last executing test programs:

19m13.096934515s ago: executing program 2 (id=735):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r1}, 0x10)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0)

19m12.333591197s ago: executing program 2 (id=740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)

19m11.663347787s ago: executing program 2 (id=743):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r1}, 0x10)
r2 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
close(r2)
r3 = inotify_init1(0x0)
fcntl$setstatus(r2, 0x4, 0x2c00)
r4 = gettid()
fcntl$setown(r2, 0x8, r4)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r3, &(0x7f0000000180)='./control\x00', 0x80000010)

19m10.80020593s ago: executing program 2 (id=752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x5e51960ee9d81b8f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e20004db0"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x1000410, &(0x7f0000000040), 0x4, 0x504, &(0x7f0000019940)="$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")
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @fixed}, &(0x7f0000000140)=0xe, 0x80000)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r2, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a)
syz_mount_image$msdos(&(0x7f0000000340), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0x1, 0x0, &(0x7f0000000000))

19m8.79895546s ago: executing program 2 (id=758):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x0, 0x557, &(0x7f0000000800)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x2e)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, 0x0, 0x0, 0x2000c044)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f00000083c0)={{0x1}})
readv(r7, &(0x7f0000000080)=[{&(0x7f0000000140)=""/144, 0x20}], 0x1)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)

19m8.300337488s ago: executing program 2 (id=763):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000100010009000000010000", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000340)=""/160}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000d00)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000010c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@union={0x5, 0x0, 0x0, 0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x61]}}, &(0x7f00000000c0)=""/4096, 0x2b, 0x1000, 0x1, 0x0, 0x0, @void, @value}, 0x20)

19m8.238388979s ago: executing program 32 (id=763):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000100010009000000010000", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000340)=""/160}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000d00)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000010c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@union={0x5, 0x0, 0x0, 0x8}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x61]}}, &(0x7f00000000c0)=""/4096, 0x2b, 0x1000, 0x1, 0x0, 0x0, @void, @value}, 0x20)

1m11.838752914s ago: executing program 1 (id=8272):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x1100000000000000, &(0x7f0000000440)=@base={0x18, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1m11.810174114s ago: executing program 1 (id=8273):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x8000}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20)

1m11.706731796s ago: executing program 1 (id=8276):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f600000085000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0)

1m11.683244146s ago: executing program 1 (id=8278):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd)

1m11.600603747s ago: executing program 1 (id=8281):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x17)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000640)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x2, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000006c0)='ns/pid\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0xa, 0x9ab7)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64, @ANYRES64=0x0], 0x20)

1m11.600360247s ago: executing program 1 (id=8282):
creat(&(0x7f0000000100)='./file0\x00', 0x158)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

56.455412186s ago: executing program 33 (id=8282):
creat(&(0x7f0000000100)='./file0\x00', 0x158)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

3.32579935s ago: executing program 4 (id=9718):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)

3.244464811s ago: executing program 4 (id=9720):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x17)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000640)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x2, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000006c0)='ns/pid\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0xa, 0x9ab7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0], 0x20)

3.243678181s ago: executing program 5 (id=9721):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@caif=@rfm={0x25, 0x5, "cdfaaf7254f4ef6249f068fcdd7e1cbd"}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000300)="27050200340f14000600002fb96dbcf706e105000000430500001144ee162fd4b8bf4a31accb", 0x26}], 0x1, 0x0, 0x45}, 0x800)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000040), 0x4)
bind$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfe, 0x800}, 0xc)
r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x80044940, &(0x7f0000001980)={<r4=>0x0, ""/256, 0x0, <r5=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r6=>0x0, 0x0, <r7=>0x0})
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000002d40)=ANY=[@ANYRES16=r7, @ANYRES64=r6, @ANYBLOB="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", @ANYRES32=0x0, @ANYRESDEC=r4, @ANYRESHEX=r5, @ANYRES8=r6, @ANYBLOB="9a7f40ad4c7145903a868b9020e1e8899ed5747db23004fc9d248900abcaa6b065cf0800930a71dcd8b8955d93c78b9d4e5e06d8d5c9ac9b75d177754d6eba23e6d2be546c0dfecdf61baf732950a5729c01fbdc11e36cb411be200a9135657acd97d21ee46aac313ebdddd9265af16558dd3e5ba4836659a6abfe08aad84276acf949bdaa34bdf7f7b2dfb2fe8b9d6d225dcecebeb6e15f649994728842bd99fc94897d24315ac2d17bf6c2acfbfa8464d80f36304f88b906b78ab359be3479db5b0e7555f04416807c2202d6551f2425440be741dbe053e0bfeb845623e722a9293843f1cf0a71119dcadf7e353af4da52aed3086d6e5a095774248be9a1b1418dec1c03a2cb0ece0840ebeaaf7b67867da45943b700e2d6dad775ae6f33e55aa86ca84c336c91e3b7d7224f7a9a10d5b45a6ce0769d875415bea136b5508e5e0a88290792da3b11b2284a3d757c301cec78b55d3fcfa073615ccb089f66c5b9a5c84f6c1bb78c3370c4687eab260711fa05525687c7709e15cddea061f70798cbf940ad929eb80f33ad8bb4fcd322dd0558f111d7d01351147976b425a27e573402490055054cf3d80bebde6a89f3086170633740f08780aac3a73f17eaeda8deb642c2887962596b4d78c0ffffb28d0e64073b0641f89cf83a69afaaea03ba6070838fdbdaccb81630a6fdaa77fc10146013b9fd79e965a320daf81c1a51f032a3f462f2740e579eb116cad80b4e233326bf94fea52184517accf608b1fbfb395942869841b9ca0f314beff6b2dc0a74d7599012274b24775f0382e72907c1f0c571b994f048c0266feb775d893fec84e5733cd66a96cd45b60f63743b17b05d99c427a2d00a27fef17cadf128059a2e227b80701755b0bc706f32255c8cd619fa995cc7649f28337361a62cff46669fa4cf095a2d148987a9fafa6e1fb9f59b5ac5ff10a4c62e0187a3c75a983f7f5211142c6c09170a13e29c2044e5568bda8055cee4722e445e83ea01307c42cbe63a5bc529e1200e5874f7500275abacd6cc0e3bf8fd38ab7bab39f54d180d60892e2e3a713a3e654c89b8e9ba4474909991844514c04b655c66ccd6f2a17e29ff69d343ebac7ac5e1510ad4ff52e6a932a97bb0d814259da6545022152dd63f06219a1d66ec2278b694876ed6195b0543b8c9289b8438e8ee57dd38bcdb045a6fc4cede28effaa0354afbd4190fcbccd9a0e91508e4399e0e30a0bfdedcc19454b6dd7c2785a6e4fe74a0ece1d683ad07d76eafec02fb0d88debfeacd3531413185da0ffa4fb9b5e6d5a916f7bb5d51efc8ab61e4953fc6b2d1e670769f3ca56d51b804ceb118278acc90422e1f51e448a27d2fe4f93c88cf7c6148474bf650902dd6dd96541044113d244cf938150ec426e7ed63e1f153bbe328f4232552b104c8dee60b0c4e4c25f2605e97cc6f4263d32e8340be2d167137682373ae4cd501fdc9c5359b40f52803a5e4c0e04a5de0412c5cbd4d05e6135a1209d4b2dff50d39e481f1d1b01ed71004fb0c18e736af8ab176f833a439a85c9132e6d2296f665771c6a284eadc08c94ffa520dcc37fd6426c152364699514b15d4df6732fff39834e8ba29688b19db27a970d9d7fbee973c76bee04fb6164963969ebde0f785606781d63726736d8b60a713d5f72207a23f6f00420fdf24d14c069f36a7e236620481cc7a63857cc1355bac8d4f9a3f32785ad4d9d81719077a816b33b98006c322ee473aa9f8f83fae86a4d421104b298a9e42357c44b773e3504b3f9eb5b29330411b776b78fdb6dd9713dd1aee0cc9c7ee8bd23a50d4c8babaf6d74bc25377009a8c57c941f80e58ac08c93a275656cbad3864df9e791305d66103ab30983b07553ede5b5d5b0aab157f805eb6c11c75dd7f297c2cc9110551131a797164dec422b13799f1c261464c765a62c201eb9c8686eee94642d59f429cd137cba0d1a8126dcdfc28ea5c201526c61164a86f480dfde0c60fdf6afd3cd64719de1d89b5a362e058054a9db73aaffac324b04e8903060e1f14ca4ac31c82183066e6d581685efbe3452a20a665166b03808220770d66051971b61d8114376e22a4511cae9fdf7bbed68bb9f45b57eee1c15775730ef1434731d7b82a7cbcd6155396263984edfcea62196189da0ba9908d7d5ef514d75a3e1d4ae42654365083873fc4ce969fa4fac51d640be8d948bb9464d1a7e494c8df98bd5a569ff7fe1aca542c34610148a8f1dc9d60ff0f761270577f286a362f32164184ffce3ad132637e9f0381e9ce76a11f296f9d1e835cdc44926104e1df4d0a282a84b9fbc23064bfcab0d221c6e3124ae8ba6022e62f170dcc2d655f73b40f83fd65f5c705bc1f9e8df13adeadff9e1fe4660a55be7dc969cfffaed607190162dcd09d0cd86a297b22142b88f0eb28dd1a45152a4f4f2dca0d96d39fa594349040f486cd486af619b7083236cf90324cddc6f1ed0f6a103c8d936d7f2f31d420ef50931838e66721bff7494617b6b4bc385f3e51b3f81cf5d6953ac7fddc0f3466682911b38bc7f082e0c18e3ae0badf7f3fd3e186ebc2bab71fa26f77bb14cd97e6761c93c8c25887c0ef1f3dc1d8d86ce0fb73190f66f4deca77977e8d6064bfeeac3fad2bc50488c144e2a1a82fcc1e1c12ac54bf3e2d468e8f53241e4a6ad9e466746a45b053452ded5caa20461881d78d8235e986ba8b77e83601655d2650bf1b64ce17c75314216b43bbd1101a2e12e57525bb7d3b136a70635bdac8af24367a24ce2fe2a72ef2b0e56ff8dc62a82946f86f9b6b1418a89b1971372dfe7d5ce2e6611befff721f04a19bce7f90b1551a4cdead136662c50513fdde6f9d4a199c3907ed8799f231f54dd8347c71d829ff8ddc5d96b5aac2fe58652c81ff7f54e2568119dff2763ef435aa420630dacc7e9414340ee8688f46c7a8ab96d860937641042b3cdf6857ff1d2d4e47cec1f23e65fe541f38cb96b132666f999002e89cd1896ca58c2e63b87382e1a6c1ee9afa56cf3ba923fa9c989e20bff313f37252632fdcff03fbdd2d334ee93baf75c1bdae30feaa81fb2ac1b63c42dda06f20ce8c9d003eb3efed7931def342fb874fce92763f6f477c7f589b75d2129419fc4cb7a8893a1d3f94533ed9fdf9f21fc254fd80aa74750833d390327a2107e761240928d35a36c5eaca61fd848116b8dd7ec8157928bc2dd87f7756aa517cf6a61d2009fd4ba0579ca3b3129cfd5403546f5ab6d0575799a008fc67da9658427636d8f806d9b8cad64aee438d0a9b45957f31a5afe3ed894add9acadfd347246099c6ff0b4ec6f19ac61557daf8739e528185ab1468ca72d6d72e4f026e371e540b774b6576df3014dcc9e91b2cd1f0403a4fcaa6627b22682bb54f92150c2917acaee1972b2b03bc2bd37fdb9e7352c654d94ef196b7229e4da5ee62b7d395ecdd5177f2563242ea49ff78151a4a816a94e89b03f41c7e6684f8be3e5802e9338e7cbd3b43f708c062f944a59f31b02ca9a177e6b681accee8785d2467d2d78636be4330febaa3f6907db07992a2de74e459f3ae8ee6adae20cbc75aabd2d5d3424de0ddcc3ddd981c3a4966c57f8fdb1c42db87395f0bc800ff8ddb4c228a7d793d8a997885494a8578f5433d3f82886ea573641bf16065efbc25718c88f7277ce04c94af560d8deb7968496f849d3fad78741272b08bf7aec3f3c777428d3b8b897333ae5afb6823af63cb7347601ee2e8d4e21b21a12e6d42f66a1aac26d296bc68a998d8ba179ed5f756c2efd8a7acc0e3f08093bb4a83d37f15b4fe07c90858058ad1ff0e21bb7bf4363079c5d452dba5972b21c8f41daf6f11a51d321d3c1d544190238036d907d965ff469ce4895eb7675f3e94a15f83b837b892a40390d87d76e9b15eda02366299d3dd93943466bceeb2f9e465adccc08e1a02c3ac01815931627ed327e0ffbe09563221a365b88c4f2449bd3634920d5bfbde7cdc92c4cb16a579f35f07dafc87ce6ce4de7bf9e8ff0e80b81cdab8f2164a25a0a6929679ce9ae0dc2ac7ed41a787446676f091597551dc2e8c054224bac6652bba5fb675c0b2c94d2faac160f11b7b96fc96415aca8a47fa03658b8afa24b6bd97f7dbeead9ae5f7ec1cb0d000055f41a5043c6c4c97212398b168b5cb9ee650726eabcc31b6712e815fdaae77885350884fb36d6d5444d5e5500a7d636d4eced14b9d411c765b36a4be06ca9be2965d6d6c06c3b6bcb38babeb2999ee71295d48926bf6e39363fabf74de5e57aa0b59f9dddeca142d0c50ab7ff198196c69c971e6ab591220f4e42d6525e2dbd99b6c57949c854e4ee0e4581f9e3e160b3f66b01f23f4d0472c0a1f307837ac8dac0a257d09ab82975148dcd764fe6359a5f21b9cbe2ae7b9b277489a8b3285b8289a84ff854508b4488ffcf68f47ec7a5c18a8c3d06e26b32f754ac74ea8e93a554147fd3b3daf1fbe924e2e389cac13a5f80f3a21dbd250d3917f7b5acfc739a63f2b3d6b3f099efb4be7a842215c89fc87bd8550d11ba2a4af0f111ab124503b26feeae3be3ee24168dd4553a226b9168edb11c3e61bc850adf995b4d6f1aace6db0b91f805c3d1789a3e6b470e5470968f429d5b05c8f76ca2981e37f5bde4ad00a09755c76774ead7d93f3f41255b1d56152e3699b133b2e0b277427c992323d1b4d8c438434e9e901ddd43788f80cb9a975e9dd1671ce16be5ff8033d5da824f00fd78b540edbcd69a2e9aff03e31af9afefb809434f52b4a1239fdd241ed3a268258addde19d1724155a1a4c877bd59b0659b7a786886f6ffcb5999d1f9c007d615020926f7165a9ddd4aaa3c7b631d30cc951e328131d99282ac06a18f88373092320ea5308f06c376e711aecda4cd1c2b639d9ea7a2613d4e9eaa9a0ef72774fdec622f7d131b45135d577897bf686b460a371083070139ea544bda15012251d6c8e7163c25412841faefba76765648ca7cd1b423403a654b6b5754588ae6c309621477db20f7c9236af1e422ebd3fb6d6a712e7a6d00d58416b7d65a53a2514bf51bedfe9207f16a4d79418600389b98ea8b9e06b8da708a86f191e567925af39a09ac9fd7902e8f8e77567baf1b75c05ba1eb7089b424801405afc982a8d79c80fada184a1ab3bab526a3b0a5e20d2dc6bcdd2c5cb7c49f735f3e8f4d36a388ca805876ae08f0e3acca5dd864c1fa1552068bf799095221480374fd2dcaeddb74be93470eff4fe278e190f0a131f32340ada9cca518af769f42943875f4c5707beee2179771da21cd66405b9973648bd047a516d1cf902fa1f0fcdcbc3f4c1f20fc22f9a7e9f4c3a52576399604c46f83ede44f542d06d54e6e8a1e693a2cfcbb16c178d1bace976133e72cc4533bd02b1c4ec2cc22097435aff5a682ca7227414895450831560fa682493f4814ce8fbdb190f8ce2b533ed9582638511bda93aeae5d0690f745b788db622864ba3fb60952f119427fbe66754c5c038c5fb2cb87c326d65862e353c14950bd1fa7c70e36323e9cf90c81f6275e59c7926acac1560a0b6bbc7a850817f2effa19d485315a219d49e293f871278294d02765cf72caa2f438de3337ed205bf68ff6ddaaa5e4b80de5fba022dfcf9cf074a319678df11eb77b3ef66e512b67ba5182265a60eaf457691e973d23cbaf6000537f886695074ebb616f9cdad9de7c6fe9ecfbd13d537d64c34a7c90ca56b50e60d6a7067e391e63561793edf6ed3c2eeb8555909a59ce73da1f096d41fb42de44494128324a9", @ANYRESOCT=r1, @ANYRESDEC=r5], 0x0, 0x0, &(0x7f0000000000))
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000000340)={{r0}, r7, 0x16, @inherit={0x70, &(0x7f0000000200)={0x1, 0x5, 0x85f, 0xb5, {0x17, 0xf, 0x300000000, 0x7cb6, 0x2}, [0x1000000000000000, 0xfffffffffffffffc, 0x1ff, 0x1000, 0x8]}}, @name="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"})

