last executing test programs:

29.790361984s ago: executing program 4 (id=133):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{0x0}, {&(0x7f0000000140)="11d6cb557c8496a2fe7a81f38210bfa9b70ee09c", 0x14}], 0x2}, 0x0)

29.790095424s ago: executing program 4 (id=134):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
madvise(&(0x7f0000bdf000/0x1000)=nil, 0x1000, 0xa)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

29.739665024s ago: executing program 4 (id=136):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x457)

29.712457085s ago: executing program 4 (id=138):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0xf0)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x5ef}], 0x1, 0x5412, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES16=r5, @ANYRES32, @ANYRES32=r0, @ANYRES64=r1], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$TIOCGWINSZ(r2, 0x5413, &(0x7f0000000140))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800000001"], 0x50)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102"], 0x50)
r9 = inotify_init1(0x800)
fcntl$setown(r9, 0x8, 0xffffffffffffffff)
fcntl$getownex(r9, 0x10, &(0x7f0000000140))
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r10, 0x0, 0x1000000000000}, 0x18)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYRES16=r10], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r11}, 0x10)
unshare(0x22020400)
syz_clone(0x8029080, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r12 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
syz_io_uring_setup(0xbdc, &(0x7f0000000080)={0x0, 0xec21, 0x80, 0x1, 0x40000333}, &(0x7f0000000340)=<r13=>0x0, &(0x7f00000001c0)=<r14=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r13, r14, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r12, 0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
fsetxattr$security_evm(r12, &(0x7f0000000000), &(0x7f0000000040)=@sha1={0x1, "0ba0839ae2e43696f798bfac1d7656390e91bdc7"}, 0x15, 0x1)

29.498419999s ago: executing program 4 (id=143):
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x18)
chroot(0x0)

29.182345845s ago: executing program 4 (id=153):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r0, 0x0, 0x0)

29.182268555s ago: executing program 32 (id=153):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r0, 0x0, 0x0)

27.660707634s ago: executing program 5 (id=154):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r0, 0x0, 0x0) (fail_nth: 1)

27.405490189s ago: executing program 5 (id=187):
mbind(&(0x7f0000bdf000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

27.387853929s ago: executing program 5 (id=188):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r1, 0x1, 0x21, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r2=>r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000007c0)={'batadv0\x00', <r3=>0x0})
sendmsg$inet6(r2, &(0x7f0000000800)={&(0x7f0000000480)={0xa, 0x4e24, 0x8000, @local, 0x2}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000640)="c9c59e6712f9caa1ef0232f298fa18228fbad10390c1c8a75b69ff281d3009fef67b45548d5a35554a053ebff3ec3e7afa1b05efd2d0ca6b21f9f5234a5cced22eaa1fd9ee05c2c4177fbf5a9d2edf", 0x4f}, {&(0x7f0000000900)="2bc6555380752e35ae5f6a3beb33178a8d4319027266798da626c66401848523493688f34b3c651710dc8abc7c6bf1c97c5aec68adc95afa598618ecd834732f33076278215a00acdfeec6a5dae50305cbb5e2db9754892dbdf330f158318318dbfaa0b6735bd1336dcce199f22cdb", 0x6f}, {&(0x7f0000000a00)="b31281dbef1a2e5cda5fcdc816db952461b388042ac341ae1f0802b7730d8305dce70273b925c9aed4ce7e3c0497af8473f2ec835b786f5a1879e5ebff482feb11faa182d6ab56da92ae21e82f1105f182bf0c6f64f2c56fd0d395adfa5d4a136ba9633c97a14b0dc95081a9e335ed8998d228b4d731a6fb3512ffa9873583b8c52cecfa2106f6cb9b6ace19fb9dfe90821d78ee9fb0484e7290f5d05b00f3984403096479e9c02af9ccb53abaf19ce9cace7cc863ac956f746fac35676b7906f86390ef4e", 0xc5}], 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="1400000000000000290000004304000054f0ffff0000000024000000000000fe8000000000000000000000000000bb000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000014000000000000002900000043000000ff00000000000000"], 0x58}, 0x20000080)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000009"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0d00000006000000040000000100000000000000", @ANYRES32=r4, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000019b33a56a77cc579a940b7b52e3d6254b8009b0aaaace79ad66dac755e6eea642ce156713f591417b69b8f17a5ae3813ebc34871577eaeead3fa"], 0x50)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000001040), 0xffffffffffffffff)
r6 = socket(0x1e, 0x1, 0x0)
connect$tipc(r6, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000b80)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESDEC], 0x2, 0x699, &(0x7f0000000140)="$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")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000001080)='ext4_es_lookup_extent_enter\x00', r7, 0x0, 0x4}, 0x18)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$binfmt_misc(r6, &(0x7f0000000400), 0x2000011a)
recvmmsg(r6, &(0x7f0000002700)=[{{0x0, 0x0, &(0x7f00000023c0)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}, 0x74e96c96}, {{0x0, 0x0, 0x0}, 0xa}], 0x2, 0x40, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r8}, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
close(r4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="4000000010"], 0x40}, 0x1, 0x0, 0x0, 0x4040080}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20050800)

27.212323212s ago: executing program 5 (id=193):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540), 0x1, 0x236, &(0x7f0000000780)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
openat$cgroup_freezer_state(0xffffffffffffffff, 0x0, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@private, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@remote}, 0x0, @in=@dev}}, &(0x7f0000000040)=0xe8)
lstat(&(0x7f0000000200)='./file0\x00', &(0x7f00000003c0))
ptrace$getregset(0x4205, r3, 0x202, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x4, 0xab, 0x8001, 0x10, 0x2001c, r0, 0x6, '\x00', r4, r0, 0x4, 0x4, 0x5}, 0x50)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r5, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x12, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c678082004fcffffffffffff325263bdbc65ea9ba997fce47ddfdd753abd950100002afffff6ff00000000e8f200000002000045eaccd100", "b7326736181c208259000000b9f83902000000000000f0fffffffff2ff00", [0x4, 0x9]})
creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f8b)

27.115192674s ago: executing program 5 (id=196):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_clone3(&(0x7f0000001880)={0x120000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="5cdfff001000030400000000fedbdf2500007400", @ANYRES32=r3, @ANYBLOB="00080000075005003c0012800b00010062726964676500002c00028005001900020000000c0023000f000000000000000c00220006000000000000000500240001000000"], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd60"], 0x0)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0xffffffffffffff62, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x48)

25.281987729s ago: executing program 5 (id=216):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000040000004500"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x457)

25.24941787s ago: executing program 33 (id=216):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000040000004500"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x457)

4.158672001s ago: executing program 6 (id=560):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000d00)='kfree\x00', r0}, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0_to_hsr\x00'})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x9, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x40, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x54, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
creat(&(0x7f00000001c0)='./bus\x00', 0x77)
open(&(0x7f0000000100)='./bus\x00', 0x0, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
r2 = dup(0xffffffffffffffff)
sendmsg$nl_route_sched(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x44400}, 0x800)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}, [@TCA_NETEM_DELAY_DIST={0xd, 0xd, "85def352b66e12dffc"}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8080)

4.010604514s ago: executing program 6 (id=565):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r0, 0x0, 0x1}, 0x18)
syz_clone(0x6a000000, 0x0, 0x0, 0x0, 0x0, 0x0)

3.868465347s ago: executing program 6 (id=569):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x0, &(0x7f0000000200), 0x45, 0x7b6, &(0x7f0000001140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x10b701)
ioctl$USBDEVFS_CLAIM_PORT(r1, 0x80045518, &(0x7f0000000040)=0x8)
close(r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
fdatasync(r2)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

2.716437368s ago: executing program 6 (id=583):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$kcm(r0, &(0x7f0000006900)={&(0x7f0000006640)=@un=@abs={0x0, 0x0, 0x4e24}, 0x80, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x2}, 0x880)
getresgid(&(0x7f0000000240), &(0x7f0000000280)=<r1=>0x0, &(0x7f00000002c0))
fstat(0xffffffffffffffff, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000140)={0x0, <r4=>0x0}, &(0x7f0000000200)=0xc)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
syz_usb_connect(0x2, 0x4a, &(0x7f0000000040)=ANY=[], 0x0)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f0000000000)=<r7=>0x0)
bind$nfc_llcp(r5, &(0x7f0000000100)={0x27, r7, 0x1, 0x1, 0x0, 0xde, "c14d1dedaa1bde1a3299b7e0f741ef51772aba1135698eba8372f303d6cdbfc141f8b9600cce9cb5628c07ceb1d7cfe97e8ab6bbcd8c29f5f782d5fd6a6e81", 0x10}, 0x60)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c00)={0x11, 0x5, &(0x7f0000001b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a000000957a0022844c8688c80ce693dc3bf1b8e27b8de87a83953ab72513f566b790d13836e00ef157e351d714"], &(0x7f0000000c80)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
r9 = syz_io_uring_setup(0x484d, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x8b6}, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000001680)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r9, 0x0, 0x0, 0x64, 0x183000, 0x23456})
io_uring_enter(r9, 0x47f6, 0x0, 0x0, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001740)=ANY=[@ANYBLOB="680000001100000425bd7000fedbdf2507000000", @ANYRES32=0x0, @ANYBLOB="100004001000000024000e000800000000000000fa05000000000057ff40387a335923c60007000000000000003c3153030000000008000400020000000500270002000000140003006970365f767469"], 0x68}}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x30e043, &(0x7f0000001880)=ANY=[@ANYBLOB="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", @ANYRESHEX=r1, @ANYBLOB=',usrquota,uid=', @ANYRESHEX=r2, @ANYBLOB=',smackfsroot=[}/}/,sync,fowner=', @ANYRESDEC=0x0, @ANYBLOB="2c6f626a5f747970653d2c736d61636b66737472616e736d7574653d2f2b2428255c2a2d402b2d2d3a2527248f262f2a7d2d5e7d602f2d25d95b2c2c6673636f6e746578743d73797374656d5f752c657569643d", @ANYRESDEC=r4, @ANYBLOB=',smackfshat=\x00,pcr=00000000000000000033,\x00'])
r12 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='schedstat\x00')
lseek(r12, 0x289e0cb5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000006114100000009500000000000000"], &(0x7f0000001600)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x28, '\x00', 0x0, @sock_ops}, 0x94)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf84a4faef022bff10c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r13}, 0x10)
syz_clone(0x82001000, 0x0, 0x0, &(0x7f0000001840), 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000001540), 0x10000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})

1.708095108s ago: executing program 2 (id=596):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x457)

1.692842088s ago: executing program 2 (id=597):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x457)

1.675144718s ago: executing program 2 (id=598):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

1.617551469s ago: executing program 2 (id=600):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x4, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x5, 0x0, 0x0, &(0x7f0000000100)=0x2, 0x5000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3"], 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000000101040000ff0f0000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000010000580090001"], 0x48}}, 0x40004)
setsockopt$inet_int(r2, 0x0, 0xb, &(0x7f00000000c0)=0x3, 0x4)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r6 = epoll_create(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f00000006c0)={0xf6c447fee59251f4})
close_range(r0, r5, 0x0)

1.58672848s ago: executing program 1 (id=601):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000001740)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_addr=@broadcast, @loopback}, 0x10)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000700)=',&#^%\x00')
socket$packet(0x11, 0x2, 0x300)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x3, 0x6}, 0x120, 0x10000, 0x33f8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r2, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0xf, 0x7ffc0001}]})
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1.54720586s ago: executing program 0 (id=602):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

1.456756322s ago: executing program 6 (id=603):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES8=r1], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r4 = fsopen(&(0x7f0000000080)='bpf\x00', 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
readlinkat(0xffffffffffffffff, &(0x7f0000000c00)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000a00)=""/204, 0xcc)
r5 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r5, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)

1.447871923s ago: executing program 1 (id=604):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b0101edbf6dd6d111d6132f1821a4e4cbec8438c571a70e7ca7b0451a6cc55c", 0x98})
ptrace$setregset(0x4205, r0, 0x1, &(0x7f00000001c0)={&(0x7f0000000000)="c9459d22eb6a3f6de5f13f1f14050000", 0x10})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000170000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000009b00000095"], 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700), 0x3, 0x4e2, &(0x7f0000001c80)="$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")
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2000)
chown(&(0x7f0000000040)='./file1\x00', r1, r2)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@discard}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@discard}]}, 0x1, 0x609, &(0x7f0000000f80)="$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")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0xd9726125b1f0997, &(0x7f0000000c00)={[{@inlinecrypt}, {@nomblk_io_submit}, {@lazytime}, {@grpquota}, {@grpjquota}, {@minixdf}, {@journal_async_commit}, {}, {@test_dummy_encryption}], [{@appraise}, {@fsmagic={'fsmagic', 0x3d, 0xe}}, {@appraise}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@obj_role={'obj_role', 0x3d, '\xba\xb2\xd2\xb6[\xfe6&\xec\xde[\x97E\x97\xc5\xcb\t\xedCQ\x05\xd6\xe2\x04\xc8\xf4\xb9W\x8b\x1bX5\xa7\xdb\xb7\xd5\xe1\xb2\fd{\xb9\xc5\x9c\xe1s\xe6E.%\x97\xc6\xfe:\xbde\xea\xba6A\xd0.\xce\\\x88\xc1\xf2bq\xb8\xaf\x82P\x1f\x1d#\v<>q\xc9\x84^!#NA#$5E\xd9Cxs\xac\xcf\xff\xf0\x8a\xd9\x05\x00\x00\x00\xa7\x06$\x8fd\x92\xbb6\xc3\x90\xbd\x937n4\\\x8e\x85\x02F\xa6V\xab\x04\xb7\xf3\xd4\x9f\x18\x8f\xb6\x84\xf6?\xde\xa8\xd4\x0e%`\a\"\x1fT\xf8\xde\xe5\xb1n\\\xb3\xc8\'3\x90R\xa9\xaa\x19\xd87\xe7d?\xa4\x91)\xf1`\x8cE\x90\xc4\'}x\xdc\x9c\fGs\r\xa6\xc6\xbc\xc7/?V\x95\x14\xfd\x94\x1a\xc2\"c/\x91\xd3\xd8\xd9\x16Z\vq\xe7WI\x9d\xf4(\xd5=\xa2\xe6\"a\xa7\x93\xf2\x19\xe2P\xd0\x89_ay\x91\x13\xf6<yw\xca'}}, {@audit}, {@hash}, {@obj_role={'obj_role', 0x3d, 'discard'}}, {@smackfshat={'smackfshat', 0x3d, '*/.'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'GPL\x00'}}]}, 0x66, 0x51c, &(0x7f0000001740)="$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")
syz_usb_disconnect(0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000440)='mr_alloc\x00', r4, 0x0, 0x4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d0800fd007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{}, &(0x7f0000000480), &(0x7f00000004c0)}, 0x20)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="021300000200000000000000000000005274397444bac91ed587d3decfbc88658e0f128db10bec1c738dfd35f251456a4ffd89a877779e90ef7e2dcb73242afd2d15790f1da20c0b7d5124f4896b8d624590b00480e9df798c0a63339d7b5b275eaf51317f9d35afe70812065a0b4eb01b11dec75b08174af0e81afcd2d6d81d93ac69e184eab93fff474239691cb380277c12ec092c9230c5dcb324459b70165b1b28a7f5e8d210343f3b91b843df2d689bbad7a6cb21cf074098a0b472079f789aa105ead4a94274f93d408795ffa24b29c1baa9dcf2a2e1cb96ed48"], 0x10}}, 0x0)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYRESHEX], 0x10}}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
capget(&(0x7f0000000340)={0x19980330}, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)

