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f0000000540)={0x1, 0x2000000, 0x5, 0x9, 0x18e, 0x0})
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0xfd, 0x0, 0x7fff0000}]})
connect$vsock_stream(r0, &(0x7f0000000080), 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000001000/0x3000)=nil, 0x30000, 0x0, 0x11, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r4}, 0x10)
iopl(0x3)

0s ago: executing program 5 (id=1353):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="06030000000000000710000000010207"], 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000)) (async)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r4}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}}) (async)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f6873720000000058000000160a0101000b000000000000010000000900020073797a32000000000900010073797a30000000002c000380180003801400010076657468305f746f5f687372000000000800024000440000080001"], 0xf8}, 0x1, 0x0, 0x0, 0xc000}, 0x40)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, 0x0, 0x1b0)
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRESHEX, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYRES16=r0, @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0) (async)
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRESHEX, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYRES16=r0, @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
lgetxattr(&(0x7f0000000180)='./file1\x00', &(0x7f0000000000)=@known='system.posix_acl_default\x00', &(0x7f0000000280)=""/81, 0x5c)

kernel console output (not intermixed with test programs):

s (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.189115][ T4937] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   74.195723][ T4937] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   74.203502][ T4937] vhci_hcd vhci_hcd.0: Device attached
[   74.222844][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.233654][ T4938] vhci_hcd: connection closed
[   74.235571][  T109] vhci_hcd: stop threads
[   74.246827][  T109] vhci_hcd: release socket
[   74.251320][  T109] vhci_hcd: disconnect device
[   74.302286][ T4950] loop3: detected capacity change from 0 to 512
[   74.309358][ T4950] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   74.321254][ T4950] EXT4-fs (loop3): 1 truncate cleaned up
[   74.327484][ T4950] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.349244][ T4950] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   74.377020][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.401671][ T4959] SELinux: syz.5.530 (4959) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   74.500895][ T4966] loop5: detected capacity change from 0 to 128
[   74.520480][ T4966] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   74.532902][ T4966] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   74.582513][ T3381] IPVS: starting estimator thread 0...
[   74.613996][ T4666] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   74.641009][ T4971] loop5: detected capacity change from 0 to 512
[   74.658913][ T4971] EXT4-fs (loop5): orphan cleanup on readonly fs
[   74.665915][ T4971] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.533: bg 0: block 248: padding at end of block bitmap is not set
[   74.670401][ T4969] IPVS: using max 2304 ests per chain, 115200 per kthread
[   74.681879][ T4971] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.533: Failed to acquire dquot type 1
[   74.699764][ T4971] EXT4-fs (loop5): 1 truncate cleaned up
[   74.707450][ T4971] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.736426][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.818716][ T4978] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   74.854625][ T4980] loop1: detected capacity change from 0 to 128
[   74.905688][ T4987] loop3: detected capacity change from 0 to 512
[   74.913143][ T4987] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   74.917096][ T4980] bio_check_eod: 9839 callbacks suppressed
[   74.917114][ T4980] +}[@: attempt to access beyond end of device
[   74.917114][ T4980] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[   74.925179][ T4987] EXT4-fs (loop3): 1 truncate cleaned up
[   74.948664][ T4987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.965352][ T4987] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   74.975820][ T4980] +}[@: attempt to access beyond end of device
[   74.975820][ T4980] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[   74.990010][ T4980] +}[@: attempt to access beyond end of device
[   74.990010][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.002978][ T4980] +}[@: attempt to access beyond end of device
[   75.002978][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.004216][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.015839][ T4980] +}[@: attempt to access beyond end of device
[   75.015839][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.037746][ T4980] +}[@: attempt to access beyond end of device
[   75.037746][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.050703][ T4980] +}[@: attempt to access beyond end of device
[   75.050703][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.063638][ T4980] +}[@: attempt to access beyond end of device
[   75.063638][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.076529][ T4980] +}[@: attempt to access beyond end of device
[   75.076529][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.104757][ T4980] +}[@: attempt to access beyond end of device
[   75.104757][ T4980] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[   75.113620][   T30] kauditd_printk_skb: 139 callbacks suppressed
[   75.113638][   T30] audit: type=1326 audit(2000000030.638:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.155580][   T30] audit: type=1326 audit(2000000030.688:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.179072][   T30] audit: type=1326 audit(2000000030.688:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.202566][   T30] audit: type=1326 audit(2000000030.688:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.225931][   T30] audit: type=1326 audit(2000000030.688:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.249319][   T30] audit: type=1326 audit(2000000030.688:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.272762][   T30] audit: type=1326 audit(2000000030.688:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.296117][   T30] audit: type=1326 audit(2000000030.688:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.319562][   T30] audit: type=1326 audit(2000000030.688:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.342920][   T30] audit: type=1326 audit(2000000030.688:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4998 comm="syz.3.544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[   75.397308][ T4999] netlink: 28 bytes leftover after parsing attributes in process `syz.3.544'.
[   75.406414][ T4999] netlink: 28 bytes leftover after parsing attributes in process `syz.3.544'.
[   75.415810][ T4999] netlink: 4 bytes leftover after parsing attributes in process `syz.3.544'.
[   75.612621][ T5006] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   75.619174][ T5006] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   75.626959][ T5006] vhci_hcd vhci_hcd.0: Device attached
[   75.681338][ T5007] vhci_hcd: connection closed
[   75.681563][ T2047] vhci_hcd: stop threads
[   75.690566][ T2047] vhci_hcd: release socket
[   75.695034][ T2047] vhci_hcd: disconnect device
[   75.707691][ T5013] FAULT_INJECTION: forcing a failure.
[   75.707691][ T5013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.720851][ T5013] CPU: 1 UID: 0 PID: 5013 Comm: syz.3.548 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   75.720879][ T5013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   75.720892][ T5013] Call Trace:
[   75.720899][ T5013]  <TASK>
[   75.720907][ T5013]  dump_stack_lvl+0xf2/0x150
[   75.720974][ T5013]  dump_stack+0x15/0x1a
[   75.721032][ T5013]  should_fail_ex+0x24a/0x260
[   75.721093][ T5013]  should_fail+0xb/0x10
[   75.721120][ T5013]  should_fail_usercopy+0x1a/0x20
[   75.721153][ T5013]  _copy_from_user+0x1c/0xa0
[   75.721172][ T5013]  copy_msghdr_from_user+0x54/0x2a0
[   75.721281][ T5013]  ? __fget_files+0x17c/0x1c0
[   75.721317][ T5013]  __sys_sendmsg+0x13e/0x230
[   75.721417][ T5013]  __x64_sys_sendmsg+0x46/0x50
[   75.721443][ T5013]  x64_sys_call+0x2734/0x2dc0
[   75.721473][ T5013]  do_syscall_64+0xc9/0x1c0
[   75.721508][ T5013]  ? clear_bhb_loop+0x55/0xb0
[   75.721535][ T5013]  ? clear_bhb_loop+0x55/0xb0
[   75.721674][ T5013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.721701][ T5013] RIP: 0033:0x7f6a1637d169
[   75.721716][ T5013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.721746][ T5013] RSP: 002b:00007f6a1499b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.721769][ T5013] RAX: ffffffffffffffda RBX: 00007f6a16596160 RCX: 00007f6a1637d169
[   75.721784][ T5013] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000008
[   75.721797][ T5013] RBP: 00007f6a1499b090 R08: 0000000000000000 R09: 0000000000000000
[   75.721812][ T5013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.721823][ T5013] R13: 0000000000000000 R14: 00007f6a16596160 R15: 00007ffdcd6a70b8
[   75.721841][ T5013]  </TASK>
[   75.912055][ T5015] loop2: detected capacity change from 0 to 512
[   75.918877][ T5015] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   75.959310][ T5015] EXT4-fs (loop2): 1 truncate cleaned up
[   75.984008][ T5015] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.013616][ T5015] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   76.043449][ T5019] random: crng reseeded on system resumption
[   76.059688][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.133675][ T5017] loop5: detected capacity change from 0 to 128
[   76.176626][ T5021] netlink: 'syz.2.552': attribute type 21 has an invalid length.
[   76.184634][ T5021] netlink: 132 bytes leftover after parsing attributes in process `syz.2.552'.
[   76.193798][ T5021] netlink: 'syz.2.552': attribute type 1 has an invalid length.
[   76.299959][ T5026] loop1: detected capacity change from 0 to 128
[   76.322558][ T5026] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   76.350748][ T5026] ext4 filesystem being mounted at /129/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   76.383675][ T3304] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.404468][ T5033] loop1: detected capacity change from 0 to 512
[   76.412326][ T5033] EXT4-fs (loop1): orphan cleanup on readonly fs
[   76.419548][ T5033] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.557: bg 0: block 248: padding at end of block bitmap is not set
[   76.435188][ T5033] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.557: Failed to acquire dquot type 1
[   76.448367][ T5033] EXT4-fs (loop1): 1 truncate cleaned up
[   76.454617][ T5033] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.478089][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.496306][ T5041] loop1: detected capacity change from 0 to 128
[   76.579005][ T5046] loop5: detected capacity change from 0 to 512
[   76.587590][ T5046] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.562: bg 0: block 418: padding at end of block bitmap is not set
[   76.602514][ T5046] EXT4-fs (loop5): Remounting filesystem read-only
[   76.609143][ T5046] EXT4-fs (loop5): 1 truncate cleaned up
[   76.615471][ T5046] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.627690][ T5046] SELinux: (dev loop5, type ext4) getxattr errno 5
[   76.634816][ T5046] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.682436][ T5057] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[   76.689000][ T5057] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   76.696787][ T5057] vhci_hcd vhci_hcd.0: Device attached
[   76.703391][ T5058] vhci_hcd: connection closed
[   76.703485][   T29] vhci_hcd: stop threads
[   76.712545][   T29] vhci_hcd: release socket
[   76.717088][   T29] vhci_hcd: disconnect device
[   76.724810][ T5065] netlink: 60 bytes leftover after parsing attributes in process `syz.1.567'.
[   77.142637][ T5071] netlink: 20 bytes leftover after parsing attributes in process `syz.2.570'.
[   77.185323][ T5075] loop2: detected capacity change from 0 to 512
[   77.192079][ T5075] EXT4-fs: Ignoring removed bh option
[   77.197819][ T5075] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   77.207285][ T5075] EXT4-fs (loop2): 1 truncate cleaned up
[   77.220386][ T5075] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.226766][ T5078] loop0: detected capacity change from 0 to 2048
[   77.239244][ T5078] EXT4-fs: Ignoring removed bh option
[   77.262122][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.283661][ T5078] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.447077][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.490506][ T5090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.577'.
[   77.499816][ T5090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.577'.
[   77.508881][ T5090] netlink: 4 bytes leftover after parsing attributes in process `syz.0.577'.
[   77.854071][ T5100] netlink: 32 bytes leftover after parsing attributes in process `syz.2.580'.
[   77.898534][ T5101] netlink: 96 bytes leftover after parsing attributes in process `syz.1.581'.
[   77.947789][ T3378] IPVS: starting estimator thread 0...
[   78.034451][ T5103] IPVS: using max 2016 ests per chain, 100800 per kthread
[   78.044379][ T5113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.585'.
[   78.066561][ T5117] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   78.239543][ T5124] netlink: 28 bytes leftover after parsing attributes in process `syz.3.588'.
[   78.274631][ T5126] loop3: detected capacity change from 0 to 1024
[   78.285496][ T5126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.286960][ T5126] netlink: 'syz.3.589': attribute type 4 has an invalid length.
[   78.299298][ T5129] netlink: 'syz.3.589': attribute type 4 has an invalid length.
[   78.375030][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.453133][ T5133] netlink: 'syz.0.591': attribute type 9 has an invalid length.
[   78.456231][ T5133] bond_slave_0: entered promiscuous mode
[   78.466735][ T5133] bond_slave_1: entered promiscuous mode
[   78.467221][ T5133] macvlan2: entered promiscuous mode
[   78.477940][ T5133] bond0: entered promiscuous mode
[   78.484275][ T5133] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   78.526892][ T5138] netlink: 'syz.0.593': attribute type 10 has an invalid length.