3.197412752s ago: executing program 4 (id=9722):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = openat$selinux_create(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwrite64(r0, &(0x7f0000000000)="3703c70f70e244b7878fedf0c0c6c2ff2f524255d61dbfb25921e3d3686454b93e5842722103c5c67b0da4173b9e63544ee1f32fc67080b7b83c0a31", 0x3c, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))
rmdir(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.183031642s ago: executing program 5 (id=9723):
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000240))
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)

2.839362367s ago: executing program 4 (id=9726):
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000240))
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)

1.855163092s ago: executing program 5 (id=9738):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'sit0\x00'})
sendmsg$nl_route_sched(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48801}, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000080)=0x14)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)="89", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}, {{0x0, 0x0, &(0x7f0000000280)=[{0x0}], 0x1}}], 0x2, 0x0)
close(r2)

788.742518ms ago: executing program 5 (id=9741):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00'})
r5 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
lseek(r5, 0x1, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r6 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r6, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time={0x40, 0xfffffff9}, {}, {}, @raw32={[0x0, 0x0, 0x200000]}}, {0xfe, 0x0, 0x0, 0x4, @tick=0x8, {}, {}, @control={0x0, 0x0, 0x4}}], 0x38)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0xfffffffffffffffd)
r7 = socket$key(0xf, 0x3, 0x2)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r6)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r9, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r11 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x500, 0x0, 0x2000040}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r10, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_PID={0x8, 0x1c, r11}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0xc}, 0x2032, 0xf638, 0x1, 0x0, 0x200000, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0xfffffffffffffffd}, r11, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0xf8, 0xf7, 0x8, 0x70, 0x0, 0x10, 0x80f4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xaca3, 0x2, @perf_config_ext={0x3, 0x700000}, 0x4108, 0x3, 0x2, 0x5, 0xffffffffffffff80, 0x1000, 0x6c, 0x0, 0x9, 0x0, 0x7}, r11, 0x3, r6, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r13, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000240)={'vcan0\x00', <r14=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000900)={0x3dc, r8, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}, @ETHTOOL_A_LINKMODES_LANES={0x8}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x9}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0xe}, @ETHTOOL_A_LINKMODES_OURS={0x378, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x6, 0x5, "9fd5"}, @ETHTOOL_A_BITSET_VALUE={0xfa, 0x4, "769c8122d5695c522a251c30a25ce1d4cc7dd85c75296d5de04e0f6c3a9ea0da67c21d50a296b9375007270272e714754e5f9803a4352b22ffda434d7218e34f16cbae76242b760817d61aa6e7a93a163182acf35b1224ba2640e4e38f867eec0932add41a65c94a555b12a25f0fe187ee95d1afca7d859122d85340061518bce5cd9482ffcd17f0b133598b2474d25f9656cfb5d35bcb61ad288d0cb9c0fee282005fbfcc90294eb4b52991eaab4ac4cc4ef693d2ac84eb4ae3e6483bed38feb6d1e43a03adf589dacc24c585ca7939546fdba315ee5a037143e6854220edaa8924e90331d3696da6c951a82f4e9a91d4fef5fc771c"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x90, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffc}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb3ea}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\xd6\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/sg#\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0xdc, 0x3, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ',%+^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '/proc/sys/net/ipv4/vs/nat_icmp_send\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'kfree\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/sg#\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2000000}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\\\'*[\x00'}]}]}, @ETHTOOL_A_BITSET_BITS={0x100, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '$:}!\xc1+&(+(*\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x94}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10001}, @ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '/proc/sys/net/ipv4/vs/nat_icmp_send\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '*#\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ']$\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'kfree\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '%,[[$\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ')@\\^\x00'}]}]}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x3}, @ETHTOOL_A_LINKMODES_SPEED={0x8}, @ETHTOOL_A_LINKMODES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x3dc}, 0x1, 0x0, 0x0, 0x8080}, 0x2000c800)
semget$private(0x0, 0x4, 0x66f)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x9, 0x4, 0x0, 0x70bd2a, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2}]}, 0x20}, 0x1, 0x7}, 0x4040810)

788.146288ms ago: executing program 3 (id=9742):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffff", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

727.457749ms ago: executing program 3 (id=9744):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x158)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

710.351939ms ago: executing program 5 (id=9745):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x17)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x3, &(0x7f0000000640)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x2, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000006c0)='ns/pid\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0xa, 0x9ab7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0], 0x20)

663.18946ms ago: executing program 3 (id=9747):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df9abc5be93ce0d96", 0x71}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844e", 0xb6}], 0x3}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6bb3", 0x2b}, {&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7858b2a4edb673503cf002e28e331bc529b433cd7", 0xf1}, {&(0x7f0000001000)="bd2f6aa36cea0e4bccda24dc5bd69ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105b69346a4d09afd7b0b8bd5f8c25f0eab84d8ad1b6576552ee2acc2ef0a9b0f9964d5705db134bdd9f261b7349aeede1c42e31b1082eec37b959d16afb967f54c471f2c7922c3c069f6", 0x91}], 0x3}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

632.584651ms ago: executing program 5 (id=9748):
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000240))
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
accept$inet6(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)

627.187301ms ago: executing program 6 (id=9750):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

612.93297ms ago: executing program 3 (id=9751):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = openat$selinux_create(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
pwrite64(r0, &(0x7f0000000000)="3703c70f70e244b7878fedf0c0c6c2ff2f524255d61dbfb25921e3d3686454b93e5842722103c5c67b0da4173b9e63544ee1f32fc67080b7b83c0a31", 0x3c, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
ioprio_set$pid(0x2, 0x0, 0x2007)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r5}, 0x10)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))
rmdir(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

562.873411ms ago: executing program 6 (id=9752):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {0x0}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1de", 0xc2}, {0x0}], 0x4}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fc", 0x26}, {&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7858b2a4edb673503cf002e28e331bc529b433cd74ab6c4", 0xf4}, {&(0x7f0000001000)="bd2f6aa36cea0e4bccda24dc5bd69ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105b69346a4d09afd7b0b8bd5f8c25f0eab84d8ad1b6576552ee2acc2ef0a9b0f9964d5705db134bdd9f261b7349aeede1c42e31b1082eec37b959d16afb967f54c471f2c7922c3c069f6a67c", 0x93}], 0x3}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

480.758563ms ago: executing program 6 (id=9755):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x158)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="06000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32=r0], 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180040008003950323030"], 0x15)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

460.508373ms ago: executing program 0 (id=9756):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00'})
r5 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
lseek(r5, 0x1, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r6 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r6, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time={0x40, 0xfffffff9}, {}, {}, @raw32={[0x0, 0x0, 0x200000]}}, {0xfe, 0x0, 0x0, 0x4, @tick=0x8, {}, {}, @control={0x0, 0x0, 0x4}}], 0x38)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0xfffffffffffffffd)
r7 = socket$key(0xf, 0x3, 0x2)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r6)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r9, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r11 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x500, 0x0, 0x2000040}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r10, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_PID={0x8, 0x1c, r11}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0xc}, 0x2032, 0xf638, 0x1, 0x0, 0x200000, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0xfffffffffffffffd}, r11, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0xf8, 0xf7, 0x8, 0x70, 0x0, 0x10, 0x80f4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xaca3, 0x2, @perf_config_ext={0x3, 0x700000}, 0x4108, 0x3, 0x2, 0x5, 0xffffffffffffff80, 0x1000, 0x6c, 0x0, 0x9, 0x0, 0x7}, r11, 0x3, r6, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r13, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000240)={'vcan0\x00', <r14=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f0000000900)={0x3dc, r8, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}, @ETHTOOL_A_LINKMODES_LANES={0x8}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x9}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0xe}, @ETHTOOL_A_LINKMODES_OURS={0x378, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x6, 0x5, "9fd5"}, @ETHTOOL_A_BITSET_VALUE={0xfa, 0x4, "769c8122d5695c522a251c30a25ce1d4cc7dd85c75296d5de04e0f6c3a9ea0da67c21d50a296b9375007270272e714754e5f9803a4352b22ffda434d7218e34f16cbae76242b760817d61aa6e7a93a163182acf35b1224ba2640e4e38f867eec0932add41a65c94a555b12a25f0fe187ee95d1afca7d859122d85340061518bce5cd9482ffcd17f0b133598b2474d25f9656cfb5d35bcb61ad288d0cb9c0fee282005fbfcc90294eb4b52991eaab4ac4cc4ef693d2ac84eb4ae3e6483bed38feb6d1e43a03adf589dacc24c585ca7939546fdba315ee5a037143e6854220edaa8924e90331d3696da6c951a82f4e9a91d4fef5fc771c"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x90, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffc}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb3ea}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '\xd6\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/sg#\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0xdc, 0x3, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ',%+^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '/proc/sys/net/ipv4/vs/nat_icmp_send\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'kfree\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/sg#\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2000000}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\\\'*[\x00'}]}]}, @ETHTOOL_A_BITSET_BITS={0x100, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '$:}!\xc1+&(+(*\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x94}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10001}, @ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '/proc/sys/net/ipv4/vs/nat_icmp_send\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '*#\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ']$\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'kfree\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '%,[[$\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ')@\\^\x00'}]}]}]}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x3}, @ETHTOOL_A_LINKMODES_SPEED={0x8}, @ETHTOOL_A_LINKMODES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x3dc}, 0x1, 0x0, 0x0, 0x8080}, 0x2000c800)
semget$private(0x0, 0x4, 0x66f)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x3, 0x0, 0x9, 0x4, 0x0, 0x70bd2a, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2}]}, 0x20}, 0x1, 0x7}, 0x4040810)

403.423844ms ago: executing program 6 (id=9757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x30, r3, 0x100, 0x70bd26, 0x25dfdbfc, {{}, {}, {0x14, 0x18, {0x8, @bearer=@udp='udp:syz1\x00'}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4080}, 0x44050)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000600)='kfree\x00', r4}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
unlink(0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x2}, {0xffff, 0xffff}, {0xc, 0x4}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000900), r6)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x759, &(0x7f0000000080)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@errors_remount}, {@init_itable, 0x0}, {@usrjquota}, {@noload}, {@jqfmt_vfsv1}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@debug}, {@resgid}, {@data_err_ignore}], [], 0x2c}, 0x2, 0x4f9, &(0x7f0000000200)="$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")

353.609285ms ago: executing program 4 (id=9758):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r0 = openat$selinux_create(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pwrite64(r0, &(0x7f0000000000)="3703c70f70e244b7878fedf0c0c6c2ff2f524255d61dbfb25921e3d3686454b93e5842722103c5c67b0da4173b9e63544ee1f32fc67080b7b83c0a31", 0x3c, 0x2)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))
rmdir(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

275.419616ms ago: executing program 0 (id=9759):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
set_mempolicy(0x4002, &(0x7f0000000080)=0x7e, 0x9)

234.608507ms ago: executing program 3 (id=9760):
socket$inet(0x2, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01010000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140003006e657464657673696d300000000000001c0008"], 0xc0}}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x1019c1, 0x0)
r2 = socket$inet6(0xa, 0x80001, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000050000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003006e657464657673696d300000000000000800014000000005"], 0xd4}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
personality(0x400000d)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x3, 0x0, @mcast1}}}, 0x88)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socket$inet(0x2, 0x4000000000000001, 0x0)
iopl(0x3)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x1000004, &(0x7f0000000d80)=ANY=[@ANYBLOB='shortname=lower,iocharset=iso8859-1,fmask=00000000000000000000066,uni_xlate=1,uni_xlate=0,fmask=00000000000000000000003,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=1,check=strict,nonumtail=0,rodir,errors=continue,shortname=lower,umaQk=00000000000000000000007,rodir,sys_immutable,\x00', @ANYBLOB="1a961083c216e398b3852441fbacd14539194e81e2ec74ea00af4757fd632db5866c80f5b55492be6ad393d28d63023cd2e764a6bb41fa00d6c103356045fc3ade2c93339a56afb89b72a46f475c860a952e02dbf9c947a7cb75e89843f6d981fe7eed0ef37d5ab46550aa22", @ANYRES64], 0x6, 0x2bb, &(0x7f0000001240)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0xeb}]})
renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x0)
ppoll(0x0, 0x0, &(0x7f0000000140), &(0x7f0000000180)={[0x7]}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
unshare(0x2a020480)

222.834697ms ago: executing program 4 (id=9761):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r2 = syz_io_uring_setup(0x890, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x100000a, 0x13, r2, 0x10000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000680)={0x28, r8, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0x40000)
r9 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r10, &(0x7f0000000100)={0x20002006})
connect$unix(r10, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r12 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r12, &(0x7f0000000000)=0xfe8e, 0x12)
accept4$packet(r12, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14, 0x800)
syz_io_uring_submit(r3, r6, &(0x7f00000000c0)=@IORING_OP_SPLICE={0x1e, 0x4, 0x0, @fd_index=0xa, 0x6, {0x0, r1}, 0x8, 0x1, 0x0, {0x0, r11, r1}})
r13 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000300)={'veth0_vlan\x00', <r14=>0x0})
sendmsg$nl_route_sched(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r14, {0x0, 0xe32b60fbedc7f0cc}, {0x7}, {0xf, 0xa}}}, 0x24}}, 0x0)
bind$can_j1939(r5, &(0x7f00000001c0)={0x1d, r14, 0x3, {0x2, 0xf0, 0x4}}, 0x18)
io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000000)={0x0, 0x1000, 0x4, 0xfff, 0x8, "4d332e61f7d83c182febbfe3be6b22e62ebce0", 0x1, 0x1004570})
r15 = dup(r0)
write$UHID_INPUT(r15, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006)
symlink(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x9, 0x10001, 0x3, 0x800, 0x20000, r15, 0x52, '\x00', r14, r0, 0x2, 0x0, 0xb24, 0x0, @void, @value, @void, @value}, 0x50)

197.746537ms ago: executing program 0 (id=9762):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df9abc5be93ce0d96", 0x71}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1dec077b5099cf9aecd1a9d94e235a7", 0xd0}], 0x3}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fc", 0x26}, {&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7858b2a4edb673503cf002e28e331bc529b433cd74ab6c4", 0xf4}, {&(0x7f0000001000)="bd2f6aa36cea0e4bccda24dc5bd69ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105b69346a4d09afd7b0b8bd5f8c25f0eab84d8ad1b6576552ee2acc2ef0a9b0f9964d5705db134bdd9f261b7349aeede1c42e31b1082eec37b959d16afb967f54c471f2c7922c3c069f6a67c", 0x93}], 0x3}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

144.800498ms ago: executing program 0 (id=9763):
creat(&(0x7f0000000100)='./file0\x00', 0x158)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = dup(r2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[])