1.400145063s ago: executing program 0 (id=605):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
socket$igmp6(0xa, 0x3, 0x3a)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x7, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000002c0)=0x1)

1.273133366s ago: executing program 0 (id=606):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000080000000000000003000000180600000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r1 = syz_io_uring_setup(0x4365, &(0x7f0000000000)={0x0, 0x6f6f, 0x800, 0x1, 0x3a8}, &(0x7f0000000100), &(0x7f0000000140))
r2 = syz_io_uring_setup(0x88d, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000100))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0xa, 0x0, r3)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x54f, &(0x7f00000009c0)="$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")
pwritev(r4, &(0x7f0000000140)=[{&(0x7f0000000200)="9161e24870bbe6fe330146d18d00708a2942b341312ceafc413c313c3b0a502944e291be3d72e3383a5599dedc54b43bb95916993fee2163710abc8a2f8957518ee25e9fccc302d8f3310f94940a95071531bc9f4a6942c1df3b375b77ec96a6ae98e738543c5d6dc4395beb5651ac4effd4e96e75540279c9863e4d925e41fdf27dd30e2e7adf0a5e431e21d055f9ac49b99d376360920611cd92660f4b775eb4ee962d648fb3c8b612c70c14dc34dc4dcfb5954a0ccb8fc7129b2bb7c967976b4c37186eea577f89f79e06c65ab1", 0xcf}], 0x1, 0x5, 0x2)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000140)={<r6=>0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r5, 0x84, 0xc, &(0x7f00000000c0), 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x1f, &(0x7f0000000240)={r6, @in={{0x2, 0x4e24, @private=0xa010101}}, 0x0, 0x48}, 0x90)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r7 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
r8 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r8, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', r10}, 0x10)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x95e}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKZEROOUT(r7, 0x127f, &(0x7f00000001c0)={0x398, 0x874f})
r11 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r11, 0x7, 0x0, 0x0, 0x0)

853.631894ms ago: executing program 3 (id=611):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000600)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
r4 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000600)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'macvlan1\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="4400000010000104fcff", @ANYRES32=0x0, @ANYBLOB="0315000004000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

799.267085ms ago: executing program 3 (id=612):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000000005000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
stat(0x0, &(0x7f0000000080))

761.658495ms ago: executing program 3 (id=613):
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000240)=ANY=[@ANYRES64, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x26, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x80003, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0043, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x48)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r4, 0x4b47, &(0x7f0000000280)={0x5, 0xfe, 0x6})
pipe2$9p(&(0x7f0000001900)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = dup(r6)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[], [], 0x6b}})

759.771746ms ago: executing program 2 (id=614):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000540)={{{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x1, 0xc, 0xa, 0x0, 0x20, 0xc}, {0x0, 0x5, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x800, 0x0, 0x2}, 0x0, 0x0, 0x1, 0x1, 0x3}, {{@in6=@private2, 0x4d3, 0x32}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x26}, 0x3502, 0x0, 0x0, 0x4}}, 0xe8)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="740000001000210400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="adffa8886004000024001280090001007866726d000000001400028008000100010000000800020011000000050021000000000008000a00", @ANYRES32, @ANYBLOB='\n\x00:'], 0x74}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = dup(r3)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000002, 0x11012, r5, 0x108000)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f00000001c0)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x20, 0xe, 0xfffa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x501, 0x0})
fsetxattr$security_selinux(r4, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7e20329dad4fa8f, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_ROPEN(r7, &(0x7f0000000080)={0x18, 0x71, 0x2, {{0x2, 0x1}, 0xfffffffe}}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getdents64(0xffffffffffffffff, &(0x7f0000000fc0)=""/224, 0xe0)

673.690398ms ago: executing program 1 (id=615):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff}, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = epoll_create(0x3)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000300)='kmem_cache_free\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000006c0)={0xf6c447fee59251f4})
close_range(r0, r1, 0x0)

640.224208ms ago: executing program 2 (id=616):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregset(0x4205, r0, 0x1, 0x0)
ptrace$setregset(0x4205, r0, 0x1, &(0x7f00000001c0)={&(0x7f0000000000)="c9459d22eb6a3f6de5f13f1f14050000", 0x10})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000170000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000009b00000095"], 0x0, 0xffffffff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700), 0x3, 0x4e2, &(0x7f0000001c80)="$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")
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2000)
chown(&(0x7f0000000040)='./file1\x00', r1, r2)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@discard}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@discard}]}, 0x1, 0x609, &(0x7f0000000f80)="$eJzs3c9rHGUfAPDvzCZ5kzbvm/bl5cUWxYCHFqTbpBarXmzrwR4KFuxBxENDk9TQ7Q+aFGwtNAUPCgoiXkV68R/wLr17E0G9eRaqSEVBS1dmd7bdbHbTNc3uppnPByY7zzOz+zzfnX12npnJsxNAYU1mf9KIXRH3TiURE03LxqO+cDJf786v105nUxLV6uu/JJHkeY31k/xxe54YjYhvjkb8t7S63MUrV8/OVKp11yP2L527uH/xytV9C+dmzsydmTs/feCFg4emXpw+OL0hcW7PH48df+3Jj957+/n5byv7kjgcJ4ffnY2WODbKZEzGvTzE5vyhiDiUzbR5Xx43WyCEQivln8fhiPh/TESplqqbiIUPB1o5oKeqpYgqUFCJ9g8F1egHNI7tuzsOPtnjXkn/3D5SPwBaHf9Q/dxIjNaOjbbdSZqOjOrnNnZsQPlZGXev7f4sm2LFeYg/7m+doQ0op5PlGxHxRLv4k1rddtQizeJPV9QjiYipiBjJ6/fKI9QhaZrvxXmYtaw3/jQiDuePWf7RdZY/2ZLud/wAFNOtI/mOfDlLPdj/ZX2PRv8n2vR/xtvsu9Zj0Pu/zv2/xv5+tHaOPG3ph2V9lhPtX3K4NePHD4590qn85v5fNmXlN/qC/XD7RsTulvjfz4LN+z9Z/Emb7Z+tcupwd2W8+t3PxzotG3T81ZsRe9oe/zzolWZza1yf3D+/UJmbqv9tW8ZXX7/1Rafym+IfHdT239Yh/qbtn7Y+L3tPLnZZxpcnbp7rtCz7Hrlbvb7G9k9/Gknqx5sjec47M0tLl6YjRpLj+SpN+QfWrktjncZrZPHvfaZ9+1/x+b+x8nXGGl+ZXbj4xtk7nZat5/PfdDH5XrXLOnSSxT/78O2/qv1neR93Wcbvb15+qtOyteIfe5TAAAAAAAAAoIDS2jXYJC3fn0/Tcrk+XvZ/sS2tXFhcenb+wuXzsxF7a/8POZw2rnRP1NNJlp7O/x+2kT7Qkn4uInZGxKelsVq6fPpCZXbQwQMAAAAAAAAAAAAAAAAAAMAmsT0f/9+4T/Vvpfr4f6AgenmDOWBz67r9l3pbD6D/au1/1S2egCLQ/4fi0v6huLR/KC7tH4pL+4fi0v6huLR/KC7tHwAAAAC2pJ1P3/ohiYjll8ZqU2YkX2ZEEGxtw4OuADAwRvRDcd2/9K+zD4XTVf//z/zHAXtfHWAAknaZtc5Bde3Gf6vtMwEAAAAAAAAAAACAHtizq/P4f2ODYWsz7A+K6xHG//vpAHjM+el/KC7H+MDDRvGPdlpg/D8AAAAAAAAAAAAA9M14bUrScj4WeDzStFyO+HdE7IjhZH6hMjcVEf+JiO9Lw//K0tODrjQAAAAAAAAAAAAAAAAAAABsMYtXrp6dqVTmLjXP/LUqZ2vPNO6C2oeyXo5/+KxI+v+2jEXEwDdKz2aGmnKSiOVsy2+Kil1ajM1RjdrMgL+YAAAAAAAAAAAAAAAAAACggJrGHre3+/M+1wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+u/B/f97NzPoGAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAx9PfAQAA//+BdkCC")
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0xd9726125b1f0997, &(0x7f0000000c00)={[{@inlinecrypt}, {@nomblk_io_submit}, {@lazytime}, {@grpquota}, {@grpjquota}, {@minixdf}, {@journal_async_commit}, {}, {@test_dummy_encryption}], [{@appraise}, {@fsmagic={'fsmagic', 0x3d, 0xe}}, {@appraise}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@obj_role={'obj_role', 0x3d, '\xba\xb2\xd2\xb6[\xfe6&\xec\xde[\x97E\x97\xc5\xcb\t\xedCQ\x05\xd6\xe2\x04\xc8\xf4\xb9W\x8b\x1bX5\xa7\xdb\xb7\xd5\xe1\xb2\fd{\xb9\xc5\x9c\xe1s\xe6E.%\x97\xc6\xfe:\xbde\xea\xba6A\xd0.\xce\\\x88\xc1\xf2bq\xb8\xaf\x82P\x1f\x1d#\v<>q\xc9\x84^!#NA#$5E\xd9Cxs\xac\xcf\xff\xf0\x8a\xd9\x05\x00\x00\x00\xa7\x06$\x8fd\x92\xbb6\xc3\x90\xbd\x937n4\\\x8e\x85\x02F\xa6V\xab\x04\xb7\xf3\xd4\x9f\x18\x8f\xb6\x84\xf6?\xde\xa8\xd4\x0e%`\a\"\x1fT\xf8\xde\xe5\xb1n\\\xb3\xc8\'3\x90R\xa9\xaa\x19\xd87\xe7d?\xa4\x91)\xf1`\x8cE\x90\xc4\'}x\xdc\x9c\fGs\r\xa6\xc6\xbc\xc7/?V\x95\x14\xfd\x94\x1a\xc2\"c/\x91\xd3\xd8\xd9\x16Z\vq\xe7WI\x9d\xf4(\xd5=\xa2\xe6\"a\xa7\x93\xf2\x19\xe2P\xd0\x89_ay\x91\x13\xf6<yw\xca'}}, {@audit}, {@hash}, {@obj_role={'obj_role', 0x3d, 'discard'}}, {@smackfshat={'smackfshat', 0x3d, '*/.'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'GPL\x00'}}]}, 0x66, 0x51c, &(0x7f0000001740)="$eJzs3c9rJFkdAPBvdbpjMpOZZNWDLrj+2JXMoNOdbNzd4GFdQfS0oK73MSadENJJh3RndxIWN4N/gCCigie9eBH8AwRZ8OJRhAU9KyqK6IwevDgl1V2dmWS6O5mZnnQ2/flAdb2qV1Xf9zqp6npVj6oARtYnIuK1iLiXpun1iJjO5xfyIQ7aQ7bc3TtvL2dDEmn6xj+TSPJ5nW0l+fhyvtpERHz9KxHfSh6O29jb31iq1ao7+XSlubldaezt31jfXFqrrlW3FhbmX158ZfGlxbmB1PNKRLz6pb/+4Ls/+/Krv/rsW3+6+fdr386KNZXnP1iPR1RsfU50z2xXvXQkO1th5zGDnUfFVg1zk92WGHtozu2nXCYAALrLzvE/GBGfiojrMR1j+eksAAAAcHGkX5iKsSQi7W68x3wAAADgfaTQ6gObFMp5X4CpKBTK5XYf3g/HpUKt3mh+ZrW+u7XS7is7E6XC6nqtOpf3FZ6JUpJNz7fS96dfPDa9EBHPRMT3pydb0+Xlem1l2Bc/AAAAYERcPtb+/890u/0PAAAAXDAzwy4AAAAA8NRp/wMAAMDFp/0PAAAAF9pXX389G9LO+69X3tzb3ai/eWOl2tgob+4ul5frO9vltXp9rfXMvs2Ttler17c/F1u7tyrNaqNZaezt39ys7241b673ekM2AAAA8LQ98/F3/5BExMHnJ1tDZvx0q55yMeC8Kh6mknzcZbf+49X2+C9nVCjgTIwNuwDA0BSHXQBgaErDLgAwdMkJ+T077/w2H39ysOUBAAAGb/ajve//F/quedA/Gzj37MQwutz/h9HVuv9/2p68ThbgQik5A4CR98T3/0+Upo9UIAAAYOCmWkNSKOeX96aiUCiXI660XgtQSlbXa9W5iLgaEb+fLn0gm55vrZmc2GYAAAAAAAAAAAAAAAAAAAAAAAAAANrSNIkUAAAAuNAiCn9Lft1+lv/s9AtTx68PjCf/nY78FaFv/fiNH95aajZ35rP5/zqc3/xRPv/FYVzBAAAAgJHwSC/w77TTO+14AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiku3feXu4MJyz6ziDj/uOLETHTLX4xJlrjiShFxKV/J1F8YL0kIsYGEH8y+/hIt/hJVqzDkN3iTw4g/sHtvvFjJv8WusW/PID4MMrezY4/rx3b/44cWLrvf8WII9OPq/fxLw6Pf2M99v8rp4zx7Hu/qPSMfzvi2WL3408nftIj/vOnjP/Nb+zv98pLfxIx2/X3JzkSq9Lc3K409vZvrG8urVXXqlsLC/MvL76y+NLiXGV1vVbNP7vG+N7HfnmvX/0v9Yg/06f+VyPihVPW/3/v3brzoXay1C3+tefz+Encj/+bn+ZLPBy/kP/2fTpPZ/mznfRBO/2g537+u+f61X+lR/1P+vtf61/t8U7i+te+8+f+iwIAZ6mxt7+xVKtVdy5sImuln4NiSOSJ8XP0X/fOQDeYpmma7VNPsJ0kzsPX0koM+8gEAAAM2v2T/mGXBAAAAAAAAAAAAAAAAAAAAEbXWTxO7HjMg8NUMohHaAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMT/AwAA//+VPdXC")
syz_usb_disconnect(0xffffffffffffffff)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000440)='mr_alloc\x00', r4, 0x0, 0x4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="d8000000180081084e81f782db44b904021d0800fd007c06e8fe55a10a0015400600142603600e120800060000000201a80016000800014003e01100036010fab94dcf5c0461c1d67f6f9400e08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef409001b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed1bffec62070000cbee5de6ccd44a677575a62cef352a92954b43370e9701ee1b6ec75a526c5d5b5701cf8773", 0xd8}], 0x1}, 0x400c0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{}, &(0x7f0000000480), &(0x7f00000004c0)}, 0x20)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="021300000200000000000000000000005274397444bac91ed587d3decfbc88658e0f128db10bec1c738dfd35f251456a4ffd89a877779e90ef7e2dcb73242afd2d15790f1da20c0b7d5124f4896b8d624590b00480e9df798c0a63339d7b5b275eaf51317f9d35afe70812065a0b4eb01b11dec75b08174af0e81afcd2d6d81d93ac69e184eab93fff474239691cb380277c12ec092c9230c5dcb324459b70165b1b28a7f5e8d210343f3b91b843df2d689bbad7a6cb21cf074098a0b472079f789aa105ead4a94274f93d408795ffa24b29c1baa9dcf2a2e1cb96ed48"], 0x10}}, 0x0)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYRESHEX], 0x10}}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
capget(&(0x7f0000000340)={0x19980330}, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)

639.418278ms ago: executing program 1 (id=617):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}, [@TCA_NETEM_DELAY_DIST={0xd, 0xd, "85def352b66e12dffc"}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8080)

