last executing test programs:

1.79677955s ago: executing program 1 (id=1206):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x4e, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x110104, 0x32, 0x0, 0x8, 0x0, 0x20000000, 0x7, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x280)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f0000000300)=0x8285173)
r1 = dup(0xffffffffffffffff)
write$cgroup_subtree(r1, &(0x7f00000002c0)=ANY=[], 0x9)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lstat(0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r5, 0x0, 0x80000000000008, 0x0, 0x0)
setsockopt$inet_opts(r5, 0x0, 0xc, &(0x7f00000000c0)='7', 0x1)
getsockopt$inet_opts(r5, 0x0, 0x9, &(0x7f0000000200)=""/49, &(0x7f0000000080)=0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r2}, 0x10)
r6 = openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x40401, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r6)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0) (fail_nth: 2)
io_uring_setup(0x168a, &(0x7f0000000240)={0x0, 0xd2, 0x4, 0x3, 0xde})

1.78892443s ago: executing program 3 (id=1208):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000140)={[{}]}, 0x1, 0x45e, &(0x7f0000000a40)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2000012, 0x0, 0x0, 0x0, 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc0c0583b, &(0x7f0000000040))

1.726741411s ago: executing program 2 (id=1210):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
shmget$private(0x0, 0x3000, 0x8, &(0x7f0000ffc000/0x3000)=nil)

1.653645671s ago: executing program 2 (id=1211):
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x2}}}}}}}, 0x0)
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty, 0x4}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0xa4ffffff, @rand_addr=' \x01\x00'}}}, 0x15a)
close(r0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
link(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000540)='./bus\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{}, {@max_batch_time={'max_batch_time', 0x3d, 0x8000}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
chdir(&(0x7f00000001c0)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r3 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0xfff3}, {}, {0x5}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x4}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x3c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800, 0x0, 0xbc, 0x0, &(0x7f00000000c0))
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r6, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

1.348460222s ago: executing program 1 (id=1214):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f0000000140)="c2", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000340)=@security={'security\x00', 0xe, 0x4, 0x3a0, 0xffffffff, 0x228, 0x228, 0x158, 0xffffffff, 0xffffffff, 0x340, 0x340, 0x340, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x10, 0x4, {0x3}}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @empty}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0xff000000, 0xffffff00, 0xff], [0xffffffff, 0xff000000, 0xff, 0xff000000], 'bond_slave_0\x00', 'team0\x00', {}, {}, 0x3a, 0x3, 0x6, 0x61}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x0, 0x5, 0xfff7}}}, {{@ipv6={@private0, @mcast2, [0xff000000, 0xff, 0xff, 0xffffffff], [0xff000000, 0xffffffff, 0xffffff00, 0xff000000], 'erspan0\x00', 'wg2\x00', {0xff}, {0xff}, 0x33, 0xc, 0x1, 0x40}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0xd, 0xfffc, 0x1000, 0x1, 0x0, "80a2cd170c9a3b62495a566f137c79890e62a2ed0f8aa9bff9a9ff44a4ea9aa46405ee523785c8570e21e3d0bf4a7eb2c7dcfa053568e86d76e6b6c11c3e7ade"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
shutdown(r1, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000380), &(0x7f0000000400)=0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', <r4=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000280)={r4, 0x11, 0x6, @local}, 0x10)
r5 = getpgrp(0x0)
r6 = syz_pidfd_open(r5, 0x0)
pidfd_send_signal(r6, 0x0, &(0x7f0000000140)={0x0, 0x0, 0xffffffc4}, 0x4)

1.319940993s ago: executing program 4 (id=1217):
r0 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r0, &(0x7f0000000700)={&(0x7f0000000240)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000280)="1190319b540b8312790b5559373f10a4e70cc38435690c547f380e028f1d9700ac579f64dd2f1be51ce786d724d04ed11d0013695773957ccd7556e995355cc33caee7a5d71d2168c35b1e046a4be80185b170264dc1ecc3d1a8aa7557ec14414e2c7c27b0b9d05f5c0224ebfa2a429467806a535a3501e2c459c42dd98dd689effabf95def6360e1b313bc5e3a62dfe33059fedc27edf29a6c561fc49aa95", 0x9f}, {&(0x7f0000000380)="8a3ca0174a6d881b8f96301178ad99d2bf633db87d93ac5d8c31063dcd9f8f4c9f1c4d335c246bda87a1d7bf55538f91bbb601ad10a2", 0x36}, {&(0x7f0000000400)="f6a6580bb5e6d5b063d3662b53867a8b3c8211a0aa15552d281c2a4ab44ea416935f4ec313d7269518430cef14ee30793126385f052f9415c82da396f2ca486fbf311b36346bb76579d884d824743eecf2582ab0658f05e13281101e8ae7e22199c4722b1fae35c9239c7e2a32368c5f", 0x70}, {&(0x7f0000000480)="0ae70a29386fd15dcaa19aeb0096c4cf3d6cc601b96dbddde21050c1c45281f44cb3103a34cc2597c3d202b6eed648e1f8bf647d9427a54fb7cf5ef98e3aa271f94e927d3e6d6f62d5af7556458879c2e1a6aa432439f2e2c00b7fbdcf202ea89c49a33f0f8e2a767375717f056d9663fb7eb9e30001cb61be155ffb6c", 0x7d}, {&(0x7f0000001200)="ed9d2b4cb1f03410770de3395e39d00def706e709e4b70134af0e86eb964b3cf7646eb7a1901678dca3fe742bd32f9a43361bcc92d8300370a1e52e92dd075ac68fa4d959c7eea061d43e348c44a9302eedd1a974240ddc58412d81dcf97b21cf5163691dd029f931c508415c5bb44f3af77fd94cc6b12243512500b466bc2074df9db4c98c2ea40e0de52ec361eff671d1c78", 0x93}, {&(0x7f0000000500)}], 0x6, &(0x7f0000000600)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @empty}}}], 0x38}, 0x10)
recvmsg$kcm(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x7, &(0x7f0000000180), 0x43)

1.263546263s ago: executing program 1 (id=1218):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x301000, 0x1)
lseek(r0, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_CONNINFO(r4, 0x11, 0x2, 0x0, &(0x7f0000000740))
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f0000000ec0)=[{{&(0x7f0000000380)=@alg, 0x80, &(0x7f0000000880)=[{&(0x7f0000000700)=""/20, 0x14}, {&(0x7f0000000740)=""/139, 0x8b}, {&(0x7f0000000800)=""/127, 0x7f}], 0x3, &(0x7f00000008c0)=""/35, 0x23}, 0x4}, {{&(0x7f0000000900)=@ieee802154, 0x80, &(0x7f0000000d40)=[{&(0x7f0000000980)=""/216, 0xd8}, {&(0x7f0000000a80)=""/104, 0x68}, {&(0x7f0000000b00)=""/145, 0x91}, {&(0x7f0000000bc0)=""/123, 0x7b}, {&(0x7f0000000c40)=""/9, 0x9}, {&(0x7f0000000c80)=""/49, 0x31}, {&(0x7f0000000cc0)=""/127, 0x7f}], 0x7, &(0x7f0000000dc0)=""/195, 0xc3}, 0x9}], 0x2, 0x12163, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="440021001a00010400000000000009000a000000", @ANYRES32=0x0, @ANYBLOB="01000a081400010000000000000000000000ffffffffffff1400030007000000000000000400000000000000"], 0x44}}, 0x0)

1.034573584s ago: executing program 2 (id=1219):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
syz_io_uring_setup(0x3516, &(0x7f0000000180)={0x0, 0x1ff5, 0x400, 0x1, 0x3bf}, &(0x7f0000000000), &(0x7f0000000100))
process_vm_writev(0x0, &(0x7f00000001c0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x0)

1.002098875s ago: executing program 3 (id=1220):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
unlink(&(0x7f00000000c0)='./file1\x00')

990.034925ms ago: executing program 2 (id=1222):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_emit_ethernet(0x72, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x14, 0x0, 0x0, 0x0, 0x0, {[@nop, @nop, @eol, @mss={0x2, 0x4, 0x5}, @md5sig={0x13, 0x12, "ab519c9940eb739563a3c52b43aee4a2"}, @sack={0x5, 0x22, [0x9, 0x43, 0x1, 0x8, 0xfa39, 0x8000, 0x8, 0x9]}]}}}}}}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0x5}, 0x18)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000340)=<r5=>0x0)
waitid(0x0, r5, &(0x7f0000000440), 0x8, &(0x7f0000000600))
r6 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$F2FS_IOC_DECOMPRESS_FILE(r1, 0xf517, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r8, 0x5)
r9 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r9, 0x2)

915.215125ms ago: executing program 0 (id=1224):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={0x0, {0x2, 0x4e23, @empty}, {0x2, 0x0, @loopback}, {0x2, 0x4e21, @local}, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000000000})
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000040)='\b\x00\x00\x00', 0x4}], 0x1)
ioctl$sock_inet_SIOCADDRT(r0, 0x890c, &(0x7f0000000840)={0x0, {0x2, 0x4e24, @empty}, {0x2, 0x40, @remote}, {0x2, 0x4e27, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)='lo\x00', 0xffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
r6 = socket$inet6(0xa, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
r8 = syz_clone(0x8004000, &(0x7f00000006c0)="b3a497fe50422c06da5c86401507a7a17827598e7a5b26c441aadae03677ba00a893225dbf3a1eaacc4a3c0ce23831b13247991f3a07e6afbbd48b636516b40b810731da2b0d932ec0e19d9088781c1aee7fd045950d4e9bc0156483a0b93339e84eff46fc11334d13c7fdd7ed30072d5c6c8b949b4c450315e3b996c6c42d7a30221480a76b5ee9067e42d624bab8338f390557a6ac474fe7c2dfded254c9921530ebb4becdb5ef840717aced", 0xad, &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000004c0))
perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x0, 0xec, 0x0, 0x8, 0x0, 0x40c, 0xd9a5, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x6, 0x2}, 0x10, 0x3, 0xfffffff7, 0x4, 0x1, 0x9, 0x0, 0x0, 0x8}, r8, 0xd, r5, 0x8)
r9 = dup3(r7, r6, 0x0)
r10 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r11=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r11, 0x0)
r12 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r12, 0x0)
sendmsg$key(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0213000005000000000000000000000003"], 0x28}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xb, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2d}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

913.606685ms ago: executing program 0 (id=1225):
mkdir(&(0x7f00000000c0)='./file0\x00', 0xc2)
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001540)={&(0x7f0000000a80)='kfree\x00', r2, 0x0, 0xc4d}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c756e616d653dd0"])

874.314075ms ago: executing program 3 (id=1226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd2(0x0, 0x0)

834.088415ms ago: executing program 0 (id=1227):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0, 0x2}, 0x20)

833.133236ms ago: executing program 1 (id=1228):
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000240), 0x0)
shutdown(0xffffffffffffffff, 0x1)
lseek(r2, 0x62, 0x1)
r3 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$sock_int(r4, 0x1, 0x2a, &(0x7f0000000000)=0x59cc, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000000)=ANY=[@ANYBLOB="004500005c0000000000119078000000000000000000004e200048907803000000000000006d4dfdeb8cf7bbfe143803bec2ce783e04cd32308cdd8dde547f468d32f1e8c71cb8adfce542a4bc5a026c208fd0c45787e4aa384e3d26b21ea41cc128364c"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0)

821.612455ms ago: executing program 3 (id=1229):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="40000000000101040000000000000000020000002c00018014000180080001"], 0x40}}, 0x0) (fail_nth: 8)

819.325886ms ago: executing program 0 (id=1230):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000140)={[{}]}, 0x1, 0x45e, &(0x7f0000000a40)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2000012, 0x0, 0x0, 0x0, 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc0c0583b, &(0x7f0000000040))

769.543866ms ago: executing program 1 (id=1231):
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x2}}}}}}}, 0x0)
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty, 0x4}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0xa4ffffff, @rand_addr=' \x01\x00'}}}, 0x15a)
close(r0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
link(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000540)='./bus\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{}, {@max_batch_time={'max_batch_time', 0x3d, 0x8000}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
chdir(&(0x7f00000001c0)='./file0\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x0, 0xfff3}, {}, {0x5}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x4}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}]}}]}, 0x3c}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0x1000)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r6, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

411.926408ms ago: executing program 4 (id=1232):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x4e, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x110104, 0x32, 0x0, 0x8, 0x4, 0x20000000, 0x7, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace(0x420f, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x280)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f0000000300)=0x8285173)
r2 = dup(0xffffffffffffffff)
write$cgroup_subtree(r2, &(0x7f00000002c0)=ANY=[], 0x9)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lstat(0x0, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r6, 0x0, 0x80000000000008, 0x0, 0x0)
setsockopt$inet_opts(r6, 0x0, 0xc, &(0x7f00000000c0)='7', 0x1)
getsockopt$inet_opts(r6, 0x0, 0x9, &(0x7f0000000200)=""/49, &(0x7f0000000080)=0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r3}, 0x10)
r7 = openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x40401, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r7)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
io_uring_setup(0x168a, &(0x7f0000000400)={0x0, 0x1a60, 0x4, 0x3, 0xde})

411.656068ms ago: executing program 3 (id=1233):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
shmget$private(0x0, 0x3000, 0x8, &(0x7f0000ffc000/0x3000)=nil)

384.596608ms ago: executing program 3 (id=1234):
syz_usb_connect(0x4, 0x0, 0x0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x2, [{0xa3, &(0x7f00000007c0)=@string={0xa3, 0x3, "915307f5acde7ac7c5e7b020aa612d1df682c70b95250615a404906d5a3f3678808c05acacd61febafc76db4f1a1875ef277b2fdb5a9f52ed665796d7dfca46cd4b581841bfc45465288c9a1c51b38408f09cb4d4c352eb58d0ce4e952e05684fcc491e8acc239e927b1228864835fc1a89720b7eac8d08f1bf8c1b03c60e542a891eb43f637d82b0c8d2a9f1aa1f585c8c6fd4dfe53d6c9fdfedf5c67a7681715"}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x409}}]})
syz_usb_connect$cdc_ecm(0x1, 0x5c, &(0x7f0000000980)=ANY=[@ANYBLOB="1201100102030109024a0001018000010904000f03020600080b24060000d48f6aac20459347002a000d240f010200000009000500fc09058103000081807f09fb4d845b25a2c29a8444058202200000080a09050302ff03070901"], &(0x7f0000000a80)={0xa, &(0x7f0000000a00)={0xa, 0x6, 0x310, 0x0, 0x0, 0x7, 0xff, 0xd0}, 0x29, &(0x7f0000000a40)=ANY=[@ANYBLOB="050f29000403100b07100208a500000a10030008000b05080010100a0c01012d8ab671293b807c"]})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x96)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000500)={0x0, 0x1}, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000400000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000008c0)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r3, 0x3)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000007040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB="1000000000000000ff007b0002000000e3"], 0x20}}], 0x1, 0x0)
lsm_get_self_attr(0x69, &(0x7f00000000c0)={0x0, 0x0, 0x29, 0x9, ""/9}, &(0x7f0000000140)=0x29, 0x0)
r6 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000100)='./bus\x00', 0x1000002, &(0x7f0000000600)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d3174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c8c536f64df3ead70943de5d656df13bb45b52f00"/219, @ANYRES8=r1], 0x1, 0x368, &(0x7f0000000180)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x36, 0x1, 0x1, 0x0, 0x0, 0x0, 0x30100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4023, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r8=>0x0})
sendto$packet(r7, 0x0, 0x0, 0xc000, &(0x7f00000003c0)={0x11, 0x4305, r8, 0x1, 0x66, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}}, 0x14)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, 0x0, 0x0)

321.258188ms ago: executing program 4 (id=1235):
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0xc0000, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000940)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000840)={&(0x7f0000000a00)={0x48, r1, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x7}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x5}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_TXQ_LIMIT={0x8, 0x10a, 0x5}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0xa79}, @NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0x3}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x48}}, 0x14)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x212814, &(0x7f0000000040)={[{@mblk_io_submit}, {@minixdf}, {@dioread_lock}]}, 0x9, 0x50c, &(0x7f00000001c0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x60)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0xf, &(0x7f0000000480)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000ab9b16879f920ceab6da8d6be31d72ff09272030e401b5bb26dbb3f8692bfa46a8360ab766c260ef25037e36377eb81b2294e7b299751e5031e536e77d3f0e280954c0"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000000), &(0x7f0000000140)=r4}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa10000ffffb702000004000000b70300000000dfdd850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000002000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = socket(0x28, 0x5, 0x0)
r8 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r8, &(0x7f0000000040), 0xff71)
listen(r8, 0x0)
connect$vsock_stream(r7, &(0x7f0000000080), 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005000000", @ANYRES32, @ANYBLOB="00000000000000000a000000000000000078cc2a", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000a80)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000edbecfe03bb3ecd4ea2e854028e1b098c2b7078cab4a820ea42592cf8f45fa600c704de061a184b3a536b7574c4303d19f75d6ab8498032af45be8f31dd278ce0dca3c8f5683b3cbc101a188a1d43952d3ab8b0c2bb613c74dec30415a9d16eaa7fcf7b13b33102a92b6513e6728d3fcdd807a8c0a33f8f265d8e6d6409d0639eeba7a874caeebfa564dc6de61a415bd7f67", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000840000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r10}, 0x10)
sendmmsg(r7, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x0)
r11 = accept4$unix(r8, 0x0, 0x0, 0x0)
recvfrom$unix(r11, &(0x7f0000000180)=""/235, 0x1ffd4, 0x0, 0x0, 0x0)
openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000fbedd411a2ea70b500"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

245.974639ms ago: executing program 0 (id=1236):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = gettid()
process_vm_writev(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = io_uring_setup(0x6ddd, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000e00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r2, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0, 0x2}, 0x20)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
chdir(&(0x7f0000000200)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x515001, 0x408)