101.234259ms ago: executing program 0 (id=9764):
creat(&(0x7f0000000100)='./file0\x00', 0x158)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, 0x0, 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

77.948039ms ago: executing program 6 (id=9765):
creat(&(0x7f0000000100)='./file0\x00', 0x158)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

37.1878ms ago: executing program 0 (id=9766):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffff", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

20.41831ms ago: executing program 6 (id=9767):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xe, 0x3, &(0x7f0000000040)=@framed={{0x35, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xb4}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xd, {"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", 0x1010}}, 0x1b7)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4000000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000010240000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r4], 0x40}}, 0x4000)

0s ago: executing program 3 (id=9768):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @multicast2}}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0)

kernel console output (not intermixed with test programs):

85.092656][  T851] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1285.186447][  T851] 8021q: adding VLAN 0 to HW filter on device team0
[ 1285.237420][T28941] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1285.244545][T28941] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1285.267550][T28941] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1285.274716][T28941] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1285.305839][  T851] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1285.445075][  T811] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1285.530993][  T986] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1285.530993][  T986]    program syz.3.8631 not setting count and/or reply_len properly
[ 1285.532525][  T851] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1285.827204][ T1007] netlink: 100 bytes leftover after parsing attributes in process `syz.3.8634'.
[ 1285.953628][  T811] veth0_vlan: entered promiscuous mode
[ 1285.969787][  T811] veth1_vlan: entered promiscuous mode
[ 1286.001066][  T851] veth0_vlan: entered promiscuous mode
[ 1286.024544][  T851] veth1_vlan: entered promiscuous mode
[ 1286.035933][  T811] veth0_macvtap: entered promiscuous mode
[ 1286.049036][  T811] veth1_macvtap: entered promiscuous mode
[ 1286.060975][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.071511][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.081432][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.092101][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.102424][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.113008][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.122941][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.133489][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.144715][  T811] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1286.163408][  T851] veth0_macvtap: entered promiscuous mode
[ 1286.172855][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.183394][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.193246][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.203755][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.213741][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.224382][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.234349][  T811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.244875][  T811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.255608][  T811] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1286.269597][  T851] veth1_macvtap: entered promiscuous mode
[ 1286.286950][  T811] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.295844][  T811] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.304590][  T811] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.313470][  T811] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.361364][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.371998][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.381932][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.392447][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.402417][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.413035][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.423004][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.433571][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.443449][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1286.454012][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.480767][  T851] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1286.513748][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.524386][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.534280][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.544820][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.554738][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.565284][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.575221][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.585802][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.595740][  T851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1286.606264][  T851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1286.620654][  T851] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1286.630223][  T851] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.639091][  T851] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.647800][  T851] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1286.656602][  T851] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1287.034145][ T1058] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8648'.
[ 1287.131199][ T1058] loop6: detected capacity change from 0 to 256
[ 1287.169330][ T1069] loop5: detected capacity change from 0 to 1024
[ 1287.176122][ T1069] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1287.183232][ T1069] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1287.212954][ T1069] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1287.223361][ T1069] System zones: 0-1, 3-36
[ 1287.236352][ T1069] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1287.415966][ T1083] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8656'.
[ 1287.463131][ T1083] netlink: 'syz.0.8656': attribute type 29 has an invalid length.
[ 1287.519542][ T1091] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8660'.
[ 1287.623777][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1287.747121][ T1097] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8663'.
[ 1287.870330][ T1097] loop6: detected capacity change from 0 to 256
[ 1288.093681][   T29] kauditd_printk_skb: 252 callbacks suppressed
[ 1288.093695][   T29] audit: type=1326 audit(1742710060.421:20674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.126744][   T29] audit: type=1326 audit(1742710060.431:20675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.156055][   T29] audit: type=1326 audit(1742710060.481:20676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.179835][   T29] audit: type=1326 audit(1742710060.481:20677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.203744][   T29] audit: type=1326 audit(1742710060.481:20678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.227460][   T29] audit: type=1326 audit(1742710060.481:20679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.251088][   T29] audit: type=1326 audit(1742710060.481:20680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.274647][   T29] audit: type=1326 audit(1742710060.481:20681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.298131][   T29] audit: type=1326 audit(1742710060.481:20682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.321747][   T29] audit: type=1326 audit(1742710060.481:20683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.3.8673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1288.476870][ T1143] 9pnet_fd: Insufficient options for proto=fd
[ 1288.504618][ T1147] program syz.5.8686 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1288.536955][ T1152] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8688'.
[ 1288.885922][ T1168] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8694'.
[ 1289.160615][ T1168] vlan2: entered allmulticast mode
[ 1289.248718][ T1178] program syz.4.8699 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1289.492449][ T1202] loop4: detected capacity change from 0 to 256
[ 1289.517757][ T1206] program syz.6.8713 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1289.583472][ T1208] netlink: 'syz.4.8714': attribute type 29 has an invalid length.
[ 1289.600982][ T1211] vlan2: entered allmulticast mode
[ 1289.638225][ T1216] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1289.638225][ T1216]    program syz.0.8718 not setting count and/or reply_len properly
[ 1289.701859][ T1220] 9pnet_fd: Insufficient options for proto=fd
[ 1290.239916][ T1239] __nla_validate_parse: 3 callbacks suppressed
[ 1290.239938][ T1239] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8725'.
[ 1290.367173][ T1244] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8728'.
[ 1290.380314][ T1246] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1290.380314][ T1246]    program syz.5.8729 not setting count and/or reply_len properly
[ 1290.388825][ T1244] vlan2: entered allmulticast mode
[ 1290.427948][ T1248] loop5: detected capacity change from 0 to 1024
[ 1290.436392][ T1248] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1290.470785][ T1251] netlink: 'syz.0.8731': attribute type 29 has an invalid length.
[ 1290.492416][ T1248] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1290.514760][ T1248] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1290.525389][ T1248] System zones: 0-1, 3-36
[ 1290.538159][ T1248] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1290.673677][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1290.741961][ T1272] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8738'.
[ 1290.784157][ T1276] netlink: 100 bytes leftover after parsing attributes in process `syz.0.8739'.
[ 1290.797876][ T1272] loop6: detected capacity change from 0 to 256
[ 1291.432410][ T1307] loop5: detected capacity change from 0 to 256
[ 1291.498478][ T1311] netlink: 100 bytes leftover after parsing attributes in process `syz.4.8752'.
[ 1291.532202][ T1315] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8754'.
[ 1291.565391][ T1315] loop5: detected capacity change from 0 to 256
[ 1291.743817][ T1336] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8762'.
[ 1291.756174][ T1338] netlink: 52 bytes leftover after parsing attributes in process `syz.4.8764'.
[ 1292.071140][ T1347] netlink: 100 bytes leftover after parsing attributes in process `syz.5.8767'.
[ 1292.320000][ T1357] vlan2: entered allmulticast mode
[ 1292.601371][ T1378] netlink: 100 bytes leftover after parsing attributes in process `syz.3.8780'.
[ 1292.630564][ T1381] loop5: detected capacity change from 0 to 256
[ 1292.765765][ T1393] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1292.765765][ T1393]    program syz.4.8789 not setting count and/or reply_len properly
[ 1293.048073][ T1399] loop6: detected capacity change from 0 to 1024
[ 1293.055016][ T1399] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1293.070919][ T1399] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1293.086895][ T1399] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1293.095901][ T1399] System zones: 0-1, 3-36
[ 1293.135356][ T1399] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1293.187756][   T29] kauditd_printk_skb: 236 callbacks suppressed
[ 1293.187777][   T29] audit: type=1326 audit(1742710065.481:20920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.217776][   T29] audit: type=1326 audit(1742710065.481:20921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.241354][   T29] audit: type=1326 audit(1742710065.481:20922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.265241][   T29] audit: type=1326 audit(1742710065.481:20923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.288904][   T29] audit: type=1326 audit(1742710065.481:20924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.312823][   T29] audit: type=1326 audit(1742710065.481:20925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.336369][   T29] audit: type=1326 audit(1742710065.481:20926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.359995][   T29] audit: type=1326 audit(1742710065.481:20927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.383528][   T29] audit: type=1326 audit(1742710065.481:20928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.407033][   T29] audit: type=1326 audit(1742710065.481:20929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1398 comm="syz.6.8792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f79315ed169 code=0x7ffc0000
[ 1293.454978][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1293.629750][ T1434] FAULT_INJECTION: forcing a failure.
[ 1293.629750][ T1434] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1293.642928][ T1434] CPU: 0 UID: 0 PID: 1434 Comm: syz.3.8806 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1293.642960][ T1434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1293.642975][ T1434] Call Trace:
[ 1293.642983][ T1434]  <TASK>
[ 1293.642992][ T1434]  dump_stack_lvl+0xf2/0x150
[ 1293.643089][ T1434]  dump_stack+0x15/0x1a
[ 1293.643177][ T1434]  should_fail_ex+0x24a/0x260
[ 1293.643215][ T1434]  should_fail+0xb/0x10
[ 1293.643249][ T1434]  should_fail_usercopy+0x1a/0x20
[ 1293.643354][ T1434]  _copy_from_user+0x1c/0xa0
[ 1293.643417][ T1434]  usbdev_ioctl+0x1964/0x3f20
[ 1293.643470][ T1434]  ? do_vfs_ioctl+0x98b/0x1590
[ 1293.643547][ T1434]  ? selinux_file_ioctl+0x2f7/0x380
[ 1293.643585][ T1434]  ? __fget_files+0x17c/0x1c0
[ 1293.643677][ T1434]  ? __pfx_usbdev_ioctl+0x10/0x10
[ 1293.643713][ T1434]  __se_sys_ioctl+0xc9/0x140
[ 1293.643784][ T1434]  __x64_sys_ioctl+0x43/0x50
[ 1293.643877][ T1434]  x64_sys_call+0x1690/0x2dc0
[ 1293.643912][ T1434]  do_syscall_64+0xc9/0x1c0
[ 1293.643954][ T1434]  ? clear_bhb_loop+0x55/0xb0
[ 1293.643988][ T1434]  ? clear_bhb_loop+0x55/0xb0
[ 1293.644057][ T1434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1293.644089][ T1434] RIP: 0033:0x7f221c4bd169
[ 1293.644107][ T1434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1293.644130][ T1434] RSP: 002b:00007f221ab21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1293.644149][ T1434] RAX: ffffffffffffffda RBX: 00007f221c6d5fa0 RCX: 00007f221c4bd169
[ 1293.644164][ T1434] RDX: 0000200000000000 RSI: 00000000802c550a RDI: 0000000000000003
[ 1293.644179][ T1434] RBP: 00007f221ab21090 R08: 0000000000000000 R09: 0000000000000000
[ 1293.644193][ T1434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1293.644234][ T1434] R13: 0000000000000000 R14: 00007f221c6d5fa0 R15: 00007ffca43a0fd8
[ 1293.644257][ T1434]  </TASK>
[ 1293.932714][ T1441] loop3: detected capacity change from 0 to 1024
[ 1293.939514][ T1441] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1293.948535][ T1441] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1293.970414][ T1441] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1293.979427][ T1441] System zones: 0-1, 3-36
[ 1293.989705][ T1441] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1294.094887][T26762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1294.161419][ T1462] loop3: detected capacity change from 0 to 256
[ 1294.267942][ T1474] FAULT_INJECTION: forcing a failure.
[ 1294.267942][ T1474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1294.281121][ T1474] CPU: 0 UID: 0 PID: 1474 Comm: syz.6.8823 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1294.281212][ T1474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1294.281225][ T1474] Call Trace:
[ 1294.281307][ T1474]  <TASK>
[ 1294.281314][ T1474]  dump_stack_lvl+0xf2/0x150
[ 1294.281346][ T1474]  dump_stack+0x15/0x1a
[ 1294.281372][ T1474]  should_fail_ex+0x24a/0x260
[ 1294.281406][ T1474]  should_fail+0xb/0x10
[ 1294.281479][ T1474]  should_fail_usercopy+0x1a/0x20
[ 1294.281512][ T1474]  _copy_from_user+0x1c/0xa0
[ 1294.281532][ T1474]  copy_msghdr_from_user+0x54/0x2a0
[ 1294.281567][ T1474]  ? __fget_files+0x17c/0x1c0
[ 1294.281657][ T1474]  __sys_sendmsg+0x13e/0x230
[ 1294.281697][ T1474]  __x64_sys_sendmsg+0x46/0x50
[ 1294.281744][ T1474]  x64_sys_call+0x2734/0x2dc0
[ 1294.281822][ T1474]  do_syscall_64+0xc9/0x1c0
[ 1294.281855][ T1474]  ? clear_bhb_loop+0x55/0xb0
[ 1294.281883][ T1474]  ? clear_bhb_loop+0x55/0xb0
[ 1294.281910][ T1474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1294.281954][ T1474] RIP: 0033:0x7f79315ed169
[ 1294.281969][ T1474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1294.281987][ T1474] RSP: 002b:00007f792fc51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1294.282006][ T1474] RAX: ffffffffffffffda RBX: 00007f7931805fa0 RCX: 00007f79315ed169
[ 1294.282018][ T1474] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[ 1294.282030][ T1474] RBP: 00007f792fc51090 R08: 0000000000000000 R09: 0000000000000000
[ 1294.282056][ T1474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1294.282080][ T1474] R13: 0000000000000000 R14: 00007f7931805fa0 R15: 00007ffedcedeb68
[ 1294.282125][ T1474]  </TASK>
[ 1294.641947][ T1495] loop6: detected capacity change from 0 to 256
