last executing test programs:

6.773273758s ago: executing program 0 (id=3033):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x1100, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x13f, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffd, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}, r1}}, 0x48)
r2 = dup2(r0, r0)
socket$inet_udp(0x2, 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f00000008c0)={0x16, 0x98, 0xfa00, {0x0, 0x2, r1, 0x10, 0x0, @in={0x2, 0x4e22, @loopback}}}, 0xa0)

6.733026828s ago: executing program 0 (id=3037):
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
read(r2, &(0x7f0000000740)=""/257, 0x129)

6.702156778s ago: executing program 0 (id=3038):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x8, 0x60000000}, 0x1e)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$setsig(0x4203, r3, 0x3, &(0x7f0000000100)={0x2a, 0x7, 0x6})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="40000000100001042cbd70000000000024db8adf", @ANYRES32=0x0, @ANYBLOB="9101000000000000180012800b00010069703667726500000800028004001200080004"], 0x40}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x40, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
creat(&(0x7f00000003c0)='./file0\x00', 0x1bf)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="6c000000480000000000020000002c0001801400018008000100e000000108000200ac1414000c00028005000100000000000600034000040000240002801400018008000100e000000108000200e00000010c00028005000100000000000800074000"/108], 0x6c}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
utimes(0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a0b04000000000000000002000000440004802c0001800b0001006e756d67656e00001c000280080002400000000208000340000000000800014000000015140001800b00010072656a6563740000040002800900010073797a30000000000900020073797a32"], 0x98}}, 0x0)

6.631133557s ago: executing program 0 (id=3042):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001100)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0xee01, <r1=>0xffffffffffffffff}}, './file0\x00'})
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x800000, &(0x7f0000000340)={[{@fat=@allow_utime={'allow_utime', 0x3d, 0x40}}, {@dots}, {@dots}, {@nodots}, {@dots}, {@fat=@nocase}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, r1}}, {@fat=@showexec}, {@fat=@showexec}]}, 0x1, 0x15c, &(0x7f0000000480)="$eJzs3LHq01AUB+ATrX9bXTqLQ8DFqahPoEgFMaAoHXRSqC6tFOwSnfoovqAgnbpdaaNWS6s4JCnm+5Ye+PXScynJ5YYkr2++n00Xy3eLZ+voZ1n07kcemyyGcSkuR2UVAMD/ZJNSfE0ppaurGHyOlFLbHQEAdbP+A0D3WP8BoHus/wDQPS9evnryoCjGz/O8H/FlVU7KSfVZ5Y8eF+M7+c5wP2pdlpPd3YHZNr9b5fnv+ZW49n38vaP5Rdy+VeXb7OHT4iC/HtMG5g8AAABdMMp/Ora/j9HoVF5Vv1wfONi/9+JGr7FpAAD/YPnx0+zNfP72w5+Li/j7d2osBq3+enPF9h85gzbqLn68WOJc+lEcKdo9LwH12x/0bXcCAAAAAAAAAAAAAACc0sTjRG3PEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59CwAA//+joEvh")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x800090, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x6, 0x2d1, &(0x7f0000000740)="$eJzs3T9rJGUcB/DfbGb/qMVuYSWCA1pYHZdrbTbIHYipPLY4LTR4dyDZRUgg4h9cU4mdjaWvQBB8ITZ2loKtYGeEwMjMzmR3k3GzkWxE8/kUyZOZ5zvP73lmkkyTJ++9ONl/nMXT489+iV4vidawG3GSxCBaUfsilgy/DgDgv+wkz+P3fKbh9M9frcj2NlgXALA5l/z+r6Tlx0dFjx9urjYAYDMePnr7zZ3d3ftvZVkvHky+PBolEVF8np3feRofxDiexN3ox2lE+aLQjvJtoWg+yPN8mmaFQbwymR6NiuTk3R+r6+/8FlHmt6Mfg/LQ2dtGmX9j9/52NrOQnxZ1PFuNPyzy96Ifz5+Fl/L3GvIx6sSrLy/Ufyf68dP78WGM43FZxDz/+XaWvZ5/88en7xTlFflkejTqlv3m8q168OkN3yMAAAAAAAAAAAAAAAAAAAAAAP5/7lR753Sj3L+nOFTtv7N1WnzRjqw2WN6fZ5ZP6gvN9weKVp7n0zy+rffXuZtlWV51nOfTeCGtNhYEAAAAAAAAAAAAAAAAAACAW+7w40/298bjJwfX0qh3A0gj4s+HEf/0OsOFIy/F6s7dasy98bhVNZf7pItHYqvuk0SsLKOYxDUty2WNZy7UXDW++74xVczoMI2mU73LB203j3XFxkft2To29qmfrv29pHkNu2fF94obF+dvXCeaR2/HuSOdv6uwfhTXm06n8VT/ysvSea5sTFf0iWTV98Vrv87KXpjFUp9OuaqN8XbVWIifezbWep6jN4tf/FmR2K0DAAAAAAAAAAAAAAAAAAA2av7Xvw0nj1dGW3l3Y2UBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwI2a////dRrpcniNVCcODv+tuQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHB7/BUAAP//vaZV2Q==") (async)
write$binfmt_script(r2, &(0x7f00000008c0), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
open(&(0x7f0000000040)='.\x00', 0x0, 0x0) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r4, &(0x7f0000000000)="fa", 0xfffffdef) (async)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_clone(0x80280, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
recvmmsg(r2, &(0x7f0000001080)=[{{&(0x7f0000000640)=@alg, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000c40)=""/239, 0xef}], 0x1, &(0x7f0000000d40)=""/159, 0x9f}, 0x3}, {{&(0x7f0000000e00)=@l2tp={0x2, 0x0, @empty}, 0x80, &(0x7f0000001040)=[{&(0x7f0000000700)}, {&(0x7f0000000e80)=""/244, 0xf4}, {&(0x7f0000000f80)=""/57, 0x39}, {&(0x7f0000000fc0)=""/84, 0x54}], 0x4, &(0x7f00000011c0)=""/146, 0x92}, 0x9}], 0x2, 0x10021, &(0x7f0000001280)) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="044aac2f202c5feda71e039a57", 0xd, 0x20000004, 0x0, 0x0) (async)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6) (async)
select(0x40, &(0x7f0000000280)={0x4, 0xdfa2, 0x6, 0x7fff, 0x6, 0x5, 0x8}, &(0x7f00000003c0)={0x6, 0x8, 0x3, 0xe49, 0xe00, 0x8, 0x20, 0xfffffffffffffff7}, &(0x7f0000000400)={0x7, 0x7fffffff, 0x7, 0x0, 0xfffffffffffffff8, 0x9, 0x80000000, 0x3}, &(0x7f0000000600)={0x77359400})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50}, 0x0)
ptrace$setsig(0x4203, r6, 0x3, &(0x7f0000000080)={0x0, 0x0, 0x9})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x8}, 0x18) (async)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0xb)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', @random='\a\x00\x00 \x00'})

5.774148154s ago: executing program 0 (id=3071):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="fa040000000000000000000000000000b70800000f0000007b8af8ff00000000b708008af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70247429e5e2b2d94aba34a", @ANYRES32=r0, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x3b2e, &(0x7f00000000c0)={0x0, 0x2119}, &(0x7f0000000240)=<r1=>0x0, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r2}, &(0x7f0000000800), &(0x7f0000000840)=r3}, 0x20)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000000c0)=@sg0, 0xee00, &(0x7f0000000100)='./file0\x00')

5.468937632s ago: executing program 0 (id=3082):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESOCT], 0x2, 0x6a0, &(0x7f0000000b40)="$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")
r0 = memfd_create(&(0x7f0000001cc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0sr\x95\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\x00\x01\x00\x00\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000000)=ANY=[])
ftruncate(0xffffffffffffffff, 0xff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

5.468656593s ago: executing program 32 (id=3082):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESOCT], 0x2, 0x6a0, &(0x7f0000000b40)="$eJzs3V1rG9kdx/HfyLKteEtY2hJCyMNJ0gWHps5I3jiYFLrqeGRPK2nEzLjYUFjSxl5M5GybpND4Ztc3fYDtG+hdb3rRF1Ho9b6L3pQWlvau0Jsp8yRL0VOc2M7u5vsxuxqd8585Z+Yo82dszRkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABZzpptVy01vfbmlhnPWQv81oT6bGuzupUt3JrarmQl/6lS0cWs6OK3j6ovJP+7ocvZu8uqJC8VHbxz4d373yqXivUndOhV6LgbfPr84NGDbnfnyUvEzujYm3+TVCqWzuVjMiJo3W17oe+16uuu8ULfrK6s2Hc2GqFpeE033A4jt2WcwC1FfmAWnVumurq6bNylbX+zvb5Wb7pF4b3v1Wx7xfxoPhtoSUuhs+E1m157PY1JqpOYe+azn2YBbr1lzO5ed2d52p4kQdWXCapNC6rZtVq1WqtVV+6u3r1n2+WhAjth2T0aijjxDy2+Yk7mxA2cgFKS//9uSU1V1NamtmRG/jglKZCv1pj6XJH/37vjTmy3P/8XWf6i9IO8+pLS/H81e3d1XP4f0xcjk64wqsYaU368n9m0R0ZP9VwHeqQH6qqrHT05gW0bmWsvGWdJn55Mi6/4sy5XbXkK5ctTS/W0xOQlRqta0YpsfagNNRTKqCFPTbkKta1Qkdz0E+UokKu6IvkKZLQoR7dkVNWqVrUsI1dL2pavTbW1rjXV9d84jne1lx735Ql9VBFUHRMw3x9Um7Clcfn/Z59kn9M8/9vk/7dV9jmYz14+nxQDfAnE+fV/v9L01a6dXo8AAAAAAMBJs9Lfvlvp3+6vSIrV8Jqu/aa7BQAAAAAATpCleF6XZSXX/5KuyOL6HwAAAACArxsrvcfOkrSQfqnfOroT6mV+CTBzBl0EAAAAAACvKb3z/+qcFKeTVlyTdazrfwAAAAAA8BXwu7459svFHLtx8Wf9kqSwM2/99d/zCmatw87Wd6z9elJT389jhr4BEDUuWefziXrTlzlJ6TvHvWzlreWTYPbmHfxid9pc/1bwQgfmZvo3MKYDVtLySjl/p890PVvlej7P/MODktKarJWFhtd0lxy/eb+qev18KXK3ol893vu1FPT2c3fPsqSPuw/TvhwmRYf7yUY/GehOafTBOOrLs3S+hfSei1F7fE6Nosnft1sLlnb3ujt2sf8zqu+X+huaNABHbf5GN7Ixu7GQxS4c9GbcT/a/kux/dSkdsoG9D2ato15UX9zzUQMxpheVtBc3s5ibizdV+0e23BuFklX57oxUWxoeg4Fe1Pp7Mf1YWP8ZOhZ9vUhfipq+Y7Gc9OJvyYbG9GL5eL0YGhEAeFN2dUXpWeiK0knMe1mokufdIj0UJ7VXyjvTs/sHg9n92R/jOF1hRirnf5uY2EpFyRl90Urz0Fy2S+VLI87odp5XKhpzRrdfI7slbf3l6BlIebeHevG/OI7vV9N2//BCVv3TQHND7YbN2kxyCO882/9FOgF+4qOdj3Ye12rLK/b7tn23ptl0N/KXGZF7AABDpj9jZ2qE9b6uZxHXH/7rvWxpION9s/eVgiX9XB+rq4e6XTxC4NrorS70fQ3hdnbVqr6rVnPh3fvpc+kGY6u6PfaqLs2lfbG1XuysilUGM/VR7PIpjwIAAGfrxpQ8PDr/Vwby/20tZhGLl0Zedw/m8vzquHdJPy62Or3zH5z00QAA4O3gBl9YC9FvrSDwOh9WV1er9WjDNYHv/NgE3tq6a7x25AbORr297ppO4Ee+4zdNJ9C8t+aGJtzsdPwgMg0/MB1/wdtKn/xu8ke/h26r3o48J+w03XroGsdvR3UnMmte6JjO5g+bXrjhBunKYcd1vIbn1CPPb5vQ3wwcd8mY0HX7Ar01tx15DS9ZbJtO4LXqwbb5id/cbLlmzQ2dwOtEfrbBoi2v3fCDVrrZpXI86vsCAAC8dZ4+P3j0oNvdefLiwrnk0jwrOdSYmOGFOT19nlyVJyXlvIo5ggAA+JI5SuDHWKlyih0CAAAAAAAAAAAAAAAAAAAAAABDpt/SN2JhRuNjZkfdLCj1Sn55Pi/Rpzq6xXBoO9aEJk5/oXTctYpbIg4efT4h+FyvpDj8/TGHZ7aD//yG9E5aoqykfPJtnZswuKex8P3d7IiOjUkqR1bN98ai/Gr/HKYtPP7zmKo4juPJq88PHsO5STs4uFCW9GTuNYbg7M9FAM7W/wMAAP//gWMxDg==")
r0 = memfd_create(&(0x7f0000001cc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc0sr\x95\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\x00\x01\x00\x00\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000000)=ANY=[])
ftruncate(0xffffffffffffffff, 0xff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0'}, 0xb)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.678236111s ago: executing program 3 (id=3142):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="fa040000000000000000000000000000b70800000f0000007b8af8ff00000000b708008af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70247429e5e2b2d94aba34a", @ANYRES32=r0, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x3b2e, &(0x7f00000000c0)={0x0, 0x2119}, &(0x7f0000000240), &(0x7f00000001c0))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000000c0)=@sg0, 0xee00, &(0x7f0000000100)='./file0\x00')

2.618696811s ago: executing program 3 (id=3145):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4c6, &(0x7f00000012c0)="$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")
r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
pwritev2(r0, 0x0, 0x0, 0x7800, 0x0, 0x3)

1.822034397s ago: executing program 2 (id=3153):
r0 = socket(0x10, 0x3, 0x9)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bind$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
r2 = socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000080000000600000005000000000000005da1416a1b85337b173059aa334e977bdeae8a1f4d59ac9b8dde612ed40045749f832fcc25faa62070f0bd", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000000001}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x11, 0xb0}, [@ldst={0x6}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)
sendmsg$key(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xa0}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x0, 0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000011c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func_proto, @fwd]}}, 0x0, 0x32, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$netlink(0x10, 0x3, 0x10)
ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000500)={0x8, "fd061859e5b0597e7e7d0a50ccb971c7c525915d1108f5e4b704216439b6c4a850463e706311e3a2c58267e454a5264a60241aa6594906a03fd5550d6e3e158020e7de49431de4262080f9185d8d5dba56c927d7071c82292f8c9cac22fd2054f88c5bf3fe7e83237cf90de9158cc0d1f776fbbb8835bd53b835363b9b44b08b5200e60bec4ab62b093dc570720ed209dbf3948e8fe618119b2d7d754f5c9954d8bac533c383896c5d8af966822b75a3c0e3f354e715900f699ea4455bd16a65d77e99119a0d410fdc010000000000000043be9761f7cc25bb73d6a37e29c3f5968e2b1875c28aeb9ee92a6d915205e50999abae31b15b2579a3ebd51f01304126ace068e626fe4c8b4c5305e9d6cbef1cd27305394448ad568f8e0cc28d12800e3f22dc4fd0353462b5e2488d96c663899923b29676657dd9bb417d1fe88c29517b92f3178054859b8424003023bddbc856b6887898d027a4ece169d6367fa9f117433f484b9f83e0b5e3a4842e7ee8e5f9f7700450594fdb66a9ff9d5fc43df85de493d61b4ef198975907aa2c777b044c582185c16a6977b1f33d3c8d38cc6042d23cb8db32b4ad3dcb71a3159e1a69ab3484ca04e7b33201bafbc7d098a9aedd470d162922f58108c98b7768d3591425f85b6e1f5d1429c9a219b1b7ca10dd10f8c95cf4a9a0a642ee75bda371cb6067aefc00"})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004006, &(0x7f00000010c0)={[{@jqfmt_vfsold}, {@nouid32}, {@nobh}, {@grpquota}, {@jqfmt_vfsv0}, {@user_xattr, 0x22}], [], 0x2}, 0xc4, 0x475, &(0x7f0000001140)="$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")
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000280)={0x3, 0x9, 0x1, 0x9, 0x6, "7f3d01a8fda6a3ea"})