209.661969ms ago: executing program 4 (id=1237):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x9, [@enum={0xf, 0x1, 0x0, 0x6, 0x4, [{0x5, 0x8}]}, @fwd={0xe}, @fwd={0x5}, @decl_tag={0xf, 0x0, 0x0, 0x11, 0x5, 0x1}, @restrict={0x1, 0x0, 0x0, 0xb, 0x4}]}, {0x0, [0x0, 0x0, 0x5f, 0x30, 0x2e, 0x0, 0x5f]}}, &(0x7f0000000040)=""/62, 0x69, 0x3e, 0x1, 0x3, 0x0, @void, @value}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@bloom_filter={0x1e, 0x1784, 0x3, 0x800, 0x8, 0x1, 0x1ff, '\x00', r2, r3, 0x2, 0x1, 0x1, 0x9, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001b00)={r4, &(0x7f0000001a40), 0x0}, 0x20)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x4460, 0x20848}, [@IFLA_VFINFO_LIST={0xc, 0x16, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x4}]}]}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0xf3cd}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000841}, 0x0)

166.641029ms ago: executing program 4 (id=1238):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1, {0xee00, 0xee01}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r3, 0x728, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x91}, 0x24018011)
fsetxattr$security_ima(r1, &(0x7f0000000240), &(0x7f0000000280)=@v2={0x3, 0x3, 0x9, 0x8001, 0x31, "d86b91e160d3e18142fb35fa6c791d229c563ce18acec2bdb6195a8eff7b7f9da8d68aba348622356a37dc7491ab2b7db8"}, 0x3a, 0x2)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f00000002c0)={0x1, 0x1, 0x8, r4, 0x5}, 0xc)
sched_setscheduler(0x0, 0x0, &(0x7f0000000300)=0x10)
r5 = openat$cgroup_ro(r2, &(0x7f0000000340)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0)
socketpair(0x21, 0x4, 0x4, &(0x7f0000000380)={<r6=>0xffffffffffffffff})
r7 = syz_clone(0xa200, &(0x7f00000003c0)="995c35f29f1bba746c6df7c42bad68366f128ba2f9dac0b299848b7277ca115a1fbbcc297bebdb873ded9008ad39afe723c2635c69a0624dbd007a3af753f4804c93e952ef00e6e671020436a0136401eb2b680af4612de078e169af92365d11d665112466f4c0cd76f38b115bba0ac3f7bcb5e8e6b4f8d09294b3566e8568b78f9f4a", 0x83, &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="abcb168ac458e95c")
capget(&(0x7f0000000540)={0x19980330, r7}, &(0x7f0000000580)={0x1, 0x0, 0x9, 0x1, 0x8, 0x7f})
syz_open_dev$tty1(0xc, 0x4, 0x4)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r8, &(0x7f0000000980)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000940)={&(0x7f0000000640)={0x2f0, r9, 0x0, 0x70bd28, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x168, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ff}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5d730458}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b0baad9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x77}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x25452ba1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5f}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x534b0be4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4744fd40}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x67}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2c387a7c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1af0980}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x74b56a45}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x55bef830}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5be3db38}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x642b70c0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x289f55a4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x50}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x38}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x38505df3}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x67}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7786b892}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3a6e9038}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x55649174}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xea}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6ded197f}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x478545f9}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4dd8f87c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5ca977ad}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x38cd8c31}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2dc5925}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x482f720d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2da54166}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}, {0x5}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0xfbcbbc05574e526c}, {0x5, 0x3, 0x7}, {0x5}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x18, 0x8, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x27e53564}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43f119d2}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x108, 0x8, 0x0, 0x1, [{0x54, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x740b3891}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x42}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x51}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x40b28b56}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xac}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x80}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xef}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x48a8b7e4}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x45}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7930f104}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2fe8f4f9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd8}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19129e2f}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x55}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4f77172b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x29}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcf}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x72}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x14dcf4ca}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x58eec9ea}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x11d56810}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x40}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6ca140ea}]}]}]}, 0x2f0}, 0x1, 0x0, 0x0, 0x8012}, 0x0)
openat$cgroup_ro(r1, &(0x7f00000009c0)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, &(0x7f0000000bc0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000a40)={0x120, 0x0, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}]}, 0x120}, 0x1, 0x0, 0x0, 0x800}, 0x24000001)
r10 = dup(r0)
r11 = syz_genetlink_get_family_id$tipc(&(0x7f0000000c40), r6)
sendmsg$TIPC_CMD_DISABLE_BEARER(r5, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x30, r11, 0x8, 0x70bd28, 0x25dfdbfb, {{}, {}, {0x14, 0x13, @l2={'eth', 0x3a, 'macvtap0\x00'}}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x8c0}, 0x40)
getdents64(r10, &(0x7f0000000d40)=""/212, 0xd4)
bind$inet6(r1, &(0x7f0000000e40)={0xa, 0x8, 0xffffffff, @loopback, 0xd3f0}, 0x1c)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000fc0)={r2, 0x20, &(0x7f0000000f80)={&(0x7f0000000e80)=""/135, 0x87, 0x0, &(0x7f0000000f40)=""/33, 0x21}}, 0x10)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001040), r10)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r12, &(0x7f0000001800)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000017c0)={&(0x7f0000001080)={0x738, r13, 0x300, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x188, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x50, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x13, 0x1, [0x60, 0x30, 0x2e742fc1b9a693e7, 0x1b, 0x6, 0x60, 0x4, 0x12, 0x16, 0x5, 0x30, 0x18, 0x4, 0x12, 0x30]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x1, 0xcdb, 0x0, 0x4, 0x8, 0xff, 0x8]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x748, 0x5, 0x3, 0x1, 0x7fff, 0x7, 0xd2e]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_5GHZ={0x60, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x3, 0x6, 0x8, 0x0, 0x7, 0x3, 0x275]}}, @NL80211_TXRATE_HT={0x2b, 0x2, [{0x0, 0x1}, {0x7, 0x9}, {0x0, 0x6}, {0x4, 0x7}, {0x3, 0x6}, {0x5, 0x8}, {0x6, 0x7}, {0x7, 0x2}, {0x0, 0x9}, {0x1, 0x7}, {0x3, 0x4}, {0x3, 0x5}, {0x3, 0x8}, {0x0, 0x1}, {0x5, 0x6}, {0x7, 0x6}, {0x2, 0x3}, {0x2, 0x9}, {0x3, 0x3}, {0x6, 0x1}, {0x0, 0x4}, {0x7, 0xa}, {0x5, 0x9}, {0x6, 0x5}, {0x6, 0x1}, {0x1, 0x9}, {0x4, 0x2}, {0x1, 0x6}, {0x3, 0x6}, {0x0, 0x6}, {0x2, 0x2}, {0x7, 0xa}, {0x5, 0x9}, {0x7, 0x2}, {0x5, 0x1}, {0x6, 0x1}, {0x1, 0x5}, {0x1}, {0x1, 0x9}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x90b, 0x0, 0x3ff, 0x81, 0x4, 0x9, 0xfff, 0x7]}}]}, @NL80211_BAND_2GHZ={0x34, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x16, 0x4, 0x24, 0x0, 0x18, 0x24, 0x3, 0x2, 0x24, 0x60, 0x16, 0x9, 0x16, 0x35, 0x0, 0x18, 0x16, 0x24, 0x18, 0x1, 0x1f, 0x12, 0x36, 0x3, 0x3, 0x2, 0x15]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_60GHZ={0x48, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x20, 0x1, [0x91403f5acd1bced8, 0x60, 0x30, 0x3, 0x48, 0x18, 0x2, 0x2, 0x3f, 0x6c, 0x24, 0x1b, 0x6, 0x24, 0xc, 0x48, 0x1, 0x0, 0x30, 0xb, 0x4c, 0x18, 0x5, 0x18, 0x1, 0x2, 0xb, 0x9]}, @NL80211_TXRATE_HT={0xe, 0x2, [{0x7, 0x8}, {0x3, 0xa}, {0x2, 0x1}, {0x4, 0x4}, {0x2, 0x8}, {0x0, 0x2}, {0x3, 0x2}, {0x1}, {0x2, 0x4}, {0x6, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x7, 0xd4a4, 0x5, 0xfff, 0x4, 0x2, 0xcd8b]}}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0xb, 0x2, [{0x1, 0x9}, {0x5, 0x1}, {0x0, 0x5}, {0x2}, {0x1, 0x9}, {0x6, 0x2}, {0x4, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x34, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0xfffb, 0x401, 0x101, 0x3283, 0x18, 0x3, 0x7f, 0x5]}}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x3, 0x4, 0x2, 0x101, 0x6d3, 0x6, 0xfeff]}}]}]}, @NL80211_ATTR_TX_RATES={0x3fc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x34, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x4, 0x8, 0x9, 0x8001, 0x2, 0x3, 0x14]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x7, 0x4, 0x81, 0x5, 0x3, 0x6, 0x9]}}]}, @NL80211_BAND_60GHZ={0x88, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x101, 0x2, 0x28, 0x401, 0x9, 0x1, 0x1000, 0xf]}}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x1, 0x4}, {0x4, 0x2}, {0x0, 0x5}, {0x0, 0x5}, {0x0, 0x1}, {0x1, 0x8}, {0x1, 0x5}, {0x1}, {0x1}, {0x2, 0x8}, {0x0, 0x1}, {0x4, 0x4}, {0x4, 0x1}, {0x7, 0x3}, {}, {0x7, 