[ 1294.807744][ T1518] loop6: detected capacity change from 0 to 1024
[ 1294.818840][ T1518] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1294.826920][ T1518] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1294.843743][ T1523] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1294.843743][ T1523]    program syz.3.8845 not setting count and/or reply_len properly
[ 1294.847158][ T1518] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1294.868618][ T1518] System zones: 0-1, 3-36
[ 1294.915695][ T1518] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1294.998644][ T1536] loop3: detected capacity change from 0 to 256
[ 1295.041494][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1295.160945][ T1572] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1295.160945][ T1572]    program syz.6.8862 not setting count and/or reply_len properly
[ 1295.298786][ T1589] __nla_validate_parse: 11 callbacks suppressed
[ 1295.298805][ T1589] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8871'.
[ 1295.325631][ T1595] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1295.325631][ T1595]    program syz.0.8874 not setting count and/or reply_len properly
[ 1295.385074][ T1599] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8876'.
[ 1295.474277][ T1613] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1295.474277][ T1613]    program syz.6.8882 not setting count and/or reply_len properly
[ 1295.546891][ T1623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8887'.
[ 1295.621139][ T1632] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8892'.
[ 1295.706536][ T1644] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1295.706536][ T1644]    program syz.3.8896 not setting count and/or reply_len properly
[ 1296.128322][ T1675] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8912'.
[ 1296.164731][ T1679] ip6tnl2: entered promiscuous mode
[ 1296.170156][ T1679] ip6tnl2: entered allmulticast mode
[ 1296.191698][ T1683] netlink: 'syz.4.8912': attribute type 29 has an invalid length.
[ 1296.334596][ T1695] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8920'.
[ 1296.360402][ T1695] loop4: detected capacity change from 0 to 256
[ 1296.662568][ T1721] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8930'.
[ 1297.182229][ T1736] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8937'.
[ 1297.483494][ T1736] loop4: detected capacity change from 0 to 256
[ 1297.615314][ T1744] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8941'.
[ 1297.648676][ T1744] netlink: 'syz.6.8941': attribute type 29 has an invalid length.
[ 1297.688697][ T1748] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8943'.
[ 1298.092920][ T1760] loop6: detected capacity change from 0 to 256
[ 1298.273205][   T29] kauditd_printk_skb: 464 callbacks suppressed
[ 1298.273222][   T29] audit: type=1326 audit(1742710070.601:21394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.303038][   T29] audit: type=1326 audit(1742710070.601:21395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.326664][   T29] audit: type=1326 audit(1742710070.601:21396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.350395][   T29] audit: type=1326 audit(1742710070.601:21397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.374015][   T29] audit: type=1326 audit(1742710070.601:21398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.397617][   T29] audit: type=1326 audit(1742710070.601:21399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.421178][   T29] audit: type=1326 audit(1742710070.601:21400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.444716][   T29] audit: type=1326 audit(1742710070.601:21401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.468279][   T29] audit: type=1326 audit(1742710070.601:21402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.491966][   T29] audit: type=1326 audit(1742710070.601:21403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1770 comm="syz.0.8956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1298.542635][ T1783] loop5: detected capacity change from 0 to 256
[ 1298.551712][ T1778] loop4: detected capacity change from 0 to 256
[ 1298.653250][ T1794] loop6: detected capacity change from 0 to 512
[ 1298.690805][ T1794] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1298.723418][ T1797] loop4: detected capacity change from 0 to 256
[ 1298.736603][ T1794] EXT4-fs error (device loop6): ext4_map_blocks:671: inode #2: block 3: comm syz.6.8964: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1298.752620][ T1794] EXT4-fs warning (device loop6): dx_probe:823: inode #2: lblock 0: comm syz.6.8964: error -117 reading directory block
[ 1298.794424][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1298.834651][ T1805] netlink: 'syz.3.8968': attribute type 29 has an invalid length.
[ 1298.883684][ T1813] FAULT_INJECTION: forcing a failure.
[ 1298.883684][ T1813] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1298.898145][ T1813] CPU: 1 UID: 0 PID: 1813 Comm: syz.6.8972 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1298.898175][ T1813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1298.898192][ T1813] Call Trace:
[ 1298.898199][ T1813]  <TASK>
[ 1298.898207][ T1813]  dump_stack_lvl+0xf2/0x150
[ 1298.898251][ T1813]  dump_stack+0x15/0x1a
[ 1298.898276][ T1813]  should_fail_ex+0x24a/0x260
[ 1298.898314][ T1813]  should_fail+0xb/0x10
[ 1298.898367][ T1813]  should_fail_usercopy+0x1a/0x20
[ 1298.898442][ T1813]  _copy_from_user+0x1c/0xa0
[ 1298.898463][ T1813]  move_addr_to_kernel+0x82/0x120
[ 1298.898504][ T1813]  __sys_connect+0x67/0x1b0
[ 1298.898535][ T1813]  __x64_sys_connect+0x41/0x50
[ 1298.898560][ T1813]  x64_sys_call+0x22a7/0x2dc0
[ 1298.898668][ T1813]  do_syscall_64+0xc9/0x1c0
[ 1298.898709][ T1813]  ? clear_bhb_loop+0x55/0xb0
[ 1298.898743][ T1813]  ? clear_bhb_loop+0x55/0xb0
[ 1298.898826][ T1813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.898859][ T1813] RIP: 0033:0x7f79315ed169
[ 1298.898878][ T1813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1298.898900][ T1813] RSP: 002b:00007f792fc51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1298.898929][ T1813] RAX: ffffffffffffffda RBX: 00007f7931805fa0 RCX: 00007f79315ed169
[ 1298.898944][ T1813] RDX: 000000000000000c RSI: 0000200000000b40 RDI: 0000000000000003
[ 1298.898958][ T1813] RBP: 00007f792fc51090 R08: 0000000000000000 R09: 0000000000000000
[ 1298.898973][ T1813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1298.898987][ T1813] R13: 0000000000000000 R14: 00007f7931805fa0 R15: 00007ffedcedeb68
[ 1298.899010][ T1813]  </TASK>
[ 1299.129237][ T1823] loop4: detected capacity change from 0 to 256
[ 1299.312332][ T1842] netlink: 'syz.4.8986': attribute type 29 has an invalid length.
[ 1299.508820][ T1865] FAULT_INJECTION: forcing a failure.
[ 1299.508820][ T1865] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1299.522024][ T1865] CPU: 1 UID: 0 PID: 1865 Comm: syz.6.8997 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1299.522053][ T1865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1299.522078][ T1865] Call Trace:
[ 1299.522087][ T1865]  <TASK>
[ 1299.522095][ T1865]  dump_stack_lvl+0xf2/0x150
[ 1299.522162][ T1865]  dump_stack+0x15/0x1a
[ 1299.522234][ T1865]  should_fail_ex+0x24a/0x260
[ 1299.522273][ T1865]  should_fail+0xb/0x10
[ 1299.522307][ T1865]  should_fail_usercopy+0x1a/0x20
[ 1299.522345][ T1865]  _copy_from_user+0x1c/0xa0
[ 1299.522380][ T1865]  copy_msghdr_from_user+0x54/0x2a0
[ 1299.522498][ T1865]  ? __fget_files+0x17c/0x1c0
[ 1299.522585][ T1865]  __sys_sendmsg+0x13e/0x230
[ 1299.522627][ T1865]  __x64_sys_sendmsg+0x46/0x50
[ 1299.522655][ T1865]  x64_sys_call+0x2734/0x2dc0
[ 1299.522687][ T1865]  do_syscall_64+0xc9/0x1c0
[ 1299.522750][ T1865]  ? clear_bhb_loop+0x55/0xb0
[ 1299.522783][ T1865]  ? clear_bhb_loop+0x55/0xb0
[ 1299.522813][ T1865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1299.522896][ T1865] RIP: 0033:0x7f79315ed169
[ 1299.522911][ T1865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1299.522930][ T1865] RSP: 002b:00007f792fc51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1299.522948][ T1865] RAX: ffffffffffffffda RBX: 00007f7931805fa0 RCX: 00007f79315ed169
[ 1299.523031][ T1865] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 1299.523043][ T1865] RBP: 00007f792fc51090 R08: 0000000000000000 R09: 0000000000000000
[ 1299.523054][ T1865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1299.523072][ T1865] R13: 0000000000000000 R14: 00007f7931805fa0 R15: 00007ffedcedeb68
[ 1299.523091][ T1865]  </TASK>
[ 1300.238208][ T1898] loop4: detected capacity change from 0 to 256
[ 1300.408214][ T1900] __nla_validate_parse: 15 callbacks suppressed
[ 1300.408232][ T1900] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9011'.
[ 1300.464782][ T1906] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9014'.
[ 1300.477486][ T1906] netlink: 'syz.0.9014': attribute type 29 has an invalid length.
[ 1300.978890][ T1951] FAULT_INJECTION: forcing a failure.
[ 1300.978890][ T1951] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1300.992026][ T1951] CPU: 1 UID: 0 PID: 1951 Comm: syz.6.9033 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1300.992136][ T1951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1300.992150][ T1951] Call Trace:
[ 1300.992157][ T1951]  <TASK>
[ 1300.992166][ T1951]  dump_stack_lvl+0xf2/0x150
[ 1300.992211][ T1951]  dump_stack+0x15/0x1a
[ 1300.992307][ T1951]  should_fail_ex+0x24a/0x260
[ 1300.992395][ T1951]  should_fail+0xb/0x10
[ 1300.992540][ T1951]  should_fail_usercopy+0x1a/0x20
[ 1300.992591][ T1951]  _copy_from_user+0x1c/0xa0
[ 1300.992641][ T1951]  copy_msghdr_from_user+0x54/0x2a0
[ 1300.992678][ T1951]  ? __fget_files+0x17c/0x1c0
[ 1300.992794][ T1951]  __sys_sendmsg+0x13e/0x230
[ 1300.992853][ T1951]  __x64_sys_sendmsg+0x46/0x50
[ 1300.992923][ T1951]  x64_sys_call+0x2734/0x2dc0
[ 1300.992954][ T1951]  do_syscall_64+0xc9/0x1c0
[ 1300.992994][ T1951]  ? clear_bhb_loop+0x55/0xb0
[ 1300.993050][ T1951]  ? clear_bhb_loop+0x55/0xb0
[ 1300.993084][ T1951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.993179][ T1951] RIP: 0033:0x7f79315ed169
[ 1300.993196][ T1951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1300.993218][ T1951] RSP: 002b:00007f792fc51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1300.993292][ T1951] RAX: ffffffffffffffda RBX: 00007f7931805fa0 RCX: 00007f79315ed169
[ 1300.993353][ T1951] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 1300.993367][ T1951] RBP: 00007f792fc51090 R08: 0000000000000000 R09: 0000000000000000
[ 1300.993382][ T1951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1300.993474][ T1951] R13: 0000000000000000 R14: 00007f7931805fa0 R15: 00007ffedcedeb68
[ 1300.993495][ T1951]  </TASK>
[ 1301.253002][ T1961] FAULT_INJECTION: forcing a failure.
[ 1301.253002][ T1961] name failslab, interval 1, probability 0, space 0, times 0
[ 1301.265773][ T1961] CPU: 0 UID: 0 PID: 1961 Comm: syz.0.9038 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1301.265868][ T1961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1301.265884][ T1961] Call Trace:
[ 1301.265891][ T1961]  <TASK>
[ 1301.265900][ T1961]  dump_stack_lvl+0xf2/0x150
[ 1301.265934][ T1961]  dump_stack+0x15/0x1a
[ 1301.265962][ T1961]  should_fail_ex+0x24a/0x260
[ 1301.266080][ T1961]  should_failslab+0x8f/0xb0
[ 1301.266119][ T1961]  __kmalloc_node_noprof+0xad/0x410
[ 1301.266148][ T1961]  ? kstrtouint+0x77/0xc0
[ 1301.266179][ T1961]  ? __kvmalloc_node_noprof+0x72/0x170
[ 1301.266229][ T1961]  __kvmalloc_node_noprof+0x72/0x170
[ 1301.266266][ T1961]  file_tty_write+0x1a9/0x680
[ 1301.266300][ T1961]  tty_write+0x28/0x30
[ 1301.266328][ T1961]  vfs_write+0x77b/0x920
[ 1301.266362][ T1961]  ? __pfx_tty_write+0x10/0x10
[ 1301.266424][ T1961]  ksys_write+0xe8/0x1b0
[ 1301.266459][ T1961]  __x64_sys_write+0x42/0x50
[ 1301.266494][ T1961]  x64_sys_call+0x287e/0x2dc0
[ 1301.266528][ T1961]  do_syscall_64+0xc9/0x1c0
[ 1301.266568][ T1961]  ? clear_bhb_loop+0x55/0xb0
[ 1301.266643][ T1961]  ? clear_bhb_loop+0x55/0xb0
[ 1301.266677][ T1961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.266710][ T1961] RIP: 0033:0x7f88596fd169
[ 1301.266729][ T1961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1301.266805][ T1961] RSP: 002b:00007f8857d61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1301.266828][ T1961] RAX: ffffffffffffffda RBX: 00007f8859915fa0 RCX: 00007f88596fd169
[ 1301.266853][ T1961] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000004
[ 1301.266904][ T1961] RBP: 00007f8857d61090 R08: 0000000000000000 R09: 0000000000000000
[ 1301.266923][ T1961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1301.266935][ T1961] R13: 0000000000000000 R14: 00007f8859915fa0 R15: 00007ffcf3af7648
[ 1301.266956][ T1961]  </TASK>
[ 1301.384747][ T1967] sg_write: data in/out 1314253397/185 bytes for SCSI command 0xd9-- guessing data in;
[ 1301.384747][ T1967]    program syz.3.9041 not setting count and/or reply_len properly
[ 1301.385400][ T1965] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9040'.
[ 1301.385477][ T1965] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9040'.
[ 1301.735851][ T1991] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9053'.
[ 1301.777692][ T1997] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9056'.
[ 1301.806628][ T2001] FAULT_INJECTION: forcing a failure.
[ 1301.806628][ T2001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1301.819908][ T2001] CPU: 1 UID: 0 PID: 2001 Comm: syz.3.9058 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1301.819935][ T2001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1301.819947][ T2001] Call Trace:
[ 1301.819953][ T2001]  <TASK>
[ 1301.820027][ T2001]  dump_stack_lvl+0xf2/0x150
[ 1301.820055][ T2001]  dump_stack+0x15/0x1a
[ 1301.820081][ T2001]  should_fail_ex+0x24a/0x260
[ 1301.820118][ T2001]  should_fail+0xb/0x10
[ 1301.820196][ T2001]  should_fail_usercopy+0x1a/0x20
[ 1301.820235][ T2001]  _copy_from_user+0x1c/0xa0
[ 1301.820257][ T2001]  move_addr_to_kernel+0x82/0x120
[ 1301.820355][ T2001]  __sys_connect+0x67/0x1b0
[ 1301.820386][ T2001]  __x64_sys_connect+0x41/0x50
[ 1301.820413][ T2001]  x64_sys_call+0x22a7/0x2dc0
[ 1301.820445][ T2001]  do_syscall_64+0xc9/0x1c0
[ 1301.820554][ T2001]  ? clear_bhb_loop+0x55/0xb0
[ 1301.820586][ T2001]  ? clear_bhb_loop+0x55/0xb0
[ 1301.820654][ T2001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.820685][ T2001] RIP: 0033:0x7f221c4bd169
[ 1301.820703][ T2001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1301.820720][ T2001] RSP: 002b:00007f221ab21038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1301.820746][ T2001] RAX: ffffffffffffffda RBX: 00007f221c6d5fa0 RCX: 00007f221c4bd169
[ 1301.820760][ T2001] RDX: 000000000000000c RSI: 0000200000000b40 RDI: 0000000000000004
[ 1301.820771][ T2001] RBP: 00007f221ab21090 R08: 0000000000000000 R09: 0000000000000000
[ 1301.820783][ T2001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1301.820833][ T2001] R13: 0000000000000000 R14: 00007f221c6d5fa0 R15: 00007ffca43a0fd8
[ 1301.820853][ T2001]  </TASK>
[ 1302.122989][ T2012] loop3: detected capacity change from 0 to 256
[ 1302.233805][ T2022] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9068'.
[ 1302.443455][ T2036] loop3: detected capacity change from 0 to 256
[ 1302.596116][ T2048] netlink: 100 bytes leftover after parsing attributes in process `syz.6.9079'.
[ 1302.785535][ T2050] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9080'.
[ 1303.300477][ T2086] loop3: detected capacity change from 0 to 256
[ 1303.624076][ T2104] FAULT_INJECTION: forcing a failure.
[ 1303.624076][ T2104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1303.637251][ T2104] CPU: 0 UID: 0 PID: 2104 Comm: syz.3.9103 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1303.637303][ T2104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1303.637319][ T2104] Call Trace:
[ 1303.637326][ T2104]  <TASK>
[ 1303.637335][ T2104]  dump_stack_lvl+0xf2/0x150
[ 1303.637370][ T2104]  dump_stack+0x15/0x1a
[ 1303.637397][ T2104]  should_fail_ex+0x24a/0x260
[ 1303.637434][ T2104]  should_fail+0xb/0x10
[ 1303.637529][ T2104]  should_fail_usercopy+0x1a/0x20
[ 1303.637567][ T2104]  _copy_from_user+0x1c/0xa0
[ 1303.637623][ T2104]  copy_msghdr_from_user+0x54/0x2a0
[ 1303.637666][ T2104]  ? __fget_files+0x17c/0x1c0
[ 1303.637711][ T2104]  __sys_sendmsg+0x13e/0x230
[ 1303.637820][ T2104]  __x64_sys_sendmsg+0x46/0x50
[ 1303.637855][ T2104]  x64_sys_call+0x2734/0x2dc0
[ 1303.637883][ T2104]  do_syscall_64+0xc9/0x1c0
[ 1303.637930][ T2104]  ? clear_bhb_loop+0x55/0xb0
[ 1303.638029][ T2104]  ? clear_bhb_loop+0x55/0xb0
[ 1303.638063][ T2104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1303.638097][ T2104] RIP: 0033:0x7f221c4bd169
[ 1303.638115][ T2104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1303.638135][ T2104] RSP: 002b:00007f221ab21038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1303.638158][ T2104] RAX: ffffffffffffffda RBX: 00007f221c6d5fa0 RCX: 00007f221c4bd169
[ 1303.638227][ T2104] RDX: 0000000004040000 RSI: 0000200000000000 RDI: 0000000000000003
[ 1303.638241][ T2104] RBP: 00007f221ab21090 R08: 0000000000000000 R09: 0000000000000000
[ 1303.638255][ T2104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1303.638269][ T2104] R13: 0000000000000000 R14: 00007f221c6d5fa0 R15: 00007ffca43a0fd8
[ 1303.638369][ T2104]  </TASK>
[ 1303.924982][ T2109] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9106'.
