last executing test programs:

18.44017981s ago: executing program 0 (id=1275):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0xd, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2}, 0x0, 0x0)

18.4232974s ago: executing program 0 (id=1276):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_NEWSET={0x2c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x54}}, 0x0) (fail_nth: 6)

18.138411641s ago: executing program 0 (id=1278):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mq_open(&(0x7f0000000340)='\x00', 0x40, 0x50, &(0x7f0000000380)={0x3ff, 0xd7f, 0x8000000000000000, 0x1})

18.136396891s ago: executing program 0 (id=1280):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
io_setup(0xffff7135, &(0x7f0000000240)=<r3=>0x0)
io_getevents(r3, 0xf29, 0x0, 0x0, &(0x7f00000002c0))
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x800000, &(0x7f0000000900)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES32, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed3944440d445ac89758d3aa4a6c77ea3e1e50196a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad194301887b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c41f021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4ebe299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b95491ed", @ANYRES8=0x0], 0x3, 0x7cd, &(0x7f0000001780)="$eJzs3U1sHOXdAPD/GpvkNVKEeFGIohAmgVcKUjDrNZjX4gDLemwPrHdXu+vKUVVBRBxkxQEERS05lOYCbdWq6qlH2iu33lpVaqUe2p4qlUMvvSFxqmjVSlWrqpKrmd11/LG2A3E+Cr+fFT+PZ/7zfIwn89+xPbMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAESpNlsuT5ainjWWlpMdRiIiub8fu7hj9fr6+nqvNmjvl1uKPfqNKOX/4vDhONZbdOz+a6uP5p9Ox4neVyficF4cjiv3HL336f8dHRlsv3PAN+zUdcaVIr6ZD+rS+bW1lTduwkBuoe/8fK+1o8MW/rP4vs+njazTzBar82mSdZrJzPR0+fGFuU4yl9XTzrlON11Mau202m22kzO1R5PJmZmpJJ0411xqzM9W6+lg4VOPVcrl6eT5iVZabXeajcefn+jUFrJ6PWvMFzGV8tcij3kqqc22X8i6STetLibJxdW1lan9ZpcHTe6x/sQj93781kd/W13JD8jdgkr9A7MyOVmpTE4/OfPkU+XyaKVc2bqgvE1sRMRIRB5xUw5a7hzFKXMvB3PihgMw0s//UY8sGrEUy5EM+RiLWsxGO5qxmH/9h7EdEX2D/P9/j//5d3v1uzn/D7L8sWurj0eR/0/2vjq5W/4fOtaD/Bjpj2e39W/G23ElLsX5WIu1WIk3bvqIbvBj5GDbm480GpFFJ5qRxWJUiyVJf0kSMzEd01GOF2Mh5qITScxFFvVIoxPnohPdSIsjqhbtSKMa3WhGO5I4E7V4NJKYjJmYialIIo2JOBfNWIpGzMdsVItWLsZqsd+nto3r6Dde+tkrv//4/by+ETS5x0RK+Yu5POivewTtSPfXn//Xox8h/3/RHfAZHD679UH+BwAAAD63SsVP3/Pr/7F4sKjNZfX0y7d7WAAAAMABKn7zfyIvxvLag1HKr//LQyI/vOVjAwAAAA5GqbjHrhQR4/FQrza4XWrYDwEAAACA/0LF7/9P5sV4xDvFAtf/AAAA8Dnzrd2esf/R4Bm7ndah0i/+Eu32WOlqa/mR0uVqHle9fFdvu37xpY0Wu3PHS4ej10jR1vTolXtKETFaS0+UBk+//PehXvlJ8fn46Mbmuz3rv7RtABtb3LV9SvkAjlzZNoCjRcffjVO9mFMXeuWFflz/icTjc1k9nag1608Xj0TM/3XfenX161FM/9uNxSOluLi6tjLx8mtrF4qxXM1buXq5/wDFHc9RHD6Wosf1/h6IB4fPeKy4EaPf73iv3/Lmb8DIs8XmI3v3Wdrc57txuhdzerxXjm+d/+G8z8mJpyejWj0y0k2Xu2+tb5p9fxSTNzjzd+PhXszDZx7uFUNGUdkyild3jqKyeRT9nbDPvth3FGP9A+v9U+8s//3XzVI6td8opraN4vCnHAXA7XKxeOrPtSz0P0UW+td6T57/r+XdpBfQ1z/LPbDRVH6WG6SBbWe5i7GxZrD9plw3Gjuy+/aXF7Gtl13O6Gd6MWd6rydGjw/JK+UhZ/TXV1//Tf+M/sQHP/zRV07+9iefPbt9EI/2YvpF3PerXXJsPufvNRbHB40uP9Ov/HjXfjv1SinGIu766uXX4+ibb195bPXy+VdWXll5tVKZmi4/US4/WYmx4qVCv5B7ABhi//fY2Tei9MQ+V9X3bfxJwUS8HK/FWlyIs8XdBhHx0PBWxzf9GcLZOB3FxfIuV63jm97h5ew+15bXYis7YwevK3bETm3aYw/8oCj+cRO/KQBwk53eJw9fT/4/u89199Zcvu3qOHbP5cP8/03dGwDwxZC2PymNd98rtdtZ68XJmZnJanchTdrN2gtJO5udT5Os0U3btYVqYz5NWu1mt1kb/OB4Nu0knaVWq9nuJnPNdtJqdrLl4p3fk/5bv3fSxWqjm9U6rXpa7aRJrdnoVmvdZDbr1JLW3c/Vs85C2i427rTSWjaX1ardrNlIOs2ldi2dSJJOmiatpUFgNps2utlcllcbSaudLVbbVyOivrSYJrNpp9bOWt1mr8FaM4q+ssZcs71YNDuxc/p/utX7GwDuBG++feXS+bW1lTe2Vo7E9iXbKqNRVP64V8ygcrvnCABsJUsDAAAAAAAAAAAAAMCdb+ftevnSfW/pG1Y5FJ9+q0Pxqbq4wUo+tVvV1+2v5LO9A4ZxeysvPfPMpd1innvn2ML1tTP8f8qwW13fOxJx90+/31vy7K2a6Yef7cBeL+0Rc5tPTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwxH8CAAD//+mvWJQ=")
r4 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), r5)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r6, 0x701}, 0x14}}, 0x0)
write$binfmt_register(r4, &(0x7f0000000100)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x6, 0x3a, 'E', 0x3a, '@{@$\x9a$^', 0x3a, './file0', 0x3a, [0x50, 0x4f, 0x46, 0x50, 0x43]}, 0x34)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r7=>0x0})
sendto$packet(r1, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xe, r7, 0x1, 0x0, 0x6, @multicast}, 0x14)

18.054213911s ago: executing program 0 (id=1281):
r0 = gettid()
ptrace$pokeuser(0x6, r0, 0x6, 0x8)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x1, 0x1, 0x801, 0x0, 0x0, {0x0, 0x0, 0x3}, [@CTA_LABELS_MASK={0x18, 0x17, [0x0, 0x40, 0x4, 0x1, 0xffff8000]}, @CTA_ID={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x81}, 0x20000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x4000841)
unshare(0x40010000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000280), r4)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r4)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000680)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000340)={0x2e0, r5, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x24, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'ib', 0x3a, 'veth0_to_team\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8}]}, @TIPC_NLA_NODE={0x19c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xf9, 0x3, "fe40b0a0a5479a13e10e982b4b8046cf26c6a9f445dc321a7cc65973b7d9933b39647050b2cf8558e463dd968f6653d0f290da30417a31ac51f57bceb44bd4499f206362d7271ed40a623d896ea24b8dfd88cbc6d9453c252ba946f5c965f8f0e4de50b860f3cb26f855fe446af1ca5b9bee224e659aada03e99e8f25bca7fa3a96830fea3387b95556bc6bc56fbcb815d0774bb50f326d4956fd1d0bd568e91c89ad5c33cfd39da794a3f96a578e58961aba60440eeeccf9ad80bb57e97c21a29f7c31e182b50c8b47043f38e14183ecd72b75e599a302c5fb5238a642c5376e5024fbb35cf77544502d2da23987cc000d1f06a2d"}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "bf50b779e1324b0e19124372ca92f9de98cc091c846f64ba"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10001}, @TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "69420a4a9e6a414e98d74bfb5e062250f6864500afee74"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x9}]}, @TIPC_NLA_SOCK={0x20, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xa}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xc977}]}, @TIPC_NLA_SOCK={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xfb51}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5de8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf4ee}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0x60, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @remote}}, {0x14, 0x2, @in={0x2, 0x4e21, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'eth', 0x3a, 'bridge_slave_0\x00'}}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6a6192d9}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x6d0}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000000}]}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x840}, 0x88c1)
r6 = inotify_init1(0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0x40086607, &(0x7f00000006c0)=0x100000000)
r7 = epoll_create(0x7fffffff)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, r6, &(0x7f0000000700)={r7, r4, 0x9})
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r1)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r4, &(0x7f00000008c0)={&(0x7f0000000740), 0xc, &(0x7f0000000880)={&(0x7f00000007c0)={0x88, r8, 0x20, 0x70bd2d, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4f}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}}]}, 0x88}, 0x1, 0x0, 0x0, 0xeb031403c948ab62}, 0x4008080)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x3c, r8, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0c0}, 0x44001)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dc, &(0x7f0000000a00)="02d9424f0f80e0a31cab12e1b28d8d401dbd7ffd9520670d2a99f63ba3161fcdd883332787d15fd8eca5ce7971fb96ff025add0ea8813357688bdf4e7e40cd1ddaf8fc5086071691fc61f7f567676540eaf9bb31c3f25861ecb7f186c9f507b224478bd04450a853a24ec2f250503ae306601bc82d97aff9793ff41ab1e6d5db36f9b0a16d499f296869ea")
r9 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000ac0)=<r10=>0x0)
fcntl$setown(r9, 0x8, r10)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r4, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x4c, r2, 0x300, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xadc2}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7faf}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xe}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
bpf$LINK_DETACH(0x22, &(0x7f0000000c40)=r6, 0x4)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000c80)={{0x1, 0x1, 0x18, <r11=>r7, {0x23}}, './file0\x00'})
dup(r11)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000cc0)={0x0, 0x0, {}, {0x0, @struct, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0xc4089434, &(0x7f00000010c0)={r12, 0x0, 0x1, [0x5, 0x9, 0x8, 0x9, 0x9], [0x7f, 0x0, 0x2, 0x2, 0x101, 0x7, 0x5eb3, 0x8000, 0x100000001, 0x9, 0x7, 0x56bc, 0x2, 0x0, 0x9, 0x3, 0x8, 0x1, 0xaa76, 0xfffffffffffffffc, 0x9, 0xffffffffffff5236, 0xfffffffffffeffff, 0x5, 0x0, 0x2, 0x5, 0x9, 0xffffffffffffff80, 0xff, 0xfffffffffffffff7, 0x8, 0x83, 0x7fffffffffffffff, 0x3, 0x9, 0x8000, 0xf0, 0x2, 0x6, 0x3, 0xc, 0x9, 0x7, 0x1ff, 0x1b, 0x9, 0xeae, 0x100000000, 0x1, 0x8001, 0x5, 0x3, 0x6, 0x8, 0xf68, 0xa5b, 0x6c, 0x6, 0x16, 0x5, 0xfffffffffffffff9, 0xc, 0x9, 0x5, 0xe, 0x8, 0x4, 0x712, 0x8, 0x80000000, 0x22da, 0x6, 0x10, 0x6, 0x7, 0x5, 0x9, 0x8000000000000001, 0x7, 0x0, 0x8, 0xfffffffffffffffd, 0x0, 0x10, 0x100000000, 0xc63, 0x2, 0x6, 0x7, 0x6, 0x100000001, 0x5, 0x10001, 0x0, 0x3, 0x1e, 0x200, 0x2, 0xf, 0x7, 0x7fffffffffffffff, 0x9d4e, 0x80000001, 0x40, 0x3, 0x29, 0x37bc, 0x2, 0x1, 0x0, 0x8, 0x4, 0x3, 0x2, 0x5, 0x6, 0x400, 0x6, 0x0, 0x5]})
getsockname$packet(0xffffffffffffffff, &(0x7f0000001500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001540)=0x14)

17.870445281s ago: executing program 0 (id=1282):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff00001142"], 0x0)

17.848360051s ago: executing program 32 (id=1282):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff00001142"], 0x0)

2.031291737s ago: executing program 1 (id=1678):
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x0)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="2d0000008058", 0x5a}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)
r2 = socket(0x1e, 0x1, 0x0)
connect$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r2, &(0x7f0000000080), 0x2000011a)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000140)={0x8, &(0x7f0000000100)=[{0x2, 0x1, 0x1, 0x9c}, {0x7f, 0x0, 0xad, 0x9}, {0xc2, 0xea, 0x3, 0x4}, {0x140, 0x9f, 0x9, 0xc}, {0x0, 0xfc, 0x1, 0x78a}, {0x8, 0x30, 0x7f, 0xfff0}, {0x80, 0x1, 0xf, 0x6a59}, {0xddb9, 0x5, 0x4, 0x2}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000040)={0x0, <r4=>0x0})
sched_getaffinity(r4, 0x8, &(0x7f00000000c0))

1.616060267s ago: executing program 1 (id=1682):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mq_open(&(0x7f0000000340)='\x00', 0x40, 0x50, &(0x7f0000000380)={0x3ff, 0xd7f, 0x8000000000000000, 0x1})

1.502050678s ago: executing program 1 (id=1683):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r0, 0x0, 0x100000}, 0x18)
syz_emit_ethernet(0x200000, 0x0, 0x0)

1.495914498s ago: executing program 1 (id=1684):
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = epoll_create1(0x0)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001})
epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
shutdown(r2, 0x0)
pipe2(0x0, 0x180)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000001800), 0xfe, 0x497, &(0x7f00000007c0)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000780)=0x7)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="720ac4000000000000000000000000000000d3fa00800000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

1.430542978s ago: executing program 2 (id=1685):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000900)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="fd8d00000000000000000200000008000300", @ANYRES32=r4, @ANYBLOB="0a0009000180c2000000000008000b0000"], 0x30}}, 0x0)

1.429666928s ago: executing program 2 (id=1686):
r0 = perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x307, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8000}, 0x0, 0x0, r0, 0x3)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
read$char_usb(r2, &(0x7f00000004c0)=""/185, 0xb9)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000800)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x9, [@union={0x0, 0x1, 0x0, 0x5, 0x0, 0x4, [{0x7, 0x2}]}, @typedef={0x5}]}, {0x0, [0x0, 0x5f, 0x0, 0x0, 0x2e, 0x0, 0x5f]}}, &(0x7f00000001c0)=""/2, 0x45, 0x2, 0x1, 0x0, 0x0, @void, @value}, 0x28)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="4142a2b551de967d41851a09313cf16dca0400000000000000f3e2bcc7ed59eac7c843b6369c4baa328cc463c10f6ad6e38dbfe34373bcc12b5472fca6b4e4dbfa4f0328e15103779c18ae85aaa5fafc951d0ada780b1dae736a31539b7139dbc969d80ee576cb5d2f25ef733e04a53ef5e66863b87e05e9665cadc379bb0b1c0d0035d1ca654d989f349bd7e357e735ca2f31bc9d32d0ddc64c2590b3a9ce6545cb4c9940fe10c1848692b4b8b6058a9ebc04c63a7c6d9d26ddc11c99a743acdf3d73cf73c0fa1e39b3addd81c84f3a2edd0000"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x40047451, 0x2000000a)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00004328a2787ffe4ac200"/28], 0x48)
r6 = perf_event_open$cgroup(&(0x7f0000000400)={0x4, 0x80, 0x7f, 0x4, 0x80, 0xc, 0x0, 0x4, 0x800d0, 0xc, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x4af59cc7afc55107, @perf_bp={&(0x7f00000002c0)}, 0x10, 0x6, 0x5, 0x8, 0x4, 0x0, 0x9, 0x0, 0x10001, 0x0, 0x2000}, r2, 0xb, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000740)='kmem_cache_free\x00')
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r5, @ANYBLOB="0000000000000000b702000000040002850000008600000095", @ANYRES32=r6], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r7}, 0x10)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0)

1.262196168s ago: executing program 4 (id=1688):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

1.168795138s ago: executing program 4 (id=1689):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000003000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYRESDEC=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCETHTOOL(r5, 0x8923, &(0x7f0000000540)={'bond0\x00', &(0x7f0000000040)=@ethtool_sfeatures})

1.024244159s ago: executing program 4 (id=1690):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcce)
execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
shutdown(0xffffffffffffffff, 0x1)