0x6}, {0x5, 0x3}, {0x7}, {0x7, 0x6}, {0x3, 0x3}, {0x5, 0xa}, {0x5, 0xa}, {0x2, 0xa}, {0x2, 0xa}, {0x5, 0x6}, {0x1, 0x4}, {0x3, 0x4}, {0x0, 0x8}, {0x4, 0xa}, {0x0, 0x5}, {0x2, 0xa}, {0x2, 0x4}, {0x3}, {0x2, 0x9}, {0x6, 0xa}, {0x3, 0x2}, {0x1, 0x2}, {0x1, 0x1}, {0x0, 0x9}, {0x5, 0x9}, {0x1, 0x4}, {0x0, 0x4}, {0x5, 0x1}, {0x1, 0x3}, {0x3}, {0x2, 0x4}, {0x4, 0x3}, {0x0, 0x5}, {0x6}, {0x3, 0xa}, {0x1, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0xb726, 0x8, 0x401, 0x9, 0x5, 0x0, 0xa]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x40, 0x4, 0xb, 0x0, 0xfff, 0x2c1b, 0xfff9, 0x4]}}]}, @NL80211_BAND_6GHZ={0xc8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x33, 0x3, 0xc, 0x8000, 0x2, 0x3ff, 0x2]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x0, 0x0, 0x8, 0xfff7, 0x0, 0xc1ce, 0x2, 0x4]}}, @NL80211_TXRATE_HT={0x37, 0x2, [{}, {0x2, 0x5}, {0x3}, {0x1, 0x3}, {0x3, 0x5}, {0x6, 0x6}, {0x5, 0x4}, {0x1, 0xa}, {0x6, 0x3}, {0x0, 0x2}, {0x1, 0x8}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x5}, {0x2, 0x9}, {0x0, 0x3}, {0x5, 0x4}, {0x2, 0xa}, {0x3, 0x2}, {0x6, 0x7}, {0x4, 0x3}, {0x3, 0x2}, {0x2, 0x6}, {0x1, 0x6}, {0x5, 0x7}, {0x4, 0x1}, {0x1}, {0x6, 0x7}, {0x3, 0xa}, {0x2, 0x4}, {0x0, 0x2}, {0x1, 0x5}, {0x0, 0x6}, {0x3, 0x2}, {0x3, 0x1}, {0x0, 0x4}, {0x1, 0x9}, {0x1, 0x9}, {0x7, 0x9}, {0x4, 0x6}, {0x7, 0x9}, {0x0, 0x3}, {0x4, 0x8}, {0x7, 0x8}, {0x2, 0x9}, {0x4, 0x5}, {0x2, 0x4}, {0x2, 0x2}, {0x6, 0x4}, {0x2, 0x2}, {0x3, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xa8e, 0x2, 0x8, 0x5603, 0x81, 0x7, 0xff80, 0xf]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x3b, 0x2, [{0x0, 0x1}, {0x4, 0x9}, {0x0, 0x1}, {0x1, 0x8}, {0x0, 0x9}, {0x1, 0x9}, {0x0, 0x2}, {0x3}, {0x1, 0x9}, {0x2, 0x7}, {0x2, 0xa}, {0x5, 0x2}, {0x7, 0x9}, {0x4, 0x1}, {0x6, 0x9}, {0x4, 0xa}, {0x6, 0x7}, {0x6, 0x8}, {0x2, 0x2}, {0x1, 0x4}, {0x5, 0x4}, {0x5, 0x3}, {0x2, 0x6}, {0x1, 0x3}, {0x4, 0xa}, {0x0, 0x3}, {0x1, 0x3}, {0x0, 0x3}, {0x7, 0x1}, {0x2, 0x3}, {}, {0x1, 0x3}, {0x3, 0xa}, {0x1, 0x1}, {0x3, 0x6}, {0x1, 0x3}, {0x2, 0x3}, {0x1, 0x9}, {0x0, 0x1}, {0x7, 0x6}, {0x0, 0x2}, {0x0, 0x7}, {0x0, 0x8}, {}, {0x7, 0x6}, {0x7, 0x5}, {0x7, 0x8}, {0x1, 0x8}, {0x4, 0x7}, {0x0, 0x3}, {0x3, 0x9}, {0x6, 0x3}, {0x3, 0x2}, {0x2, 0x4}, {0x1, 0x7}]}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x24, 0xb, 0x36, 0x6c, 0xb, 0x60]}]}, @NL80211_BAND_5GHZ={0xe0, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1d, 0x1, [0xb, 0x18, 0x48, 0x30, 0x60, 0xc, 0x18, 0x16, 0x2, 0x2, 0x2, 0x1b, 0x1d, 0x8, 0xc, 0x3, 0xe, 0x1b, 0x18, 0x2, 0x12, 0x5, 0x2, 0x5, 0x4]}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x1, 0x0, 0x60, 0x30, 0x2, 0x12, 0x24, 0x6, 0x60, 0x63, 0x60, 0xb, 0x5, 0x12, 0x18, 0x30, 0x53, 0x3, 0x9, 0x18, 0x30, 0x6, 0x36, 0x6, 0x3, 0x5, 0xb]}, @NL80211_TXRATE_HT={0x41, 0x2, [{0x6, 0x7}, {0x5, 0x5}, {0x4, 0x1}, {0x7, 0x8}, {0x0, 0x5}, {0x7, 0x1}, {0x4, 0xa}, {0x1, 0x2}, {0x4, 0x2}, {0x3, 0x7}, {0x0, 0x9}, {0x3, 0x3}, {0x0, 0xa}, {0x2, 0x6}, {0x4, 0xa}, {0x2, 0x7}, {0x6, 0x3}, {0x2, 0x7}, {0x2, 0x9}, {0x3, 0x2}, {0x4, 0x6}, {0x4, 0x4}, {0x3, 0x8}, {}, {0x1, 0x2}, {0x4, 0x4}, {0x0, 0x9}, {0x0, 0x6}, {0x3, 0x7}, {0x1, 0x3}, {0x5, 0x5}, {0x2}, {0x2, 0x7}, {0x6, 0x3}, {0x0, 0x5}, {0x5, 0x6}, {0x0, 0x4}, {0x5, 0x6}, {0x0, 0x2}, {0x6, 0x9}, {0x6, 0x8}, {0x7, 0x6}, {0x0, 0x5}, {0x6}, {0x5, 0x4}, {0x4, 0x3}, {0x0, 0x4}, {0x7, 0xa}, {0x7, 0x5}, {0x6, 0x2}, {0x2, 0x4}, {0x2, 0x7}, {0x2, 0xa}, {0x1, 0x6}, {0x5, 0x4}, {0x0, 0x9}, {0x6, 0x8}, {0x0, 0x8}, {0x4, 0x2}, {0x6, 0x5}, {0x2, 0x6}]}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x1, 0x1}, {0x0, 0x9}, {0x2, 0x8}, {0x4, 0x2}, {0x2, 0xa}, {0x0, 0x9}, {0x7, 0x5}, {0x3, 0xa}, {0x7, 0x4}, {0x0, 0xa}, {0x1, 0x5}, {0x3, 0x4}, {0x7, 0x4}, {0x2}, {0x5, 0x6}, {0x7, 0x9}, {0x0, 0x3}, {0x5}, {0x4, 0x7}, {0x7, 0x9}, {0x0, 0xa}, {0x6, 0x3}, {0x7}, {0x3}, {0x3, 0x2}, {0x0, 0x4}, {0x5, 0x2}, {0x7, 0x5}, {0x1, 0x5}, {0x6, 0x6}, {0x6}, {0x2, 0x4}, {0x6, 0x1}, {0x5, 0x9}, {0x7}, {0x6, 0x7}, {0x1}, {0x5, 0x9}, {0x6, 0x1}, {0x5, 0x2}, {0x5, 0x3}, {}, {0x5}, {0x7}, {0x4, 0x2}, {0x6, 0x2}, {0x4, 0x2}, {0x7, 0x3}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x8c39780f27086cd1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x12, 0x9, 0x9, 0x1, 0x3, 0x3, 0x36, 0x2e, 0x4, 0x3, 0xc, 0x59, 0x9, 0x24, 0x36, 0x18]}]}, @NL80211_BAND_5GHZ={0x70, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x37, 0x2, [{0x2, 0x8}, {0x0, 0x7}, {0x0, 0x1}, {0x2, 0x9}, {0x2, 0xa}, {0x6, 0x3}, {0x7, 0x8}, {0x5, 0x3}, {0x2, 0xa}, {0x0, 0x8}, {0x7, 0x7}, {0x5, 0x9}, {0x3, 0x8}, {0x3, 0xa}, {0x5, 0x2}, {}, {}, {0x2}, {0x3, 0x9}, {0x3, 0x6}, {0x3, 0x4}, {0x6, 0x8}, {0x2, 0x3}, {0x4, 0x2}, {0x2, 0x8}, {0x5, 0x9}, {0x7, 0x1}, {0x6, 0x4}, {0x1, 0x1}, {0x2, 0x6}, {0x3, 0x8}, {0x4, 0x1}, {0x7, 0x8}, {0x0, 0x7}, {0x4, 0x1}, {0x2, 0xa}, {0x4, 0x5}, {0x2}, {0x3, 0x5}, {0x1, 0x6}, {0x7, 0xa}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x7}, {0x2, 0x4}, {0x1}, {0x4, 0x9}, {0x5, 0x4}, {0x3, 0x3}, {0x0, 0x7}, {0x2, 0x7}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x4, 0x51, 0x2, 0x60, 0x48, 0x1b, 0x1b, 0x12, 0x36, 0x48, 0x9, 0x48, 0xb, 0x5, 0x7b, 0xb, 0x3, 0x18, 0x6, 0x79, 0x16, 0x1b, 0x36, 0x3]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_2GHZ={0xb4, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x1b, 0x1b, 0x3, 0x2, 0x4, 0x12, 0x2, 0x36, 0x1, 0xb, 0x6, 0xc, 0x6, 0x30, 0x5, 0x24, 0x6c, 0x9, 0x48, 0x16, 0x2, 0x4, 0x4, 0x18, 0x18, 0xc, 0x24, 0x1b, 0x3, 0x6, 0xc, 0x30]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x81, 0x1, 0x6, 0x0, 0xd, 0x3b71, 0x5]}}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x1b, 0x8, 0x48, 0x12, 0x6c, 0x2, 0x3, 0xaa, 0x30, 0x48]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x27, 0x2, [{0x3, 0x1}, {0x5, 0x2}, {0x5}, {0x1, 0x8}, {0x0, 0x8}, {0x7, 0x6}, {0x1, 0x4}, {0x4, 0x1}, {0x1, 0x7}, {0x4, 0xa}, {0x5, 0xa}, {0x1, 0x7}, {0x2, 0x2}, {0x5, 0x3}, {0x1, 0x1}, {0x4, 0x8}, {0x3, 0x9}, {}, {0x0, 0x7}, {0x6, 0x4}, {0x5, 0x8}, {0x2, 0x7}, {0x3, 0x5}, {0x4, 0x7}, {0x0, 0x9}, {0x4}, {0x7, 0x6}, {0x1, 0x5}, {0x1}, {0x6, 0x3}, {0x1, 0x7}, {0x4, 0x7}, {0x2, 0x8}, {0x1, 0x9}, {0x4, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x7, 0x1, 0x6, 0x0, 0x8a03, 0x200, 0x2]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x5a, 0x7, 0x4, 0xc, 0x8, 0x8, 0x18]}}]}, @NL80211_BAND_6GHZ={0x70, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x4, 0x2, 0x2, 0x6, 0x6bfa, 0xa0, 0x7, 0x100]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x3446, 0x7, 0x7, 0x7f, 0x9, 0xfff8, 0x3e]}}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x1, 0x4}, {0x6, 0x8}, {0x1, 0x9}, {0x2}, {0x5, 0x9}, {0x1, 0x7}, {0x0, 0x8}, {0x0, 0x1}, {0x4}, {0x7, 0xa}, {0x0, 0x6}, {0x5}, {0x5, 0x3}, {0x0, 0x2}, {0x6, 0x4}, {0x0, 0x8}, {0x0, 0x3}, {0x0, 0x2}, {0x7, 0x3}, {0x3, 0x5}, {0x5, 0x8}, {}, {0x0, 0xa}, {0x3, 0x9}, {0x0, 0x5}, {0x0, 0xa}, {0x5, 0x9}, {0x0, 0xa}, {0x1, 0x8}, {0x0, 0xa}, {0x5, 0x5}, {0x6, 0x8}, {0x3, 0x9}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x8, 0x5, 0xfff, 0x9c3, 0xc, 0x4f4c, 0xca90]}}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_TX_RATES={0x114, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x44, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0xcc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x20, 0x1, [0x18, 0x6c, 0x30, 0x4, 0xc, 0xb, 0x1, 0x9, 0x30, 0x18, 0x30, 0x6c, 0x24, 0x6, 0x6c, 0x6, 0x5, 0x12, 0x38, 0x30, 0xc, 0x12, 0x9, 0x0, 0x18, 0x48, 0x30, 0x48]}, @NL80211_TXRATE_HT={0x3f, 0x2, [{0x6, 0x1}, {0x1, 0x4}, {0x5, 0x9}, {0x5}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x7}, {0x0, 0x6}, {0x1, 0xa}, {0x1, 0x6}, {0x2, 0x7}, {0x0, 0x2}, {0x7, 0x7}, {0x6, 0x8}, {0x3, 0x4}, {0x1, 0x9}, {0x0, 0x6}, {0x0, 0x5}, {0x1, 0x7}, {0x5, 0x1}, {0x5, 0x7}, {0x6, 0x8}, {0x6, 0x4}, {0x3}, {0x0, 0x8}, {0x0, 0x3}, {0x6, 0x7}, {0x4, 0x8}, {0x2, 0x9}, {0x0, 0xa}, {0x6, 0x2}, {0x3, 0x3}, {0x0, 0x7}, {0x1, 0x2}, {0x6, 0x2}, {0x3, 0x5}, {0x6, 0x7}, {0x3}, {0x7, 0x7}, {0x5, 0x7}, {0x0, 0x9}, {0x1, 0x4}, {0x0, 0x1}, {0x0, 0x5}, {0x7, 0x3}, {0x4, 0x6}, {0x6, 0x2}, {0x2, 0x9}, {0x1, 0x3}, {0x1, 0x9}, {0x5, 0x8}, {0x0, 0x8}, {0x1, 0x5}, {0x6, 0x2}, {0x1, 0xa}, {}, {0x7}, {0x3, 0x4}, {0x3}]}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x1, 0x12, 0x2, 0x36, 0xb, 0x48, 0x48, 0x60, 0x6, 0xc, 0x18, 0x5, 0x0, 0x30]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HT={0x28, 0x2, [{0x6, 0x9}, {0x4, 0x5}, {0x6, 0x2}, {0x6, 0x7}, {0x7, 0x3}, {0x3}, {0x1, 0x5}, {0x1, 0xa}, {0x1, 0x9}, {0x0, 0x9}, {0x6, 0xa}, {0x0, 0x3}, {0x0, 0x9}, {0x4, 0x5}, {0x2, 0x2}, {0x6, 0x4}, {0x6, 0x8}, {0x4}, {0x1, 0x3}, {0x0, 0x3}, {0x3, 0x2}, {0x1, 0x6}, {0x7, 0x3}, {0x6, 0x2}, {0x5, 0x7}, {0x0, 0x2}, {0x3, 0x1}, {0x5, 0x5}, {0x4, 0x2}, {0x4, 0x2}, {0x2, 0x7}, {0x6, 0xa}, {0x6, 0x4}, {0x1, 0x9}, {}, {0x4, 0x8}]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0xaf60, 0x1, 0x8, 0xf, 0x0, 0x191, 0x1ff]}}]}]}, @NL80211_ATTR_TX_RATES={0x8c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x20, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8000, 0x8, 0xd88, 0xd6c, 0x400, 0xfc, 0x400, 0xf]}}]}, @NL80211_BAND_6GHZ={0x68, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2c, 0x2, [{0x1, 0x6}, {0x1, 0x2}, {0x5, 0x9}, {0x3, 0x9}, {0x7, 0x2}, {0x0, 0x5}, {0x4, 0x5}, {0x3, 0x3}, {0x7, 0x8}, {0x2, 0x6}, {0x1, 0xa}, {0x0, 0x6}, {0x2, 0xa}, {0x5, 0x1}, {0x0, 0x6}, {0x1, 0x5}, {0x1, 0x8}, {0x0, 0x2}, {0x5}, {0x6, 0x3}, {0x1, 0x9}, {0x2, 0x5}, {0x4, 0x1}, {0x7, 0x6}, {0x7, 0x3}, {0x1, 0x6}, {0x3, 0x2}, {0x3, 0x8}, {0x7}, {0x2, 0x3}, {0x6, 0x2}, {0x3, 0x1}, {0x0, 0x2}, {0x4, 0x6}, {0x5, 0x8}, {0x7}, {0x1, 0xa}, {0x1, 0x1}, {0x6, 0x7}, {0x4, 0x6}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x8, 0xa, 0x81, 0x4, 0x81, 0x4, 0x27]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xe9f1, 0xde, 0x7, 0x2, 0x8, 0x100, 0x8000, 0x400]}}]}]}]}, 0x738}, 0x1, 0x0, 0x0, 0x800}, 0x4000014)
execveat(r10, &(0x7f0000001840)='./file0\x00', &(0x7f0000001a40)={[&(0x7f0000001880)='batadv\x00', &(0x7f00000018c0)='*\x00', &(0x7f0000001900)='nl80211\x00', &(0x7f0000001940)='/--@+\\%-\xc5!(-\x8e,--,@)\x00', &(0x7f0000001980)='&\x00', &(0x7f00000019c0)='\\\xbe\\.*\x00', &(0x7f0000001a00)=')\x00']}, &(0x7f0000001b80)={[&(0x7f0000001a80)='-&\x00', &(0x7f0000001ac0)='\x00', &(0x7f0000001b00)='batadv_slave_1\x00', &(0x7f0000001b40)='\xae\x00']}, 0x100)
socket$nl_route(0x10, 0x3, 0x0)