[ 1304.028381][   T29] kauditd_printk_skb: 401 callbacks suppressed
[ 1304.028460][   T29] audit: type=1326 audit(1742710076.351:21805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.058187][   T29] audit: type=1326 audit(1742710076.351:21806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.081764][   T29] audit: type=1326 audit(1742710076.351:21807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.105301][   T29] audit: type=1326 audit(1742710076.351:21808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.128965][   T29] audit: type=1326 audit(1742710076.351:21809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.152577][   T29] audit: type=1326 audit(1742710076.351:21810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.191547][   T29] audit: type=1326 audit(1742710076.501:21811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.215133][   T29] audit: type=1326 audit(1742710076.521:21812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.242322][   T29] audit: type=1326 audit(1742710076.571:21813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.265953][   T29] audit: type=1326 audit(1742710076.571:21814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2113 comm="syz.3.9108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f221c4bd169 code=0x7ffc0000
[ 1304.298804][ T2127] netlink: 'syz.3.9108': attribute type 29 has an invalid length.
[ 1304.390025][ T2138] netlink: 'syz.0.9119': attribute type 29 has an invalid length.
[ 1304.449231][ T2142] loop5: detected capacity change from 0 to 128
[ 1304.458630][ T2142] EXT4-fs: Ignoring removed nobh option
[ 1304.482828][ T2142] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1304.521062][ T2142] ext4 filesystem being mounted at /414/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1304.584245][T28449] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1304.746298][ T2165] netlink: 'syz.0.9131': attribute type 29 has an invalid length.
[ 1304.772155][ T2166] netlink: 'syz.6.9130': attribute type 29 has an invalid length.
[ 1305.105773][ T2188] loop5: detected capacity change from 0 to 128
[ 1305.411035][ T2188] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1305.424077][ T2188] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1305.988098][ T2202] __nla_validate_parse: 7 callbacks suppressed
[ 1305.988118][ T2202] netlink: 68 bytes leftover after parsing attributes in process `syz.4.9143'.
[ 1306.003841][ T2201] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9142'.
[ 1306.012929][ T2201] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9142'.
[ 1306.021944][ T2201] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9142'.
[ 1306.031561][ T2203] netlink: 'syz.3.9144': attribute type 29 has an invalid length.
[ 1306.098940][ T2201] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9142'.
[ 1306.115535][ T2207] loop4: detected capacity change from 0 to 764
[ 1306.133615][ T2205] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9145'.
[ 1306.152892][ T2210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9142'.
[ 1306.162233][ T2205] netlink: 'syz.3.9145': attribute type 29 has an invalid length.
[ 1306.175152][ T2211] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9147'.
[ 1306.258890][ T2217] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9150'.
[ 1306.516348][ T2230] netlink: 68 bytes leftover after parsing attributes in process `syz.6.9156'.
[ 1306.809827][T28449] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1306.904584][ T2241] loop5: detected capacity change from 0 to 1024
[ 1306.959062][ T2241] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1306.979572][ T2246] 9pnet_fd: Insufficient options for proto=fd
[ 1306.999028][ T2241] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1307.053520][ T2244] netlink: 'syz.6.9162': attribute type 29 has an invalid length.
[ 1307.099341][ T2241] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1307.142221][ T2241] System zones: 0-1, 3-36
[ 1307.165947][ T2241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1307.269566][ T2251] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2251 comm=syz.3.9164
[ 1307.303155][ T2251] loop3: detected capacity change from 0 to 512
[ 1307.330038][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1307.330507][ T2251] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1307.362557][ T2251] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1307.379067][ T2251] System zones: 1-12
[ 1307.389935][ T2251] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1307.406000][ T2251] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9164: bg 0: block 361: padding at end of block bitmap is not set
[ 1307.417586][ T2258] loop6: detected capacity change from 0 to 1024
[ 1307.431349][ T2251] EXT4-fs (loop3): Remounting filesystem read-only
[ 1307.437973][ T2251] EXT4-fs (loop3): 1 truncate cleaned up
[ 1307.444193][ T2251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1307.461816][ T2251] SELinux: (dev loop3, type ext4) getxattr errno 5
[ 1307.482408][ T2251] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1307.501597][ T2258] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1307.531092][ T2267] loop4: detected capacity change from 0 to 256
[ 1307.666424][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1307.742568][ T2283] loop6: detected capacity change from 0 to 256
[ 1307.859116][ T2295] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1307.859116][ T2295]    program syz.6.9182 not setting count and/or reply_len properly
[ 1307.921542][ T2300] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1307.921542][ T2300]    program syz.6.9184 not setting count and/or reply_len properly
[ 1307.945170][ T2302] loop4: detected capacity change from 0 to 256
[ 1308.135526][ T2319] 9pnet_fd: Insufficient options for proto=fd
[ 1308.194367][ T2327] loop4: detected capacity change from 0 to 764
[ 1308.315043][ T2334] netlink: 'syz.4.9197': attribute type 29 has an invalid length.
[ 1308.420826][ T2350] 9pnet_fd: Insufficient options for proto=fd
[ 1308.433824][ T2351] loop5: detected capacity change from 0 to 1024
[ 1308.469106][ T2351] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1308.491058][ T2351] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1308.509551][ T2355] loop4: detected capacity change from 0 to 764
[ 1308.548549][ T2351] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1308.582256][ T2351] System zones: 0-1, 3-36
[ 1308.598565][ T2351] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1308.715053][ T2377] 9pnet_fd: Insufficient options for proto=fd
[ 1308.752601][ T2383] 9pnet_fd: Insufficient options for proto=fd
[ 1308.760454][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1308.839397][ T2391] loop6: detected capacity change from 0 to 128
[ 1308.848182][ T2391] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1308.860890][ T2391] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1309.178186][ T2402] 9pnet_fd: Insufficient options for proto=fd
[ 1309.823995][ T2416] FAULT_INJECTION: forcing a failure.
[ 1309.823995][ T2416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1309.837365][ T2416] CPU: 0 UID: 0 PID: 2416 Comm: syz.0.9234 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1309.837499][ T2416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1309.837513][ T2416] Call Trace:
[ 1309.837520][ T2416]  <TASK>
[ 1309.837528][ T2416]  dump_stack_lvl+0xf2/0x150
[ 1309.837558][ T2416]  dump_stack+0x15/0x1a
[ 1309.837585][ T2416]  should_fail_ex+0x24a/0x260
[ 1309.837696][ T2416]  should_fail+0xb/0x10
[ 1309.837729][ T2416]  should_fail_usercopy+0x1a/0x20
[ 1309.837763][ T2416]  _copy_from_user+0x1c/0xa0
[ 1309.837791][ T2416]  move_addr_to_kernel+0x82/0x120
[ 1309.837833][ T2416]  __sys_sendto+0x12e/0x230
[ 1309.837871][ T2416]  __x64_sys_sendto+0x78/0x90
[ 1309.837950][ T2416]  x64_sys_call+0x29fa/0x2dc0
[ 1309.837979][ T2416]  do_syscall_64+0xc9/0x1c0
[ 1309.838014][ T2416]  ? clear_bhb_loop+0x55/0xb0
[ 1309.838111][ T2416]  ? clear_bhb_loop+0x55/0xb0
[ 1309.838141][ T2416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1309.838229][ T2416] RIP: 0033:0x7f88596fd169
[ 1309.838244][ T2416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1309.838333][ T2416] RSP: 002b:00007f8857d61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1309.838352][ T2416] RAX: ffffffffffffffda RBX: 00007f8859915fa0 RCX: 00007f88596fd169
[ 1309.838366][ T2416] RDX: 0000000000000001 RSI: 00002000000002c0 RDI: 0000000000000003
[ 1309.838381][ T2416] RBP: 00007f8857d61090 R08: 00002000000000c0 R09: 000000000000001c
[ 1309.838410][ T2416] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000001
[ 1309.838422][ T2416] R13: 0000000000000000 R14: 00007f8859915fa0 R15: 00007ffcf3af7648
[ 1309.838438][ T2416]  </TASK>
[ 1310.617311][ T2427] loop5: detected capacity change from 0 to 128
[ 1310.651986][  T851] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1310.663065][ T2427] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1310.676288][ T2427] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1310.723583][   T29] kauditd_printk_skb: 519 callbacks suppressed
[ 1310.723600][   T29] audit: type=1326 audit(1742710083.051:22334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.773887][ T2432] netlink: 'syz.4.9239': attribute type 29 has an invalid length.
[ 1310.784106][   T29] audit: type=1326 audit(1742710083.091:22335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.807689][   T29] audit: type=1326 audit(1742710083.091:22336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.831300][   T29] audit: type=1326 audit(1742710083.091:22337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.854877][   T29] audit: type=1326 audit(1742710083.091:22338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.878300][   T29] audit: type=1326 audit(1742710083.091:22339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.901962][   T29] audit: type=1326 audit(1742710083.091:22340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.925532][   T29] audit: type=1326 audit(1742710083.091:22341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.949197][   T29] audit: type=1326 audit(1742710083.091:22342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1310.972729][   T29] audit: type=1326 audit(1742710083.091:22343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2430 comm="syz.4.9239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1312.119238][T28449] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1312.165885][ T2464] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1312.165885][ T2464]    program syz.0.9252 not setting count and/or reply_len properly
[ 1312.205822][ T2462] __nla_validate_parse: 11 callbacks suppressed
[ 1312.205841][ T2462] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9251'.
[ 1312.257109][ T2468] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9251'.
[ 1312.303291][ T2462] netlink: 58 bytes leftover after parsing attributes in process `syz.5.9251'.
[ 1312.326905][ T2462] loop5: detected capacity change from 0 to 512
[ 1312.397359][ T2462] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1312.434679][ T2462] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1312.454869][ T2462] System zones: 1-12
[ 1312.465047][ T2462] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1312.481421][ T2462] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9251: bg 0: block 361: padding at end of block bitmap is not set
[ 1312.537981][ T2485] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9259'.
[ 1312.566743][ T2462] EXT4-fs (loop5): Remounting filesystem read-only
[ 1312.579893][ T2462] EXT4-fs (loop5): 1 truncate cleaned up
[ 1312.602202][ T2462] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1312.629163][ T2462] SELinux: (dev loop5, type ext4) getxattr errno 5
[ 1312.640209][ T2485] loop4: detected capacity change from 0 to 256
[ 1312.658849][ T2462] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1312.708454][ T2489] netlink: 88 bytes leftover after parsing attributes in process `syz.0.9261'.
[ 1312.809850][ T2497] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9265'.
[ 1312.960311][ T2502] FAULT_INJECTION: forcing a failure.
[ 1312.960311][ T2502] name failslab, interval 1, probability 0, space 0, times 0
[ 1312.973212][ T2502] CPU: 0 UID: 0 PID: 2502 Comm: syz.0.9267 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1312.973249][ T2502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1312.973266][ T2502] Call Trace:
[ 1312.973273][ T2502]  <TASK>
[ 1312.973291][ T2502]  dump_stack_lvl+0xf2/0x150
[ 1312.973320][ T2502]  dump_stack+0x15/0x1a
[ 1312.973341][ T2502]  should_fail_ex+0x24a/0x260
[ 1312.973434][ T2502]  should_failslab+0x8f/0xb0
[ 1312.973508][ T2502]  kmem_cache_alloc_noprof+0x52/0x320
[ 1312.973536][ T2502]  ? copy_fs_struct+0x31/0x110
[ 1312.973561][ T2502]  ? __fget_files+0x17c/0x1c0
[ 1312.973595][ T2502]  copy_fs_struct+0x31/0x110
[ 1312.973688][ T2502]  ksys_unshare+0x2c0/0x6e0
[ 1312.973728][ T2502]  ? ksys_write+0x176/0x1b0
[ 1312.973763][ T2502]  __x64_sys_unshare+0x1f/0x30
[ 1312.973798][ T2502]  x64_sys_call+0x1a3e/0x2dc0
[ 1312.973847][ T2502]  do_syscall_64+0xc9/0x1c0
[ 1312.973887][ T2502]  ? clear_bhb_loop+0x55/0xb0
[ 1312.973920][ T2502]  ? clear_bhb_loop+0x55/0xb0
[ 1312.973965][ T2502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1312.974008][ T2502] RIP: 0033:0x7f88596fd169
[ 1312.974024][ T2502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1312.974047][ T2502] RSP: 002b:00007f8857d61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1312.974130][ T2502] RAX: ffffffffffffffda RBX: 00007f8859915fa0 RCX: 00007f88596fd169
[ 1312.974145][ T2502] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000044040200
[ 1312.974201][ T2502] RBP: 00007f8857d61090 R08: 0000000000000000 R09: 0000000000000000
[ 1312.974214][ T2502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1312.974239][ T2502] R13: 0000000000000000 R14: 00007f8859915fa0 R15: 00007ffcf3af7648
[ 1312.974261][ T2502]  </TASK>
[ 1313.206654][ T2506] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9269'.
[ 1313.228040][ T2506] loop5: detected capacity change from 0 to 256
[ 1313.382155][ T2517] loop6: detected capacity change from 0 to 1024
[ 1313.389138][ T2517] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1313.396288][ T2517] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1313.408693][ T2517] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1313.416947][ T2517] System zones: 0-1, 3-36
[ 1313.423626][ T2517] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1313.437282][ T2523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9276'.
[ 1313.446368][ T2523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9276'.
[ 1313.462475][ T2526] 9pnet_fd: Insufficient options for proto=fd
[ 1313.504672][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1313.524328][ T2532] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9278'.
[ 1313.567176][ T2532] loop6: detected capacity change from 0 to 256
[ 1313.656587][ T2541] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1313.656587][ T2541]    program syz.0.9282 not setting count and/or reply_len properly
[ 1313.710941][ T2547] loop6: detected capacity change from 0 to 256
[ 1313.747979][ T2552] 9pnet_fd: Insufficient options for proto=fd
[ 1313.781701][ T2558] loop4: detected capacity change from 0 to 256
[ 1313.806128][ T2560] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1313.806128][ T2560]    program syz.0.9291 not setting count and/or reply_len properly
[ 1313.853128][ T2565] FAULT_INJECTION: forcing a failure.
[ 1313.853128][ T2565] name failslab, interval 1, probability 0, space 0, times 0
[ 1313.868367][ T2565] CPU: 0 UID: 0 PID: 2565 Comm: syz.0.9293 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1313.868441][ T2565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1313.868456][ T2565] Call Trace:
[ 1313.868461][ T2565]  <TASK>
[ 1313.868468][ T2565]  dump_stack_lvl+0xf2/0x150
[ 1313.868577][ T2565]  dump_stack+0x15/0x1a
[ 1313.868604][ T2565]  should_fail_ex+0x24a/0x260
[ 1313.868637][ T2565]  should_failslab+0x8f/0xb0
[ 1313.868673][ T2565]  __kmalloc_node_noprof+0xad/0x410
[ 1313.868702][ T2565]  ? kstrtouint+0x77/0xc0
[ 1313.868754][ T2565]  ? __kvmalloc_node_noprof+0x72/0x170
[ 1313.868793][ T2565]  __kvmalloc_node_noprof+0x72/0x170
[ 1313.868875][ T2565]  file_tty_write+0x1a9/0x680
[ 1313.868973][ T2565]  tty_write+0x28/0x30
[ 1313.869003][ T2565]  vfs_write+0x77b/0x920
[ 1313.869035][ T2565]  ? __pfx_tty_write+0x10/0x10
[ 1313.869071][ T2565]  ksys_write+0xe8/0x1b0
[ 1313.869105][ T2565]  __x64_sys_write+0x42/0x50
[ 1313.869196][ T2565]  x64_sys_call+0x287e/0x2dc0
[ 1313.869230][ T2565]  do_syscall_64+0xc9/0x1c0
[ 1313.869334][ T2565]  ? clear_bhb_loop+0x55/0xb0
[ 1313.869422][ T2565]  ? clear_bhb_loop+0x55/0xb0
[ 1313.869455][ T2565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1313.869564][ T2565] RIP: 0033:0x7f88596fd169
[ 1313.869648][ T2565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1313.869670][ T2565] RSP: 002b:00007f8857d61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1313.869693][ T2565] RAX: ffffffffffffffda RBX: 00007f8859915fa0 RCX: 00007f88596fd169
[ 1313.869708][ T2565] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000006
[ 1313.869722][ T2565] RBP: 00007f8857d61090 R08: 0000000000000000 R09: 0000000000000000
[ 1313.869737][ T2565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1313.869758][ T2565] R13: 0000000000000000 R14: 00007f8859915fa0 R15: 00007ffcf3af7648