627.256718ms ago: executing program 3 (id=618):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_bp={0x0, 0x6}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0xf7, 0xb, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{}, [@TCA_NETEM_LOSS={0x18, 0x2, 0x0, 0x1, [@NETEM_LOSS_GE={0x14}]}]}}}]}, 0x64}}, 0x0)

610.098398ms ago: executing program 6 (id=619):
prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='+}[@\x00G5\v\x89n\xb2\x0e\xb7\xb4\x9a\xb3\xb9\xe1\xff@`\x87\xefy\xb7\xe0\xe6c\x91\x81ND\t3\xc4\xca\xf0\xd0Zp\xadbdY\xdcz\xc6lo\xd0\xc7\'CT')
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
r3 = socket(0x10, 0x3, 0x9)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a000000030000000800"], 0x48)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x2}, 0x18)
r6 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000040)={0x0, <r7=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @ipv4=@multicast2}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r7}]}]}, 0x28}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000530401"], 0x28}, 0x1, 0x0, 0x0, 0x64049}, 0x40000)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x78, 0x24, 0x200, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x800, 0x4, 0x80, 0x2, 0x46b}, 0x4, 0x0, 0x9, 0x7, 0x7, 0x1, 0x2, 0x17, 0x7, 0x6, {0xa, 0x2, 0x3, 0xfffffffd, 0x5, 0x800c}}}}]}, 0x78}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', r2, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0xfff2}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004080}, 0x0)
fdatasync(r9)
r12 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
r13 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r14 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r14, &(0x7f0000004200)='t', 0x1)
sendfile(r14, r13, 0x0, 0x3ffff)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xb, 0x8, 0x160000, 0xf49, 0x400c, r4, 0x0, '\x00', r2, r12, 0x0, 0x2}, 0x50)
sendfile(r14, r13, 0x0, 0x7ffff000)
fremovexattr(r0, &(0x7f0000000040)=@known='trusted.overlay.nlink\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

598.618759ms ago: executing program 1 (id=620):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="020000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0)
write(r2, &(0x7f0000000040)="0600", 0x2)
sendfile(r2, r2, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x6, 0x0, 0x7ffc1ffb}]})

561.339769ms ago: executing program 3 (id=621):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0_to_hsr\x00'})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x9, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x40, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x54, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
creat(&(0x7f00000001c0)='./bus\x00', 0x77)
open(&(0x7f0000000100)='./bus\x00', 0x0, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
r2 = dup(0xffffffffffffffff)
sendmsg$nl_route_sched(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x44400}, 0x800)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}, [@TCA_NETEM_DELAY_DIST={0xd, 0xd, "85def352b66e12dffc"}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8080)

472.012531ms ago: executing program 3 (id=622):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYRES8=r1], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
readlinkat(0xffffffffffffffff, &(0x7f0000000c00)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000a00)=""/204, 0xcc)
r4 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r4, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)

406.712402ms ago: executing program 0 (id=623):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x3, 0x25a, &(0x7f0000000240)="$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")
open(0x0, 0x145142, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000"], 0x50)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x24000850}, 0x40)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), 0x0}, 0x20)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp\x00')
preadv(r4, &(0x7f0000000380), 0x0, 0x5, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000800000000000000000000000007ff51e4ff380ba5d18e1f8aa1e8d4769b4abba8656a3d2005c4626d165a165072988496ae310652536fd473f61fc5fdd0e8b072d05aa2de1d33f98fa60d646ed200a5159649fae3fa818ad5b1b3cf"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000c40)=ANY=[@ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r7, 0x0, 0x5}, 0x18)
r8 = syz_open_procfs(0x0, 0x0)
lseek(r8, 0x10001, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000020000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)

275.900525ms ago: executing program 0 (id=624):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
r1 = socket$igmp6(0xa, 0x3, 0x3a)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x7, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x18)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0xfffc, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x16}, 0x4}, 0x1000, {[0x9, 0xdaa, 0xfffffffe, 0x31, 0x6, 0x1, 0x2]}}, 0x5c)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000002c0)=0x1)

6.92269ms ago: executing program 1 (id=625):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffdfc, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

0s ago: executing program 0 (id=626):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0x11c, r2, 0x800, 0x70bd29, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8001}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x22eb}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x1}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4004}, 0x4008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000100000028"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00')
r4 = socket(0x10, 0x2, 0x0)
sendto$inet6(r4, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