972.316908ms ago: executing program 4 (id=1691):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x10008, 0x1, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "4dd308", 0x14, 0x6, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x78}}}}}}}, 0x0)
r1 = msgget$private(0x0, 0x3a9)
msgctl$IPC_SET(r1, 0x1, &(0x7f0000000280)={{0x2, 0xee00, 0x0, 0x0, 0xee01}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
msgrcv(r1, &(0x7f00000004c0)={0x0, ""/125}, 0x85, 0x1, 0x800)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013001118680907070000000f0000ff3f04000000170a001700000000040014001000030001302564aa58b9a64411f6bbf44dc48f57", 0xff4d}], 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

831.277319ms ago: executing program 3 (id=1693):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x0, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1e00000000000000020000000700000000000000", @ANYRES32=0x1, @ANYBLOB="ff0100e6ffffff51f3ffff0000f8232100000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000900000000000000000a20000000000a030000000000000b0000070000000900010073797a300000000014000000020a01010000000000000000000008002c000000180a20c58d46fa5902602bfe926f05000000000000000000070000010900010073797a3000000077c64f351265c6cd0000000002140000001000010000000000000000000084000a"], 0x88}}, 0x0)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
socket(0x2, 0x80802, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

757.448869ms ago: executing program 3 (id=1696):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, 0x0, 0x0)
sendmsg$rds(r0, &(0x7f0000002180)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000001fc0)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/48, 0x30}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000001ec0)=[{&(0x7f0000001a00)=""/161, 0xa1}], 0x1}}], 0x90}, 0x0)

724.115039ms ago: executing program 3 (id=1697):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e23, @empty}], 0x10)
sendto$inet6(r0, &(0x7f00000000c0)='\x00', 0x1, 0x800, &(0x7f0000000140)={0xa, 0x4e23, 0x3, @loopback, 0x2}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000001c0)=ANY=[], 0x9)

722.855249ms ago: executing program 5 (id=1698):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x7, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local})

653.120719ms ago: executing program 3 (id=1699):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="182900", @ANYRES32=0x0, @ANYBLOB="000000000a000000850000110000", @ANYRES32, @ANYBLOB="00000000000000007540f9ff08000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x464c, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = syz_io_uring_setup(0x130, &(0x7f0000000000)={0x0, 0x4590, 0x800, 0xfffffffc, 0x31d}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x28}, 0x0, 0x40800, 0x1})
open(0x0, 0x2a4c0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
io_uring_enter(r3, 0x47f4, 0x1386, 0xc, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtaction={0x64, 0x30, 0x1, 0x70bd27, 0x0, {}, [{0x50, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0xfffffdfd, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x1}}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$kcm(0x11, 0xa, 0x300)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

609.04712ms ago: executing program 1 (id=1700):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f00000002c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
syz_io_uring_setup(0x1114, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x21e}, &(0x7f00000001c0), 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f00000021c0)={0x2, 0x0, @local}, 0x10)
sendmsg$rds(r1, 0x0, 0x0)

607.737149ms ago: executing program 5 (id=1701):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x38, r5, 0x1, 0x0, 0x0, {{}, {}, {0x1c, 0x17, {0x7, 0x0, @l2={'eth', 0x3a, 'syzkaller0\x00'}}}}}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local})

573.29752ms ago: executing program 2 (id=1702):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e00000000000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f40)=ANY=[@ANYBLOB="4000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00bc"], 0x40}}, 0x0)

481.84869ms ago: executing program 5 (id=1703):
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0900000007000000008000000100000000000000", @ANYRES32, @ANYBLOB='\x00\x00\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRES8], 0x50)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
close(r1)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x0, @remote, 'veth0_to_bridge\x00'}}, 0x1e)

407.192759ms ago: executing program 4 (id=1704):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001500)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000e000000a50000002a0000009500"/33], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r3, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
recvmsg$kcm(r3, 0x0, 0x40002020)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x1080043, 0xfffffffc, 0x3, 0x3}, 0x10)
openat$selinux_validatetrans(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r5}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000024b8d9c9000059ccf3fef0"], 0x48)
close(r4)
r6 = socket(0x40000000015, 0x5, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
bind$inet(r6, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r6, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x14}, 0x0)
bind$inet(r6, &(0x7f00000002c0)={0x2, 0x4e21, @private=0xa010101}, 0x10)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x271e, 0x0, &(0x7f0000000100))

406.842659ms ago: executing program 5 (id=1705):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
mq_open(&(0x7f0000000340)='\x00', 0x40, 0x50, &(0x7f0000000380)={0x3ff, 0xd7f, 0x8000000000000000, 0x1})

403.62247ms ago: executing program 3 (id=1706):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEY(r5, 0x110, 0x1, 0x0, 0x0)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r6, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20, 0x2}}, 0x120)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f00000000c0)={[{@block_validity}, {@nombcache}, {@dioread_lock}, {@norecovery}, {@mb_optimize_scan}, {@data_ordered}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}]}, 0xfb, 0x54c, &(0x7f0000000400)="$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")
r7 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000009c0)={0x4, &(0x7f0000000980)=[{0x7fff, 0x2, 0x9, 0xffffffc0}, {0xd6ec, 0x1, 0xe, 0x5}, {0x3, 0x9, 0x40, 0x975}, {0x9, 0x3, 0x0, 0x2}]})
ioctl$HIDIOCGRDESC(r7, 0x90044802, &(0x7f00000026c0)={0x4000})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)
r8 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000280)={0x0, r1}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x13, 0x1ff, 0x1, 0xffffffff, 0x10021, r1, 0xa, '\x00', r4, r1, 0x2, 0x5, 0x3, 0x0, @void, @value, @value=r8}, 0x50)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r9}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_gettime(0x0, &(0x7f0000000480))
pwrite64(r1, &(0x7f0000000080)='3', 0x1, 0x0)

279.99866ms ago: executing program 5 (id=1707):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b10000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000900)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="fd8d00000000000000000200000008000300", @ANYRES32=r4, @ANYBLOB="0a0009000180c2000000000008000b0000"], 0x30}}, 0x0)

236.85449ms ago: executing program 1 (id=1708):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6519, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000100060000000077f2ab26850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r3}, 0x10)
r4 = memfd_create(&(0x7f00000001c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
fsetxattr$security_selinux(r4, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
sendto$inet6(r0, &(0x7f00000000c0)='\x00', 0x1, 0x800, &(0x7f0000000140)={0xa, 0x4e23, 0x3, @loopback, 0x2}, 0x1c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x2}, 0x18)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000001c0)=ANY=[], 0x9)

184.6302ms ago: executing program 2 (id=1709):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e23, @empty}], 0x10)
sendto$inet6(r0, &(0x7f00000000c0)='\x00', 0x1, 0x800, &(0x7f0000000140)={0xa, 0x4e23, 0x3, @loopback, 0x2}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000001c0)=ANY=[], 0x9)

69.4142ms ago: executing program 2 (id=1710):
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xb, 0xfa00, {0xfffffffffffffffe, 0x0}}, 0x20)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x22, 0x2, 0x3)
bind$can_j1939(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {0x4}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WDS_PEER(r2, &(0x7f0000000d00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000c40)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="04002abd7000fcdbdf25420000000a00060050505050505000000ae4d4a1bace36983c50c93eb1c70006001b42f1e7ecf000000a00060008021100000000000a0006007f96ab5cda2200000a000600ffffffffffff00000a0006000cd2b216a84a00000a00060008021100000000000a000600f8c8dca21b5c00000a0006001c4634fb777500"], 0x8c}, 0x1, 0x0, 0x0, 0x40810}, 0x24040910)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000180000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmmsg(r0, &(0x7f00000018c0)=[{{&(0x7f0000000180)=@hci={0x1f, 0x0, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0xf}}], 0x1, 0x0)

56.30211ms ago: executing program 3 (id=1711):
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = epoll_create1(0x0)
r2 = socket(0x1, 0x80802, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001})
epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
shutdown(r2, 0x0)
pipe2(0x0, 0x180)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000001800), 0xfe, 0x497, &(0x7f00000007c0)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000780)=0x7)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="720ac4000000000000000000000000000000d3fa00800000"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

54.90171ms ago: executing program 5 (id=1712):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000280)='./file1\x00', &(0x7f0000000080), 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x22ea0a9, &(0x7f0000000040)={[{@nr_blocks={'nr_blocks', 0x3d, [0x31]}}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x6f}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan1\x00', <r2=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000000)={0x2c, 0x0, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}]}, 0x2c}}, 0x0)
syz_open_procfs$pagemap(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da07000000000001090224"], 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xc, 0x5002004a, 0xb, 0x310, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)
lseek(r0, 0x10001, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x20000000000000c8, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095b28607fdd8cb341f4926a6f42cbb72ce013630cd7f0b051b49c13160d2b052de8f46725e9691a8224b2ccc750adde34a5b278f33a5ac844069a880c156d046a61149873e2dc0fef8421bb86794452fceacb418b904eb60cc9954c94c739b9e1d396f4dcc996be7bc91a93208334a09642480f81f4ff1b95afcc380d8d74f17c8efda1ca23c060b014e32cb4af2b4499d4a77ea3cee8af80240ae6565abceed02637e4b97318aa2c47434f7049ac48b90993adf93fcec5333624d948df927"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='io_uring_defer\x00', r5, 0x0, 0x2}, 0x18)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5400000002060104000000000000000000000000050005000a000300050004000000000010000300686173683a69702c6d61630005000100070000000c0007800800124000000900090002"], 0x54}}, 0x0)
pwritev(r6, &(0x7f0000000000)=[{&(0x7f0000000200)='s', 0x1}], 0x1, 0xb9c4, 0x0)

39.7924ms ago: executing program 2 (id=1713):
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xb, 0xfa00, {0xfffffffffffffffe, 0x0}}, 0x20)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x22, 0x2, 0x3)
bind$can_j1939(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {0x4}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_WDS_PEER(r2, &(0x7f0000000d00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000c40)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="04002abd7000fcdbdf25420000000a00060050505050505000000ae4d4a1bace36983c50c93eb1c70006001b42f1e7ecf000000a00060008021100000000000a0006007f96ab5cda2200000a000600ffffffffffff00000a0006000cd2b216a84a00000a00060008021100000000000a000600f8c8dca21b5c00000a0006001c4634fb777500"], 0x8c}, 0x1, 0x0, 0x0, 0x40810}, 0x24040910)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000180000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x0, 0x4}, 0x1c)
sendmmsg(r0, &(0x7f00000018c0)=[{{&(0x7f0000000180)=@hci={0x1f, 0x0, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0xf}}], 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b04000000000000000002000000380004"], 0xa0}}, 0x0)
r6 = socket(0x10, 0x803, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x9)
sysfs$1(0x1, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8], 0x24}, 0x1, 0x0, 0x0, 0x20000011}, 0x4)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3801fe00", @ANYRES16=0x0, @ANYBLOB="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"], 0x138}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r9, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r10, 0x0, 0x1}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000880)={[{@errors_remount}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5e}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x400002}}]}, 0x2, 0x462, &(0x7f0000000300)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000081000000bfa300000000000007030000f1feffff720a07fef8ffffff71a400fe0000000071101000000000001d300200000000004704000001ed03040f030000000000001d440000000000006b0a04fe0000000072030000000a0000b500f9ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616276fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a26048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdec86f9b1eb93d491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f806694d461b76a58d88cf0f520310a1e80dc18cde9ad662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a090f3b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c91024cf71126233cb8791c3c"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x14, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xb}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 4 (id=1714):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, 0x0, 0x0)
sendmsg$rds(r0, &(0x7f0000002180)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000001fc0)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/48, 0x30}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000001ec0)=[{&(0x7f0000001a00)=""/161, 0xa1}], 0x1}}], 0x90}, 0x0)

kernel console output (not intermixed with test programs):