[ 1313.869780][ T2565]  </TASK>
[ 1313.997827][ T2571] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1314.084416][ T2571] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1314.096596][ T2571] vhci_hcd vhci_hcd.0: Device attached
[ 1314.239690][ T2588] 9pnet_fd: Insufficient options for proto=fd
[ 1314.266106][ T2572] vhci_hcd: connection closed
[ 1314.266359][T28944] vhci_hcd: stop threads
[ 1314.275388][T28944] vhci_hcd: release socket
[ 1314.279845][T28549] vhci_hcd: vhci_device speed not set
[ 1314.285238][T28944] vhci_hcd: disconnect device
[ 1314.339079][T28549] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[ 1314.346670][T28549] usb 9-1: enqueue for inactive port 0
[ 1314.353738][T28549] usb 9-1: enqueue for inactive port 0
[ 1314.370820][T28549] usb 9-1: enqueue for inactive port 0
[ 1314.385317][ T2600] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1314.438425][T28549] vhci_hcd: vhci_device speed not set
[ 1314.488492][ T2609] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1314.488492][ T2609]    program syz.0.9311 not setting count and/or reply_len properly
[ 1314.514909][ T2611] 9pnet_fd: Insufficient options for proto=fd
[ 1314.556192][ T2617] netlink: 'syz.0.9315': attribute type 29 has an invalid length.
[ 1314.646799][ T2627] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1314.674710][ T2634] 9pnet_fd: Insufficient options for proto=fd
[ 1314.680228][ T2632] netlink: 'syz.4.9322': attribute type 29 has an invalid length.
[ 1314.727586][ T2642] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1314.727586][ T2642]    program syz.3.9327 not setting count and/or reply_len properly
[ 1315.151492][ T2662] 9pnet_fd: Insufficient options for proto=fd
[ 1315.311173][ T2674] loop5: detected capacity change from 0 to 1024
[ 1315.317924][ T2674] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1315.325128][ T2674] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1315.336147][ T2674] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1315.344390][ T2674] System zones: 0-1, 3-36
[ 1315.350340][ T2674] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1315.459890][ T2663] chnl_net:caif_netlink_parms(): no params data found
[ 1315.470459][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1315.516369][ T2691] loop5: detected capacity change from 0 to 256
[ 1315.558171][T28944] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1315.626193][T28944] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1315.642647][ T2698] loop4: detected capacity change from 0 to 256
[ 1315.662698][ T2663] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1315.669978][ T2663] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1315.677456][ T2663] bridge_slave_0: entered allmulticast mode
[ 1315.683941][ T2663] bridge_slave_0: entered promiscuous mode
[ 1315.700844][ T2663] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1315.707966][ T2663] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1315.715362][ T2663] bridge_slave_1: entered allmulticast mode
[ 1315.722505][ T2663] bridge_slave_1: entered promiscuous mode
[ 1315.764513][T28944] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1315.801650][ T2663] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1315.820900][ T2663] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1315.838551][T28944] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1315.919111][   T29] kauditd_printk_skb: 489 callbacks suppressed
[ 1315.919127][   T29] audit: type=1326 audit(1742710088.241:22833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1315.949939][   T29] audit: type=1326 audit(1742710088.251:22834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1315.973525][   T29] audit: type=1326 audit(1742710088.251:22835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1315.997163][   T29] audit: type=1326 audit(1742710088.251:22836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1316.020789][   T29] audit: type=1326 audit(1742710088.251:22837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1316.044398][   T29] audit: type=1326 audit(1742710088.251:22838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1316.067873][   T29] audit: type=1326 audit(1742710088.251:22839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0b06d169 code=0x7ffc0000
[ 1316.091389][   T29] audit: type=1326 audit(1742710088.251:22840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2714 comm="syz.4.9353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f4a0b06effc code=0x7ffc0000
[ 1316.114898][   T29] audit: type=1326 audit(1742710088.401:22841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2722 comm="syz.5.9357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f809083d169 code=0x7ffc0000
[ 1316.120073][ T2663] team0: Port device team_slave_0 added
[ 1316.138456][   T29] audit: type=1326 audit(1742710088.401:22842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2722 comm="syz.5.9357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f809083d169 code=0x7ffc0000
[ 1316.178153][ T2725] loop5: detected capacity change from 0 to 256
[ 1316.187420][ T2663] team0: Port device team_slave_1 added
[ 1316.207192][ T2663] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1316.214225][ T2663] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1316.240188][ T2663] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1316.257530][ T2715] loop4: detected capacity change from 0 to 512
[ 1316.265785][ T2663] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1316.271538][ T2715] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1316.272857][ T2663] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1316.304991][ T2715] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1316.308367][ T2663] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1316.330096][ T2715] System zones: 1-12
[ 1316.334577][ T2715] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1316.342027][ T2715] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.9353: bg 0: block 361: padding at end of block bitmap is not set
[ 1316.359839][ T2715] EXT4-fs (loop4): Remounting filesystem read-only
[ 1316.366712][ T2715] EXT4-fs (loop4): 1 truncate cleaned up
[ 1316.367511][T28944] bridge_slave_1: left allmulticast mode
[ 1316.373631][ T2715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1316.378058][T28944] bridge_slave_1: left promiscuous mode
[ 1316.378274][T28944] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1316.391958][ T2715] SELinux: (dev loop4, type ext4) getxattr errno 5
[ 1316.409972][ T2715] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1316.422562][T28944] bridge_slave_0: left allmulticast mode
[ 1316.428244][T28944] bridge_slave_0: left promiscuous mode
[ 1316.434136][T28944] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1316.532118][ T2747] loop6: detected capacity change from 0 to 256
[ 1316.590750][T28944] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1316.601350][T28944] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1316.610713][T28944] bond0 (unregistering): Released all slaves
[ 1316.621411][ T2663] hsr_slave_0: entered promiscuous mode
[ 1316.627597][ T2663] hsr_slave_1: entered promiscuous mode
[ 1316.633557][ T2663] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1316.641202][ T2663] Cannot create hsr debugfs directory
[ 1316.775957][T28944] hsr_slave_0: left promiscuous mode
[ 1316.786334][T28944] hsr_slave_1: left promiscuous mode
[ 1316.831737][T28944] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1316.839243][T28944] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1316.847190][T28944] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1316.854697][T28944] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1316.866273][T28944] veth1_macvtap: left promiscuous mode
[ 1316.882997][T28944] veth0_macvtap: left promiscuous mode
[ 1316.901665][T28944] veth1_vlan: left promiscuous mode
[ 1316.907712][T28944] veth0_vlan: left promiscuous mode
[ 1317.152327][T28944] team0 (unregistering): Port device team_slave_1 removed
[ 1317.192496][T28944] team0 (unregistering): Port device team_slave_0 removed
[ 1317.427101][ T2772] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1317.427101][ T2772]    program syz.5.9373 not setting count and/or reply_len properly
[ 1317.460668][ T2774] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1317.460668][ T2774]    program syz.6.9374 not setting count and/or reply_len properly
[ 1317.550013][ T2779] 9pnet_fd: Insufficient options for proto=fd
[ 1317.595953][ T2781] __nla_validate_parse: 23 callbacks suppressed
[ 1317.595969][ T2781] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9377'.
[ 1317.635747][ T2781] loop6: detected capacity change from 0 to 256
[ 1317.766490][ T2793] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1317.766490][ T2793]    program syz.6.9383 not setting count and/or reply_len properly
[ 1317.800609][ T2795] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1317.800609][ T2795]    program syz.0.9384 not setting count and/or reply_len properly
[ 1317.863712][ T2663] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1317.872373][ T2798] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1317.872373][ T2798]    program syz.6.9385 not setting count and/or reply_len properly
[ 1317.917793][ T2801] loop6: detected capacity change from 0 to 764
[ 1317.924808][ T2663] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1317.938637][ T2663] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1317.965353][ T2663] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1318.031330][ T2805] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9389'.
[ 1318.042658][ T2663] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1318.079820][ T2663] 8021q: adding VLAN 0 to HW filter on device team0
[ 1318.086899][ T2810] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9389'.
[ 1318.105638][ T2812] 9pnet_fd: Insufficient options for proto=fd
[ 1318.114165][ T2810] netlink: 58 bytes leftover after parsing attributes in process `syz.6.9389'.
[ 1318.124656][T28939] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1318.131834][T28939] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1318.146649][T28943] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1318.149071][ T2816] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9394'.
[ 1318.153766][T28943] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1318.182469][ T2805] loop6: detected capacity change from 0 to 512
[ 1318.194893][ T2805] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1318.212537][ T2805] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1318.232407][ T2816] loop4: detected capacity change from 0 to 256
[ 1318.239978][ T2805] System zones: 1-12
[ 1318.244237][ T2805] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1318.254088][ T2663] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1318.269994][ T2805] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.9389: bg 0: block 361: padding at end of block bitmap is not set
[ 1318.287064][ T2805] EXT4-fs (loop6): Remounting filesystem read-only
[ 1318.302573][ T2805] EXT4-fs (loop6): 1 truncate cleaned up
[ 1318.311745][ T2805] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1318.323955][ T2805] SELinux: (dev loop6, type ext4) getxattr errno 5
[ 1318.324405][ T2805] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1318.335236][ T2829] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1318.335236][ T2829]    program syz.0.9396 not setting count and/or reply_len properly
[ 1318.424381][ T2663] veth0_vlan: entered promiscuous mode
[ 1318.434233][ T2663] veth1_vlan: entered promiscuous mode
[ 1318.458921][ T2663] veth0_macvtap: entered promiscuous mode
[ 1318.486016][ T2663] veth1_macvtap: entered promiscuous mode
[ 1318.506341][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1318.516887][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.520642][ T2845] 9pnet_fd: Insufficient options for proto=fd
[ 1318.526784][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1318.543314][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.553171][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1318.563729][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.573817][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1318.584603][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.594460][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1318.598739][ T2844] netlink: 28 bytes leftover after parsing attributes in process `syz.5.9403'.
[ 1318.604946][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.629609][ T2663] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1318.648096][ T2847] loop4: detected capacity change from 0 to 764
[ 1318.654590][ T2844] loop5: detected capacity change from 0 to 256
[ 1318.664532][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1318.675095][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.684974][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1318.695452][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.705334][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1318.715810][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.725774][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1318.736347][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.746200][ T2663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1318.756833][ T2663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1318.768078][ T2663] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1318.778268][ T2663] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1318.787043][ T2663] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1318.795800][ T2663] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1318.804540][ T2663] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1318.883675][ T2860] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1318.919423][ T2863] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9408'.
[ 1318.962583][ T2870] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9412'.
[ 1318.982984][ T2863] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9408'.
[ 1318.998226][ T2873] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1318.998226][ T2873]    program syz.0.9413 not setting count and/or reply_len properly
[ 1319.019948][ T2870] loop3: detected capacity change from 0 to 256
[ 1319.029188][ T2863] netlink: 58 bytes leftover after parsing attributes in process `syz.5.9408'.
[ 1319.056688][ T2863] loop5: detected capacity change from 0 to 512
[ 1319.068938][ T2863] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1319.082149][ T2863] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1319.090322][ T2863] System zones: 1-12
[ 1319.095317][ T2863] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1319.106058][ T2879] loop6: detected capacity change from 0 to 256
[ 1319.134520][ T2863] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9408: bg 0: block 361: padding at end of block bitmap is not set
[ 1319.152043][ T2863] EXT4-fs (loop5): Remounting filesystem read-only
[ 1319.159845][ T2863] EXT4-fs (loop5): 1 truncate cleaned up
[ 1319.161316][ T2883] loop4: detected capacity change from 0 to 256
[ 1319.166010][ T2863] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1319.184393][ T2863] SELinux: (dev loop5, type ext4) getxattr errno 5
[ 1319.191437][ T2863] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1319.250998][ T2889] loop3: detected capacity change from 0 to 256
[ 1319.324618][ T2901] netlink: 'syz.0.9426': attribute type 29 has an invalid length.
[ 1319.741438][ T2912] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1319.741438][ T2912]    program syz.0.9429 not setting count and/or reply_len properly
[ 1320.026743][ T2926] loop5: detected capacity change from 0 to 256
[ 1320.299447][ T2938] loop5: detected capacity change from 0 to 1024
[ 1320.306402][ T2938] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1320.313473][ T2938] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1320.325311][ T2938] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1320.333840][ T2938] System zones: 0-1, 3-36
[ 1320.340728][ T2938] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1320.355473][ T2941] netlink: 'syz.4.9439': attribute type 29 has an invalid length.
[ 1320.383937][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1320.676319][ T2955] loop4: detected capacity change from 0 to 128
[ 1320.696644][ T2955] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1320.709329][ T2955] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1320.745323][  T811] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1320.793662][ T2960] loop4: detected capacity change from 0 to 764
[ 1320.984105][   T29] kauditd_printk_skb: 508 callbacks suppressed
[ 1320.984195][   T29] audit: type=1326 audit(1742710093.311:23351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.024692][ T2977] netlink: 'syz.3.9455': attribute type 29 has an invalid length.