1.597382967s ago: executing program 5 (id=3154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r2, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x2c, r4, 0x1, 0x0, 0x80000004, {0x1b}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x2c}}, 0x0)

1.575650107s ago: executing program 4 (id=3156):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x2000480, &(0x7f0000001180), 0x1, 0x76f, &(0x7f0000000800)="$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")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x430082, 0x0)
pwritev(r0, &(0x7f0000000180)=[{&(0x7f00000000c0)}], 0x1, 0x5, 0x8)

1.556079336s ago: executing program 5 (id=3158):
getpriority(0x1, 0xfffff72b)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, 0x0, &(0x7f0000000340)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
sendmmsg$inet(r3, &(0x7f0000001c80)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)='+', 0x1}], 0x1}}], 0x1, 0x240080c4)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = getpid()
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x3e, 0x11, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x8}, 0x1320, 0xfffffffb, 0x3, 0x6, 0x0, 0x1, 0xfffb, 0x0, 0x0, 0x0, 0x5}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b040000000000000000020000002800048024000180080001006c6f67001800028008000640000000100c00024073797a5f74756e000900010073797a30000000000900020073797a320000000014000000"], 0x7c}}, 0x0)

1.486608786s ago: executing program 5 (id=3159):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file1\x00')
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xbfd}}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x200, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='ext4_writepages_result\x00', r8}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r9 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r9, 0x29, 0x35, 0x0, 0x0)
bind$inet6(r9, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r9, &(0x7f000000a2c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r10=>r7}, './file0\x00'})
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r12, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r13=>0x0})
sendmsg$nl_route(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="540000001400090525bd70000003000002180d00", @ANYRES32=r13, @ANYBLOB="080001000000000008000200e0000002080009000e00000008000100ac1414"], 0x54}}, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r10, 0x8918, &(0x7f0000000080)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x47, r13})
sendto$inet6(r9, 0x0, 0x0, 0x44000, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.376249436s ago: executing program 4 (id=3161):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff03", 0x2c}], 0x1)

1.347155786s ago: executing program 4 (id=3163):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000200)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000080)=0x10, r3, 0x0, 0x0, 0x1}}, 0x20)

1.302886395s ago: executing program 5 (id=3164):
r0 = gettid()
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r1, &(0x7f0000001240)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
getresuid(&(0x7f0000000780), &(0x7f00000007c0), &(0x7f0000000800))

1.232914735s ago: executing program 4 (id=3165):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)

1.222364065s ago: executing program 4 (id=3166):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setsig(r2, 0xa, 0x13)
fcntl$setlease(r2, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x2000000)

874.700683ms ago: executing program 2 (id=3167):
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='kfree\x00', r3, 0x0, 0x2}, 0x35)
r4 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000140), 0x12)
r5 = openat$cgroup(r1, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000500), 0x12)

728.914303ms ago: executing program 2 (id=3168):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000001900", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)='\'\x00\x00\x00!', 0x5, 0x0, 0x0, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

728.522173ms ago: executing program 2 (id=3169):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x0)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000940))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, 0x0)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendto$inet6(r4, &(0x7f0000000180)="9000000018001f2fb9409b52ffff65580200be04020c060560020b0243000f00ffffff9e00c8388827a685a168d0bf47d32345653602648dcaaf6c26c291214549935ade4a460c20b6ec0cff3959547f500f58ba86c902000f1d012e02000280160012000a000000000000000000000000080000000eceb6b362bb944cf2e70100aba4183b003e5fa424ac4d31c4f7a1", 0x90, 0x0, 0x0, 0xf)
socket$inet_smc(0x2b, 0x1, 0x0)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fbffffff000000000000000018110000", @ANYRESOCT=r3, @ANYRESOCT=r6], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)

598.813243ms ago: executing program 3 (id=3149):
getpriority(0x1, 0xfffff72b)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, 0x0, &(0x7f0000000340)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
sendmmsg$inet(r3, &(0x7f0000001c80)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)='+', 0x1}], 0x1}}], 0x1, 0x240080c4)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = getpid()
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x3e, 0x11, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x8}, 0x1320, 0xfffffffb, 0x3, 0x6, 0x0, 0x1, 0xfffb, 0x0, 0x0, 0x0, 0x5}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b040000000000000000020000002800048024000180080001006c6f67001800028008000640000000100c00024073797a5f74756e000900010073797a30000000000900020073797a320000000014000000"], 0x7c}}, 0x0)

559.556592ms ago: executing program 3 (id=3173):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000), 0x12, &(0x7f0000000080)={0x0}, 0x140}, 0x0)

533.070542ms ago: executing program 3 (id=3175):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_u}]}})

442.410842ms ago: executing program 5 (id=3178):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000001900", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)='\'\x00\x00\x00!', 0x5, 0x0, 0x0, 0x0)
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

431.788162ms ago: executing program 3 (id=3179):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000061db23fb528e8d740059432c542b06f948e6e37d2f622c2f517e29206d04663c6ad69a59c72784c1c46da19c5900"/84], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x3, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="753371320f0fd61f8bd5a92f6ed0696f916ed98201fe5927821b6e5ac81c781e599ace4405328ffd4e3a960a6bdd34703d4e2dae3e47921bb9d5df275318d6b12a7f26f92382d4175299823cafc2f3bb803e473ffe2599e0c368eb1217a3b5505d6aa8b377bf4982f12dd379a34e0876157e3d1ede0a282d4840b41067205a90e116259f4bd66bfff2583ac044ef8f362ffb3be5e2335f8250fd37e63237183ac28285d73643756ff43aac602b2edf7fa97c709f57eace39b43e952a4bc7d5f22f01a0e951", @ANYRES16=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffcc, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x2000)
read(r3, &(0x7f0000000200)=""/209, 0x128)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000480)={0x5, 0x0, 0x1, 'queue0\x00', 0xd08})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000300)={0xa, 0x0, 0x1, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r3, 0x404c534a, &(0x7f0000000400))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000000c0)={0x2d2, 0x101, 0x1, 'queue1\x00', 0x7ff})
tkill(r2, 0x7)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
capset(&(0x7f0000000c00)={0x19980330}, &(0x7f0000000140)={0x0, 0x3, 0x7, 0x0, 0x40, 0x8b})
r5 = socket$inet6(0xa, 0x6, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f00000006c0)={'ip6tnl0\x00', 0x0})
syz_clone(0x10eb22f000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x24001100, 0x0, 0x8, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x5, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
epoll_create1(0x80000)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x8, 0x3, 0x210, 0x0, 0x8, 0xfa04, 0x0, 0x6c02, 0x178, 0x194, 0x194, 0x178, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'sit0\x00', 'ip6_vti0\x00', {}, {}, 0x6, 0x0, 0x4a}, 0x0, 0x98, 0xc0, 0x0, {0x0, 0x74020000}, [@common=@inet=@ecn={{0x28}, {0x10, 0x20, 0x5, 0x8}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0xffff, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x270)

408.560381ms ago: executing program 5 (id=3180):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200), 0x2, 0x570, &(0x7f0000000680)="$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")
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
pause()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = openat(0xffffffffffffff9c, 0x0, 0x103042, 0x112)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000001c0))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3fffffff404})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

370.853791ms ago: executing program 1 (id=3182):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x2000480, &(0x7f0000001180), 0x1, 0x76f, &(0x7f0000000800)="$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")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x430082, 0x0)
pwritev(r0, &(0x7f0000000180)=[{&(0x7f00000000c0)="8434bd9dd5924092ab99748043471a9d4fe33decf955e902a8f452da4f800005595ae89a", 0x24}], 0x1, 0x5, 0x8)

296.885521ms ago: executing program 4 (id=3183):
io_setup(0x3, &(0x7f0000000180))
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="58000000100003040000000000000000000000c8", @ANYRES32=0x0, @ANYBLOB="42420000000000002800128009000100766c616e00000000180002800c0002001f0000001f000000060001000100000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6], 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)

288.056301ms ago: executing program 1 (id=3184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_u}]}})

203.972711ms ago: executing program 1 (id=3185):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000), 0x12, &(0x7f0000000080)={0x0}, 0x140}, 0x0)

180.794711ms ago: executing program 1 (id=3186):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff03", 0x2c}], 0x1)

164.50184ms ago: executing program 1 (id=3187):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{}, [@TCA_NETEM_LOSS={0x4, 0xd}]}}}]}, 0x50}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x10000000000030, 0x0, &(0x7f0000e5f000))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000004d80), 0xffffffffffffffff)
syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r8)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000240), 0x20a401)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r9, 0x89f7, &(0x7f0000000340)={'sit0\x00', 0x0})
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)

118.454281ms ago: executing program 1 (id=3188):
r0 = gettid()
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r1, &(0x7f0000001240)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
getresuid(&(0x7f0000000780), &(0x7f00000007c0), &(0x7f0000000800))

77.90199ms ago: executing program 2 (id=3189):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)={0x2, 0x4, 0x4, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r4, 0x3, '\x00', 0x0, r3, 0x0, 0x80, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = syz_open_dev$vcsa(&(0x7f0000000000), 0x0, 0x200)
io_setup(0x1, &(0x7f0000000440)=<r6=>0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
io_submit(r6, 0x1, &(0x7f00000002c0)=[&(0x7f0000000200)={0xffffff7f00000000, 0x0, 0xa0, 0x7, 0x0, r7, 0x0}])
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r5, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000094}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r10 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f0000010300)=[{0x0}, {&(0x7f0000010380)=""/47, 0x2f}], 0x2)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r12}, 0x10)
open(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r10, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="b4000000", @ANYRES16=r8, @ANYBLOB="000400000000fddbdf253700000008000300", @ANYRES32=r9, @ANYBLOB="0800a0000a00000008009f0005000000050019010d000000080026006c09000008009f000100000008003600901500000800a100b3ebcd31d5c5e105f0a62ba094ac00000005001801240000000800a00000000000080027004740842f050019010d0000000800a100020000000800270002000000080026001117000008002201e701000008002201e2030000080022015b0000000500190107000000080057005600452d"], 0xb4}, 0x1, 0x0, 0x0, 0xa040}, 0x2044800)
write$binfmt_script(r5, &(0x7f0000000100)={'#! ', './file1/file0', [{0x20, '-\'#\xbd!&'}, {0x20, '/dev/vcsa#\x00'}, {0x20, '/dev/vcsa#\x00'}], 0xa, "54eb0ab7338ae120b10e4d57a9d067886bf6d09a96b7725254a5b54513b86eff4196ae83be6af792ac7722116889e97de391664905ad7c8c8eb20335c2668a9ae66aa2bcf15a3533ca8f6cc4ca2cb317275980bbc2bcc2e54bceff9ff26c57c879e7f3ac8c6448fe5c266089c8ebab0560118a26194fd76cb87323bd3f4b47d3"}, 0xb0)

0s ago: executing program 2 (id=3190):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f00000000c0)=@sg0, 0xee00, &(0x7f0000000100)='./file0\x00')

kernel console output (not intermixed with test programs):