806][ T5278] loop4: detected capacity change from 0 to 512
[   63.129313][ T5278] EXT4-fs (loop4): too many log groups per flexible block group
[   63.137116][ T5278] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   63.193502][ T5278] EXT4-fs (loop4): mount failed
[   63.233216][ T5278] netlink: 'syz.4.722': attribute type 10 has an invalid length.
[   63.242846][ T5289] syz.0.721[5289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.242958][ T5289] syz.0.721[5289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.286320][ T5289] syz.0.721[5289] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.312637][ T5296] netlink: 'syz.3.729': attribute type 3 has an invalid length.
[   63.365788][ T5289] wireguard0: entered promiscuous mode
[   63.371414][ T5289] wireguard0: entered allmulticast mode
[   63.418249][ T5298] netlink: 'syz.3.731': attribute type 7 has an invalid length.
[   63.426094][ T5298] netlink: 8 bytes leftover after parsing attributes in process `syz.3.731'.
[   63.720711][ T5333] syz.4.744[5333] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.720767][ T5333] syz.4.744[5333] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.742440][ T5333] syz.4.744[5333] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.778737][ T5333] wireguard0: entered promiscuous mode
[   63.795570][ T5333] wireguard0: entered allmulticast mode
[   63.909114][ T5331] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.924109][ T5331] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.110971][ T5377] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   64.127097][ T5376] tipc: Disabling bearer <eth:syzkaller0>
[   64.321219][ T5409] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   64.328696][ T5409] ªªªªªª: renamed from syzkaller0
[   64.335541][ T5409] tipc: Disabling bearer <eth:syzkaller0>
[   64.379887][ T5417] netlink: 36 bytes leftover after parsing attributes in process `syz.2.782'.
[   64.486159][ T5419] netlink: 'syz.0.783': attribute type 10 has an invalid length.
[   64.511383][ T5421] loop2: detected capacity change from 0 to 2048
[   64.519999][ T5423] FAULT_INJECTION: forcing a failure.
[   64.519999][ T5423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.533175][ T5423] CPU: 0 UID: 0 PID: 5423 Comm: syz.0.785 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   64.535726][ T5421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.543760][ T5423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   64.543775][ T5423] Call Trace:
[   64.543781][ T5423]  <TASK>
[   64.543789][ T5423]  dump_stack_lvl+0xf2/0x150
[   64.576571][ T5423]  dump_stack+0x15/0x1a
[   64.580815][ T5423]  should_fail_ex+0x223/0x230
[   64.585511][ T5423]  should_fail+0xb/0x10
[   64.589721][ T5423]  should_fail_usercopy+0x1a/0x20
[   64.594760][ T5423]  _copy_from_user+0x1e/0xb0
[   64.599435][ T5423]  copy_msghdr_from_user+0x54/0x2a0
[   64.604634][ T5423]  ? __fget_files+0x17c/0x1c0
[   64.609344][ T5423]  __sys_sendmsg+0x13e/0x230
[   64.613929][ T5423]  __x64_sys_sendmsg+0x46/0x50
[   64.618697][ T5423]  x64_sys_call+0x2734/0x2dc0
[   64.623401][ T5423]  do_syscall_64+0xc9/0x1c0
[   64.627902][ T5423]  ? clear_bhb_loop+0x55/0xb0
[   64.632600][ T5423]  ? clear_bhb_loop+0x55/0xb0
[   64.637299][ T5423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.643184][ T5423] RIP: 0033:0x7fdec49b5d19
[   64.647699][ T5423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.667292][ T5423] RSP: 002b:00007fdec3021038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.675942][ T5423] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b5d19
[   64.683902][ T5423] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000005
[   64.691861][ T5423] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   64.699859][ T5423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.707833][ T5423] R13: 0000000000000000 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   64.715832][ T5423]  </TASK>
[   64.735655][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.748958][ T5428] netlink: 'syz.0.786': attribute type 10 has an invalid length.
[   64.851951][ T5445] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   64.852661][ T5447] FAULT_INJECTION: forcing a failure.
[   64.852661][ T5447] name failslab, interval 1, probability 0, space 0, times 0
[   64.858999][ T5445] ªªªªªª: renamed from syzkaller0
[   64.871309][ T5447] CPU: 0 UID: 0 PID: 5447 Comm: syz.0.795 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   64.886911][ T5447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   64.896995][ T5447] Call Trace:
[   64.900259][ T5447]  <TASK>
[   64.903224][ T5447]  dump_stack_lvl+0xf2/0x150
[   64.907819][ T5447]  dump_stack+0x15/0x1a
[   64.911985][ T5447]  should_fail_ex+0x223/0x230
[   64.916779][ T5447]  should_failslab+0x8f/0xb0
[   64.921447][ T5447]  kmem_cache_alloc_noprof+0x52/0x320
[   64.926948][ T5447]  ? key_alloc+0x2a6/0xa40
[   64.931366][ T5447]  key_alloc+0x2a6/0xa40
[   64.935640][ T5447]  keyring_alloc+0x44/0xb0
[   64.940100][ T5447]  lookup_user_key+0x318/0xdf0
[   64.945017][ T5447]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[   64.951221][ T5447]  __se_sys_request_key+0x16c/0x290
[   64.956404][ T5447]  ? fput+0x1c4/0x200
[   64.960378][ T5447]  __x64_sys_request_key+0x55/0x70
[   64.965570][ T5447]  x64_sys_call+0x296e/0x2dc0
[   64.970254][ T5447]  do_syscall_64+0xc9/0x1c0
[   64.974813][ T5447]  ? clear_bhb_loop+0x55/0xb0
[   64.979612][ T5447]  ? clear_bhb_loop+0x55/0xb0
[   64.984307][ T5447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.989662][ T5449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   64.990204][ T5447] RIP: 0033:0x7fdec49b5d19
[   64.990224][ T5447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.999526][ T5449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.002931][ T5447] RSP: 002b:00007fdec3021038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f9
[   65.002953][ T5447] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b5d19
[   65.002964][ T5447] RDX: 0000000000000000 RSI: 0000000020001ffb RDI: 0000000020000040
[   65.002975][ T5447] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   65.002996][ T5447] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   65.003006][ T5447] R13: 0000000000000000 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   65.078623][ T5447]  </TASK>
[   65.085461][ T5445] tipc: Disabling bearer <eth:syzkaller0>
[   65.192143][ T5459] FAULT_INJECTION: forcing a failure.
[   65.192143][ T5459] name failslab, interval 1, probability 0, space 0, times 0
[   65.204923][ T5459] CPU: 1 UID: 0 PID: 5459 Comm: syz.0.800 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   65.215539][ T5459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.218185][ T5465] syz.1.804[5465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.225595][ T5459] Call Trace:
[   65.225605][ T5459]  <TASK>
[   65.225613][ T5459]  dump_stack_lvl+0xf2/0x150
[   65.225646][ T5459]  dump_stack+0x15/0x1a
[   65.237720][ T5465] syz.1.804[5465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.240087][ T5459]  should_fail_ex+0x223/0x230
[   65.244633][ T5465] syz.1.804[5465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.247567][ T5459]  should_failslab+0x8f/0xb0
[   65.283399][ T5459]  __kmalloc_node_noprof+0xad/0x410
[   65.288738][ T5459]  ? __kvmalloc_node_noprof+0x72/0x170
[   65.294239][ T5459]  __kvmalloc_node_noprof+0x72/0x170
[   65.299557][ T5459]  nf_tables_newset+0xd49/0x1390
[   65.304552][ T5459]  nfnetlink_rcv+0xb3e/0x15d0
[   65.309231][ T5459]  ? kmem_cache_free+0xdc/0x2d0
[   65.314126][ T5459]  netlink_unicast+0x599/0x670
[   65.318924][ T5459]  netlink_sendmsg+0x5cc/0x6e0
[   65.323683][ T5459]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.328957][ T5459]  __sock_sendmsg+0x140/0x180
[   65.333690][ T5459]  ____sys_sendmsg+0x312/0x410
[   65.338467][ T5459]  __sys_sendmsg+0x19d/0x230
[   65.343114][ T5459]  __x64_sys_sendmsg+0x46/0x50
[   65.347863][ T5459]  x64_sys_call+0x2734/0x2dc0
[   65.352644][ T5459]  do_syscall_64+0xc9/0x1c0
[   65.357146][ T5459]  ? clear_bhb_loop+0x55/0xb0
[   65.361830][ T5459]  ? clear_bhb_loop+0x55/0xb0
[   65.366727][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.372683][ T5459] RIP: 0033:0x7fdec49b5d19
[   65.377089][ T5459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.396717][ T5459] RSP: 002b:00007fdec3021038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.405175][ T5459] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b5d19
[   65.413189][ T5459] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000008
[   65.421215][ T5459] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   65.429242][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.437198][ T5459] R13: 0000000000000000 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   65.445184][ T5459]  </TASK>
[   65.449243][ T5465] wireguard0: entered promiscuous mode
[   65.454907][ T5465] wireguard0: entered allmulticast mode
[   65.493577][ T5471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.502281][ T5471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.575806][ T5475] pimreg: entered allmulticast mode
[   65.582711][ T5475] pimreg: left allmulticast mode
[   65.663053][ T5481] loop4: detected capacity change from 0 to 512
[   65.684903][ T5481] EXT4-fs (loop4): too many log groups per flexible block group
[   65.692704][ T5481] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   65.699750][ T5481] EXT4-fs (loop4): mount failed
[   65.708543][ T5481] netlink: 'syz.4.811': attribute type 10 has an invalid length.
[   65.744108][ T5487] tipc: Started in network mode
[   65.749022][ T5487] tipc: Node identity a22c2cd61b53, cluster identity 4711
[   65.756280][ T5487] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   65.765842][ T5487] ªªªªªª: renamed from syzkaller0
[   65.772423][ T5487] tipc: Disabling bearer <eth:syzkaller0>
[   65.845024][ T5501] netlink: 'syz.0.818': attribute type 3 has an invalid length.
[   65.879246][ T5505] FAULT_INJECTION: forcing a failure.
[   65.879246][ T5505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   65.886227][ T5507] vlan2: entered promiscuous mode
[   65.892325][ T5505] CPU: 0 UID: 0 PID: 5505 Comm: syz.0.821 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   65.897350][ T5507] vlan2: entered allmulticast mode
[   65.907922][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.907938][ T5505] Call Trace:
[   65.907944][ T5505]  <TASK>
[   65.907952][ T5505]  dump_stack_lvl+0xf2/0x150
[   65.914000][ T5507] vlan0: entered allmulticast mode
[   65.923085][ T5505]  dump_stack+0x15/0x1a
[   65.926400][ T5507] veth0_vlan: entered allmulticast mode
[   65.929282][ T5505]  should_fail_ex+0x223/0x230
[   65.933877][ T5507] vlan0: entered promiscuous mode
[   65.939070][ T5505]  should_fail+0xb/0x10
[   65.945620][ T5507] team0: Port device vlan2 added
[   65.948716][ T5505]  should_fail_usercopy+0x1a/0x20
[   65.972750][ T5505]  _copy_to_user+0x20/0xa0
[   65.977195][ T5505]  simple_read_from_buffer+0xa0/0x110
[   65.982595][ T5505]  proc_fail_nth_read+0xf9/0x140
[   65.987638][ T5505]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   65.988588][ T5510] loop4: detected capacity change from 0 to 512
[   65.993201][ T5505]  vfs_read+0x1a2/0x700
[   65.993230][ T5505]  ? dec_rlimit_ucounts+0xad/0xd0
[   66.008703][ T5505]  ? __rcu_read_unlock+0x4e/0x70
[   66.013700][ T5505]  ? __fget_files+0x17c/0x1c0
[   66.018411][ T5505]  ksys_read+0xe8/0x1b0
[   66.022575][ T5505]  __x64_sys_read+0x42/0x50
[   66.027080][ T5505]  x64_sys_call+0x2874/0x2dc0
[   66.031749][ T5505]  do_syscall_64+0xc9/0x1c0
[   66.036280][ T5505]  ? clear_bhb_loop+0x55/0xb0
[   66.040957][ T5505]  ? clear_bhb_loop+0x55/0xb0
[   66.045709][ T5505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.051663][ T5505] RIP: 0033:0x7fdec49b472c
[   66.056071][ T5505] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   66.075943][ T5505] RSP: 002b:00007fdec3021030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   66.084463][ T5505] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b472c
[   66.092428][ T5505] RDX: 000000000000000f RSI: 00007fdec30210a0 RDI: 0000000000000003
[   66.100391][ T5505] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   66.108424][ T5505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.116388][ T5505] R13: 0000000000000001 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   66.124357][ T5505]  </TASK>
[   66.156897][ T5510] EXT4-fs (loop4): too many log groups per flexible block group
[   66.164726][ T5510] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   66.171892][ T5510] EXT4-fs (loop4): mount failed
[   66.222737][ T5510] netlink: 'syz.4.823': attribute type 10 has an invalid length.
[   66.360544][ T5540] loop4: detected capacity change from 0 to 1024
[   66.369449][ T5540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.384288][ T5540] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   66.402873][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.530818][   T29] kauditd_printk_skb: 3783 callbacks suppressed
[   66.530833][   T29] audit: type=1400 audit(1734046989.618:42383): avc:  denied  { create } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.559811][   T29] audit: type=1400 audit(1734046989.618:42384): avc:  denied  { setopt } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.579486][   T29] audit: type=1400 audit(1734046989.618:42385): avc:  denied  { map_create } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.598760][   T29] audit: type=1400 audit(1734046989.618:42386): avc:  denied  { map_read map_write } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.618633][   T29] audit: type=1400 audit(1734046989.618:42387): avc:  denied  { prog_load } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.637727][   T29] audit: type=1400 audit(1734046989.618:42388): avc:  denied  { bpf } for  pid=5557 comm="syz.4.843" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   66.658259][   T29] audit: type=1400 audit(1734046989.618:42389): avc:  denied  { perfmon } for  pid=5557 comm="syz.4.843" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   66.679228][   T29] audit: type=1400 audit(1734046989.618:42390): avc:  denied  { create } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.693286][ T5572] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   66.698718][   T29] audit: type=1400 audit(1734046989.628:42391): avc:  denied  { bind } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.726775][   T29] audit: type=1400 audit(1734046989.628:42392): avc:  denied  { write } for  pid=5557 comm="syz.4.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.863360][ T5590] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   66.871760][ T5590] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   66.982129][ T5601] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   67.124613][ T5616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.868'.
[   67.160857][ T5616] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5616 comm=syz.2.868
[   67.232313][ T5624] loop4: detected capacity change from 0 to 512
[   67.265828][ T5624] EXT4-fs (loop4): too many log groups per flexible block group
[   67.272129][ T5628] loop2: detected capacity change from 0 to 512
[   67.273513][ T5624] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   67.318383][ T5628] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   67.337296][ T5624] EXT4-fs (loop4): mount failed
[   67.356871][ T5633] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   67.384234][ T5628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.405422][ T5633] ªªªªªª: renamed from syzkaller0
[   67.415632][ T5624] validate_nla: 2 callbacks suppressed
[   67.415644][ T5624] netlink: 'syz.4.871': attribute type 10 has an invalid length.
[   67.442372][ T5633] tipc: Disabling bearer <eth:syzkaller0>
[   67.551455][ T5616] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.583853][ T5616] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.747001][ T5663] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.757079][ T5663] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.811014][ T5664] loop3: detected capacity change from 0 to 512
[   67.839899][ T5664] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[   68.095052][ T5657] loop0: detected capacity change from 0 to 8192
[   68.139905][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.144774][ T5657]  loop0: p1 p2 p3 p4[EZD]
[   68.176098][ T5657] loop0: p1 size 16128 extends beyond EOD, truncated
[   68.203446][ T5657] loop0: p3 start 458783 is beyond EOD, truncated
[   68.209969][ T5657] loop0: p4 size 65536 extends beyond EOD, truncated
[   68.312008][ T5678] wireguard0: entered promiscuous mode
[   68.317707][ T5678] wireguard0: entered allmulticast mode
[   68.588219][ T5703] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   68.613747][ T5703] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   68.739069][ T3586] udevd[3586]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   68.748461][ T4098] udevd[4098]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   68.759800][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   68.786033][ T5716] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   68.933468][ T5737] loop0: detected capacity change from 0 to 128
[   68.946766][ T5737] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   68.963269][ T5737] ext4 filesystem being mounted at /223/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   69.095921][ T5746] ip6_vti0: entered promiscuous mode
[   69.102776][ T5746] ip6_vti0: left promiscuous mode
[   69.372099][ T5770] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   69.379451][ T5770] IPv6: NLM_F_CREATE should be set when creating new route
[   69.462085][ T5770] netlink: 20 bytes leftover after parsing attributes in process `syz.3.924'.
[   69.527735][ T5787] loop3: detected capacity change from 0 to 512
[   69.556129][ T5787] EXT4-fs (loop3): too many log groups per flexible block group
[   69.563835][ T5787] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   69.570930][ T5787] EXT4-fs (loop3): mount failed
[   69.590918][ T5787] netlink: 'syz.3.928': attribute type 10 has an invalid length.
[   69.642899][ T5794] wireguard0: entered promiscuous mode
[   69.648628][ T5794] wireguard0: entered allmulticast mode
[   69.787979][ T3304] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.923391][ T5826] tc_dump_action: action bad kind
[   69.960868][ T5832] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.007963][ T5838] wireguard0: entered promiscuous mode
[   70.013503][ T5838] wireguard0: entered allmulticast mode
[   70.027385][ T5832] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.048351][ T5844] netlink: 'syz.0.946': attribute type 13 has an invalid length.