[ 1321.035216][   T29] audit: type=1326 audit(1742710093.351:23352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.058910][   T29] audit: type=1326 audit(1742710093.351:23353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.082450][   T29] audit: type=1326 audit(1742710093.351:23354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.106152][   T29] audit: type=1326 audit(1742710093.351:23355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.129943][   T29] audit: type=1326 audit(1742710093.351:23356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.153613][   T29] audit: type=1326 audit(1742710093.351:23357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.177119][   T29] audit: type=1326 audit(1742710093.351:23358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.200714][   T29] audit: type=1326 audit(1742710093.351:23359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.224198][   T29] audit: type=1326 audit(1742710093.351:23360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2976 comm="syz.3.9455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1321.583124][ T3010] 9pnet: Could not find request transport: fd0x0000000000000004
[ 1322.052993][ T3042] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[ 1322.059655][ T3042] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1322.067393][ T3042] vhci_hcd vhci_hcd.0: Device attached
[ 1322.091247][ T3046] vhci_hcd: connection closed
[ 1322.091708][T28938] vhci_hcd: stop threads
[ 1322.100839][T28938] vhci_hcd: release socket
[ 1322.105280][T28938] vhci_hcd: disconnect device
[ 1322.273872][ T3059] loop6: detected capacity change from 0 to 512
[ 1322.282084][ T3059] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1322.293652][ T3059] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1322.301878][ T3059] System zones: 1-12
[ 1322.306075][ T3059] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1322.313905][ T3059] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.9485: bg 0: block 361: padding at end of block bitmap is not set
[ 1322.328543][ T3059] EXT4-fs (loop6): Remounting filesystem read-only
[ 1322.335162][ T3059] EXT4-fs (loop6): 1 truncate cleaned up
[ 1322.342664][ T3059] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1322.354932][ T3059] SELinux: (dev loop6, type ext4) getxattr errno 5
[ 1322.363612][ T3059] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1322.544024][ T3071] 9pnet_fd: Insufficient options for proto=fd
[ 1322.857206][ T3089] __nla_validate_parse: 21 callbacks suppressed
[ 1322.857230][ T3089] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9497'.
[ 1322.921147][ T3091] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9498'.
[ 1323.156152][ T3096] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9500'.
[ 1323.216933][ T3099] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9502'.
[ 1323.302681][ T3103] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1323.302681][ T3103]    program syz.6.9503 not setting count and/or reply_len properly
[ 1323.451650][ T3109] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1323.451650][ T3109]    program syz.0.9506 not setting count and/or reply_len properly
[ 1323.492801][ T3113] loop5: detected capacity change from 0 to 512
[ 1323.535831][ T3113] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1323.556876][ T3117] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9509'.
[ 1323.557700][ T3113] ext4 filesystem being mounted at /463/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1323.606870][ T3113] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.9508: corrupted inode contents
[ 1323.656296][ T3113] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.9508: mark_inode_dirty error
[ 1323.693697][ T3113] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.9508: corrupted inode contents
[ 1323.729493][ T3113] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #2: comm syz.5.9508: mark_inode_dirty error
[ 1323.780955][ T3132] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1323.780955][ T3132]    program syz.0.9514 not setting count and/or reply_len properly
[ 1323.809049][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1323.891295][ T3143] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1323.891295][ T3143]    program syz.6.9519 not setting count and/or reply_len properly
[ 1323.937777][ T3149] netlink: 24 bytes leftover after parsing attributes in process `syz.5.9516'.
[ 1323.949205][ T3152] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9520'.
[ 1324.163490][ T3155] loop3: detected capacity change from 0 to 2048
[ 1324.932990][ T3149] loop5: detected capacity change from 0 to 256
[ 1325.396012][ T3179] loop6: detected capacity change from 0 to 764
[ 1325.960578][ T3189] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9532'.
[ 1326.218621][ T3200] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1326.218621][ T3200]    program syz.0.9537 not setting count and/or reply_len properly
[ 1326.238973][ T3201] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1326.245612][ T3201] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1326.253153][ T3201] vhci_hcd vhci_hcd.0: Device attached
[ 1326.276993][ T3202] vhci_hcd: connection closed
[ 1326.278070][T28939] vhci_hcd: stop threads
[ 1326.287129][T28939] vhci_hcd: release socket
[ 1326.291618][T28939] vhci_hcd: disconnect device
[ 1326.301443][ T3205] loop6: detected capacity change from 0 to 256
[ 1326.385023][   T29] kauditd_printk_skb: 175 callbacks suppressed
[ 1326.385039][   T29] audit: type=1400 audit(1742710098.711:23536): avc:  denied  { getopt } for  pid=3208 comm="syz.0.9540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1326.528914][ T3222] FAULT_INJECTION: forcing a failure.
[ 1326.528914][ T3222] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1326.542107][ T3222] CPU: 1 UID: 0 PID: 3222 Comm: syz.0.9546 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1326.542139][ T3222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1326.542155][ T3222] Call Trace:
[ 1326.542164][ T3222]  <TASK>
[ 1326.542173][ T3222]  dump_stack_lvl+0xf2/0x150
[ 1326.542222][ T3222]  dump_stack+0x15/0x1a
[ 1326.542249][ T3222]  should_fail_ex+0x24a/0x260
[ 1326.542285][ T3222]  should_fail+0xb/0x10
[ 1326.542366][ T3222]  should_fail_usercopy+0x1a/0x20
[ 1326.542444][ T3222]  _copy_from_iter+0xd5/0xd00
[ 1326.542484][ T3222]  ? __rcu_read_unlock+0x4e/0x70
[ 1326.542511][ T3222]  ? mntput_no_expire+0x70/0x3d0
[ 1326.542543][ T3222]  copy_page_from_iter+0x14f/0x280
[ 1326.542613][ T3222]  tun_get_user+0x687/0x2610
[ 1326.542641][ T3222]  ? _parse_integer+0x27/0x30
[ 1326.542667][ T3222]  ? ref_tracker_alloc+0x1f5/0x2f0
[ 1326.542711][ T3222]  tun_chr_write_iter+0x188/0x240
[ 1326.542819][ T3222]  vfs_write+0x77b/0x920
[ 1326.542847][ T3222]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1326.542875][ T3222]  ksys_write+0xe8/0x1b0
[ 1326.542904][ T3222]  __x64_sys_write+0x42/0x50
[ 1326.542988][ T3222]  x64_sys_call+0x287e/0x2dc0
[ 1326.543023][ T3222]  do_syscall_64+0xc9/0x1c0
[ 1326.543154][ T3222]  ? clear_bhb_loop+0x55/0xb0
[ 1326.543182][ T3222]  ? clear_bhb_loop+0x55/0xb0
[ 1326.543212][ T3222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1326.543245][ T3222] RIP: 0033:0x7f88596fbc1f
[ 1326.543272][ T3222] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1326.543359][ T3222] RSP: 002b:00007f8857d61000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1326.543383][ T3222] RAX: ffffffffffffffda RBX: 00007f8859915fa0 RCX: 00007f88596fbc1f
[ 1326.543398][ T3222] RDX: 0000000000000036 RSI: 0000200000000180 RDI: 00000000000000c8
[ 1326.543413][ T3222] RBP: 00007f8857d61090 R08: 0000000000000000 R09: 0000000000000000
[ 1326.543428][ T3222] R10: 0000000000000036 R11: 0000000000000293 R12: 0000000000000001
[ 1326.543442][ T3222] R13: 0000000000000000 R14: 00007f8859915fa0 R15: 00007ffcf3af7648
[ 1326.543530][ T3222]  </TASK>
[ 1326.828724][ T3234] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1326.828724][ T3234]    program syz.0.9552 not setting count and/or reply_len properly
[ 1327.019756][ T3255] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1327.019756][ T3255]    program syz.4.9562 not setting count and/or reply_len properly
[ 1327.104420][ T3262] 
: renamed from bond0 (while UP)
[ 1327.128646][   T29] audit: type=1400 audit(1742710099.431:23537): avc:  denied  { ioctl } for  pid=3261 comm="syz.6.9566" path="socket:[113649]" dev="sockfs" ino=113649 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1327.347349][ T3268] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9568'.
[ 1327.380622][ T3269] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1327.380622][ T3269]    program syz.4.9567 not setting count and/or reply_len properly
[ 1327.479334][   T29] audit: type=1326 audit(1742710099.781:23538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.502997][   T29] audit: type=1326 audit(1742710099.781:23539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.526509][   T29] audit: type=1326 audit(1742710099.781:23540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.530289][ T3274] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9570'.
[ 1327.550079][   T29] audit: type=1326 audit(1742710099.781:23541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.582632][   T29] audit: type=1326 audit(1742710099.781:23542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.606212][   T29] audit: type=1326 audit(1742710099.781:23543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.629771][   T29] audit: type=1326 audit(1742710099.781:23544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.653317][   T29] audit: type=1326 audit(1742710099.781:23545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3266 comm="syz.3.9568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f90db60d169 code=0x7ffc0000
[ 1327.842616][ T3289] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1327.842616][ T3289]    program syz.0.9576 not setting count and/or reply_len properly
[ 1327.917878][ T3301] __nla_validate_parse: 1 callbacks suppressed
[ 1327.917928][ T3301] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9582'.
[ 1327.936238][ T3303] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9583'.
[ 1327.990463][ T3309] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[ 1327.997110][ T3309] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1328.004642][ T3309] vhci_hcd vhci_hcd.0: Device attached
[ 1328.095289][ T3326] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1328.095289][ T3326]    program syz.6.9593 not setting count and/or reply_len properly
[ 1328.125901][ T3328] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9594'.
[ 1328.147044][ T3328] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9594'.
[ 1328.161567][ T3330] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9595'.
[ 1328.170981][ T3328] loop4: detected capacity change from 0 to 512
[ 1328.172262][ T3330] netlink: 'syz.6.9595': attribute type 29 has an invalid length.
[ 1328.178184][ T3328] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1328.196194][ T3328] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1328.204537][ T3328] System zones: 1-12
[ 1328.208642][ T3328] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1328.215504][ T3328] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.9594: bg 0: block 361: padding at end of block bitmap is not set
[ 1328.220408][ T3310] vhci_hcd: connection closed
[ 1328.230724][ T3328] EXT4-fs (loop4): Remounting filesystem read-only
[ 1328.231165][T28944] vhci_hcd: stop threads
[ 1328.235502][ T3328] EXT4-fs (loop4): 1 truncate cleaned up
[ 1328.242093][T28944] vhci_hcd: release socket
[ 1328.246654][ T3328] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1328.253876][T28944] vhci_hcd: disconnect device
[ 1328.256551][ T3328] SELinux: (dev loop4, type ext4) getxattr errno 5
[ 1328.280119][ T3328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1328.325449][ T3333] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9596'.
[ 1328.353566][ T3337] FAULT_INJECTION: forcing a failure.
[ 1328.353566][ T3337] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.366263][ T3337] CPU: 0 UID: 0 PID: 3337 Comm: syz.4.9598 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1328.366289][ T3337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1328.366301][ T3337] Call Trace:
[ 1328.366309][ T3337]  <TASK>
[ 1328.366391][ T3337]  dump_stack_lvl+0xf2/0x150
[ 1328.366425][ T3337]  dump_stack+0x15/0x1a
[ 1328.366452][ T3337]  should_fail_ex+0x24a/0x260
[ 1328.366486][ T3337]  should_failslab+0x8f/0xb0
[ 1328.366515][ T3337]  kmem_cache_alloc_node_noprof+0x59/0x320
[ 1328.366549][ T3337]  ? __alloc_skb+0x10b/0x310
[ 1328.366576][ T3337]  __alloc_skb+0x10b/0x310
[ 1328.366598][ T3337]  tcp_stream_alloc_skb+0x2f/0x1e0
[ 1328.366633][ T3337]  tcp_sendmsg_locked+0x96d/0x26a0
[ 1328.366675][ T3337]  ? __pfx_tcp_sendmsg+0x10/0x10
[ 1328.366706][ T3337]  tcp_sendmsg+0x30/0x50
[ 1328.366735][ T3337]  inet_sendmsg+0x77/0xd0
[ 1328.366841][ T3337]  __sock_sendmsg+0x102/0x180
[ 1328.366889][ T3337]  __sys_sendto+0x1a8/0x230
[ 1328.366988][ T3337]  __x64_sys_sendto+0x78/0x90
[ 1328.367097][ T3337]  x64_sys_call+0x29fa/0x2dc0
[ 1328.367159][ T3337]  do_syscall_64+0xc9/0x1c0
[ 1328.367197][ T3337]  ? clear_bhb_loop+0x55/0xb0
[ 1328.367225][ T3337]  ? clear_bhb_loop+0x55/0xb0
[ 1328.367316][ T3337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1328.367347][ T3337] RIP: 0033:0x7f4a0b06d169
[ 1328.367407][ T3337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1328.367430][ T3337] RSP: 002b:00007f4a096d1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1328.367492][ T3337] RAX: ffffffffffffffda RBX: 00007f4a0b285fa0 RCX: 00007f4a0b06d169
[ 1328.367504][ T3337] RDX: 00000000000020c8 RSI: 00002000000012c0 RDI: 0000000000000003
[ 1328.367518][ T3337] RBP: 00007f4a096d1090 R08: 0000000000000000 R09: 0000000000000027
[ 1328.367533][ T3337] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[ 1328.367600][ T3337] R13: 0000000000000000 R14: 00007f4a0b285fa0 R15: 00007fffee749148
[ 1328.367624][ T3337]  </TASK>
[ 1328.647019][ T3351] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9605'.
[ 1328.653959][ T3353] loop6: detected capacity change from 0 to 764
[ 1328.673772][ T3351] loop4: detected capacity change from 0 to 256
[ 1328.717492][ T3361] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9609'.
[ 1328.767975][ T3365] FAULT_INJECTION: forcing a failure.
[ 1328.767975][ T3365] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1328.781144][ T3365] CPU: 0 UID: 0 PID: 3365 Comm: syz.4.9608 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1328.781177][ T3365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1328.781192][ T3365] Call Trace:
[ 1328.781201][ T3365]  <TASK>
[ 1328.781211][ T3365]  dump_stack_lvl+0xf2/0x150
[ 1328.781318][ T3365]  dump_stack+0x15/0x1a
[ 1328.781346][ T3365]  should_fail_ex+0x24a/0x260
[ 1328.781423][ T3365]  should_fail+0xb/0x10
[ 1328.781455][ T3365]  should_fail_usercopy+0x1a/0x20
[ 1328.781562][ T3365]  _copy_from_user+0x1c/0xa0
[ 1328.781585][ T3365]  do_sock_getsockopt+0xd3/0x260
[ 1328.781613][ T3365]  __x64_sys_getsockopt+0x18c/0x200
[ 1328.781706][ T3365]  x64_sys_call+0x1288/0x2dc0
[ 1328.781733][ T3365]  do_syscall_64+0xc9/0x1c0
[ 1328.781773][ T3365]  ? clear_bhb_loop+0x55/0xb0
[ 1328.781803][ T3365]  ? clear_bhb_loop+0x55/0xb0
[ 1328.781849][ T3365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1328.781884][ T3365] RIP: 0033:0x7f4a0b06d169
[ 1328.781904][ T3365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1328.781926][ T3365] RSP: 002b:00007f4a096b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1328.782025][ T3365] RAX: ffffffffffffffda RBX: 00007f4a0b286080 RCX: 00007f4a0b06d169
[ 1328.782040][ T3365] RDX: 0000000000000009 RSI: 0000000000000084 RDI: 0000000000000003
[ 1328.782096][ T3365] RBP: 00007f4a096b0090 R08: 00002000000001c0 R09: 0000000000000000
[ 1328.782110][ T3365] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[ 1328.782123][ T3365] R13: 0000000000000001 R14: 00007f4a0b286080 R15: 00007fffee749148
[ 1328.782183][ T3365]  </TASK>
[ 1329.215861][ T3387] loop5: detected capacity change from 0 to 764
[ 1329.501388][ T3391] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1329.501388][ T3391]    program syz.3.9618 not setting count and/or reply_len properly
[ 1329.918228][ T3403] loop5: detected capacity change from 0 to 1024
[ 1329.940614][ T3403] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1329.964100][ T3403] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1329.986755][ T3403] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1329.996255][ T3403] System zones: 0-1, 3-36
[ 1330.005405][ T3403] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1330.050202][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.102496][ T3423] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1330.102496][ T3423]    program syz.5.9631 not setting count and/or reply_len properly
[ 1330.139591][ T3425] 9pnet_fd: Insufficient options for proto=fd
[ 1330.167738][ T3429] loop3: detected capacity change from 0 to 1024
[ 1330.185094][ T3431] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9635'.
[ 1330.194863][ T3431] netlink: 'syz.6.9635': attribute type 29 has an invalid length.
[ 1330.204657][ T3429] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1330.217893][ T3429] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1330.263644][ T3429] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1330.271990][ T3429] System zones: 0-1, 3-36
[ 1330.277099][ T3429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1330.309902][ T2663] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1330.389442][ T3448] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1330.389442][ T3448]    program syz.3.9642 not setting count and/or reply_len properly