[   78.585226][ T5140] loop3: detected capacity change from 0 to 512
[   78.613402][ T5140] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.594: bg 0: block 248: padding at end of block bitmap is not set
[   78.613667][ T5140] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.594: Failed to acquire dquot type 1
[   78.614110][ T5140] EXT4-fs (loop3): 1 truncate cleaned up
[   78.614473][ T5140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.614546][ T5140] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.634977][ T5146] veth0_to_bond: entered promiscuous mode
[   78.686910][ T5146] veth0_to_bond (unregistering): left promiscuous mode
[   78.695104][ T5146] bond0: (slave bond_slave_0): Releasing backup interface
[   78.718576][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.729729][ T5148] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   78.743330][ T5148] macsec1: entered allmulticast mode
[   78.919967][ T5169] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   78.926598][ T5169] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   78.934413][ T5169] vhci_hcd vhci_hcd.0: Device attached
[   78.941426][ T5170] vhci_hcd: connection closed
[   78.941555][   T29] vhci_hcd: stop threads
[   78.950579][   T29] vhci_hcd: release socket
[   78.955016][   T29] vhci_hcd: disconnect device
[   79.461955][ T5191] FAULT_INJECTION: forcing a failure.
[   79.461955][ T5191] name failslab, interval 1, probability 0, space 0, times 0
[   79.474632][ T5191] CPU: 0 UID: 0 PID: 5191 Comm: syz.1.609 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   79.474667][ T5191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.474697][ T5191] Call Trace:
[   79.474704][ T5191]  <TASK>
[   79.474711][ T5191]  dump_stack_lvl+0xf2/0x150
[   79.474761][ T5191]  dump_stack+0x15/0x1a
[   79.474831][ T5191]  should_fail_ex+0x24a/0x260
[   79.474891][ T5191]  should_failslab+0x8f/0xb0
[   79.474921][ T5191]  kmem_cache_alloc_node_noprof+0x59/0x320
[   79.474950][ T5191]  ? __alloc_skb+0x10b/0x310
[   79.474976][ T5191]  __alloc_skb+0x10b/0x310
[   79.475020][ T5191]  ? audit_log_start+0x34c/0x6b0
[   79.475110][ T5191]  audit_log_start+0x368/0x6b0
[   79.475147][ T5191]  audit_seccomp+0x4b/0x130
[   79.475184][ T5191]  __seccomp_filter+0x6fa/0x1180
[   79.475214][ T5191]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   79.475249][ T5191]  ? vfs_write+0x644/0x920
[   79.475279][ T5191]  ? putname+0xcf/0xf0
[   79.475305][ T5191]  __secure_computing+0x9f/0x1c0
[   79.475331][ T5191]  syscall_trace_enter+0xd1/0x1f0
[   79.475375][ T5191]  ? fpregs_assert_state_consistent+0x83/0xa0
[   79.475397][ T5191]  do_syscall_64+0xaa/0x1c0
[   79.475516][ T5191]  ? clear_bhb_loop+0x55/0xb0
[   79.475606][ T5191]  ? clear_bhb_loop+0x55/0xb0
[   79.475632][ T5191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.475663][ T5191] RIP: 0033:0x7f777b51d169
[   79.475679][ T5191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.475731][ T5191] RSP: 002b:00007f7779b81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000087
[   79.475753][ T5191] RAX: ffffffffffffffda RBX: 00007f777b735fa0 RCX: 00007f777b51d169
[   79.475768][ T5191] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000800000
[   79.475783][ T5191] RBP: 00007f7779b81090 R08: 0000000000000000 R09: 0000000000000000
[   79.475797][ T5191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.475809][ T5191] R13: 0000000000000000 R14: 00007f777b735fa0 R15: 00007ffcad318588
[   79.475837][ T5191]  </TASK>
[   79.797016][ T5204] loop3: detected capacity change from 0 to 256
[   79.839319][ T5204] batman_adv: batadv0: Removing interface: dummy0
[   79.848717][ T5204] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.862376][ T5204] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.920589][ T5216] loop1: detected capacity change from 0 to 512
[   79.937747][ T5216] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   79.980440][ T5216] EXT4-fs (loop1): 1 truncate cleaned up
[   80.051826][ T5216] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.108430][ T5216] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   80.130918][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.222496][ T3380] IPVS: starting estimator thread 0...
[   80.282956][   T30] kauditd_printk_skb: 614 callbacks suppressed
[   80.282973][   T30] audit: type=1326 audit(2000000035.855:2628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5217 comm="syz.5.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   80.309304][ T5235] IPVS: using max 1968 ests per chain, 98400 per kthread
[   80.314974][   T30] audit: type=1326 audit(2000000035.886:2629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5217 comm="syz.5.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   80.419209][   T30] audit: type=1326 audit(2000000035.986:2630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5241 comm="syz.3.627" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6a1637d169 code=0x0
[   80.484884][   T30] audit: type=1400 audit(2000000036.047:2631): avc:  denied  { ioctl } for  pid=5240 comm="syz.1.626" path="socket:[10509]" dev="sockfs" ino=10509 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   80.535634][ T5250] FAULT_INJECTION: forcing a failure.
[   80.535634][ T5250] name failslab, interval 1, probability 0, space 0, times 0
[   80.548386][ T5250] CPU: 0 UID: 0 PID: 5250 Comm: syz.5.628 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   80.548411][ T5250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   80.548423][ T5250] Call Trace:
[   80.548430][ T5250]  <TASK>
[   80.548438][ T5250]  dump_stack_lvl+0xf2/0x150
[   80.548479][ T5250]  dump_stack+0x15/0x1a
[   80.548501][ T5250]  should_fail_ex+0x24a/0x260
[   80.548569][ T5250]  should_failslab+0x8f/0xb0
[   80.548605][ T5250]  kmem_cache_alloc_noprof+0x52/0x320
[   80.548632][ T5250]  ? getname_flags+0x81/0x3b0
[   80.548692][ T5250]  ? should_fail_ex+0xd7/0x260
[   80.548720][ T5250]  getname_flags+0x81/0x3b0
[   80.548776][ T5250]  user_path_at+0x26/0x120
[   80.548862][ T5250]  __se_sys_mount+0x24b/0x2d0
[   80.548896][ T5250]  ? fput+0x1c4/0x200
[   80.548917][ T5250]  __x64_sys_mount+0x67/0x80
[   80.548946][ T5250]  x64_sys_call+0x2c84/0x2dc0
[   80.549064][ T5250]  do_syscall_64+0xc9/0x1c0
[   80.549102][ T5250]  ? clear_bhb_loop+0x55/0xb0
[   80.549130][ T5250]  ? clear_bhb_loop+0x55/0xb0
[   80.549188][ T5250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.549214][ T5250] RIP: 0033:0x7f00c4e8d169
[   80.549228][ T5250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.549247][ T5250] RSP: 002b:00007f00c34d0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   80.549269][ T5250] RAX: ffffffffffffffda RBX: 00007f00c50a6080 RCX: 00007f00c4e8d169
[   80.549284][ T5250] RDX: 0000400000000080 RSI: 0000400000000300 RDI: 0000000000000000
[   80.549299][ T5250] RBP: 00007f00c34d0090 R08: 0000400000000240 R09: 0000000000000000
[   80.549351][ T5250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.549363][ T5250] R13: 0000000000000000 R14: 00007f00c50a6080 R15: 00007ffd32410f08
[   80.549391][ T5250]  </TASK>
[   80.880210][ T5260] netlink: 'GPL': attribute type 30 has an invalid length.
[   80.980752][ T5265] netlink: 'syz.5.635': attribute type 3 has an invalid length.
[   81.004906][   T30] audit: type=1326 audit(2000000036.580:2632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.028484][   T30] audit: type=1326 audit(2000000036.580:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.052060][   T30] audit: type=1326 audit(2000000036.580:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.075612][   T30] audit: type=1326 audit(2000000036.580:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.099060][   T30] audit: type=1326 audit(2000000036.580:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.122653][   T30] audit: type=1326 audit(2000000036.580:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.0.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   81.170296][ T5268] __nla_validate_parse: 7 callbacks suppressed
[   81.170327][ T5268] netlink: 28 bytes leftover after parsing attributes in process `syz.0.636'.
[   81.189812][ T5268] netlink: 28 bytes leftover after parsing attributes in process `syz.0.636'.
[   81.198953][ T5268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.636'.
[   81.226261][ T5270] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=5270 comm=syz.1.633
[   81.345152][ T5275] netlink: 28 bytes leftover after parsing attributes in process `syz.3.638'.
[   81.354550][ T5275] netlink: 28 bytes leftover after parsing attributes in process `syz.3.638'.
[   81.363593][ T5275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.638'.
[   81.482838][ T5287] netlink: 36 bytes leftover after parsing attributes in process `syz.3.644'.
[   81.514730][ T5289] random: crng reseeded on system resumption
[   81.526135][ T5291] loop3: detected capacity change from 0 to 512
[   81.583992][ T5291] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.603507][ T5291] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.656440][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.672959][ T5295] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.696445][ T5297] netlink: 100 bytes leftover after parsing attributes in process `syz.3.648'.
[   81.756495][ T5295] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.825744][ T5295] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.885436][ T5295] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.007401][ T5295] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.027319][ T5295] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.076169][ T5295] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.090141][ T5295] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.167084][ T5323] netlink: 'syz.1.658': attribute type 1 has an invalid length.
[   82.181739][ T5323] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.201543][ T5327] netlink: 100 bytes leftover after parsing attributes in process `syz.0.660'.
[   82.346098][ T5345] random: crng reseeded on system resumption
[   82.468742][ T5355] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   82.475290][ T5355] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   82.483226][ T5355] vhci_hcd vhci_hcd.0: Device attached
[   82.489700][ T5356] vhci_hcd: connection closed
[   82.489911][ T2047] vhci_hcd: stop threads
[   82.499112][ T2047] vhci_hcd: release socket
[   82.503629][ T2047] vhci_hcd: disconnect device
[   82.818549][  T109] bond0 (unregistering): Released all slaves
[   82.844599][ T5361] netlink: 100 bytes leftover after parsing attributes in process `syz.1.675'.
[   82.912949][ T5367] loop1: detected capacity change from 0 to 512
[   82.919725][ T5367] EXT4-fs: Ignoring removed orlov option
[   82.925977][ T5367] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   82.937888][ T5367] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.678: casefold flag without casefold feature
[   82.950820][ T5367] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.678: couldn't read orphan inode 15 (err -117)
[   82.963668][ T5367] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.035714][ T5374] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.044412][ T5374] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.594563][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.852212][ T5395] veth1_vlan: left promiscuous mode
[   83.907700][ T5403] loop1: detected capacity change from 0 to 512
[   83.915238][ T5403] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   83.927588][ T5403] EXT4-fs (loop1): 1 truncate cleaned up
[   83.934361][ T5403] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.968509][ T5403] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   83.992575][ T5408] xt_CT: You must specify a L4 protocol and not use inversions on it
[   84.005081][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.023030][ T5412] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   84.104579][ T5418] loop3: detected capacity change from 0 to 1024
[   84.113439][ T5422] netlink: 'syz.0.700': attribute type 3 has an invalid length.
[   84.124144][ T5418] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c018, mo2=0002]
[   84.133667][ T5418] System zones: 0-1, 3-12
[   84.140455][ T5418] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.198814][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.216190][ T5429] FAULT_INJECTION: forcing a failure.