127.490089ms ago: executing program 2 (id=1239):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd2(0x0, 0x0)

119.71344ms ago: executing program 1 (id=1240):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0, 0x2}, 0x20)

80.71574ms ago: executing program 2 (id=1241):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x1, 0x7ffc0001}]})
ioperm(0x0, 0x20, 0x3f)

71.10809ms ago: executing program 0 (id=1242):
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000f80)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd2c, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x3}, {0xffff, 0xffff}, {0xfff1, 0xfff2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8}, @TCA_FQ_QUANTUM={0x8, 0x3, 0x80000000}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80d1}, 0x3000c81c)

0s ago: executing program 4 (id=1243):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='ext4_other_inode_update_time\x00', r0}, 0x18)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000700)={{r6}, &(0x7f0000000680), &(0x7f00000006c0)='%+9llu \x00'}, 0x20)
r8 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendto$inet(r8, &(0x7f0000001040)="8932ed209b230927", 0x8, 0x60008004, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000740)=ANY=[@ANYBLOB="24010000", @ANYRES16=r1, @ANYBLOB="2b0300000ec00000000005"], 0x124}}, 0x0)

kernel console output (not intermixed with test programs):

: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   71.785466][ T5536] netlink: 'syz.4.683': attribute type 10 has an invalid length.
[   71.793702][ T5536] lo: entered promiscuous mode
[   71.803671][ T5536] loop4: detected capacity change from 0 to 256
[   71.810162][ T5536] vfat: Unknown parameter 'kfree'
[   71.810515][ T5540] loop1: detected capacity change from 0 to 512
[   71.822112][ T5536] loop4: detected capacity change from 0 to 1024
[   71.824393][ T5540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.848499][ T5536] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.860912][ T5536] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.872559][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.943832][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.973216][ T5559] loop0: detected capacity change from 0 to 512
[   71.977247][ T1110] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[   71.990686][ T1110] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   72.001983][ T5559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.015461][ T5559] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.037942][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.072748][ T5572] loop2: detected capacity change from 0 to 512
[   72.075226][ T5568] loop0: detected capacity change from 0 to 2048
[   72.086822][ T5572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.116849][ T5575] loop4: detected capacity change from 0 to 164
[   72.124281][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.133474][ T5575] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   72.163596][ T5583] loop0: detected capacity change from 0 to 512
[   72.178685][ T5583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.191207][ T5583] ext4 filesystem being mounted at /141/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.229795][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.645360][ T5589] loop0: detected capacity change from 0 to 512
[   72.652991][ T5589] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #15: comm syz.0.702: casefold flag without casefold feature
[   72.666103][ T5589] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.702: couldn't read orphan inode 15 (err -117)
[   72.678500][ T5589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.700100][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.716346][ T5592] loop0: detected capacity change from 0 to 512
[   72.729281][ T5592] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.736859][ T5596] loop1: detected capacity change from 0 to 512
[   72.742104][ T5592] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.780909][ T5604] FAULT_INJECTION: forcing a failure.
[   72.780909][ T5604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.787653][ T5596] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.794050][ T5604] CPU: 0 UID: 0 PID: 5604 Comm: syz.4.707 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   72.808480][ T5596] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.816620][ T5604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   72.816635][ T5604] Call Trace:
[   72.840432][ T5604]  <TASK>
[   72.843426][ T5604]  dump_stack_lvl+0xf2/0x150
[   72.845014][ T5606] loop3: detected capacity change from 0 to 512
[   72.848070][ T5604]  dump_stack+0x15/0x20
[   72.848089][ T5604]  should_fail_ex+0x223/0x230
[   72.863112][ T5604]  should_fail+0xb/0x10
[   72.866112][ T5606] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.867367][ T5604]  should_fail_usercopy+0x1a/0x20
[   72.884378][ T5604]  _copy_to_user+0x20/0xa0
[   72.888911][ T5604]  simple_read_from_buffer+0xa0/0x110
[   72.894274][ T5604]  proc_fail_nth_read+0xf9/0x140
[   72.899192][ T5604]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.904721][ T5604]  vfs_read+0x1a2/0x700
[   72.908879][ T5604]  ? __rcu_read_unlock+0x4e/0x70
[   72.913806][ T5604]  ? __fget_files+0x17c/0x1c0
[   72.918467][ T5604]  ksys_read+0xe8/0x1b0
[   72.922768][ T5604]  __x64_sys_read+0x42/0x50
[   72.927374][ T5604]  x64_sys_call+0x2874/0x2dc0
[   72.932052][ T5604]  do_syscall_64+0xc9/0x1c0
[   72.936539][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   72.941206][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   72.946025][ T5604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.951921][ T5604] RIP: 0033:0x7fdc6168d19c
[   72.956317][ T5604] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   72.975907][ T5604] RSP: 002b:00007fdc60301030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.984343][ T5604] RAX: ffffffffffffffda RBX: 00007fdc61845f80 RCX: 00007fdc6168d19c
[   72.992500][ T5604] RDX: 000000000000000f RSI: 00007fdc603010a0 RDI: 0000000000000004
[   73.000451][ T5604] RBP: 00007fdc60301090 R08: 0000000000000000 R09: 0000000000000000
[   73.008460][ T5604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.016410][ T5604] R13: 0000000000000000 R14: 00007fdc61845f80 R15: 00007fff85d4f118
[   73.024399][ T5604]  </TASK>
[   73.042237][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.051786][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.101723][ T1110] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[   73.109738][ T1110] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   73.134227][ T5617] loop3: detected capacity change from 0 to 2048
[   73.154697][ T5622] loop2: detected capacity change from 0 to 164
[   73.171481][ T5622] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   73.205560][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.205605][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.217066][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.229871][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.241396][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.252723][ T5630] syz.1.718[5630] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.554520][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.584358][ T5648] FAULT_INJECTION: forcing a failure.
[   73.584358][ T5648] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.597599][ T5648] CPU: 1 UID: 0 PID: 5648 Comm: syz.0.722 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   73.607881][ T5648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.617924][ T5648] Call Trace:
[   73.621193][ T5648]  <TASK>
[   73.624186][ T5648]  dump_stack_lvl+0xf2/0x150
[   73.628788][ T5648]  dump_stack+0x15/0x20
[   73.632932][ T5648]  should_fail_ex+0x223/0x230
[   73.637620][ T5648]  should_fail+0xb/0x10
[   73.641822][ T5648]  should_fail_usercopy+0x1a/0x20
[   73.646912][ T5648]  copy_to_user_nofault+0x7d/0x110
[   73.652013][ T5648]  bpf_probe_write_user+0x80/0xc0
[   73.657103][ T5648]  bpf_prog_853ff409725e1ea5+0x44/0x48
[   73.662598][ T5648]  bpf_trace_run2+0x104/0x1d0
[   73.667280][ T5648]  ? avc_audit_post_callback+0x221/0x530
[   73.672994][ T5648]  ? avc_audit_post_callback+0x221/0x530
[   73.678650][ T5648]  __traceiter_kfree+0x2b/0x50
[   73.683402][ T5648]  ? avc_audit_post_callback+0x221/0x530
[   73.689021][ T5648]  kfree+0x247/0x2f0
[   73.692962][ T5648]  avc_audit_post_callback+0x221/0x530
[   73.698468][ T5648]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   73.704569][ T5648]  common_lsm_audit+0x7cc/0xfc0
[   73.709437][ T5648]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   73.715419][ T5648]  ? avc_denied+0xf1/0x110
[   73.719884][ T5648]  slow_avc_audit+0xf9/0x140
[   73.724460][ T5648]  avc_has_perm+0x129/0x160
[   73.728963][ T5648]  selinux_socket_sendmsg+0x185/0x1c0
[   73.734511][ T5648]  security_socket_sendmsg+0x47/0x80
[   73.739801][ T5648]  __sock_sendmsg+0x2d/0x180
[   73.744405][ T5648]  ____sys_sendmsg+0x312/0x410
[   73.749184][ T5648]  __sys_sendmsg+0x19d/0x230
[   73.753768][ T5648]  __x64_sys_sendmsg+0x46/0x50
[   73.758525][ T5648]  x64_sys_call+0x2734/0x2dc0
[   73.763190][ T5648]  do_syscall_64+0xc9/0x1c0
[   73.767692][ T5648]  ? clear_bhb_loop+0x55/0xb0
[   73.772380][ T5648]  ? clear_bhb_loop+0x55/0xb0
[   73.777111][ T5648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.783057][ T5648] RIP: 0033:0x7fb93ccde759
[   73.787458][ T5648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.807167][ T5648] RSP: 002b:00007fb93b951038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.815570][ T5648] RAX: ffffffffffffffda RBX: 00007fb93ce95f80 RCX: 00007fb93ccde759
[   73.823526][ T5648] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[   73.831571][ T5648] RBP: 00007fb93b951090 R08: 0000000000000000 R09: 0000000000000000
[   73.839600][ T5648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.847592][ T5648] R13: 0000000000000000 R14: 00007fb93ce95f80 R15: 00007ffd3e4fefc8
[   73.855594][ T5648]  </TASK>
[   73.913353][    T9] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[   73.921567][    T9] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   74.086918][ T5667] loop0: detected capacity change from 0 to 1024
[   74.106694][ T5670] __nla_validate_parse: 11 callbacks suppressed
[   74.106707][ T5670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.731'.
[   74.132591][ T5667] EXT4-fs: Ignoring removed orlov option
[   74.154625][ T5672] loop3: detected capacity change from 0 to 512
[   74.162225][ T5670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.731'.
[   74.198942][ T5667] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.212780][ T5672] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.256241][ T5672] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.274086][ T5678] loop1: detected capacity change from 0 to 164
[   74.289923][ T5678] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   74.314413][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.339296][ T5680] loop0: detected capacity change from 0 to 1024
[   74.346001][ T5680] EXT4-fs: Ignoring removed nobh option
[   74.351597][ T5680] EXT4-fs: Ignoring removed orlov option
[   74.365238][ T5687] FAULT_INJECTION: forcing a failure.
[   74.365238][ T5687] name failslab, interval 1, probability 0, space 0, times 0
[   74.368504][ T5680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.377887][ T5687] CPU: 1 UID: 0 PID: 5687 Comm: syz.4.736 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   74.400104][ T5687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.410178][ T5687] Call Trace:
[   74.413459][ T5687]  <TASK>
[   74.416504][ T5687]  dump_stack_lvl+0xf2/0x150
[   74.421184][ T5687]  dump_stack+0x15/0x20
[   74.425352][ T5687]  should_fail_ex+0x223/0x230
[   74.430051][ T5687]  ? __kvmalloc_node_noprof+0x72/0x170
[   74.435535][ T5687]  should_failslab+0x8f/0xb0
[   74.440216][ T5687]  __kmalloc_node_noprof+0xa8/0x380
[   74.445469][ T5687]  __kvmalloc_node_noprof+0x72/0x170
[   74.450754][ T5687]  alloc_netdev_mqs+0x6c1/0x8e0
[   74.455632][ T5687]  slip_open+0x2cf/0x920
[   74.459906][ T5687]  ? vfree+0x31b/0x390
[   74.463969][ T5687]  ? up_write+0x30/0xf0
[   74.468133][ T5687]  ? up_write+0x30/0xf0
[   74.472290][ T5687]  tty_ldisc_open+0x65/0xb0
[   74.476793][ T5687]  tty_set_ldisc+0x205/0x3b0
[   74.481402][ T5687]  tiocsetd+0x52/0x60
[   74.485413][ T5687]  tty_ioctl+0xa94/0xbe0
[   74.489745][ T5687]  ? __pfx_tty_ioctl+0x10/0x10
[   74.494509][ T5687]  __se_sys_ioctl+0xc9/0x140
[   74.499176][ T5687]  __x64_sys_ioctl+0x43/0x50
[   74.503782][ T5687]  x64_sys_call+0x1690/0x2dc0
[   74.508522][ T5687]  do_syscall_64+0xc9/0x1c0
[   74.513044][ T5687]  ? clear_bhb_loop+0x55/0xb0
[   74.517796][ T5687]  ? clear_bhb_loop+0x55/0xb0
[   74.522586][ T5687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.528506][ T5687] RIP: 0033:0x7fdc6168e759
[   74.532933][ T5687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.552534][ T5687] RSP: 002b:00007fdc60301038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.560937][ T5687] RAX: ffffffffffffffda RBX: 00007fdc61845f80 RCX: 00007fdc6168e759
[   74.569096][ T5687] RDX: 00000000200000c0 RSI: 0000000000005423 RDI: 0000000000000003
[   74.577057][ T5687] RBP: 00007fdc60301090 R08: 0000000000000000 R09: 0000000000000000
[   74.585074][ T5687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.593082][ T5687] R13: 0000000000000000 R14: 00007fdc61845f80 R15: 00007fff85d4f118
[   74.601052][ T5687]  </TASK>
[   74.614937][ T5680] netlink: 128 bytes leftover after parsing attributes in process `syz.0.734'.
[   74.635799][    T9] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[   74.643816][    T9] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   74.674653][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.750420][ T5712] loop2: detected capacity change from 0 to 128
[   74.751434][ T5713] loop0: detected capacity change from 0 to 512
[   74.768636][ T5713] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.781224][ T5713] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.784566][ T5712] syz.2.745: attempt to access beyond end of device
[   74.784566][ T5712] loop2: rw=34817, sector=97, nr_sectors = 32 limit=128
[   74.805672][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.900865][ T5726] loop0: detected capacity change from 0 to 512
[   74.919402][    T9] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[   74.927583][    T9] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   74.948600][ T5726] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   74.956814][ T5726] System zones: 0-2, 18-18, 34-34
[   74.962561][ T5726] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.749: bg 0: block 248: padding at end of block bitmap is not set
[   74.978157][ T5726] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.749: Failed to acquire dquot type 1
[   74.991646][ T5726] EXT4-fs (loop0): 1 truncate cleaned up
[   74.998278][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.007680][ T5726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.020738][ T5726] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.032409][   T29] kauditd_printk_skb: 705 callbacks suppressed
[   75.032500][   T29] audit: type=1400 audit(1732053063.738:11702): avc:  denied  { read write } for  pid=3316 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   75.042645][ T5726] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.749: deleted inode referenced: 12
[   75.063330][   T29] audit: type=1400 audit(1732053063.748:11703): avc:  denied  { open } for  pid=5721 comm="syz.0.749" path="/dev/loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   75.098281][   T29] audit: type=1400 audit(1732053063.748:11704): avc:  denied  { prog_load } for  pid=5721 comm="syz.0.749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   75.117527][   T29] audit: type=1400 audit(1732053063.748:11705): avc:  denied  { bpf } for  pid=5721 comm="syz.0.749" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   75.123230][ T5742] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.749: deleted inode referenced: 12
[   75.138235][   T29] audit: type=1400 audit(1732053063.748:11706): avc:  denied  { perfmon } for  pid=5721 comm="syz.0.749" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   75.168468][ T5746] loop1: detected capacity change from 0 to 512
[   75.170560][   T29] audit: type=1400 audit(1732053063.748:11707): avc:  denied  { write } for  pid=5721 comm="syz.0.749" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   75.190343][ T5746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.198625][   T29] audit: type=1400 audit(1732053063.748:11708): avc:  denied  { add_name } for  pid=5721 comm="syz.0.749" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   75.231395][   T29] audit: type=1400 audit(1732053063.748:11709): avc:  denied  { create } for  pid=5721 comm="syz.0.749" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   75.252200][   T29] audit: type=1400 audit(1732053063.788:11710): avc:  denied  { ioctl } for  pid=3316 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   75.278106][   T29] audit: type=1400 audit(1732053063.878:11711): avc:  denied  { mounton } for  pid=5745 comm="syz.1.754" path="/143/file0" dev="tmpfs" ino=789 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   75.302077][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.353389][ T5754] loop1: detected capacity change from 0 to 512
[   75.439036][ T5754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.452463][ T5754] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.497681][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.671260][ T5771] loop4: detected capacity change from 0 to 164
[   75.678927][ T5771] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   75.698256][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.719638][ T5776] loop0: detected capacity change from 0 to 512
[   75.738898][ T5776] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.762719][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.892673][ T5805] veth0_macvtap: left promiscuous mode
[   75.994210][ T5817] loop0: detected capacity change from 0 to 512
[   76.007837][ T5817] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   76.015893][ T5817] System zones: 0-2, 18-18, 34-34
[   76.021497][ T5817] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.776: bg 0: block 248: padding at end of block bitmap is not set
[   76.036003][ T5817] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.776: Failed to acquire dquot type 1
[   76.048157][ T5817] EXT4-fs (loop0): 1 truncate cleaned up
[   76.054031][ T5817] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.066898][ T5817] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.079257][ T5817] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.776: deleted inode referenced: 12
[   76.091256][ T5817] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.776: deleted inode referenced: 12
[   76.406531][ T5840] loop2: detected capacity change from 0 to 512
[   76.417845][ T5840] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   76.425915][ T5840] System zones: 0-2, 18-18, 34-34
[   76.432203][ T5840] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.783: bg 0: block 248: padding at end of block bitmap is not set
[   76.446731][ T5840] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.783: Failed to acquire dquot type 1
[   76.458386][ T5840] EXT4-fs (loop2): 1 truncate cleaned up
[   76.464342][ T5840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.476961][ T5840] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.491184][ T5840] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.783: deleted inode referenced: 12
[   76.503172][ T5840] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.783: deleted inode referenced: 12
[   76.678026][ T5856] loop1: detected capacity change from 0 to 1024
[   76.684712][ T5856] EXT4-fs: Ignoring removed orlov option
[   76.690431][ T5856] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.708259][ T5856] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.727673][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.746550][ T5860] loop1: detected capacity change from 0 to 1024
[   76.753265][ T5860] EXT4-fs: Ignoring removed orlov option
[   76.758962][ T5860] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.768312][ T5860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.790729][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.869533][ T5880] loop1: detected capacity change from 0 to 128
[   76.895328][ T5880] syz.1.799: attempt to access beyond end of device
[   76.895328][ T5880] loop1: rw=34817, sector=97, nr_sectors = 32 limit=128
[   76.904411][ T5886] loop3: detected capacity change from 0 to 1024
[   76.915798][ T5886] EXT4-fs: Ignoring removed orlov option
[   76.921490][ T5886] EXT4-fs: Ignoring removed nomblk_io_submit option
[   77.016412][ T5898] loop3: detected capacity change from 0 to 512
[   77.028078][ T5898] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   77.036365][ T5898] System zones: 0-2, 18-18, 34-34
[   77.041942][ T5898] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.803: bg 0: block 248: padding at end of block bitmap is not set
[   77.056452][ T5898] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.803: Failed to acquire dquot type 1
[   77.068182][ T5898] EXT4-fs (loop3): 1 truncate cleaned up
[   77.074524][ T5898] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.087395][ T5898] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.803: deleted inode referenced: 12
[   77.100266][ T5898] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.803: deleted inode referenced: 12
[   77.136376][ T5903] netlink: 12 bytes leftover after parsing attributes in process `syz.4.805'.
[   77.206521][ T5914] FAULT_INJECTION: forcing a failure.