3309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.759313][ T3309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.787477][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.794436][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.820361][ T3309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.906592][ T3309] hsr_slave_0: entered promiscuous mode
[   36.912539][ T3309] hsr_slave_1: entered promiscuous mode
[   36.918718][ T3309] debugfs: 'hsr0' already exists in 'hsr'
[   36.924444][ T3309] Cannot create hsr debugfs directory
[   37.003201][ T3310] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   37.029289][ T3310] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   37.045103][ T3310] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   37.056290][ T3310] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   37.067271][ T3308] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.082142][ T3308] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.092149][ T3308] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.108054][ T3308] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.141510][ T3307] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   37.151483][ T3307] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   37.160748][ T3307] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   37.175524][ T3307] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   37.212025][ T3306] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   37.223425][ T3306] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   37.243955][ T3306] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   37.259123][ T3306] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   37.291638][ T3309] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.300874][ T3309] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.312697][ T3309] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.322048][ T3309] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.340546][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.356258][ T3310] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.367987][ T3308] 8021q: adding VLAN 0 to HW filter on device team0
[   37.380966][ T1668] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.388043][ T1668] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.402200][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.413610][ T3310] 8021q: adding VLAN 0 to HW filter on device team0
[   37.424649][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.431734][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.461258][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.468365][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.479008][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.486109][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.515455][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   37.546648][ T1668] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.553774][ T1668] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.568135][ T1668] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.575251][ T1668] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.595466][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.614607][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   37.645583][ T3309] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.653658][ T3308] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.662537][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.669704][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.679032][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.686109][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.701957][ T3309] 8021q: adding VLAN 0 to HW filter on device team0
[   37.728920][ T3306] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   37.739371][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.771814][ T3310] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.815673][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.822850][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.833362][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.840455][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.864352][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.880932][ T3308] veth0_vlan: entered promiscuous mode
[   37.891082][ T3309] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.908346][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.919734][ T3308] veth1_vlan: entered promiscuous mode
[   37.950889][ T3308] veth0_macvtap: entered promiscuous mode
[   37.976261][ T3308] veth1_macvtap: entered promiscuous mode
[   37.992257][ T3310] veth0_vlan: entered promiscuous mode
[   38.017262][ T3310] veth1_vlan: entered promiscuous mode
[   38.028776][ T3309] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.037228][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.052487][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.091970][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.101627][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.117049][ T3310] veth0_macvtap: entered promiscuous mode
[   38.135351][ T3310] veth1_macvtap: entered promiscuous mode
[   38.142760][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.155205][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.167114][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.184678][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.211236][ T3307] veth0_vlan: entered promiscuous mode
[   38.219574][   T31] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.238661][   T31] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.252558][ T3308] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.256254][ T3309] veth0_vlan: entered promiscuous mode
[   38.273245][   T31] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.288002][ T3307] veth1_vlan: entered promiscuous mode
[   38.309466][ T3306] veth0_vlan: entered promiscuous mode
[   38.318382][   T31] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.331179][ T3307] veth0_macvtap: entered promiscuous mode
[   38.351814][ T3309] veth1_vlan: entered promiscuous mode
[   38.362288][ T3306] veth1_vlan: entered promiscuous mode
[   38.378118][ T3307] veth1_macvtap: entered promiscuous mode
[   38.389153][ T3479] tmpfs: Bad value for 'mpol'
[   38.403770][ T3306] veth0_macvtap: entered promiscuous mode
[   38.404692][ T3477] loop2: detected capacity change from 0 to 128
[   38.410294][ T3479] tmpfs: Bad value for 'mpol'
[   38.428042][ T3306] veth1_macvtap: entered promiscuous mode
[   38.434658][ T3477] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.442522][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.456535][ T3477] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   38.463708][ T3309] veth0_macvtap: entered promiscuous mode
[   38.472854][ T3477] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   38.478462][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.489961][ T3309] veth1_macvtap: entered promiscuous mode
[   38.499116][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.512101][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.528159][ T1083] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.546601][ T3486] FAULT_INJECTION: forcing a failure.
[   38.546601][ T3486] name failslab, interval 1, probability 0, space 0, times 1
[   38.559412][ T3486] CPU: 0 UID: 0 PID: 3486 Comm: syz.1.7 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.559436][ T3486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   38.559448][ T3486] Call Trace:
[   38.559454][ T3486]  <TASK>
[   38.559496][ T3486]  __dump_stack+0x1d/0x30
[   38.559514][ T3477] loop2: detected capacity change from 0 to 2048
[   38.559521][ T3486]  dump_stack_lvl+0xe8/0x140
[   38.559547][ T3486]  dump_stack+0x15/0x1b
[   38.559608][ T3486]  should_fail_ex+0x265/0x280
[   38.559651][ T3486]  should_failslab+0x8c/0xb0
[   38.559695][ T3486]  kmem_cache_alloc_noprof+0x50/0x310
[   38.559753][ T3486]  ? prepare_creds+0x37/0x4c0
[   38.559783][ T3486]  prepare_creds+0x37/0x4c0
[   38.559823][ T3486]  copy_creds+0x8f/0x3f0
[   38.559852][ T3486]  copy_process+0x658/0x2000
[   38.560017][ T3486]  ? kstrtouint+0x76/0xc0
[   38.560043][ T3486]  ? __rcu_read_unlock+0x4f/0x70
[   38.560132][ T3486]  ? 0xffffffffff600000
[   38.560146][ T3486]  kernel_clone+0x16c/0x5c0
[   38.560166][ T3486]  ? vfs_write+0x7e8/0x960
[   38.560190][ T3486]  ? 0xffffffffff600000
[   38.560204][ T3486]  __x64_sys_clone+0xe6/0x120
[   38.560246][ T3486]  ? 0xffffffffff600000
[   38.560272][ T3486]  x64_sys_call+0x119c/0x2ff0
[   38.560360][ T3486]  do_syscall_64+0xd2/0x200
[   38.560393][ T3486]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.560422][ T3486]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.560523][ T3486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.560547][ T3486] RIP: 0033:0x7f71d9e9ebe9
[   38.560563][ T3486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.560583][ T3486] RSP: 002b:00007f71d88fefe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[   38.560609][ T3486] RAX: ffffffffffffffda RBX: 00007f71da0d5fa0 RCX: 00007f71d9e9ebe9
[   38.560623][ T3486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000002c9a4080
[   38.560664][ T3486] RBP: 00007f71d88ff090 R08: ffffffffff600000 R09: ffffffffff600000
[   38.560678][ T3486] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   38.560692][ T3486] R13: 00007f71da0d6038 R14: 00007f71da0d5fa0 R15: 00007ffd87d87b88
[   38.560709][ T3486]  ? 0xffffffffff600000
[   38.560740][ T3486]  ? 0xffffffffff600000
[   38.560758][ T3486]  </TASK>
[   38.798875][   T29] kauditd_printk_skb: 41 callbacks suppressed
[   38.798893][   T29] audit: type=1326 audit(1757064164.288:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.839197][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.844995][   T29] audit: type=1326 audit(1757064164.288:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.846677][ T1083] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.869628][   T29] audit: type=1326 audit(1757064164.288:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.901437][   T29] audit: type=1326 audit(1757064164.288:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.917969][ T3492] loop1: detected capacity change from 0 to 512
[   38.924595][   T29] audit: type=1326 audit(1757064164.288:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.953920][   T29] audit: type=1326 audit(1757064164.288:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.977099][   T29] audit: type=1326 audit(1757064164.288:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   38.979676][ T3477] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.3: bad orphan inode 61
[   39.000310][   T29] audit: type=1326 audit(1757064164.288:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   39.021661][ T3477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.033207][   T29] audit: type=1326 audit(1757064164.288:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   39.048298][ T3492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.068216][   T29] audit: type=1326 audit(1757064164.288:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3488 comm="syz.1.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   39.083047][ T3492] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.123375][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.133813][   T31] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.145262][  T273] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.173952][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.184623][  T273] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.225897][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.235085][  T273] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.243823][  T273] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.255841][  T273] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.265199][   T31] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.291107][   T31] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.310449][   T31] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.343157][ T3517] udevd[3517]: failed to send result of seq 7357 to main daemon: Connection refused
[   39.350995][ T3297] udevd[3297]: failed to send result of seq 7353 to main daemon: Transport endpoint is not connected
[   39.371565][ T3523] netlink: 'syz.0.1': attribute type 1 has an invalid length.
[   39.379892][ T3515] netlink: 52 bytes leftover after parsing attributes in process `syz.2.12'.
[   39.382794][ T3543] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.388796][ T3515] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12'.
[   39.406307][ T3515] netlink: 52 bytes leftover after parsing attributes in process `syz.2.12'.
[   39.415101][ T3515] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12'.
[   39.423867][ T3515] netlink: 52 bytes leftover after parsing attributes in process `syz.2.12'.
[   39.445090][ T3545] sd 0:0:1:0: device reset
[   39.656067][ T3569] loop4: detected capacity change from 0 to 1024
[   39.662979][ T3569] =======================================================
[   39.662979][ T3569] WARNING: The mand mount option has been deprecated and
[   39.662979][ T3569]          and is ignored by this kernel. Remove the mand
[   39.662979][ T3569]          option from the mount to silence this warning.
[   39.662979][ T3569] =======================================================
[   39.719067][ T3569] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.751905][ T2958] IPVS: starting estimator thread 0...
[   39.777713][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.816501][ T3593] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   39.844977][ T3589] IPVS: using max 2880 ests per chain, 144000 per kthread
[   40.077146][ T3593] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.190645][    C0] hrtimer: interrupt took 27826 ns
[   40.204442][ T2958] kernel write not supported for file /24/oom_adj (pid: 2958 comm: kworker/1:2)
[   40.247450][ T3602] FAULT_INJECTION: forcing a failure.
[   40.247450][ T3602] name failslab, interval 1, probability 0, space 0, times 0
[   40.261398][ T3602] CPU: 0 UID: 0 PID: 3602 Comm: syz.1.19 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   40.261454][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   40.261464][ T3602] Call Trace:
[   40.261469][ T3602]  <TASK>
[   40.261497][ T3602]  __dump_stack+0x1d/0x30
[   40.261516][ T3602]  dump_stack_lvl+0xe8/0x140
[   40.261532][ T3602]  dump_stack+0x15/0x1b
[   40.261607][ T3602]  should_fail_ex+0x265/0x280
[   40.261624][ T3602]  should_failslab+0x8c/0xb0
[   40.261647][ T3602]  kmem_cache_alloc_node_noprof+0x57/0x320
[   40.261701][ T3602]  ? __alloc_skb+0x101/0x320
[   40.261725][ T3602]  __alloc_skb+0x101/0x320
[   40.261742][ T3602]  ? audit_log_start+0x365/0x6c0
[   40.261819][ T3602]  audit_log_start+0x380/0x6c0
[   40.261906][ T3602]  audit_seccomp+0x48/0x100
[   40.261927][ T3602]  ? __seccomp_filter+0x68c/0x10d0
[   40.261945][ T3602]  __seccomp_filter+0x69d/0x10d0
[   40.261963][ T3602]  ? read_tsc+0x9/0x20
[   40.262019][ T3602]  ? ktime_get+0x1eb/0x210
[   40.262110][ T3602]  ? lapic_next_event+0x11/0x20
[   40.262131][ T3602]  ? clockevents_program_event+0x240/0x4e0
[   40.262222][ T3602]  __secure_computing+0x82/0x150
[   40.262238][ T3602]  syscall_trace_enter+0xcf/0x1e0
[   40.262259][ T3602]  do_syscall_64+0xac/0x200
[   40.262282][ T3602]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   40.262324][ T3602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.262340][ T3602] RIP: 0033:0x7f71d9e9ebe9
[   40.262352][ T3602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.262366][ T3602] RSP: 002b:00007f71d88ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f9
[   40.262390][ T3602] RAX: ffffffffffffffda RBX: 00007f71da0d5fa0 RCX: 00007f71d9e9ebe9
[   40.262463][ T3602] RDX: 0000200000001fee RSI: 0000200000001ffb RDI: 0000200000000040
[   40.262541][ T3602] RBP: 00007f71d88ff090 R08: 0000000000000000 R09: 0000000000000000
[   40.262550][ T3602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.262559][ T3602] R13: 00007f71da0d6038 R14: 00007f71da0d5fa0 R15: 00007ffd87d87b88
[   40.262573][ T3602]  </TASK>
[   40.479959][ T3604] loop1: detected capacity change from 0 to 764
[   40.491484][ T3604] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   40.501848][ T3604] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   40.800617][ T3614] loop1: detected capacity change from 0 to 1024
[   40.829503][ T3614] EXT4-fs: Ignoring removed bh option
[   40.853415][ T3614] EXT4-fs: inline encryption not supported
[   40.896782][ T3614] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   41.103794][ T3605] syz.3.17 (3605) used greatest stack depth: 10176 bytes left
[   41.131806][ T3614] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   41.151171][ T3614] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.21: lblock 2 mapped to illegal pblock 2 (length 1)
[   41.175796][ T3614] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.21: lblock 0 mapped to illegal pblock 48 (length 1)
[   41.210439][ T3614] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.21: Failed to acquire dquot type 0
[   41.236911][ T3614] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   41.256889][ T3614] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.21: mark_inode_dirty error
[   41.280290][ T3614] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   41.302909][ T3614] EXT4-fs (loop1): 1 orphan inode deleted
[   41.320468][ T3614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.343614][ T3627] loop0: detected capacity change from 0 to 128
[   41.426016][ T3556] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:40: lblock 1 mapped to illegal pblock 1 (length 1)
[   41.450803][ T3556] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:40: Failed to release dquot type 0
[   41.476547][ T3614] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.492319][ T3614] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.21: Invalid inode table block 1 in block_group 0
[   41.520315][ T3614] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   41.537084][ T3614] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz.1.21: mark_inode_dirty error
[   41.708120][ T3645] Zero length message leads to an empty skb
[   41.931455][ T3651] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.939985][ T3651] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   42.155546][ T3593] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.244306][ T3401] IPVS: starting estimator thread 0...
[   42.365991][ T3665] IPVS: using max 2880 ests per chain, 144000 per kthread
[   42.836408][ T3682] netlink: 'syz.3.44': attribute type 1 has an invalid length.
[   42.848050][ T3682] netlink: 8 bytes leftover after parsing attributes in process `syz.3.44'.
[   43.393832][ T3691] loop3: detected capacity change from 0 to 128
[   43.403123][ T3691] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.417513][ T3691] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   43.440134][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.097690][ T3705] FAULT_INJECTION: forcing a failure.
[   44.097690][ T3705] name failslab, interval 1, probability 0, space 0, times 0
[   44.110348][ T3705] CPU: 1 UID: 0 PID: 3705 Comm: syz.2.52 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.110369][ T3705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   44.110454][ T3705] Call Trace:
[   44.110459][ T3705]  <TASK>
[   44.110464][ T3705]  __dump_stack+0x1d/0x30
[   44.110482][ T3705]  dump_stack_lvl+0xe8/0x140
[   44.110502][ T3705]  dump_stack+0x15/0x1b
[   44.110519][ T3705]  should_fail_ex+0x265/0x280
[   44.110611][ T3705]  should_failslab+0x8c/0xb0
[   44.110665][ T3705]  kmem_cache_alloc_noprof+0x50/0x310
[   44.110689][ T3705]  ? getname_flags+0x80/0x3b0
[   44.110718][ T3705]  getname_flags+0x80/0x3b0
[   44.110741][ T3705]  do_sys_openat2+0x60/0x110
[   44.110770][ T3705]  __x64_sys_openat+0xf2/0x120
[   44.110799][ T3705]  x64_sys_call+0x2e9c/0x2ff0
[   44.110822][ T3705]  do_syscall_64+0xd2/0x200
[   44.110877][ T3705]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.110898][ T3705]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.110933][ T3705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.110955][ T3705] RIP: 0033:0x7f823fc1ebe9
[   44.110970][ T3705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.111050][ T3705] RSP: 002b:00007f823e687038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   44.111102][ T3705] RAX: ffffffffffffffda RBX: 00007f823fe55fa0 RCX: 00007f823fc1ebe9
[   44.111112][ T3705] RDX: 000000000000275a RSI: 0000200000000040 RDI: ffffffffffffff9c
[   44.111124][ T3705] RBP: 00007f823e687090 R08: 0000000000000000 R09: 0000000000000000
[   44.111196][ T3705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.111273][ T3705] R13: 00007f823fe56038 R14: 00007f823fe55fa0 R15: 00007ffd06165be8
[   44.111292][ T3705]  </TASK>