a8 ff ff ff 64 c7
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998544][ T9967] RSP: 002b:00007f62aec20e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998565][ T9967] RAX: ffffffffffffffda RBX: 00000000000004ed RCX: 00007f62b05bcde3
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998576][ T9967] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998587][ T9967] RBP: 0000000020000b02 R08: 00000000ffffffff R09: 0000000000000000
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998598][ T9967] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998608][ T9967] R13: 00007f62aec20ef0 R14: 00007f62aec20eb0 R15: 0000000020[  114.751138][T10039] FAULT_INJECTION: forcing a failure.
[  114.751138][T10039] name fail_usercopy, interval 1, probability 0, space 0, times 0
000380
Jan 30 11:21:27 syzkaller kern.warn kernel: [  113.998624][ T9967]  </TASK>
Jan 30 11:21:27 syzkaller k[  114.764315][T10039] CPU: 0 UID: 0 PID: 10039 Comm: syz.0.2588 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  114.764414][T10039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
ern.notice kerne[  114.764426][T10039] Call Trace:
[  114.764505][T10039]  <TASK>
l: [  114.232458[  114.764511][T10039]  dump_stack_lvl+0xf2/0x150
[  114.764534][T10039]  dump_stack+0x15/0x1a
][ T9974] binfmt[  114.764551][T10039]  should_fail_ex+0x24a/0x260
[  114.764579][T10039]  should_fail+0xb/0x10
_misc: register:[  114.764674][T10039]  should_fail_usercopy+0x1a/0x20
[  114.764703][T10039]  strncpy_from_user+0x25/0x210
 failed to insta[  114.764779][T10039]  ? kmem_cache_alloc_noprof+0x18e/0x320
ll interpreter f[  114.764806][T10039]  ? getname_flags+0x81/0x3b0
[  114.764900][T10039]  getname_flags+0xb0/0x3b0
ile ./file0
Jan[  114.764924][T10039]  getname+0x17/0x20
[  114.764954][T10039]  do_sys_openat2+0x67/0x120
 30 11:21:28 syz[  114.764980][T10039]  __x64_sys_openat+0xf3/0x120
[  114.765023][T10039]  x64_sys_call+0x2b30/0x2dc0
kaller kern.noti[  114.765044][T10039]  do_syscall_64+0xc9/0x1c0
[  114.765114][T10039]  ? clear_bhb_loop+0x55/0xb0
ce kernel: [  11[  114.765181][T10039]  ? clear_bhb_loop+0x55/0xb0
4.246105][ T9976[  114.765203][T10039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.765225][T10039] RIP: 0033:0x7f62b05bcda9
] binfmt_misc: r[  114.765237][T10039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.765252][T10039] RSP: 002b:00007f62aec21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
egister: failed [  114.765267][T10039] RAX: ffffffffffffffda RBX: 00007f62b07d5fa0 RCX: 00007f62b05bcda9
[  114.765288][T10039] RDX: 0000000000008042 RSI: 00000000200000c0 RDI: ffffffffffffff9c
to install inter[  114.765298][T10039] RBP: 00007f62aec21090 R08: 0000000000000000 R09: 0000000000000000
[  114.765307][T10039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
preter file ./fi[  114.765316][T10039] R13: 0000000000000000 R14: 00007f62b07d5fa0 R15: 00007ffda6f6e498
[  114.765330][T10039]  </TASK>
le0
Jan 30 11:21:28 syzkaller kern.notice kernel: [  114.254472][ T9974] FAULT_INJECTION: forcing a failure.
Jan 30 11:21:28 syzkaller kern.notice kernel: [  114.254472][ T9974] name fail_usercopy, interval 1, probability 0, space 0, times 0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268726][ T9974] CPU: 1 UID: 0 PID: 9974 Comm: syz.0.2558 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268747][ T9974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268757][ T9974] Call Trace:
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268762][ T9974]  <TASK>
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268769][ T9974]  dump_stack_lvl+0xf2/0x150
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268797][ T9974]  dump_stack+0x15/0x1a
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268835][ T9974]  should_fail_ex+0x24a/0x260
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.268940][ T9974]  shoJan 30 11:21:28 Jan 30 11:21:28 syzkaller kern.wJan 30 11:21:28 Jan 30 11:21:28 Jan 30 11:21:28 Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.518436][ T9994] block device autoloading is deprecated and will be removed.
Jan 30 11:21:28 syzkaller kern.info kernel: [  114.526651][ T9994] syz.4.2569: attempt to access beyond end of device
Jan 30 11:21:28 syzkaller kern.info kernel: [  114.526651][ T9994] md0: rJan 30 11:21:28 syzkaller kern.info kernel: [  114.541457][ T9997] syz.2.2571: attempt to access beyond end of device
Jan 30 11Jan 30 11:21:28 syzkaller kern.notice kernel: [  114.751138][T10039] FAULT_INJECTION: forcing a failure.
Jan 30 11:21:28 syzkaller kern.notice kernel: [  114.751138][T10039] name fail_usercopy, interval 1, probability 0, space 0, times 0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764315][T10039] CPU: 0 UID: 0 PID: 10039 Comm: syz.0.2588 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764414][T10039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764426][T10039] Call Trace:
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764505][T10039]  <TASK>
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764511][T10039]  dump_stack_lvl+0xf2/0x150
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764534][T10039]  dump_stack+0x15/0x1a
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764551][T10039]  should_fail_ex+0x24a/0x260
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764579][T10039]  should_fail+0xb/0x10
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764674][T10039]  should_fail_usercopy+0x1a/0x20
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764703][T10039]  strncpy_from_user+0x25/0x210
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764779][T10039]  ? kmem_cache_alloc_noprof+0x18e/0x320
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764806][T10039]  ? getname_flags+0x81/0x3b0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764900][T10039]  getname_flags+0xb0/0x3b0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764924][T10039]  getname+0x17/0x20
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764954][T10039]  do_sys_[  115.268329][T10029] xt_ecn: cannot match TCP bits for non-tcp packets
openat2+0x67/0x120
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.764980][T10039]  __x64_sys_openat+0xf3/0x120
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765023][T10039]  x64_sys_call+0x2b30/0x2dc0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765044][T10039]  do_syscall_64+0xc9/0x1c0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765114][T10039]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765181][T10039]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765203][T10039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765225][T10039] RIP: 0033:0x7f62b05bcda9
Jan 30 11:21:28 syzkaller kern.warn kernel: [  114.765237][T10039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0fJan 30 11:21:28 Jan 30 11:21:28 Jan 30 11:21:29 syzkaller kern.info kernel: [  115.268329][T10029] xt_ecn: canno[  115.356104][T10016] xt_ecn: cannot match TCP bits for non-tcp packets
t match TCP bits for non-tcp packets
Jan 30 11:21:29 syzkaller kern.info kernel: [  115.356104][T10016] xt_ecn: cannot match TCP bits for non-tcp packets
[  115.635096][   T29] kauditd_printk_skb: 1766 callbacks suppressed
[  115.635172][   T29] audit: type=1400 audit(1738236089.360:27875): avc:  denied  { prog_load } for  pid=10100 comm="syz.3.2613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
Jan 30 11:21:29 [  115.663658][   T29] audit: type=1400 audit(1738236089.360:27876): avc:  denied  { read write } for  pid=3305 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
syzkaller kern.w[  115.689107][   T29] audit: type=1400 audit(1738236089.360:27877): avc:  denied  { map_create } for  pid=10108 comm="syz.2.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
arn kernel: [  1[  115.692941][T10114] FAULT_INJECTION: forcing a failure.
[  115.692941][T10114] name fail_usercopy, interval 1, probability 0, space 0, times 0
15.635096][   T2[  115.709734][   T29] audit: type=1400 audit(1738236089.360:27878): avc:  denied  { prog_load } for  pid=10108 comm="syz.2.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
9] kauditd_print[  115.723916][T10114] CPU: 0 UID: 0 PID: 10114 Comm: syz.2.2617 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  115.723991][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
k_skb: 1766 call[  115.724004][T10114] Call Trace:
backs suppressed[  115.724010][T10114]  <TASK>