[   77.206521][ T5914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.219764][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz.2.807 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   77.230087][ T5914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.240129][ T5914] Call Trace:
[   77.243391][ T5914]  <TASK>
[   77.246313][ T5914]  dump_stack_lvl+0xf2/0x150
[   77.250888][ T5914]  dump_stack+0x15/0x20
[   77.255028][ T5914]  should_fail_ex+0x223/0x230
[   77.259710][ T5914]  should_fail+0xb/0x10
[   77.263857][ T5914]  should_fail_usercopy+0x1a/0x20
[   77.268871][ T5914]  _copy_from_iter+0xd5/0xd00
[   77.273608][ T5914]  ? kmalloc_reserve+0x16e/0x190
[   77.278540][ T5914]  ? __build_skb_around+0x196/0x1f0
[   77.283791][ T5914]  ? __alloc_skb+0x21f/0x310
[   77.288401][ T5914]  ? __virt_addr_valid+0x1ed/0x250
[   77.293501][ T5914]  ? __check_object_size+0x364/0x520
[   77.298824][ T5914]  netlink_sendmsg+0x460/0x6e0
[   77.303633][ T5914]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.308915][ T5914]  __sock_sendmsg+0x140/0x180
[   77.313627][ T5914]  ____sys_sendmsg+0x312/0x410
[   77.318441][ T5914]  __sys_sendmsg+0x19d/0x230
[   77.323023][ T5914]  __x64_sys_sendmsg+0x46/0x50
[   77.327848][ T5914]  x64_sys_call+0x2734/0x2dc0
[   77.332509][ T5914]  do_syscall_64+0xc9/0x1c0
[   77.336999][ T5914]  ? clear_bhb_loop+0x55/0xb0
[   77.341748][ T5914]  ? clear_bhb_loop+0x55/0xb0
[   77.346423][ T5914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.352379][ T5914] RIP: 0033:0x7f903086e759
[   77.356904][ T5914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.376499][ T5914] RSP: 002b:00007f902f4e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.384934][ T5914] RAX: ffffffffffffffda RBX: 00007f9030a25f80 RCX: 00007f903086e759
[   77.392902][ T5914] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[   77.400873][ T5914] RBP: 00007f902f4e7090 R08: 0000000000000000 R09: 0000000000000000
[   77.408829][ T5914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.416784][ T5914] R13: 0000000000000000 R14: 00007f9030a25f80 R15: 00007ffef7c197c8
[   77.424830][ T5914]  </TASK>
[   77.452777][ T5919] veth0_macvtap: left promiscuous mode
[   77.515549][ T5925] loop2: detected capacity change from 0 to 512
[   77.522453][ T5925] EXT4-fs: Ignoring removed oldalloc option
[   77.530105][ T5925] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.812: Parent and EA inode have the same ino 15
[   77.543023][ T5925] EXT4-fs (loop2): Remounting filesystem read-only
[   77.549746][ T5925] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -5)
[   77.558849][ T5925] EXT4-fs (loop2): 1 orphan inode deleted
[   77.565012][ T5925] SELinux: (dev loop2, type ext4) getxattr errno 5
[   77.589275][ T5928] loop2: detected capacity change from 0 to 1024
[   77.595968][ T5928] EXT4-fs: Ignoring removed orlov option
[   77.601739][ T5928] EXT4-fs: Ignoring removed nomblk_io_submit option
[   77.829776][ T5944] FAULT_INJECTION: forcing a failure.
[   77.829776][ T5944] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.843042][ T5944] CPU: 0 UID: 0 PID: 5944 Comm: syz.1.820 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   77.853279][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.863334][ T5944] Call Trace:
[   77.866608][ T5944]  <TASK>
[   77.869531][ T5944]  dump_stack_lvl+0xf2/0x150
[   77.874147][ T5944]  dump_stack+0x15/0x20
[   77.878319][ T5944]  should_fail_ex+0x223/0x230
[   77.883012][ T5944]  should_fail+0xb/0x10
[   77.887213][ T5944]  should_fail_usercopy+0x1a/0x20
[   77.892234][ T5944]  _copy_from_iter+0xd5/0xd00
[   77.896987][ T5944]  ? kmalloc_reserve+0x16e/0x190
[   77.901924][ T5944]  ? __build_skb_around+0x196/0x1f0
[   77.907164][ T5944]  ? __alloc_skb+0x21f/0x310
[   77.911758][ T5944]  ? __virt_addr_valid+0x1ed/0x250
[   77.916867][ T5944]  ? __check_object_size+0x364/0x520
[   77.922153][ T5944]  netlink_sendmsg+0x460/0x6e0
[   77.926959][ T5944]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.932245][ T5944]  __sock_sendmsg+0x140/0x180
[   77.936935][ T5944]  ____sys_sendmsg+0x312/0x410
[   77.941804][ T5944]  __sys_sendmsg+0x19d/0x230
[   77.946398][ T5944]  __x64_sys_sendmsg+0x46/0x50
[   77.951165][ T5944]  x64_sys_call+0x2734/0x2dc0
[   77.955836][ T5944]  do_syscall_64+0xc9/0x1c0
[   77.960325][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   77.965070][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   77.969801][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.975761][ T5944] RIP: 0033:0x7f91c5fde759
[   77.980212][ T5944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.999850][ T5944] RSP: 002b:00007f91c4c57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.008251][ T5944] RAX: ffffffffffffffda RBX: 00007f91c6195f80 RCX: 00007f91c5fde759
[   78.016211][ T5944] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[   78.024242][ T5944] RBP: 00007f91c4c57090 R08: 0000000000000000 R09: 0000000000000000
[   78.032200][ T5944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.040194][ T5944] R13: 0000000000000000 R14: 00007f91c6195f80 R15: 00007ffe016f53a8
[   78.048157][ T5944]  </TASK>
[   78.755844][ T5951] bridge0: port 3(vlan2) entered blocking state
[   78.762244][ T5951] bridge0: port 3(vlan2) entered disabled state
[   78.780816][ T5951] vlan2: entered allmulticast mode
[   78.793781][ T5951] vlan2: left allmulticast mode
[   78.830222][ T5955] loop1: detected capacity change from 0 to 512
[   78.870262][ T5955] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.905191][ T5964] loop1: detected capacity change from 0 to 512
[   79.009677][ T5977] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   79.023058][ T5976] IPVS: stopping master sync thread 5977 ...
[   79.028997][ T5973] loop1: detected capacity change from 0 to 2048
[   79.048209][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.048255][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.059563][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.071480][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.082970][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.083864][ T5973]  loop1: p1 < > p4
[   79.094426][ T5980] syz.2.831[5980] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.106530][ T5973] loop1: p4 size 8388608 extends beyond EOD, truncated
[   79.142133][ T5982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.832'.
[   79.236474][ T5988] loop4: detected capacity change from 0 to 512
[   79.257757][ T5988] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.282929][ T5998] loop2: detected capacity change from 0 to 512
[   79.408969][ T6020] loop2: detected capacity change from 0 to 512
[   79.416553][ T6020] EXT4-fs (loop2): failed to initialize system zone (-117)
[   79.423942][ T6020] EXT4-fs (loop2): mount failed
[   79.435941][ T6020] loop2: detected capacity change from 0 to 1024
[   79.442475][ T6020] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.505180][ T6028] loop2: detected capacity change from 0 to 512
[   79.518746][ T6028] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.667414][ T6051] loop2: detected capacity change from 0 to 512
[   79.677878][ T6051] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   79.685947][ T6051] System zones: 0-2, 18-18, 34-34
[   79.693018][ T6051] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.858: bg 0: block 248: padding at end of block bitmap is not set
[   79.708148][ T6051] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.858: Failed to acquire dquot type 1
[   79.720167][ T6051] EXT4-fs (loop2): 1 truncate cleaned up
[   79.726199][ T6051] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.738737][ T6051] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.858: deleted inode referenced: 12
[   79.751061][ T6051] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.858: deleted inode referenced: 12
[   79.774640][ T6062] loop3: detected capacity change from 0 to 512
[   79.788960][ T6062] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.802465][ T6068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.864'.
[   79.811433][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.0.864'.
[   79.836880][ T6071] loop3: detected capacity change from 0 to 1024
[   79.843685][ T6073] FAULT_INJECTION: forcing a failure.
[   79.843685][ T6073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.844416][ T6071] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.856892][ T6073] CPU: 0 UID: 0 PID: 6073 Comm: syz.0.866 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   79.873476][ T6073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.883569][ T6073] Call Trace:
[   79.886829][ T6073]  <TASK>
[   79.889744][ T6073]  dump_stack_lvl+0xf2/0x150
[   79.894319][ T6073]  dump_stack+0x15/0x20
[   79.898504][ T6073]  should_fail_ex+0x223/0x230
[   79.903170][ T6073]  should_fail+0xb/0x10
[   79.907345][ T6073]  should_fail_usercopy+0x1a/0x20
[   79.912380][ T6073]  _copy_from_user+0x1e/0xb0
[   79.917042][ T6073]  copy_msghdr_from_user+0x54/0x2a0
[   79.922358][ T6073]  ? __fget_files+0x17c/0x1c0
[   79.927023][ T6073]  __sys_sendmsg+0x13e/0x230
[   79.931710][ T6073]  __x64_sys_sendmsg+0x46/0x50
[   79.936460][ T6073]  x64_sys_call+0x2734/0x2dc0
[   79.941200][ T6073]  do_syscall_64+0xc9/0x1c0
[   79.945734][ T6073]  ? clear_bhb_loop+0x55/0xb0
[   79.950412][ T6073]  ? clear_bhb_loop+0x55/0xb0
[   79.955137][ T6073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.961095][ T6073] RIP: 0033:0x7fb93ccde759
[   79.965552][ T6073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.985145][ T6073] RSP: 002b:00007fb93b951038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.993539][ T6073] RAX: ffffffffffffffda RBX: 00007fb93ce95f80 RCX: 00007fb93ccde759
[   80.001513][ T6073] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000006
[   80.009467][ T6073] RBP: 00007fb93b951090 R08: 0000000000000000 R09: 0000000000000000
[   80.017427][ T6073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.025385][ T6073] R13: 0000000000000000 R14: 00007fb93ce95f80 R15: 00007ffd3e4fefc8
[   80.033418][ T6073]  </TASK>
[   80.036532][ T6071] hsr_slave_0: left promiscuous mode
[   80.044447][ T6071] hsr_slave_1: left promiscuous mode
[   80.063793][ T6077] netlink: 8 bytes leftover after parsing attributes in process `syz.0.867'.
[   80.072633][ T6077] netlink: 4 bytes leftover after parsing attributes in process `syz.0.867'.
[   80.112955][   T29] kauditd_printk_skb: 817 callbacks suppressed
[   80.112969][   T29] audit: type=1326 audit(1732053068.818:12521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.143022][   T29] audit: type=1326 audit(1732053068.818:12522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.166506][   T29] audit: type=1326 audit(1732053068.818:12523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.189923][   T29] audit: type=1326 audit(1732053068.818:12524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.209698][ T6085] loop1: detected capacity change from 0 to 1024
[   80.213396][   T29] audit: type=1326 audit(1732053068.818:12525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.220892][ T6085] EXT4-fs: Ignoring removed orlov option
[   80.243365][   T29] audit: type=1326 audit(1732053068.818:12526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.248864][ T6085] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.279224][   T29] audit: type=1326 audit(1732053068.818:12527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.302446][   T29] audit: type=1326 audit(1732053068.818:12528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.306718][ T6089] loop4: detected capacity change from 0 to 512
[   80.326059][   T29] audit: type=1326 audit(1732053068.818:12529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6081 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fb93ccde759 code=0x7ffc0000
[   80.355879][   T29] audit: type=1326 audit(1732053068.828:12530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.0.869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb93cd10845 code=0x7ffc0000
[   80.364973][ T6089] EXT4-fs (loop4): failed to initialize system zone (-117)
[   80.386621][ T6089] EXT4-fs (loop4): mount failed
[   80.417462][ T6098] loop3: detected capacity change from 0 to 512
[   80.439248][ T6098] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.455619][ T6104] loop4: detected capacity change from 0 to 1024
[   80.462972][ T6104] EXT4-fs: Ignoring removed mblk_io_submit option
[   80.482509][ T6109] loop1: detected capacity change from 0 to 512
[   80.520465][ T6109] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   80.528940][ T6109] System zones: 0-2, 18-18, 34-34
[   80.536533][ T6109] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.874: bg 0: block 248: padding at end of block bitmap is not set
[   80.552219][ T6109] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.874: Failed to acquire dquot type 1
[   80.552833][ T6119] FAULT_INJECTION: forcing a failure.
[   80.552833][ T6119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.576905][ T6119] CPU: 0 UID: 0 PID: 6119 Comm: syz.3.880 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   80.578288][ T6109] EXT4-fs (loop1): 1 truncate cleaned up
[   80.587202][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.587217][ T6119] Call Trace:
[   80.587223][ T6119]  <TASK>
[   80.593886][ T6109] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.602927][ T6119]  dump_stack_lvl+0xf2/0x150
[   80.610501][ T6109] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.874: deleted inode referenced: 12
[   80.619557][ T6119]  dump_stack+0x15/0x20
[   80.619578][ T6119]  should_fail_ex+0x223/0x230
[   80.619604][ T6119]  should_fail+0xb/0x10
[   80.619625][ T6119]  should_fail_usercopy+0x1a/0x20
[   80.627525][ T6109] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz.1.874: deleted inode referenced: 12
[   80.635358][ T6119]  _copy_from_user+0x1e/0xb0
[   80.669170][ T6119]  copy_msghdr_from_user+0x54/0x2a0
[   80.674409][ T6119]  ? __fget_files+0x17c/0x1c0
[   80.679084][ T6119]  __sys_sendmsg+0x13e/0x230
[   80.683681][ T6119]  __x64_sys_sendmsg+0x46/0x50
[   80.688485][ T6119]  x64_sys_call+0x2734/0x2dc0
[   80.693166][ T6119]  do_syscall_64+0xc9/0x1c0
[   80.697660][ T6119]  ? clear_bhb_loop+0x55/0xb0
[   80.702388][ T6119]  ? clear_bhb_loop+0x55/0xb0
[   80.707062][ T6119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.712948][ T6119] RIP: 0033:0x7fde9032e759
[   80.717349][ T6119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.736943][ T6119] RSP: 002b:00007fde8efa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.745348][ T6119] RAX: ffffffffffffffda RBX: 00007fde904e5f80 RCX: 00007fde9032e759
[   80.753383][ T6119] RDX: 0000000000000080 RSI: 0000000020000500 RDI: 0000000000000003
[   80.761346][ T6119] RBP: 00007fde8efa1090 R08: 0000000000000000 R09: 0000000000000000
[   80.769306][ T6119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.777266][ T6119] R13: 0000000000000000 R14: 00007fde904e5f80 R15: 00007ffe303b2bf8
[   80.785297][ T6119]  </TASK>
[   80.863900][ T6133] loop2: detected capacity change from 0 to 512
[   80.878177][ T6133] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.927449][ T6136] netlink: 4 bytes leftover after parsing attributes in process `syz.3.882'.
[   80.960512][ T6151] loop0: detected capacity change from 0 to 128
[   80.981720][ T6151] syz.0.889: attempt to access beyond end of device
[   80.981720][ T6151] loop0: rw=34817, sector=97, nr_sectors = 32 limit=128
[   80.999137][ T6153] loop2: detected capacity change from 0 to 512
[   81.008683][ T6153] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   81.016741][ T6153] System zones: 0-2, 18-18, 34-34
[   81.022560][ T6153] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.888: bg 0: block 248: padding at end of block bitmap is not set
[   81.037132][ T6153] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.888: Failed to acquire dquot type 1
[   81.049102][ T6153] EXT4-fs (loop2): 1 truncate cleaned up
[   81.055216][ T6153] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.067503][ T6153] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.888: deleted inode referenced: 12
[   81.080965][ T6153] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.888: deleted inode referenced: 12
[   81.104311][ T6157] FAULT_INJECTION: forcing a failure.
[   81.104311][ T6157] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.117526][ T6157] CPU: 1 UID: 0 PID: 6157 Comm: syz.0.890 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   81.127765][ T6157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   81.137866][ T6157] Call Trace:
[   81.137873][ T6157]  <TASK>
[   81.144080][ T6157]  dump_stack_lvl+0xf2/0x150
[   81.148702][ T6157]  dump_stack+0x15/0x20
[   81.152857][ T6157]  should_fail_ex+0x223/0x230
[   81.157559][ T6157]  should_fail+0xb/0x10
[   81.161712][ T6157]  should_fail_usercopy+0x1a/0x20
[   81.166723][ T6157]  _copy_from_user+0x1e/0xb0
[   81.171308][ T6157]  copy_msghdr_from_user+0x54/0x2a0
[   81.176535][ T6157]  ? __fget_files+0x17c/0x1c0
[   81.181194][ T6157]  __sys_sendmsg+0x13e/0x230
[   81.185774][ T6157]  __x64_sys_sendmsg+0x46/0x50
[   81.190581][ T6157]  x64_sys_call+0x2734/0x2dc0
[   81.195321][ T6157]  do_syscall_64+0xc9/0x1c0
[   81.199818][ T6157]  ? clear_bhb_loop+0x55/0xb0
[   81.204626][ T6157]  ? clear_bhb_loop+0x55/0xb0
[   81.209337][ T6157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.215219][ T6157] RIP: 0033:0x7fb93ccde759
[   81.219615][ T6157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.239269][ T6157] RSP: 002b:00007fb93b951038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.247698][ T6157] RAX: ffffffffffffffda RBX: 00007fb93ce95f80 RCX: 00007fb93ccde759
[   81.255727][ T6157] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000006
[   81.263722][ T6157] RBP: 00007fb93b951090 R08: 0000000000000000 R09: 0000000000000000
[   81.271751][ T6157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.279709][ T6157] R13: 0000000000000000 R14: 00007fb93ce95f80 R15: 00007ffd3e4fefc8
[   81.287718][ T6157]  </TASK>
[   81.346668][ T6169] loop1: detected capacity change from 0 to 1024
[   81.351071][ T6163] loop0: detected capacity change from 0 to 512
[   81.355935][ T6169] EXT4-fs: Ignoring removed orlov option
[   81.365042][ T6169] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.382463][ T6163] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.390641][ T6177] loop4: detected capacity change from 0 to 512
[   81.396813][ T6163] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 3: comm syz.0.893: lblock 8 mapped to illegal pblock 3 (length 26)
[   81.407370][ T6177] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.432940][ T6177] EXT4-fs (loop4): 1 truncate cleaned up
[   81.450957][ T6182] tipc: Started in network mode
[   81.455848][ T6182] tipc: Node identity 8e1070743204, cluster identity 4711
[   81.463037][ T6182] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   81.471651][ T6182] netlink: 20 bytes leftover after parsing attributes in process `syz.0.900'.
[   81.487727][ T6180] tipc: Disabling bearer <eth:syzkaller0>
[   81.493670][ T6177] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.898: corrupted in-inode xattr: overlapping e_value 
[   81.509638][ T6177] EXT4-fs (loop4): Remounting filesystem read-only
[   81.516161][ T6177] EXT4-fs warning (device loop4): ext4_xattr_set_entry:1772: inode #15: comm syz.4.898: unable to update i_inline_off
[   81.537689][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.546567][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.556390][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.568150][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.577033][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.579991][ T6186] loop0: detected capacity change from 0 to 512
[   81.591308][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.600942][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.604836][ T6186] EXT4-fs (loop0): failed to initialize system zone (-117)
[   81.609834][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.617708][ T6186] EXT4-fs (loop0): mount failed
[   81.625759][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.647714][ T6177] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   81.650933][ T6186] loop0: detected capacity change from 0 to 1024
[   81.663456][ T6186] EXT4-fs: Ignoring removed mblk_io_submit option
[   81.744265][    T9] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[   81.756217][    T9] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   81.916090][ T6213] loop4: detected capacity change from 0 to 512
[   81.948271][ T6213] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.955954][ T6220] loop2: detected capacity change from 0 to 1024
[   82.131684][   T35] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[   82.149634][   T35] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   82.264148][ T6246] FAULT_INJECTION: forcing a failure.
[   82.264148][ T6246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.277238][ T6246] CPU: 1 UID: 0 PID: 6246 Comm: syz.4.923 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   82.287559][ T6246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   82.297629][ T6246] Call Trace:
[   82.300898][ T6246]  <TASK>
[   82.303819][ T6246]  dump_stack_lvl+0xf2/0x150
[   82.308401][ T6246]  dump_stack+0x15/0x20
[   82.312592][ T6246]  should_fail_ex+0x223/0x230
[   82.317274][ T6246]  should_fail+0xb/0x10
[   82.321438][ T6246]  should_fail_usercopy+0x1a/0x20
[   82.326466][ T6246]  _copy_from_user+0x1e/0xb0
[   82.331091][ T6246]  copy_msghdr_from_user+0x54/0x2a0
[   82.336279][ T6246]  ? __fget_files+0x17c/0x1c0
[   82.340986][ T6246]  __sys_sendmsg+0x13e/0x230
[   82.345578][ T6246]  __x64_sys_sendmsg+0x46/0x50
[   82.350416][ T6246]  x64_sys_call+0x2734/0x2dc0
[   82.355100][ T6246]  do_syscall_64+0xc9/0x1c0
[   82.359597][ T6246]  ? clear_bhb_loop+0x55/0xb0
[   82.364278][ T6246]  ? clear_bhb_loop+0x55/0xb0