[   70.056185][ T5844] netlink: 152 bytes leftover after parsing attributes in process `syz.0.946'.
[   70.068956][ T5844] syz_tun: refused to change device tx_queue_len
[   70.075373][ T5844] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   70.104779][ T5851] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   70.117253][ T5832] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.170317][ T5859] tc_dump_action: action bad kind
[   70.187570][ T5832] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.208646][ T5868] netlink: 8 bytes leftover after parsing attributes in process `syz.1.961'.
[   70.218031][ T5868] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5868 comm=syz.1.961
[   70.238946][ T5832] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.257963][ T5832] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.278457][ T5832] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.298258][ T5832] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.352373][ T5881] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   70.359405][ T5881] ªªªªªª: renamed from syzkaller0
[   70.365913][ T5881] tipc: Disabling bearer <eth:syzkaller0>
[   70.476787][ T5894] wireguard0: entered promiscuous mode
[   70.482254][ T5894] wireguard0: entered allmulticast mode
[   70.518635][ T5892] loop4: detected capacity change from 0 to 512
[   70.541813][ T5892] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[   70.767221][ T5921] syz.2.980[5921] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.767316][ T5921] syz.2.980[5921] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.779057][ T5921] syz.2.980[5921] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.801111][ T5921] FAULT_INJECTION: forcing a failure.
[   70.801111][ T5921] name failslab, interval 1, probability 0, space 0, times 0
[   70.825000][ T5921] CPU: 1 UID: 0 PID: 5921 Comm: syz.2.980 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   70.835622][ T5921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.845690][ T5921] Call Trace:
[   70.848978][ T5921]  <TASK>
[   70.851958][ T5921]  dump_stack_lvl+0xf2/0x150
[   70.856572][ T5921]  dump_stack+0x15/0x1a
[   70.860746][ T5921]  should_fail_ex+0x223/0x230
[   70.865436][ T5921]  should_failslab+0x8f/0xb0
[   70.870102][ T5921]  kmem_cache_alloc_noprof+0x52/0x320
[   70.875568][ T5921]  ? getname_flags+0x81/0x3b0
[   70.880321][ T5921]  getname_flags+0x81/0x3b0
[   70.884836][ T5921]  __x64_sys_renameat2+0x61/0xa0
[   70.889958][ T5921]  x64_sys_call+0x1bf1/0x2dc0
[   70.894662][ T5921]  do_syscall_64+0xc9/0x1c0
[   70.899249][ T5921]  ? clear_bhb_loop+0x55/0xb0
[   70.903936][ T5921]  ? clear_bhb_loop+0x55/0xb0
[   70.908626][ T5921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.914552][ T5921] RIP: 0033:0x7f1cbf9b5d19
[   70.915364][ T5925] loop3: detected capacity change from 0 to 512
[   70.918961][ T5921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.944897][ T5921] RSP: 002b:00007f1cbe027038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   70.953314][ T5921] RAX: ffffffffffffffda RBX: 00007f1cbfba5fa0 RCX: 00007f1cbf9b5d19
[   70.961283][ T5921] RDX: ffffffffffffffff RSI: 0000000020000000 RDI: ffffffffffffffff
[   70.969247][ T5921] RBP: 00007f1cbe027090 R08: 0000000000000000 R09: 0000000000000000
[   70.977213][ T5921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.985228][ T5921] R13: 0000000000000000 R14: 00007f1cbfba5fa0 R15: 00007ffc51f527e8
[   70.993193][ T5921]  </TASK>
[   71.026163][ T5929] syz.0.984[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.026281][ T5929] syz.0.984[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.048728][ T5929] syz.0.984[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.060114][ T5927] netlink: 'syz.1.983': attribute type 10 has an invalid length.
[   71.090619][ T5925] EXT4-fs (loop3): too many log groups per flexible block group
[   71.098404][ T5925] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   71.107520][ T5925] EXT4-fs (loop3): mount failed
[   71.137879][ T5925] netlink: 'syz.3.982': attribute type 10 has an invalid length.
[   71.354563][ T5945] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   71.414819][ T5943] ªªªªªª: renamed from syzkaller0
[   71.570684][ T5973] tc_dump_action: action bad kind
[   71.727515][   T29] kauditd_printk_skb: 775 callbacks suppressed
[   71.727593][   T29] audit: type=1400 audit(1734046994.818:43168): avc:  denied  { ioctl } for  pid=5996 comm="syz.2.1012" path="socket:[12216]" dev="sockfs" ino=12216 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   71.729898][ T5997] gretap1: entered allmulticast mode
[   71.777342][   T29] audit: type=1326 audit(1734046994.868:43169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.0.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdec49b5d19 code=0x7ffc0000
[   71.800919][   T29] audit: type=1326 audit(1734046994.868:43170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.0.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdec49b5d19 code=0x7ffc0000
[   71.805069][ T5997] bridge0: port 3(gretap1) entered blocking state
[   71.830885][ T5997] bridge0: port 3(gretap1) entered disabled state
[   71.884566][ T5997] gretap1: entered promiscuous mode
[   71.917484][   T29] audit: type=1326 audit(1734046994.868:43171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.0.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fdec49b5d19 code=0x7ffc0000
[   71.940943][   T29] audit: type=1326 audit(1734046994.868:43172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5999 comm="syz.0.1014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdec49b5d19 code=0x7ffc0000
[   71.964551][   T29] audit: type=1400 audit(1734046994.958:43173): avc:  denied  { create } for  pid=5995 comm="syz.3.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   71.984496][   T29] audit: type=1400 audit(1734046994.958:43174): avc:  denied  { ioctl } for  pid=5995 comm="syz.3.1013" path="socket:[12225]" dev="sockfs" ino=12225 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   72.009591][   T29] audit: type=1400 audit(1734046994.958:43175): avc:  denied  { write } for  pid=5995 comm="syz.3.1013" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   72.029377][   T29] audit: type=1400 audit(1734046995.008:43176): avc:  denied  { write } for  pid=6009 comm="syz.3.1019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   72.128204][ T6026] IPVS: ovf: UDP 127.0.0.1:19999 - no destination available
[   72.184225][   T29] audit: type=1400 audit(1734046995.128:43177): avc:  denied  { read } for  pid=6009 comm="syz.3.1019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   72.577957][ T6039] tc_dump_action: action bad kind
[   72.680666][ T6048] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   72.687923][ T6048] IPv6: NLM_F_CREATE should be set when creating new route
[   73.139081][ T6069] loop4: detected capacity change from 0 to 512
[   73.184915][ T6069] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[   73.247524][ T6078] FAULT_INJECTION: forcing a failure.
[   73.247524][ T6078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.260648][ T6078] CPU: 0 UID: 0 PID: 6078 Comm: syz.2.1046 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   73.271380][ T6078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.281441][ T6078] Call Trace:
[   73.284720][ T6078]  <TASK>
[   73.287728][ T6078]  dump_stack_lvl+0xf2/0x150
[   73.292455][ T6078]  dump_stack+0x15/0x1a
[   73.296628][ T6078]  should_fail_ex+0x223/0x230
[   73.301317][ T6078]  should_fail+0xb/0x10
[   73.305472][ T6078]  should_fail_usercopy+0x1a/0x20
[   73.310509][ T6078]  _copy_from_user+0x1e/0xb0
[   73.315119][ T6078]  copy_msghdr_from_user+0x54/0x2a0
[   73.320330][ T6078]  ? __fget_files+0x17c/0x1c0
[   73.325182][ T6078]  __sys_sendmsg+0x13e/0x230
[   73.329791][ T6078]  __x64_sys_sendmsg+0x46/0x50
[   73.334610][ T6078]  x64_sys_call+0x2734/0x2dc0
[   73.339294][ T6078]  do_syscall_64+0xc9/0x1c0
[   73.343918][ T6078]  ? clear_bhb_loop+0x55/0xb0
[   73.348651][ T6078]  ? clear_bhb_loop+0x55/0xb0
[   73.353341][ T6078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.359278][ T6078] RIP: 0033:0x7f1cbf9b5d19
[   73.363738][ T6078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.373633][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888117f0a800: rx timeout, send abort
[   73.383423][ T6078] RSP: 002b:00007f1cbe027038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.383446][ T6078] RAX: ffffffffffffffda RBX: 00007f1cbfba5fa0 RCX: 00007f1cbf9b5d19
[   73.383458][ T6078] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   73.383470][ T6078] RBP: 00007f1cbe027090 R08: 0000000000000000 R09: 0000000000000000
[   73.383482][ T6078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.391882][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888117f0a800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   73.400075][ T6078] R13: 0000000000000000 R14: 00007f1cbfba5fa0 R15: 00007ffc51f527e8
[   73.400096][ T6078]  </TASK>
[   74.040031][ T6113] wireguard0: entered promiscuous mode
[   74.045586][ T6113] wireguard0: entered allmulticast mode
[   74.219008][ T6126] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.228625][ T6126] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.371369][ T6136] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   74.408625][ T6140] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.421756][ T6140] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.473912][ T6151] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   74.619565][ T6167] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1086'.
[   74.628748][ T6167] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6167 comm=syz.1.1086
[   75.009883][ T6183] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   75.016935][ T6183] ªªªªªª: renamed from syzkaller0
[   75.023237][ T6183] tipc: Disabling bearer <eth:syzkaller0>
[   75.100493][ T6185] loop2: detected capacity change from 0 to 512
[   75.115106][ T6185] EXT4-fs (loop2): too many log groups per flexible block group
[   75.117791][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888117f3b400: rx timeout, send abort
[   75.122769][ T6185] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   75.131051][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888117f3b400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   75.137974][ T6185] EXT4-fs (loop2): mount failed
[   75.182494][ T6185] netlink: 'syz.2.1094': attribute type 10 has an invalid length.
[   75.234604][ T6198] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   75.329795][ T6215] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1106'.
[   75.339063][ T6215] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6215 comm=syz.4.1106
[   75.401818][ T6215] loop4: detected capacity change from 0 to 512
[   75.410747][ T6215] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.436798][ T6215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.452296][ T6215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.464051][ T6215] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.473507][ T6226] loop2: detected capacity change from 0 to 512
[   75.505513][ T6226] EXT4-fs (loop2): too many log groups per flexible block group
[   75.513202][ T6226] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   75.520307][ T6226] EXT4-fs (loop2): mount failed
[   75.530198][ T6226] netlink: 'syz.2.1109': attribute type 10 has an invalid length.
[   75.593506][ T6236] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   75.672583][ T6239] loop2: detected capacity change from 0 to 512
[   75.744004][ T6239] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[   75.745717][    C0] hrtimer: interrupt took 37281 ns
[   76.009798][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.070114][ T6263] netlink: 'syz.1.1121': attribute type 10 has an invalid length.
[   76.136604][ T6269] FAULT_INJECTION: forcing a failure.
[   76.136604][ T6269] name failslab, interval 1, probability 0, space 0, times 0
[   76.149301][ T6269] CPU: 0 UID: 0 PID: 6269 Comm: syz.4.1124 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   76.159992][ T6269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.170107][ T6269] Call Trace:
[   76.173418][ T6269]  <TASK>
[   76.176345][ T6269]  dump_stack_lvl+0xf2/0x150
[   76.180989][ T6269]  dump_stack+0x15/0x1a
[   76.185173][ T6269]  should_fail_ex+0x223/0x230
[   76.189875][ T6269]  should_failslab+0x8f/0xb0
[   76.194494][ T6269]  kmem_cache_alloc_node_noprof+0x59/0x320
[   76.200311][ T6269]  ? __alloc_skb+0x10b/0x310
[   76.205027][ T6269]  __alloc_skb+0x10b/0x310
[   76.209451][ T6269]  netlink_alloc_large_skb+0xad/0xe0
[   76.214744][ T6269]  netlink_sendmsg+0x3b4/0x6e0
[   76.219577][ T6269]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.224857][ T6269]  __sock_sendmsg+0x140/0x180
[   76.229530][ T6269]  ____sys_sendmsg+0x312/0x410
[   76.234361][ T6269]  __sys_sendmsg+0x19d/0x230
[   76.238960][ T6269]  __x64_sys_sendmsg+0x46/0x50
[   76.243807][ T6269]  x64_sys_call+0x2734/0x2dc0
[   76.248513][ T6269]  do_syscall_64+0xc9/0x1c0
[   76.253020][ T6269]  ? clear_bhb_loop+0x55/0xb0
[   76.257703][ T6269]  ? clear_bhb_loop+0x55/0xb0
[   76.262389][ T6269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.268294][ T6269] RIP: 0033:0x7fae8c735d19
[   76.272739][ T6269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.292351][ T6269] RSP: 002b:00007fae8ada7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.300756][ T6269] RAX: ffffffffffffffda RBX: 00007fae8c925fa0 RCX: 00007fae8c735d19
[   76.308731][ T6269] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000006
[   76.316851][ T6269] RBP: 00007fae8ada7090 R08: 0000000000000000 R09: 0000000000000000
[   76.324809][ T6269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.332778][ T6269] R13: 0000000000000000 R14: 00007fae8c925fa0 R15: 00007ffd00b17068
[   76.340745][ T6269]  </TASK>
[   76.506654][ T6295] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   76.539268][ T6297] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   76.553594][ T6297] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   76.565689][ T6302] netlink: 'syz.1.1139': attribute type 10 has an invalid length.
[   76.606549][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888118059c00: rx timeout, send abort
[   76.617482][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888118059c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   76.741402][   T29] kauditd_printk_skb: 5419 callbacks suppressed
[   76.741416][   T29] audit: type=1326 audit(1734046999.828:48597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6313 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   76.801007][   T29] audit: type=1326 audit(1734046999.828:48598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6313 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   76.824558][   T29] audit: type=1326 audit(1734046999.828:48599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6313 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   76.848105][   T29] audit: type=1326 audit(1734046999.828:48600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6313 comm="syz.3.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   76.871631][   T29] audit: type=1400 audit(1734046999.868:48601): avc:  denied  { setopt } for  pid=6306 comm="syz.1.1140" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   76.892365][   T29] audit: type=1326 audit(1734046999.878:48602): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6306 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f645d19 code=0x7ffc0000
[   76.916218][   T29] audit: type=1326 audit(1734046999.878:48603): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6306 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f645d19 code=0x7ffc0000
[   76.941716][   T29] audit: type=1326 audit(1734046999.918:48604): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6306 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2a8f645d19 code=0x7ffc0000
[   76.965537][   T29] audit: type=1326 audit(1734046999.918:48605): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6306 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a8f645d19 code=0x7ffc0000
[   76.989390][   T29] audit: type=1326 audit(1734046999.918:48606): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6306 comm="syz.1.1140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a8f645d19 code=0x7ffc0000
[   77.202473][ T6332] FAULT_INJECTION: forcing a failure.
[   77.202473][ T6332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.215635][ T6332] CPU: 0 UID: 0 PID: 6332 Comm: syz.0.1150 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   77.226404][ T6332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.236468][ T6332] Call Trace:
[   77.239990][ T6332]  <TASK>
[   77.242918][ T6332]  dump_stack_lvl+0xf2/0x150
[   77.247627][ T6332]  dump_stack+0x15/0x1a
[   77.251788][ T6332]  should_fail_ex+0x223/0x230
[   77.254493][ T6335] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1151'.
[   77.256465][ T6332]  should_fail+0xb/0x10
[   77.269584][ T6332]  should_fail_usercopy+0x1a/0x20
[   77.274629][ T6332]  _copy_from_user+0x1e/0xb0
[   77.279315][ T6332]  get_user_ifreq+0x8c/0x160
[   77.283995][ T6332]  sock_ioctl+0x539/0x600
[   77.288401][ T6332]  ? __pfx_sock_ioctl+0x10/0x10
[   77.293255][ T6332]  __se_sys_ioctl+0xc9/0x140
[   77.297928][ T6332]  __x64_sys_ioctl+0x43/0x50
[   77.302538][ T6332]  x64_sys_call+0x1690/0x2dc0
[   77.307263][ T6332]  do_syscall_64+0xc9/0x1c0
[   77.311768][ T6332]  ? clear_bhb_loop+0x55/0xb0
[   77.316450][ T6332]  ? clear_bhb_loop+0x55/0xb0
[   77.321178][ T6332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.327083][ T6332] RIP: 0033:0x7fdec49b5d19
[   77.331532][ T6332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.351221][ T6332] RSP: 002b:00007fdec3021038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.359644][ T6332] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b5d19
[   77.367669][ T6332] RDX: 0000000020000080 RSI: 00000000000089f3 RDI: 0000000000000007
[   77.375644][ T6332] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   77.383619][ T6332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.391745][ T6332] R13: 0000000000000000 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   77.399733][ T6332]  </TASK>
[   77.438955][ T6340] loop4: detected capacity change from 0 to 512
[   77.478047][ T6340] EXT4-fs (loop4): too many log groups per flexible block group
[   77.485793][ T6340] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   77.504914][ T6340] EXT4-fs (loop4): mount failed