Jan 30 11:21:2[  115.724018][T10114]  dump_stack_lvl+0xf2/0x150
9 syzkaller kern[  115.724046][T10114]  dump_stack+0x15/0x1a
.notice kernel: [  115.724118][T10114]  should_fail_ex+0x24a/0x260
[  115.635172][ [  115.724152][T10114]  should_fail+0xb/0x10
  T29] audit: ty[  115.724189][T10114]  should_fail_usercopy+0x1a/0x20
pe=1400 audit(17[  115.724223][T10114]  _copy_from_user+0x1c/0xa0
38236089.360:278[  115.724291][T10114]  kstrtouint_from_user+0x76/0xe0
75): avc:  denie[  115.724324][T10114]  ? 0xffffffff81000000
d  { prog_load }[  115.724337][T10114]  ? selinux_file_permission+0x22a/0x360
 for  pid=10100 [  115.724362][T10114]  proc_fail_nth_write+0x4f/0x150
comm="syz.3.2613[  115.724387][T10114]  ? __pfx_proc_fail_nth_write+0x10/0x10
" scontext=root:[  115.724465][T10114]  vfs_write+0x27d/0x920
sysadm_r:sysadm_[  115.724488][T10114]  ? __fget_files+0x17c/0x1c0
t tcontext=root:[  115.724517][T10114]  ksys_write+0xe8/0x1b0
sysadm_r:sysadm_[  115.724540][T10114]  __x64_sys_write+0x42/0x50
t tclass=bpf per[  115.724588][T10114]  x64_sys_call+0x287e/0x2dc0
missive=0
[  115.724679][T10114]  do_syscall_64+0xc9/0x1c0
[  115.724708][T10114]  ? clear_bhb_loop+0x55/0xb0
[  115.724736][T10114]  ? clear_bhb_loop+0x55/0xb0
[  115.724801][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.724828][T10114] RIP: 0033:0x7f656333b85f
[  115.724842][T10114] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  115.724872][T10114] RSP: 002b:00007f65619a1030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  115.724897][T10114] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f656333b85f
[  115.724910][T10114] RDX: 0000000000000001 RSI: 00007f65619a10a0 RDI: 0000000000000003
[  115.724922][T10114] RBP: 00007f65619a1090 R08: 0000000000000000 R09: 0000000000000000
[  115.724934][T10114] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  115.724946][T10114] R13: 0000000000000000 R14: 00007f6563555fa0 R15: 00007ffd3de3df48
[  115.724964][T10114]  </TASK>
[  115.752828][T10119] audit: audit_backlog=65 > audit_backlog_limit=64
[  115.766562][   T29] audit: type=1400 audit(1738236089.360:27879): avc:  denied  { prog_load } for  pid=10108 comm="syz.2.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[  115.770972][T10119] audit: audit_lost=201 audit_rate_limit=0 audit_backlog_limit=64
[  115.770988][T10119] audit: backlog limit exceeded
[  115.787544][T10119] audit: audit_backlog=65 > audit_backlog_limit=64
[  115.792944][   T29] audit: type=1400 audit(1738236089.360:27880): avc:  denied  { create } for  pid=10108 comm="syz.2.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0
[  116.028827][T10095] xt_ecn: cannot match TCP bits for non-tcp packets
Jan 30 11:21:29 syzkaller kern.notice kernel: [  115.663658][   T29] audit: type=1400 audit(1738236089.360:27876): avc:  denied  { read write } for  pid=3305 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:f
Jan 30 11:21:29 syzkaller kern.notice kernel: [  115.689107][   T29] audit: type=1400 audit(1738236089.360:27877): avc:  denied  { map_create } for  pid=101[  116.098688][T10140] FAULT_INJECTION: forcing a failure.
[  116.098688][T10140] name fail_usercopy, interval 1, probability 0, space 0, times 0
08 comm="syz.2.2[  116.112778][T10140] CPU: 0 UID: 0 PID: 10140 Comm: syz.3.2627 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
616" scontext=ro[  116.112806][T10140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
ot:sysadm_r:sysa[  116.112820][T10140] Call Trace:
[  116.112826][T10140]  <TASK>
dm_t tcontext=ro[  116.112833][T10140]  dump_stack_lvl+0xf2/0x150
ot:sysadm_r:sysa[  116.112897][T10140]  dump_stack+0x15/0x1a
[  116.112920][T10140]  should_fail_ex+0x24a/0x260
[  116.112953][T10140]  should_fail+0xb/0x10
dm_t tclass=bpf [  116.112982][T10140]  should_fail_usercopy+0x1a/0x20
permissive=0
Ja[  116.113078][T10140]  _copy_to_user+0x20/0xa0
n 30 11:21:29 sy[  116.113163][T10140]  simple_read_from_buffer+0xa0/0x110
zkaller kern.not[  116.113183][T10140]  proc_fail_nth_read+0xf9/0x140
ice kernel: [  1[  116.113206][T10140]  ? __pfx_proc_fail_nth_read+0x10/0x10
15.692941][T1011[  116.113227][T10140]  vfs_read+0x19b/0x6f0
4] FAULT_INJECTI[  116.113247][T10140]  ? __rcu_read_unlock+0x4e/0x70
ON: forcing a fa[  116.113323][T10140]  ? __fget_files+0x17c/0x1c0
ilure.
Jan 30 1[  116.113364][T10140]  ksys_read+0xe8/0x1b0
1:21:29 syzkalle[  116.113381][T10140]  __x64_sys_read+0x42/0x50
r kern.notice ke[  116.113398][T10140]  x64_sys_call+0x2874/0x2dc0
rnel: [  115.692[  116.113453][T10140]  do_syscall_64+0xc9/0x1c0
941][T10114] nam[  116.113496][T10140]  ? clear_bhb_loop+0x55/0xb0
e fail_usercopy,[  116.113522][T10140]  ? clear_bhb_loop+0x55/0xb0
 interval 1, pro[  116.113552][T10140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
bability 0, spac[  116.113631][T10140] RIP: 0033:0x7f65e086b7bc
e 0, times 0
Ja[  116.113647][T10140] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
n 30 11:21:29 sy[  116.113667][T10140] RSP: 002b:00007f65deed7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
zkaller kern.not[  116.113687][T10140] RAX: ffffffffffffffda RBX: 00007f65e0a85fa0 RCX: 00007f65e086b7bc
ice kernel: [  1[  116.113776][T10140] RDX: 000000000000000f RSI: 00007f65deed70a0 RDI: 0000000000000003
15.709734][   T2[  116.113789][T10140] RBP: 00007f65deed7090 R08: 0000000000000000 R09: 0000000000000000
9] audit: type=1[  116.113802][T10140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
400 audit(173823[  116.113814][T10140] R13: 0000000000000000 R14: 00007f65e0a85fa0 R15: 00007ffd5e177b18
6089.360:27878):[  116.113899][T10140]  </TASK>
 avc:  denied  { prog_load } for  pid=10108 comm="syz.2.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.723916][T10114] CPU: 0 UID: 0 PID: 10114 Comm: syz.2.2617 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.723991][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724004][T10114] Call Trace:
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724010][T10114]  <TASK>
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724018][T10114]  dump_stack_lvl+0xf2/0x150
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724046][T10114]  dump_stack+0x15/0x1a
Jan 30 11:21:29 syzkaller kern.warn [  116.418044][T10156] FAULT_INJECTION: forcing a failure.
[  116.418044][T10156] name fail_usercopy, interval 1, probability 0, space 0, times 0
kernel: [  115.724118][T10114]  [  116.431459][T10156] CPU: 0 UID: 0 PID: 10156 Comm: syz.2.2634 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  116.431480][T10156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  116.431527][T10156] Call Trace:
[  116.431539][T10156]  <TASK>
[  116.431545][T10156]  dump_stack_lvl+0xf2/0x150
[  116.431568][T10156]  dump_stack+0x15/0x1a
should_fail_ex+0[  116.431585][T10156]  should_fail_ex+0x24a/0x260
x24a/0x260
Jan [  116.431673][T10156]  should_fail+0xb/0x10
[  116.431696][T10156]  should_fail_usercopy+0x1a/0x20
30 11:21:29 syzk[  116.431807][T10156]  _copy_from_user+0x1c/0xa0
[  116.431829][T10156]  kstrtouint_from_user+0x76/0xe0
aller kern.warn [  116.431932][T10156]  ? 0xffffffff81000000
kernel: [  115.7[  116.431971][T10156]  ? selinux_file_permission+0x22a/0x360
24152][T10114]  [  116.432081][T10156]  proc_fail_nth_write+0x4f/0x150
should_fail+0xb/[  116.432102][T10156]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  116.432124][T10156]  vfs_write+0x27d/0x920
0x10
Jan 30 11:[  116.432141][T10156]  ? __pfx_proc_fail_nth_read+0x10/0x10
21:29 syzkaller [  116.432164][T10156]  ? __fget_files+0x17c/0x1c0
kern.warn kernel[  116.432271][T10156]  ksys_write+0xe8/0x1b0
[  116.432348][T10156]  __x64_sys_write+0x42/0x50
: [  115.724189][  116.432367][T10156]  x64_sys_call+0x287e/0x2dc0
[T10114]  should[  116.432390][T10156]  do_syscall_64+0xc9/0x1c0
_fail_usercopy+0[  116.432415][T10156]  ? clear_bhb_loop+0x55/0xb0
x1a/0x20
Jan 30[  116.432485][T10156]  ? clear_bhb_loop+0x55/0xb0
 11:21:29 syzkal[  116.432528][T10156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.432636][T10156] RIP: 0033:0x7f656333b85f
ler kern.warn ke[  116.432649][T10156] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
rnel: [  115.724[  116.432664][T10156] RSP: 002b:00007f65619a1030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
223][T10114]  _c[  116.432680][T10156] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f656333b85f
opy_from_user+0x[  116.432690][T10156] RDX: 0000000000000001 RSI: 00007f65619a10a0 RDI: 0000000000000003
1c/0xa0
Jan 30 [  116.432700][T10156] RBP: 00007f65619a1090 R08: 0000000000000000 R09: 0000000000000000
11:21:29 syzkall[  116.432709][T10156] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
er kern.warn ker[  116.432758][T10156] R13: 0000000000000000 R14: 00007f6563555fa0 R15: 00007ffd3de3df48
nel: [  115.7242[  116.432772][T10156]  </TASK>
91][T10114]  kstrtouint_from_user+0x76/0xe0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724324][T10114]  ? 0xffffffff81000000
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724337][T10114]  ? selinux_file_permission+0x22a/0x360
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724362][T10114]  proc_fail_nth_write+0x4f/0x150
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724387][T10114]  ? __pfx_proc_fail_nth_write+0x10/0x10
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724465][T10114]  vfs_write+0x27d/0x920
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724488][T10114]  ? __fget_files+0x17c/0x1c0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724517][T10114]  ksys_write+0xe8/0x1b0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724540][T10114]  __x64_sys_write+0x42/0x50
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724588][T10114]  x64_sys_call+0x287e/0x2dc0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724679][T10114]  do_syscall_64+0xc9/0x1c0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724708][T10114]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724736][T10114]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724801][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724828][T10114] RIP: 0033:0x7f656333b85f
Jan 30 11:21:29 s[  116.791682][T10181] ip6t_srh: unknown srh match flags  4000
yzkaller kern.warn kernel: [  115.724842][T10114] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724872][T10114] RSP: 002b:00007f65619a1030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724897][T10114] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f656333b85f
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724910][T10114] RDX: 0000000000000001 RSI: 00007f65619a10a0 RDI: 0000000000000003
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724922][T10114] RBP: 00007f65619a1090 R08: 0000000000000000 R09: 0000000000000000
Jan 30 11:21:29 syzkaller kern.warn kernel: [  115.724934][T10114] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
Jan 30 11:21:29 syJan 30 11:21:30 syzkaller kern.notice kernel: [  116.098688][T10140] FAULT_INJECTION: forcing a failure.
Jan 30 11:21:30 syzkaller kern.notice kernel: [  116.098688][T10140] name fail_usercopy, interval 1, probability 0, space 0, times 0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.112778][T10140] CPU: 0 UID: 0 PID: 10140 Comm: syz.3.2627 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.112806][T10140] Hardware name: Google Google Compute Engine/Google Compute [  116.924979][T10202] FAULT_INJECTION: forcing a failure.
[  116.924979][T10202] name failslab, interval 1, probability 0, space 0, times 0
Engine, BIOS Google 12/27/2024
Jan 30 11:21:30 syzkaller kern.w[  116.938874][T10202] CPU: 0 UID: 0 PID: 10202 Comm: syz.0.2651 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
arn kernel: [  1[  116.938905][T10202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
16.112820][T1014[  116.938920][T10202] Call Trace:
[  116.938927][T10202]  <TASK>
0] Call Trace:
[  116.938935][T10202]  dump_stack_lvl+0xf2/0x150
[  116.938967][T10202]  dump_stack+0x15/0x1a
Jan 30 11:21:30 [  116.938993][T10202]  should_fail_ex+0x24a/0x260
syzkaller kern.w[  116.939033][T10202]  should_failslab+0x8f/0xb0
arn kernel: [  1[  116.939064][T10202]  kmem_cache_alloc_noprof+0x52/0x320
[  116.939105][T10202]  ? vm_area_alloc+0x2c/0x130
16.112826][T1014[  116.939134][T10202]  vm_area_alloc+0x2c/0x130
[  116.939161][T10202]  mmap_region+0x819/0x1620
0]  <TASK>
Jan [  116.939216][T10202]  do_mmap+0x98a/0xc30
30 11:21:30 syzk[  116.939250][T10202]  vm_mmap_pgoff+0x16d/0x2d0
[  116.939282][T10202]  ksys_mmap_pgoff+0xd0/0x330
aller kern.warn [  116.939309][T10202]  ? fpregs_assert_state_consistent+0x83/0xa0
[  116.939345][T10202]  x64_sys_call+0x1940/0x2dc0
kernel: [  116.1[  116.939378][T10202]  do_syscall_64+0xc9/0x1c0
12833][T10140]  [  116.939411][T10202]  ? clear_bhb_loop+0x55/0xb0
[  116.939444][T10202]  ? clear_bhb_loop+0x55/0xb0
dump_stack_lvl+0[  116.939477][T10202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.939509][T10202] RIP: 0033:0x7f62b05bcde3
xf2/0x150
Jan 3[  116.939525][T10202] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
0 11:21:30 syzka[  116.939546][T10202] RSP: 002b:00007f62aec20e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
ller kern.warn k[  116.939568][T10202] RAX: ffffffffffffffda RBX: 000000000000042d RCX: 00007f62b05bcde3
ernel: [  116.11[  116.939583][T10202] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  116.939597][T10202] RBP: 0000000020000942 R08: 00000000ffffffff R09: 0000000000000000
2897][T10140]  d[  116.939610][T10202] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
ump_stack+0x15/0[  116.939621][T10202] R13: 00007f62aec20ef0 R14: 00007f62aec20eb0 R15: 0000000020000480
x1a
Jan 30 11:2[  116.939635][T10202]  </TASK>
1:30 syzkaller kern.warn kernel: [  116.112920][T10140]  should_Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.113163][T10140]  simple_read_Jan 30 11:21:30 Jan 30 11:21:30 Jan 30 11:21:30 syzkaller kern.wJan 30 11:21:30 syzkaller kern.notice kernel: [  116.418044][T10156] FAULT_INJECTION: forcing a failure.
Jan 30 11:21:30 syzkaller kern.notice kernel: [  116.418044][T10156] name fail_usercopy, interval 1, probability 0, space 0, times 0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431459][T10156] CPU: 0 UID: 0 PID: 10156 Comm: syz.2.2634 Not tainted 6.13.0-syzkaller-09383-[  117.205745][T10179] xt_ecn: cannot match TCP bits for non-tcp packets
gebbb8be421ee #0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431480][T10156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431527][T10156] Call Trace:
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431539][T10156]  <TASK>
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431545][T10156]  dump_stack_lvl+0xf2/0x150
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.431568][T10156]  dump_stack+0x15/0x1a
Jan 30 11:21:30 syzkaller kern.warn kernel:Jan 30 11:21:30 Jan 30 11:21:30 Jan 30 11:21:30 Jan 30 11:21:30 syzkaller kern.info kernel: [  116.791682][T10181] ip6t_srh: unknown srh match flags  4000
Jan 30 11:21:30 syzkaller kern.notice kernel: [  116.924979][T10202] FAULT_INJECTION: forcing a failure.
Jan 30 11:21:30 syzkaller kern.notice kernel: [  116.924979][T10202] name failslab, interval 1, probability 0, space 0, times 0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938874][T10202] CPU: 0 UID: 0 PID: 10202 Comm: syz.0.2651 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938905][T10202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938920][T10202] Call Trace:
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938927][T10202]  <TASK>
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938935][T10202]  dump_stack_lvl+0xf2/0x150
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938967][T10202]  dump_stack+0x15/0x1a
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.938993][T10202]  should_fail_ex+0x24a/0x260
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939033][T10202]  should_failslab+0x8f/0xb0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939064][T10202]  kmem_cache_alloc_noprof+0x52/0x320
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939105][T10202]  ? vm_area_alloc+0x2c/0x130
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939134][T10202]  vm_area_alloc+0x2c/0x130
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939161][T10202]  mmap_region+0x819/0x1620
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939216][T10202]  do_mmap+0x98a/0xc30
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939250][T10202]  vm_mmap_pgoff+0x16d/0x2d0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939282][T10202]  ksys_mmap_pgoff+0xd0/0x330
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939309][T10202]  ? fpregs_assert_state_consistent+0x83/0xa0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939345][T10202]  x64_sys_call+0x1940/0x2dc0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939378][T10202]  do_syscall_64+0xc9/0x1c0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939411][T10202]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939444][T10202]  ? clear_bhb_loop+0x55/0xb0
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939477][T10202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939509][T10202] RIP: 0033:0x7f62b05bcde3
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939525][T10202] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939546][T10202] RSP: 002b:00007f62aec20e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
Jan 30 11:21:30 syzkaller kern.warn kernel: [  116.939568Jan 30 11:21:30 Jan 30 11:21:30 Jan 30 11:21:30 syzkaller kern.info kernel: [  117.205745][T10179] xt_ecn: cannot match TCP bits for non-tcp packets
[  117.561041][T10258] FAULT_INJECTION: forcing a failure.
[  117.561041][T10258] name failslab, interval 1, probability 0, space 0, times 0
[  117.573686][T10258] CPU: 0 UID: 0 PID: 10258 Comm: syz.2.2675 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  117.573773][T10258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  117.573786][T10258] Call Trace:
[  117.573790][T10258]  <TASK>
[  117.573796][T10258]  dump_stack_lvl+0xf2/0x150
[  117.573819][T10258]  dump_stack+0x15/0x1a
[  117.573837][T10258]  should_fail_ex+0x24a/0x260
[  117.573937][T10258]  should_failslab+0x8f/0xb0
[  117.573959][T10258]  kmem_cache_alloc_noprof+0x52/0x320
[  117.574048][T10258]  ? skb_clone+0x154/0x1f0
[  117.574077][T10258]  skb_clone+0x154/0x1f0
[  117.574172][T10258]  bpf_clone_redirect+0x78/0x200
[  117.574208][T10258]  bpf_prog_b960c4b57b3b3b2a+0x5f/0x64
[  117.574222][T10258]  ? should_fail_ex+0x31/0x260
[  117.574248][T10258]  ? __rcu_read_unlock+0x4e/0x70
[  117.574265][T10258]  ? avc_has_perm_noaudit+0x1cc/0x210
[  117.574456][T10258]  ? avc_has_perm+0xd4/0x160
[  117.574473][T10258]  ? __rcu_read_unlock+0x4e/0x70
[  117.574488][T10258]  ? 0xffffffffa0000898
[  117.574498][T10258]  ? is_bpf_text_address+0x138/0x150
[  117.574519][T10258]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  117.574543][T10258]  ? kernel_text_address+0x96/0xb0
[  117.574632][T10258]  ? __kernel_text_address+0xd/0x40
[  117.574655][T10258]  ? unwind_get_return_address+0x16/0x30
[  117.574676][T10258]  ? arch_stack_walk+0xfd/0x150
[  117.574773][T10258]  ? find_stack+0xcf/0x170
[  117.574794][T10258]  ? bpf_test_timer_continue+0xbf/0x260
[  117.574856][T10258]  bpf_test_run+0x1e5/0x4a0
[  117.574882][T10258]  ? bpf_test_run+0x104/0x4a0
[  117.574931][T10258]  bpf_prog_test_run_skb+0x85f/0xc00
[  117.574959][T10258]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  117.575043][T10258]  bpf_prog_test_run+0x20f/0x3a0
[  117.575066][T10258]  __sys_bpf+0x400/0x7a0
[  117.575090][T10258]  __x64_sys_bpf+0x43/0x50
[  117.575122][T10258]  x64_sys_call+0x2914/0x2dc0
[  117.575141][T10258]  do_syscall_64+0xc9/0x1c0
[  117.575162][T10258]  ? clear_bhb_loop+0x55/0xb0
[  117.575219][T10258]  ? clear_bhb_loop+0x55/0xb0
[  117.575239][T10258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.575259][T10258] RIP: 0033:0x7f656333cda9
[  117.575296][T10258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.575318][T10258] RSP: 002b:00007f65619a1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  117.575331][T10258] RAX: ffffffffffffffda RBX: 00007f6563555fa0 RCX: 00007f656333cda9