[   82.369048][ T6246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.374959][ T6246] RIP: 0033:0x7fdc6168e759
[   82.379372][ T6246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.398998][ T6246] RSP: 002b:00007fdc60301038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.407478][ T6246] RAX: ffffffffffffffda RBX: 00007fdc61845f80 RCX: 00007fdc6168e759
[   82.415481][ T6246] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 000000000000000c
[   82.423442][ T6246] RBP: 00007fdc60301090 R08: 0000000000000000 R09: 0000000000000000
[   82.431481][ T6246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.439442][ T6246] R13: 0000000000000000 R14: 00007fdc61845f80 R15: 00007fff85d4f118
[   82.447488][ T6246]  </TASK>
[   82.459388][ T6242] ipvlan2: entered promiscuous mode
[   82.472965][ T6242] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   82.484552][ T6250] syz.4.926[6250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.484685][ T6250] syz.4.926[6250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.497794][ T6242] team0: Device ipvlan2 is already an upper device of the team interface
[   82.531495][ T6248] loop2: detected capacity change from 0 to 256
[   82.538649][ T6250] syz.4.926[6250] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.539199][ T6248] vfat: Unknown parameter 'u'
[   82.556731][ T6254] loop1: detected capacity change from 0 to 512
[   82.600770][ T6254] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.660809][   T35] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[   82.675954][   T35] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   82.695733][ T6280] FAULT_INJECTION: forcing a failure.
[   82.695733][ T6280] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.708895][ T6280] CPU: 1 UID: 0 PID: 6280 Comm: syz.1.938 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   82.719234][ T6280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   82.729331][ T6280] Call Trace:
[   82.732597][ T6280]  <TASK>
[   82.735561][ T6280]  dump_stack_lvl+0xf2/0x150
[   82.740145][ T6280]  dump_stack+0x15/0x20
[   82.744289][ T6280]  should_fail_ex+0x223/0x230
[   82.749070][ T6280]  should_fail+0xb/0x10
[   82.753245][ T6280]  should_fail_usercopy+0x1a/0x20
[   82.758304][ T6280]  _copy_from_user+0x1e/0xb0
[   82.762934][ T6280]  uhid_char_write+0x19e/0x5b0
[   82.767694][ T6280]  ? __pfx_uhid_char_write+0x10/0x10
[   82.772982][ T6280]  vfs_write+0x281/0x920
[   82.777251][ T6280]  ? putname+0xcf/0xf0
[   82.781389][ T6280]  ? __fget_files+0x17c/0x1c0
[   82.786061][ T6280]  ksys_write+0xe8/0x1b0
[   82.790351][ T6280]  __x64_sys_write+0x42/0x50
[   82.794928][ T6280]  x64_sys_call+0x287e/0x2dc0
[   82.799669][ T6280]  do_syscall_64+0xc9/0x1c0
[   82.804161][ T6280]  ? clear_bhb_loop+0x55/0xb0
[   82.808846][ T6280]  ? clear_bhb_loop+0x55/0xb0
[   82.813526][ T6280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.819418][ T6280] RIP: 0033:0x7f91c5fde759
[   82.823821][ T6280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.843423][ T6280] RSP: 002b:00007f91c4c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.851911][ T6280] RAX: ffffffffffffffda RBX: 00007f91c6195f80 RCX: 00007f91c5fde759
[   82.859931][ T6280] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000003
[   82.867891][ T6280] RBP: 00007f91c4c57090 R08: 0000000000000000 R09: 0000000000000000
[   82.875917][ T6280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.883915][ T6280] R13: 0000000000000000 R14: 00007f91c6195f80 R15: 00007ffe016f53a8
[   82.891887][ T6280]  </TASK>
[   82.913915][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.916188][ T6285] loop0: detected capacity change from 0 to 1024
[   82.921520][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.935308][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.945571][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.953011][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.960506][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.967914][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.975312][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.982734][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.990143][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   82.997560][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.005009][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.012412][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.019929][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.027346][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.034875][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.042280][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.049688][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.057090][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.064597][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.072071][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.079508][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.086888][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.094333][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.101892][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.109317][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.116742][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.124158][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.131567][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.138979][   T35] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[   83.147010][   T35] hid-generic 0000:0000:0000.0017: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   83.173938][ T6285] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.254304][ T6299] FAULT_INJECTION: forcing a failure.
[   83.254304][ T6299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.267458][ T6299] CPU: 1 UID: 0 PID: 6299 Comm: syz.0.946 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   83.277783][ T6299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.287848][ T6299] Call Trace:
[   83.291127][ T6299]  <TASK>
[   83.294086][ T6299]  dump_stack_lvl+0xf2/0x150
[   83.298685][ T6299]  dump_stack+0x15/0x20
[   83.302841][ T6299]  should_fail_ex+0x223/0x230
[   83.307519][ T6299]  should_fail+0xb/0x10
[   83.311759][ T6299]  should_fail_usercopy+0x1a/0x20
[   83.316813][ T6299]  _copy_from_user+0x1e/0xb0
[   83.321418][ T6299]  __sys_bpf+0x14e/0x7a0
[   83.325668][ T6299]  __x64_sys_bpf+0x43/0x50
[   83.330127][ T6299]  x64_sys_call+0x2914/0x2dc0
[   83.334870][ T6299]  do_syscall_64+0xc9/0x1c0
[   83.339372][ T6299]  ? clear_bhb_loop+0x55/0xb0
[   83.344060][ T6299]  ? clear_bhb_loop+0x55/0xb0
[   83.348744][ T6299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.354645][ T6299] RIP: 0033:0x7fb93ccde759
[   83.359124][ T6299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.378799][ T6299] RSP: 002b:00007fb93b951038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.387212][ T6299] RAX: ffffffffffffffda RBX: 00007fb93ce95f80 RCX: 00007fb93ccde759
[   83.395197][ T6299] RDX: 0000000000000040 RSI: 00000000200012c0 RDI: 000000000000001c
[   83.403177][ T6299] RBP: 00007fb93b951090 R08: 0000000000000000 R09: 0000000000000000
[   83.411152][ T6299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.419126][ T6299] R13: 0000000000000000 R14: 00007fb93ce95f80 R15: 00007ffd3e4fefc8
[   83.427108][ T6299]  </TASK>
[   83.483653][ T6311] FAULT_INJECTION: forcing a failure.
[   83.483653][ T6311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.496849][ T6311] CPU: 1 UID: 0 PID: 6311 Comm: syz.1.951 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   83.507230][ T6311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.517361][ T6311] Call Trace:
[   83.520662][ T6311]  <TASK>
[   83.523598][ T6311]  dump_stack_lvl+0xf2/0x150
[   83.528261][ T6311]  dump_stack+0x15/0x20
[   83.532416][ T6311]  should_fail_ex+0x223/0x230
[   83.537106][ T6311]  should_fail+0xb/0x10
[   83.541391][ T6311]  should_fail_usercopy+0x1a/0x20
[   83.542591][ T6314] Unknown options in mask 5
[   83.546488][ T6311]  _copy_from_user+0x1e/0xb0
[   83.555608][ T6311]  __sys_bpf+0x14e/0x7a0
[   83.559863][ T6311]  __x64_sys_bpf+0x43/0x50
[   83.564354][ T6311]  x64_sys_call+0x2914/0x2dc0
[   83.569041][ T6311]  do_syscall_64+0xc9/0x1c0
[   83.573549][ T6311]  ? clear_bhb_loop+0x55/0xb0
[   83.578271][ T6311]  ? clear_bhb_loop+0x55/0xb0
[   83.582971][ T6311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.588908][ T6311] RIP: 0033:0x7f91c5fde759
[   83.593381][ T6311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.612993][ T6311] RSP: 002b:00007f91c4c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.621487][ T6311] RAX: ffffffffffffffda RBX: 00007f91c6195f80 RCX: 00007f91c5fde759
[   83.629450][ T6311] RDX: 0000000000000040 RSI: 00000000200012c0 RDI: 000000000000001c
[   83.637438][ T6311] RBP: 00007f91c4c57090 R08: 0000000000000000 R09: 0000000000000000
[   83.645758][ T6311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.653752][ T6311] R13: 0000000000000000 R14: 00007f91c6195f80 R15: 00007ffe016f53a8
[   83.661754][ T6311]  </TASK>
[   83.693728][ T6321] loop1: detected capacity change from 0 to 512
[   83.734940][ T6325] loop4: detected capacity change from 0 to 512
[   83.744627][ T6325] EXT4-fs: Ignoring removed oldalloc option
[   83.751580][ T6325] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.764151][ T6324] loop0: detected capacity change from 0 to 512
[   83.771978][ T6324] EXT4-fs: Ignoring removed oldalloc option
[   83.779025][ T6324] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.789390][ T6325] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.818442][ T6321] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.841155][ T6335] loop4: detected capacity change from 0 to 512
[   83.847886][ T6335] EXT4-fs: Ignoring removed i_version option
[   83.853934][ T6335] EXT4-fs: Ignoring removed nobh option
[   83.860602][ T6335] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   83.872234][ T6324] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.884180][ T6324] FAULT_INJECTION: forcing a failure.
[   83.884180][ T6324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.884562][ T6335] EXT4-fs (loop4): 1 truncate cleaned up
[   83.897329][ T6324] CPU: 0 UID: 0 PID: 6324 Comm: syz.0.957 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   83.913172][ T6324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.923285][ T6324] Call Trace:
[   83.926553][ T6324]  <TASK>
[   83.929476][ T6324]  dump_stack_lvl+0xf2/0x150
[   83.934083][ T6324]  dump_stack+0x15/0x20
[   83.938226][ T6324]  should_fail_ex+0x223/0x230
[   83.942902][ T6324]  should_fail+0xb/0x10
[   83.947113][ T6324]  should_fail_usercopy+0x1a/0x20
[   83.952172][ T6324]  strncpy_from_user+0x25/0x210
[   83.957017][ T6324]  ? get_pid_task+0x8e/0xc0
[   83.961519][ T6324]  strncpy_from_user_nofault+0x66/0xe0
[   83.967018][ T6324]  bpf_probe_read_user_str+0x2a/0x70
[   83.972295][ T6324]  bpf_prog_860dce4575eb4f0a+0x3e/0x40
[   83.977744][ T6324]  bpf_trace_run2+0x104/0x1d0
[   83.982440][ T6324]  __bpf_trace_sys_enter+0x9/0x10
[   83.987490][ T6324]  trace_sys_enter+0x65/0xa0
[   83.992145][ T6324]  syscall_trace_enter+0x13f/0x1f0
[   83.997253][ T6324]  ? fpregs_assert_state_consistent+0x83/0xa0
[   84.003321][ T6324]  do_syscall_64+0xaa/0x1c0
[   84.007868][ T6324]  ? clear_bhb_loop+0x55/0xb0
[   84.012609][ T6324]  ? clear_bhb_loop+0x55/0xb0
[   84.017295][ T6324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.023182][ T6324] RIP: 0033:0x7fb93ccde759
[   84.027632][ T6324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.047282][ T6324] RSP: 002b:00007fb93b951038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.055742][ T6324] RAX: ffffffffffffffda RBX: 00007fb93ce95f80 RCX: 00007fb93ccde759
[   84.063701][ T6324] RDX: 0000000000000002 RSI: 0000000020000400 RDI: 0000000000000004
[   84.071662][ T6324] RBP: 00007fb93b951090 R08: 0000000000000000 R09: 0000000000000000
[   84.079702][ T6324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.087668][ T6324] R13: 0000000000000000 R14: 00007fb93ce95f80 R15: 00007ffd3e4fefc8
[   84.095638][ T6324]  </TASK>
[   84.116911][ T6339] loop3: detected capacity change from 0 to 1024
[   84.126829][ T6339] EXT4-fs: Ignoring removed orlov option
[   84.132615][ T6339] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.668087][ T6372] netlink: 12 bytes leftover after parsing attributes in process `syz.0.974'.
[   85.111814][ T6383] loop1: detected capacity change from 0 to 1024
[   85.118670][ T6383] EXT4-fs: Ignoring removed orlov option
[   85.120352][   T29] kauditd_printk_skb: 1223 callbacks suppressed
[   85.120364][   T29] audit: type=1400 audit(1732053073.828:13750): avc:  denied  { mounton } for  pid=6382 comm="syz.1.975" path="/194/file1" dev="tmpfs" ino=1065 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   85.124306][ T6383] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.151348][   T29] audit: type=1326 audit(1732053073.838:13751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fde90325727 code=0x7ffc0000
[   85.183131][   T29] audit: type=1326 audit(1732053073.838:13752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fde902ca0f9 code=0x7ffc0000
[   85.206453][   T29] audit: type=1326 audit(1732053073.838:13753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   85.229887][   T29] audit: type=1326 audit(1732053073.838:13754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   85.255743][   T29] audit: type=1400 audit(1732053073.868:13755): avc:  denied  { prog_run } for  pid=6384 comm="syz.3.976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   85.275970][   T29] audit: type=1400 audit(1732053073.968:13756): avc:  denied  { create } for  pid=6384 comm="syz.3.976" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   85.298148][   T29] audit: type=1400 audit(1732053073.988:13757): avc:  denied  { create } for  pid=6384 comm="syz.3.976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   85.321764][   T29] audit: type=1400 audit(1732053074.028:13758): avc:  denied  { mount } for  pid=6382 comm="syz.1.975" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   85.343853][   T29] audit: type=1400 audit(1732053074.028:13759): avc:  denied  { setattr } for  pid=6382 comm="syz.1.975" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   85.397390][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.397436][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.409809][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.422201][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.440534][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.452784][ T6394] syz.1.979[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.516901][ T6398] loop1: detected capacity change from 0 to 512
[   85.545953][ T6397] loop4: detected capacity change from 0 to 512
[   85.552500][ T6397] EXT4-fs: Ignoring removed oldalloc option
[   85.560804][ T6402] loop3: detected capacity change from 0 to 1024
[   85.567507][ T6402] EXT4-fs: Ignoring removed orlov option
[   85.567515][ T6397] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   85.568962][ T6398] ext4 filesystem being mounted at /197/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.573171][ T6402] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.602016][ T6397] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.621898][ T6398] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #18: comm syz.1.981: corrupted inode contents
[   85.637073][ T6398] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #18: comm syz.1.981: mark_inode_dirty error
[   85.650080][ T6398] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #18: comm syz.1.981: corrupted inode contents
[   85.667879][ T6398] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3006: inode #18: comm syz.1.981: mark_inode_dirty error
[   85.682950][ T6398] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3009: inode #18: comm syz.1.981: mark inode dirty (error -117)
[   85.695861][ T6408] 9pnet: Could not find request transport: t
[   85.703448][ T6398] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[   85.768320][ T6415] loop1: detected capacity change from 0 to 512
[   85.787779][ T6415] EXT4-fs (loop1): failed to initialize system zone (-117)
[   85.803155][ T6415] EXT4-fs (loop1): mount failed
[   85.816641][ T6422] loop3: detected capacity change from 0 to 1024
[   85.827364][ T6422] EXT4-fs: Ignoring removed orlov option
[   85.833131][ T6422] EXT4-fs: Ignoring removed nomblk_io_submit option
[   85.867786][ T6428] syz.3.991[6428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.867838][ T6428] syz.3.991[6428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.881436][ T6428] syz.3.991[6428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.895883][ T6429] loop1: detected capacity change from 0 to 1024
[   85.914629][ T6428] syz.3.991[6428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.918655][ T6429] EXT4-fs: Ignoring removed mblk_io_submit option
[   86.029172][ T6443] netlink: 12 bytes leftover after parsing attributes in process `syz.3.995'.
[   86.038779][ T6443] bridge_slave_1: left allmulticast mode
[   86.044506][ T6443] bridge_slave_1: left promiscuous mode
[   86.050231][ T6443] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.058887][ T6443] bridge_slave_0: left allmulticast mode
[   86.064555][ T6443] bridge_slave_0: left promiscuous mode
[   86.070256][ T6443] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.789696][ T6473] 9pnet: Could not find request transport: t
[   86.820872][ T6467] loop0: detected capacity change from 0 to 512
[   86.832450][ T6475] loop4: detected capacity change from 0 to 1024
[   86.839412][ T6475] EXT4-fs: Ignoring removed mblk_io_submit option
[   86.856788][ T6467] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   86.864960][ T6467] System zones: 0-2, 18-18, 34-34
[   86.870659][ T6467] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1002: bg 0: block 248: padding at end of block bitmap is not set
[   86.886219][ T6467] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1002: Failed to acquire dquot type 1
[   86.907604][ T6467] EXT4-fs (loop0): 1 truncate cleaned up
[   86.914251][ T6467] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.926913][ T6467] EXT4-fs error (device loop0): ext4_lookup:1817: inode #2: comm syz.0.1002: deleted inode referenced: 12
[   86.966749][ T6491] loop4: detected capacity change from 0 to 128
[   87.053232][ T6493] FAULT_INJECTION: forcing a failure.
[   87.053232][ T6493] name failslab, interval 1, probability 0, space 0, times 0
[   87.065913][ T6493] CPU: 1 UID: 0 PID: 6493 Comm: syz.3.1011 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   87.076272][ T6493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   87.086353][ T6493] Call Trace:
[   87.089630][ T6493]  <TASK>
[   87.092555][ T6493]  dump_stack_lvl+0xf2/0x150
[   87.097203][ T6493]  dump_stack+0x15/0x20
[   87.101356][ T6493]  should_fail_ex+0x223/0x230
[   87.106064][ T6493]  ? __alloc_skb+0x10b/0x310
[   87.110657][ T6493]  should_failslab+0x8f/0xb0
[   87.115316][ T6493]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   87.121192][ T6493]  __alloc_skb+0x10b/0x310
[   87.125668][ T6493]  netlink_alloc_large_skb+0xad/0xe0
[   87.130945][ T6493]  netlink_sendmsg+0x3b4/0x6e0
[   87.135780][ T6493]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.141093][ T6493]  __sock_sendmsg+0x140/0x180
[   87.145819][ T6493]  ____sys_sendmsg+0x312/0x410
[   87.150712][ T6493]  __sys_sendmsg+0x19d/0x230
[   87.155349][ T6493]  __x64_sys_sendmsg+0x46/0x50
[   87.160116][ T6493]  x64_sys_call+0x2734/0x2dc0
[   87.164789][ T6493]  do_syscall_64+0xc9/0x1c0
[   87.169282][ T6493]  ? clear_bhb_loop+0x55/0xb0
[   87.174034][ T6493]  ? clear_bhb_loop+0x55/0xb0
[   87.178731][ T6493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.184616][ T6493] RIP: 0033:0x7fde9032e759
[   87.189018][ T6493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.208672][ T6493] RSP: 002b:00007fde8efa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.217168][ T6493] RAX: ffffffffffffffda RBX: 00007fde904e5f80 RCX: 00007fde9032e759
[   87.225126][ T6493] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[   87.233142][ T6493] RBP: 00007fde8efa1090 R08: 0000000000000000 R09: 0000000000000000
[   87.241105][ T6493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.249167][ T6493] R13: 0000000000000000 R14: 00007fde904e5f80 R15: 00007ffe303b2bf8
[   87.257274][ T6493]  </TASK>
[   87.408273][ T6502] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1015'.
[   87.417337][ T6502] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1015'.
[   87.458756][ T6509] loop4: detected capacity change from 0 to 512
[   87.466699][ T6509] EXT4-fs (loop4): failed to initialize system zone (-117)
[   87.474020][ T6509] EXT4-fs (loop4): mount failed
[   87.513219][ T6518] loop0: detected capacity change from 0 to 512
[   87.520167][ T6518] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   87.531030][ T6518] EXT4-fs (loop0): 1 truncate cleaned up
[   87.539582][ T6518] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1022: corrupted in-inode xattr: overlapping e_value 
[   87.546218][ T6520] loop4: detected capacity change from 0 to 1024
[   87.553819][ T6518] EXT4-fs (loop0): Remounting filesystem read-only
[   87.561204][ T6520] EXT4-fs: Ignoring removed mblk_io_submit option
[   87.566614][ T6518] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.1022: unable to update i_inline_off
[   87.604304][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.613161][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.623270][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.632154][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.639507][ T6526] loop2: detected capacity change from 0 to 512
[   87.641440][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.647850][ T6526] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.672882][ T6526] EXT4-fs (loop2): 1 truncate cleaned up