[   84.216190][ T5429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.229383][ T5429] CPU: 1 UID: 0 PID: 5429 Comm: syz.2.701 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   84.229408][ T5429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.229420][ T5429] Call Trace:
[   84.229426][ T5429]  <TASK>
[   84.229432][ T5429]  dump_stack_lvl+0xf2/0x150
[   84.229550][ T5429]  dump_stack+0x15/0x1a
[   84.229571][ T5429]  should_fail_ex+0x24a/0x260
[   84.229600][ T5429]  should_fail+0xb/0x10
[   84.229626][ T5429]  should_fail_usercopy+0x1a/0x20
[   84.229658][ T5429]  _copy_from_user+0x1c/0xa0
[   84.229805][ T5429]  __tun_chr_ioctl+0x162/0x1800
[   84.229842][ T5429]  tun_chr_ioctl+0x27/0x30
[   84.229867][ T5429]  ? __pfx_tun_chr_ioctl+0x10/0x10
[   84.229889][ T5429]  __se_sys_ioctl+0xc9/0x140
[   84.229995][ T5429]  __x64_sys_ioctl+0x43/0x50
[   84.230066][ T5429]  x64_sys_call+0x1690/0x2dc0
[   84.230106][ T5429]  do_syscall_64+0xc9/0x1c0
[   84.230144][ T5429]  ? clear_bhb_loop+0x55/0xb0
[   84.230172][ T5429]  ? clear_bhb_loop+0x55/0xb0
[   84.230268][ T5429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.230307][ T5429] RIP: 0033:0x7f6bbf4fd169
[   84.230325][ T5429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.230346][ T5429] RSP: 002b:00007f6bbdb61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.230385][ T5429] RAX: ffffffffffffffda RBX: 00007f6bbf715fa0 RCX: 00007f6bbf4fd169
[   84.230399][ T5429] RDX: 0000400000000100 RSI: 00000000400454ca RDI: 0000000000000004
[   84.230411][ T5429] RBP: 00007f6bbdb61090 R08: 0000000000000000 R09: 0000000000000000
[   84.230422][ T5429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.230435][ T5429] R13: 0000000000000000 R14: 00007f6bbf715fa0 R15: 00007ffe2c09c878
[   84.230457][ T5429]  </TASK>
[   84.557024][ T5446] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   84.563599][ T5446] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   84.571189][ T5446] vhci_hcd vhci_hcd.0: Device attached
[   84.578433][ T5447] vhci_hcd: cannot find the pending unlink 7
[   84.606781][ T5447] vhci_hcd: connection closed
[   84.607295][  T109] vhci_hcd: stop threads
[   84.616473][  T109] vhci_hcd: release socket
[   84.621024][  T109] vhci_hcd: disconnect device
[   84.671759][ T5460] veth0_vlan: entered allmulticast mode
[   84.740729][ T5464] syz.3.716 uses obsolete (PF_INET,SOCK_PACKET)
[   84.859478][ T5468] loop3: detected capacity change from 0 to 512
[   84.867429][ T5468] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   84.886547][ T5468] EXT4-fs (loop3): 1 truncate cleaned up
[   84.892962][ T5468] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.910280][ T5468] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   84.941636][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.961505][ T5478] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   84.968056][ T5478] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   84.975911][ T5478] vhci_hcd vhci_hcd.0: Device attached
[   84.993590][ T5479] vhci_hcd: connection closed
[   84.993701][ T1372] vhci_hcd: stop threads
[   85.003098][ T1372] vhci_hcd: release socket
[   85.007791][ T1372] vhci_hcd: disconnect device
[   85.166137][ T5494] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   85.172694][ T5494] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   85.180457][ T5494] vhci_hcd vhci_hcd.0: Device attached
[   85.189374][ T5495] vhci_hcd: connection closed
[   85.193158][ T1372] vhci_hcd: stop threads
[   85.202489][ T1372] vhci_hcd: release socket
[   85.207080][ T1372] vhci_hcd: disconnect device
[   85.213260][ T3363] IPVS: starting estimator thread 0...
[   85.314769][   T30] kauditd_printk_skb: 409 callbacks suppressed
[   85.314785][   T30] audit: type=1326 audit(2000000040.912:3047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.344358][ T5498] IPVS: using max 2112 ests per chain, 105600 per kthread
[   85.351749][   T30] audit: type=1326 audit(2000000040.912:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.375310][   T30] audit: type=1326 audit(2000000040.912:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.399000][   T30] audit: type=1326 audit(2000000040.912:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.422435][   T30] audit: type=1326 audit(2000000040.912:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.446041][   T30] audit: type=1326 audit(2000000040.912:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.469402][   T30] audit: type=1326 audit(2000000040.912:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.492718][   T30] audit: type=1326 audit(2000000040.912:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.516214][   T30] audit: type=1326 audit(2000000040.912:3055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.523485][ T5506] loop1: detected capacity change from 0 to 512
[   85.539883][   T30] audit: type=1326 audit(2000000040.912:3056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5501 comm="syz.5.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[   85.570107][ T5506] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   85.581674][ T5508] random: crng reseeded on system resumption
[   85.589381][ T5506] EXT4-fs (loop1): 1 truncate cleaned up
[   85.596536][ T5506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.612736][ T5506] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS
[   85.650697][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.675402][ T5512] loop5: detected capacity change from 0 to 128
[   85.686582][ T5512] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   85.698991][ T5512] ext4 filesystem being mounted at /46/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   85.753089][ T5519] loop3: detected capacity change from 0 to 512
[   85.760580][ T5519] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   85.785032][ T5519] EXT4-fs (loop3): 1 truncate cleaned up
[   85.791404][ T5519] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.817901][ T5519] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   85.898718][ T5537] SELinux: syz.5.743 (5537) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   85.928873][ T5538] bond1: entered promiscuous mode
[   85.934046][ T5538] bond1: entered allmulticast mode
[   85.939623][ T5538] 8021q: adding VLAN 0 to HW filter on device bond1
[   85.975722][ T5538] bond1 (unregistering): Released all slaves
[   86.132941][ T5560] random: crng reseeded on system resumption
[   86.198222][ T5563] FAULT_INJECTION: forcing a failure.
[   86.198222][ T5563] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.211488][ T5563] CPU: 0 UID: 0 PID: 5563 Comm: syz.3.754 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   86.211517][ T5563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   86.211533][ T5563] Call Trace:
[   86.211539][ T5563]  <TASK>
[   86.211547][ T5563]  dump_stack_lvl+0xf2/0x150
[   86.211579][ T5563]  dump_stack+0x15/0x1a
[   86.211642][ T5563]  should_fail_ex+0x24a/0x260
[   86.211690][ T5563]  should_fail+0xb/0x10
[   86.211718][ T5563]  should_fail_usercopy+0x1a/0x20
[   86.211749][ T5563]  _copy_from_user+0x1c/0xa0
[   86.211767][ T5563]  copy_msghdr_from_user+0x54/0x2a0
[   86.211864][ T5563]  ? __fget_files+0x17c/0x1c0
[   86.211907][ T5563]  __sys_sendmsg+0x13e/0x230
[   86.211968][ T5563]  __x64_sys_sendmsg+0x46/0x50
[   86.212004][ T5563]  x64_sys_call+0x2734/0x2dc0
[   86.212092][ T5563]  do_syscall_64+0xc9/0x1c0
[   86.212181][ T5563]  ? clear_bhb_loop+0x55/0xb0
[   86.212216][ T5563]  ? clear_bhb_loop+0x55/0xb0
[   86.212250][ T5563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.212303][ T5563] RIP: 0033:0x7f6a1637d169
[   86.212318][ T5563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.212337][ T5563] RSP: 002b:00007f6a149e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.212359][ T5563] RAX: ffffffffffffffda RBX: 00007f6a16595fa0 RCX: 00007f6a1637d169
[   86.212374][ T5563] RDX: 0000000000000000 RSI: 0000400000000240 RDI: 0000000000000006
[   86.212388][ T5563] RBP: 00007f6a149e1090 R08: 0000000000000000 R09: 0000000000000000
[   86.212450][ T5563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.212465][ T5563] R13: 0000000000000000 R14: 00007f6a16595fa0 R15: 00007ffdcd6a70b8
[   86.212526][ T5563]  </TASK>
[   86.414892][ T5567] loop5: detected capacity change from 0 to 512
[   86.436930][ T5567] EXT4-fs (loop5): orphan cleanup on readonly fs
[   86.445868][ T5567] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.756: bg 0: block 248: padding at end of block bitmap is not set
[   86.461495][ T5567] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.756: Failed to acquire dquot type 1
[   86.479229][ T5567] EXT4-fs (loop5): 1 truncate cleaned up
[   86.548958][ T5577] netem: incorrect gi model size
[   86.554093][ T5577] netem: change failed
[   86.571039][ T5577] FAULT_INJECTION: forcing a failure.
[   86.571039][ T5577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.584168][ T5577] CPU: 0 UID: 0 PID: 5577 Comm: syz.2.760 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   86.584197][ T5577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   86.584211][ T5577] Call Trace:
[   86.584218][ T5577]  <TASK>
[   86.584225][ T5577]  dump_stack_lvl+0xf2/0x150
[   86.584257][ T5577]  dump_stack+0x15/0x1a
[   86.584295][ T5577]  should_fail_ex+0x24a/0x260
[   86.584327][ T5577]  should_fail+0xb/0x10
[   86.584430][ T5577]  should_fail_usercopy+0x1a/0x20
[   86.584524][ T5577]  _copy_to_user+0x20/0xa0
[   86.584543][ T5577]  simple_read_from_buffer+0xa0/0x110
[   86.584641][ T5577]  proc_fail_nth_read+0xf9/0x140
[   86.584672][ T5577]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   86.584713][ T5577]  vfs_read+0x19b/0x6f0
[   86.584737][ T5577]  ? __rcu_read_unlock+0x4e/0x70
[   86.584759][ T5577]  ? __fget_files+0x17c/0x1c0
[   86.584795][ T5577]  ksys_read+0xe8/0x1b0
[   86.584823][ T5577]  __x64_sys_read+0x42/0x50
[   86.584865][ T5577]  x64_sys_call+0x2874/0x2dc0
[   86.584898][ T5577]  do_syscall_64+0xc9/0x1c0
[   86.584930][ T5577]  ? clear_bhb_loop+0x55/0xb0
[   86.584964][ T5577]  ? clear_bhb_loop+0x55/0xb0
[   86.585041][ T5577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.585068][ T5577] RIP: 0033:0x7f6bbf4fbb7c
[   86.585082][ T5577] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   86.585152][ T5577] RSP: 002b:00007f6bbdb61030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   86.585170][ T5577] RAX: ffffffffffffffda RBX: 00007f6bbf715fa0 RCX: 00007f6bbf4fbb7c
[   86.585182][ T5577] RDX: 000000000000000f RSI: 00007f6bbdb610a0 RDI: 000000000000000b
[   86.585221][ T5577] RBP: 00007f6bbdb61090 R08: 0000000000000000 R09: 0000000000000000
[   86.585280][ T5577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.585292][ T5577] R13: 0000000000000000 R14: 00007f6bbf715fa0 R15: 00007ffe2c09c878
[   86.585332][ T5577]  </TASK>
[   86.809308][ T5581] netem: incorrect gi model size
[   86.814367][ T5581] netem: change failed
[   86.823285][ T5583] new mount options do not match the existing superblock, will be ignored
[   86.824094][ T5583] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[   87.041233][ T5606] syz.1.770 (5606): /proc/5605/oom_adj is deprecated, please use /proc/5605/oom_score_adj instead.
[   87.101095][ T5601] netlink: 'syz.2.765': attribute type 1 has an invalid length.
[   87.109061][ T5609] loop1: detected capacity change from 0 to 512
[   87.116191][ T5609] EXT4-fs: Ignoring removed mblk_io_submit option
[   87.116202][ T5601] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.131068][ T5609] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   87.141025][ T5609] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   87.376178][ T5633] random: crng reseeded on system resumption
[   87.476255][ T5640] netlink: 'syz.1.784': attribute type 29 has an invalid length.
[   87.485324][ T5640] netlink: 'syz.1.784': attribute type 29 has an invalid length.
[   87.494181][ T5640] netlink: 'syz.1.784': attribute type 9 has an invalid length.
[   87.502056][ T5640] netlink: 'syz.1.784': attribute type 10 has an invalid length.
[   87.509961][ T5640] netlink: 'syz.1.784': attribute type 14 has an invalid length.
[   87.517808][ T5640] __nla_validate_parse: 3 callbacks suppressed
[   87.517823][ T5640] netlink: 39999 bytes leftover after parsing attributes in process `syz.1.784'.
[   87.552176][ T5642] loop0: detected capacity change from 0 to 512
[   87.563110][ T5645] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   87.570954][ T5642] EXT4-fs (loop0): orphan cleanup on readonly fs
[   87.578983][ T5642] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.785: bg 0: block 248: padding at end of block bitmap is not set
[   87.595647][ T5642] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.785: Failed to acquire dquot type 1
[   87.609467][ T5642] EXT4-fs (loop0): 1 truncate cleaned up
[   87.617107][ T5648] loop1: detected capacity change from 0 to 128
[   87.631491][ T5648] ext4 filesystem being mounted at /197/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   87.697050][ T5655] netlink: 100 bytes leftover after parsing attributes in process `syz.1.790'.