[  117.575381][T10258] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a
[  117.575390][T10258] RBP: 00007f65619a1090 R08: 0000000000000000 R09: 0000000000000000
[  117.575400][T10258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.575411][T10258] R13: 0000000000000000 R14: 00007f6563555fa0 R15: 00007ffd3de3df48
[  117.575429][T10258]  </TASK>
[  117.992187][T10278] devpts: called with bogus options
[  118.002820][T10279] loop2: detected capacity change from 0 to 512
[  118.012693][T10279] EXT4-fs: Ignoring removed nobh option
[  118.018762][T10279] ext4: Unknown parameter 'user_xattr"'
[  118.031775][T10278] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2681'.
[  118.071590][T10247] xt_ecn: cannot match TCP bits for non-tcp packets
[  118.240663][T10298] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  118.289970][T10302] ip6tnl2: entered promiscuous mode
[  118.897976][T10324] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2691'.
[  119.003374][T10337] loop1: detected capacity change from 0 to 512
[  119.011033][T10337] EXT4-fs: Ignoring removed nobh option
[  119.026023][T10337] ext4: Unknown parameter 'user_xattr"'
[  119.052178][T10340] ip6gre2: entered allmulticast mode
[  119.088164][T10340] FAULT_INJECTION: forcing a failure.
[  119.088164][T10340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.101266][T10340] CPU: 1 UID: 0 PID: 10340 Comm: syz.3.2702 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  119.101351][T10340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  119.101364][T10340] Call Trace:
[  119.101369][T10340]  <TASK>
[  119.101375][T10340]  dump_stack_lvl+0xf2/0x150
[  119.101405][T10340]  dump_stack+0x15/0x1a
[  119.101453][T10340]  should_fail_ex+0x24a/0x260
[  119.101527][T10340]  should_fail+0xb/0x10
[  119.101561][T10340]  should_fail_usercopy+0x1a/0x20
[  119.101596][T10340]  _copy_from_user+0x1c/0xa0
[  119.101619][T10340]  move_addr_to_kernel+0x82/0x120
[  119.101702][T10340]  copy_msghdr_from_user+0x271/0x2a0
[  119.101798][T10340]  __sys_sendmmsg+0x1e8/0x4b0
[  119.101884][T10340]  __x64_sys_sendmmsg+0x57/0x70
[  119.101927][T10340]  x64_sys_call+0x29aa/0x2dc0
[  119.101949][T10340]  do_syscall_64+0xc9/0x1c0
[  119.101972][T10340]  ? clear_bhb_loop+0x55/0xb0
[  119.102001][T10340]  ? clear_bhb_loop+0x55/0xb0
[  119.102072][T10340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.102101][T10340] RIP: 0033:0x7f65e086cda9
[  119.102117][T10340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.102136][T10340] RSP: 002b:00007f65deed7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  119.102182][T10340] RAX: ffffffffffffffda RBX: 00007f65e0a85fa0 RCX: 00007f65e086cda9
[  119.102195][T10340] RDX: 0000000000000001 RSI: 0000000020000200 RDI: 0000000000000003
[  119.102208][T10340] RBP: 00007f65deed7090 R08: 0000000000000000 R09: 0000000000000000
[  119.102220][T10340] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[  119.102232][T10340] R13: 0000000000000000 R14: 00007f65e0a85fa0 R15: 00007ffd5e177b18
[  119.102251][T10340]  </TASK>
[  119.285461][T10323] netlink: 'syz.4.2694': attribute type 15 has an invalid length.
[  119.293385][T10323] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2694'.
[  119.312323][T10345] ip6gre3: entered allmulticast mode
[  119.358742][T10322] xt_ecn: cannot match TCP bits for non-tcp packets
[  119.496178][T10350] tmpfs: Bad value for 'mpol'
[  119.550422][T10358] loop4: detected capacity change from 0 to 128
[  119.599035][T10366] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.607938][T10366] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  119.975828][T10377] netlink: 'syz.4.2716': attribute type 15 has an invalid length.
[  119.983691][T10377] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2716'.
[  120.070079][T10393] netlink: 47 bytes leftover after parsing attributes in process `syz.3.2704'.
[  120.083226][T10393] SELinux:  policydb version 0 does not match my version range 15-34
[  120.091565][T10393] SELinux: failed to load policy
[  120.149227][T10397] loop0: detected capacity change from 0 to 128
[  120.276713][T10407] tmpfs: Bad value for 'mpol'
[  120.358361][T10414] loop4: detected capacity change from 0 to 512
[  120.366901][T10414] EXT4-fs: Ignoring removed oldalloc option
[  120.373258][T10414] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  120.382807][T10414] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  120.391800][T10414] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=b846c01c, mo2=0102]
[  120.399964][T10414] System zones: 0-2, 18-18, 34-34
[  120.406169][T10414] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -117
[  120.415145][T10414] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.2727: bad orphan inode 15
[  120.426005][T10414] ext4_test_bit(bit=14, block=18) = 1
[  120.431432][T10414] is_bad_inode(inode)=0
[  120.435672][T10414] NEXT_ORPHAN(inode)=2264924160
[  120.440592][T10414] max_ino=32
[  120.443852][T10414] i_nlink=0
[  120.448544][T10414] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  120.473632][T10414] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2727: bg 0: block 80: padding at end of block bitmap is not set
[  120.488990][T10414] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  120.498487][T10414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.536801][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.562195][T10426] loop4: detected capacity change from 0 to 164
[  120.570307][T10426] Unable to read rock-ridge attributes
[  120.577782][T10426] Unable to read rock-ridge attributes
[  120.580273][T10425] sd 0:0:1:0: device reset
[  120.593554][T10425] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2732'.
[  120.647087][   T29] kauditd_printk_skb: 1263 callbacks suppressed
[  120.647101][   T29] audit: type=1400 audit(1738236094.360:28776): avc:  denied  { block_suspend } for  pid=10433 comm="syz.3.2736" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  120.664399][T10434] loop3: detected capacity change from 0 to 512
[  120.682762][   T29] audit: type=1326 audit(1738236094.400:28777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.706947][T10434] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  120.719871][   T29] audit: type=1326 audit(1738236094.440:28778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4309da3d67 code=0x7ffc0000
[  120.725170][T10445] pim6reg1: entered promiscuous mode
[  120.743407][   T29] audit: type=1326 audit(1738236094.440:28779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4309d48fa9 code=0x7ffc0000
[  120.748683][T10445] pim6reg1: entered allmulticast mode
[  120.750539][T10434] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2736: iget: bad extra_isize 7 (inode size 256)
[  120.772225][   T29] audit: type=1326 audit(1738236094.440:28780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.782383][T10434] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2736: couldn't read orphan inode 15 (err -117)
[  120.790373][   T29] audit: type=1326 audit(1738236094.440:28781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.815782][T10434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.825776][   T29] audit: type=1326 audit(1738236094.440:28782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.885336][   T29] audit: type=1326 audit(1738236094.440:28783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.908975][   T29] audit: type=1326 audit(1738236094.440:28784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.932620][   T29] audit: type=1326 audit(1738236094.440:28785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10440 comm="syz.1.2738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4309dacda9 code=0x7ffc0000
[  120.956126][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  120.962777][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  120.969508][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  120.978335][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  120.994422][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  120.994533][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.000808][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  121.076271][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  121.082608][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  121.089276][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  121.095750][    C1] IPv4: Oversized IP packet from 172.20.20.10
[  121.202964][T10428] netlink: 'syz.4.2733': attribute type 15 has an invalid length.
[  121.210869][T10428] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2733'.
[  121.360700][T10486] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  121.548095][T10509] loop2: detected capacity change from 0 to 512
[  121.561558][T10509] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  121.577443][T10471] xt_ecn: cannot match TCP bits for non-tcp packets
[  121.581556][T10509] EXT4-fs (loop2): 1 truncate cleaned up
[  121.590410][T10509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.604220][T10509] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.634858][T10518] x_tables: ip_tables: NOTRACK target: only valid in raw table, not ·
[  121.643225][T10516] loop1: detected capacity change from 0 to 512
[  121.960507][T10526] netlink: 'syz.2.2765': attribute type 15 has an invalid length.
[  121.968469][T10526] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2765'.
[  121.997463][T10535] loop3: detected capacity change from 0 to 164
[  122.007060][T10535] syz.3.2768: attempt to access beyond end of device
[  122.007060][T10535] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  122.021074][T10535] syz.3.2768: attempt to access beyond end of device
[  122.021074][T10535] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[  122.176665][T10549] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.185217][T10549] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.458494][T10548] netlink: 'syz.0.2782': attribute type 15 has an invalid length.
[  122.466444][T10548] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2782'.
[  122.731365][T10578] vlan2: entered allmulticast mode
[  122.737115][T10578] bond0: entered allmulticast mode
[  122.742267][T10578] bond_slave_0: entered allmulticast mode
[  122.748102][T10578] bond_slave_1: entered allmulticast mode
[  122.754414][T10578] bond0: left allmulticast mode
[  122.759276][T10578] bond_slave_0: left allmulticast mode
[  122.764880][T10578] bond_slave_1: left allmulticast mode
[  122.787280][T10588] loop2: detected capacity change from 0 to 128
[  122.788731][T10587] vlan2: entered allmulticast mode
[  122.799746][T10587] bond0: entered allmulticast mode
[  122.804906][T10587] bond_slave_0: entered allmulticast mode
[  122.810642][T10587] bond_slave_1: entered allmulticast mode
[  122.817698][T10587] bond0: left allmulticast mode
[  122.822621][T10587] bond_slave_0: left allmulticast mode
[  122.828254][T10587] bond_slave_1: left allmulticast mode
[  122.841792][T10593] loop2: detected capacity change from 0 to 128
[  122.890277][T10599] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2790'.
[  123.188169][T10603] netlink: 'syz.2.2792': attribute type 15 has an invalid length.
[  123.196052][T10603] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2792'.
[  123.358518][T10623] loop2: detected capacity change from 0 to 512
[  123.375428][T10623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.388205][T10623] ext4 filesystem being mounted at /575/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.401029][T10623] EXT4-fs error (device loop2): ext4_find_dest_de:2079: inode #12: block 31: comm syz.2.2799: bad entry in directory: rec_len is too small for name_len - offset=24, inode=13, rec_len=16, size=1024 fake=0
[  123.481132][T10627] FAULT_INJECTION: forcing a failure.
[  123.481132][T10627] name failslab, interval 1, probability 0, space 0, times 0
[  123.493797][T10627] CPU: 0 UID: 0 PID: 10627 Comm: syz.1.2800 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  123.493822][T10627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  123.493835][T10627] Call Trace:
[  123.493841][T10627]  <TASK>
[  123.493848][T10627]  dump_stack_lvl+0xf2/0x150
[  123.493935][T10627]  dump_stack+0x15/0x1a
[  123.493986][T10627]  should_fail_ex+0x24a/0x260
[  123.494009][T10627]  should_failslab+0x8f/0xb0
[  123.494028][T10627]  __kmalloc_noprof+0xab/0x3f0
[  123.494092][T10627]  ? sk_prot_alloc+0xab/0x190
[  123.494114][T10627]  ? should_failslab+0x8f/0xb0
[  123.494132][T10627]  sk_prot_alloc+0xab/0x190
[  123.494161][T10627]  sk_alloc+0x33/0x360
[  123.494229][T10627]  ? bpf_prog_test_run_skb+0x1f3/0xc00
[  123.494255][T10627]  bpf_prog_test_run_skb+0x24b/0xc00
[  123.494288][T10627]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  123.494373][T10627]  bpf_prog_test_run+0x20f/0x3a0
[  123.494397][T10627]  __sys_bpf+0x400/0x7a0
[  123.494421][T10627]  __x64_sys_bpf+0x43/0x50
[  123.494438][T10627]  x64_sys_call+0x2914/0x2dc0
[  123.494457][T10627]  do_syscall_64+0xc9/0x1c0
[  123.494582][T10627]  ? clear_bhb_loop+0x55/0xb0
[  123.494647][T10627]  ? clear_bhb_loop+0x55/0xb0
[  123.494717][T10627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.494737][T10627] RIP: 0033:0x7f4309dacda9
[  123.494807][T10627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.494825][T10627] RSP: 002b:00007f4308411038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  123.494841][T10627] RAX: ffffffffffffffda RBX: 00007f4309fc5fa0 RCX: 00007f4309dacda9
[  123.494852][T10627] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a
[  123.494864][T10627] RBP: 00007f4308411090 R08: 0000000000000000 R09: 0000000000000000
[  123.494876][T10627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.494888][T10627] R13: 0000000000000000 R14: 00007f4309fc5fa0 R15: 00007ffe18e22bb8
[  123.494906][T10627]  </TASK>
[  123.712466][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.755993][T10631] loop1: detected capacity change from 0 to 8192
[  123.793738][T10631]  loop1: p1 p2 p3 p4
[  123.797815][T10631] loop1: p1 start 67159808 is beyond EOD, truncated
[  123.804482][T10631] loop1: p2 size 130943 extends beyond EOD, truncated
[  123.811828][T10631] loop1: p3 size 8388608 extends beyond EOD, truncated
[  123.819179][T10631] loop1: p4 start 49398 is beyond EOD, truncated
[  123.827598][T10631] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2803'.
[  123.878627][T10648] loop0: detected capacity change from 0 to 164
[  123.888469][T10648] syz.0.2809: attempt to access beyond end of device
[  123.888469][T10648] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  123.903956][T10648] syz.0.2809: attempt to access beyond end of device
[  123.903956][T10648] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  123.967209][T10656] loop0: detected capacity change from 0 to 8192
[  123.994058][T10659] loop1: detected capacity change from 0 to 512
[  124.000558][T10659] EXT4-fs: Ignoring removed nobh option
[  124.004130][T10656]  loop0: p1 p2 p3 p4
[  124.006251][T10659] ext4: Unknown parameter 'user_xattr"'
[  124.011025][T10656] loop0: p1 start 67159808 is beyond EOD, truncated
[  124.022380][T10656] loop0: p2 size 130943 extends beyond EOD, truncated
[  124.029805][T10656] loop0: p3 size 8388608 extends beyond EOD, truncated
[  124.037068][T10656] loop0: p4 start 49398 is beyond EOD, truncated
[  124.048351][T10656] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2812'.
[  124.115382][T10665] loop0: detected capacity change from 0 to 1024
[  124.146088][T10665] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.161452][T10665] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.2814: bg 0: block 260: invalid block bitmap
[  124.175466][T10665] EXT4-fs error (device loop0): ext4_free_inode:354: comm syz.0.2814: bit already cleared for inode 15
[  124.204391][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.465780][T10673] chnl_net:caif_netlink_parms(): no params data found
[  124.523831][T10673] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.530914][T10673] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.533066][T10705] loop4: detected capacity change from 0 to 164
[  124.538134][T10673] bridge_slave_0: entered allmulticast mode
[  124.550824][T10673] bridge_slave_0: entered promiscuous mode
[  124.556116][T10705] syz.4.2825: attempt to access beyond end of device
[  124.556116][T10705] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  124.557540][T10673] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.572086][T10705] syz.4.2825: attempt to access beyond end of device
[  124.572086][T10705] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  124.577584][T10673] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.578040][T10673] bridge_slave_1: entered allmulticast mode
[  124.605323][T10673] bridge_slave_1: entered promiscuous mode
[  124.622890][T10673] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.633942][T10673] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.661019][T10673] team0: Port device team_slave_0 added
[  124.667666][T10673] team0: Port device team_slave_1 added
[  124.720802][T10673] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.727804][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.748991][T10711] loop4: detected capacity change from 0 to 512
[  124.753758][T10673] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.760281][T10711] EXT4-fs: Ignoring removed nobh option
[  124.775171][T10673] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.782956][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.808924][T10673] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.822218][T10711] ext4: Unknown parameter 'user_xattr"'
[  124.912113][T10673] hsr_slave_0: entered promiscuous mode
[  124.925647][T10673] hsr_slave_1: entered promiscuous mode
[  124.931589][T10673] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  124.940535][T10673] Cannot create hsr debugfs directory
[  124.943665][T10719] hub 9-0:1.0: USB hub found
[  124.950680][T10719] hub 9-0:1.0: 8 ports detected
[  124.974071][T10723] loop1: detected capacity change from 0 to 128
[  125.000536][T10673] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.017556][T10726] loop1: detected capacity change from 0 to 128
[  125.046252][T10673] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.096801][T10673] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.146590][T10673] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.207449][T10673] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  125.216058][T10673] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  125.225388][T10673] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  125.233667][T10673] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  125.283622][T10673] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.306196][T10673] 8021q: adding VLAN 0 to HW filter on device team0
[  125.319777][ T3578] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.326922][ T3578] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.338994][ T3578] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.346174][ T3578] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.416502][T10673] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  125.490246][T10757] loop4: detected capacity change from 0 to 128
[  125.497661][T10673] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.557307][T10765] loop2: detected capacity change from 0 to 128
[  125.618653][T10773] loop2: detected capacity change from 0 to 164
[  125.628699][T10773] syz.2.2848: attempt to access beyond end of device
[  125.628699][T10773] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  125.639972][T10673] veth0_vlan: entered promiscuous mode
[  125.648600][T10773] syz.2.2848: attempt to access beyond end of device
[  125.648600][T10773] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  125.666686][T10673] veth1_vlan: entered promiscuous mode
[  125.693061][T10673] veth0_macvtap: entered promiscuous mode