[   44.339041][ T3708] netlink: 96 bytes leftover after parsing attributes in process `syz.1.53'.
[   44.350151][ T3708] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   44.358570][ T3708] process 'syz.1.53' launched '/dev/fd/8' with NULL argv: empty string added
[   44.389366][   T29] kauditd_printk_skb: 5070 callbacks suppressed
[   44.389386][   T29] audit: type=1400 audit(1757064169.838:5188): avc:  denied  { audit_control } for  pid=3710 comm="syz.2.55" capability=30  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   44.416965][   T29] audit: type=1400 audit(1757064169.848:5189): avc:  denied  { execute } for  pid=3706 comm="syz.1.53" dev="tmpfs" ino=1035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   44.437964][   T29] audit: type=1400 audit(1757064169.858:5190): avc:  denied  { execute_no_trans } for  pid=3706 comm="syz.1.53" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   44.487780][   T29] audit: type=1326 audit(1757064169.938:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   44.511039][   T29] audit: type=1326 audit(1757064169.938:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   44.583778][   T29] audit: type=1400 audit(1757064170.068:5193): avc:  denied  { ioctl } for  pid=3725 comm="syz.3.62" path="socket:[5335]" dev="sockfs" ino=5335 ioctlcmd=0x89a0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   44.609194][   T29] audit: type=1400 audit(1757064170.098:5194): avc:  denied  { bind } for  pid=3725 comm="syz.3.62" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   44.628679][   T29] audit: type=1400 audit(1757064170.098:5195): avc:  denied  { write } for  pid=3725 comm="syz.3.62" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   44.631348][   T29] audit: type=1400 audit(1757064170.118:5196): avc:  denied  { write } for  pid=3725 comm="syz.3.62" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   44.631422][   T29] audit: type=1400 audit(1757064170.118:5197): avc:  denied  { open } for  pid=3725 comm="syz.3.62" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   44.705234][ T3729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.61'.
[   44.729330][ T3593] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.851002][ T3581] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.910494][ T3732] netlink: 'syz.3.63': attribute type 21 has an invalid length.
[   44.918233][ T3732] netlink: 156 bytes leftover after parsing attributes in process `syz.3.63'.
[   44.935200][ T3581] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.990289][ T3581] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.009780][ T3722] 9pnet_fd: Insufficient options for proto=fd
[   45.087266][ T3581] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.335085][ T3738] tipc: Started in network mode
[   45.340122][ T3738] tipc: Node identity 6eacccc6ef06, cluster identity 4711
[   45.347394][ T3738] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   45.371508][ T3737] tipc: Resetting bearer <eth:syzkaller0>
[   45.427530][ T3737] tipc: Disabling bearer <eth:syzkaller0>
[   45.496618][ T3754] loop4: detected capacity change from 0 to 512
[   45.507344][ T3754] EXT4-fs: Ignoring removed nobh option
[   45.511006][ T3758] vlan2: entered promiscuous mode
[   45.518378][ T3758] vlan2: entered allmulticast mode
[   45.518396][ T3758] hsr_slave_1: entered allmulticast mode
[   45.533214][ T3754] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   45.553891][ T3758] netlink: 4 bytes leftover after parsing attributes in process `syz.1.73'.
[   45.602037][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.72: corrupted inode contents
[   45.640537][ T3754] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #3: comm syz.4.72: mark_inode_dirty error
[   45.659451][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #3: comm syz.4.72: corrupted inode contents
[   45.666970][ T3766] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.677774][ T3754] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.72: mark_inode_dirty error
[   45.698400][ T3754] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.72: Failed to acquire dquot type 0
[   45.713144][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.72: corrupted inode contents
[   45.726471][ T3754] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.72: mark_inode_dirty error
[   45.739647][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.72: corrupted inode contents
[   45.754118][ T3754] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.72: mark_inode_dirty error
[   45.767040][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.72: corrupted inode contents
[   45.782752][ T3754] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   45.795543][ T3766] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.807765][ T3754] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.72: corrupted inode contents
[   45.825758][ T3754] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.72: mark_inode_dirty error
[   45.840274][ T3754] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   45.860881][ T3766] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.873633][ T3754] EXT4-fs (loop4): 1 truncate cleaned up
[   45.882050][ T3754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.894905][ T3754] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.928966][ T3766] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.996588][ T3562] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.008739][ T3562] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.020429][ T3562] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.033440][ T3556] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.187515][ T3789] mmap: syz.3.84 (3789) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   46.270111][ T3754] syz.4.72 (3754) used greatest stack depth: 9608 bytes left
[   46.278996][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.298470][ T3792] FAULT_INJECTION: forcing a failure.
[   46.298470][ T3792] name failslab, interval 1, probability 0, space 0, times 0
[   46.311125][ T3792] CPU: 1 UID: 0 PID: 3792 Comm: syz.4.85 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.311181][ T3792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.311195][ T3792] Call Trace:
[   46.311202][ T3792]  <TASK>
[   46.311209][ T3792]  __dump_stack+0x1d/0x30
[   46.311231][ T3792]  dump_stack_lvl+0xe8/0x140
[   46.311252][ T3792]  dump_stack+0x15/0x1b
[   46.311317][ T3792]  should_fail_ex+0x265/0x280
[   46.311340][ T3792]  should_failslab+0x8c/0xb0
[   46.311363][ T3792]  __kmalloc_noprof+0xa5/0x3e0
[   46.311386][ T3792]  ? memcg_list_lru_alloc+0x195/0x490
[   46.311404][ T3792]  memcg_list_lru_alloc+0x195/0x490
[   46.311551][ T3792]  __memcg_slab_post_alloc_hook+0x1a7/0x580
[   46.311589][ T3792]  kmem_cache_alloc_lru_noprof+0x229/0x310
[   46.311626][ T3792]  ? __d_alloc+0x3d/0x340
[   46.311655][ T3792]  __d_alloc+0x3d/0x340
[   46.311684][ T3792]  ? from_vfsgid+0x70/0xa0
[   46.311714][ T3792]  d_alloc_pseudo+0x1e/0x80
[   46.311768][ T3792]  alloc_file_pseudo+0x71/0x160
[   46.311809][ T3792]  hugetlb_file_setup+0x2a6/0x3d0
[   46.311838][ T3792]  ksys_mmap_pgoff+0x157/0x310
[   46.311859][ T3792]  x64_sys_call+0x14a3/0x2ff0
[   46.311883][ T3792]  do_syscall_64+0xd2/0x200
[   46.311949][ T3792]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.311975][ T3792]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   46.312001][ T3792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.312023][ T3792] RIP: 0033:0x7f87c5eeebe9
[   46.312040][ T3792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.312090][ T3792] RSP: 002b:00007f87c4957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   46.312110][ T3792] RAX: ffffffffffffffda RBX: 00007f87c6125fa0 RCX: 00007f87c5eeebe9
[   46.312124][ T3792] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[   46.312137][ T3792] RBP: 00007f87c4957090 R08: ffffffffffffffff R09: 0000000000000000
[   46.312151][ T3792] R10: 0000000000042073 R11: 0000000000000246 R12: 0000000000000001
[   46.312164][ T3792] R13: 00007f87c6126038 R14: 00007f87c6125fa0 R15: 00007ffe664a3968
[   46.312215][ T3792]  </TASK>
[   46.357889][ T3786] netlink: 'syz.2.83': attribute type 21 has an invalid length.
[   46.483347][ T3798] capability: warning: `syz.2.83' uses 32-bit capabilities (legacy support in use)
[   46.549778][ T3797] team0 (unregistering): Port device team_slave_0 removed
[   46.560667][ T3797] team0 (unregistering): Port device team_slave_1 removed
[   46.578373][ T3786] netlink: 156 bytes leftover after parsing attributes in process `syz.2.83'.
[   46.587367][ T3786] netlink: 4 bytes leftover after parsing attributes in process `syz.2.83'.
[   47.051865][ T3810] FAULT_INJECTION: forcing a failure.
[   47.051865][ T3810] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   47.064950][ T3810] CPU: 1 UID: 0 PID: 3810 Comm: syz.3.92 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.064975][ T3810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   47.064985][ T3810] Call Trace:
[   47.064989][ T3810]  <TASK>
[   47.065064][ T3810]  __dump_stack+0x1d/0x30
[   47.065139][ T3810]  dump_stack_lvl+0xe8/0x140
[   47.065153][ T3810]  dump_stack+0x15/0x1b
[   47.065165][ T3810]  should_fail_ex+0x265/0x280
[   47.065181][ T3810]  should_fail+0xb/0x20
[   47.065193][ T3810]  should_fail_usercopy+0x1a/0x20
[   47.065210][ T3810]  _copy_from_user+0x1c/0xb0
[   47.065281][ T3810]  ___sys_sendmsg+0xc1/0x1d0
[   47.065311][ T3810]  __x64_sys_sendmsg+0xd4/0x160
[   47.065332][ T3810]  x64_sys_call+0x191e/0x2ff0
[   47.065416][ T3810]  do_syscall_64+0xd2/0x200
[   47.065439][ T3810]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.065457][ T3810]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   47.065546][ T3810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.065667][ T3810] RIP: 0033:0x7f522dd1ebe9
[   47.065678][ T3810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.065690][ T3810] RSP: 002b:00007f522c787038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   47.065704][ T3810] RAX: ffffffffffffffda RBX: 00007f522df55fa0 RCX: 00007f522dd1ebe9
[   47.065713][ T3810] RDX: 000000000000c000 RSI: 0000200000000080 RDI: 0000000000000006
[   47.065722][ T3810] RBP: 00007f522c787090 R08: 0000000000000000 R09: 0000000000000000
[   47.065731][ T3810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.065739][ T3810] R13: 00007f522df56038 R14: 00007f522df55fa0 R15: 00007ffe22a6de08
[   47.065791][ T3810]  </TASK>
[   47.407951][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.415843][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.423572][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.431508][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.439312][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.447093][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.454856][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.462736][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.470681][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.478457][ T3394] hid-generic 0008:0006:80000007.0001: unknown main item tag 0x0
[   47.491139][ T3394] hid-generic 0008:0006:80000007.0001: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[   47.645472][ T3833] loop3: detected capacity change from 0 to 512
[   47.665564][ T3833] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.101: iget: bogus i_mode (4200)
[   47.684689][ T3833] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.101: Bad quota inode: 4, type: 1
[   47.707788][ T3833] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   47.723008][ T3833] EXT4-fs (loop3): mount failed
[   47.731981][ T3841] FAULT_INJECTION: forcing a failure.
[   47.731981][ T3841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.745165][ T3841] CPU: 1 UID: 0 PID: 3841 Comm: syz.2.104 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   47.745239][ T3841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   47.745272][ T3841] Call Trace:
[   47.745277][ T3841]  <TASK>
[   47.745283][ T3841]  __dump_stack+0x1d/0x30
[   47.745301][ T3841]  dump_stack_lvl+0xe8/0x140
[   47.745319][ T3841]  dump_stack+0x15/0x1b
[   47.745398][ T3841]  should_fail_ex+0x265/0x280
[   47.745420][ T3841]  should_fail+0xb/0x20
[   47.745438][ T3841]  should_fail_usercopy+0x1a/0x20
[   47.745465][ T3841]  strncpy_from_user+0x25/0x230
[   47.745505][ T3841]  strncpy_from_user_nofault+0x68/0xf0
[   47.745534][ T3841]  bpf_bprintf_prepare+0x88f/0xd90
[   47.745565][ T3841]  ? avc_has_perm_noaudit+0x1b1/0x200
[   47.745598][ T3841]  ? avc_has_perm+0xf7/0x180
[   47.745620][ T3841]  ? bpf_trace_run2+0xf5/0x1c0
[   47.745642][ T3841]  bpf_trace_printk+0x84/0x1c0
[   47.745727][ T3841]  ? bpf_trace_run2+0xf5/0x1c0
[   47.745782][ T3841]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[   47.745803][ T3841]  bpf_trace_run2+0x104/0x1c0
[   47.745831][ T3841]  ? key_user_lookup+0x157/0x270
[   47.745917][ T3841]  ? key_user_lookup+0x157/0x270
[   47.745942][ T3841]  kfree+0x27b/0x320
[   47.745984][ T3841]  key_user_lookup+0x157/0x270
[   47.746019][ T3841]  keyctl_chown_key+0x29c/0x5d0
[   47.746048][ T3841]  ? get_pid_task+0x96/0xd0
[   47.746072][ T3841]  ? proc_fail_nth_write+0x13b/0x160
[   47.746173][ T3841]  __se_sys_keyctl+0x120/0xb80
[   47.746221][ T3841]  ? __rcu_read_unlock+0x4f/0x70
[   47.746240][ T3841]  ? __fget_files+0x184/0x1c0
[   47.746269][ T3841]  ? fput+0x8f/0xc0
[   47.746305][ T3841]  __x64_sys_keyctl+0x67/0x80
[   47.746343][ T3841]  x64_sys_call+0x2f6d/0x2ff0
[   47.746470][ T3841]  do_syscall_64+0xd2/0x200
[   47.746510][ T3841]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.746551][ T3841]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   47.746581][ T3841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.746642][ T3841] RIP: 0033:0x7f823fc1ebe9
[   47.746654][ T3841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.746669][ T3841] RSP: 002b:00007f823e687038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   47.746684][ T3841] RAX: ffffffffffffffda RBX: 00007f823fe55fa0 RCX: 00007f823fc1ebe9
[   47.746694][ T3841] RDX: 000000000bb6968e RSI: 000000000bb6968e RDI: 0000000000000004
[   47.746704][ T3841] RBP: 00007f823e687090 R08: 0000000000000000 R09: 0000000000000000
[   47.746714][ T3841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.746724][ T3841] R13: 00007f823fe56038 R14: 00007f823fe55fa0 R15: 00007ffd06165be8
[   47.746741][ T3841]  </TASK>
[   48.012329][ T3843] netlink: 16 bytes leftover after parsing attributes in process `syz.0.103'.
[   48.025001][ T3842] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.025247][ T3833] loop3: detected capacity change from 0 to 1024
[   48.042095][ T3833] EXT4-fs: Ignoring removed bh option
[   48.049871][ T3833] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   48.071390][ T3833] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[   48.079886][ T3833] System zones: 0-1, 3-12
[   48.087037][ T3833] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.101: lblock 1 mapped to illegal pblock 1 (length 1)
[   48.105306][ T3842] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.119759][ T3833] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.101: Failed to acquire dquot type 0
[   48.131589][ T3833] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.101: Freeing blocks not in datazone - block = 0, count = 4096
[   48.145448][ T3833] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.101: Invalid inode bitmap blk 0 in block_group 0
[   48.159401][ T3833] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   48.168308][ T3833] EXT4-fs (loop3): 1 orphan inode deleted
[   48.174566][ T3833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.194032][ T3842] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.238361][ T3563] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:47: lblock 1 mapped to illegal pblock 1 (length 1)
[   48.253960][ T3563] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:47: Failed to release dquot type 0
[   48.268995][ T3842] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.451764][ T3833] netlink: 'syz.3.101': attribute type 21 has an invalid length.
[   48.460212][ T3833] netlink: 156 bytes leftover after parsing attributes in process `syz.3.101'.
[   48.469221][ T3833] netlink: 4 bytes leftover after parsing attributes in process `syz.3.101'.
[   48.529409][ T3563] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.584908][ T3563] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.613792][ T3563] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.644511][ T3850] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   48.663951][ T3563] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.993666][   T23] IPVS: starting estimator thread 0...
[   49.018214][ T3873] netlink: 16 bytes leftover after parsing attributes in process `syz.2.115'.
[   49.094931][ T3870] IPVS: using max 2784 ests per chain, 139200 per kthread
[   49.109707][ T3860] netlink: 'syz.0.109': attribute type 21 has an invalid length.
[   49.119577][ T3860] netlink: 156 bytes leftover after parsing attributes in process `syz.0.109'.
[   49.419460][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.579626][ T3885] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.627438][ T3885] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.653580][   T29] kauditd_printk_skb: 207 callbacks suppressed
[   49.653596][   T29] audit: type=1326 audit(1757064175.138:5398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.683484][   T29] audit: type=1326 audit(1757064175.138:5399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.706950][   T29] audit: type=1326 audit(1757064175.138:5400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.730315][   T29] audit: type=1326 audit(1757064175.148:5401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.753752][   T29] audit: type=1326 audit(1757064175.148:5402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.777109][   T29] audit: type=1326 audit(1757064175.148:5403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.800495][   T29] audit: type=1326 audit(1757064175.148:5404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.823886][   T29] audit: type=1326 audit(1757064175.148:5405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.847227][   T29] audit: type=1326 audit(1757064175.148:5406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.870514][   T29] audit: type=1326 audit(1757064175.148:5407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3886 comm="syz.0.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   49.927817][ T3885] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.017771][ T3885] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.059487][ T3908] FAULT_INJECTION: forcing a failure.
[   50.059487][ T3908] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.072605][ T3908] CPU: 1 UID: 0 PID: 3908 Comm: syz.2.127 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   50.072710][ T3908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   50.072723][ T3908] Call Trace:
[   50.072730][ T3908]  <TASK>
[   50.072746][ T3908]  __dump_stack+0x1d/0x30
[   50.072766][ T3908]  dump_stack_lvl+0xe8/0x140
[   50.072812][ T3908]  dump_stack+0x15/0x1b
[   50.072896][ T3908]  should_fail_ex+0x265/0x280
[   50.072922][ T3908]  should_fail+0xb/0x20
[   50.072944][ T3908]  should_fail_usercopy+0x1a/0x20
[   50.072967][ T3908]  strncpy_from_user+0x25/0x230
[   50.073130][ T3908]  strncpy_from_bpfptr+0x43/0x50
[   50.073172][ T3908]  bpf_prog_load+0x884/0x1070
[   50.073234][ T3908]  ? security_bpf+0x2b/0x90
[   50.073302][ T3908]  __sys_bpf+0x462/0x7b0
[   50.073353][ T3908]  __x64_sys_bpf+0x41/0x50
[   50.073380][ T3908]  x64_sys_call+0x2aea/0x2ff0
[   50.073408][ T3908]  do_syscall_64+0xd2/0x200
[   50.073437][ T3908]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.073463][ T3908]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   50.073536][ T3908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.073553][ T3908] RIP: 0033:0x7f823fc1ebe9
[   50.073565][ T3908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.073604][ T3908] RSP: 002b:00007f823e687038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   50.073624][ T3908] RAX: ffffffffffffffda RBX: 00007f823fe55fa0 RCX: 00007f823fc1ebe9
[   50.073637][ T3908] RDX: 0000000000000048 RSI: 000020000000e000 RDI: 0000000000000005
[   50.073649][ T3908] RBP: 00007f823e687090 R08: 0000000000000000 R09: 0000000000000000
[   50.073659][ T3908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.073669][ T3908] R13: 00007f823fe56038 R14: 00007f823fe55fa0 R15: 00007ffd06165be8
[   50.073710][ T3908]  </TASK>
[   50.272468][ T3562] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.289284][ T3562] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.306208][ T3912] syz.4.128 uses obsolete (PF_INET,SOCK_PACKET)
[   50.307171][ T3562] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.337117][ T3562] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.432461][ T3919] loop3: detected capacity change from 0 to 1024