[   77.535476][ T6355] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   77.550692][ T6355] ªªªªªª: renamed from syzkaller0
[   77.560842][ T6340] netlink: 'syz.4.1152': attribute type 10 has an invalid length.
[   77.575457][ T6355] tipc: Disabling bearer <eth:syzkaller0>
[   77.857067][ T6402] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   77.886900][ T6405] FAULT_INJECTION: forcing a failure.
[   77.886900][ T6405] name failslab, interval 1, probability 0, space 0, times 0
[   77.899622][ T6405] CPU: 0 UID: 0 PID: 6405 Comm: syz.4.1173 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   77.910326][ T6405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.920390][ T6405] Call Trace:
[   77.923658][ T6405]  <TASK>
[   77.926578][ T6405]  dump_stack_lvl+0xf2/0x150
[   77.931206][ T6405]  dump_stack+0x15/0x1a
[   77.935422][ T6405]  should_fail_ex+0x223/0x230
[   77.940156][ T6405]  should_failslab+0x8f/0xb0
[   77.944782][ T6405]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   77.950563][ T6405]  ? __d_alloc+0x3d/0x340
[   77.954887][ T6405]  ? selinux_inode_permission+0x341/0x410
[   77.960679][ T6405]  __d_alloc+0x3d/0x340
[   77.964849][ T6405]  d_alloc_parallel+0x54/0xc60
[   77.969607][ T6405]  ? __rcu_read_unlock+0x4e/0x70
[   77.974541][ T6405]  ? __d_lookup+0x342/0x370
[   77.979095][ T6405]  ? make_vfsuid+0x52/0xa0
[   77.983516][ T6405]  ? down_read+0x171/0x4b0
[   77.987939][ T6405]  path_openat+0x6c8/0x1fa0
[   77.992519][ T6405]  ? _parse_integer_limit+0x167/0x180
[   77.997965][ T6405]  do_filp_open+0x107/0x230
[   78.002542][ T6405]  ? __pfx_kfree_link+0x10/0x10
[   78.007401][ T6405]  do_sys_openat2+0xab/0x120
[   78.012023][ T6405]  __x64_sys_openat+0xf3/0x120
[   78.016780][ T6405]  x64_sys_call+0x2b30/0x2dc0
[   78.021518][ T6405]  do_syscall_64+0xc9/0x1c0
[   78.026012][ T6405]  ? clear_bhb_loop+0x55/0xb0
[   78.030720][ T6405]  ? clear_bhb_loop+0x55/0xb0
[   78.035472][ T6405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.041435][ T6405] RIP: 0033:0x7fae8c734680
[   78.045924][ T6405] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   78.065530][ T6405] RSP: 002b:00007fae8ada6f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   78.073995][ T6405] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fae8c734680
[   78.081975][ T6405] RDX: 0000000000000002 RSI: 00007fae8ada6fa0 RDI: 00000000ffffff9c
[   78.090008][ T6405] RBP: 00007fae8ada6fa0 R08: 0000000000000000 R09: 0000000000000000
[   78.098056][ T6405] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   78.106067][ T6405] R13: 0000000000000000 R14: 00007fae8c925fa0 R15: 00007ffd00b17068
[   78.114068][ T6405]  </TASK>
[   78.163912][ T6414] netlink: 'syz.1.1176': attribute type 10 has an invalid length.
[   78.177441][ T6416] netlink: 'syz.4.1177': attribute type 49 has an invalid length.
[   78.185379][ T6416] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1177'.
[   78.279581][ T6433] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1184'.
[   78.288689][ T6433] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1184'.
[   78.297703][ T6439] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   78.363757][ T6444] loop2: detected capacity change from 0 to 512
[   78.421112][ T6444] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[   78.462301][ T6457] loop4: detected capacity change from 0 to 512
[   78.489766][ T6457] EXT4-fs (loop4): too many log groups per flexible block group
[   78.497545][ T6457] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   78.517481][ T6463] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1195'.
[   78.532643][ T6457] EXT4-fs (loop4): mount failed
[   78.557166][ T6457] netlink: 'syz.4.1192': attribute type 10 has an invalid length.
[   78.752453][ T6493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1206'.
[   79.198840][ T6558] blktrace: Concurrent blktraces are not allowed on loop7
[   79.388725][ T6584] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1242'.
[   79.419571][ T6586] bond0: entered promiscuous mode
[   79.424712][ T6586] bridge0: entered promiscuous mode
[   79.619510][ T6600] loop3: detected capacity change from 0 to 512
[   79.711737][ T6613] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1259'.
[   79.720858][ T6613] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1259'.
[   79.768016][ T6619] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1261'.
[   79.778294][ T6619] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6619 comm=syz.3.1261
[   79.847840][ T6627] FAULT_INJECTION: forcing a failure.
[   79.847840][ T6627] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   79.861162][ T6627] CPU: 1 UID: 0 PID: 6627 Comm: syz.2.1266 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   79.871851][ T6627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.881913][ T6627] Call Trace:
[   79.885252][ T6627]  <TASK>
[   79.888188][ T6627]  dump_stack_lvl+0xf2/0x150
[   79.892863][ T6627]  dump_stack+0x15/0x1a
[   79.897084][ T6627]  should_fail_ex+0x223/0x230
[   79.901860][ T6627]  should_fail_alloc_page+0xfd/0x110
[   79.907158][ T6627]  __alloc_pages_noprof+0x109/0x340
[   79.912447][ T6627]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   79.917825][ T6627]  alloc_pages_noprof+0xe1/0x100
[   79.922841][ T6627]  __pmd_alloc+0x4b/0x420
[   79.927170][ T6627]  handle_mm_fault+0x1a77/0x2ac0
[   79.932166][ T6627]  exc_page_fault+0x296/0x650
[   79.936920][ T6627]  asm_exc_page_fault+0x26/0x30
[   79.941906][ T6627] RIP: 0010:rep_movs_alternative+0x30/0x70
[   79.947777][ T6627] Code: f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08
[   79.967377][ T6627] RSP: 0018:ffffc9000112fd58 EFLAGS: 00050206
[   79.973437][ T6627] RAX: ffff8881239eed78 RBX: 0000000020000280 RCX: 000000000000001c
[   79.981400][ T6627] RDX: 0000000000000001 RSI: 0000000020000280 RDI: ffffc9000112fe20
[   79.989406][ T6627] RBP: 000000000000001c R08: 0000000080000000 R09: 0000000000000000
[   79.997369][ T6627] R10: 0001c9000112fe20 R11: 0001c9000112fe3b R12: 0000000020000280
[   80.005361][ T6627] R13: ffff888116b49b40 R14: ffffc9000112fe20 R15: 000000000000001c
[   80.013329][ T6627]  _copy_from_user+0x73/0xb0
[   80.018001][ T6627]  move_addr_to_kernel+0x82/0x120
[   80.023025][ T6627]  __sys_sendto+0x12e/0x230
[   80.027595][ T6627]  __x64_sys_sendto+0x78/0x90
[   80.032331][ T6627]  x64_sys_call+0x29fa/0x2dc0
[   80.037056][ T6627]  do_syscall_64+0xc9/0x1c0
[   80.041553][ T6627]  ? clear_bhb_loop+0x55/0xb0
[   80.046234][ T6627]  ? clear_bhb_loop+0x55/0xb0
[   80.050952][ T6627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.056858][ T6627] RIP: 0033:0x7f1cbf9b5d19
[   80.061263][ T6627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.080923][ T6627] RSP: 002b:00007f1cbe027038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   80.089353][ T6627] RAX: ffffffffffffffda RBX: 00007f1cbfba5fa0 RCX: 00007f1cbf9b5d19
[   80.097399][ T6627] RDX: 0000000000000005 RSI: 0000000020000380 RDI: 0000000000000003
[   80.105437][ T6627] RBP: 00007f1cbe027090 R08: 0000000020000280 R09: 000000000000001c
[   80.113477][ T6627] R10: 0000000000040800 R11: 0000000000000246 R12: 0000000000000001
[   80.121451][ T6627] R13: 0000000000000000 R14: 00007f1cbfba5fa0 R15: 00007ffc51f527e8
[   80.129500][ T6627]  </TASK>
[   80.151922][ T6619] loop3: detected capacity change from 0 to 512
[   80.161982][ T6619] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   80.221534][ T6619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.267711][ T6619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.276668][ T6619] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.303812][ T6644] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   80.312951][ T6644] ªªªªªª: renamed from syzkaller0
[   80.326707][ T6644] tipc: Disabling bearer <eth:syzkaller0>
[   80.377771][ T6654] FAULT_INJECTION: forcing a failure.
[   80.377771][ T6654] name failslab, interval 1, probability 0, space 0, times 0
[   80.390510][ T6654] CPU: 1 UID: 0 PID: 6654 Comm: syz.0.1276 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   80.401222][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.411284][ T6654] Call Trace:
[   80.414556][ T6654]  <TASK>
[   80.417570][ T6654]  dump_stack_lvl+0xf2/0x150
[   80.422173][ T6654]  dump_stack+0x15/0x1a
[   80.426384][ T6654]  should_fail_ex+0x223/0x230
[   80.431076][ T6654]  should_failslab+0x8f/0xb0
[   80.435665][ T6654]  kmem_cache_alloc_noprof+0x52/0x320
[   80.441096][ T6654]  ? skb_clone+0x154/0x1f0
[   80.445522][ T6654]  skb_clone+0x154/0x1f0
[   80.449811][ T6654]  nfnetlink_rcv+0x2de/0x15d0
[   80.454487][ T6654]  ? kmem_cache_free+0xdc/0x2d0
[   80.459476][ T6654]  ? nlmon_xmit+0x51/0x60
[   80.463856][ T6654]  ? __kfree_skb+0x102/0x150
[   80.468437][ T6654]  ? consume_skb+0x49/0x160
[   80.472932][ T6654]  ? nlmon_xmit+0x51/0x60
[   80.477394][ T6654]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   80.482672][ T6654]  ? __dev_queue_xmit+0xb6e/0x2090
[   80.487823][ T6654]  ? ref_tracker_free+0x3a5/0x410
[   80.492883][ T6654]  ? __dev_queue_xmit+0x186/0x2090
[   80.498020][ T6654]  netlink_unicast+0x599/0x670
[   80.502781][ T6654]  netlink_sendmsg+0x5cc/0x6e0
[   80.507616][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.512899][ T6654]  __sock_sendmsg+0x140/0x180
[   80.517579][ T6654]  ____sys_sendmsg+0x312/0x410
[   80.522419][ T6654]  __sys_sendmsg+0x19d/0x230
[   80.527013][ T6654]  __x64_sys_sendmsg+0x46/0x50
[   80.531771][ T6654]  x64_sys_call+0x2734/0x2dc0
[   80.536522][ T6654]  do_syscall_64+0xc9/0x1c0
[   80.541017][ T6654]  ? clear_bhb_loop+0x55/0xb0
[   80.545684][ T6654]  ? clear_bhb_loop+0x55/0xb0
[   80.550350][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.556267][ T6654] RIP: 0033:0x7fdec49b5d19
[   80.560736][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.580354][ T6654] RSP: 002b:00007fdec3021038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.588817][ T6654] RAX: ffffffffffffffda RBX: 00007fdec4ba5fa0 RCX: 00007fdec49b5d19
[   80.596815][ T6654] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[   80.604781][ T6654] RBP: 00007fdec3021090 R08: 0000000000000000 R09: 0000000000000000
[   80.612824][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.620788][ T6654] R13: 0000000000000000 R14: 00007fdec4ba5fa0 R15: 00007fff7251bd18
[   80.628854][ T6654]  </TASK>
[   80.669954][ T6660] loop0: detected capacity change from 0 to 764
[   80.679220][ T6660] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   80.792324][ T6664] xt_hashlimit: max too large, truncated to 1048576
[   80.926770][ T3461] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.985987][ T3461] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.049535][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.063698][ T3461] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.145364][ T3461] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.163233][ T6666] chnl_net:caif_netlink_parms(): no params data found
[   81.183302][ T6689] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1288'.
[   81.192458][ T6689] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1288'.
[   81.255260][ T6666] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.262342][ T6666] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.270653][ T6666] bridge_slave_0: entered allmulticast mode
[   81.278302][ T6666] bridge_slave_0: entered promiscuous mode
[   81.309659][ T6666] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.316845][ T6666] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.324045][ T6666] bridge_slave_1: entered allmulticast mode
[   81.330554][ T6666] bridge_slave_1: entered promiscuous mode
[   81.348224][ T6704] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1293'.
[   81.361761][ T3461] bridge_slave_1: left allmulticast mode
[   81.367465][ T3461] bridge_slave_1: left promiscuous mode
[   81.373795][ T3461] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.381105][ T6704] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1293'.
[   81.391154][ T3461] bridge_slave_0: left allmulticast mode
[   81.396900][ T3461] bridge_slave_0: left promiscuous mode
[   81.402514][ T3461] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.427826][ T6704] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1293'.
[   81.475617][ T3461] bond0 (unregistering): (slave bridge0): Releasing backup interface
[   81.546058][ T3461] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.555886][ T3461] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.567361][ T3461] bond0 (unregistering): Released all slaves
[   81.579653][ T6666] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.597166][ T6666] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.641705][ T3461] tipc: Left network mode
[   81.642419][ T6666] team0: Port device team_slave_0 added
[   81.652712][ T6666] team0: Port device team_slave_1 added
[   81.661517][ T3461] hsr_slave_0: left promiscuous mode
[   81.668996][ T3461] hsr_slave_1: left promiscuous mode
[   81.682417][ T3461] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.689967][ T3461] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.714167][ T3461] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.721597][ T3461] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.733425][ T3461] veth1_macvtap: left promiscuous mode
[   81.738984][ T3461] veth0_macvtap: left promiscuous mode
[   81.744634][ T3461] veth1_vlan: left promiscuous mode
[   81.749882][ T3461] veth0_vlan: left promiscuous mode
[   81.771130][   T29] kauditd_printk_skb: 881 callbacks suppressed
[   81.771145][   T29] audit: type=1400 audit(1734047004.858:49488): avc:  denied  { connect } for  pid=6743 comm="syz.1.1308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   81.825915][   T29] audit: type=1400 audit(1734047004.908:49489): avc:  denied  { write } for  pid=6722 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=414 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   81.849061][   T29] audit: type=1400 audit(1734047004.908:49490): avc:  denied  { add_name } for  pid=6722 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   81.871710][   T29] audit: type=1400 audit(1734047004.908:49491): avc:  denied  { create } for  pid=6722 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.894348][   T29] audit: type=1400 audit(1734047004.908:49492): avc:  denied  { write } for  pid=6722 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth1.link" dev="tmpfs" ino=5931 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.920647][   T29] audit: type=1400 audit(1734047004.908:49493): avc:  denied  { append } for  pid=6722 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" dev="tmpfs" ino=5931 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   81.951612][   T29] audit: type=1326 audit(1734047004.918:49494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6740 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   81.975158][   T29] audit: type=1326 audit(1734047004.918:49495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6740 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   81.998734][   T29] audit: type=1326 audit(1734047004.918:49496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6740 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   82.022274][   T29] audit: type=1326 audit(1734047004.928:49497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6740 comm="syz.3.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fccd4f95d19 code=0x7ffc0000
[   82.142830][ T3461] team0 (unregistering): Port device team_slave_1 removed
[   82.159092][ T3461] team0 (unregistering): Port device team_slave_0 removed
[   82.225460][ T6763] wireguard1: entered promiscuous mode
[   82.231038][ T6763] wireguard1: entered allmulticast mode
[   82.247057][ T6666] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.254074][ T6666] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.280075][ T6666] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.361028][ T6666] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.368094][ T6666] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.394093][ T6666] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.443482][ T6666] hsr_slave_0: entered promiscuous mode
[   82.464942][ T6666] hsr_slave_1: entered promiscuous mode
[   82.661756][ T6666] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   82.670660][ T6666] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   82.691628][ T6666] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   82.698894][ T3461] IPVS: stop unused estimator thread 0...
[   82.708203][ T6666] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   82.727037][ T6816] @: renamed from bond0
[   82.747096][ T6819] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   82.762928][ T6819] vlan0: left allmulticast mode
[   82.767849][ T6819] vlan0: left promiscuous mode
[   82.878601][ T6827] wireguard0: entered promiscuous mode
[   82.884197][ T6827] wireguard0: entered allmulticast mode
[   82.903244][ T6835] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   82.925659][ T6666] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.938564][ T6666] 8021q: adding VLAN 0 to HW filter on device team0
[   82.947214][  T371] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.954327][  T371] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.969230][ T6835] ªªªªªª: renamed from syzkaller0
[   82.975963][ T6835] tipc: Disabling bearer <eth:syzkaller0>
[   82.997179][ T3461] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.004257][ T3461] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.023360][ T6666] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   83.033821][ T6666] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.111204][ T6666] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.138457][ T6863] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   83.152168][ T6863] ªªªªªª: renamed from syzkaller0
[   83.168238][ T6863] tipc: Disabling bearer <eth:syzkaller0>
[   83.310550][ T6666] veth0_vlan: entered promiscuous mode
[   83.338776][ T6666] veth1_vlan: entered promiscuous mode
[   83.359908][ T6666] veth0_macvtap: entered promiscuous mode
[   83.372970][ T6666] veth1_macvtap: entered promiscuous mode
[   83.403528][ T6666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.414018][ T6666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.423990][ T6666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.434571][ T6666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.476528][ T6666] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.492041][ T6921] wireguard0: entered promiscuous mode
[   83.497611][ T6921] wireguard0: entered allmulticast mode