[   87.741305][ T5659] loop1: detected capacity change from 0 to 128
[   87.808032][ T5654] loop0: detected capacity change from 0 to 512
[   87.816488][ T5659] ext4 filesystem being mounted at /199/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   87.821872][   T12] bond0 (unregistering): Released all slaves
[   87.856467][ T5654] journal_path: Non-blockdev passed as './bus'
[   87.862783][ T5654] EXT4-fs: error: could not find journal device path
[   87.871208][ T5664] veth0_to_bond: entered promiscuous mode
[   87.877278][ T5666] bond_slave_1: mtu less than device minimum
[   87.883892][ T5664] netlink: 4 bytes leftover after parsing attributes in process `syz.5.794'.
[   87.905071][ T5664] veth0_to_bond (unregistering): left promiscuous mode
[   87.918347][ T5664] bond0: (slave bond_slave_0): Releasing backup interface
[   87.920737][ T5672] netlink: 20 bytes leftover after parsing attributes in process `syz.2.797'.
[   87.945208][ T5674] loop1: detected capacity change from 0 to 512
[   87.953508][ T5674] EXT4-fs (loop1): orphan cleanup on readonly fs
[   87.960599][ T5674] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.798: bg 0: block 248: padding at end of block bitmap is not set
[   87.976498][ T5674] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.798: Failed to acquire dquot type 1
[   87.988797][ T5674] EXT4-fs (loop1): 1 truncate cleaned up
[   88.013144][ T5679] loop3: detected capacity change from 0 to 128
[   88.028771][ T5679] ext4 filesystem being mounted at /179/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   88.065572][ T5685] loop2: detected capacity change from 0 to 256
[   88.074957][ T5685] vfat: Unknown parameter '0x0000000000000000'
[   88.103503][ T5685] loop2: detected capacity change from 0 to 2048
[   88.115262][ T5685] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.150508][ T5696] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[   88.276533][ T5714] loop1: detected capacity change from 0 to 128
[   88.287107][ T5714] ext4 filesystem being mounted at /206/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   88.310166][ T5716] netlink: 4 bytes leftover after parsing attributes in process `syz.3.815'.
[   88.421789][ T5703] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.797: bg 0: block 345: padding at end of block bitmap is not set
[   88.436832][ T5703] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[   88.449513][ T5703] EXT4-fs (loop2): This should not happen!! Data will be lost
[   88.449513][ T5703] 
[   88.563523][ T5744] loop1: detected capacity change from 0 to 128
[   88.572012][ T5744] ext4 filesystem being mounted at /212/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   88.622789][ T5748] random: crng reseeded on system resumption
[   88.735263][ T5755] random: crng reseeded on system resumption
[   88.750756][ T5703] syz.2.797 (5703) used greatest stack depth: 9152 bytes left
[   88.781051][  T109] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[   88.793844][  T109] EXT4-fs (loop2): This should not happen!! Data will be lost
[   88.793844][  T109] 
[   88.824517][  T109] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[   88.837317][  T109] EXT4-fs (loop2): This should not happen!! Data will be lost
[   88.837317][  T109] 
[   88.847105][  T109] EXT4-fs (loop2): Total free blocks count 0
[   88.853149][  T109] EXT4-fs (loop2): Free/Dirty block details
[   88.859114][  T109] EXT4-fs (loop2): free_blocks=0
[   88.864132][  T109] EXT4-fs (loop2): dirty_blocks=2032
[   89.019568][ T5767] netlink: 32 bytes leftover after parsing attributes in process `syz.1.835'.
[   89.110795][ T5771] loop2: detected capacity change from 0 to 128
[   89.123205][ T5771] ext4 filesystem being mounted at /151/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   89.178039][ T5776] random: crng reseeded on system resumption
[   89.299597][ T5787] loop5: detected capacity change from 0 to 512
[   89.318508][ T5787] EXT4-fs (loop5): orphan cleanup on readonly fs
[   89.325612][ T5787] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.845: bg 0: block 248: padding at end of block bitmap is not set
[   89.325861][ T5787] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.845: Failed to acquire dquot type 1
[   89.326484][ T5787] EXT4-fs (loop5): 1 truncate cleaned up
[   89.650560][ T5809] random: crng reseeded on system resumption
[   89.750788][ T5815] loop5: detected capacity change from 0 to 512
[   89.760132][ T5815] EXT4-fs (loop5): orphan cleanup on readonly fs
[   89.760801][ T5815] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.856: bg 0: block 248: padding at end of block bitmap is not set
[   89.761004][ T5815] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.856: Failed to acquire dquot type 1
[   89.761592][ T5815] EXT4-fs (loop5): 1 truncate cleaned up
[   90.935165][   T30] kauditd_printk_skb: 1091 callbacks suppressed
[   90.935213][   T30] audit: type=1326 audit(2000000046.552:4138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5836 comm="syz.5.865" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f00c4e8d169 code=0x0
[   91.133578][ T5840] loop2: detected capacity change from 0 to 512
[   91.219366][ T5840] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.260324][ T5833] EXT4-fs error (device loop2): ext4_empty_dir:3094: inode #12: comm syz.2.857: invalid size
[   91.275511][ T5847] random: crng reseeded on system resumption
[   91.647993][ T5855] netlink: 4 bytes leftover after parsing attributes in process `syz.1.870'.
[   91.929142][ T5881] netlink: 4 bytes leftover after parsing attributes in process `syz.3.882'.
[   91.933157][   T30] audit: type=1326 audit(2000000047.214:4139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   91.961305][   T30] audit: type=1326 audit(2000000047.214:4140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   91.984735][   T30] audit: type=1326 audit(2000000047.214:4141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.008355][   T30] audit: type=1326 audit(2000000047.214:4142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.032027][   T30] audit: type=1326 audit(2000000047.214:4143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.055381][   T30] audit: type=1326 audit(2000000047.214:4144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.078866][   T30] audit: type=1326 audit(2000000047.214:4145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.102240][   T30] audit: type=1326 audit(2000000047.214:4146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.125806][   T30] audit: type=1326 audit(2000000047.214:4147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5842 comm="syz.0.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cfd0fd169 code=0x7ffc0000
[   92.205634][ T5900] loop0: detected capacity change from 0 to 512
[   92.221774][ T5900] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   92.246314][ T5900] EXT4-fs (loop0): 1 truncate cleaned up
[   92.263985][ T5900] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[   92.263985][ T5900] �?�D�[
[   92.560267][ T5912] loop0: detected capacity change from 0 to 512
[   92.568147][ T5912] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   92.590915][ T5912] EXT4-fs (loop0): 1 truncate cleaned up
[   92.599562][ T5912] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   92.944385][ T5922] netlink: 4 bytes leftover after parsing attributes in process `syz.0.899'.
[   93.119269][ T5939] loop0: detected capacity change from 0 to 512
[   93.181687][ T5939] EXT4-fs (loop0): orphan cleanup on readonly fs
[   93.189962][ T5939] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.905: bg 0: block 248: padding at end of block bitmap is not set
[   93.205969][ T5939] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.905: Failed to acquire dquot type 1
[   93.231603][ T5939] EXT4-fs (loop0): 1 truncate cleaned up
[   93.249720][ T5954] netlink: 4 bytes leftover after parsing attributes in process `syz.3.912'.
[   93.289443][ T5962] loop1: detected capacity change from 0 to 512
[   93.301342][ T5962] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   93.315234][ T5962] EXT4-fs (loop1): 1 truncate cleaned up
[   93.339702][ T5962] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[   93.339702][ T5962] �?�D�[
[   93.476632][ T5972] devpts: called with bogus options
[   93.654273][ T5997] loop2: detected capacity change from 0 to 512
[   93.666856][ T5997] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   93.683486][ T5997] EXT4-fs (loop2): 1 truncate cleaned up
[   93.692803][ T5997] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[   93.692803][ T5997] �?�D�[
[   93.881875][ T6018] netlink: 32 bytes leftover after parsing attributes in process `syz.2.933'.
[   94.043964][ T6028] usb usb1: check_ctrlrecip: process 6028 (syz.0.940) requesting ep 01 but needs 81
[   94.044057][ T6028] netlink: 8 bytes leftover after parsing attributes in process `syz.0.940'.
[   94.046122][ T6029] usb usb1: check_ctrlrecip: process 6029 (syz.0.940) requesting ep 01 but needs 81
[   94.055242][ T6030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.940'.
[   94.157306][ T6039] loop5: detected capacity change from 0 to 512
[   94.157879][ T6039] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   94.177097][ T6039] EXT4-fs (loop5): 1 truncate cleaned up
[   94.180575][ T6039] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   94.253365][ T6044] xt_hashlimit: max too large, truncated to 1048576
[   94.279899][ T6046] loop5: detected capacity change from 0 to 128
[   94.286035][ T6048] netlink: 100 bytes leftover after parsing attributes in process `syz.0.948'.
[   94.289521][ T6046] ext4 filesystem being mounted at /83/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   94.427951][ T6052] netlink: 'syz.0.950': attribute type 3 has an invalid length.
[   94.431981][ T6053] loop3: detected capacity change from 0 to 128
[   94.765063][ T6083] netlink: 100 bytes leftover after parsing attributes in process `syz.1.960'.
[   94.810911][ T6085] xt_hashlimit: size too large, truncated to 1048576
[   94.947340][ T6089] loop1: detected capacity change from 0 to 2048
[   95.015718][ T6089] Alternate GPT is invalid, using primary GPT.
[   95.022218][ T6089]  loop1: p2 p3 p7
[   95.341915][ T6105] netlink: 12 bytes leftover after parsing attributes in process `syz.1.969'.
[   95.359165][ T6105] 8021q: adding VLAN 0 to HW filter on device bond2
[   95.412604][ T6114] random: crng reseeded on system resumption
[   96.674809][ T6182] netlink: 'syz.1.998': attribute type 2 has an invalid length.
[   96.682570][ T6182] netlink: 'syz.1.998': attribute type 8 has an invalid length.
[   96.690322][ T6182] netlink: 132 bytes leftover after parsing attributes in process `syz.1.998'.
[   96.732898][ T6182] FAULT_INJECTION: forcing a failure.
[   96.732898][ T6182] name failslab, interval 1, probability 0, space 0, times 0
[   96.745635][ T6182] CPU: 1 UID: 0 PID: 6182 Comm: syz.1.998 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[   96.745699][ T6182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   96.745714][ T6182] Call Trace:
[   96.745721][ T6182]  <TASK>
[   96.745729][ T6182]  dump_stack_lvl+0xf2/0x150
[   96.745764][ T6182]  dump_stack+0x15/0x1a
[   96.745789][ T6182]  should_fail_ex+0x24a/0x260
[   96.745825][ T6182]  should_failslab+0x8f/0xb0
[   96.745895][ T6182]  kmem_cache_alloc_node_noprof+0x59/0x320
[   96.745918][ T6182]  ? __alloc_skb+0x10b/0x310
[   96.745939][ T6182]  __alloc_skb+0x10b/0x310
[   96.745963][ T6182]  rtmsg_ifa+0xb0/0x170
[   96.745993][ T6182]  __inet_insert_ifa+0x4fd/0x630
[   96.746062][ T6182]  inet_rtm_newaddr+0x94f/0xca0
[   96.746094][ T6182]  ? selinux_capable+0x1f2/0x260
[   96.746128][ T6182]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[   96.746234][ T6182]  rtnetlink_rcv_msg+0x651/0x710
[   96.746264][ T6182]  ? ref_tracker_free+0x3a5/0x410
[   96.746304][ T6182]  netlink_rcv_skb+0x12c/0x230
[   96.746338][ T6182]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   96.746439][ T6182]  rtnetlink_rcv+0x1c/0x30
[   96.746463][ T6182]  netlink_unicast+0x599/0x670
[   96.746500][ T6182]  netlink_sendmsg+0x5cc/0x6e0
[   96.746546][ T6182]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.746626][ T6182]  __sock_sendmsg+0x140/0x180
[   96.746661][ T6182]  ____sys_sendmsg+0x326/0x4b0
[   96.746697][ T6182]  __sys_sendmsg+0x19d/0x230
[   96.746821][ T6182]  __x64_sys_sendmsg+0x46/0x50
[   96.746850][ T6182]  x64_sys_call+0x2734/0x2dc0
[   96.746876][ T6182]  do_syscall_64+0xc9/0x1c0
[   96.746909][ T6182]  ? clear_bhb_loop+0x55/0xb0
[   96.746943][ T6182]  ? clear_bhb_loop+0x55/0xb0
[   96.747012][ T6182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.747075][ T6182] RIP: 0033:0x7f777b51d169
[   96.747096][ T6182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.747113][ T6182] RSP: 002b:00007f7779b81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.747198][ T6182] RAX: ffffffffffffffda RBX: 00007f777b735fa0 RCX: 00007f777b51d169
[   96.747213][ T6182] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000003
[   96.747228][ T6182] RBP: 00007f7779b81090 R08: 0000000000000000 R09: 0000000000000000
[   96.747241][ T6182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.747253][ T6182] R13: 0000000000000000 R14: 00007f777b735fa0 R15: 00007ffcad318588
[   96.747272][ T6182]  </TASK>
[   97.162227][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1001'.