[   50.491896][ T3937] loop4: detected capacity change from 0 to 1024
[   50.509262][ T3937] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.559955][ T3947] tipc: Started in network mode
[   50.564894][ T3947] tipc: Node identity 2ea525a767b, cluster identity 4711
[   50.572068][ T3947] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   50.604216][ T3947] syzkaller0: entered promiscuous mode
[   50.609786][ T3947] syzkaller0: entered allmulticast mode
[   50.616413][ T3947] tipc: Resetting bearer <eth:syzkaller0>
[   50.623549][ T3951] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.635650][ T3947] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=34 sclass=netlink_audit_socket pid=3947 comm=syz.2.140
[   50.654055][ T3947] netlink: 'syz.2.140': attribute type 10 has an invalid length.
[   50.679685][ T3955] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.680624][ T3947] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   50.688241][ T3955] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.707847][ T3951] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.720768][ T3953] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.730363][ T3946] tipc: Resetting bearer <eth:syzkaller0>
[   50.742901][ T3946] tipc: Disabling bearer <eth:syzkaller0>
[   50.772268][ T3951] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.857755][ T3951] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.988797][ T3564] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.047460][ T3564] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.116446][ T3564] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.156564][ T3564] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.244250][ T3986] chnl_net:caif_netlink_parms(): no params data found
[   51.306560][ T3986] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.313711][ T3986] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.321632][ T3986] bridge_slave_0: entered allmulticast mode
[   51.328491][ T3986] bridge_slave_0: entered promiscuous mode
[   51.340362][ T3986] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.347594][ T3986] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.355065][ T3986] bridge_slave_1: entered allmulticast mode
[   51.361742][ T3986] bridge_slave_1: entered promiscuous mode
[   51.421796][ T3986] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.431070][ T3564] bridge_slave_1: left allmulticast mode
[   51.436767][ T3564] bridge_slave_1: left promiscuous mode
[   51.442535][ T3564] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.451316][ T3564] bridge_slave_0: left allmulticast mode
[   51.457170][ T3564] bridge_slave_0: left promiscuous mode
[   51.462939][ T3564] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.558489][ T3564] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   51.571453][ T3564] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   51.582927][ T3564] bond0 (unregistering): Released all slaves
[   51.592613][ T3986] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.623340][ T3986] team0: Port device team_slave_0 added
[   51.631393][ T3986] team0: Port device team_slave_1 added
[   51.657045][ T3564] hsr_slave_0: left promiscuous mode
[   51.663503][ T3564] hsr_slave_1: left promiscuous mode
[   51.669326][ T3564] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   51.676730][ T3564] batman_adv: batadv0: Removing interface: batadv_slave_0
[   51.684190][ T3564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   51.691783][ T3564] batman_adv: batadv0: Removing interface: batadv_slave_1
[   51.702392][ T3564] veth1_macvtap: left promiscuous mode
[   51.707975][ T3564] veth0_macvtap: left promiscuous mode
[   51.713537][ T3564] veth1_vlan: left promiscuous mode
[   51.718844][ T3564] veth0_vlan: left promiscuous mode
[   51.814568][ T3986] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.821579][ T3986] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.847555][ T3986] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.859255][ T3986] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.866396][ T3986] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.892887][ T3986] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.923804][ T3986] hsr_slave_0: entered promiscuous mode
[   51.929936][ T3986] hsr_slave_1: entered promiscuous mode
[   51.935804][ T3986] debugfs: 'hsr0' already exists in 'hsr'
[   51.941546][ T3986] Cannot create hsr debugfs directory
[   52.037259][ T3986] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   52.046873][ T3986] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   52.057235][ T3986] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   52.066518][ T3986] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   52.092748][ T3564] IPVS: stop unused estimator thread 0...
[   52.103786][ T3986] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.118484][ T3986] 8021q: adding VLAN 0 to HW filter on device team0
[   52.140264][ T3532] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.147382][ T3532] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.166736][ T3562] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.173880][ T3562] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.262617][ T3986] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.389128][ T3986] veth0_vlan: entered promiscuous mode
[   52.401451][ T3986] veth1_vlan: entered promiscuous mode
[   52.431546][ T3986] veth0_macvtap: entered promiscuous mode
[   52.440608][ T3986] veth1_macvtap: entered promiscuous mode
[   52.451823][ T3986] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.468989][ T3986] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.481365][ T3581] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.494202][ T3581] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.516544][ T3581] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.545586][ T3581] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.546395][ T4097] FAULT_INJECTION: forcing a failure.
[   52.546395][ T4097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.567568][ T4097] CPU: 1 UID: 0 PID: 4097 Comm: syz.5.154 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   52.567617][ T4097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   52.567631][ T4097] Call Trace:
[   52.567637][ T4097]  <TASK>
[   52.567645][ T4097]  __dump_stack+0x1d/0x30
[   52.567669][ T4097]  dump_stack_lvl+0xe8/0x140
[   52.567692][ T4097]  dump_stack+0x15/0x1b
[   52.567716][ T4097]  should_fail_ex+0x265/0x280
[   52.567771][ T4097]  should_fail+0xb/0x20
[   52.567794][ T4097]  should_fail_usercopy+0x1a/0x20
[   52.567821][ T4097]  _copy_to_user+0x20/0xa0
[   52.567857][ T4097]  simple_read_from_buffer+0xb5/0x130
[   52.567887][ T4097]  proc_fail_nth_read+0x10e/0x150
[   52.567913][ T4097]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   52.567956][ T4097]  vfs_read+0x1a8/0x770
[   52.567984][ T4097]  ? __rcu_read_unlock+0x4f/0x70
[   52.568007][ T4097]  ? __fget_files+0x184/0x1c0
[   52.568058][ T4097]  ? __sys_bind+0x223/0x2a0
[   52.568092][ T4097]  ksys_read+0xda/0x1a0
[   52.568185][ T4097]  __x64_sys_read+0x40/0x50
[   52.568204][ T4097]  x64_sys_call+0x27bc/0x2ff0
[   52.568254][ T4097]  do_syscall_64+0xd2/0x200
[   52.568289][ T4097]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.568319][ T4097]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   52.568396][ T4097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.568416][ T4097] RIP: 0033:0x7f1ac57bd5fc
[   52.568449][ T4097] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   52.568466][ T4097] RSP: 002b:00007f1ac4227030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   52.568489][ T4097] RAX: ffffffffffffffda RBX: 00007f1ac59f5fa0 RCX: 00007f1ac57bd5fc
[   52.568504][ T4097] RDX: 000000000000000f RSI: 00007f1ac42270a0 RDI: 0000000000000004
[   52.568520][ T4097] RBP: 00007f1ac4227090 R08: 0000000000000000 R09: 0000000000000000
[   52.568623][ T4097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.568638][ T4097] R13: 00007f1ac59f6038 R14: 00007f1ac59f5fa0 R15: 00007fffb21ac528
[   52.568662][ T4097]  </TASK>
[   52.843685][ T4101] loop5: detected capacity change from 0 to 164
[   52.857194][ T4101] syz.5.188: attempt to access beyond end of device
[   52.857194][ T4101] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   52.872231][ T4101] syz.5.188: attempt to access beyond end of device
[   52.872231][ T4101] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[   52.984205][ T4111] loop5: detected capacity change from 0 to 128
[   52.993858][ T4111] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.010518][ T4111] ext4 filesystem being mounted at /3/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   53.055008][ T4111] support for cryptoloop has been removed.  Use dm-crypt instead.
[   53.140598][ T4126] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.264386][ T4126] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.308826][ T4126] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.376400][ T4126] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.466389][ T3532] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.481996][ T3532] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.505106][ T3532] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.513409][ T3532] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.066329][ T4152] netlink: 'syz.1.209': attribute type 21 has an invalid length.
[   54.074236][ T4152] __nla_validate_parse: 2 callbacks suppressed
[   54.074246][ T4152] netlink: 156 bytes leftover after parsing attributes in process `syz.1.209'.
[   54.089425][ T4152] netlink: 4 bytes leftover after parsing attributes in process `syz.1.209'.
[   54.621589][ T4164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.630096][ T4164] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.636088][ T4165] bridge_slave_0: left allmulticast mode
[   54.643565][ T4165] bridge_slave_0: left promiscuous mode
[   54.649492][ T4165] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.660880][ T4165] bridge_slave_1: left allmulticast mode
[   54.666623][ T4165] bridge_slave_1: left promiscuous mode
[   54.672330][ T4165] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.684501][ T4165] bond0: (slave bond_slave_0): Releasing backup interface
[   54.705543][ T4165] bond0: (slave bond_slave_1): Releasing backup interface
[   54.726082][   T29] kauditd_printk_skb: 264 callbacks suppressed
[   54.726095][   T29] audit: type=1326 audit(1757064180.218:5672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4162 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   54.755885][   T29] audit: type=1326 audit(1757064180.248:5673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4162 comm="syz.0.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   54.757470][ T4165] team0: Port device team_slave_0 removed
[   54.806956][ T4165] team0: Port device team_slave_1 removed
[   54.813903][ T4165] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.821436][ T4165] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.829761][ T4165] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.837189][ T4165] batman_adv: batadv0: Removing interface: batadv_slave_1
[   54.864410][ T3532] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.877968][ T3532] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.891605][ T4116] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   54.907097][ T3532] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.918286][ T3562] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.944882][ T3532] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.962005][   T29] audit: type=1400 audit(1757064180.448:5674): avc:  denied  { execmem } for  pid=4174 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   55.135158][ T4182] chnl_net:caif_netlink_parms(): no params data found
[   55.200473][ T4182] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.207712][ T4182] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.215135][ T4182] bridge_slave_0: entered allmulticast mode
[   55.221625][ T4182] bridge_slave_0: entered promiscuous mode
[   55.228656][ T4182] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.235898][ T4182] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.243183][ T4182] bridge_slave_1: entered allmulticast mode
[   55.249560][ T4182] bridge_slave_1: entered promiscuous mode
[   55.268043][ T4182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.278304][ T4182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.291724][ T4197] netlink: 'syz.1.223': attribute type 21 has an invalid length.
[   55.307318][ T4197] netlink: 156 bytes leftover after parsing attributes in process `syz.1.223'.
[   55.316330][ T4197] netlink: 4 bytes leftover after parsing attributes in process `syz.1.223'.
[   55.327629][ T4182] team0: Port device team_slave_0 added
[   55.334210][ T4182] team0: Port device team_slave_1 added
[   55.377300][ T4182] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.384373][ T4182] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.410341][ T4182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.427228][ T4182] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.434300][ T4182] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.460324][ T4182] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.497968][ T4182] hsr_slave_0: entered promiscuous mode
[   55.504265][ T4182] hsr_slave_1: entered promiscuous mode
[   55.511843][ T4182] debugfs: 'hsr0' already exists in 'hsr'
[   55.517610][ T4182] Cannot create hsr debugfs directory
[   55.614018][ T4182] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   55.615841][   T29] audit: type=1400 audit(1757064181.098:5675): avc:  denied  { listen } for  pid=4231 comm="syz.0.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   55.640371][   T29] audit: type=1400 audit(1757064181.118:5676): avc:  denied  { accept } for  pid=4231 comm="syz.0.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   55.642532][ T4182] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   55.669823][ T4182] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   55.678043][   T29] audit: type=1400 audit(1757064181.168:5677): avc:  denied  { create } for  pid=4231 comm="syz.0.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   55.709121][ T4182] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   55.775522][ T4182] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.782692][ T4182] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.790033][ T4182] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.797137][ T4182] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.839953][ T4182] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.853023][ T3581] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.865621][ T3581] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.884514][ T4182] 8021q: adding VLAN 0 to HW filter on device team0
[   55.904528][   T29] audit: type=1326 audit(1757064181.388:5678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4250 comm="syz.2.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f823fc1ebe9 code=0x7ffc0000
[   55.928009][   T29] audit: type=1326 audit(1757064181.388:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4250 comm="syz.2.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f823fc1ebe9 code=0x7ffc0000
[   55.951486][   T29] audit: type=1326 audit(1757064181.388:5680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4250 comm="syz.2.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f823fc1ebe9 code=0x7ffc0000
[   55.963824][ T3563] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.974837][   T29] audit: type=1326 audit(1757064181.388:5681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4250 comm="syz.2.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f823fc1ebe9 code=0x7ffc0000
[   55.981878][ T3563] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.031553][ T4256] netlink: 'syz.2.240': attribute type 1 has an invalid length.
[   56.052909][ T4256] bond1: entered promiscuous mode
[   56.060585][ T4256] 8021q: adding VLAN 0 to HW filter on device bond1
[   56.072435][ T4256] netlink: 8 bytes leftover after parsing attributes in process `syz.2.240'.
[   56.085601][ T3563] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.092698][ T3563] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.142729][ T4182] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.153215][ T4182] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.341794][ T4182] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.533187][ T4272] netlink: 'syz.1.248': attribute type 21 has an invalid length.
[   56.541311][ T4272] netlink: 156 bytes leftover after parsing attributes in process `syz.1.248'.
[   56.550344][ T4272] netlink: 4 bytes leftover after parsing attributes in process `syz.1.248'.
[   56.826087][ T4301] loop3: detected capacity change from 0 to 128
[   56.919388][ T4301] netlink: 16 bytes leftover after parsing attributes in process `syz.3.253'.
[   56.932238][ T3562] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.991208][ T4306] netlink: 'syz.2.254': attribute type 21 has an invalid length.
[   57.014878][ T4306] netlink: 156 bytes leftover after parsing attributes in process `syz.2.254'.
[   57.023864][ T4306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.254'.
[   57.048301][ T3562] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.083922][ T4182] veth0_vlan: entered promiscuous mode
[   57.115689][ T4182] veth1_vlan: entered promiscuous mode
[   57.137913][ T3562] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.196142][ T4182] veth0_macvtap: entered promiscuous mode
[   57.233439][ T4182] veth1_macvtap: entered promiscuous mode
[   57.281076][ T4182] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.328485][ T4317] wireguard0: entered promiscuous mode
[   57.334015][ T4317] wireguard0: entered allmulticast mode
[   57.396980][ T4182] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.417098][ T3562] bridge_slave_1: left allmulticast mode
[   57.422786][ T3562] bridge_slave_1: left promiscuous mode
[   57.428536][ T3562] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.480764][ T3562] bridge_slave_0: left allmulticast mode
[   57.486766][ T3562] bridge_slave_0: left promiscuous mode
[   57.492446][ T3562] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.757460][ T3562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   57.788601][ T3562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   57.823199][ T3562] bond0 (unregistering): Released all slaves
[   57.850543][ T3581] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.864118][ T3581] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.892909][ T3562] hsr_slave_0: left promiscuous mode
[   57.909652][ T3562] hsr_slave_1: left promiscuous mode
[   57.931035][ T3562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.938507][ T3562] batman_adv: batadv0: Removing interface: batadv_slave_0
[   57.956028][ T3562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.963421][ T3562] batman_adv: batadv0: Removing interface: batadv_slave_1
[   57.979095][ T3562] veth1_macvtap: left promiscuous mode
[   57.986487][ T3562] veth0_macvtap: left promiscuous mode
[   57.992081][ T3562] veth1_vlan: left promiscuous mode
[   57.998026][ T3562] veth0_vlan: left promiscuous mode
[   58.061245][ T4340] loop3: detected capacity change from 0 to 512
[   58.072241][ T4340] EXT4-fs: Ignoring removed nobh option
[   58.123793][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.265: corrupted inode contents
[   58.140909][ T4340] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.265: mark_inode_dirty error
[   58.158985][ T3562] team0 (unregistering): Port device team_slave_1 removed
[   58.163273][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.265: corrupted inode contents
[   58.181257][ T4340] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.265: mark_inode_dirty error
[   58.197144][ T3562] team0 (unregistering): Port device team_slave_0 removed
[   58.197706][ T4340] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.265: Failed to acquire dquot type 0
[   58.222545][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.265: corrupted inode contents
[   58.240350][ T4340] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.265: mark_inode_dirty error
[   58.257661][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.265: corrupted inode contents
[   58.271609][ T4340] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.265: mark_inode_dirty error
[   58.288569][ T3581] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.306334][ T3581] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.311232][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.265: corrupted inode contents
[   58.339679][ T4340] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   58.372561][ T1035] IPVS: starting estimator thread 0...
[   58.383848][ T4340] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.265: corrupted inode contents