[  125.699318][T10715] xt_ecn: cannot match TCP bits for non-tcp packets
[  125.708266][T10673] veth1_macvtap: entered promiscuous mode
[  125.723764][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.734250][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.744145][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.754654][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.766007][T10673] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.779310][T10785] hub 9-0:1.0: USB hub found
[  125.781718][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.794458][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.794695][T10785] hub 9-0:1.0: 8 ports detected
[  125.804355][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.819562][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.829488][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.840032][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.852992][T10673] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.865918][T10673] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.874658][T10673] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.883354][T10673] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.892070][T10673] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.915761][   T29] kauditd_printk_skb: 193 callbacks suppressed
[  125.915772][   T29] audit: type=1400 audit(1738236099.640:28979): avc:  denied  { mounton } for  pid=10673 comm="syz-executor" path="/root/syzkaller.9JhCpb/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  125.958805][T10800] FAULT_INJECTION: forcing a failure.
[  125.958805][T10800] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.971986][T10800] CPU: 0 UID: 0 PID: 10800 Comm: syz.2.2854 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  125.972007][T10800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  125.972017][T10800] Call Trace:
[  125.972023][T10800]  <TASK>
[  125.972028][T10800]  dump_stack_lvl+0xf2/0x150
[  125.972124][T10800]  dump_stack+0x15/0x1a
[  125.972142][T10800]  should_fail_ex+0x24a/0x260
[  125.972170][T10800]  should_fail+0xb/0x10
[  125.972265][T10800]  should_fail_usercopy+0x1a/0x20
[  125.972362][T10800]  _copy_to_user+0x20/0xa0
[  125.972381][T10800]  simple_read_from_buffer+0xa0/0x110
[  125.972420][T10800]  proc_fail_nth_read+0xf9/0x140
[  125.972459][T10800]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  125.972479][T10800]  vfs_read+0x19b/0x6f0
[  125.972495][T10800]  ? __rcu_read_unlock+0x4e/0x70
[  125.972513][T10800]  ? __fget_files+0x17c/0x1c0
[  125.972600][T10800]  ksys_read+0xe8/0x1b0
[  125.972618][T10800]  __x64_sys_read+0x42/0x50
[  125.972636][T10800]  x64_sys_call+0x2874/0x2dc0
[  125.972721][T10800]  do_syscall_64+0xc9/0x1c0
[  125.972774][T10800]  ? clear_bhb_loop+0x55/0xb0
[  125.972800][T10800]  ? clear_bhb_loop+0x55/0xb0
[  125.972825][T10800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.972922][T10800] RIP: 0033:0x7f656333b7bc
[  125.972983][T10800] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  125.973002][T10800] RSP: 002b:00007f6561980030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.973020][T10800] RAX: ffffffffffffffda RBX: 00007f6563556080 RCX: 00007f656333b7bc
[  125.973032][T10800] RDX: 000000000000000f RSI: 00007f65619800a0 RDI: 0000000000000005
[  125.973044][T10800] RBP: 00007f6561980090 R08: 0000000000000000 R09: 0000000000000000
[  125.973055][T10800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  125.973067][T10800] R13: 0000000000000001 R14: 00007f6563556080 R15: 00007ffd3de3df48
[  125.973152][T10800]  </TASK>
[  125.985959][   T29] audit: type=1400 audit(1738236099.640:28980): avc:  denied  { mount } for  pid=10673 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  126.035094][T10799] FAULT_INJECTION: forcing a failure.
[  126.035094][T10799] name failslab, interval 1, probability 0, space 0, times 0
[  126.037944][   T29] audit: type=1400 audit(1738236099.640:28981): avc:  denied  { mounton } for  pid=10673 comm="syz-executor" path="/root/syzkaller.9JhCpb/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  126.043447][T10799] CPU: 0 UID: 0 PID: 10799 Comm: syz.3.2856 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  126.043476][T10799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  126.043490][T10799] Call Trace:
[  126.043496][T10799]  <TASK>
[  126.043503][T10799]  dump_stack_lvl+0xf2/0x150
[  126.043600][T10799]  dump_stack+0x15/0x1a
[  126.043696][T10799]  should_fail_ex+0x24a/0x260
[  126.043730][T10799]  should_failslab+0x8f/0xb0
[  126.043757][T10799]  kmem_cache_alloc_noprof+0x52/0x320
[  126.043871][T10799]  ? getname_kernel+0x3d/0x1e0
[  126.043971][T10799]  ? selinux_capable+0x1f2/0x260
[  126.044001][T10799]  getname_kernel+0x3d/0x1e0
[  126.044032][T10799]  kern_path+0x21/0x120
[  126.044064][T10799]  do_move_mount_old+0x5d/0xd0
[  126.044184][T10799]  path_mount+0x536/0xb30
[  126.044210][T10799]  __se_sys_mount+0x27f/0x2d0
[  126.044236][T10799]  ? fput+0x1c4/0x200
[  126.044325][T10799]  __x64_sys_mount+0x67/0x80
[  126.044352][T10799]  x64_sys_call+0x2c84/0x2dc0
[  126.044379][T10799]  do_syscall_64+0xc9/0x1c0
[  126.044407][T10799]  ? clear_bhb_loop+0x55/0xb0
[  126.044481][T10799]  ? clear_bhb_loop+0x55/0xb0
[  126.044509][T10799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.044535][T10799] RIP: 0033:0x7f65e086cda9
[  126.044549][T10799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.044620][T10799] RSP: 002b:00007f65deed7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  126.044638][T10799] RAX: ffffffffffffffda RBX: 00007f65e0a85fa0 RCX: 00007f65e086cda9
[  126.044651][T10799] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000020000480
[  126.044663][T10799] RBP: 00007f65deed7090 R08: 0000000000000000 R09: 0000000000000000
[  126.044675][T10799] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  126.044688][T10799] R13: 0000000000000000 R14: 00007f65e0a85fa0 R15: 00007ffd5e177b18
[  126.044706][T10799]  </TASK>
[  126.185515][T10774] xt_ecn: cannot match TCP bits for non-tcp packets
[  126.188266][   T29] audit: type=1400 audit(1738236099.640:28982): avc:  denied  { mounton } for  pid=10673 comm="syz-executor" path="/root/syzkaller.9JhCpb/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=29028 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  126.454021][   T29] audit: type=1400 audit(1738236099.680:28983): avc:  denied  { mounton } for  pid=10673 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  126.477225][   T29] audit: type=1400 audit(1738236099.680:28984): avc:  denied  { mount } for  pid=10673 comm="syz-executor" name="/" dev="gadgetfs" ino=2984 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  126.529118][T10812] hub 9-0:1.0: USB hub found
[  126.537386][T10812] hub 9-0:1.0: 8 ports detected
[  126.547755][T10817] loop2: detected capacity change from 0 to 8192
[  126.588090][   T29] audit: type=1326 audit(1738236100.310:28985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10823 comm="syz.3.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  126.594333][T10824] FAULT_INJECTION: forcing a failure.
[  126.594333][T10824] name failslab, interval 1, probability 0, space 0, times 0
[  126.611800][   T29] audit: type=1326 audit(1738236100.310:28986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10823 comm="syz.3.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  126.612967][   T29] audit: type=1326 audit(1738236100.310:28987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10823 comm="syz.3.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  126.624411][T10824] CPU: 0 UID: 0 PID: 10824 Comm: syz.3.2866 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  126.624436][T10824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  126.624448][T10824] Call Trace:
[  126.624454][T10824]  <TASK>
[  126.624461][T10824]  dump_stack_lvl+0xf2/0x150
[  126.624489][T10824]  dump_stack+0x15/0x1a
[  126.624510][T10824]  should_fail_ex+0x24a/0x260
[  126.624623][T10824]  ? audit_log_d_path+0x96/0x250
[  126.624656][T10824]  should_failslab+0x8f/0xb0
[  126.624683][T10824]  __kmalloc_cache_noprof+0x4e/0x320
[  126.624727][T10824]  audit_log_d_path+0x96/0x250
[  126.624824][T10824]  ? __rcu_read_unlock+0x4e/0x70
[  126.624846][T10824]  audit_log_d_path_exe+0x42/0x70
[  126.624881][T10824]  audit_log_task+0x192/0x1c0
[  126.624912][T10824]  audit_seccomp+0x68/0x130
[  126.624997][T10824]  __seccomp_filter+0x6fa/0x1180
[  126.625020][T10824]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  126.625060][T10824]  ? vfs_write+0x644/0x920
[  126.625090][T10824]  __secure_computing+0x9f/0x1c0
[  126.625112][T10824]  syscall_trace_enter+0xd1/0x1f0
[  126.625135][T10824]  ? fpregs_assert_state_consistent+0x83/0xa0
[  126.625231][T10824]  do_syscall_64+0xaa/0x1c0
[  126.625261][T10824]  ? clear_bhb_loop+0x55/0xb0
[  126.625289][T10824]  ? clear_bhb_loop+0x55/0xb0
[  126.625317][T10824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.625407][T10824] RIP: 0033:0x7f65e086cda9
[  126.625423][T10824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.625441][T10824] RSP: 002b:00007f65deed7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  126.625460][T10824] RAX: ffffffffffffffda RBX: 00007f65e0a85fa0 RCX: 00007f65e086cda9
[  126.625526][T10824] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  126.625538][T10824] RBP: 00007f65deed7090 R08: 0000000000000000 R09: 0000000000000000
[  126.625550][T10824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.625563][T10824] R13: 0000000000000000 R14: 00007f65e0a85fa0 R15: 00007ffd5e177b18
[  126.625580][T10824]  </TASK>
[  126.657373][T10817]  loop2: p1 p2 p3 p4
[  126.671624][   T29] audit: type=1326 audit(1738236100.310:28988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10823 comm="syz.3.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  126.773205][T10836] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2863'.
[  126.777605][T10817] loop2: p1 start 67159808 is beyond EOD, 
[  126.794760][T10839] loop4: detected capacity change from 0 to 128
[  126.795881][T10817] truncated
[  126.929070][T10817] loop2: p2 size 130943 extends beyond EOD, truncated
[  126.931914][T10817] loop2: p3 size 8388608 extends beyond EOD, truncated
[  126.943161][T10817] loop2: p4 start 49398 is beyond EOD, truncated
[  126.996536][T10852] FAULT_INJECTION: forcing a failure.
[  126.996536][T10852] name failslab, interval 1, probability 0, space 0, times 0
[  126.996548][T10850] x_tables: unsorted underflow at hook 2
[  126.999858][T10848] hub 9-0:1.0: USB hub found
[  127.009202][T10852] CPU: 0 UID: 0 PID: 10852 Comm: +}[@ Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  127.009233][T10852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  127.009249][T10852] Call Trace:
[  127.009255][T10852]  <TASK>
[  127.009264][T10852]  dump_stack_lvl+0xf2/0x150
[  127.009299][T10852]  dump_stack+0x15/0x1a
[  127.009326][T10852]  should_fail_ex+0x24a/0x260
[  127.009365][T10852]  should_failslab+0x8f/0xb0
[  127.009396][T10852]  kmem_cache_alloc_noprof+0x52/0x320
[  127.009435][T10852]  ? vm_area_alloc+0x2c/0x130
[  127.009465][T10852]  vm_area_alloc+0x2c/0x130
[  127.009492][T10852]  mmap_region+0x819/0x1620
[  127.009553][T10852]  do_mmap+0x98a/0xc30
[  127.009586][T10852]  vm_mmap_pgoff+0x16d/0x2d0
[  127.009621][T10852]  ksys_mmap_pgoff+0xd0/0x330
[  127.009652][T10852]  ? fpregs_assert_state_consistent+0x83/0xa0
[  127.009698][T10852]  x64_sys_call+0x1940/0x2dc0
[  127.009737][T10852]  do_syscall_64+0xc9/0x1c0
[  127.009771][T10852]  ? clear_bhb_loop+0x55/0xb0
[  127.009804][T10852]  ? clear_bhb_loop+0x55/0xb0
[  127.009837][T10852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.009875][T10852] RIP: 0033:0x7f65e086cde3
[  127.009893][T10852] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  127.009915][T10852] RSP: 002b:00007f65deed6e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  127.009936][T10852] RAX: ffffffffffffffda RBX: 0000000000000697 RCX: 00007f65e086cde3
[  127.009951][T10852] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  127.009965][T10852] RBP: 0000000020000142 R08: 00000000ffffffff R09: 0000000000000000
[  127.009980][T10852] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000008
[  127.010006][T10852] R13: 00007f65deed6ef0 R14: 00007f65deed6eb0 R15: 0000000020000980
[  127.010027][T10852]  </TASK>
[  127.205874][T10848] hub 9-0:1.0: 8 ports detected
[  127.239861][T10865] loop2: detected capacity change from 0 to 164
[  127.249397][T10865] syz.2.2882: attempt to access beyond end of device
[  127.249397][T10865] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  127.267294][T10865] syz.2.2882: attempt to access beyond end of device
[  127.267294][T10865] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  127.339128][T10875] loop0: detected capacity change from 0 to 512
[  127.345783][T10875] EXT4-fs: Ignoring removed nobh option
[  127.351344][T10875] ext4: Unknown parameter 'user_xattr"'
[  127.365694][T10877] loop4: detected capacity change from 0 to 164
[  127.398172][T10877] syz.4.2887: attempt to access beyond end of device
[  127.398172][T10877] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  127.412240][T10877] syz.4.2887: attempt to access beyond end of device
[  127.412240][T10877] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164
[  127.453267][T10882] loop3: detected capacity change from 0 to 128
[  127.516570][T10859] net_ratelimit: 23 callbacks suppressed
[  127.516581][T10859] Set syz1 is full, maxelem 65536 reached
[  127.760818][T10892] loop4: detected capacity change from 0 to 8192
[  127.785240][T10907] hub 9-0:1.0: USB hub found
[  127.813670][T10907] hub 9-0:1.0: 8 ports detected
[  127.818586][T10892]  loop4: p1 p2 p3 p4
[  127.822608][T10892] loop4: p1 start 67159808 is beyond EOD, truncated
[  127.829238][T10892] loop4: p2 size 130943 extends beyond EOD, truncated
[  127.854845][T10892] loop4: p3 size 8388608 extends beyond EOD, truncated
[  127.873671][T10892] loop4: p4 start 49398 is beyond EOD, truncated
[  127.890293][T10892] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2892'.
[  127.896678][T10845] xt_ecn: cannot match TCP bits for non-tcp packets
[  127.938766][T10913] loop4: detected capacity change from 0 to 764
[  127.950778][T10893] chnl_net:caif_netlink_parms(): no params data found
[  128.017362][T10893] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.024517][T10893] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.033011][T10926] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10926 comm=syz.4.2903
[  128.059729][T10893] bridge_slave_0: entered allmulticast mode
[  128.076921][T10893] bridge_slave_0: entered promiscuous mode
[  128.094456][T10893] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.101549][T10893] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.121869][T10893] bridge_slave_1: entered allmulticast mode
[  128.128695][T10893] bridge_slave_1: entered promiscuous mode
[  128.135635][T10943] loop4: detected capacity change from 0 to 128
[  128.153389][T10893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  128.164868][T10893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  128.190300][T10893] team0: Port device team_slave_0 added
[  128.196605][T10893] team0: Port device team_slave_1 added
[  128.206827][T10947] hub 9-0:1.0: USB hub found
[  128.212089][T10947] hub 9-0:1.0: 8 ports detected
[  128.223515][T10953] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10953 comm=syz.4.2916
[  128.238507][T10893] batman_adv: batadv0: Adding interface: batadv_slave_0
[  128.245557][T10893] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.271515][T10893] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  128.283822][T10893] batman_adv: batadv0: Adding interface: batadv_slave_1
[  128.290793][T10893] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.316776][T10893] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  128.363202][T10893] hsr_slave_0: entered promiscuous mode
[  128.369459][T10893] hsr_slave_1: entered promiscuous mode
[  128.376681][T10893] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  128.384442][T10893] Cannot create hsr debugfs directory
[  128.397118][T10965] loop4: detected capacity change from 0 to 2048
[  128.426030][T10965] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.452672][T10893] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.463977][ T3302] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.468458][T10972] loop0: detected capacity change from 0 to 128
[  128.517292][T10893] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.567682][T10893] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.600167][T10985] loop0: detected capacity change from 0 to 512
[  128.635896][T10893] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.712181][T10893] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  128.727317][T10893] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  128.736073][T10893] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  128.744843][T10893] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  128.760230][T10893] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.767434][T10893] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.774759][T10893] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.781834][T10893] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.811883][T10963] netlink: 'syz.1.2921': attribute type 15 has an invalid length.
[  128.819873][T10963] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2921'.
[  128.833180][T10893] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.845927][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.855946][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.874864][T10893] 8021q: adding VLAN 0 to HW filter on device team0
[  128.886966][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.894020][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.907568][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.914735][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.945248][T10893] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  129.018833][T10893] 8021q: adding VLAN 0 to HW filter on device batadv0
[  129.064846][T10986] xt_ecn: cannot match TCP bits for non-tcp packets
[  129.107229][T10893] veth0_vlan: entered promiscuous mode
[  129.115852][T10893] veth1_vlan: entered promiscuous mode
[  129.133141][T10893] veth0_macvtap: entered promiscuous mode
[  129.141711][T10893] veth1_macvtap: entered promiscuous mode
[  129.160104][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.170689][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.180543][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.191016][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.200859][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.211338][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.222178][T10893] batman_adv: batadv0: Interface activated: batadv_slave_0
[  129.233989][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.244497][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.254356][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.264778][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.274602][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.282639][T11015] loop1: detected capacity change from 0 to 2048
[  129.285020][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.285069][T10893] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.311750][T10893] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.322653][T10893] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.331858][T10893] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.340612][T10893] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.349357][T10893] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.358169][T10893] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.364036][T11015] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.395814][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.465072][T11027] hub 9-0:1.0: USB hub found
[  129.471771][T11027] hub 9-0:1.0: 8 ports detected