[   83.536787][ T6666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.547277][ T6666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.557136][ T6666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.567608][ T6666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.577977][ T6666] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.587215][ T6666] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.596011][ T6666] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.604806][ T6666] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.613495][ T6666] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.764042][ T6926] loop2: detected capacity change from 0 to 8192
[   83.804214][ T6926]  loop2: p1 p2 p3 p4[EZD]
[   83.825608][ T6926] loop2: p1 size 16128 extends beyond EOD, truncated
[   83.863512][ T6926] loop2: p3 start 458783 is beyond EOD, truncated
[   83.870022][ T6926] loop2: p4 size 65536 extends beyond EOD, truncated
[   84.066042][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888117e50a00: rx timeout, send abort
[   84.074414][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888117e50a00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   84.159902][ T6997] loop3: detected capacity change from 0 to 2048
[   84.223848][ T6997] EXT4-fs (loop3): failed to initialize system zone (-117)
[   84.248061][ T6997] EXT4-fs (loop3): mount failed
[   84.352050][ T7012] loop3: detected capacity change from 0 to 512
[   84.374273][ T7012] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.380951][ T7012] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.395273][ T7012] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   84.448292][ T7012] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   84.456310][ T7012] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c11c, mo2=0002]
[   84.459127][ T7025] loop4: detected capacity change from 0 to 764
[   84.467895][ T7012] EXT4-fs (loop3): orphan cleanup on readonly fs
[   84.483227][ T7025] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   84.484105][ T7012] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1366: Failed to acquire dquot type 1
[   84.516630][ T7012] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1366: Invalid block bitmap block 0 in block_group 0
[   84.557069][ T7012] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1366: Invalid block bitmap block 0 in block_group 0
[   84.575156][ T7012] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1366: Invalid block bitmap block 0 in block_group 0
[   84.604022][ T7012] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1366: Failed to acquire dquot type 1
[   84.630515][ T7012] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1366: Failed to acquire dquot type 1
[   84.642702][ T7012] EXT4-fs (loop3): 1 orphan inode deleted
[   84.649103][ T7012] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   84.684582][ T7045] FAULT_INJECTION: forcing a failure.
[   84.684582][ T7045] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.697785][ T7045] CPU: 1 UID: 0 PID: 7045 Comm: syz.5.1379 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   84.708545][ T7045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   84.718596][ T7045] Call Trace:
[   84.721865][ T7045]  <TASK>
[   84.724785][ T7045]  dump_stack_lvl+0xf2/0x150
[   84.729446][ T7045]  dump_stack+0x15/0x1a
[   84.733625][ T7045]  should_fail_ex+0x223/0x230
[   84.738315][ T7045]  should_fail+0xb/0x10
[   84.742494][ T7045]  should_fail_usercopy+0x1a/0x20
[   84.747515][ T7045]  strncpy_from_user+0x25/0x210
[   84.752367][ T7045]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   84.758064][ T7045]  ? getname_flags+0x81/0x3b0
[   84.762743][ T7045]  getname_flags+0xb0/0x3b0
[   84.767259][ T7045]  getname+0x17/0x20
[   84.771146][ T7045]  do_sys_openat2+0x67/0x120
[   84.775821][ T7045]  __x64_sys_openat+0xf3/0x120
[   84.780591][ T7045]  x64_sys_call+0x2b30/0x2dc0
[   84.785340][ T7045]  do_syscall_64+0xc9/0x1c0
[   84.789841][ T7045]  ? clear_bhb_loop+0x55/0xb0
[   84.794507][ T7045]  ? clear_bhb_loop+0x55/0xb0
[   84.799179][ T7045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.805184][ T7045] RIP: 0033:0x7f58c76c4680
[   84.809698][ T7045] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   84.829313][ T7045] RSP: 002b:00007f58c5d36f00 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   84.837774][ T7045] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f58c76c4680
[   84.845737][ T7045] RDX: 0000000000000000 RSI: 00007f58c5d36fa0 RDI: 00000000ffffff9c
[   84.853712][ T7045] RBP: 00007f58c5d36fa0 R08: 0000000000000000 R09: 00007f58c5d36d17
[   84.861726][ T7045] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   84.869835][ T7045] R13: 0000000000000000 R14: 00007f58c78b5fa0 R15: 00007ffc9f9cc098
[   84.877806][ T7045]  </TASK>
[   84.925957][ T7051] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   84.934601][ T7051] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.951933][ T7012] syz.3.1366 (7012) used greatest stack depth: 8968 bytes left
[   84.960548][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.031684][ T7062] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1387'.
[   85.061321][ T7065] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   85.071565][ T7065] ªªªªªª: renamed from syzkaller0
[   85.078669][ T7065] tipc: Disabling bearer <eth:syzkaller0>
[   85.153090][ T7071] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1389'.
[   85.162101][ T7071] netem: invalid attributes len -13
[   85.167411][ T7071] netem: change failed
[   85.178846][ T7073] loop2: detected capacity change from 0 to 764
[   85.190247][ T7073] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   85.238849][ T7077] smc: net device bond0 applied user defined pnetid SYZ0
[   85.267809][ T7079] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[   85.329122][ T7086] 9pnet_fd: Insufficient options for proto=fd
[   85.362026][ T7090] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   85.367084][ T7092] loop3: detected capacity change from 0 to 1024
[   85.438543][ T7097] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   85.450397][ T7100] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1403'.
[   85.459461][ T7100] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1403'.
[   85.469287][ T7097] ªªªªªª: renamed from syzkaller0
[   85.475817][ T7097] tipc: Disabling bearer <eth:syzkaller0>
[   85.637566][ T7118] loop3: detected capacity change from 0 to 764
[   85.678473][ T7111] loop5: detected capacity change from 0 to 8192
[   85.682893][ T7118] FAULT_INJECTION: forcing a failure.
[   85.682893][ T7118] name failslab, interval 1, probability 0, space 0, times 0
[   85.697582][ T7118] CPU: 0 UID: 0 PID: 7118 Comm: syz.3.1410 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   85.702397][ T7111] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[   85.708258][ T7118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   85.708272][ T7118] Call Trace:
[   85.708279][ T7118]  <TASK>
[   85.708287][ T7118]  dump_stack_lvl+0xf2/0x150
[   85.716113][ T7111] FAT-fs (loop5): Filesystem has been set read-only
[   85.726125][ T7118]  dump_stack+0x15/0x1a
[   85.726159][ T7118]  should_fail_ex+0x223/0x230
[   85.726182][ T7118]  should_failslab+0x8f/0xb0
[   85.756974][ T7118]  kmem_cache_alloc_noprof+0x52/0x320
[   85.762356][ T7118]  ? getname_flags+0x81/0x3b0
[   85.767043][ T7118]  getname_flags+0x81/0x3b0
[   85.771548][ T7118]  getname+0x17/0x20
[   85.775443][ T7118]  do_sys_openat2+0x67/0x120
[   85.780036][ T7118]  __x64_sys_openat+0xf3/0x120
[   85.784802][ T7118]  x64_sys_call+0x2b30/0x2dc0
[   85.789473][ T7118]  do_syscall_64+0xc9/0x1c0
[   85.793975][ T7118]  ? clear_bhb_loop+0x55/0xb0
[   85.798656][ T7118]  ? clear_bhb_loop+0x55/0xb0
[   85.803332][ T7118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.809285][ T7118] RIP: 0033:0x7fccd4f95d19
[   85.813699][ T7118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.833389][ T7118] RSP: 002b:00007fccd3601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   85.840369][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888117d9e600: rx timeout, send abort
[   85.841857][ T7118] RAX: ffffffffffffffda RBX: 00007fccd5185fa0 RCX: 00007fccd4f95d19
[   85.841872][ T7118] RDX: 00000000001c1880 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   85.841886][ T7118] RBP: 00007fccd3601090 R08: 0000000000000000 R09: 0000000000000000
[   85.850243][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888117d9e600: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   85.858079][ T7118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.858092][ T7118] R13: 0000000000000000 R14: 00007fccd5185fa0 R15: 00007ffd7a001ba8
[   85.858142][ T7118]  </TASK>
[   85.915856][ T7123] wireguard1: entered promiscuous mode
[   85.921368][ T7123] wireguard1: entered allmulticast mode
[   85.941338][ T7133] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1417'.
[   85.971541][ T7133] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7133 comm=syz.4.1417
[   86.008676][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   86.014990][ T7133] loop4: detected capacity change from 0 to 512
[   86.037565][ T7133] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   86.066511][ T7133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.085944][ T7133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.094880][ T7133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.311809][ T7176] tipc: Started in network mode
[   86.316786][ T7176] tipc: Node identity d29feb4b1613, cluster identity 4711
[   86.324319][ T7176] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   86.349888][ T7176] ªªªªªª: renamed from syzkaller0
[   86.361997][ T7176] tipc: Disabling bearer <eth:syzkaller0>
[   86.375789][ T7178] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   86.387053][ T7178] ªªªªªª: renamed from syzkaller0
[   86.393653][ T7178] tipc: Disabling bearer <eth:syzkaller0>
[   86.551278][ T7194] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   86.565129][ T7194] ªªªªªª: renamed from syzkaller0
[   86.573376][ T7194] tipc: Disabling bearer <eth:syzkaller0>
[   86.617366][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.829410][   T29] kauditd_printk_skb: 1731 callbacks suppressed
[   86.829426][   T29] audit: type=1400 audit(1734047009.918:51223): avc:  denied  { create } for  pid=7207 comm="syz.3.1444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   86.869782][ T7210] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   86.879600][   T29] audit: type=1400 audit(1734047009.948:51224): avc:  denied  { append } for  pid=2981 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   86.914391][ T7210] ªªªªªª: renamed from syzkaller0
[   86.922313][ T7210] tipc: Disabling bearer <eth:syzkaller0>
[   86.925557][   T29] audit: type=1400 audit(1734047010.008:51225): avc:  denied  { ioctl } for  pid=7207 comm="syz.3.1444" path="socket:[16632]" dev="sockfs" ino=16632 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   86.963991][   T29] audit: type=1400 audit(1734047010.048:51226): avc:  denied  { read } for  pid=2981 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   86.986159][   T29] audit: type=1400 audit(1734047010.048:51227): avc:  denied  { search } for  pid=2981 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   87.007831][   T29] audit: type=1400 audit(1734047010.048:51228): avc:  denied  { open } for  pid=2981 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   87.030451][   T29] audit: type=1400 audit(1734047010.048:51229): avc:  denied  { getattr } for  pid=2981 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   87.060326][ T7213] loop2: detected capacity change from 0 to 512
[   87.060394][   T29] audit: type=1400 audit(1734047010.138:51230): avc:  denied  { open } for  pid=7211 comm="syz.2.1445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   87.085984][   T29] audit: type=1400 audit(1734047010.138:51231): avc:  denied  { kernel } for  pid=7211 comm="syz.2.1445" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   87.105481][   T29] audit: type=1400 audit(1734047010.148:51232): avc:  denied  { setcheckreqprot } for  pid=7211 comm="syz.2.1445" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   87.135217][ T7213] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1445: corrupted xattr block 255: invalid header
[   87.151023][ T7213] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[   87.168930][ T7213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.198447][ T7213] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1445: corrupted xattr block 255: invalid header
[   87.245023][ T7213] SELinux: (dev loop2, type ext4) getxattr errno 117
[   87.253159][ T7213] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.451163][ T7235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1455'.
[   87.631905][ T7250] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[   87.638589][ T7250] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   87.646065][ T7250] vhci_hcd vhci_hcd.0: Device attached
[   87.734928][ T7250] netlink: 'syz.3.1461': attribute type 2 has an invalid length.
[   87.742681][ T7250] netlink: 'syz.3.1461': attribute type 1 has an invalid length.
[   87.750428][ T7250] netlink: 'syz.3.1461': attribute type 1 has an invalid length.
[   87.759487][ T7251] vhci_hcd: connection closed
[   87.759734][ T1724] vhci_hcd: stop threads
[   87.768711][ T1724] vhci_hcd: release socket
[   87.773131][ T1724] vhci_hcd: disconnect device
[   87.824015][   T35] vhci_hcd: vhci_device speed not set
[   88.247589][ T7261] netlink: 'syz.1.1465': attribute type 4 has an invalid length.
[   88.528885][ T7290] FAULT_INJECTION: forcing a failure.
[   88.528885][ T7290] name failslab, interval 1, probability 0, space 0, times 0
[   88.541615][ T7290] CPU: 0 UID: 0 PID: 7290 Comm: syz.5.1478 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   88.552294][ T7290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   88.562351][ T7290] Call Trace:
[   88.565626][ T7290]  <TASK>
[   88.568675][ T7290]  dump_stack_lvl+0xf2/0x150
[   88.573276][ T7290]  dump_stack+0x15/0x1a
[   88.577523][ T7290]  should_fail_ex+0x223/0x230
[   88.582206][ T7290]  should_failslab+0x8f/0xb0
[   88.586811][ T7290]  kmem_cache_alloc_noprof+0x52/0x320
[   88.592190][ T7290]  ? getname_flags+0x81/0x3b0
[   88.596871][ T7290]  getname_flags+0x81/0x3b0
[   88.601453][ T7290]  getname+0x17/0x20
[   88.605354][ T7290]  do_sys_openat2+0x67/0x120
[   88.609962][ T7290]  __x64_sys_openat+0xf3/0x120
[   88.614820][ T7290]  x64_sys_call+0x2b30/0x2dc0
[   88.619505][ T7290]  do_syscall_64+0xc9/0x1c0
[   88.624061][ T7290]  ? clear_bhb_loop+0x55/0xb0
[   88.628745][ T7290]  ? clear_bhb_loop+0x55/0xb0
[   88.633426][ T7290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.639380][ T7290] RIP: 0033:0x7f58c76c4680
[   88.643846][ T7290] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   88.663485][ T7290] RSP: 002b:00007f58c5d36f60 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   88.671948][ T7290] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f58c76c4680
[   88.679945][ T7290] RDX: 0000000000000000 RSI: 00007f58c7741b38 RDI: 00000000ffffff9c
[   88.687924][ T7290] RBP: 00007f58c7741b38 R08: 0000000000000000 R09: 0000000000000000
[   88.695913][ T7290] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   88.703912][ T7290] R13: 0000000000000000 R14: 00007f58c78b5fa0 R15: 00007ffc9f9cc098
[   88.711895][ T7290]  </TASK>
[   88.968651][ T7315] loop4: detected capacity change from 0 to 764
[   88.977805][ T7315] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   89.099379][ T7322] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   89.106760][ T7322] ªªªªªª: renamed from syzkaller0
[   89.113413][ T7322] tipc: Disabling bearer <eth:syzkaller0>
[   89.343368][ T7341] netlink: 'syz.1.1498': attribute type 10 has an invalid length.
[   89.387493][ T7343] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1499'.
[   89.458035][ T7349] wireguard0: entered promiscuous mode
[   89.463593][ T7349] wireguard0: entered allmulticast mode
[   89.656767][ T7359] wireguard0: entered promiscuous mode
[   89.662276][ T7359] wireguard0: entered allmulticast mode
[   89.980998][ T7376] loop5: detected capacity change from 0 to 512
[   90.088150][ T7376] EXT4-fs (loop5): failed to open journal device unknown-block(0,0) -6
[   90.187641][ T7394] netlink: 'syz.1.1516': attribute type 10 has an invalid length.
[   90.316004][ T7410] loop3: detected capacity change from 0 to 256
[   90.351574][ T7414] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   90.357891][ T7410] loop3: detected capacity change from 0 to 1024
[   90.370972][ T7414] ªªªªªª: renamed from syzkaller0
[   90.377375][ T7410] EXT4-fs: Invalid want_extra_isize 3
[   90.385858][ T7414] tipc: Disabling bearer <eth:syzkaller0>
[   90.418431][ T7415] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1523'.
[   90.427486][ T7415] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1523'.
[   90.503095][ T7419] loop2: detected capacity change from 0 to 764
[   90.527943][ T7419] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   90.565404][ T7424] FAULT_INJECTION: forcing a failure.
[   90.565404][ T7424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.578623][ T7424] CPU: 0 UID: 0 PID: 7424 Comm: syz.3.1528 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   90.589303][ T7424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.599404][ T7424] Call Trace:
[   90.602756][ T7424]  <TASK>
[   90.605697][ T7424]  dump_stack_lvl+0xf2/0x150
[   90.610314][ T7424]  dump_stack+0x15/0x1a
[   90.614498][ T7424]  should_fail_ex+0x223/0x230
[   90.619258][ T7424]  should_fail+0xb/0x10
[   90.623413][ T7424]  should_fail_usercopy+0x1a/0x20
[   90.628444][ T7424]  _copy_from_user+0x1e/0xb0
[   90.633129][ T7424]  memdup_user+0x64/0xc0
[   90.637423][ T7424]  strndup_user+0x68/0xa0
[   90.641793][ T7424]  __se_sys_mount+0x4e/0x2d0
[   90.646438][ T7424]  ? fput+0x1c4/0x200
[   90.650440][ T7424]  ? ksys_write+0x176/0x1b0
[   90.654990][ T7424]  __x64_sys_mount+0x67/0x80
[   90.659601][ T7424]  x64_sys_call+0x2c84/0x2dc0
[   90.664324][ T7424]  do_syscall_64+0xc9/0x1c0
[   90.668834][ T7424]  ? clear_bhb_loop+0x55/0xb0
[   90.673749][ T7424]  ? clear_bhb_loop+0x55/0xb0
[   90.678437][ T7424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.684435][ T7424] RIP: 0033:0x7fccd4f95d19
[   90.688869][ T7424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.708617][ T7424] RSP: 002b:00007fccd3601038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   90.717046][ T7424] RAX: ffffffffffffffda RBX: 00007fccd5185fa0 RCX: 00007fccd4f95d19
[   90.725069][ T7424] RDX: 0000000020000400 RSI: 00000000200003c0 RDI: 0000000000000000
[   90.733073][ T7424] RBP: 00007fccd3601090 R08: 0000000020000080 R09: 0000000000000000