[   97.173120][   T30] kauditd_printk_skb: 165 callbacks suppressed
[   97.173144][   T30] audit: type=1326 audit(2000000052.808:4311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.203004][   T30] audit: type=1326 audit(2000000052.808:4312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.226575][   T30] audit: type=1326 audit(2000000052.808:4313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.250028][   T30] audit: type=1326 audit(2000000052.808:4314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.274159][   T30] audit: type=1326 audit(2000000052.868:4315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.297720][   T30] audit: type=1326 audit(2000000052.868:4316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.321166][   T30] audit: type=1326 audit(2000000052.868:4317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.344674][   T30] audit: type=1326 audit(2000000052.868:4318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.368179][   T30] audit: type=1326 audit(2000000052.868:4319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.391814][   T30] audit: type=1326 audit(2000000052.868:4320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6187 comm="syz.2.1001" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[   97.714768][ T6217] netlink: 'syz.3.1013': attribute type 1 has an invalid length.
[   97.818547][ T6231] x_tables: duplicate underflow at hook 3
[   97.864503][ T6225] netlink: 'syz.0.1014': attribute type 1 has an invalid length.
[   98.035492][ T6255] random: crng reseeded on system resumption
[   98.052355][ T6253] loop5: detected capacity change from 0 to 128
[   98.086563][ T6253] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   98.336767][ T6276] Invalid ELF header magic: != ELF
[   98.496600][ T6286] loop2: detected capacity change from 0 to 128
[   98.529914][ T6286] ext4 filesystem being mounted at /187/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   98.666979][ T6299] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   98.673529][ T6299] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   98.681252][ T6299] vhci_hcd vhci_hcd.0: Device attached
[   98.839982][ T6300] vhci_hcd: connection closed
[   98.845456][ T1372] vhci_hcd: stop threads
[   98.854516][ T1372] vhci_hcd: release socket
[   98.859024][ T1372] vhci_hcd: disconnect device
[   99.287064][ T6315] netlink: 'syz.0.1047': attribute type 1 has an invalid length.
[   99.416136][ T6319] loop2: detected capacity change from 0 to 512
[   99.445340][ T6319] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.639065][ T6330] loop1: detected capacity change from 0 to 128
[   99.757507][ T6337] __nla_validate_parse: 4 callbacks suppressed
[   99.757523][ T6337] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1056'.
[   99.780812][ T6330] ext4 filesystem being mounted at /274/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  100.822057][ T6370] netlink: 'syz.5.1071': attribute type 1 has an invalid length.
[  100.836380][ T6370] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.141532][ T6380] loop3: detected capacity change from 0 to 1764
[  101.156316][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1074'.
[  101.165277][ T6380] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1074'.
[  101.184435][ T6380] ������,cruft,ch: renamed from lo
[  101.425116][ T3307] EXT4-fs unmount: 49 callbacks suppressed
[  101.425207][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.450159][ T6380] loop3: detected capacity change from 0 to 512
[  101.525546][ T6380] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.584521][   T51] bond0 (unregistering): Released all slaves
[  101.601019][ T6380] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.657575][ T6402] loop2: detected capacity change from 0 to 512
[  101.668620][ T6402] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  101.759875][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.774676][ T6402] EXT4-fs (loop2): 1 truncate cleaned up
[  101.785192][ T6402] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.835979][ T6402] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  101.835979][ T6402] �?�D�[
[  101.884225][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.937630][ T6415] FAULT_INJECTION: forcing a failure.
[  101.937630][ T6415] name failslab, interval 1, probability 0, space 0, times 0
[  101.950392][ T6415] CPU: 1 UID: 0 PID: 6415 Comm: syz.2.1083 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  101.950427][ T6415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  101.950442][ T6415] Call Trace:
[  101.950449][ T6415]  <TASK>
[  101.950457][ T6415]  dump_stack_lvl+0xf2/0x150
[  101.950490][ T6415]  dump_stack+0x15/0x1a
[  101.950536][ T6415]  should_fail_ex+0x24a/0x260
[  101.950570][ T6415]  should_failslab+0x8f/0xb0
[  101.950605][ T6415]  __kmalloc_node_noprof+0xad/0x410
[  101.950637][ T6415]  ? __kvmalloc_node_noprof+0x72/0x170
[  101.950735][ T6415]  __kvmalloc_node_noprof+0x72/0x170
[  101.950772][ T6415]  nf_tables_newset+0xd70/0x1450
[  101.950870][ T6415]  nfnetlink_rcv+0xb3e/0x15d0
[  101.950927][ T6415]  netlink_unicast+0x599/0x670
[  101.951035][ T6415]  netlink_sendmsg+0x5cc/0x6e0
[  101.951085][ T6415]  ? __pfx_netlink_sendmsg+0x10/0x10
[  101.951126][ T6415]  __sock_sendmsg+0x140/0x180
[  101.951171][ T6415]  ____sys_sendmsg+0x326/0x4b0
[  101.951259][ T6415]  __sys_sendmsg+0x19d/0x230
[  101.951368][ T6415]  __x64_sys_sendmsg+0x46/0x50
[  101.951399][ T6415]  x64_sys_call+0x2734/0x2dc0
[  101.951432][ T6415]  do_syscall_64+0xc9/0x1c0
[  101.951478][ T6415]  ? clear_bhb_loop+0x55/0xb0
[  101.951515][ T6415]  ? clear_bhb_loop+0x55/0xb0
[  101.951612][ T6415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.951649][ T6415] RIP: 0033:0x7f6bbf4fd169
[  101.951667][ T6415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.951689][ T6415] RSP: 002b:00007f6bbdb61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.951818][ T6415] RAX: ffffffffffffffda RBX: 00007f6bbf715fa0 RCX: 00007f6bbf4fd169
[  101.951834][ T6415] RDX: 0000000000000044 RSI: 00004000000000c0 RDI: 0000000000000003
[  101.951848][ T6415] RBP: 00007f6bbdb61090 R08: 0000000000000000 R09: 0000000000000000
[  101.951867][ T6415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  101.951881][ T6415] R13: 0000000000000000 R14: 00007f6bbf715fa0 R15: 00007ffe2c09c878
[  101.951903][ T6415]  </TASK>
[  102.172650][ T6422] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  102.178954][   T30] kauditd_printk_skb: 112 callbacks suppressed
[  102.179031][   T30] audit: type=1326 audit(2000000057.817:4433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.208620][   T30] audit: type=1326 audit(2000000057.817:4434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.232147][   T30] audit: type=1326 audit(2000000057.817:4435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.256490][   T30] audit: type=1326 audit(2000000057.817:4436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.280262][   T30] audit: type=1326 audit(2000000057.817:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.304005][   T30] audit: type=1326 audit(2000000057.817:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.327649][   T30] audit: type=1326 audit(2000000057.817:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.351277][   T30] audit: type=1326 audit(2000000057.817:4440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.374763][   T30] audit: type=1326 audit(2000000057.817:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x7ffc0000
[  102.398174][   T30] audit: type=1326 audit(2000000057.817:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6395 comm="syz.5.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f00c4e8bad0 code=0x7ffc0000
[  102.776797][ T6437] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1090'.
[  102.786894][ T6437] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1090'.
[  103.063103][ T6450] loop2: detected capacity change from 0 to 128
[  103.143344][ T6450] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.210795][ T6450] ext4 filesystem being mounted at /195/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  103.334227][ T6455] loop3: detected capacity change from 0 to 1024
[  103.341148][ T6455] EXT4-fs: inline encryption not supported
[  103.348167][ T6455] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  103.372375][ T6455] EXT4-fs error (device loop3): ext4_map_blocks:705: inode #3: block 1: comm syz.3.1097: lblock 1 mapped to illegal pblock 1 (length 1)
[  103.376762][ T6461] loop1: detected capacity change from 0 to 512
[  103.407117][ T6455] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1097: Failed to acquire dquot type 0
[  103.436522][ T6455] EXT4-fs error (device loop3): ext4_free_blocks:6589: comm syz.3.1097: Freeing blocks not in datazone - block = 0, count = 4096
[  103.471233][ T6455] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.1097: Invalid inode bitmap blk 0 in block_group 0
[  103.484039][ T6461] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  103.486155][ T2047] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  103.511085][ T6455] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  103.512228][ T6461] EXT4-fs (loop1): 1 truncate cleaned up
[  103.525780][ T6461] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.529030][ T2047] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:6: Failed to release dquot type 0
[  103.550276][ T6455] EXT4-fs (loop3): 1 orphan inode deleted
[  103.551789][ T6461] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  103.551789][ T6461] �?�D�[
[  103.556502][ T6455] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.597070][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.612579][ T6455] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  103.626628][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.641969][ T6455] EXT4-fs error (device loop3): ext4_search_dir:1505: inode #2: block 16: comm syz.3.1097: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  103.680912][ T6470] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1102'.
[  103.691487][ T6455] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1097'.
[  103.726206][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.826702][ T6490] loop3: detected capacity change from 0 to 1024
[  103.843854][ T6493] loop2: detected capacity change from 0 to 128
[  103.890364][ T6490] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.903106][ T6490] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.915794][ T6490] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.935759][ T6506] loop2: detected capacity change from 0 to 128
[  103.957121][ T6506] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  103.969466][ T6506] ext4 filesystem being mounted at /200/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  104.019921][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.150348][ T6522] loop5: detected capacity change from 0 to 2048
[  104.162822][ T6520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1118'.
[  104.172815][ T6520] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1118'.
[  104.174482][ T6522] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.203825][ T6522] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  104.229500][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.250489][ T6527] FAULT_INJECTION: forcing a failure.
[  104.250489][ T6527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.263735][ T6527] CPU: 0 UID: 0 PID: 6527 Comm: syz.5.1122 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  104.263760][ T6527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.263773][ T6527] Call Trace:
[  104.263782][ T6527]  <TASK>
[  104.263791][ T6527]  dump_stack_lvl+0xf2/0x150
[  104.263824][ T6527]  dump_stack+0x15/0x1a
[  104.263894][ T6527]  should_fail_ex+0x24a/0x260
[  104.263920][ T6527]  should_fail+0xb/0x10
[  104.263942][ T6527]  should_fail_usercopy+0x1a/0x20
[  104.264011][ T6527]  _copy_from_user+0x1c/0xa0
[  104.264027][ T6527]  generic_map_update_batch+0x3c8/0x520
[  104.264084][ T6527]  ? __pfx_generic_map_update_batch+0x10/0x10
[  104.264105][ T6527]  bpf_map_do_batch+0x28c/0x3f0
[  104.264134][ T6527]  __sys_bpf+0x2e5/0x7a0
[  104.264165][ T6527]  __x64_sys_bpf+0x43/0x50
[  104.264264][ T6527]  x64_sys_call+0x2914/0x2dc0
[  104.264289][ T6527]  do_syscall_64+0xc9/0x1c0
[  104.264359][ T6527]  ? clear_bhb_loop+0x55/0xb0
[  104.264382][ T6527]  ? clear_bhb_loop+0x55/0xb0
[  104.264463][ T6527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.264499][ T6527] RIP: 0033:0x7f00c4e8d169
[  104.264513][ T6527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.264528][ T6527] RSP: 002b:00007f00c34f1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  104.264544][ T6527] RAX: ffffffffffffffda RBX: 00007f00c50a5fa0 RCX: 00007f00c4e8d169
[  104.264555][ T6527] RDX: 0000000000000038 RSI: 0000400000000400 RDI: 000000000000001a
[  104.264605][ T6527] RBP: 00007f00c34f1090 R08: 0000000000000000 R09: 0000000000000000
[  104.264615][ T6527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.264626][ T6527] R13: 0000000000000000 R14: 00007f00c50a5fa0 R15: 00007ffd32410f08
[  104.264690][ T6527]  </TASK>
[  104.502356][ T6530] FAULT_INJECTION: forcing a failure.