[   87.674119][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.682312][ T6526] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1024: corrupted in-inode xattr: overlapping e_value 
[   87.687906][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.708028][ T6526] EXT4-fs (loop2): Remounting filesystem read-only
[   87.710246][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.716846][ T6526] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.1024: unable to update i_inline_off
[   87.725526][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.747664][ T6530] loop1: detected capacity change from 0 to 1024
[   87.750036][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.754370][ T6530] EXT4-fs: Ignoring removed orlov option
[   87.763432][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.768440][ T6530] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.780637][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.792225][ T6518] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   87.792660][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.811162][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.825537][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.835633][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.844669][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.854124][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.863725][ T6526] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   87.915246][ T6541] loop0: detected capacity change from 0 to 512
[   87.922097][ T6541] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   87.925457][ T6543] loop1: detected capacity change from 0 to 512
[   87.933964][ T6541] EXT4-fs (loop0): 1 truncate cleaned up
[   87.951490][ T6541] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1029: corrupted in-inode xattr: overlapping e_value 
[   87.951804][ T6543] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   87.976352][ T6541] EXT4-fs (loop0): Remounting filesystem read-only
[   87.982918][ T6541] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.1029: unable to update i_inline_off
[   88.006739][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.011067][ T6543] EXT4-fs (loop1): 1 truncate cleaned up
[   88.015645][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.036309][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.036689][ T6543] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1030: corrupted in-inode xattr: overlapping e_value 
[   88.045351][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.060830][ T6543] EXT4-fs (loop1): Remounting filesystem read-only
[   88.068135][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.074376][ T6543] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1772: inode #15: comm syz.1.1030: unable to update i_inline_off
[   88.092525][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.104519][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.105911][ T6552] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.113320][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.122137][ T6552] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.130840][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.155632][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.160780][ T6551] loop2: detected capacity change from 0 to 256
[   88.164976][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.171497][ T6551] vfat: Unknown parameter 'u'
[   88.187564][ T6541] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.196038][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.232327][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.241324][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.250275][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.254594][ T6559] loop0: detected capacity change from 0 to 512
[   88.261406][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.276265][ T6559] EXT4-fs: old and new quota format mixing
[   88.290796][ T6563] loop2: detected capacity change from 0 to 164
[   88.301610][ T6543] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.324369][ T6569] loop4: detected capacity change from 0 to 1024
[   88.331005][ T6563] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   88.340645][ T6569] EXT4-fs: Ignoring removed orlov option
[   88.346322][ T6569] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.378934][ T6573] loop1: detected capacity change from 0 to 512
[   88.386293][ T6573] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   88.402304][ T6581] loop4: detected capacity change from 0 to 1024
[   88.409877][ T6581] EXT4-fs: Ignoring removed mblk_io_submit option
[   88.416600][ T6573] EXT4-fs (loop1): 1 truncate cleaned up
[   88.424276][ T6573] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1042: corrupted in-inode xattr: overlapping e_value 
[   88.428748][ T6584] loop0: detected capacity change from 0 to 512
[   88.439123][ T6573] EXT4-fs (loop1): Remounting filesystem read-only
[   88.450947][ T6573] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1772: inode #15: comm syz.1.1042: unable to update i_inline_off
[   88.464395][ T6584] EXT4-fs (loop0): failed to initialize system zone (-117)
[   88.473165][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.474916][ T6584] EXT4-fs (loop0): mount failed
[   88.482039][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.497276][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.505513][ T6584] loop0: detected capacity change from 0 to 1024
[   88.506043][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.518904][ T6584] EXT4-fs: Ignoring removed mblk_io_submit option
[   88.522715][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.539421][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.548292][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.548315][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.548332][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.548500][ T6573] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   88.614125][ T6599] loop1: detected capacity change from 0 to 512
[   88.634300][ T6599] EXT4-fs (loop1): failed to initialize system zone (-117)
[   88.641940][ T6599] EXT4-fs (loop1): mount failed
[   88.666780][ T6599] loop1: detected capacity change from 0 to 1024
[   88.673632][ T6599] EXT4-fs: Ignoring removed mblk_io_submit option
[   88.768698][ T6632] loop0: detected capacity change from 0 to 512
[   88.775481][ T6632] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   88.786303][ T6632] EXT4-fs (loop0): 1 truncate cleaned up
[   88.793357][ T6632] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1061: corrupted in-inode xattr: overlapping e_value 
[   88.807466][ T6632] EXT4-fs (loop0): Remounting filesystem read-only
[   88.814083][ T6632] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.1061: unable to update i_inline_off
[   88.832548][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.841379][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.850354][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.859190][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.868005][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.877935][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.886793][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.895771][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.903038][ T6638] loop2: detected capacity change from 0 to 1024
[   88.904646][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.911960][ T6638] EXT4-fs: Ignoring removed orlov option
[   88.921898][ T6632] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   88.925418][ T6638] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.978344][ T6644] loop3: detected capacity change from 0 to 1024
[   88.985130][ T6644] EXT4-fs: Ignoring removed orlov option
[   88.990838][ T6644] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.050535][ T6654] FAULT_INJECTION: forcing a failure.
[   89.050535][ T6654] name failslab, interval 1, probability 0, space 0, times 0
[   89.063300][ T6654] CPU: 1 UID: 0 PID: 6654 Comm: syz.3.1069 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   89.069225][ T6660] loop0: detected capacity change from 0 to 164
[   89.073621][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   89.073697][ T6654] Call Trace:
[   89.093244][ T6654]  <TASK>
[   89.096174][ T6654]  dump_stack_lvl+0xf2/0x150
[   89.100757][ T6654]  dump_stack+0x15/0x20
[   89.104903][ T6654]  should_fail_ex+0x223/0x230
[   89.109632][ T6654]  ? genl_start+0x11e/0x390
[   89.114177][ T6654]  should_failslab+0x8f/0xb0
[   89.118818][ T6654]  __kmalloc_cache_noprof+0x4b/0x2a0
[   89.124129][ T6654]  genl_start+0x11e/0x390
[   89.128448][ T6654]  __netlink_dump_start+0x32a/0x520
[   89.133692][ T6654]  genl_rcv_msg+0x4e5/0x6c0
[   89.138188][ T6654]  ? __pfx_ieee802154_dump_phy+0x10/0x10
[   89.143824][ T6654]  ? __pfx_genl_start+0x10/0x10
[   89.148678][ T6654]  ? __pfx_genl_dumpit+0x10/0x10
[   89.153715][ T6654]  ? __pfx_genl_done+0x10/0x10
[   89.158470][ T6654]  netlink_rcv_skb+0x12c/0x230
[   89.163292][ T6654]  ? __pfx_genl_rcv_msg+0x10/0x10
[   89.168345][ T6654]  genl_rcv+0x28/0x40
[   89.172317][ T6654]  netlink_unicast+0x599/0x670
[   89.177083][ T6654]  netlink_sendmsg+0x5cc/0x6e0
[   89.181852][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.187217][ T6654]  __sock_sendmsg+0x140/0x180
[   89.191913][ T6654]  ____sys_sendmsg+0x312/0x410
[   89.196734][ T6654]  __sys_sendmsg+0x19d/0x230
[   89.201331][ T6654]  __x64_sys_sendmsg+0x46/0x50
[   89.206104][ T6654]  x64_sys_call+0x2734/0x2dc0
[   89.210777][ T6654]  do_syscall_64+0xc9/0x1c0
[   89.215311][ T6654]  ? clear_bhb_loop+0x55/0xb0
[   89.220132][ T6654]  ? clear_bhb_loop+0x55/0xb0
[   89.224805][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.230696][ T6654] RIP: 0033:0x7fde9032e759
[   89.235102][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.254791][ T6654] RSP: 002b:00007fde8efa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.263197][ T6654] RAX: ffffffffffffffda RBX: 00007fde904e5f80 RCX: 00007fde9032e759
[   89.271181][ T6654] RDX: 0000000000040000 RSI: 0000000020000640 RDI: 0000000000000005
[   89.279148][ T6654] RBP: 00007fde8efa1090 R08: 0000000000000000 R09: 0000000000000000
[   89.287125][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.295088][ T6654] R13: 0000000000000000 R14: 00007fde904e5f80 R15: 00007ffe303b2bf8
[   89.303149][ T6654]  </TASK>
[   89.310014][ T6660] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   89.360366][ T6669] loop3: detected capacity change from 0 to 512
[   89.367265][ T6669] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   89.375308][ T6672] loop2: detected capacity change from 0 to 1024
[   89.383757][ T6672] EXT4-fs: Ignoring removed orlov option
[   89.388671][ T6669] EXT4-fs (loop3): 1 truncate cleaned up
[   89.389489][ T6672] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.396796][ T6669] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1077: corrupted in-inode xattr: overlapping e_value 
[   89.415730][ T6669] EXT4-fs (loop3): Remounting filesystem read-only
[   89.422302][ T6669] EXT4-fs warning (device loop3): ext4_xattr_set_entry:1772: inode #15: comm syz.3.1077: unable to update i_inline_off
[   89.445568][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.454606][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.463745][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.472566][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.481335][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.492543][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.501470][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.510307][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.519210][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.531614][ T6669] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.541279][ T6683] loop2: detected capacity change from 0 to 512
[   89.578464][ T6683] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   89.581015][ T6694] loop1: detected capacity change from 0 to 1024
[   89.592528][ T6683] System zones: 0-2, 18-18, 34-34
[   89.593378][ T6694] EXT4-fs: Ignoring removed orlov option
[   89.603617][ T6694] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.604450][ T6683] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1080: bg 0: block 248: padding at end of block bitmap is not set
[   89.620261][ T6700] loop3: detected capacity change from 0 to 1024
[   89.625264][ T6683] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1080: Failed to acquire dquot type 1
[   89.631764][ T6700] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.649873][ T6683] EXT4-fs (loop2): 1 truncate cleaned up
[   89.656290][ T6683] ext4 filesystem being mounted at /212/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.674420][ T6703] loop4: detected capacity change from 0 to 512
[   89.681111][ T6683] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1080: deleted inode referenced: 12
[   89.708648][ T6703] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   89.717218][ T6703] System zones: 0-2, 18-18, 34-34
[   89.723376][ T6703] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1083: bg 0: block 248: padding at end of block bitmap is not set
[   89.742143][ T6711] loop1: detected capacity change from 0 to 1024
[   89.743848][ T6703] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1083: Failed to acquire dquot type 1
[   89.750418][ T6711] EXT4-fs: Ignoring removed orlov option
[   89.765550][ T6711] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.774080][ T6703] EXT4-fs (loop4): 1 truncate cleaned up
[   89.780252][ T6703] ext4 filesystem being mounted at /215/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.799788][ T6703] EXT4-fs error (device loop4): ext4_lookup:1817: inode #2: comm syz.4.1083: deleted inode referenced: 12
[   89.826649][ T6721] loop3: detected capacity change from 0 to 512
[   89.833539][ T6721] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   89.845066][ T6721] EXT4-fs (loop3): 1 truncate cleaned up
[   89.852349][ T6721] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1092: corrupted in-inode xattr: overlapping e_value 
[   89.873743][ T6721] EXT4-fs (loop3): Remounting filesystem read-only
[   89.881036][ T6721] EXT4-fs warning (device loop3): ext4_xattr_set_entry:1772: inode #15: comm syz.3.1092: unable to update i_inline_off
[   89.904668][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.909132][ T6730] loop0: detected capacity change from 0 to 1024
[   89.913650][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.920189][ T6730] EXT4-fs: Ignoring removed orlov option
[   89.931384][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.934303][ T6730] EXT4-fs: Ignoring removed nomblk_io_submit option
[   89.943408][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.958768][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.970506][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.979559][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.988380][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   89.997270][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   90.006404][ T6721] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   90.019225][ T6735] loop0: detected capacity change from 0 to 1024
[   90.025992][ T6735] EXT4-fs: Ignoring removed orlov option
[   90.031781][ T6735] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.044416][ T6737] loop3: detected capacity change from 0 to 1024
[   90.051345][ T6737] EXT4-fs: Ignoring removed mblk_io_submit option
[   90.102547][ T6745] 9pnet: Could not find request transport: t
[   90.125809][ T6752] loop0: detected capacity change from 0 to 1024
[   90.132767][ T6752] EXT4-fs: Ignoring removed orlov option
[   90.138432][   T29] kauditd_printk_skb: 1048 callbacks suppressed
[   90.138444][   T29] audit: type=1326 audit(1732053078.848:14800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6749 comm="syz.3.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   90.138476][   T29] audit: type=1326 audit(1732053078.848:14801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6749 comm="syz.3.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   90.138497][   T29] audit: type=1326 audit(1732053078.848:14802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6749 comm="syz.3.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   90.144760][ T6752] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.222363][   T29] audit: type=1326 audit(1732053078.848:14803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6749 comm="syz.3.1103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde9032e759 code=0x7ffc0000
[   90.267711][ T6760] loop3: detected capacity change from 0 to 512
[   90.292379][   T29] audit: type=1400 audit(1732053078.998:14804): avc:  denied  { append open } for  pid=6759 comm="syz.3.1106" path="/225/file0/blkio.bfq.io_queued" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   90.306942][ T6767] loop0: detected capacity change from 0 to 1024
[   90.317172][   T29] audit: type=1400 audit(1732053078.998:14805): avc:  denied  { ioctl } for  pid=6759 comm="syz.3.1106" path="/225/file0/blkio.bfq.io_queued" dev="loop3" ino=18 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   90.323701][ T6767] EXT4-fs: Ignoring removed orlov option
[   90.354580][ T6767] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.375210][   T29] audit: type=1326 audit(1732053079.078:14806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6771 comm="syz.2.1111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   90.389282][ T6773] 9pnet: Could not find request transport: t
[   90.400895][   T29] audit: type=1326 audit(1732053079.108:14807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6771 comm="syz.2.1111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   90.427586][ T6776] bpf_get_probe_write_proto: 2 callbacks suppressed
[   90.427602][ T6776] syz.3.1113[6776] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.434917][ T6776] syz.3.1113[6776] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.446735][   T29] audit: type=1326 audit(1732053079.158:14808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6771 comm="syz.2.1111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   90.448874][ T6776] syz.3.1113[6776] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.458209][   T29] audit: type=1326 audit(1732053079.158:14809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6771 comm="syz.2.1111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   90.549333][ T6782] loop3: detected capacity change from 0 to 1024
[   90.555886][ T6782] EXT4-fs: Ignoring removed orlov option
[   90.561694][ T6782] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.622845][ T6800] loop3: detected capacity change from 0 to 512
[   90.630739][ T6802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1123'.
[   90.635478][ T6804] loop4: detected capacity change from 0 to 1024
[   90.646470][ T6805] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6805 comm=syz.0.1117
[   90.649039][ T6804] EXT4-fs: Ignoring removed orlov option
[   90.664521][ T6804] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.664960][ T6800] EXT4-fs (loop3): failed to initialize system zone (-117)
[   90.678719][ T6800] EXT4-fs (loop3): mount failed
[   90.681014][ T6811] loop2: detected capacity change from 0 to 512
[   90.711242][ T6800] loop3: detected capacity change from 0 to 1024
[   90.715223][ T6816] binfmt_misc: register: failed to install interpreter file ./file0
[   90.727225][ T6800] EXT4-fs: Ignoring removed mblk_io_submit option
[   90.778714][ T6833] loop1: detected capacity change from 0 to 1024
[   90.785393][ T6833] EXT4-fs: Ignoring removed orlov option
[   90.791407][ T6833] EXT4-fs: Ignoring removed nomblk_io_submit option
[   90.938263][ T6825] No such timeout policy "syz0"
[   90.958574][ T6825] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1128'.
[   91.735006][ T6854] loop3: detected capacity change from 0 to 512
[   91.799662][ T6858] loop1: detected capacity change from 0 to 512
[   91.818296][ T6858] EXT4-fs (loop1): failed to initialize system zone (-117)
[   91.827086][ T6858] EXT4-fs (loop1): mount failed
[   91.865156][ T6858] loop1: detected capacity change from 0 to 1024
[   91.872052][ T6858] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.003099][   T46] I/O error, dev loop1, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[   92.030952][ T6880] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1144'.
[   92.039943][ T6880] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.047397][ T6880] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.178392][ T6880] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.185919][ T6880] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.775477][ T6892] loop3: detected capacity change from 0 to 512
[   93.800971][ T6898] loop4: detected capacity change from 0 to 1024
[   93.810600][ T6898] EXT4-fs: Ignoring removed orlov option
[   93.816324][ T6898] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.895677][ T6918] loop1: detected capacity change from 0 to 1024
[   93.917280][ T6918] EXT4-fs: Ignoring removed orlov option
[   93.922961][ T6918] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.932497][ T6916] loop3: detected capacity change from 0 to 2048
[   93.933912][ T6919] ebtables: ebtables: counters copy to user failed while replacing table
[   94.010666][ T3316] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[   94.069971][ T6941] syz.1.1165[6941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.070053][ T6941] syz.1.1165[6941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.081678][ T6941] syz.1.1165[6941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.105956][ T6944] loop3: detected capacity change from 0 to 512