[   90.741060][ T7424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.749035][ T7424] R13: 0000000000000000 R14: 00007fccd5185fa0 R15: 00007ffd7a001ba8
[   90.757014][ T7424]  </TASK>
[   90.772667][ T7428] loop3: detected capacity change from 0 to 512
[   90.798187][ T7430] loop2: detected capacity change from 0 to 512
[   90.825599][ T7428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.834497][ T7432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1531'.
[   90.856580][ T7428] ext4 filesystem being mounted at /280/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.899772][ T7430] EXT4-fs (loop2): too many log groups per flexible block group
[   90.907592][ T7430] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   90.933974][ T7430] EXT4-fs (loop2): mount failed
[   90.942233][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.963506][ T7430] netlink: 'syz.2.1529': attribute type 10 has an invalid length.
[   91.163376][ T7443] wireguard0: entered promiscuous mode
[   91.169002][ T7443] wireguard0: entered allmulticast mode
[   91.331219][ T7466] FAULT_INJECTION: forcing a failure.
[   91.331219][ T7466] name failslab, interval 1, probability 0, space 0, times 0
[   91.343898][ T7466] CPU: 0 UID: 0 PID: 7466 Comm: syz.2.1541 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   91.354588][ T7466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.364662][ T7466] Call Trace:
[   91.367944][ T7466]  <TASK>
[   91.370871][ T7466]  dump_stack_lvl+0xf2/0x150
[   91.375623][ T7466]  dump_stack+0x15/0x1a
[   91.379823][ T7466]  should_fail_ex+0x223/0x230
[   91.384507][ T7466]  should_failslab+0x8f/0xb0
[   91.389112][ T7466]  kmem_cache_alloc_noprof+0x52/0x320
[   91.394510][ T7466]  ? getname_flags+0x81/0x3b0
[   91.399257][ T7466]  getname_flags+0x81/0x3b0
[   91.403760][ T7466]  user_path_at+0x26/0x120
[   91.408210][ T7466]  __se_sys_move_mount+0xfd/0x730
[   91.413242][ T7466]  ? fput+0x1c4/0x200
[   91.417238][ T7466]  __x64_sys_move_mount+0x67/0x80
[   91.422369][ T7466]  x64_sys_call+0x2608/0x2dc0
[   91.427047][ T7466]  do_syscall_64+0xc9/0x1c0
[   91.431578][ T7466]  ? clear_bhb_loop+0x55/0xb0
[   91.436327][ T7466]  ? clear_bhb_loop+0x55/0xb0
[   91.441003][ T7466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.446934][ T7466] RIP: 0033:0x7f1cbf9b5d19
[   91.451427][ T7466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.471042][ T7466] RSP: 002b:00007f1cbe027038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   91.479463][ T7466] RAX: ffffffffffffffda RBX: 00007f1cbfba5fa0 RCX: 00007f1cbf9b5d19
[   91.487478][ T7466] RDX: ffffffffffffff9c RSI: 0000000020000140 RDI: 0000000000000003
[   91.495468][ T7466] RBP: 00007f1cbe027090 R08: 0000000000000000 R09: 0000000000000000
[   91.503472][ T7466] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[   91.511429][ T7466] R13: 0000000000000000 R14: 00007f1cbfba5fa0 R15: 00007ffc51f527e8
[   91.519430][ T7466]  </TASK>
[   91.573201][ T7481] FAULT_INJECTION: forcing a failure.
[   91.573201][ T7481] name failslab, interval 1, probability 0, space 0, times 0
[   91.585875][ T7481] CPU: 1 UID: 0 PID: 7481 Comm: +}[@ Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   91.596097][ T7481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.606155][ T7481] Call Trace:
[   91.609451][ T7481]  <TASK>
[   91.612375][ T7481]  dump_stack_lvl+0xf2/0x150
[   91.616975][ T7481]  dump_stack+0x15/0x1a
[   91.621171][ T7481]  should_fail_ex+0x223/0x230
[   91.625926][ T7481]  should_failslab+0x8f/0xb0
[   91.630642][ T7481]  kmem_cache_alloc_node_noprof+0x59/0x320
[   91.636451][ T7481]  ? __alloc_skb+0x10b/0x310
[   91.641079][ T7481]  __alloc_skb+0x10b/0x310
[   91.645484][ T7481]  ? audit_log_start+0x34c/0x6b0
[   91.650483][ T7481]  audit_log_start+0x368/0x6b0
[   91.655241][ T7481]  audit_seccomp+0x4b/0x130
[   91.659813][ T7481]  __seccomp_filter+0x6fa/0x1180
[   91.664750][ T7481]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   91.670400][ T7481]  ? vfs_write+0x596/0x920
[   91.674849][ T7481]  ? __schedule+0x6fa/0x930
[   91.679377][ T7481]  __secure_computing+0x9f/0x1c0
[   91.684385][ T7481]  syscall_trace_enter+0xd1/0x1f0
[   91.689496][ T7481]  do_syscall_64+0xaa/0x1c0
[   91.693992][ T7481]  ? clear_bhb_loop+0x55/0xb0
[   91.698777][ T7481]  ? clear_bhb_loop+0x55/0xb0
[   91.703516][ T7481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.709450][ T7481] RIP: 0033:0x7fae8c735d19
[   91.713949][ T7481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.733625][ T7481] RSP: 002b:00007fae8ada7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[   91.742031][ T7481] RAX: ffffffffffffffda RBX: 00007fae8c925fa0 RCX: 00007fae8c735d19
[   91.750117][ T7481] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000003
[   91.758123][ T7481] RBP: 00007fae8ada7090 R08: 0000000000000000 R09: 0000000000000000
[   91.766084][ T7481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.774166][ T7481] R13: 0000000000000000 R14: 00007fae8c925fa0 R15: 00007ffd00b17068
[   91.782146][ T7481]  </TASK>
[   91.843156][   T29] kauditd_printk_skb: 10722 callbacks suppressed
[   91.843172][   T29] audit: type=1326 audit(1734047014.928:61953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cbf951f29 code=0x7ffc0000
[   91.879344][   T29] audit: type=1326 audit(1734047014.968:61954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cbf9acce7 code=0x7ffc0000
[   91.902882][   T29] audit: type=1326 audit(1734047014.968:61955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cbf951f29 code=0x7ffc0000
[   91.926337][   T29] audit: type=1326 audit(1734047014.968:61956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cbf9acce7 code=0x7ffc0000
[   91.949870][   T29] audit: type=1326 audit(1734047014.968:61957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cbf951f29 code=0x7ffc0000
[   91.973585][   T29] audit: type=1326 audit(1734047014.968:61958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cbf9acce7 code=0x7ffc0000
[   91.997015][   T29] audit: type=1326 audit(1734047014.968:61959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cbf951f29 code=0x7ffc0000
[   92.016833][ T7502] hsr0: entered promiscuous mode
[   92.020815][   T29] audit: type=1326 audit(1734047014.968:61960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cbf9acce7 code=0x7ffc0000
[   92.043977][ T7502] macsec1: entered allmulticast mode
[   92.049015][   T29] audit: type=1326 audit(1734047014.968:61961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1cbf951f29 code=0x7ffc0000
[   92.054284][ T7502] hsr0: entered allmulticast mode
[   92.077640][   T29] audit: type=1326 audit(1734047014.968:61962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7478 comm="syz.2.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1cbf9acce7 code=0x7ffc0000
[   92.082629][ T7502] hsr_slave_0: entered allmulticast mode
[   92.111716][ T7502] hsr_slave_1: entered allmulticast mode
[   92.119345][ T7503] usb usb1: usbfs: process 7503 (syz.3.1549) did not claim interface 0 before use
[   92.165039][ T7502] hsr0: left allmulticast mode
[   92.169856][ T7502] hsr_slave_0: left allmulticast mode
[   92.175363][ T7502] hsr_slave_1: left allmulticast mode
[   92.319396][ T7519] FAULT_INJECTION: forcing a failure.
[   92.319396][ T7519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.332569][ T7519] CPU: 0 UID: 0 PID: 7519 Comm: syz.5.1561 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   92.343311][ T7519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   92.353608][ T7519] Call Trace:
[   92.356913][ T7519]  <TASK>
[   92.359848][ T7519]  dump_stack_lvl+0xf2/0x150
[   92.364488][ T7519]  dump_stack+0x15/0x1a
[   92.368779][ T7519]  should_fail_ex+0x223/0x230
[   92.373461][ T7519]  should_fail+0xb/0x10
[   92.377640][ T7519]  should_fail_usercopy+0x1a/0x20
[   92.382790][ T7519]  _copy_to_user+0x20/0xa0
[   92.387213][ T7519]  simple_read_from_buffer+0xa0/0x110
[   92.392673][ T7519]  proc_fail_nth_read+0xf9/0x140
[   92.397626][ T7519]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.403311][ T7519]  vfs_read+0x1a2/0x700
[   92.407475][ T7519]  ? __rcu_read_unlock+0x4e/0x70
[   92.412433][ T7519]  ? __fget_files+0x17c/0x1c0
[   92.417126][ T7519]  ksys_read+0xe8/0x1b0
[   92.421377][ T7519]  __x64_sys_read+0x42/0x50
[   92.425888][ T7519]  x64_sys_call+0x2874/0x2dc0
[   92.430569][ T7519]  do_syscall_64+0xc9/0x1c0
[   92.435126][ T7519]  ? clear_bhb_loop+0x55/0xb0
[   92.439846][ T7519]  ? clear_bhb_loop+0x55/0xb0
[   92.444561][ T7519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.450519][ T7519] RIP: 0033:0x7f58c76c472c
[   92.454929][ T7519] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   92.474602][ T7519] RSP: 002b:00007f58c5d37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   92.483029][ T7519] RAX: ffffffffffffffda RBX: 00007f58c78b5fa0 RCX: 00007f58c76c472c
[   92.491003][ T7519] RDX: 000000000000000f RSI: 00007f58c5d370a0 RDI: 0000000000000004
[   92.499084][ T7519] RBP: 00007f58c5d37090 R08: 0000000000000000 R09: 0000000000000000
[   92.507055][ T7519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.515099][ T7519] R13: 0000000000000000 R14: 00007f58c78b5fa0 R15: 00007ffc9f9cc098
[   92.523145][ T7519]  </TASK>
[   92.724224][ T7537] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1569'.
[   92.733212][ T7537] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1569'.
[   92.758611][ T7541] loop5: detected capacity change from 0 to 512
[   92.774517][ T7541] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.781280][ T7541] EXT4-fs: Ignoring removed mblk_io_submit option
[   92.804648][ T7541] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   92.824997][ T7541] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   92.833091][ T7541] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c11c, mo2=0002]
[   92.865172][ T7541] EXT4-fs (loop5): orphan cleanup on readonly fs
[   92.882118][ T7541] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1571: Failed to acquire dquot type 1
[   92.904701][ T7541] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1571: Invalid block bitmap block 0 in block_group 0
[   92.931446][ T7541] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1571: Invalid block bitmap block 0 in block_group 0
[   92.946301][ T7541] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1571: Invalid block bitmap block 0 in block_group 0
[   92.960269][ T7541] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1571: Failed to acquire dquot type 1
[   92.974338][ T7541] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1571: Failed to acquire dquot type 1
[   93.029664][ T7541] EXT4-fs (loop5): 1 orphan inode deleted
[   93.058405][ T7541] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.062541][ T7560] ebt_among: dst integrity fail: 101
[   93.101976][ T7560] team_slave_0: entered promiscuous mode
[   93.107663][ T7560] team_slave_1: entered promiscuous mode
[   93.125133][ T7560] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   93.131461][ T7541] syz.5.1571 (7541) used greatest stack depth: 8960 bytes left
[   93.139999][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.151675][ T7564] netlink: 'syz.3.1580': attribute type 1 has an invalid length.
[   93.160397][ T7566] 8021q: adding VLAN 0 to HW filter on device macvlan3
[   93.217239][ T7564] loop3: detected capacity change from 0 to 512
[   93.239197][ T7564] EXT4-fs: Ignoring removed oldalloc option
[   93.256028][ T7576] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   93.274470][ T7576] ªªªªªª: renamed from syzkaller0
[   93.288476][ T7576] tipc: Disabling bearer <eth:syzkaller0>
[   93.325872][ T7564] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1580: corrupted in-inode xattr: overlapping e_value 
[   93.349703][ T7564] EXT4-fs (loop3): Remounting filesystem read-only
[   93.353317][ T7584] loop4: detected capacity change from 0 to 764
[   93.363283][ T7564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.379335][ T7584] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   93.397376][ T7564] SELinux: (dev loop3, type ext4) getxattr errno 5
[   93.414288][ T7564] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.519871][ T7593] loop3: detected capacity change from 0 to 512
[   93.539856][ T7593] EXT4-fs: Ignoring removed nomblk_io_submit option
[   93.546582][ T7593] EXT4-fs: Ignoring removed mblk_io_submit option
[   93.561396][ T7593] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   93.591827][ T7593] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   93.599869][ T7593] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c11c, mo2=0002]
[   93.627285][ T7593] EXT4-fs (loop3): orphan cleanup on readonly fs
[   93.673755][ T7593] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1591: Failed to acquire dquot type 1
[   93.685850][ T7593] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1591: Invalid block bitmap block 0 in block_group 0
[   93.700209][ T7593] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1591: Invalid block bitmap block 0 in block_group 0
[   93.715402][ T7593] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1591: Invalid block bitmap block 0 in block_group 0
[   93.729979][ T7595] Illegal XDP return value 4278607824 on prog  (id 942) dev N/A, expect packet loss!
[   93.754442][ T7593] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1591: Failed to acquire dquot type 1
[   93.767515][ T7607] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7607 comm=syz.4.1596
[   93.779771][ T7593] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1591: Failed to acquire dquot type 1
[   93.799853][ T7593] EXT4-fs (loop3): 1 orphan inode deleted
[   93.805841][ T7609] wireguard0: entered promiscuous mode
[   93.806693][ T7593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.811319][ T7609] wireguard0: entered allmulticast mode
[   93.847990][ T7615] loop4: detected capacity change from 0 to 512
[   93.864148][ T7615] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.898344][ T7614] loop5: detected capacity change from 0 to 764
[   93.906810][ T7615] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.920496][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.928036][ T7607] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.943394][ T7614] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   93.989390][ T7607] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.004672][ T7627] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   94.072234][ T7631] loop5: detected capacity change from 0 to 512
[   94.096449][ T7631] EXT4-fs: Ignoring removed oldalloc option
[   94.114243][ T7631] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.1605: corrupted in-inode xattr: overlapping e_value 
[   94.141236][ T7637] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1607'.
[   94.150266][ T7637] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1607'.
[   94.160630][ T7631] EXT4-fs (loop5): Remounting filesystem read-only
[   94.167663][ T7631] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.182740][ T7631] SELinux: (dev loop5, type ext4) getxattr errno 5
[   94.189598][ T7631] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.248850][ T7641] loop3: detected capacity change from 0 to 512
[   94.278487][ T7643] loop5: detected capacity change from 0 to 512
[   94.288935][ T7643] EXT4-fs: Ignoring removed nomblk_io_submit option
[   94.295632][ T7643] EXT4-fs: Ignoring removed mblk_io_submit option
[   94.314519][ T7643] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   94.327925][ T7643] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   94.328104][ T7641] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.336036][ T7643] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c11c, mo2=0002]
[   94.359921][ T7643] EXT4-fs (loop5): orphan cleanup on readonly fs
[   94.369137][ T7643] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1610: Failed to acquire dquot type 1
[   94.374076][ T7641] ext4 filesystem being mounted at /298/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.404118][ T7643] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1610: Invalid block bitmap block 0 in block_group 0
[   94.418007][ T7643] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1610: Invalid block bitmap block 0 in block_group 0
[   94.433506][ T7643] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1610: Invalid block bitmap block 0 in block_group 0
[   94.440513][ T7641] @: renamed from bond0 (while UP)
[   94.463645][ T7643] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1610: Failed to acquire dquot type 1
[   94.464952][ T7648] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1611'.
[   94.483862][ T7648] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1611'.
[   94.493767][ T7643] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1610: Failed to acquire dquot type 1
[   94.525278][ T7643] EXT4-fs (loop5): 1 orphan inode deleted
[   94.532114][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.541616][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.550983][ T7643] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.614810][ T7653] wireguard0: entered promiscuous mode
[   94.620389][ T7653] wireguard0: entered allmulticast mode
[   94.663771][ T6666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.690379][ T7656] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   94.725933][ T7656] ªªªªªª: renamed from syzkaller0
[   94.736809][ T7656] tipc: Disabling bearer <eth:syzkaller0>
[   94.802650][ T7668] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   94.816496][ T7668] ªªªªªª: renamed from syzkaller0
[   94.836439][ T7668] tipc: Disabling bearer <eth:syzkaller0>
[   94.907133][ T7691] loop3: detected capacity change from 0 to 512
[   94.925281][ T7691] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.957746][ T7691] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.981262][ T7680] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.994791][ T7680] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.084235][ T7714] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   95.205438][ T7742] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1640'.
[   95.236326][ T7745] FAULT_INJECTION: forcing a failure.
[   95.236326][ T7745] name failslab, interval 1, probability 0, space 0, times 0
[   95.249046][ T7745] CPU: 1 UID: 0 PID: 7745 Comm: syz.5.1641 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   95.259835][ T7745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   95.269896][ T7745] Call Trace:
[   95.273216][ T7745]  <TASK>
[   95.276202][ T7745]  dump_stack_lvl+0xf2/0x150
[   95.280800][ T7745]  dump_stack+0x15/0x1a
[   95.284967][ T7745]  should_fail_ex+0x223/0x230
[   95.289666][ T7745]  should_failslab+0x8f/0xb0