[  129.612590][T11044] loop3: detected capacity change from 0 to 512
[  129.641243][T11044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.653976][T11044] ext4 filesystem being mounted at /567/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.669237][T11044] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #12: block 31: comm syz.3.2943: bad entry in directory: rec_len is too small for name_len - offset=24, inode=13, rec_len=16, size=1024 fake=0
[  129.725403][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.818114][T11075] hub 9-0:1.0: USB hub found
[  129.824989][T11075] hub 9-0:1.0: 8 ports detected
[  129.971302][T11042] chnl_net:caif_netlink_parms(): no params data found
[  130.084232][T11100] loop2: detected capacity change from 0 to 512
[  130.100718][T11038] xt_ecn: cannot match TCP bits for non-tcp packets
[  130.112044][T11100] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.161427][T11042] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.165488][T11114] hub 9-0:1.0: USB hub found
[  130.168715][T11042] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.173218][T11114] hub 9-0:1.0: 8 ports detected
[  130.186645][T11100] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.187011][T11042] bridge_slave_0: entered allmulticast mode
[  130.204012][T11042] bridge_slave_0: entered promiscuous mode
[  130.213927][T11042] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.220974][T11042] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.228412][T11042] bridge_slave_1: entered allmulticast mode
[  130.234864][T11042] bridge_slave_1: entered promiscuous mode
[  130.257068][T11042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.267077][T10893] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.267609][T11042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  130.300006][T11042] team0: Port device team_slave_0 added
[  130.317847][T11042] team0: Port device team_slave_1 added
[  130.333458][T11125] loop1: detected capacity change from 0 to 164
[  130.343370][T11125] syz.1.2971: attempt to access beyond end of device
[  130.343370][T11125] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  130.359330][T11125] syz.1.2971: attempt to access beyond end of device
[  130.359330][T11125] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[  130.361482][T11042] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.379713][T11042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.385060][T11127] loop2: detected capacity change from 0 to 4096
[  130.405740][T11042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.429247][T11042] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.436253][T11042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.446214][T11127] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.462244][T11042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.512684][T11127] FAULT_INJECTION: forcing a failure.
[  130.512684][T11127] name failslab, interval 1, probability 0, space 0, times 0
[  130.525419][T11127] CPU: 1 UID: 0 PID: 11127 Comm: syz.2.2972 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  130.525444][T11127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  130.525457][T11127] Call Trace:
[  130.525463][T11127]  <TASK>
[  130.525470][T11127]  dump_stack_lvl+0xf2/0x150
[  130.525499][T11127]  dump_stack+0x15/0x1a
[  130.525541][T11127]  should_fail_ex+0x24a/0x260
[  130.525568][T11127]  should_failslab+0x8f/0xb0
[  130.525595][T11127]  __kmalloc_noprof+0xab/0x3f0
[  130.525678][T11127]  ? alloc_pipe_info+0x1cb/0x360
[  130.525708][T11127]  alloc_pipe_info+0x1cb/0x360
[  130.525736][T11127]  splice_direct_to_actor+0x60f/0x670
[  130.525756][T11127]  ? __pfx_direct_splice_actor+0x10/0x10
[  130.525774][T11127]  ? 0xffffffff81000000
[  130.525812][T11127]  ? selinux_file_permission+0x22a/0x360
[  130.525830][T11127]  ? __rcu_read_unlock+0x4e/0x70
[  130.525848][T11127]  ? avc_policy_seqno+0x15/0x20
[  130.525889][T11127]  ? selinux_file_permission+0x22a/0x360
[  130.525915][T11127]  do_splice_direct+0xd7/0x150
[  130.525932][T11127]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  130.525954][T11127]  do_sendfile+0x398/0x660
[  130.526043][T11127]  __x64_sys_sendfile64+0x110/0x150
[  130.526076][T11127]  x64_sys_call+0xfbd/0x2dc0
[  130.526103][T11127]  do_syscall_64+0xc9/0x1c0
[  130.526178][T11127]  ? clear_bhb_loop+0x55/0xb0
[  130.526206][T11127]  ? clear_bhb_loop+0x55/0xb0
[  130.526234][T11127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.526332][T11127] RIP: 0033:0x7f92a2dccda9
[  130.526374][T11127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.526394][T11127] RSP: 002b:00007f92a1437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  130.526412][T11127] RAX: ffffffffffffffda RBX: 00007f92a2fe5fa0 RCX: 00007f92a2dccda9
[  130.526423][T11127] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007
[  130.526433][T11127] RBP: 00007f92a1437090 R08: 0000000000000000 R09: 0000000000000000
[  130.526445][T11127] R10: 0000000000fffe80 R11: 0000000000000246 R12: 0000000000000001
[  130.526459][T11127] R13: 0000000000000000 R14: 00007f92a2fe5fa0 R15: 00007ffc0b619c98
[  130.526521][T11127]  </TASK>
[  130.785736][T11042] hsr_slave_0: entered promiscuous mode
[  130.791670][T11042] hsr_slave_1: entered promiscuous mode
[  130.804897][T11042] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  130.812443][T11042] Cannot create hsr debugfs directory
[  130.846221][T10893] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.918150][T11145] hub 9-0:1.0: USB hub found
[  130.925505][T11145] hub 9-0:1.0: 8 ports detected
[  130.971726][T11151] loop1: detected capacity change from 0 to 4096
[  130.982455][T11151] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.996923][T11042] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.065551][T11042] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.086382][T11149] loop0: detected capacity change from 0 to 8192
[  131.109264][T11121] xt_ecn: cannot match TCP bits for non-tcp packets
[  131.123419][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.143392][T11149]  loop0: p1 p2 p3 p4
[  131.148947][T11042] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.160276][T11149] loop0: p1 start 67159808 is beyond EOD, truncated
[  131.166935][T11149] loop0: p2 size 130943 extends beyond EOD, truncated
[  131.183522][T11149] loop0: p3 size 8388608 extends beyond EOD, truncated
[  131.190835][T11149] loop0: p4 start 49398 is beyond EOD, truncated
[  131.210725][T11149] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2979'.
[  131.250567][T11042] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.334823][T11170] loop0: detected capacity change from 0 to 128
[  131.356225][T11042] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  131.364101][   T29] kauditd_printk_skb: 111 callbacks suppressed
[  131.364113][   T29] audit: type=1326 audit(1738236105.080:29100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.393973][   T29] audit: type=1326 audit(1738236105.080:29101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.417608][   T29] audit: type=1326 audit(1738236105.080:29102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.441223][   T29] audit: type=1326 audit(1738236105.090:29103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.465011][   T29] audit: type=1326 audit(1738236105.090:29104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.488710][   T29] audit: type=1326 audit(1738236105.090:29105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.512399][   T29] audit: type=1326 audit(1738236105.090:29106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.536163][   T29] audit: type=1326 audit(1738236105.090:29107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11166 comm="syz.3.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65e086cda9 code=0x7ffc0000
[  131.563048][T11042] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  131.576743][T11042] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  131.590614][T11042] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  131.634364][T11184] vlan2: entered allmulticast mode
[  131.640049][T11184] bond0: entered allmulticast mode
[  131.643130][T11186] hub 9-0:1.0: USB hub found
[  131.645201][T11184] bond_slave_0: entered allmulticast mode
[  131.645217][T11184] bond_slave_1: entered allmulticast mode
[  131.650156][T11186] hub 9-0:1.0: 8 ports detected
[  131.663264][T11183] loop0: detected capacity change from 0 to 8192
[  131.673304][T11184] bond0: left allmulticast mode
[  131.678267][T11184] bond_slave_0: left allmulticast mode
[  131.684055][T11184] bond_slave_1: left allmulticast mode
[  131.710957][T11042] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.714099][T11183]  loop0: p1 p2 p3 p4
[  131.721793][T11183] loop0: p1 start 67159808 is beyond EOD, truncated
[  131.724612][T11042] 8021q: adding VLAN 0 to HW filter on device team0
[  131.728425][T11183] loop0: p2 size 130943 extends beyond EOD, truncated
[  131.742662][T11183] loop0: p3 size 8388608 extends beyond EOD, truncated
[  131.746690][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.751061][T11183] loop0: p4 start 49398 is beyond EOD, 
[  131.756549][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.760731][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.762083][T11183] truncated
[  131.775190][T11183] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2992'.
[  131.776356][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.861483][T11042] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.959071][T11042] veth0_vlan: entered promiscuous mode
[  131.968027][T11042] veth1_vlan: entered promiscuous mode
[  131.978692][T11222] loop0: detected capacity change from 0 to 128
[  131.983306][T11042] veth0_macvtap: entered promiscuous mode
[  131.997086][T11042] veth1_macvtap: entered promiscuous mode
[  132.016985][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.027448][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.037282][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.047756][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.057698][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.068174][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.078113][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.088640][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.100110][T11042] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.111647][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.122153][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.132066][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.142498][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.152386][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.162864][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.172778][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.183344][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.193177][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  132.203626][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.215874][T11042] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.225635][T11042] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.233311][T11190] xt_ecn: cannot match TCP bits for non-tcp packets
[  132.234466][T11042] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.249927][T11042] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.258807][T11042] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.358836][T11240] No such timeout policy "syz1"
[  132.397163][T11248] loop3: detected capacity change from 0 to 128
[  132.466058][T11258] loop2: detected capacity change from 0 to 164
[  132.475147][T11258] syz.2.3015: attempt to access beyond end of device
[  132.475147][T11258] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  132.489188][T11258] syz.2.3015: attempt to access beyond end of device
[  132.489188][T11258] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  132.559323][T11272] netlink: 31 bytes leftover after parsing attributes in process `syz.2.3020'.
[  132.578708][T11276] loop1: detected capacity change from 0 to 128
[  132.635886][T11289] loop2: detected capacity change from 0 to 164
[  132.644877][T11289] syz.2.3028: attempt to access beyond end of device
[  132.644877][T11289] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  132.658929][T11289] syz.2.3028: attempt to access beyond end of device
[  132.658929][T11289] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  132.688127][T11291] vlan2: entered allmulticast mode
[  132.693854][T11291] bond0: entered allmulticast mode
[  132.698979][T11291] bond_slave_0: entered allmulticast mode
[  132.704848][T11291] bond_slave_1: entered allmulticast mode
[  132.711326][T11291] bond0: left allmulticast mode
[  132.716262][T11291] bond_slave_0: left allmulticast mode
[  132.721722][T11291] bond_slave_1: left allmulticast mode
[  132.729724][   T29] audit: type=1326 audit(1738236106.460:29108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.2.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92a2dccda9 code=0x7ffc0000
[  132.753450][   T29] audit: type=1326 audit(1738236106.460:29109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11294 comm="syz.2.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92a2dccda9 code=0x7ffc0000
[  132.797553][T11295] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3030'.
[  132.813233][T11295] ip6t_srh: unknown srh match flags  4000
[  132.924302][T11305] loop2: detected capacity change from 0 to 128
[  132.974935][T11310] netlink: 31 bytes leftover after parsing attributes in process `syz.3.3035'.
[  133.000529][T11312] loop3: detected capacity change from 0 to 128
[  133.027884][T11316] ip6gre1: entered promiscuous mode
[  133.035417][T11319] hub 9-0:1.0: USB hub found
[  133.040107][T11319] hub 9-0:1.0: 8 ports detected
[  133.102314][T11326] loop0: detected capacity change from 0 to 128
[  133.192420][T11331] loop3: detected capacity change from 0 to 8192
[  133.233829][T11331]  loop3: p1 p2 p3 p4
[  133.237852][T11331] loop3: p1 start 67159808 is beyond EOD, truncated
[  133.244524][T11331] loop3: p2 size 130943 extends beyond EOD, truncated
[  133.255551][T11331] loop3: p3 size 8388608 extends beyond EOD, truncated
[  133.264821][T11338] netlink: 31 bytes leftover after parsing attributes in process `syz.4.3047'.
[  133.265588][T11331] loop3: p4 start 49398 is beyond EOD, truncated
[  133.303359][T11331] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3044'.
[  133.340473][T11344] hub 9-0:1.0: USB hub found
[  133.346239][T11344] hub 9-0:1.0: 8 ports detected
[  133.459754][T11362] loop4: detected capacity change from 0 to 128
[  133.491654][T11363] loop3: detected capacity change from 0 to 512
[  133.502346][T11363] EXT4-fs: Ignoring removed nobh option
[  133.508639][T11363] ext4: Unknown parameter 'user_xattr"'
[  133.532340][T11367] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11367 comm=syz.4.3059
[  133.578358][T11369] loop4: detected capacity change from 0 to 1024
[  133.595454][T11369] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[  133.618422][T11369] ALSA: seq fatal error: cannot create timer (-16)
[  133.651071][T11375] FAULT_INJECTION: forcing a failure.
[  133.651071][T11375] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  133.664413][T11375] CPU: 1 UID: 0 PID: 11375 Comm: \ Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  133.664435][T11375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  133.664504][T11375] Call Trace:
[  133.664509][T11375]  <TASK>
[  133.664515][T11375]  dump_stack_lvl+0xf2/0x150
[  133.664542][T11375]  dump_stack+0x15/0x1a
[  133.664564][T11375]  should_fail_ex+0x24a/0x260
[  133.664596][T11375]  should_fail_alloc_page+0xfd/0x110
[  133.664652][T11375]  __alloc_frozen_pages_noprof+0x109/0x340
[  133.664682][T11375]  alloc_pages_mpol+0xb4/0x260
[  133.664718][T11375]  vma_alloc_folio_noprof+0x1a0/0x310
[  133.664829][T11375]  handle_mm_fault+0xdd7/0x2ac0
[  133.664870][T11375]  exc_page_fault+0x3b9/0x650
[  133.664940][T11375]  asm_exc_page_fault+0x26/0x30
[  133.664965][T11375] RIP: 0033:0x7f92a2d7a3db
[  133.664979][T11375] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  133.664997][T11375] RSP: 002b:00007f92a1434e10 EFLAGS: 00010246
[  133.665011][T11375] RAX: 00007f92a1436f30 RBX: 00007f92a2fbc620 RCX: 0000000000000000
[  133.665028][T11375] RDX: 00007f92a1436f78 RSI: 00007f92a2e2cbd8 RDI: 00007f92a1434e30
[  133.665076][T11375] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  133.665089][T11375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.665101][T11375] R13: 0000000000000000 R14: 00007f92a2fe5fa0 R15: 00007ffc0b619c98
[  133.665118][T11375]  </TASK>
[  133.665152][T11375] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  133.738860][T11373] loop1: detected capacity change from 0 to 8192
[  133.865396][T11373]  loop1: p1 p2 p3 p4
[  133.866072][T11388] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3062'.
[  133.869464][T11373] loop1: p1 start 67159808 is beyond EOD, truncated
[  133.885036][T11373] loop1: p2 size 130943 extends beyond EOD, truncated
[  133.900787][T11373] loop1: p3 size 8388608 extends beyond EOD, truncated
[  133.915477][T11373] loop1: p4 start 49398 is beyond EOD, truncated
[  134.045072][T11404] loop2: detected capacity change from 0 to 512
[  134.076895][T11404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.097082][T11404] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.148217][T11412] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3073'.
[  134.189202][T10893] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.386837][T11441] FAULT_INJECTION: forcing a failure.
[  134.386837][T11441] name failslab, interval 1, probability 0, space 0, times 0
[  134.399600][T11441] CPU: 1 UID: 0 PID: 11441 Comm: syz.4.3089 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  134.399697][T11441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.399713][T11441] Call Trace:
[  134.399721][T11441]  <TASK>
[  134.399728][T11441]  dump_stack_lvl+0xf2/0x150
[  134.399833][T11441]  dump_stack+0x15/0x1a
[  134.399857][T11441]  should_fail_ex+0x24a/0x260
[  134.399899][T11441]  should_failslab+0x8f/0xb0
[  134.399962][T11441]  kmem_cache_alloc_noprof+0x52/0x320
[  134.399996][T11441]  ? skb_clone+0x154/0x1f0
[  134.400052][T11441]  skb_clone+0x154/0x1f0
[  134.400087][T11441]  pfkey_sendmsg+0x2de/0x970
[  134.400117][T11441]  ? selinux_socket_sendmsg+0x185/0x1c0
[  134.400193][T11441]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  134.400211][T11441]  __sock_sendmsg+0x140/0x180
[  134.400236][T11441]  ____sys_sendmsg+0x312/0x410
[  134.400274][T11441]  __sys_sendmsg+0x19d/0x230
[  134.400375][T11441]  __x64_sys_sendmsg+0x46/0x50
[  134.400402][T11441]  x64_sys_call+0x2734/0x2dc0
[  134.400467][T11441]  do_syscall_64+0xc9/0x1c0
[  134.400496][T11441]  ? clear_bhb_loop+0x55/0xb0
[  134.400542][T11441]  ? clear_bhb_loop+0x55/0xb0
[  134.400570][T11441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.400598][T11441] RIP: 0033:0x7f625a1fcda9
[  134.400613][T11441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.400694][T11441] RSP: 002b:00007f6258867038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.400714][T11441] RAX: ffffffffffffffda RBX: 00007f625a415fa0 RCX: 00007f625a1fcda9
[  134.400803][T11441] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  134.400816][T11441] RBP: 00007f6258867090 R08: 0000000000000000 R09: 0000000000000000
[  134.400829][T11441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.400841][T11441] R13: 0000000000000000 R14: 00007f625a415fa0 R15: 00007ffdde104308
[  134.400860][T11441]  </TASK>
[  134.716370][T11454] FAULT_INJECTION: forcing a failure.
[  134.716370][T11454] name failslab, interval 1, probability 0, space 0, times 0
[  134.729211][T11454] CPU: 0 UID: 0 PID: 11454 Comm: syz.2.3093 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  134.729336][T11454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.729352][T11454] Call Trace:
[  134.729360][T11454]  <TASK>
[  134.729368][T11454]  dump_stack_lvl+0xf2/0x150