[  104.502356][ T6530] name failslab, interval 1, probability 0, space 0, times 0
[  104.515125][ T6530] CPU: 1 UID: 0 PID: 6530 Comm: syz.0.1124 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  104.515152][ T6530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.515217][ T6530] Call Trace:
[  104.515225][ T6530]  <TASK>
[  104.515233][ T6530]  dump_stack_lvl+0xf2/0x150
[  104.515262][ T6530]  dump_stack+0x15/0x1a
[  104.515283][ T6530]  should_fail_ex+0x24a/0x260
[  104.515313][ T6530]  should_failslab+0x8f/0xb0
[  104.515378][ T6530]  __kmalloc_noprof+0xab/0x3f0
[  104.515402][ T6530]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  104.515430][ T6530]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[  104.515471][ T6530]  ? ns_capable+0x7d/0xb0
[  104.515499][ T6530]  genl_rcv_msg+0x475/0x6d0
[  104.515539][ T6530]  ? __pfx_ethnl_act_module_fw_flash+0x10/0x10
[  104.515574][ T6530]  ? __dev_queue_xmit+0xb6e/0x2090
[  104.515606][ T6530]  ? ref_tracker_free+0x3a5/0x410
[  104.515702][ T6530]  netlink_rcv_skb+0x12c/0x230
[  104.515745][ T6530]  ? __pfx_genl_rcv_msg+0x10/0x10
[  104.515779][ T6530]  genl_rcv+0x28/0x40
[  104.515798][ T6530]  netlink_unicast+0x599/0x670
[  104.515837][ T6530]  netlink_sendmsg+0x5cc/0x6e0
[  104.515874][ T6530]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.515912][ T6530]  __sock_sendmsg+0x140/0x180
[  104.515950][ T6530]  ____sys_sendmsg+0x326/0x4b0
[  104.516051][ T6530]  __sys_sendmsg+0x19d/0x230
[  104.516096][ T6530]  __x64_sys_sendmsg+0x46/0x50
[  104.516205][ T6530]  x64_sys_call+0x2734/0x2dc0
[  104.516236][ T6530]  do_syscall_64+0xc9/0x1c0
[  104.516301][ T6530]  ? clear_bhb_loop+0x55/0xb0
[  104.516328][ T6530]  ? clear_bhb_loop+0x55/0xb0
[  104.516357][ T6530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.516389][ T6530] RIP: 0033:0x7f7cfd0fd169
[  104.516406][ T6530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.516454][ T6530] RSP: 002b:00007f7cfb767038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.516476][ T6530] RAX: ffffffffffffffda RBX: 00007f7cfd315fa0 RCX: 00007f7cfd0fd169
[  104.516490][ T6530] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000005
[  104.516504][ T6530] RBP: 00007f7cfb767090 R08: 0000000000000000 R09: 0000000000000000
[  104.516517][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.516529][ T6530] R13: 0000000000000000 R14: 00007f7cfd315fa0 R15: 00007fffecc76cf8
[  104.516547][ T6530]  </TASK>
[  104.810860][ T6531] loop2: detected capacity change from 0 to 512
[  104.838750][ T6531] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.851510][ T6531] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.331693][ T6565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1137'.
[  105.424553][ T6575] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1141'.
[  105.821088][ T6590] loop1: detected capacity change from 0 to 1764
[  105.833216][ T6590] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1146'.
[  105.842162][ T6590] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1146'.
[  105.853908][ T6590] ������,cruft,ch: renamed from lo (while UP)
[  105.866755][ T6590] loop1: detected capacity change from 0 to 512
[  105.885077][ T6590] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.900395][ T6590] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.926836][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.970765][ T6597] loop1: detected capacity change from 0 to 128
[  105.981555][ T6597] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  106.015635][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1148'.
[  106.049172][ T6597] ext4 filesystem being mounted at /304/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  106.165053][ T6611] netlink: 100 bytes leftover after parsing attributes in process `syz.5.1153'.
[  106.179626][ T3304] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  106.207835][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.248392][ T6619] loop5: detected capacity change from 0 to 1764
[  106.259360][ T6619] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1157'.
[  106.268356][ T6619] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1157'.
[  106.285373][ T6619] ������,cruft,ch: renamed from lo (while UP)
[  106.298971][ T6619] loop5: detected capacity change from 0 to 512
[  106.306761][ T6625] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1159'.
[  106.320364][ T6619] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.335475][ T6619] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.375326][ T6630] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1161'.
[  106.376439][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.652649][ T6620] Set syz1 is full, maxelem 65536 reached
[  106.707964][ T6655] loop2: detected capacity change from 0 to 1764
[  106.719086][ T6655] ������,cruft,ch: renamed from lo (while UP)
[  106.738426][ T6655] loop2: detected capacity change from 0 to 512
[  106.755015][ T6655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.767756][ T6655] ext4 filesystem being mounted at /204/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.795294][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.945103][ T6676] loop3: detected capacity change from 0 to 512
[  106.953630][ T6676] EXT4-fs (loop3): orphan cleanup on readonly fs
[  106.961875][ T6676] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1177: bg 0: block 248: padding at end of block bitmap is not set
[  106.977134][ T6676] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.1177: Failed to acquire dquot type 1
[  107.003139][ T6676] EXT4-fs (loop3): 1 truncate cleaned up
[  107.009574][ T6676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.083913][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.123860][ T6688] loop0: detected capacity change from 0 to 1764
[  107.166056][ T6689] loop3: detected capacity change from 0 to 512
[  107.194758][ T6688] ������,cruft,ch: renamed from lo (while UP)
[  107.215521][ T6688] loop0: detected capacity change from 0 to 512
[  107.291590][   T30] kauditd_printk_skb: 847 callbacks suppressed
[  107.291617][   T30] audit: type=1326 audit(2000000062.873:5285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=219 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.321495][   T30] audit: type=1326 audit(2000000062.873:5286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.344964][   T30] audit: type=1326 audit(2000000062.873:5287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.371103][ T6688] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.407771][ T6688] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.438018][ T6689] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.455389][ T6689] ext4 filesystem being mounted at /239/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.497176][ T6686] FAULT_INJECTION: forcing a failure.
[  107.497176][ T6686] name failslab, interval 1, probability 0, space 0, times 0
[  107.509958][ T6686] CPU: 1 UID: 0 PID: 6686 Comm: syz.3.1180 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  107.509984][ T6686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.510068][ T6686] Call Trace:
[  107.510074][ T6686]  <TASK>
[  107.510081][ T6686]  dump_stack_lvl+0xf2/0x150
[  107.510112][ T6686]  dump_stack+0x15/0x1a
[  107.510147][ T6686]  should_fail_ex+0x24a/0x260
[  107.510181][ T6686]  should_failslab+0x8f/0xb0
[  107.510211][ T6686]  __kmalloc_noprof+0xab/0x3f0
[  107.510233][ T6686]  ? ext4_find_extent+0x172/0x7c0
[  107.510264][ T6686]  ext4_find_extent+0x172/0x7c0
[  107.510292][ T6686]  ? bpf_trace_vprintk+0x101/0x200
[  107.510334][ T6686]  ext4_ext_map_blocks+0x11f/0x35c0
[  107.510367][ T6686]  ? _raw_spin_unlock+0x26/0x50
[  107.510386][ T6686]  ? finish_task_switch+0xb5/0x2b0
[  107.510431][ T6686]  ext4_map_blocks+0x5aa/0xd20
[  107.510520][ T6686]  ext4_alloc_file_blocks+0x282/0x730
[  107.510579][ T6686]  ext4_zero_range+0x301/0x890
[  107.510614][ T6686]  ext4_fallocate+0x379/0x1170
[  107.510721][ T6686]  vfs_fallocate+0x368/0x3b0
[  107.510758][ T6686]  __x64_sys_fallocate+0x78/0xc0
[  107.510792][ T6686]  x64_sys_call+0x43c/0x2dc0
[  107.510825][ T6686]  do_syscall_64+0xc9/0x1c0
[  107.510922][ T6686]  ? clear_bhb_loop+0x55/0xb0
[  107.510958][ T6686]  ? clear_bhb_loop+0x55/0xb0
[  107.510991][ T6686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.511018][ T6686] RIP: 0033:0x7f6a1637d169
[  107.511033][ T6686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.511050][ T6686] RSP: 002b:00007f6a149e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  107.511072][ T6686] RAX: ffffffffffffffda RBX: 00007f6a16595fa0 RCX: 00007f6a1637d169
[  107.511145][ T6686] RDX: 0000000000000fff RSI: 0000000000000010 RDI: 0000000000000009
[  107.511157][ T6686] RBP: 00007f6a149e1090 R08: 0000000000000000 R09: 0000000000000000
[  107.511170][ T6686] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000002
[  107.511185][ T6686] R13: 0000000000000000 R14: 00007f6a16595fa0 R15: 00007ffdcd6a70b8
[  107.511208][ T6686]  </TASK>
[  107.580752][   T30] audit: type=1326 audit(2000000063.143:5288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.745191][   T30] audit: type=1326 audit(2000000063.143:5289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.768636][   T30] audit: type=1326 audit(2000000063.143:5290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.792350][   T30] audit: type=1326 audit(2000000063.143:5291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6a1637bad0 code=0x7ffc0000
[  107.815908][   T30] audit: type=1326 audit(2000000063.143:5292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f6a1637bc1f code=0x7ffc0000
[  107.839146][   T30] audit: type=1326 audit(2000000063.143:5293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f6a1637d169 code=0x7ffc0000
[  107.873418][   T30] audit: type=1326 audit(2000000063.253:5294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6684 comm="syz.3.1180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f6a1637bb7c code=0x7ffc0000
[  107.923130][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.935061][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.006418][ T6715] loop0: detected capacity change from 0 to 512
[  108.013343][ T6715] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  108.027653][ T6718] FAULT_INJECTION: forcing a failure.
[  108.027653][ T6718] name failslab, interval 1, probability 0, space 0, times 0
[  108.040454][ T6718] CPU: 0 UID: 0 PID: 6718 Comm: syz.2.1192 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  108.040567][ T6718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  108.040582][ T6718] Call Trace:
[  108.040590][ T6718]  <TASK>
[  108.040599][ T6718]  dump_stack_lvl+0xf2/0x150
[  108.040627][ T6718]  dump_stack+0x15/0x1a
[  108.040648][ T6718]  should_fail_ex+0x24a/0x260
[  108.040740][ T6718]  ? legacy_init_fs_context+0x31/0x70
[  108.040772][ T6718]  should_failslab+0x8f/0xb0
[  108.040802][ T6718]  __kmalloc_cache_noprof+0x4e/0x320
[  108.040877][ T6718]  legacy_init_fs_context+0x31/0x70
[  108.040979][ T6718]  alloc_fs_context+0x3fb/0x4e0
[  108.041010][ T6718]  fs_context_for_mount+0x21/0x30
[  108.041038][ T6718]  do_new_mount+0xf3/0x690
[  108.041070][ T6718]  path_mount+0x49b/0xb30
[  108.041147][ T6718]  __se_sys_mount+0x27f/0x2d0
[  108.041176][ T6718]  ? fput+0x1c4/0x200
[  108.041199][ T6718]  __x64_sys_mount+0x67/0x80
[  108.041269][ T6718]  x64_sys_call+0x2c84/0x2dc0
[  108.041305][ T6718]  do_syscall_64+0xc9/0x1c0
[  108.041352][ T6718]  ? clear_bhb_loop+0x55/0xb0
[  108.041379][ T6718]  ? clear_bhb_loop+0x55/0xb0
[  108.041406][ T6718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.041432][ T6718] RIP: 0033:0x7f6bbf4fd169
[  108.041447][ T6718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.041502][ T6718] RSP: 002b:00007f6bbdb61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  108.041522][ T6718] RAX: ffffffffffffffda RBX: 00007f6bbf715fa0 RCX: 00007f6bbf4fd169
[  108.041534][ T6718] RDX: 0000400000000040 RSI: 0000400000000000 RDI: 0000000000000000
[  108.041557][ T6718] RBP: 00007f6bbdb61090 R08: 0000400000000140 R09: 0000000000000000
[  108.041569][ T6718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.041580][ T6718] R13: 0000000000000000 R14: 00007f6bbf715fa0 R15: 00007ffe2c09c878
[  108.041600][ T6718]  </TASK>
[  108.254905][ T6715] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  108.290730][ T6715] EXT4-fs (loop0): 1 truncate cleaned up
[  108.306873][ T6715] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.315577][ T6726] batman_adv: batadv0: Interface deactivated: dummy0
[  108.326905][ T6726] batman_adv: batadv0: Removing interface: dummy0
[  108.341416][ T6726] bridge_slave_0: left allmulticast mode
[  108.347123][ T6726] bridge_slave_0: left promiscuous mode
[  108.352897][ T6726] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.364276][ T6726] bridge_slave_1: left allmulticast mode
[  108.370006][ T6726] bridge_slave_1: left promiscuous mode
[  108.375887][ T6726] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.387197][ T6726] bond0: (slave bond_slave_1): Releasing backup interface
[  108.400678][ T6726] team0: Port device team_slave_0 removed
[  108.419935][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.421516][ T6726] team0: Port device team_slave_1 removed
[  108.436664][ T6726] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.444343][ T6726] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.459578][ T6726] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.467154][ T6726] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.477009][ T6735] FAULT_INJECTION: forcing a failure.