[ 1330.434184][ T3452] 9pnet_fd: Insufficient options for proto=fd
[ 1330.462858][ T3456] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9646'.
[ 1330.604116][ T3465] loop3: detected capacity change from 0 to 512
[ 1330.626265][ T3465] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1330.653750][ T3465] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1330.676719][ T3465] System zones: 1-12
[ 1330.689819][ T3465] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1330.697543][ T3465] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9650: bg 0: block 361: padding at end of block bitmap is not set
[ 1330.730695][ T3465] EXT4-fs (loop3): Remounting filesystem read-only
[ 1330.739938][ T3465] EXT4-fs (loop3): 1 truncate cleaned up
[ 1330.749378][ T3478] loop6: detected capacity change from 0 to 256
[ 1330.772658][ T3465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1330.785911][ T3465] SELinux: (dev loop3, type ext4) getxattr errno 5
[ 1330.795825][ T3465] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1330.826725][ T3480] 9pnet_fd: Insufficient options for proto=fd
[ 1330.874539][ T3484] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1330.881207][ T3484] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1330.891135][ T3484] vhci_hcd vhci_hcd.0: Device attached
[ 1330.948286][ T3492] loop6: detected capacity change from 0 to 764
[ 1331.116386][T17824] vhci_hcd: vhci_device speed not set
[ 1331.177815][ T3486] vhci_hcd: connection closed
[ 1331.178378][T17824] usb 9-1: new full-speed USB device number 3 using vhci_hcd
[ 1331.207706][ T3487] vhci_hcd: sendmsg failed!, ret=-32 for 48
[ 1331.227804][T28938] vhci_hcd: stop threads
[ 1331.232119][T28938] vhci_hcd: release socket
[ 1331.236611][T28938] vhci_hcd: disconnect device
[ 1331.439877][   T29] kauditd_printk_skb: 344 callbacks suppressed
[ 1331.439895][   T29] audit: type=1326 audit(1742710103.771:23890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.491645][   T29] audit: type=1326 audit(1742710103.801:23891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.515332][   T29] audit: type=1326 audit(1742710103.801:23892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.539018][   T29] audit: type=1326 audit(1742710103.801:23893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.562579][   T29] audit: type=1326 audit(1742710103.801:23894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.586125][   T29] audit: type=1326 audit(1742710103.801:23895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.609776][   T29] audit: type=1326 audit(1742710103.801:23896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.633284][   T29] audit: type=1326 audit(1742710103.801:23897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.656779][   T29] audit: type=1326 audit(1742710103.801:23898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.680304][   T29] audit: type=1326 audit(1742710103.801:23899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3510 comm="syz.0.9667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1331.737270][ T3517] loop4: detected capacity change from 0 to 256
[ 1331.890340][ T3532] loop3: detected capacity change from 0 to 256
[ 1331.925781][ T3540] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[ 1331.931005][ T3536] netlink: 'syz.4.9677': attribute type 29 has an invalid length.
[ 1331.932412][ T3540] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1331.934436][ T3540] vhci_hcd vhci_hcd.0: Device attached
[ 1331.979596][ T3545] FAULT_INJECTION: forcing a failure.
[ 1331.979596][ T3545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1331.992739][ T3545] CPU: 0 UID: 0 PID: 3545 Comm: syz.5.9680 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1331.992765][ T3545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1331.992779][ T3545] Call Trace:
[ 1331.992786][ T3545]  <TASK>
[ 1331.992794][ T3545]  dump_stack_lvl+0xf2/0x150
[ 1331.992871][ T3545]  dump_stack+0x15/0x1a
[ 1331.992948][ T3545]  should_fail_ex+0x24a/0x260
[ 1331.992982][ T3545]  should_fail+0xb/0x10
[ 1331.993013][ T3545]  should_fail_usercopy+0x1a/0x20
[ 1331.993051][ T3545]  _copy_from_user+0x1c/0xa0
[ 1331.993213][ T3545]  copy_msghdr_from_user+0x54/0x2a0
[ 1331.993253][ T3545]  ? __fget_files+0x17c/0x1c0
[ 1331.993288][ T3545]  __sys_sendmsg+0x13e/0x230
[ 1331.993335][ T3545]  __x64_sys_sendmsg+0x46/0x50
[ 1331.993412][ T3545]  x64_sys_call+0x2734/0x2dc0
[ 1331.993443][ T3545]  do_syscall_64+0xc9/0x1c0
[ 1331.993545][ T3545]  ? clear_bhb_loop+0x55/0xb0
[ 1331.993649][ T3545]  ? clear_bhb_loop+0x55/0xb0
[ 1331.993675][ T3545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1331.993701][ T3545] RIP: 0033:0x7f809083d169
[ 1331.993718][ T3545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1331.993740][ T3545] RSP: 002b:00007f808eea7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1331.993774][ T3545] RAX: ffffffffffffffda RBX: 00007f8090a55fa0 RCX: 00007f809083d169
[ 1331.993786][ T3545] RDX: 0000000004040084 RSI: 0000200000000000 RDI: 0000000000000004
[ 1331.993797][ T3545] RBP: 00007f808eea7090 R08: 0000000000000000 R09: 0000000000000000
[ 1331.993810][ T3545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1331.993830][ T3545] R13: 0000000000000000 R14: 00007f8090a55fa0 R15: 00007ffd5aaa9c18
[ 1331.993850][ T3545]  </TASK>
[ 1332.190318][ T3541] vhci_hcd: connection closed
[ 1332.206882][T28939] vhci_hcd: stop threads
[ 1332.215915][T28939] vhci_hcd: release socket
[ 1332.220613][T28939] vhci_hcd: disconnect device
[ 1332.238412][T28549] vhci_hcd: vhci_device speed not set
[ 1332.351698][ T3561] loop3: detected capacity change from 0 to 256
[ 1332.998236][ T3581] loop6: detected capacity change from 0 to 128
[ 1333.043056][ T3584] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1333.043056][ T3584]    program syz.0.9694 not setting count and/or reply_len properly
[ 1333.110427][ T3581] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1333.123326][ T3581] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1333.319874][ T3587] loop5: detected capacity change from 0 to 1024
[ 1333.355676][ T3591] loop3: detected capacity change from 0 to 764
[ 1333.397148][ T3587] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1333.459862][ T3587] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1333.543380][ T3587] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1333.908522][ T3587] System zones: 0-1, 3-36
[ 1333.928369][ T3587] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1334.530168][T28449] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1334.681773][  T851] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1334.943337][ T3611] loop4: detected capacity change from 0 to 256
[ 1334.955479][ T3617] loop6: detected capacity change from 0 to 1024
[ 1334.979744][ T3619] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[ 1334.986379][ T3619] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1334.994047][ T3619] vhci_hcd vhci_hcd.0: Device attached
[ 1335.012420][ T3617] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1335.022773][ T3617] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1335.055761][ T3617] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1335.081536][ T3630] loop4: detected capacity change from 0 to 512
[ 1335.098691][ T3617] System zones: 0-1, 3-36
[ 1335.104824][ T3630] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.9710: corrupted xattr block 255: invalid header
[ 1335.122738][ T3617] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1335.151380][ T3630] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[ 1335.181645][  T851] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1335.191888][T19092] vhci_hcd: vhci_device speed not set
[ 1335.203615][ T3620] vhci_hcd: connection closed
[ 1335.207689][T28942] vhci_hcd: stop threads
[ 1335.216820][T28942] vhci_hcd: release socket
[ 1335.221360][T28942] vhci_hcd: disconnect device
[ 1335.232708][ T3630] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1335.247434][ T3635] __nla_validate_parse: 9 callbacks suppressed
[ 1335.247453][ T3635] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9712'.
[ 1335.266144][T19092] usb 11-1: new full-speed USB device number 2 using vhci_hcd
[ 1335.274490][T19092] usb 11-1: enqueue for inactive port 0
[ 1335.296821][ T3630] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.9710: corrupted xattr block 255: invalid header
[ 1335.311551][T19092] usb 11-1: enqueue for inactive port 0
[ 1335.317171][T19092] usb 11-1: enqueue for inactive port 0
[ 1335.323242][ T3635] loop6: detected capacity change from 0 to 256
[ 1335.356939][ T3630] SELinux: (dev loop4, type ext4) getxattr errno 117
[ 1335.374314][ T3630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1335.528475][T19092] vhci_hcd: vhci_device speed not set
[ 1335.649797][ T3650] loop3: detected capacity change from 0 to 512
[ 1335.685163][ T3650] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1335.722649][ T3650] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1335.743066][ T3657] loop4: detected capacity change from 0 to 1024
[ 1335.752217][ T3650] System zones: 1-12
[ 1335.756282][ T3650] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1335.763363][ T3650] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9719: bg 0: block 361: padding at end of block bitmap is not set
[ 1335.778153][ T3657] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1335.857264][ T3657] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1335.879210][ T3650] EXT4-fs (loop3): Remounting filesystem read-only
[ 1335.896099][ T3657] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1335.912896][ T3650] EXT4-fs (loop3): 1 truncate cleaned up
[ 1335.935656][ T3650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1335.950799][ T3657] System zones: 0-1, 3-36
[ 1335.955596][ T3650] SELinux: (dev loop3, type ext4) getxattr errno 5
[ 1335.963021][ T3657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1335.983867][ T3650] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1336.078406][  T811] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1336.365440][T17824] usb 9-1: enqueue for inactive port 0
[ 1336.375914][ T3677] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9729'.
[ 1336.376766][T17824] usb 9-1: enqueue for inactive port 0
[ 1336.405923][ T3679] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1336.405923][ T3679]    program syz.0.9730 not setting count and/or reply_len properly
[ 1336.429988][ T3677] loop3: detected capacity change from 0 to 256
[ 1336.460387][T17824] vhci_hcd: vhci_device speed not set
[ 1336.622102][ T3693] loop3: detected capacity change from 0 to 128
[ 1336.755900][ T3696] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1336.755900][ T3696]    program syz.0.9736 not setting count and/or reply_len properly
[ 1336.790288][ T3693] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1336.802837][ T3693] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1337.642347][   T29] kauditd_printk_skb: 324 callbacks suppressed
[ 1337.642364][   T29] audit: type=1326 audit(1742710109.971:24224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.695851][ T3707] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9740'.
[ 1337.746954][ T3707] netlink: 'syz.0.9740': attribute type 29 has an invalid length.
[ 1337.778406][   T29] audit: type=1326 audit(1742710110.001:24225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.802075][   T29] audit: type=1326 audit(1742710110.001:24226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.825571][   T29] audit: type=1326 audit(1742710110.001:24227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.849105][   T29] audit: type=1326 audit(1742710110.011:24228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.872577][   T29] audit: type=1326 audit(1742710110.011:24229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.896120][   T29] audit: type=1326 audit(1742710110.011:24230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.919621][   T29] audit: type=1326 audit(1742710110.011:24231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.943121][   T29] audit: type=1326 audit(1742710110.011:24232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1337.966740][   T29] audit: type=1326 audit(1742710110.011:24233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3706 comm="syz.0.9740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88596fd169 code=0x7ffc0000
[ 1338.134486][ T2663] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1338.153982][ T3711] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1338.153982][ T3711]    program syz.5.9741 not setting count and/or reply_len properly
[ 1338.179663][ T3715] netlink: 24 bytes leftover after parsing attributes in process `syz.6.9743'.
[ 1338.215266][ T3715] loop6: detected capacity change from 0 to 256
[ 1338.315205][ T3729] bridge0: entered promiscuous mode
[ 1338.353099][ T3731] loop3: detected capacity change from 0 to 1024
[ 1338.378705][ T3731] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1338.399710][ T3731] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1338.415732][ T3731] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1338.438427][ T3731] System zones: 0-1, 3-36
[ 1338.461007][ T3731] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1338.484483][ T3742] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in;
[ 1338.484483][ T3742]    program syz.0.9756 not setting count and/or reply_len properly
[ 1338.542888][ T3744] loop6: detected capacity change from 0 to 512
[ 1338.575113][ T3747] loop4: detected capacity change from 0 to 1024
[ 1338.582046][ T3747] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1338.589130][ T3747] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1338.601973][ T3744] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1338.609619][ T3747] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1338.620941][ T3747] System zones: 0-1, 3-36
[ 1338.628395][ T3744] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e12c, mo2=0002]
[ 1338.637616][ T3747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1338.650163][ T3744] System zones: 1-12
[ 1338.650318][ T3744] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1338.681465][ T2663] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1338.693960][  T811] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1338.701343][ T3744] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.9757: bg 0: block 361: padding at end of block bitmap is not set
[ 1338.724192][ T3744] EXT4-fs (loop6): Remounting filesystem read-only
[ 1338.731235][ T3744] EXT4-fs (loop6): 1 truncate cleaned up
[ 1338.737284][ T3744] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1338.749290][ T3744] SELinux: (dev loop6, type ext4) getxattr errno 5
[ 1338.756752][ T3744] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1338.775909][ T3758] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9760'.
[ 1338.797033][ T3762] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9761'.
[ 1338.821653][ T3758] loop3: detected capacity change from 0 to 256
[ 1338.925523][ T3767] ==================================================================
[ 1338.933668][ T3767] BUG: KCSAN: data-race in n_tty_poll / tty_set_termios
[ 1338.940656][ T3767] 
[ 1338.942986][ T3767] read-write to 0xffff8881186f4d14 of 4 bytes by task 3772 on cpu 1:
[ 1338.951062][ T3767]  tty_set_termios+0x1a2/0x8b0
[ 1338.955847][ T3767]  set_termios+0x497/0x4e0
[ 1338.960291][ T3767]  tty_mode_ioctl+0x391/0x5d0
[ 1338.965004][ T3767]  n_tty_ioctl_helper+0x8d/0x240
[ 1338.969960][ T3767]  n_tty_ioctl+0xfd/0x200
[ 1338.974325][ T3767]  tty_ioctl+0x87a/0xbe0
[ 1338.978596][ T3767]  __se_sys_ioctl+0xc9/0x140
[ 1338.983217][ T3767]  __x64_sys_ioctl+0x43/0x50
[ 1338.987829][ T3767]  x64_sys_call+0x1690/0x2dc0
[ 1338.992539][ T3767]  do_syscall_64+0xc9/0x1c0
[ 1338.997078][ T3767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1339.002998][ T3767] 
[ 1339.005335][ T3767] read to 0xffff8881186f4d14 of 4 bytes by task 3767 on cpu 0:
[ 1339.012892][ T3767]  n_tty_poll+0x2b9/0x4b0
[ 1339.017247][ T3767]  tty_poll+0x78/0xf0
[ 1339.021247][ T3767]  __io_arm_poll_handler+0x1e5/0xd50
[ 1339.026550][ T3767]  io_poll_add+0x6b/0xf0
[ 1339.030807][ T3767]  io_issue_sqe+0x15f/0xb70
[ 1339.035327][ T3767]  io_submit_sqes+0x680/0x1070
[ 1339.040117][ T3767]  __se_sys_io_uring_enter+0x1c0/0x1b00
[ 1339.045671][ T3767]  __x64_sys_io_uring_enter+0x78/0x90
[ 1339.051054][ T3767]  x64_sys_call+0xb5e/0x2dc0
[ 1339.055660][ T3767]  do_syscall_64+0xc9/0x1c0
[ 1339.060184][ T3767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1339.066096][ T3767] 
[ 1339.068428][ T3767] value changed: 0x00008a3b -> 0x00000fff
[ 1339.074144][ T3767] 
[ 1339.076489][ T3767] Reported by Kernel Concurrency Sanitizer on:
[ 1339.082638][ T3767] CPU: 0 UID: 0 PID: 3767 Comm: syz.4.9761 Not tainted 6.14.0-rc7-syzkaller-00202-g183601b78a9b #0
[ 1339.093319][ T3767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1339.103377][ T3767] ==================================================================
[ 1339.163459][ T3774] netlink: 'syz.6.9767': attribute type 1 has an invalid length.
[ 1339.195742][ T3774] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1339.227266][ T3774] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1339.238989][ T3774] bond0: (slave wireguard0): The slave device specified does not support setting the MAC address
[ 1339.292867][ T3774] bond0: (slave wireguard0): Error -95 calling set_mac_address