[  134.729407][T11454]  dump_stack+0x15/0x1a
[  134.729431][T11454]  should_fail_ex+0x24a/0x260
[  134.729471][T11454]  should_failslab+0x8f/0xb0
[  134.729496][T11454]  __kmalloc_noprof+0xab/0x3f0
[  134.729607][T11454]  ? kobject_get_path+0x85/0x160
[  134.729671][T11454]  kobject_get_path+0x85/0x160
[  134.729714][T11454]  input_devices_seq_show+0x36/0x460
[  134.729757][T11454]  seq_read_iter+0x2d1/0x930
[  134.729875][T11454]  seq_read+0x1ed/0x230
[  134.729968][T11454]  ? __pfx_seq_read+0x10/0x10
[  134.730001][T11454]  proc_reg_read+0x13f/0x1d0
[  134.730044][T11454]  vfs_readv+0x3e2/0x660
[  134.730082][T11454]  ? __pfx_proc_reg_read+0x10/0x10
[  134.730115][T11454]  __x64_sys_preadv+0xf4/0x1c0
[  134.730158][T11454]  x64_sys_call+0x2680/0x2dc0
[  134.730236][T11454]  do_syscall_64+0xc9/0x1c0
[  134.730265][T11454]  ? clear_bhb_loop+0x55/0xb0
[  134.730289][T11454]  ? clear_bhb_loop+0x55/0xb0
[  134.730311][T11454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.730375][T11454] RIP: 0033:0x7f92a2dccda9
[  134.730390][T11454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.730408][T11454] RSP: 002b:00007f92a1437038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  134.730471][T11454] RAX: ffffffffffffffda RBX: 00007f92a2fe5fa0 RCX: 00007f92a2dccda9
[  134.730484][T11454] RDX: 0000000000000001 RSI: 00000000200015c0 RDI: 0000000000000006
[  134.730497][T11454] RBP: 00007f92a1437090 R08: 0000000000000067 R09: 0000000000000000
[  134.730514][T11454] R10: 00000000000000f0 R11: 0000000000000246 R12: 0000000000000001
[  134.730523][T11454] R13: 0000000000000000 R14: 00007f92a2fe5fa0 R15: 00007ffc0b619c98
[  134.730538][T11454]  </TASK>
[  134.766782][T11458] netlink: 'syz.4.3095': attribute type 20 has an invalid length.
[  134.766799][T11458] netlink: 31 bytes leftover after parsing attributes in process `syz.4.3095'.
[  134.858720][T11467] netlink: 'syz.1.3099': attribute type 20 has an invalid length.
[  134.858734][T11467] netlink: 31 bytes leftover after parsing attributes in process `syz.1.3099'.
[  134.911121][T11468] loop3: detected capacity change from 0 to 512
[  135.103877][T11468] EXT4-fs: Ignoring removed nobh option
[  135.105214][T11431] chnl_net:caif_netlink_parms(): no params data found
[  135.109475][T11468] ext4: Unknown parameter 'user_xattr"'
[  135.205760][T11431] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.212870][T11431] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.221784][T11431] bridge_slave_0: entered allmulticast mode
[  135.228982][T11431] bridge_slave_0: entered promiscuous mode
[  135.235848][T11431] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.243006][T11431] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.250431][T11431] bridge_slave_1: entered allmulticast mode
[  135.257082][T11431] bridge_slave_1: entered promiscuous mode
[  135.269641][T11499] loop2: detected capacity change from 0 to 512
[  135.283378][T11431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.294287][T11431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.314035][T11499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.326994][T11499] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.338385][T11431] team0: Port device team_slave_0 added
[  135.346311][T11431] team0: Port device team_slave_1 added
[  135.373082][T10893] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.373953][T11431] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.389040][T11431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.415041][T11431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.426547][T11431] batman_adv: batadv0: Adding interface: batadv_slave_1
[  135.433520][T11431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.459585][T11431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.493417][T11431] hsr_slave_0: entered promiscuous mode
[  135.499476][T11431] hsr_slave_1: entered promiscuous mode
[  135.505492][T11431] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.513935][T11431] Cannot create hsr debugfs directory
[  135.628059][T11515] vlan2: entered allmulticast mode
[  135.640516][T11515] bond0: entered allmulticast mode
[  135.645728][T11515] bond_slave_0: entered allmulticast mode
[  135.651640][T11515] bond_slave_1: entered allmulticast mode
[  135.691220][T11515] bond0: left allmulticast mode
[  135.696171][T11515] bond_slave_0: left allmulticast mode
[  135.701648][T11515] bond_slave_1: left allmulticast mode
[  135.757420][T11500] xt_ecn: cannot match TCP bits for non-tcp packets
[  135.815748][T11431] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  135.835551][T11431] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  135.878571][T11431] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  135.889617][T11431] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  135.952900][T11431] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.959991][T11431] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.967383][T11431] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.974428][T11431] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.045125][T11431] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.054758][T11535] loop3: detected capacity change from 0 to 2048
[  136.065808][ T3463] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.075746][ T3463] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.089705][T11535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.092748][T11431] 8021q: adding VLAN 0 to HW filter on device team0
[  136.150665][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.157829][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.172560][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.179720][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.209363][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.222894][T11431] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  136.233363][T11431] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  136.246888][T11545] loop1: detected capacity change from 0 to 512
[  136.254371][T11545] EXT4-fs: Ignoring removed nobh option
[  136.260014][T11545] ext4: Unknown parameter 'user_xattr"'
[  136.328365][T11431] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.397321][T11570] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11570 comm=syz.4.3127
[  136.401695][T11572] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  136.432213][   T29] kauditd_printk_skb: 250 callbacks suppressed
[  136.432228][   T29] audit: type=1326 audit(1738236110.150:29360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.462689][   T29] audit: type=1326 audit(1738236110.150:29361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.486450][   T29] audit: type=1326 audit(1738236110.150:29362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.500842][T11585] loop4: detected capacity change from 0 to 128
[  136.510178][   T29] audit: type=1326 audit(1738236110.150:29363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.540004][   T29] audit: type=1326 audit(1738236110.150:29364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.562509][T11431] veth0_vlan: entered promiscuous mode
[  136.563632][   T29] audit: type=1326 audit(1738236110.150:29365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.573910][T11431] veth1_vlan: entered promiscuous mode
[  136.592500][   T29] audit: type=1326 audit(1738236110.150:29366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.621767][   T29] audit: type=1326 audit(1738236110.150:29367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.645290][   T29] audit: type=1326 audit(1738236110.150:29368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.669135][   T29] audit: type=1326 audit(1738236110.150:29369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11575 comm="syz.4.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f625a1fcda9 code=0x7ffc0000
[  136.678383][T11431] veth0_macvtap: entered promiscuous mode
[  136.700753][T11431] veth1_macvtap: entered promiscuous mode
[  136.711944][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.722467][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.732343][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.742826][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.752653][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.763105][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.772932][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.783569][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.793700][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.804318][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.815756][T11431] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.836289][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.846767][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.856617][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.867060][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.876946][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.881626][T11597] loop3: detected capacity change from 0 to 512
[  136.887621][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.903752][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.914243][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.924201][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.934644][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.944517][T11431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.946538][T11597] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.954932][T11431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.955982][T11431] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.985257][T11597] ext4 filesystem being mounted at /612/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.997191][T11431] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.006028][T11431] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  137.014783][T11431] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  137.023572][T11431] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  137.025329][T11609] loop4: detected capacity change from 0 to 128
[  137.060894][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.118708][T11619] hub 9-0:1.0: USB hub found
[  137.123989][T11619] hub 9-0:1.0: 8 ports detected
[  137.130754][T11620] loop3: detected capacity change from 0 to 512
[  137.147255][T11620] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.155902][T11629] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11629 comm=syz.5.3147
[  137.172335][T11620] ext4 filesystem being mounted at /614/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.199893][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.204380][T11630] vlan2: entered allmulticast mode
[  137.219269][T11630] bond0: entered allmulticast mode
[  137.224614][T11630] bond_slave_0: entered allmulticast mode
[  137.230420][T11630] bond_slave_1: entered allmulticast mode
[  137.242771][T11630] bond0: left allmulticast mode
[  137.247699][T11630] bond_slave_0: left allmulticast mode
[  137.253192][T11630] bond_slave_1: left allmulticast mode
[  137.411522][T11636] chnl_net:caif_netlink_parms(): no params data found
[  137.462275][T11636] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.469375][T11636] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.476585][T11636] bridge_slave_0: entered allmulticast mode
[  137.482859][T11636] bridge_slave_0: entered promiscuous mode
[  137.489804][T11636] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.496970][T11636] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.505087][T11636] bridge_slave_1: entered allmulticast mode
[  137.511573][T11636] bridge_slave_1: entered promiscuous mode
[  137.529242][T11636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.539818][T11636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.560229][T11636] team0: Port device team_slave_0 added
[  137.567076][T11636] team0: Port device team_slave_1 added
[  137.583117][T11636] batman_adv: batadv0: Adding interface: batadv_slave_0
[  137.590104][T11636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.616103][T11636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  137.627323][T11636] batman_adv: batadv0: Adding interface: batadv_slave_1
[  137.634289][T11636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  137.660337][T11636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  137.687459][T11636] hsr_slave_0: entered promiscuous mode
[  137.693374][T11636] hsr_slave_1: entered promiscuous mode
[  137.699463][T11636] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  137.707036][T11636] Cannot create hsr debugfs directory
[  137.763716][T11636] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.816635][T11636] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.878716][T11636] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.963043][T11636] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.177995][T11669] hub 9-0:1.0: USB hub found
[  138.198712][T11669] hub 9-0:1.0: 8 ports detected
[  138.229101][T11661] Set syz1 is full, maxelem 65536 reached
[  138.237165][T11673] loop4: detected capacity change from 0 to 2048
[  138.241544][T11636] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  138.252142][T11636] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  138.262634][T11636] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  138.275839][T11636] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  138.295905][T11673] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.305708][T11636] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.315089][T11636] bridge0: port 2(bridge_slave_1) entered forwarding state
[  138.322407][T11636] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.329488][T11636] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.338300][T11042] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.358316][ T3585] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.366362][ T3585] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.400236][T11688] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3159'.
[  138.417897][T11636] 8021q: adding VLAN 0 to HW filter on device bond0
[  138.434845][T11636] 8021q: adding VLAN 0 to HW filter on device team0
[  138.445948][ T3588] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.453069][ T3588] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.466478][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.473541][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  138.518674][T11636] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  138.583761][T11636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.656414][T11636] veth0_vlan: entered promiscuous mode
[  138.665031][T11636] veth1_vlan: entered promiscuous mode
[  138.683270][T11636] veth0_macvtap: entered promiscuous mode
[  138.704385][T11636] veth1_macvtap: entered promiscuous mode
[  138.719164][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.729774][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.739670][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.750114][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.760016][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.770485][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.780368][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.790836][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.800667][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.811091][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.820935][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.831410][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.860411][T11636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.867893][T11689] xt_ecn: cannot match TCP bits for non-tcp packets
[  138.881818][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.892270][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.902109][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.912538][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.922369][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.932844][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.942659][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.953168][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.963027][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.973486][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.983298][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.993745][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.003586][T11636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.014012][T11636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.025121][T11636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.037929][T11636] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.046686][T11636] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.055507][T11636] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.064250][T11636] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.071482][T11720] hub 9-0:1.0: USB hub found
[  139.078061][T11720] hub 9-0:1.0: 8 ports detected
[  139.109851][T11722] loop1: detected capacity change from 0 to 2048
[  139.125904][T11722] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.149795][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.232482][T11724] netlink: 'syz.2.3169': attribute type 15 has an invalid length.
[  139.240359][T11724] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3169'.
[  139.343149][T11750] loop5: detected capacity change from 0 to 1024
[  139.368942][T11752] loop1: detected capacity change from 0 to 2048
[  139.394511][T11750] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.414640][T11752] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.440953][ T3295] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.466813][T11764] vlan2: entered allmulticast mode
[  139.472574][T11764] bond0: entered allmulticast mode
[  139.477715][T11764] bond_slave_0: entered allmulticast mode
[  139.483442][T11764] bond_slave_1: entered allmulticast mode
[  139.494887][T11764] bond0: left allmulticast mode
[  139.499774][T11764] bond_slave_0: left allmulticast mode
[  139.505415][T11764] bond_slave_1: left allmulticast mode
[  139.729648][T11746] ==================================================================
[  139.737763][T11746] BUG: KCSAN: data-race in shmem_fallocate / shmem_fault
[  139.744798][T11746] 
[  139.747118][T11746] write to 0xffff8881041f1fe8 of 8 bytes by task 11753 on cpu 0:
[  139.754829][T11746]  shmem_fallocate+0x22e/0x860
[  139.759595][T11746]  vfs_fallocate+0x368/0x3b0
[  139.764194][T11746]  do_madvise+0x14da/0x2ad0
[  139.768705][T11746]  __x64_sys_madvise+0x61/0x70
[  139.773475][T11746]  x64_sys_call+0x23ab/0x2dc0
[  139.778154][T11746]  do_syscall_64+0xc9/0x1c0
[  139.782660][T11746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.788557][T11746] 
[  139.790870][T11746] read to 0xffff8881041f1fe8 of 8 bytes by task 11746 on cpu 1:
[  139.798488][T11746]  shmem_fault+0x97/0x250
[  139.802820][T11746]  __do_fault+0xb6/0x200
[  139.807064][T11746]  handle_mm_fault+0xe98/0x2ac0
[  139.811914][T11746]  __get_user_pages+0xf6a/0x2350
[  139.816857][T11746]  __mm_populate+0x25b/0x3b0
[  139.821454][T11746]  vm_mmap_pgoff+0x224/0x2d0
[  139.826041][T11746]  ksys_mmap_pgoff+0xd0/0x330
[  139.830717][T11746]  x64_sys_call+0x1940/0x2dc0
[  139.835395][T11746]  do_syscall_64+0xc9/0x1c0
[  139.839902][T11746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.845803][T11746] 
[  139.848113][T11746] value changed: 0x0000000000000000 -> 0xffffc90001b7bca8
[  139.855209][T11746] 
[  139.857520][T11746] Reported by Kernel Concurrency Sanitizer on:
[  139.863660][T11746] CPU: 1 UID: 0 PID: 11746 Comm: syz.3.3179 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0
[  139.874075][T11746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  139.884129][T11746] ==================================================================
[  139.932247][T11753] xt_ecn: cannot match TCP bits for non-tcp packets
[  140.172230][T11431] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.