[   95.294272][ T7745]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   95.300061][ T7745]  ? __d_alloc+0x3d/0x340
[   95.304568][ T7745]  __d_alloc+0x3d/0x340
[   95.308763][ T7745]  d_alloc_parallel+0x54/0xc60
[   95.313718][ T7745]  ? __rcu_read_unlock+0x4e/0x70
[   95.318657][ T7745]  ? __d_lookup+0x342/0x370
[   95.323221][ T7745]  ? full_name_hash+0x93/0xe0
[   95.327889][ T7745]  ? __pfx_proc_ns_instantiate+0x10/0x10
[   95.333650][ T7745]  proc_fill_cache+0x157/0x230
[   95.338527][ T7745]  ? __pfx_proc_ns_instantiate+0x10/0x10
[   95.344318][ T7745]  proc_ns_dir_readdir+0x203/0x2b0
[   95.349484][ T7745]  iterate_dir+0x11d/0x310
[   95.353947][ T7745]  __se_sys_getdents64+0x87/0x1a0
[   95.358981][ T7745]  ? __pfx_filldir64+0x10/0x10
[   95.363833][ T7745]  __x64_sys_getdents64+0x43/0x50
[   95.369050][ T7745]  x64_sys_call+0x2d24/0x2dc0
[   95.373720][ T7745]  do_syscall_64+0xc9/0x1c0
[   95.378243][ T7745]  ? clear_bhb_loop+0x55/0xb0
[   95.382966][ T7745]  ? clear_bhb_loop+0x55/0xb0
[   95.387634][ T7745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.393655][ T7745] RIP: 0033:0x7f58c76c5d19
[   95.398317][ T7745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.418177][ T7745] RSP: 002b:00007f58c5d37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   95.426670][ T7745] RAX: ffffffffffffffda RBX: 00007f58c78b5fa0 RCX: 00007f58c76c5d19
[   95.434780][ T7745] RDX: 0000000000000fed RSI: 0000000020002f40 RDI: 0000000000000003
[   95.442744][ T7745] RBP: 00007f58c5d37090 R08: 0000000000000000 R09: 0000000000000000
[   95.450844][ T7745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.458808][ T7745] R13: 0000000000000000 R14: 00007f58c78b5fa0 R15: 00007ffc9f9cc098
[   95.466772][ T7745]  </TASK>
[   95.550230][ T7757] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   95.557564][ T7757] ªªªªªª: renamed from syzkaller0
[   95.564798][ T7757] tipc: Disabling bearer <eth:syzkaller0>
[   95.639797][ T7775] loop4: detected capacity change from 0 to 512
[   95.655044][ T7775] EXT4-fs (loop4): too many log groups per flexible block group
[   95.663106][ T7775] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   95.679967][ T7775] EXT4-fs (loop4): mount failed
[   95.689458][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.700602][ T7775] netlink: 'syz.4.1651': attribute type 10 has an invalid length.
[   95.795590][ T7795] loop3: detected capacity change from 0 to 512
[   95.804481][ T7795] EXT4-fs: Ignoring removed nomblk_io_submit option
[   95.811114][ T7795] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.827917][ T7795] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   95.843213][ T7795] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   95.851275][ T7795] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c11c, mo2=0002]
[   95.862933][ T7795] EXT4-fs (loop3): orphan cleanup on readonly fs
[   95.870244][ T7795] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1657: Failed to acquire dquot type 1
[   95.883107][ T7795] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1657: Invalid block bitmap block 0 in block_group 0
[   95.928472][ T7795] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1657: Invalid block bitmap block 0 in block_group 0
[   95.955025][ T7795] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1657: Invalid block bitmap block 0 in block_group 0
[   95.980814][ T7795] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1657: Failed to acquire dquot type 1
[   95.997091][ T7795] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1657: Failed to acquire dquot type 1
[   96.010219][ T7795] EXT4-fs (loop3): 1 orphan inode deleted
[   96.019773][ T7795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.059712][ T7828] FAULT_INJECTION: forcing a failure.
[   96.059712][ T7828] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.072904][ T7828] CPU: 1 UID: 0 PID: 7828 Comm: syz.4.1663 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   96.083629][ T7828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.093751][ T7828] Call Trace:
[   96.097037][ T7828]  <TASK>
[   96.100006][ T7828]  dump_stack_lvl+0xf2/0x150
[   96.104626][ T7828]  dump_stack+0x15/0x1a
[   96.108876][ T7828]  should_fail_ex+0x223/0x230
[   96.113592][ T7828]  should_fail+0xb/0x10
[   96.118099][ T7828]  should_fail_usercopy+0x1a/0x20
[   96.123215][ T7828]  _copy_from_user+0x1e/0xb0
[   96.127835][ T7828]  ucma_bind+0x4f/0x1c0
[   96.132019][ T7828]  ucma_write+0x1a4/0x240
[   96.136371][ T7828]  ? __pfx_ucma_write+0x10/0x10
[   96.141280][ T7828]  vfs_write+0x281/0x920
[   96.143449][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888118064800: rx timeout, send abort
[   96.145570][ T7828]  ? __fget_files+0x17c/0x1c0
[   96.153957][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff888118064800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   96.158480][ T7828]  ksys_write+0xe8/0x1b0
[   96.177026][ T7828]  __x64_sys_write+0x42/0x50
[   96.181808][ T7828]  x64_sys_call+0x287e/0x2dc0
[   96.186486][ T7828]  do_syscall_64+0xc9/0x1c0
[   96.190991][ T7828]  ? clear_bhb_loop+0x55/0xb0
[   96.195761][ T7828]  ? clear_bhb_loop+0x55/0xb0
[   96.200446][ T7828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.206375][ T7828] RIP: 0033:0x7fae8c735d19
[   96.210846][ T7828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.230448][ T7828] RSP: 002b:00007fae8ada7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   96.238905][ T7828] RAX: ffffffffffffffda RBX: 00007fae8c925fa0 RCX: 00007fae8c735d19
[   96.246931][ T7828] RDX: 0000000000000090 RSI: 00000000200007c0 RDI: 0000000000000003
[   96.254979][ T7828] RBP: 00007fae8ada7090 R08: 0000000000000000 R09: 0000000000000000
[   96.263057][ T7828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.271022][ T7828] R13: 0000000000000000 R14: 00007fae8c925fa0 R15: 00007ffd00b17068
[   96.279060][ T7828]  </TASK>
[   96.310351][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.318820][ T7840] loop2: detected capacity change from 0 to 512
[   96.372467][ T7840] EXT4-fs (loop2): too many log groups per flexible block group
[   96.380249][ T7840] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   96.389925][ T7840] EXT4-fs (loop2): mount failed
[   96.410230][ T7840] netlink: 'syz.2.1664': attribute type 10 has an invalid length.
[   96.451630][ T7855] FAULT_INJECTION: forcing a failure.
[   96.451630][ T7855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.464742][ T7855] CPU: 1 UID: 0 PID: 7855 Comm: syz.3.1668 Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   96.475422][ T7855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.485471][ T7855] Call Trace:
[   96.488809][ T7855]  <TASK>
[   96.491748][ T7855]  dump_stack_lvl+0xf2/0x150
[   96.496360][ T7855]  dump_stack+0x15/0x1a
[   96.500546][ T7855]  should_fail_ex+0x223/0x230
[   96.505299][ T7855]  should_fail+0xb/0x10
[   96.509446][ T7855]  should_fail_usercopy+0x1a/0x20
[   96.514544][ T7855]  _copy_to_user+0x20/0xa0
[   96.518955][ T7855]  __se_sys_move_pages+0x114b/0x14b0
[   96.524265][ T7855]  __x64_sys_move_pages+0x78/0x90
[   96.529360][ T7855]  x64_sys_call+0x179b/0x2dc0
[   96.534108][ T7855]  do_syscall_64+0xc9/0x1c0
[   96.538705][ T7855]  ? clear_bhb_loop+0x55/0xb0
[   96.543450][ T7855]  ? clear_bhb_loop+0x55/0xb0
[   96.548117][ T7855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.554012][ T7855] RIP: 0033:0x7fccd4f95d19
[   96.558484][ T7855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.578175][ T7855] RSP: 002b:00007fccd3601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[   96.586628][ T7855] RAX: ffffffffffffffda RBX: 00007fccd5185fa0 RCX: 00007fccd4f95d19
[   96.594652][ T7855] RDX: 0000000020000000 RSI: 0000000000000001 RDI: 0000000000000000
[   96.602696][ T7855] RBP: 00007fccd3601090 R08: 0000000020000080 R09: 0000000000000000
[   96.610660][ T7855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.618679][ T7855] R13: 0000000000000000 R14: 00007fccd5185fa0 R15: 00007ffd7a001ba8
[   96.626800][ T7855]  </TASK>
[   96.663123][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   96.852195][ T7902] loop2: detected capacity change from 0 to 128
[   96.871136][   T29] kauditd_printk_skb: 4728 callbacks suppressed
[   96.871151][   T29] audit: type=1400 audit(1734047019.958:66667): avc:  denied  { mount } for  pid=7901 comm="syz.2.1680" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   96.913581][   T29] audit: type=1400 audit(1734047019.998:66668): avc:  denied  { name_bind } for  pid=7908 comm="syz.3.1681" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   96.939835][   T29] audit: type=1326 audit(1734047020.028:66669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   96.963460][   T29] audit: type=1326 audit(1734047020.028:66670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   96.987025][   T29] audit: type=1326 audit(1734047020.028:66671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.010667][   T29] audit: type=1326 audit(1734047020.028:66672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.034300][   T29] audit: type=1326 audit(1734047020.028:66673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.057880][   T29] audit: type=1326 audit(1734047020.028:66674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.070705][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.070705][ T7910] loop2: rw=2049, sector=332, nr_sectors = 8 limit=128
[   97.081583][   T29] audit: type=1326 audit(1734047020.028:66675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.118547][   T29] audit: type=1326 audit(1734047020.028:66676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7901 comm="syz.2.1680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbf9b5d19 code=0x7ffc0000
[   97.142982][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.142982][ T7910] loop2: rw=2049, sector=348, nr_sectors = 8 limit=128
[   97.162255][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.162255][ T7910] loop2: rw=2049, sector=364, nr_sectors = 8 limit=128
[   97.179317][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.179317][ T7910] loop2: rw=2049, sector=380, nr_sectors = 8 limit=128
[   97.195112][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.195112][ T7910] loop2: rw=2049, sector=396, nr_sectors = 8 limit=128
[   97.208923][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.208923][ T7910] loop2: rw=2049, sector=412, nr_sectors = 8 limit=128
[   97.222539][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.222539][ T7910] loop2: rw=2049, sector=428, nr_sectors = 8 limit=128
[   97.236413][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.236413][ T7910] loop2: rw=2049, sector=444, nr_sectors = 8 limit=128
[   97.255413][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.255413][ T7910] loop2: rw=2049, sector=460, nr_sectors = 8 limit=128
[   97.269055][ T7910] syz.2.1680: attempt to access beyond end of device
[   97.269055][ T7910] loop2: rw=2049, sector=476, nr_sectors = 8 limit=128
[   97.514010][ T7944] usb usb1: usbfs: process 7944 (syz.4.1687) did not claim interface 0 before use
[   97.636822][ T7948] loop4: detected capacity change from 0 to 512
[   97.685098][ T7948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.714090][ T7948] ext4 filesystem being mounted at /319/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   97.750474][ T7948] @: renamed from bond0 (while UP)
[   97.771151][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.835431][ T7955] __nla_validate_parse: 1 callbacks suppressed
[   97.835446][ T7955] netlink: 5 bytes leftover after parsing attributes in process `syz.4.1691'.
[   97.850967][ T7955] 0ªX¹¦Dö»: renamed from gretap0 (while UP)
[   97.866082][ T7955] 0ªX¹¦Dö»: entered allmulticast mode
[   97.877359][ T7955] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.947178][ T7955] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.965020][    C1] vxcan0: j1939_tp_rxtimer: 0xffff8881178ade00: rx timeout, send abort
[   97.973336][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff8881178ade00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   98.009093][ T7955] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.032929][ T7964] loop5: detected capacity change from 0 to 764
[   98.039980][ T7964] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   98.078562][ T7970] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   98.086132][ T7970] ªªªªªª: renamed from syzkaller0
[   98.092628][ T7970] tipc: Disabling bearer <eth:syzkaller0>
[   98.129046][ T7955] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.159218][ T7973] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1699'.
[   98.168359][ T7973] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1699'.
[   98.198336][ T7976] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   98.213455][ T7976] ªªªªªª: renamed from syzkaller0
[   98.227880][ T7976] tipc: Disabling bearer <eth:syzkaller0>
[   98.257233][ T7978] wireguard1: entered promiscuous mode
[   98.262752][ T7978] wireguard1: entered allmulticast mode
[   98.301150][ T7955] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.312266][ T7955] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.324336][ T7955] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.343331][ T7955] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.411983][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.419536][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.427116][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.434528][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.441955][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.449442][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.456936][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.464358][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.471836][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.479276][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.486943][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.494399][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.501805][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.509244][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.517175][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.524673][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.532118][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.539517][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.547034][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.554455][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.561873][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.569367][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.576304][ T7989] loop3: detected capacity change from 0 to 1024
[   98.576770][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.584897][ T7989] EXT4-fs: Mount option(s) incompatible with ext2
[   98.590423][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.604246][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.611726][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.619170][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.626632][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.634075][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.641463][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.648875][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.656298][ T3377] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0
[   98.677581][ T3377] hid-generic 0002:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   98.754799][ T8008] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   98.765783][ T8010] netlink: 'syz.2.1713': attribute type 1 has an invalid length.
[   98.769197][ T8008] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   98.782238][ T8010] loop2: detected capacity change from 0 to 512
[   98.798215][ T8010] EXT4-fs: Ignoring removed oldalloc option
[   98.804583][ T4098] ==================================================================
[   98.812673][ T4098] BUG: KCSAN: data-race in do_mpage_readpage / set_blocksize
[   98.820059][ T4098] 
[   98.822392][ T4098] write to 0xffff8881006310ae of 1 bytes by task 8010 on cpu 0:
[   98.830010][ T4098]  set_blocksize+0x215/0x270
[   98.834603][ T4098]  sb_min_blocksize+0x63/0xe0
[   98.839322][ T4098]  ext4_fill_super+0x38b/0x3a10
[   98.844178][ T4098]  get_tree_bdev_flags+0x29f/0x310
[   98.849302][ T4098]  get_tree_bdev+0x1f/0x30
[   98.853714][ T4098]  ext4_get_tree+0x1c/0x30
[   98.858124][ T4098]  vfs_get_tree+0x56/0x1e0
[   98.862554][ T4098]  do_new_mount+0x227/0x690
[   98.867072][ T4098]  path_mount+0x49b/0xb30
[   98.871396][ T4098]  __se_sys_mount+0x27c/0x2d0
[   98.876072][ T4098]  __x64_sys_mount+0x67/0x80
[   98.880663][ T4098]  x64_sys_call+0x2c84/0x2dc0
[   98.885331][ T4098]  do_syscall_64+0xc9/0x1c0
[   98.889822][ T4098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.895723][ T4098] 
[   98.898033][ T4098] read to 0xffff8881006310ae of 1 bytes by task 4098 on cpu 1:
[   98.905564][ T4098]  do_mpage_readpage+0x55/0xcb0
[   98.910413][ T4098]  mpage_readahead+0x1ad/0x2d0
[   98.915174][ T4098]  blkdev_readahead+0x1c/0x30
[   98.919847][ T4098]  read_pages+0xa0/0x540
[   98.924078][ T4098]  page_cache_ra_unbounded+0x2b8/0x310
[   98.929524][ T4098]  page_cache_sync_ra+0x252/0x670
[   98.934538][ T4098]  filemap_get_pages+0x2c1/0x10e0
[   98.939553][ T4098]  filemap_read+0x221/0x6a0
[   98.944047][ T4098]  blkdev_read_iter+0x20e/0x2c0
[   98.948889][ T4098]  vfs_read+0x5dc/0x700
[   98.953038][ T4098]  ksys_read+0xe8/0x1b0
[   98.957190][ T4098]  __x64_sys_read+0x42/0x50
[   98.961867][ T4098]  x64_sys_call+0x2874/0x2dc0
[   98.966537][ T4098]  do_syscall_64+0xc9/0x1c0
[   98.971028][ T4098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.976923][ T4098] 
[   98.979232][ T4098] value changed: 0x0c -> 0x0a
[   98.983886][ T4098] 
[   98.986193][ T4098] Reported by Kernel Concurrency Sanitizer on:
[   98.992324][ T4098] CPU: 1 UID: 0 PID: 4098 Comm: udevd Not tainted 6.13.0-rc2-syzkaller-00130-g150b567e0d57 #0
[   99.002555][ T4098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   99.012599][ T4098] ==================================================================
[   99.023806][ T8011] loop3: detected capacity change from 0 to 512
[   99.045399][ T8010] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1713: corrupted in-inode xattr: overlapping e_value 
[   99.060080][ T8010] EXT4-fs (loop2): Remounting filesystem read-only
[   99.063235][ T8011] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[   99.067544][ T8010] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.087302][ T8010] SELinux: (dev loop2, type ext4) getxattr errno 5
[   99.096664][ T8010] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.