[   94.122599][ T6946] loop1: detected capacity change from 0 to 1024
[   94.130347][ T6946] EXT4-fs: Ignoring removed orlov option
[   94.136091][ T6946] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.192853][ T6956] loop2: detected capacity change from 0 to 512
[   94.201726][ T6956] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.208943][ T6947] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1167'.
[   94.228090][ T6956] EXT4-fs (loop2): 1 truncate cleaned up
[   94.240481][ T6956] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1172: corrupted in-inode xattr: overlapping e_value 
[   94.255263][ T6956] EXT4-fs (loop2): Remounting filesystem read-only
[   94.262051][ T6956] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.1172: unable to update i_inline_off
[   94.283083][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.292338][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.301355][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.310508][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.319554][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.329246][ T6956] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.404104][ T6978] loop2: detected capacity change from 0 to 128
[   94.412505][ T6978] ext4 filesystem being mounted at /229/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   94.460710][ T6978] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1180'.
[   94.622421][ T6987] loop2: detected capacity change from 0 to 512
[   94.638283][ T6987] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[   94.646396][ T6987] System zones: 0-2, 18-18, 34-34
[   94.652398][ T6987] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1183: bg 0: block 248: padding at end of block bitmap is not set
[   94.667086][ T6987] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1183: Failed to acquire dquot type 1
[   94.679081][ T6987] EXT4-fs (loop2): 1 truncate cleaned up
[   94.685346][ T6987] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.701174][ T6987] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1183: deleted inode referenced: 12
[   94.713515][ T6987] EXT4-fs error (device loop2): ext4_lookup:1817: inode #2: comm syz.2.1183: deleted inode referenced: 12
[   94.746910][ T6997] loop2: detected capacity change from 0 to 512
[   94.753834][ T6997] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.765091][ T6997] EXT4-fs (loop2): 1 truncate cleaned up
[   94.774043][ T6997] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1185: corrupted in-inode xattr: overlapping e_value 
[   94.789572][ T6997] EXT4-fs (loop2): Remounting filesystem read-only
[   94.796104][ T6997] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.1185: unable to update i_inline_off
[   94.820457][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.829365][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.838842][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.847742][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.856615][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   94.869177][ T6997] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.009681][ T7026] loop2: detected capacity change from 0 to 512
[   95.016365][ T7026] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   95.027254][ T7026] EXT4-fs (loop2): 1 truncate cleaned up
[   95.033167][ T7026] EXT4-fs mount: 172 callbacks suppressed
[   95.033175][ T7026] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.052667][ T7026] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1198: corrupted in-inode xattr: overlapping e_value 
[   95.067137][ T7026] EXT4-fs (loop2): Remounting filesystem read-only
[   95.073670][ T7026] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.1198: unable to update i_inline_off
[   95.094123][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.103123][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.112306][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.121400][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.130241][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.140566][ T7026] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   95.159372][   T29] kauditd_printk_skb: 3748 callbacks suppressed
[   95.159386][   T29] audit: type=1400 audit(1732053083.868:18550): avc:  denied  { mounton } for  pid=7031 comm="syz.3.1200" path="/242/file0" dev="tmpfs" ino=1314 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   95.196357][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1199'.
[   95.206285][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.232005][   T29] audit: type=1326 audit(1732053083.938:18551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.255571][   T29] audit: type=1326 audit(1732053083.938:18552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.279065][   T29] audit: type=1326 audit(1732053083.938:18553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.293898][ T7039] loop3: detected capacity change from 0 to 512
[   95.302594][   T29] audit: type=1326 audit(1732053083.938:18554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.332420][   T29] audit: type=1326 audit(1732053083.938:18555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.333959][ T7039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.356240][   T29] audit: type=1326 audit(1732053083.938:18556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.368625][ T7039] ext4 filesystem being mounted at /243/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   95.392006][   T29] audit: type=1326 audit(1732053083.938:18557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.405198][ T7039] FAULT_INJECTION: forcing a failure.
[   95.405198][ T7039] name failslab, interval 1, probability 0, space 0, times 0
[   95.425759][   T29] audit: type=1326 audit(1732053083.938:18558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.438320][ T7039] CPU: 1 UID: 0 PID: 7039 Comm: syz.3.1202 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   95.461671][   T29] audit: type=1326 audit(1732053083.938:18559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.2.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f903086e759 code=0x7ffc0000
[   95.471960][ T7039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   95.471972][ T7039] Call Trace:
[   95.471979][ T7039]  <TASK>
[   95.471986][ T7039]  dump_stack_lvl+0xf2/0x150
[   95.516372][ T7039]  dump_stack+0x15/0x20
[   95.520532][ T7039]  should_fail_ex+0x223/0x230
[   95.525226][ T7039]  ? ext4_find_extent+0x172/0x7c0
[   95.530309][ T7039]  should_failslab+0x8f/0xb0
[   95.534899][ T7039]  __kmalloc_noprof+0xa5/0x370
[   95.539688][ T7039]  ext4_find_extent+0x172/0x7c0
[   95.544538][ T7039]  ext4_ext_shift_extents+0x75/0xcb0
[   95.550000][ T7039]  ? ext4_discard_preallocations+0x880/0x9b0
[   95.556063][ T7039]  ext4_fallocate+0xb72/0x1170
[   95.560832][ T7039]  vfs_fallocate+0x368/0x3b0
[   95.565477][ T7039]  __x64_sys_fallocate+0x78/0xc0
[   95.570493][ T7039]  x64_sys_call+0x43c/0x2dc0
[   95.575153][ T7039]  do_syscall_64+0xc9/0x1c0
[   95.579647][ T7039]  ? clear_bhb_loop+0x55/0xb0
[   95.584366][ T7039]  ? clear_bhb_loop+0x55/0xb0
[   95.589047][ T7039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.594936][ T7039] RIP: 0033:0x7fde9032e759
[   95.599342][ T7039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.618946][ T7039] RSP: 002b:00007fde8efa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   95.627347][ T7039] RAX: ffffffffffffffda RBX: 00007fde904e5f80 RCX: 00007fde9032e759
[   95.635356][ T7039] RDX: 0000000000002000 RSI: 0000000000000008 RDI: 0000000000000004
[   95.643321][ T7039] RBP: 00007fde8efa1090 R08: 0000000000000000 R09: 0000000000000000
[   95.651322][ T7039] R10: 0000000000007000 R11: 0000000000000246 R12: 0000000000000001
[   95.659361][ T7039] R13: 0000000000000000 R14: 00007fde904e5f80 R15: 00007ffe303b2bf8
[   95.667331][ T7039]  </TASK>
[   95.701813][ T7052] syz.2.1209[7052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.701874][ T7052] syz.2.1209[7052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.712734][ T7050] loop0: detected capacity change from 0 to 2048
[   95.713673][ T7052] syz.2.1209[7052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.732429][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.755610][ T7049] FAULT_INJECTION: forcing a failure.
[   95.755610][ T7049] name failslab, interval 1, probability 0, space 0, times 0
[   95.768345][ T7049] CPU: 0 UID: 0 PID: 7049 Comm: syz.1.1206 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   95.778697][ T7049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   95.781338][ T7050] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.788745][ T7049] Call Trace:
[   95.788753][ T7049]  <TASK>
[   95.788760][ T7049]  dump_stack_lvl+0xf2/0x150
[   95.788782][ T7049]  dump_stack+0x15/0x20
[   95.788881][ T7049]  should_fail_ex+0x223/0x230
[   95.788905][ T7049]  ? __alloc_skb+0x10b/0x310
[   95.788925][ T7049]  should_failslab+0x8f/0xb0
[   95.788944][ T7049]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   95.788970][ T7049]  __alloc_skb+0x10b/0x310
[   95.801366][ T7056] loop2: detected capacity change from 0 to 512
[   95.804230][ T7049]  audit_log_start+0x368/0x6b0
[   95.807803][ T7056] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   95.811730][ T7049]  audit_seccomp+0x4b/0x130
[   95.811755][ T7049]  __seccomp_filter+0x6fa/0x1180
[   95.817193][ T7050] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.820534][ T7049]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   95.884667][ T7049]  ? vfs_write+0x596/0x920
[   95.889083][ T7049]  ? __schedule+0x6fa/0x930
[   95.893581][ T7049]  __secure_computing+0x9f/0x1c0
[   95.898627][ T7049]  syscall_trace_enter+0xd1/0x1f0
[   95.903730][ T7049]  do_syscall_64+0xaa/0x1c0
[   95.908222][ T7049]  ? clear_bhb_loop+0x55/0xb0
[   95.912973][ T7049]  ? clear_bhb_loop+0x55/0xb0
[   95.917665][ T7049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.923609][ T7049] RIP: 0033:0x7f91c5fde759
[   95.928086][ T7049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.947687][ T7049] RSP: 002b:00007f91c4c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   95.956149][ T7049] RAX: ffffffffffffffda RBX: 00007f91c6195f80 RCX: 00007f91c5fde759
[   95.964171][ T7049] RDX: fffffffffffffffe RSI: 0000000000e7e000 RDI: 0000000020000000
[   95.972190][ T7049] RBP: 00007f91c4c57090 R08: ffffffffffffffff R09: 0000000000000000
[   95.980150][ T7049] R10: 0000000000004031 R11: 0000000000000246 R12: 0000000000000001
[   95.988113][ T7049] R13: 0000000000000000 R14: 00007f91c6195f80 R15: 00007ffe016f53a8
[   95.996100][ T7049]  </TASK>
[   96.001096][ T7056] EXT4-fs (loop2): 1 truncate cleaned up
[   96.007344][ T7056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.027784][ T7056] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1211: corrupted in-inode xattr: overlapping e_value 
[   96.044134][ T7061] loop0: detected capacity change from 0 to 512
[   96.046315][ T7056] EXT4-fs (loop2): Remounting filesystem read-only
[   96.056946][ T7056] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.1211: unable to update i_inline_off
[   96.058346][ T7061] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   96.096523][ T7066] loop3: detected capacity change from 0 to 512
[   96.097363][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.113274][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.136243][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.152959][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.161957][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.172469][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.180193][ T7076] loop1: detected capacity change from 0 to 128
[   96.181918][ T7061] EXT4-fs (loop0): 1 truncate cleaned up
[   96.187874][ T7076] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   96.193778][ T7061] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.205152][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.219478][ T7066] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.226275][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.246683][ T7076] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   96.247194][ T7061] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1212: corrupted in-inode xattr: overlapping e_value 
[   96.255904][ T7056] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[   96.278695][ T7061] EXT4-fs (loop0): Remounting filesystem read-only
[   96.278712][ T7061] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.1212: unable to update i_inline_off
[   96.290097][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.327091][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.359457][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.368489][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.378634][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.393802][ T7061] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[   96.453497][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.480493][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.491657][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.520856][ T7092] loop3: detected capacity change from 0 to 1024
[   96.530784][ T7092] EXT4-fs: Ignoring removed orlov option
[   96.536478][ T7092] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.544238][ T3394] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[   96.552723][ T3394] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   96.574466][ T7092] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.613685][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.647437][  T167] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   96.674102][ T7110] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1229'.
[   96.683202][ T7110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1229'.
[   96.686447][ T7112] loop0: detected capacity change from 0 to 512
[   96.692908][ T7110] FAULT_INJECTION: forcing a failure.
[   96.692908][ T7110] name failslab, interval 1, probability 0, space 0, times 0
[   96.704611][ T7112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.711160][ T7110] CPU: 0 UID: 0 PID: 7110 Comm: syz.3.1229 Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   96.733361][ T7110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.743453][ T7110] Call Trace:
[   96.746726][ T7110]  <TASK>
[   96.749683][ T7110]  dump_stack_lvl+0xf2/0x150
[   96.754270][ T7110]  dump_stack+0x15/0x20
[   96.758417][ T7110]  should_fail_ex+0x223/0x230
[   96.763093][ T7110]  ? skb_clone+0x154/0x1f0
[   96.767586][ T7110]  should_failslab+0x8f/0xb0
[   96.772206][ T7110]  kmem_cache_alloc_noprof+0x4c/0x290
[   96.777653][ T7110]  skb_clone+0x154/0x1f0
[   96.781893][ T7110]  __netlink_deliver_tap+0x2bd/0x4c0
[   96.787182][ T7110]  netlink_sendskb+0x126/0x150
[   96.791987][ T7110]  netlink_unicast+0x291/0x670
[   96.796838][ T7110]  netlink_ack+0x4c4/0x4f0
[   96.801310][ T7110]  netlink_rcv_skb+0x19c/0x230
[   96.806147][ T7110]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   96.811608][ T7110]  nfnetlink_rcv+0x16c/0x15c0
[   96.816284][ T7110]  ? kmem_cache_free+0xdc/0x2d0
[   96.821189][ T7110]  ? nlmon_xmit+0x51/0x60
[   96.825524][ T7110]  ? __kfree_skb+0x102/0x150
[   96.830109][ T7110]  ? consume_skb+0x49/0x160
[   96.834680][ T7110]  ? nlmon_xmit+0x51/0x60
[   96.839061][ T7110]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   96.844408][ T7110]  ? __dev_queue_xmit+0xb4c/0x2040
[   96.849631][ T7110]  ? ref_tracker_free+0x3a5/0x410
[   96.854655][ T7110]  ? __dev_queue_xmit+0x161/0x2040
[   96.859765][ T7110]  ? __netlink_deliver_tap+0x495/0x4c0
[   96.865261][ T7110]  netlink_unicast+0x599/0x670
[   96.870142][ T7110]  netlink_sendmsg+0x5cc/0x6e0
[   96.874959][ T7110]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.880418][ T7110]  __sock_sendmsg+0x140/0x180
[   96.885086][ T7110]  ____sys_sendmsg+0x312/0x410
[   96.889910][ T7110]  __sys_sendmsg+0x19d/0x230
[   96.894506][ T7110]  __x64_sys_sendmsg+0x46/0x50
[   96.899307][ T7110]  x64_sys_call+0x2734/0x2dc0
[   96.904143][ T7110]  do_syscall_64+0xc9/0x1c0
[   96.908636][ T7110]  ? clear_bhb_loop+0x55/0xb0
[   96.913311][ T7110]  ? clear_bhb_loop+0x55/0xb0
[   96.917989][ T7110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.923880][ T7110] RIP: 0033:0x7fde9032e759
[   96.928336][ T7110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.947941][ T7110] RSP: 002b:00007fde8efa1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.956344][ T7110] RAX: ffffffffffffffda RBX: 00007fde904e5f80 RCX: 00007fde9032e759
[   96.964306][ T7110] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[   96.972265][ T7110] RBP: 00007fde8efa1090 R08: 0000000000000000 R09: 0000000000000000
[   96.980246][ T7110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.988211][ T7110] R13: 0000000000000000 R14: 00007fde904e5f80 R15: 00007ffe303b2bf8
[   96.996196][ T7110]  </TASK>
[   97.005140][ T7114] loop1: detected capacity change from 0 to 512
[   97.012543][ T7114] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   97.029055][ T7114] EXT4-fs (loop1): 1 truncate cleaned up
[   97.035038][ T7114] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.052957][ T7114] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1231: corrupted in-inode xattr: overlapping e_value 
[   97.069698][ T7114] EXT4-fs (loop1): Remounting filesystem read-only
[   97.076222][ T7114] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1772: inode #15: comm syz.1.1231: unable to update i_inline_off
[   97.109757][ T7125] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.124811][ T7125] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.144773][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.155930][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.169864][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.171556][ T7125] loop3: detected capacity change from 0 to 256
[   97.178698][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.193975][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.194227][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.196464][ T7114] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=12
[   97.213231][ T7125] FAT-fs (loop3): Directory bread(block 64) failed
[   97.228255][ T7130] loop4: detected capacity change from 0 to 512
[   97.230410][ T7125] FAT-fs (loop3): Directory bread(block 65) failed
[   97.242588][ T7125] FAT-fs (loop3): Directory bread(block 66) failed
[   97.249506][ T7125] FAT-fs (loop3): Directory bread(block 67) failed
[   97.256320][ T7125] FAT-fs (loop3): Directory bread(block 68) failed
[   97.264239][ T7125] FAT-fs (loop3): Directory bread(block 69) failed
[   97.274584][ T7125] FAT-fs (loop3): Directory bread(block 70) failed
[   97.280563][ T7132] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   97.281479][ T7125] FAT-fs (loop3): Directory bread(block 71) failed
[   97.313946][ T7125] FAT-fs (loop3): Directory bread(block 72) failed
[   97.322082][ T7129] loop0: detected capacity change from 0 to 2048
[   97.327045][ T7134] capability: warning: `syz.4.1238' uses 32-bit capabilities (legacy support in use)
[   97.347262][ T7125] FAT-fs (loop3): Directory bread(block 73) failed
[   97.361109][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.380115][ T7129] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.410028][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.438226][ T3325] ==================================================================
[   97.446332][ T3325] BUG: KCSAN: data-race in generic_fillattr / inode_add_bytes
[   97.453798][ T3325] 
[   97.456116][ T3325] read-write to 0xffff888118391848 of 8 bytes by task 7135 on cpu 0:
[   97.464174][ T3325]  inode_add_bytes+0x45/0xd0
[   97.468772][ T3325]  __dquot_alloc_space+0x181/0x8a0
[   97.473883][ T3325]  shmem_inode_acct_blocks+0x124/0x230
[   97.479350][ T3325]  shmem_get_folio_gfp+0x5be/0xd90
[   97.484501][ T3325]  shmem_write_begin+0xa2/0x180
[   97.489363][ T3325]  generic_perform_write+0x1a8/0x4a0
[   97.494643][ T3325]  shmem_file_write_iter+0xc2/0xe0
[   97.499752][ T3325]  __kernel_write_iter+0x24b/0x4e0
[   97.504860][ T3325]  dump_user_range+0x3ac/0x550
[   97.509624][ T3325]  elf_core_dump+0x1b66/0x1c60
[   97.514396][ T3325]  do_coredump+0x1736/0x1ce0
[   97.518990][ T3325]  get_signal+0xdc0/0x1070
[   97.523416][ T3325]  arch_do_signal_or_restart+0x95/0x4b0
[   97.528960][ T3325]  irqentry_exit_to_user_mode+0x9a/0x130
[   97.534597][ T3325]  irqentry_exit+0x12/0x50
[   97.539027][ T3325]  asm_exc_page_fault+0x26/0x30
[   97.543879][ T3325] 
[   97.546200][ T3325] read to 0xffff888118391848 of 8 bytes by task 3325 on cpu 1:
[   97.553737][ T3325]  generic_fillattr+0x274/0x330
[   97.558593][ T3325]  shmem_getattr+0x17b/0x200
[   97.563185][ T3325]  vfs_statx_path+0x171/0x2d0
[   97.567871][ T3325]  vfs_statx+0xe1/0x170
[   97.572024][ T3325]  __se_sys_newfstatat+0xdc/0x300
[   97.577052][ T3325]  __x64_sys_newfstatat+0x55/0x70
[   97.582075][ T3325]  x64_sys_call+0x236d/0x2dc0
[   97.586761][ T3325]  do_syscall_64+0xc9/0x1c0
[   97.591270][ T3325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.597160][ T3325] 
[   97.599467][ T3325] value changed: 0x0000000000003980 -> 0x0000000000003998
[   97.606558][ T3325] 
[   97.608868][ T3325] Reported by Kernel Concurrency Sanitizer on:
[   97.614999][ T3325] CPU: 1 UID: 0 PID: 3325 Comm: syz-executor Not tainted 6.12.0-syzkaller-00971-g158f238aa69d #0
[   97.625489][ T3325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   97.635533][ T3325] ==================================================================
[   97.659885][ T7148] syz.4.1243[7148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.660003][ T7148] syz.4.1243[7148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.673498][ T7148] syz.4.1243[7148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.720254][ T7148] netlink: 272 bytes leftover after parsing attributes in process `syz.4.1243'.