[   58.398648][ T4340] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.265: mark_inode_dirty error
[   58.411173][ T4340] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   58.423526][ T4340] EXT4-fs (loop3): 1 truncate cleaned up
[   58.448939][ T4340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.462790][ T4340] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.481219][ T4364] IPVS: using max 2448 ests per chain, 122400 per kthread
[   58.533693][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.807943][ T4370] netlink: 'syz.0.275': attribute type 21 has an invalid length.
[   59.014451][ T4396] netlink: 'syz.3.285': attribute type 1 has an invalid length.
[   59.041864][ T4396] bond1: entered promiscuous mode
[   59.050788][ T4396] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.085217][ T4403] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.138341][ T4405] loop3: detected capacity change from 0 to 512
[   59.157513][ T4405] EXT4-fs: Ignoring removed nobh option
[   59.251649][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.289: corrupted inode contents
[   59.265981][ T4405] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.289: mark_inode_dirty error
[   59.270565][ T4412] __nla_validate_parse: 3 callbacks suppressed
[   59.270598][ T4412] netlink: 28 bytes leftover after parsing attributes in process `syz.2.292'.
[   59.298555][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.289: corrupted inode contents
[   59.315681][ T4405] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.289: mark_inode_dirty error
[   59.339181][ T4405] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.289: Failed to acquire dquot type 0
[   59.360759][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.289: corrupted inode contents
[   59.382951][ T4405] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.289: mark_inode_dirty error
[   59.398352][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.289: corrupted inode contents
[   59.435780][ T4405] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.289: mark_inode_dirty error
[   59.456869][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.289: corrupted inode contents
[   59.493206][ T4405] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   59.505983][ T4405] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.289: corrupted inode contents
[   59.529042][ T4405] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.289: mark_inode_dirty error
[   59.545599][ T4405] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   59.557558][ T4405] EXT4-fs (loop3): 1 truncate cleaned up
[   59.570474][ T4405] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.588198][ T4405] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.829244][ T4451] netlink: 'syz.0.306': attribute type 21 has an invalid length.
[   59.838285][ T4451] netlink: 156 bytes leftover after parsing attributes in process `syz.0.306'.
[   59.847265][ T4451] netlink: 4 bytes leftover after parsing attributes in process `syz.0.306'.
[   59.942514][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.987977][   T29] kauditd_printk_skb: 197 callbacks suppressed
[   59.988034][   T29] audit: type=1326 audit(1757064185.478:5875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.017638][   T29] audit: type=1326 audit(1757064185.478:5876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.041125][   T29] audit: type=1326 audit(1757064185.478:5877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.064636][   T29] audit: type=1326 audit(1757064185.478:5878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.088152][   T29] audit: type=1326 audit(1757064185.478:5879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.111708][   T29] audit: type=1326 audit(1757064185.478:5880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.135232][   T29] audit: type=1326 audit(1757064185.478:5881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.158549][   T29] audit: type=1326 audit(1757064185.478:5882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.181867][   T29] audit: type=1326 audit(1757064185.478:5883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.205235][   T29] audit: type=1326 audit(1757064185.478:5884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4459 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   60.389850][ T4467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.398753][ T4467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.549523][ T4462] netlink: 'syz.2.310': attribute type 21 has an invalid length.
[   60.557394][ T4462] netlink: 156 bytes leftover after parsing attributes in process `syz.2.310'.
[   60.566506][ T4462] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'.
[   60.621316][ T4469] netlink: 'syz.1.313': attribute type 21 has an invalid length.
[   60.629277][ T4469] netlink: 156 bytes leftover after parsing attributes in process `syz.1.313'.
[   60.638283][ T4469] netlink: 4 bytes leftover after parsing attributes in process `syz.1.313'.
[   60.909164][ T4487] loop3: detected capacity change from 0 to 1024
[   60.926863][ T4487] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.946979][ T3415] IPVS: starting estimator thread 0...
[   61.017997][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.035001][ T4490] IPVS: using max 2544 ests per chain, 127200 per kthread
[   61.088543][ T4403] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.286459][ T4403] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.379020][ T4403] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.466252][ T3540] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.507172][ T3540] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.565819][ T3540] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.620643][ T3540] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.908514][ T4526] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.938235][ T4526] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.104699][ T4538] netlink: 16 bytes leftover after parsing attributes in process `syz.1.337'.
[   62.557464][ T4552] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.595085][ T4552] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   63.170107][ T4578] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.215979][ T4582] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.253502][ T4578] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.266442][ T4585] netlink: 16 bytes leftover after parsing attributes in process `syz.3.351'.
[   63.277745][ T4582] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.320634][ T4578] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.346448][ T4582] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.378808][ T4578] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.417615][ T4582] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.461312][ T3532] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.473009][ T3532] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.484568][ T3540] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.498221][ T3540] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.513088][ T3540] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.533038][ T3540] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.549273][ T3540] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.566207][ T3540] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.669756][ T4605] loop3: detected capacity change from 0 to 1024
[   63.687714][ T4605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.737703][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.817599][ T4616] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.827293][ T4616] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   63.851785][ T4617] loop3: detected capacity change from 0 to 512
[   63.877876][ T4617] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.364: iget: bogus i_mode (4200)
[   63.899497][ T4617] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.364: Bad quota inode: 4, type: 1
[   63.928389][ T4617] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   63.946193][ T4617] EXT4-fs (loop3): mount failed
[   63.983605][ T4617] loop3: detected capacity change from 0 to 1024
[   64.025355][ T4617] EXT4-fs: Ignoring removed bh option
[   64.038660][ T4617] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   64.057367][ T4617] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[   64.070711][ T4617] System zones: 0-1, 3-12
[   64.076414][ T4617] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.364: lblock 1 mapped to illegal pblock 1 (length 1)
[   64.094611][ T4617] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.364: Failed to acquire dquot type 0
[   64.137216][ T4617] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.364: Freeing blocks not in datazone - block = 0, count = 4096
[   64.164307][ T4617] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.364: Invalid inode bitmap blk 0 in block_group 0
[   64.178708][ T3532] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:21: lblock 1 mapped to illegal pblock 1 (length 1)
[   64.214980][ T4617] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   64.223767][ T3532] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:21: Failed to release dquot type 0
[   64.245165][ T4617] EXT4-fs (loop3): 1 orphan inode deleted
[   64.252113][ T4617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.347141][ T4659] loop6: detected capacity change from 0 to 8192
[   64.492855][ T4617] netlink: 'syz.3.364': attribute type 21 has an invalid length.
[   64.509308][ T4617] netlink: 156 bytes leftover after parsing attributes in process `syz.3.364'.
[   64.518414][ T4617] netlink: 4 bytes leftover after parsing attributes in process `syz.3.364'.
[   64.542349][ T4664] netlink: 4 bytes leftover after parsing attributes in process `syz.6.380'.
[   64.551325][ T4664] netlink: 4 bytes leftover after parsing attributes in process `syz.6.380'.
[   64.712811][ T4684] FAULT_INJECTION: forcing a failure.
[   64.712811][ T4684] name failslab, interval 1, probability 0, space 0, times 0
[   64.725657][ T4684] CPU: 1 UID: 0 PID: 4684 Comm: syz.1.388 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.725687][ T4684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   64.725701][ T4684] Call Trace:
[   64.725772][ T4684]  <TASK>
[   64.725780][ T4684]  __dump_stack+0x1d/0x30
[   64.725883][ T4684]  dump_stack_lvl+0xe8/0x140
[   64.725904][ T4684]  dump_stack+0x15/0x1b
[   64.725951][ T4684]  should_fail_ex+0x265/0x280
[   64.725975][ T4684]  should_failslab+0x8c/0xb0
[   64.726002][ T4684]  kmem_cache_alloc_noprof+0x50/0x310
[   64.726108][ T4684]  ? dst_alloc+0xbd/0x100
[   64.726133][ T4684]  dst_alloc+0xbd/0x100
[   64.726155][ T4684]  ? ip_vs_lblcr_check_expire+0x542/0x660
[   64.726183][ T4684]  ip_route_output_key_hash_rcu+0xf29/0x1380
[   64.726229][ T4684]  ip_route_output_key_hash+0x7a/0xb0
[   64.726265][ T4684]  tcp_v4_connect+0x3e2/0xad0
[   64.726346][ T4684]  __inet_stream_connect+0x169/0x7e0
[   64.726368][ T4684]  ? tcp_sendmsg_fastopen+0x172/0x520
[   64.726466][ T4684]  ? should_failslab+0x8c/0xb0
[   64.726489][ T4684]  ? __kmalloc_cache_noprof+0x189/0x320
[   64.726539][ T4684]  tcp_sendmsg_fastopen+0x43a/0x520
[   64.726687][ T4684]  tcp_sendmsg_locked+0x26e1/0x2c00
[   64.726723][ T4684]  ? mntput_no_expire+0x6f/0x460
[   64.726762][ T4684]  ? mntput+0x4b/0x80
[   64.726822][ T4684]  ? __rcu_read_unlock+0x4f/0x70
[   64.726845][ T4684]  ? avc_has_perm_noaudit+0x1b1/0x200
[   64.726901][ T4684]  ? avc_has_perm+0xf7/0x180
[   64.726926][ T4684]  ? _raw_spin_unlock_bh+0x36/0x40
[   64.726949][ T4684]  ? selinux_socket_sendmsg+0x175/0x1b0
[   64.726979][ T4684]  ? __pfx_tcp_sendmsg+0x10/0x10
[   64.727083][ T4684]  tcp_sendmsg+0x2f/0x50
[   64.727114][ T4684]  inet_sendmsg+0x76/0xd0
[   64.727137][ T4684]  smc_sendmsg+0x1c5/0x2f0
[   64.727169][ T4684]  ? __pfx_smc_sendmsg+0x10/0x10
[   64.727255][ T4684]  __sock_sendmsg+0x145/0x180
[   64.727287][ T4684]  __sys_sendto+0x268/0x330
[   64.727375][ T4684]  __x64_sys_sendto+0x76/0x90
[   64.727394][ T4684]  x64_sys_call+0x2d05/0x2ff0
[   64.727417][ T4684]  do_syscall_64+0xd2/0x200
[   64.727443][ T4684]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   64.727466][ T4684]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   64.727523][ T4684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.727543][ T4684] RIP: 0033:0x7f71d9e9ebe9
[   64.727560][ T4684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.727577][ T4684] RSP: 002b:00007f71d88ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   64.727595][ T4684] RAX: ffffffffffffffda RBX: 00007f71da0d5fa0 RCX: 00007f71d9e9ebe9
[   64.727688][ T4684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   64.727739][ T4684] RBP: 00007f71d88ff090 R08: 0000200000e68000 R09: 0000000000000010
[   64.727753][ T4684] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001
[   64.727767][ T4684] R13: 00007f71da0d6038 R14: 00007f71da0d5fa0 R15: 00007ffd87d87b88
[   64.727788][ T4684]  </TASK>
[   64.886484][ T4672] netlink: 'syz.2.383': attribute type 21 has an invalid length.
[   65.006846][ T4683] netlink: 'syz.0.389': attribute type 21 has an invalid length.
[   65.014989][ T4672] netlink: 156 bytes leftover after parsing attributes in process `syz.2.383'.
[   65.029559][   T29] kauditd_printk_skb: 87 callbacks suppressed
[   65.029649][   T29] audit: type=1326 audit(1757064190.518:5969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.032999][ T4672] netlink: 4 bytes leftover after parsing attributes in process `syz.2.383'.
[   65.042182][   T29] audit: type=1326 audit(1757064190.528:5970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.049888][ T4683] netlink: 156 bytes leftover after parsing attributes in process `syz.0.389'.
[   65.117112][   T29] audit: type=1326 audit(1757064190.548:5971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.120292][ T4683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.389'.
[   65.153547][   T29] audit: type=1326 audit(1757064190.638:5972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.177029][   T29] audit: type=1326 audit(1757064190.638:5973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.200458][   T29] audit: type=1326 audit(1757064190.638:5974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.224484][   T29] audit: type=1326 audit(1757064190.638:5975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.228099][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.247946][   T29] audit: type=1326 audit(1757064190.638:5976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.280147][   T29] audit: type=1326 audit(1757064190.688:5977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   65.303517][   T29] audit: type=1326 audit(1757064190.688:5978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f71d9e9ebe9 code=0x7ffc0000
[   66.020110][ T4731] loop3: detected capacity change from 0 to 512
[   66.036241][ T4731] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.408: iget: bogus i_mode (4200)
[   66.048288][ T4731] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.408: Bad quota inode: 4, type: 1
[   66.059583][ T4731] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   66.074568][ T4731] EXT4-fs (loop3): mount failed
[   66.086269][ T4731] loop3: detected capacity change from 0 to 1024
[   66.092940][ T4731] EXT4-fs: Ignoring removed bh option
[   66.098966][ T4731] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.110129][ T4731] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[   66.118407][ T4731] System zones: 0-1, 3-12
[   66.123590][ T4731] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.408: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.137985][ T4731] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.408: Failed to acquire dquot type 0
[   66.149505][ T4731] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.408: Freeing blocks not in datazone - block = 0, count = 4096
[   66.163112][ T4731] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.408: Invalid inode bitmap blk 0 in block_group 0
[   66.175775][ T3564] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:48: lblock 1 mapped to illegal pblock 1 (length 1)
[   66.185132][ T4731] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   66.191884][ T3564] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:48: Failed to release dquot type 0
[   66.198988][ T4731] EXT4-fs (loop3): 1 orphan inode deleted
[   66.216157][ T4731] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.434950][ T4731] netlink: 'syz.3.408': attribute type 21 has an invalid length.
[   66.442859][ T4731] netlink: 156 bytes leftover after parsing attributes in process `syz.3.408'.
[   66.451850][ T4731] netlink: 4 bytes leftover after parsing attributes in process `syz.3.408'.
[   66.462694][ T4731] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   66.839456][ T4753] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.214444][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.243180][ T4761] loop3: detected capacity change from 0 to 2048
[   67.258357][ T4761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.354843][ T4764] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.416: bg 0: block 234: padding at end of block bitmap is not set
[   67.375141][ T4764] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1244 with error 117
[   67.387778][ T4764] EXT4-fs (loop3): This should not happen!! Data will be lost
[   67.387778][ T4764] 
[   67.448639][ T3564] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 1244 with max blocks 148 with error 28
[   67.461347][ T3564] EXT4-fs (loop3): This should not happen!! Data will be lost
[   67.461347][ T3564] 
[   67.471091][ T3564] EXT4-fs (loop3): Total free blocks count 0
[   67.477115][ T3564] EXT4-fs (loop3): Free/Dirty block details
[   67.483156][ T3564] EXT4-fs (loop3): free_blocks=0
[   67.488161][ T3564] EXT4-fs (loop3): dirty_blocks=160
[   67.493383][ T3564] EXT4-fs (loop3): Block reservation details
[   67.650436][ T4783] netlink: 'syz.0.425': attribute type 1 has an invalid length.
[   67.668896][ T4783] bond1: entered promiscuous mode
[   67.682544][ T4783] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.696612][ T4785] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.767858][ T4785] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.829058][ T4785] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.910476][ T4785] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.045773][ T3564] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.058554][ T3564] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.090568][ T3564] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.099116][ T3564] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.186957][ T4821] loop3: detected capacity change from 0 to 512
[   68.231513][ T4821] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #4: comm syz.3.440: iget: bogus i_mode (4200)
[   68.247794][ T4828] netlink: 'syz.0.441': attribute type 1 has an invalid length.
[   68.288786][ T4828] bond2: entered promiscuous mode
[   68.294309][ T4821] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.440: Bad quota inode: 4, type: 1
[   68.306776][ T4828] 8021q: adding VLAN 0 to HW filter on device bond2
[   68.325880][ T4821] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   68.368743][ T4821] EXT4-fs (loop3): mount failed
[   68.532187][ T4821] loop3: detected capacity change from 0 to 1024
[   68.542528][ T4821] EXT4-fs: Ignoring removed bh option
[   68.550989][ T4821] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   68.563420][ T4821] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[   68.589278][ T4851] vlan2: entered allmulticast mode
[   68.599491][ T4821] System zones: 0-1, 3-12
[   68.621829][ T4821] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #3: block 1: comm syz.3.440: lblock 1 mapped to illegal pblock 1 (length 1)
[   68.665206][ T4821] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.440: Failed to acquire dquot type 0
[   68.678483][ T4821] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.440: Freeing blocks not in datazone - block = 0, count = 4096
[   68.814640][ T4821] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.440: Invalid inode bitmap blk 0 in block_group 0
[   68.829195][ T3564] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:48: lblock 1 mapped to illegal pblock 1 (length 1)
[   68.852632][ T3564] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:48: Failed to release dquot type 0
[   68.872333][ T4858] netlink: 'syz.6.454': attribute type 1 has an invalid length.
[   68.880193][ T4821] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[   68.890890][ T4821] EXT4-fs (loop3): 1 orphan inode deleted
[   68.897222][ T4821] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.920276][ T4858] bond1: entered promiscuous mode
[   68.926498][ T4858] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.122625][ T4821] netlink: 'syz.3.440': attribute type 21 has an invalid length.