[  108.477009][ T6735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.490162][ T6735] CPU: 0 UID: 0 PID: 6735 Comm: syz.5.1197 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  108.490192][ T6735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  108.490204][ T6735] Call Trace:
[  108.490211][ T6735]  <TASK>
[  108.490227][ T6735]  dump_stack_lvl+0xf2/0x150
[  108.490293][ T6735]  dump_stack+0x15/0x1a
[  108.490319][ T6735]  should_fail_ex+0x24a/0x260
[  108.490354][ T6735]  should_fail+0xb/0x10
[  108.490394][ T6735]  should_fail_usercopy+0x1a/0x20
[  108.490502][ T6735]  _copy_to_user+0x20/0xa0
[  108.490525][ T6735]  simple_read_from_buffer+0xa0/0x110
[  108.490556][ T6735]  proc_fail_nth_read+0xf9/0x140
[  108.490592][ T6735]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.490663][ T6735]  vfs_read+0x19b/0x6f0
[  108.490693][ T6735]  ? __rcu_read_unlock+0x4e/0x70
[  108.490755][ T6735]  ? __fget_files+0x17c/0x1c0
[  108.490827][ T6735]  ksys_read+0xe8/0x1b0
[  108.490861][ T6735]  __x64_sys_read+0x42/0x50
[  108.490891][ T6735]  x64_sys_call+0x2874/0x2dc0
[  108.490984][ T6735]  do_syscall_64+0xc9/0x1c0
[  108.491022][ T6735]  ? clear_bhb_loop+0x55/0xb0
[  108.491123][ T6735]  ? clear_bhb_loop+0x55/0xb0
[  108.491157][ T6735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.491341][ T6735] RIP: 0033:0x7f00c4e8bb7c
[  108.491360][ T6735] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  108.491382][ T6735] RSP: 002b:00007f00c34f1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  108.491404][ T6735] RAX: ffffffffffffffda RBX: 00007f00c50a5fa0 RCX: 00007f00c4e8bb7c
[  108.491419][ T6735] RDX: 000000000000000f RSI: 00007f00c34f10a0 RDI: 0000000000000007
[  108.491433][ T6735] RBP: 00007f00c34f1090 R08: 0000000000000000 R09: 0000000000000000
[  108.491448][ T6735] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  108.491496][ T6735] R13: 0000000000000000 R14: 00007f00c50a5fa0 R15: 00007ffd32410f08
[  108.491515][ T6735]  </TASK>
[  108.715928][ T6737] loop5: detected capacity change from 0 to 512
[  108.729621][ T6733] netlink: 'syz.0.1196': attribute type 11 has an invalid length.
[  108.735414][ T6737] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  108.758195][ T6737] EXT4-fs (loop5): 1 truncate cleaned up
[  108.765923][ T6737] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.791531][ T6737] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  108.791531][ T6737] �?�D�[
[  108.838147][ T6748] loop1: detected capacity change from 0 to 512
[  108.841055][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.853823][ T6748] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  108.881653][ T6748] EXT4-fs (loop1): 1 truncate cleaned up
[  108.892797][ T3378] IPVS: starting estimator thread 0...
[  108.898864][ T6748] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.925136][ T6759] loop2: detected capacity change from 0 to 1764
[  108.955937][ T6764] FAULT_INJECTION: forcing a failure.
[  108.955937][ T6764] name failslab, interval 1, probability 0, space 0, times 0
[  108.968798][ T6764] CPU: 0 UID: 0 PID: 6764 Comm: syz.5.1202 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  108.968830][ T6764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  108.968843][ T6764] Call Trace:
[  108.968848][ T6764]  <TASK>
[  108.968855][ T6764]  dump_stack_lvl+0xf2/0x150
[  108.968883][ T6764]  dump_stack+0x15/0x1a
[  108.968904][ T6764]  should_fail_ex+0x24a/0x260
[  108.968938][ T6764]  should_failslab+0x8f/0xb0
[  108.968973][ T6764]  kmem_cache_alloc_noprof+0x52/0x320
[  108.969000][ T6764]  ? vm_area_dup+0x2c/0x130
[  108.969030][ T6764]  vm_area_dup+0x2c/0x130
[  108.969073][ T6764]  __split_vma+0xf7/0x6a0
[  108.969105][ T6764]  vma_modify+0x17d/0x1e0
[  108.969140][ T6764]  vma_modify_flags+0xf1/0x120
[  108.969178][ T6764]  mlock_fixup+0x113/0x450
[  108.969211][ T6764]  apply_vma_lock_flags+0x194/0x240
[  108.969247][ T6764]  do_mlock+0x3f4/0x570
[  108.969273][ T6764]  ? __secure_computing+0x9f/0x1c0
[  108.969299][ T6764]  __x64_sys_mlock2+0x72/0x90
[  108.969329][ T6764]  x64_sys_call+0x971/0x2dc0
[  108.969362][ T6764]  do_syscall_64+0xc9/0x1c0
[  108.969397][ T6764]  ? clear_bhb_loop+0x55/0xb0
[  108.969424][ T6764]  ? clear_bhb_loop+0x55/0xb0
[  108.969451][ T6764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.969490][ T6764] RIP: 0033:0x7f00c4e8d169
[  108.969509][ T6764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.969530][ T6764] RSP: 002b:00007f00c34f1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000145
[  108.969552][ T6764] RAX: ffffffffffffffda RBX: 00007f00c50a5fa0 RCX: 00007f00c4e8d169
[  108.969566][ T6764] RDX: 0000000000000000 RSI: 0000000000009000 RDI: 0000400000ff5000
[  108.969580][ T6764] RBP: 00007f00c34f1090 R08: 0000000000000000 R09: 0000000000000000
[  108.969591][ T6764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.969602][ T6764] R13: 0000000000000000 R14: 00007f00c50a5fa0 R15: 00007ffd32410f08
[  108.969620][ T6764]  </TASK>
[  109.184785][ T6756] IPVS: using max 2304 ests per chain, 115200 per kthread
[  109.205600][ T6759] loop2: detected capacity change from 0 to 512
[  109.214163][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.225050][ T6759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.238717][ T6759] ext4 filesystem being mounted at /222/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.242143][ T6774] loop1: detected capacity change from 0 to 128
[  109.287257][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.296782][ T6774] vfat: Unknown parameter '0xffffffffffffffff'
[  109.422577][ T6776] loop3: detected capacity change from 0 to 512
[  109.445471][ T6776] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.458092][ T6776] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.131718][ T6774] netlink: 'syz.1.1209': attribute type 11 has an invalid length.
[  110.192683][ T6774] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  110.261542][ T6822] loop0: detected capacity change from 0 to 512
[  110.300827][ T6822] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  110.337515][ T6822] EXT4-fs (loop0): 1 truncate cleaned up
[  110.376724][ T6822] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.427583][ T6822] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  110.427583][ T6822] �?�D�[
[  110.519552][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.591590][ T6856] loop1: detected capacity change from 0 to 128
[  110.609282][ T6856] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  110.624057][ T6856] ext4 filesystem being mounted at /321/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  110.685057][ T3304] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.703772][ T6860] loop0: detected capacity change from 0 to 1764
[  110.716572][ T6863] loop2: detected capacity change from 0 to 128
[  110.730184][ T6863] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  110.750963][ T6860] __nla_validate_parse: 18 callbacks suppressed
[  110.750983][ T6860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1220'.
[  110.766464][ T6860] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1220'.
[  110.778440][ T6863] ext4 filesystem being mounted at /229/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  110.828024][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.871689][ T6860] loop0: detected capacity change from 0 to 512
[  110.892663][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.913981][ T6860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.951368][ T6894] loop3: detected capacity change from 0 to 512
[  110.952857][ T6860] ext4 filesystem being mounted at /225/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.973928][ T6894] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  111.019309][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.035150][ T6894] EXT4-fs (loop3): 1 truncate cleaned up
[  111.044310][ T6894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.073225][ T6894] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  111.073225][ T6894] �?�D�[
[  111.100466][ T6913] FAULT_INJECTION: forcing a failure.
[  111.100466][ T6913] name failslab, interval 1, probability 0, space 0, times 0
[  111.113222][ T6913] CPU: 1 UID: 0 PID: 6913 Comm: syz.0.1234 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  111.113254][ T6913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  111.113270][ T6913] Call Trace:
[  111.113324][ T6913]  <TASK>
[  111.113334][ T6913]  dump_stack_lvl+0xf2/0x150
[  111.113368][ T6913]  dump_stack+0x15/0x1a
[  111.113393][ T6913]  should_fail_ex+0x24a/0x260
[  111.113429][ T6913]  should_failslab+0x8f/0xb0
[  111.113518][ T6913]  __kmalloc_noprof+0xab/0x3f0
[  111.113544][ T6913]  ? security_perf_event_alloc+0x45/0x120
[  111.113743][ T6913]  security_perf_event_alloc+0x45/0x120
[  111.113781][ T6913]  perf_event_alloc+0x10e1/0x12d0
[  111.113809][ T6913]  __se_sys_perf_event_open+0x7f2/0x2230
[  111.113836][ T6913]  ? vfs_write+0x644/0x920
[  111.113985][ T6913]  __x64_sys_perf_event_open+0x67/0x80
[  111.114009][ T6913]  x64_sys_call+0x1deb/0x2dc0
[  111.114038][ T6913]  do_syscall_64+0xc9/0x1c0
[  111.114083][ T6913]  ? clear_bhb_loop+0x55/0xb0
[  111.114115][ T6913]  ? clear_bhb_loop+0x55/0xb0
[  111.114213][ T6913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.114248][ T6913] RIP: 0033:0x7f7cfd0fd169
[  111.114326][ T6913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.114349][ T6913] RSP: 002b:00007f7cfb767038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  111.114373][ T6913] RAX: ffffffffffffffda RBX: 00007f7cfd315fa0 RCX: 00007f7cfd0fd169
[  111.114388][ T6913] RDX: bfffffffffffffff RSI: 0000000000000000 RDI: 0000400000000180
[  111.114450][ T6913] RBP: 00007f7cfb767090 R08: 0000000000000000 R09: 0000000000000000
[  111.114462][ T6913] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  111.114479][ T6913] R13: 0000000000000000 R14: 00007f7cfd315fa0 R15: 00007fffecc76cf8
[  111.114528][ T6913]  </TASK>
[  111.123923][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.441990][ T6969] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1243'.
[  111.490427][ T6966] loop0: detected capacity change from 0 to 512
[  111.496347][ T6983] loop3: detected capacity change from 0 to 512
[  111.501178][ T6966] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  111.504253][ T6983] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  111.529049][ T6983] EXT4-fs (loop3): 1 truncate cleaned up
[  111.536563][ T6983] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.554610][ T6983] 9pnet: Could not find request transport: fd���ٝIv7�i�n���|`��f���wg��{�v�Y�ٟ$bD��lc��ڿ[ˋS//N%Q���WR-wsyq�(Z�n_��H?K�H�z�/_9?Y.�\��c���|����f��\�8}���NM<ߑ8��n}4w��k�\{c�̵w�6)�o��C��;�d�����@]:��bCؔR��F��D)VO�@��iWl�J�Ry���
[  111.554610][ T6983] �?�D�[
[  111.669335][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.859789][ T7019] loop0: detected capacity change from 0 to 512
[  111.911230][ T7019] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.923928][ T7019] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.939046][ T7019] EXT4-fs error (device loop0): ext4_empty_dir:3094: inode #12: comm syz.0.1248: invalid size
[  111.999065][ T7027] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1255'.