[   69.522807][ T4881] loop6: detected capacity change from 0 to 1024
[   69.545325][ T4881] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.568064][ T4881] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.629920][ T4182] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.661778][ T4897] loop6: detected capacity change from 0 to 128
[   69.676497][ T4897] __nla_validate_parse: 8 callbacks suppressed
[   69.676509][ T4897] netlink: 16 bytes leftover after parsing attributes in process `syz.6.466'.
[   69.716205][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.916981][ T4918] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.942380][ T4918] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.947206][ T4923] netlink: 'syz.1.480': attribute type 1 has an invalid length.
[   69.965510][ T4923] bond1: entered promiscuous mode
[   69.970917][ T4923] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.982779][ T4923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'.
[   71.643490][ T4979] loop3: detected capacity change from 0 to 128
[   71.671348][   T29] kauditd_printk_skb: 75 callbacks suppressed
[   71.671361][   T29] audit: type=1326 audit(1757064197.158:6048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.3.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   71.758423][   T29] audit: type=1326 audit(1757064197.198:6049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.3.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   71.781977][   T29] audit: type=1326 audit(1757064197.198:6050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4978 comm="syz.3.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   71.841298][   T29] audit: type=1326 audit(1757064197.298:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   71.864704][   T29] audit: type=1326 audit(1757064197.298:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   71.888192][   T29] audit: type=1326 audit(1757064197.298:6053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   71.911559][   T29] audit: type=1326 audit(1757064197.298:6054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   71.934908][   T29] audit: type=1326 audit(1757064197.298:6055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   71.958326][   T29] audit: type=1326 audit(1757064197.298:6056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   72.073008][   T29] audit: type=1326 audit(1757064197.358:6057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4983 comm="syz.0.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0de3afebe9 code=0x7ffc0000
[   72.523080][ T5014] loop6: detected capacity change from 0 to 128
[   72.616803][ T5020] netlink: 8 bytes leftover after parsing attributes in process `syz.6.514'.
[   72.876894][ T5048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.886526][ T5048] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.896951][ T5050] netlink: 'syz.3.525': attribute type 1 has an invalid length.
[   72.916784][ T5050] bond2: entered promiscuous mode
[   72.922033][ T5050] 8021q: adding VLAN 0 to HW filter on device bond2
[   72.933126][ T5050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.525'.
[   73.051231][ T5070] loop6: detected capacity change from 0 to 2048
[   73.073621][ T5070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.154789][ T5074] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.532: bg 0: block 234: padding at end of block bitmap is not set
[   73.245795][ T5074] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1392 with error 117
[   73.258407][ T5074] EXT4-fs (loop6): This should not happen!! Data will be lost
[   73.258407][ T5074] 
[   73.277605][ T5077] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 117
[   73.290107][ T5077] EXT4-fs (loop6): This should not happen!! Data will be lost
[   73.290107][ T5077] 
[   73.314090][ T3562] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 1392 with max blocks 2 with error 28
[   73.326777][ T3562] EXT4-fs (loop6): This should not happen!! Data will be lost
[   73.326777][ T3562] 
[   73.336431][ T3562] EXT4-fs (loop6): Total free blocks count 0
[   73.342408][ T3562] EXT4-fs (loop6): Free/Dirty block details
[   73.348319][ T3562] EXT4-fs (loop6): free_blocks=0
[   73.885223][ T5100] FAULT_INJECTION: forcing a failure.
[   73.885223][ T5100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.898374][ T5100] CPU: 0 UID: 0 PID: 5100 Comm: syz.6.541 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.898427][ T5100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   73.898457][ T5100] Call Trace:
[   73.898511][ T5100]  <TASK>
[   73.898518][ T5100]  __dump_stack+0x1d/0x30
[   73.898538][ T5100]  dump_stack_lvl+0xe8/0x140
[   73.898557][ T5100]  dump_stack+0x15/0x1b
[   73.898576][ T5100]  should_fail_ex+0x265/0x280
[   73.898597][ T5100]  should_fail+0xb/0x20
[   73.898673][ T5100]  should_fail_usercopy+0x1a/0x20
[   73.898702][ T5100]  _copy_to_user+0x20/0xa0
[   73.898756][ T5100]  simple_read_from_buffer+0xb5/0x130
[   73.898779][ T5100]  proc_fail_nth_read+0x10e/0x150
[   73.898814][ T5100]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   73.898904][ T5100]  vfs_read+0x1a8/0x770
[   73.898923][ T5100]  ? kmem_cache_free+0xdf/0x300
[   73.899025][ T5100]  ? __rcu_read_unlock+0x4f/0x70
[   73.899052][ T5100]  ? __fget_files+0x184/0x1c0
[   73.899081][ T5100]  ksys_read+0xda/0x1a0
[   73.899110][ T5100]  __x64_sys_read+0x40/0x50
[   73.899138][ T5100]  x64_sys_call+0x27bc/0x2ff0
[   73.899206][ T5100]  do_syscall_64+0xd2/0x200
[   73.899240][ T5100]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   73.899286][ T5100]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   73.899311][ T5100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.899340][ T5100] RIP: 0033:0x7f629d83d5fc
[   73.899356][ T5100] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   73.899378][ T5100] RSP: 002b:00007f629c2a7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   73.899402][ T5100] RAX: ffffffffffffffda RBX: 00007f629da75fa0 RCX: 00007f629d83d5fc
[   73.899418][ T5100] RDX: 000000000000000f RSI: 00007f629c2a70a0 RDI: 0000000000000003
[   73.899513][ T5100] RBP: 00007f629c2a7090 R08: 0000000000000000 R09: 0000000000000000
[   73.899528][ T5100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.899543][ T5100] R13: 00007f629da76038 R14: 00007f629da75fa0 R15: 00007fff46031dd8
[   73.899561][ T5100]  </TASK>
[   74.156306][ T5089] netlink: 'syz.2.536': attribute type 21 has an invalid length.
[   74.164275][ T5089] netlink: 156 bytes leftover after parsing attributes in process `syz.2.536'.
[   74.173283][ T5089] netlink: 4 bytes leftover after parsing attributes in process `syz.2.536'.
[   76.343715][ T5166] loop6: detected capacity change from 0 to 2048
[   76.506894][ T5166] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.957434][   T29] kauditd_printk_skb: 80 callbacks suppressed
[   76.957453][   T29] audit: type=1326 audit(1757064202.448:6138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.019710][   T29] audit: type=1326 audit(1757064202.488:6139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.043132][   T29] audit: type=1326 audit(1757064202.488:6140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.066543][   T29] audit: type=1326 audit(1757064202.488:6141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.089889][   T29] audit: type=1326 audit(1757064202.488:6142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.113350][   T29] audit: type=1326 audit(1757064202.488:6143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.136718][   T29] audit: type=1326 audit(1757064202.488:6144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.160128][   T29] audit: type=1326 audit(1757064202.488:6145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.183402][   T29] audit: type=1326 audit(1757064202.498:6146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.206841][   T29] audit: type=1326 audit(1757064202.498:6147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f522dd1ebe9 code=0x7ffc0000
[   77.227448][ T5181] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.569: bg 0: block 234: padding at end of block bitmap is not set
[   77.275749][ T5180] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[   77.288370][ T5180] EXT4-fs (loop6): This should not happen!! Data will be lost
[   77.288370][ T5180] 
[   77.290887][ T5181] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 117
[   77.310646][ T5181] EXT4-fs (loop6): This should not happen!! Data will be lost
[   77.310646][ T5181] 
[   77.327398][ T5183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.337507][ T3581] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1472 with error 28
[   77.350271][ T3581] EXT4-fs (loop6): This should not happen!! Data will be lost
[   77.350271][ T3581] 
[   77.359946][ T3581] EXT4-fs (loop6): Total free blocks count 0
[   77.366061][ T3581] EXT4-fs (loop6): Free/Dirty block details
[   77.371961][ T3581] EXT4-fs (loop6): free_blocks=0
[   77.377852][ T5183] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.494274][ T5208] netlink: 16 bytes leftover after parsing attributes in process `syz.2.584'.
[   77.547635][ T5211] FAULT_INJECTION: forcing a failure.
[   77.547635][ T5211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.561403][ T5211] CPU: 0 UID: 0 PID: 5211 Comm: syz.0.585 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.561474][ T5211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.561489][ T5211] Call Trace:
[   77.561496][ T5211]  <TASK>
[   77.561502][ T5211]  __dump_stack+0x1d/0x30
[   77.561522][ T5211]  dump_stack_lvl+0xe8/0x140
[   77.561566][ T5211]  dump_stack+0x15/0x1b
[   77.561585][ T5211]  should_fail_ex+0x265/0x280
[   77.561604][ T5211]  should_fail+0xb/0x20
[   77.561620][ T5211]  should_fail_usercopy+0x1a/0x20
[   77.561686][ T5211]  _copy_from_user+0x1c/0xb0
[   77.561719][ T5211]  memdup_user+0x5e/0xd0
[   77.561743][ T5211]  strndup_user+0x68/0xb0
[   77.561772][ T5211]  __se_sys_mount+0x4d/0x2e0
[   77.561798][ T5211]  __x64_sys_mount+0x67/0x80
[   77.561826][ T5211]  x64_sys_call+0x2b4d/0x2ff0
[   77.561847][ T5211]  do_syscall_64+0xd2/0x200
[   77.561929][ T5211]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.561961][ T5211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.561998][ T5211] RIP: 0033:0x7f0de3afebe9
[   77.562013][ T5211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.562035][ T5211] RSP: 002b:00007f0de255f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   77.562108][ T5211] RAX: ffffffffffffffda RBX: 00007f0de3d35fa0 RCX: 00007f0de3afebe9
[   77.562123][ T5211] RDX: 0000200000000040 RSI: 0000200000000100 RDI: 0000000000000000
[   77.562139][ T5211] RBP: 00007f0de255f090 R08: 0000200000000880 R09: 0000000000000000
[   77.562154][ T5211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.562177][ T5211] R13: 00007f0de3d36038 R14: 00007f0de3d35fa0 R15: 00007ffe1d341ae8
[   77.562196][ T5211]  </TASK>
[   77.797950][ T5219] loop3: detected capacity change from 0 to 512
[   77.804513][ T5219] EXT4-fs: Ignoring removed nobh option
[   77.818244][ T5216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.826707][ T5216] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.864536][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.586: corrupted inode contents
[   77.885071][ T5219] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.586: mark_inode_dirty error
[   77.915112][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.586: corrupted inode contents
[   77.927694][ T5233] FAULT_INJECTION: forcing a failure.
[   77.927694][ T5233] name failslab, interval 1, probability 0, space 0, times 0
[   77.940427][ T5233] CPU: 1 UID: 0 PID: 5233 Comm: syz.0.590 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.940449][ T5233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   77.940520][ T5233] Call Trace:
[   77.940526][ T5233]  <TASK>
[   77.940533][ T5233]  __dump_stack+0x1d/0x30
[   77.940626][ T5233]  dump_stack_lvl+0xe8/0x140
[   77.940641][ T5233]  dump_stack+0x15/0x1b
[   77.940692][ T5233]  should_fail_ex+0x265/0x280
[   77.940711][ T5233]  ? sctp_add_bind_addr+0x71/0x1e0
[   77.940739][ T5233]  should_failslab+0x8c/0xb0
[   77.940836][ T5233]  __kmalloc_cache_noprof+0x4c/0x320
[   77.940900][ T5233]  sctp_add_bind_addr+0x71/0x1e0
[   77.940926][ T5233]  sctp_copy_local_addr_list+0x199/0x220
[   77.941022][ T5233]  sctp_copy_one_addr+0x7f/0x280
[   77.941049][ T5233]  sctp_bind_addr_copy+0x79/0x290
[   77.941075][ T5233]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[   77.941103][ T5233]  sctp_connect_new_asoc+0x1c3/0x3a0
[   77.941150][ T5233]  sctp_sendmsg+0xf10/0x18d0
[   77.941184][ T5233]  ? selinux_socket_sendmsg+0x141/0x1b0
[   77.941243][ T5233]  ? __pfx_sctp_sendmsg+0x10/0x10
[   77.941313][ T5233]  inet_sendmsg+0xc2/0xd0
[   77.941338][ T5233]  __sock_sendmsg+0x102/0x180
[   77.941376][ T5233]  __sys_sendto+0x268/0x330
[   77.941404][ T5233]  __x64_sys_sendto+0x76/0x90
[   77.941426][ T5233]  x64_sys_call+0x2d05/0x2ff0
[   77.941456][ T5233]  do_syscall_64+0xd2/0x200
[   77.941481][ T5233]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   77.941538][ T5233]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   77.941561][ T5233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.941581][ T5233] RIP: 0033:0x7f0de3afebe9
[   77.941597][ T5233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.941740][ T5233] RSP: 002b:00007f0de255f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   77.941759][ T5233] RAX: ffffffffffffffda RBX: 00007f0de3d35fa0 RCX: 00007f0de3afebe9
[   77.941785][ T5233] RDX: 000000000000ffe0 RSI: 0000200000000100 RDI: 0000000000000005
[   77.941798][ T5233] RBP: 00007f0de255f090 R08: 0000200000000140 R09: 000000000000001c
[   77.941809][ T5233] R10: 000000002000c851 R11: 0000000000000246 R12: 0000000000000001
[   77.941818][ T5233] R13: 00007f0de3d36038 R14: 00007f0de3d35fa0 R15: 00007ffe1d341ae8
[   77.941834][ T5233]  </TASK>
[   77.956559][ T5219] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.586: mark_inode_dirty error
[   78.185160][ T5219] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.586: Failed to acquire dquot type 0
[   78.197853][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.211492][ T5219] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.224582][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.238220][ T5219] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.257358][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.270620][ T5219] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   78.291533][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.304157][ T5219] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.316808][ T5219] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   78.333368][ T5219] EXT4-fs (loop3): 1 truncate cleaned up
[   78.375538][ T5219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.389047][ T5219] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.406411][ T5219] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.456819][ T5219] loop3: detected capacity change from 0 to 512
[   78.463758][ T5219] EXT4-fs: Ignoring removed nobh option
[   78.497615][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.586: corrupted inode contents
[   78.525923][ T5219] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.586: mark_inode_dirty error
[   78.557322][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.586: corrupted inode contents
[   78.603496][ T5219] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.586: mark_inode_dirty error
[   78.618532][ T5266] pimreg: entered allmulticast mode
[   78.629820][ T5219] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.586: Failed to acquire dquot type 0
[   78.686580][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.741358][ T5219] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.765557][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.802386][ T5219] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.821994][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.836245][ T5219] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   78.845058][ T5219] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.586: corrupted inode contents
[   78.858028][ T5219] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.586: mark_inode_dirty error
[   78.871919][ T5219] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   78.881409][ T5219] EXT4-fs (loop3): 1 truncate cleaned up
[   78.887689][ T5219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.900262][ T5219] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.911769][ T5219] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.977265][ T5277] netlink: 'syz.1.604': attribute type 21 has an invalid length.
[   78.985254][ T5277] netlink: 156 bytes leftover after parsing attributes in process `syz.1.604'.
[   78.994223][ T5277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.604'.
[   79.008823][ T5293] block device autoloading is deprecated and will be removed.
[   79.340385][ T5295] netlink: 'syz.3.611': attribute type 1 has an invalid length.
[   79.353773][ T5295] bond3: entered promiscuous mode
[   79.359068][ T5295] 8021q: adding VLAN 0 to HW filter on device bond3
[   79.371522][ T5295] netlink: 36 bytes leftover after parsing attributes in process `syz.3.611'.
[   79.435983][ T5302] netlink: 'syz.2.614': attribute type 58 has an invalid length.
[   79.443724][ T5302] netlink: 20 bytes leftover after parsing attributes in process `syz.2.614'.
[   79.517042][ T5302] vhci_hcd: invalid port number 96
[   79.522243][ T5302] vhci_hcd: default hub control req: 200e vfffa i0060 l0
[   79.604083][ T5314] loop6: detected capacity change from 0 to 128
[   79.770933][ T5307] netlink: 'syz.2.616': attribute type 21 has an invalid length.
[   79.794366][ T5307] netlink: 156 bytes leftover after parsing attributes in process `syz.2.616'.
[   79.803373][ T5307] netlink: 4 bytes leftover after parsing attributes in process `syz.2.616'.
[   80.197571][ T5334] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.236915][ T5334] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.251621][ T5335] netlink: 16 bytes leftover after parsing attributes in process `syz.0.626'.
[   80.286851][ T5334] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.336399][ T5334] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.364402][ T5314] ==================================================================
[   80.372512][ T5314] BUG: KCSAN: data-race in __mark_inode_dirty / __mark_inode_dirty
[   80.380445][ T5314] 
[   80.382765][ T5314] write to 0xffff88811b2a5628 of 4 bytes by task 5322 on cpu 0:
[   80.390387][ T5314]  __mark_inode_dirty+0x248/0x750
[   80.395430][ T5314]  mark_buffer_dirty+0x133/0x210
[   80.400383][ T5314]  block_write_end+0x12d/0x210
[   80.405157][ T5314]  generic_write_end+0x56/0x150
[   80.410043][ T5314]  fat_write_end+0x4f/0x160
[   80.414608][ T5314]  generic_perform_write+0x30f/0x490
[   80.419907][ T5314]  __generic_file_write_iter+0x9e/0x120
[   80.425469][ T5314]  generic_file_write_iter+0x8d/0x2f0
[   80.430842][ T5314]  iter_file_splice_write+0x663/0xa60
[   80.436221][ T5314]  direct_splice_actor+0x153/0x2a0
[   80.441376][ T5314]  splice_direct_to_actor+0x30f/0x680
[   80.446753][ T5314]  do_splice_direct+0xda/0x150
[   80.451543][ T5314]  do_sendfile+0x380/0x650
[   80.455979][ T5314]  __x64_sys_sendfile64+0x105/0x150
[   80.461198][ T5314]  x64_sys_call+0x2bb0/0x2ff0
[   80.465903][ T5314]  do_syscall_64+0xd2/0x200
[   80.470449][ T5314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.476365][ T5314] 
[   80.478695][ T5314] read to 0xffff88811b2a5628 of 4 bytes by task 5314 on cpu 1:
[   80.486240][ T5314]  __mark_inode_dirty+0x191/0x750
[   80.491283][ T5314]  fat_update_time+0x1ec/0x200
[   80.496058][ T5314]  touch_atime+0x145/0x340
[   80.500497][ T5314]  filemap_splice_read+0x6ba/0x740
[   80.505620][ T5314]  splice_direct_to_actor+0x26f/0x680
[   80.511007][ T5314]  do_splice_direct+0xda/0x150
[   80.515799][ T5314]  do_sendfile+0x380/0x650
[   80.520242][ T5314]  __x64_sys_sendfile64+0x105/0x150
[   80.525462][ T5314]  x64_sys_call+0x2bb0/0x2ff0
[   80.530146][ T5314]  do_syscall_64+0xd2/0x200
[   80.534680][ T5314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.540575][ T5314] 
[   80.542889][ T5314] value changed: 0x00000008 -> 0x00000038
[   80.548606][ T5314] 
[   80.550937][ T5314] Reported by Kernel Concurrency Sanitizer on:
[   80.557087][ T5314] CPU: 1 UID: 0 PID: 5314 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.566288][ T5314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   80.576356][ T5314] ==================================================================
[   80.616370][ T3564] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.628909][ T3564] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.640320][ T3581] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.651813][ T3581] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0