[  112.201326][ T7036] loop2: detected capacity change from 0 to 128
[  112.226953][ T7036] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.241535][ T7036] ext4 filesystem being mounted at /234/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  112.358703][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.630272][ T7050] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1263'.
[  112.731333][   T30] kauditd_printk_skb: 224 callbacks suppressed
[  112.731352][   T30] audit: type=1326 audit(2000000068.388:5519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7053 comm="syz.5.1265" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00c4e8d169 code=0x0
[  112.833054][ T7066] loop2: detected capacity change from 0 to 1024
[  112.840159][ T7066] ext4: Unknown parameter 'obj_user'
[  112.903789][   T30] audit: type=1326 audit(2000000068.558:5520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  112.937241][   T30] audit: type=1326 audit(2000000068.588:5521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  112.960637][   T30] audit: type=1326 audit(2000000068.588:5522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  112.984067][   T30] audit: type=1326 audit(2000000068.588:5523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7076 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f6bbf52fa25 code=0x7ffc0000
[  113.007496][   T30] audit: type=1326 audit(2000000068.588:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  113.030759][   T30] audit: type=1326 audit(2000000068.588:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  113.054225][   T30] audit: type=1326 audit(2000000068.588:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  113.077707][   T30] audit: type=1326 audit(2000000068.588:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  113.101226][   T30] audit: type=1326 audit(2000000068.588:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7074 comm="syz.2.1271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bbf4fd169 code=0x7ffc0000
[  113.239599][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.630149][ T7105] loop5: detected capacity change from 0 to 1024
[  113.637025][ T7105] ext4: Unknown parameter 'obj_user'
[  113.774103][ T7117] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1287'.
[  113.825988][ T7128] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1292'.
[  113.832852][ T7125] ALSA: seq fatal error: cannot create timer (-19)
[  113.988545][ T7145] program syz.2.1296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.999824][ T7144] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1300'.
[  114.044869][ T7151] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1303'.
[  114.127668][ T7157] loop2: detected capacity change from 0 to 128
[  114.136123][ T7157] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  114.148639][ T7157] ext4 filesystem being mounted at /251/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  114.194925][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  114.233216][ T7165] FAULT_INJECTION: forcing a failure.
[  114.233216][ T7165] name failslab, interval 1, probability 0, space 0, times 0
[  114.246074][ T7165] CPU: 1 UID: 0 PID: 7165 Comm: syz.2.1309 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  114.246105][ T7165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.246120][ T7165] Call Trace:
[  114.246127][ T7165]  <TASK>
[  114.246136][ T7165]  dump_stack_lvl+0xf2/0x150
[  114.246169][ T7165]  dump_stack+0x15/0x1a
[  114.246190][ T7165]  should_fail_ex+0x24a/0x260
[  114.246221][ T7165]  should_failslab+0x8f/0xb0
[  114.246257][ T7165]  kmem_cache_alloc_noprof+0x52/0x320
[  114.246281][ T7165]  ? mas_alloc_nodes+0x1e3/0x490
[  114.246322][ T7165]  mas_alloc_nodes+0x1e3/0x490
[  114.246363][ T7165]  mas_preallocate+0x44a/0x650
[  114.246403][ T7165]  mmap_region+0x96d/0x1620
[  114.246452][ T7165]  do_mmap+0x98a/0xc30
[  114.246490][ T7165]  vm_mmap_pgoff+0x16d/0x2d0
[  114.246530][ T7165]  ksys_mmap_pgoff+0xd0/0x330
[  114.246561][ T7165]  ? syscall_trace_enter+0x104/0x1f0
[  114.246588][ T7165]  ? fpregs_assert_state_consistent+0x83/0xa0
[  114.246613][ T7165]  x64_sys_call+0x1940/0x2dc0
[  114.246638][ T7165]  do_syscall_64+0xc9/0x1c0
[  114.246668][ T7165]  ? clear_bhb_loop+0x55/0xb0
[  114.246698][ T7165]  ? clear_bhb_loop+0x55/0xb0
[  114.246730][ T7165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.246761][ T7165] RIP: 0033:0x7f6bbf4fd1a3
[  114.246779][ T7165] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  114.246798][ T7165] RSP: 002b:00007f6bbdb60e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  114.246817][ T7165] RAX: ffffffffffffffda RBX: 0000000000000448 RCX: 00007f6bbf4fd1a3
[  114.246829][ T7165] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  114.246843][ T7165] RBP: 0000400000000402 R08: 00000000ffffffff R09: 0000000000000000
[  114.246856][ T7165] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000006
[  114.246870][ T7165] R13: 00007f6bbdb60ef0 R14: 00007f6bbdb60eb0 R15: 0000400000000880
[  114.246890][ T7165]  </TASK>
[  114.503418][ T7175] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1314'.
[  114.545036][ T7180] loop3: detected capacity change from 0 to 256
[  114.773278][ T7200] FAULT_INJECTION: forcing a failure.
[  114.773278][ T7200] name failslab, interval 1, probability 0, space 0, times 0
[  114.786339][ T7200] CPU: 0 UID: 0 PID: 7200 Comm: syz.0.1324 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  114.786389][ T7200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.786401][ T7200] Call Trace:
[  114.786407][ T7200]  <TASK>
[  114.786415][ T7200]  dump_stack_lvl+0xf2/0x150
[  114.786448][ T7200]  dump_stack+0x15/0x1a
[  114.786543][ T7200]  should_fail_ex+0x24a/0x260
[  114.786573][ T7200]  ? __hw_addr_add_ex+0x15a/0x430
[  114.786606][ T7200]  should_failslab+0x8f/0xb0
[  114.786642][ T7200]  __kmalloc_cache_noprof+0x4e/0x320
[  114.786730][ T7200]  ? __memcg_slab_post_alloc_hook+0x510/0x660
[  114.786763][ T7200]  __hw_addr_add_ex+0x15a/0x430
[  114.786804][ T7200]  ? __pfx_vlan_setup+0x10/0x10
[  114.786839][ T7200]  dev_addr_init+0xb2/0x120
[  114.786946][ T7200]  ? __pfx_vlan_setup+0x10/0x10
[  114.786980][ T7200]  alloc_netdev_mqs+0x225/0xab0
[  114.787012][ T7200]  rtnl_create_link+0x232/0x720
[  114.787119][ T7200]  rtnl_newlink_create+0x133/0x5d0
[  114.787155][ T7200]  ? ns_capable+0x7d/0xb0
[  114.787182][ T7200]  ? netlink_ns_capable+0x88/0xa0
[  114.787217][ T7200]  rtnl_newlink+0xe9f/0x1250
[  114.787295][ T7200]  ? bsearch+0x98/0xc0
[  114.787318][ T7200]  ? fixup_exception+0x7c0/0xca0
[  114.787389][ T7200]  ? memcg_list_lru_alloc+0xce/0x4e0
[  114.787416][ T7200]  ? __rcu_read_unlock+0x4e/0x70
[  114.787444][ T7200]  ? avc_has_perm_noaudit+0x1cc/0x210
[  114.787468][ T7200]  ? selinux_capable+0x1f2/0x260
[  114.787536][ T7200]  ? security_capable+0x81/0x90
[  114.787569][ T7200]  ? ns_capable+0x7d/0xb0
[  114.787592][ T7200]  ? __pfx_rtnl_newlink+0x10/0x10
[  114.787632][ T7200]  rtnetlink_rcv_msg+0x651/0x710
[  114.787658][ T7200]  ? ref_tracker_free+0x3a5/0x410
[  114.787688][ T7200]  netlink_rcv_skb+0x12c/0x230
[  114.787730][ T7200]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  114.787794][ T7200]  rtnetlink_rcv+0x1c/0x30
[  114.787824][ T7200]  netlink_unicast+0x599/0x670
[  114.787861][ T7200]  netlink_sendmsg+0x5cc/0x6e0
[  114.787906][ T7200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.787945][ T7200]  __sock_sendmsg+0x140/0x180
[  114.787978][ T7200]  ____sys_sendmsg+0x326/0x4b0
[  114.788010][ T7200]  __sys_sendmsg+0x19d/0x230
[  114.788088][ T7200]  __x64_sys_sendmsg+0x46/0x50
[  114.788119][ T7200]  x64_sys_call+0x2734/0x2dc0
[  114.788149][ T7200]  do_syscall_64+0xc9/0x1c0
[  114.788179][ T7200]  ? clear_bhb_loop+0x55/0xb0
[  114.788244][ T7200]  ? clear_bhb_loop+0x55/0xb0
[  114.788293][ T7200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.788326][ T7200] RIP: 0033:0x7f7cfd0fd169
[  114.788344][ T7200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.788365][ T7200] RSP: 002b:00007f7cfb767038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.788386][ T7200] RAX: ffffffffffffffda RBX: 00007f7cfd315fa0 RCX: 00007f7cfd0fd169
[  114.788414][ T7200] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 0000000000000003
[  114.788429][ T7200] RBP: 00007f7cfb767090 R08: 0000000000000000 R09: 0000000000000000
[  114.788443][ T7200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.788454][ T7200] R13: 0000000000000000 R14: 00007f7cfd315fa0 R15: 00007fffecc76cf8
[  114.788472][ T7200]  </TASK>
[  115.260638][ T7219] netlink: 'syz.3.1332': attribute type 3 has an invalid length.
[  115.350523][ T7219] loop3: detected capacity change from 0 to 1024
[  115.357758][ T7219] EXT4-fs: Ignoring removed nobh option
[  115.363447][ T7219] EXT4-fs: Ignoring removed bh option
[  115.368910][ T7219] EXT4-fs: Ignoring removed bh option
[  115.387954][ T7219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.425000][ T3312] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.596665][ T7250] loop2: detected capacity change from 0 to 1024
[  115.613342][ T7250] ext4: Unknown parameter 'obj_user'
[  115.864015][ T3381] ==================================================================
[  115.872132][ T3381] BUG: KCSAN: data-race in p9_conn_cancel / p9_write_work
[  115.879282][ T3381] 
[  115.881610][ T3381] write to 0xffff888117ec8a28 of 4 bytes by task 3378 on cpu 1:
[  115.889248][ T3381]  p9_conn_cancel+0x89/0x400
[  115.893861][ T3381]  p9_read_work+0x765/0x8c0
[  115.898413][ T3381]  process_scheduled_works+0x4db/0xa20
[  115.903886][ T3381]  worker_thread+0x51d/0x6f0
[  115.908575][ T3381]  kthread+0x4ae/0x520
[  115.912659][ T3381]  ret_from_fork+0x4b/0x60
[  115.917089][ T3381]  ret_from_fork_asm+0x1a/0x30
[  115.921873][ T3381] 
[  115.924200][ T3381] read to 0xffff888117ec8a28 of 4 bytes by task 3381 on cpu 0:
[  115.931746][ T3381]  p9_write_work+0x26/0x750
[  115.936278][ T3381]  process_scheduled_works+0x4db/0xa20
[  115.941748][ T3381]  worker_thread+0x51d/0x6f0
[  115.946355][ T3381]  kthread+0x4ae/0x520
[  115.950434][ T3381]  ret_from_fork+0x4b/0x60
[  115.954865][ T3381]  ret_from_fork_asm+0x1a/0x30
[  115.959642][ T3381] 
[  115.961965][ T3381] value changed: 0x00000000 -> 0xfffffffb
[  115.967687][ T3381] 
[  115.970010][ T3381] Reported by Kernel Concurrency Sanitizer on:
[  115.976159][ T3381] CPU: 0 UID: 0 PID: 3381 Comm: kworker/0:4 Not tainted 6.14.0-rc5-syzkaller-00214-g21e4543a2e2f #0
[  115.986930][ T3381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  115.997002][ T3381] Workqueue: events p9_write_work
[  116.002062][ T3381] ==================================================================